poky: Upgrade poky to kirkstone-4.0.3 plus few additional commits. (!809) · Merge requests · SECO Northern Europe / Yocto / manifest

Jonas Höppner requested to merge upgrade-poky into kirkstone Aug 29, 2022

The extra commits are included as there is a new feature for bitbake to monitor the 'pressure' of the build machine and use it for the scheduler. This may help us with the parallel build setup we are using.

b2fbb737b7 fetch2:unpack: Removed preserve from file copy
14f182b14b classes/kernel.bbclass: allow disabling symlink creation also for pkg_postinst
1fc9f7da25 bitbake: runqueue: Change pressure file warning to a note
2e193726bd bitbake: bitbake: runqueue: add memory pressure regulation
3b18438166 bitbake: bitbake: runqueue: add cpu/io pressure regulation
744d68c369 lttng-modules: replace mips compaction fix with upstream change
848585c96f lttng-modules: fix build against mips and v5.19 kernel
6d8c1d0a94 lttng-modules: fix 5.19+ build
778241eff5 selftest/wic: Tweak test case to not depend on kernel size
84eb7f3b98 relocate_sdk.py: ensure interpreter size error causes relocation to fail
36eb09d20e nativesdk: Clear TUNE_FEATURES
ac8186042d scripts/oe-setup-builddir: make it known where configurations come from
d73e6bf015 cmake: remove CMAKE_ASM_FLAGS variable in toolchain file
d4dc48175a boost: fix install of fiber shared libraries
4d51fda543 create-spdx: ignore packing control files from ipk and deb
d8c792f12c create-spdx: Fix supplier field
23ebe69676 archiver.bbclass: remove unsed do_deploy_archives[dirs]
cb87867c47 runqemu: Add missing space on default display option
0ff2b0bbf8 devtool/upgrade: catch bb.fetch2.decodeurl errors
53019423e4 devtool/upgrade: correctly clean up when recipe filename isn't yet known
58d3e1b897 devtool: error out when workspace is using old override syntax
73618dee22 vim: update from 9.0.0063 to 9.0.0115
b65989b835 zlib: CVE-2022-37434 a heap-based buffer over-read
33e296554e gnutls: CVE-2022-2509 Double free during gnutls_pkcs7_verify
ee5b810f66 u-boot: fix CVE-2022-33103
1d9d4e54c9 qemu: fix CVE-2022-0216
29ee816927 qemu: fix CVE-2022-0358
c2c7ab0741 qemu: fix CVE-2021-4158
73080b3372 qemu: fix CVE-2021-3929
66575e31b7 qemu: fix CVE-2021-3507
d7e5f28f51 gdk-pixbuf: CVE-2021-46829 a heap-based buffer overflow
387ab5f18b build-appliance-image: Update to kirkstone head revision
6017120080 lttng-modules: Fix build failure for kernel v5.15.58
53916c4a63 lttng-modules: update 2.13.3 -> 2.13.4
9031d7e8c1 linux-yocto/5.15: fix reproducibility issues
a8350d7a16 linux-yocto/5.15: update to v5.15.59
ce80226252 linux-yocto-rt/5.15: update to -rt48 (and fix -stable merge)
fe74221b78 linux-yocto/5.15: update to v5.15.58
4a5dba835a linux-yocto/5.10: update to v5.10.135
20bcde8f69 glibc: revert one upstream change to work around broken DEBUG_BUILD build
e96e1d8f99 glibc : stable 2.35 branch updates
38cbb4015d poky.conf: bump version for 4.0.3
7bd3375697 yocto-bsps: update to v5.10.130
794cc6e163 yocto-bsps: update to v5.15.54
cbc6cf9c5b yocto-bsps/5.15: fix buildpaths issue with pnmtologo
a9427315d9 yocto-bsps/5.10: fix buildpaths issue with pnmtologo
1c171b7861 yocto-bsps/5.15: fix buildpaths issue with gen-mach-types
169b7ab017 yocto-bsps/5.10: fix buildpaths issue with gen-mach-types
31de9a4fb7 yocto-bsps: update to v5.15.52 and buildpaths fixes
5f1ede2720 yocto-bsps: update to v5.10.128 and buildpaths fixes
2b62807938 yocto-bsps: update to v5.10.113
ee75b4c5c9 openssh: Add openssh-sftp-server to openssh RDEPENDS
948f4dd1d3 strace: set COMPATIBLE_HOST for riscv32
35f82bb72e kernel.bbclass: pass LD also in savedefconfig
8fd330d520 linux-firwmare: restore WHENCE_CHKSUM variable
33a1bfc66b libgcc: Fix standalone target builds with usrmerge distro feature
f6bc8dfadb package_manager/ipk: do not pipe stderr to stdout
03e778a636 binutils: stable 2.38 branch updates
602922d492 initscripts: run umountnfs as a KILL script
948dc51201 bind: Remove legacy python3 PACKAGECONFIG code
bef92ca0ce efivar: fix import functionality
a78211a182 base/reproducible: Change Source Date Epoch generation methods
ed19336407 perf: fix reproduciblity in older releases of Linux
3078173219 udev-extraconf:mount.sh: fix a umount issue
f16409bdfb systemd: Added base_bindir into pkg_postinst:udev-hwdb.
f327cf1077 wic/plugins/rootfs: Fix NameError for 'orig_path'
1e3f924eb7 oeqa/runtime: add test that the kernel has CONFIG_PREEMPT_RT enabled
51acc9c217 epiphany: upgrade 42.2 -> 42.3
eb2a6ff19e xwayland: upgrade 22.1.2 -> 22.1.3
820d82eccb xwayland: upgrade 22.1.1 -> 22.1.2
8b3cb4287c webkitgtk: upgrade 2.36.3 -> 2.36.4
12e12eeee0 vala: upgrade 0.56.1 -> 0.56.2
40d98b7810 vala: upgrade 0.56.0 -> 0.56.1
b1648bd505 log4cplus: upgrade 2.0.7 -> 2.0.8
e702d809e5 libuv: upgrade 1.44.1 -> 1.44.2
f1e0068931 linux-firmware: update 20220610 -> 20220708
188a59b06a xserver-xorg: update 21.1.3 -> 21.1.4
3862180369 font-util: update 1.3.2 -> 1.3.3
d74f1d1464 encodings: update 1.0.5 -> 1.0.6
f51f73db49 xf86-input-synaptics: update 1.9.1 -> 1.9.2
4c0dae9d22 xmodmap: update 1.0.10 -> 1.0.11
407488a4c7 xev: update 1.2.4 -> 1.2.5
bd108838fa xorg-app: Tweak handling of compression changes in SRC_URI
398b1256fe xdpyinfo: upgrade 1.3.2 -> 1.3.3
60c24eaf19 mkfontscale: upgrade 1.2.1 -> 1.2.2
d9fc656678 libtirpc: CVE-2021-46828 DoS vulnerability with lots of connections
caae799d63 qemu: CVE-2022-35414 can perform an uninitialized read on the translate_fail path, leading to an io_readx or io_writex crash
27fde9cc2a gcc-runtime: Pass -nostartfiles when building dummy libstdc++.so
35b74ace9c gcc: Backport a fix for gcc bug 105039
ba0c2df27e gobject-introspection-data: Disable cache for g-ir-scanner
b581f10189 rootfs-postcommands.bbclass: move host-user-contaminated.txt to ${S}
ca3a1f17cc sstatesig: Include all dependencies in SPDX task signatures
db4ce356a8 git: upgrade v2.35.3 -> v2.35.4
2f95354b2b go: update v1.17.10 -> v1.17.12
6a0d24ba1c vim: Upgrade 9.0.0021 -> 9.0.0063
1630dbb40b gnupg: upgrade to 2.3.7 to fix CVE-2022-34903
4f2f861895 gnupg: update 2.3.4 -> 2.3.6
63aeff6e16 bind: upgrade 9.18.3 -> 9.18.4
9495687da9 bind: upgrade 9.18.2 -> 9.18.3
892bc9abc5 dpkg: fix CVE-2022-1664
7ac005ba75 tiff: Security fixes CVE-2022-1354 and CVE-2022-1355
43ff43bd86 lua: Backport fix for CVE-2022-33099
e4b5c35fd4 pulseaudio: add m4-native to DEPENDS
4146e3c6a8 externalsrc.bbclass: support crate fetcher on externalsrc
2355f5dc1e cargo_common.bbclass: enable bitbake vendoring for externalsrc
0d806a3af4 selftest/runtime_test/virgl: Disable for all almalinux
17421c1fe2 gcc-runtime: Fix missing MLPREFIX in debug mappings
3af7f4ba99 gcc-runtime: Fix build when using gold
eabdc02b76 oe-selftest: devtool: test modify git recipe building from a subdir
ee60960da3 devtool: finish: handle patching when S points to subdir of a git repo
9e7a56bef7 patch: handle if S points to a subdirectory of a git repo
dd1fac1e11 bin_package: install into base_prefix
de0d04dfa3 devtool: ignore pn- overrides when determining SRC_URI overrides
a21c4df12f kernel-arch: Fix buildpaths leaking into external module compiles
4006a03674 alsa-state: correct license
ae5fb5a00d perl: don't install Makefile.old into perl-ptest
9489baf011 gtk-doc: Remove hardcoded buildpath
78b9ca277c libmodule-build-perl: Use env utility to find perl interpreter
6ad0dc29c4 vala: Fix on target wrapper buildpaths issue
d9f2186c1e lua: Fix multilib buildpath reproducibility issues
5b4699fc90 waffle: correctly request wayland-scanner executable
bf3232255d insane: Fix buildpaths test to work with special devices
4fd8f9b863 package.bbclass: Fix kernel source handling when not using externalsrc
f1d0a3c7c6 package.bbclass: Avoid stripping signed kernel modules in splitdebuginfo
195b61756b package.bbclass: Fix base directory for debugsource files when using externalsrc
8fa95bb599 python3: Backport patch to fix an issue in subinterpreters
66f67f397e udev-extraconf:mount.sh: fix path mismatching issues
342745ce67 udev-extraconf: fix some systemd automount issues
a19f966ef5 udev-extraconf/mount.sh: ignore lvm in automount
c993a88c3f udev-extraconf: force systemd-udevd to use shared MountFlags
8eafba72be udev-extraconf/mount.sh: only mount devices on hotplug
40af8a94d8 udev-extraconf/mount.sh: save mount name in our tmp filecache
2d0aed6469 udev-extraconf/mount.sh: add LABELs to mountpoints
88bc9d2b93 udev-extraconf: let automount base directory configurable
f884ab8ffc udev-extraconf/initrdscripts/parted: Rename mount.blacklist -> mount.ignorelist
c82f38999b harfbuzz: Fix compilation with clang
702cf1e964 curl: Fix multiple CVEs
1db72445e3 perf: fix reproducibility in 5.19+
dd826b85ae gperf: Switch to upstream patch
eaa86c8681 gperf: Add a patch to work around reproducibility issues
1c8f219ec6 kernel-devsrc: ppc32: fix reproducibility
3e6f03797c kernel-devsrc: fix reproducibility and buildpaths QA warning
083616689f linux-yocto/5.15: fix buildpaths issue with pnmtologo
ada3d3741a linux-yocto/5.15: update to v5.15.54
a3b94334e9 linux-yocto/5.15: fix buildpaths issue with gen-mach-types
c3f8a6f93b linux-yocto/5.15: fix build_OID_registry buildpaths warning
a706523d41 linux-yocto/5.15: fix qemuppc buildpaths warning
8bed8f4284 linux-yocto/5.15: update to v5.15.52
869134924a linux-yocto/5.15: drop obselete GPIO sysfs ABI
bf95167f7a linux-yocto/5.15: update to v5.15.48
feb63e3c9f linux-yocto/5.15: update to v5.15.46
9f0809cf27 linux-yocto/5.10: fix buildpaths issue with pnmtologo
bdfdd75540 linux-yocto/5.10: update to v5.10.130
b16abf35d0 linux-yocto/5.10: fix buildpaths issue with gen-mach-types
f4b26272a8 linux-yocto/5.10: fix build_OID_registry/conmakehash buildpaths warning
2ff94a99d6 linux-yocto/5.10: update to v5.10.128
d20597c276 linux-yocto/5.10: update to v5.10.123
04cab26956 linux-yocto/5.10: update to v5.10.121
d7006757c0 qemu: Add PACKAGECONFIG for brlapi
6d48a8cd43 qemu: Fix slirp determinism issue
236f30b8a9 ref-manual: variables: remove sphinx directive from literal block
b373ad8405 docs: BB_HASHSERVE_UPSTREAM: update to new host
e8af53db95 libsoup: upgrade 3.0.6 -> 3.0.7
46378a82ed glib-networking: upgrade 2.72.0 -> 2.72.1
fae45052cf glib-2.0: upgrade 2.72.2 -> 2.72.3
742176bf5d weston: update 10.0.0 -> 10.0.1
3e70a9cbb0 gstreamer1.0-vaapi: upgrade 1.20.2 -> 1.20.3
c7fee3136b gstreamer1.0-rtsp-server: upgrade 1.20.2 -> 1.20.3
90ab0b6a5e gstreamer1.0-python: upgrade 1.20.2 -> 1.20.3
b2327c81d9 gstreamer1.0-plugins-ugly: upgrade 1.20.2 -> 1.20.3
ac40ccb378 gstreamer1.0-plugins-good: upgrade 1.20.2 -> 1.20.3
d4d14e04ba gstreamer1.0-plugins-base: upgrade 1.20.2 -> 1.20.3
f6e2a22000 gstreamer1.0-plugins-bad: upgrade 1.20.2 -> 1.20.3
b23fb8bc91 gstreamer1.0-omx: upgrade 1.20.2 -> 1.20.3
ccaf9222e5 gstreamer1.0-libav: upgrade 1.20.2 -> 1.20.3
3bbefb5b76 gst-devtools: upgrade 1.20.2 -> 1.20.3
7f7a89a573 gstreamer1.0: upgrade 1.20.2 -> 1.20.3
ff1b9910c8 binutils : stable 2.38 branch updates
c0b6724170 glibc-tests: Avoid reproducibility issues
652801de54 glibc: stable 2.35 branch updates
07d4a34af0 openssl: update 3.0.4 -> 3.0.5
97e48b17b9 vim: upgrade to 9.0.0021
10554d45a5 u-boot: fix CVE-2022-34835
39e1584719 tiff: backport the fix for CVE-2022-2056, CVE-2022-2057, and CVE-2022-2058
917569e54b harfbuzz: fix CVE-2022-33068
b7a414eaf0 qemu: Avoid accidental libvdeplug linkage
85eb363d3a qemu: Avoid accidental librdmacm linkage
073c1432a0 qemu: add PACKAGECONFIG for capstone
b444cac69e ruby: add PACKAGECONFIG for capstone
88fe015a63 dropbear: break dependency on base package for -dev package
523a19e0b0 openssh: break dependency on base package for -dev package
af092f2d12 oe-selftest-image: Ensure the image has sftp as well as dropbear
1d537a6d63 packagegroup-core-ssh-dropbear: Add openssh-sftp-server recommendation
7766d54651 oeqa/runtime/scp: Disable scp test for dropbear
91df5c1c7b curl: backport openssl fix CN check error code
cacf2eac3d glibc-tests: not clear BBCLASSEXTEND
0b047cb6e7 recipetool/devtool: Fix python egg whitespace issues in PACKAGECONFIG
b2dba5ca25 rust: fix issue building cross-canadian tools for aarch64 on x86_64
a224001daa at: take tarballs from debian
8ef42d5532 coreutils: Tweak packaging variable names for coreutils-dev
20646e140c base.bbclass: Correct the test for obsolete license exceptions
ec6149d000 oeqa/sdk: drop the nativesdk-python 2.x test
2fa6cb826f sanity.bbclass: Add ftps to accepted URI protocols for mirrors sanity
5ef41c8eb0 insane.bbclass: host-user-contaminated: Correct per package home path
9ef7d8daad kernel-uboot.bbclass: Use vmlinux.initramfs when INITRAMFS_IMAGE_BUNDLE set
a6987c6eb1 perf: sort-pmuevents: really keep array terminators
2fd4a20088 wic: fix WicError message
cc75d77bc9 libffi: fix native build being not portable
ac874996c9 initramfs-framework: move storage mounts to actual rootfs
327f55e298 openssl: Upgrade 3.0.3 -> 3.0.4
ac087037fe vim: 8.2.5083 -> 9.0.0005
231e6f6772 wireless-regdb: upgrade 2022.04.08 -> 2022.06.06
611d7ed2ac cve-check: hook cleanup to the BuildCompleted event, not CookerExit
e6116b7ae0 cve-extra-exclusions: Clean up and ignore three CVEs (2xqemu and nasm)
0014fd43f3 busybox: fix CVE-2022-30065
fcfda2b40e cups: ignore CVE-2022-26691
2a59abcb90 binutils : CVE-2019-1010204
0a954bf5d7 ghostscript: fix CVE-2022-2085
6ca152967b unzip: Port debian fixes for two CVEs
a5ea426b1d build-appliance-image: Update to kirkstone head revision
213f174999 poky.conf: bump version for 4.0.2
c00f584817 manuals: switch to the sstate mirror shared between all versions
759a3eb9b5 bitbake: server/process: Fix logging issues where only the first message was displayed
467964601a mesa: backport a patch to support compositors without zwp_linux_dmabuf_v1 again
460dd9529d rootfs-postcommands.bbclass: correct comments
85856cea84 gtk-doc: Fix potential shebang overflow on gtkdoc-mkhtml2
e056477ce0 systemd: systemd-systemctl: Support instance conf files during enable
284cd917f8 efivar: add musl libc compatibility
141de70a39 python: Avoid shebang overflow on python-config.py
daa47a6171 python3: Ensure stale empty python module directories don't break the build
d841c3524b python3: Remove problematic paths from sysroot files
88c069b8bf python3: use built-in distutils for ptest, rather than setuptools' 'fork'
dea39dd27e linux-firmware: upgrade 20220509 -> 20220610
b7e0663dde linux-firmware: add support for building snapshots
4c7c684507 oeqa/selftest/cve_check: add tests for Ignored and partial reports
c086c4b35a cve-check: add support for Ignored CVEs
0c3b92901c liberror-perl: Update sstate/equiv versions to clean cache
93e32bf474 systemd: update 0008-add-missing-FTW_-macros-for-musl.patch
9cfff7329a archiver: don't use machine variables in shared recipes
7139d8d63b gcc-source: Fix incorrect task dependencies from ${B}
53e89f5499 git: fix override syntax in RDEPENDS
d37d6ad960 popt: fix override syntax in RDEPENDS
1cc03505ce e2fsprogs: add alternatives handling of lsattr as well
cb1444e7bd oescripts: change compare logic in OEListPackageconfigTests
62fdfa45ab xxhash: fix build with gcc 12
c56f8142a1 archiver: use bb.note instead of echo
16edf84ea8 meson.bbclass: add cython binary to cross/native toolchain config
38f2a77176 devtool: Fix _copy_file() TypeError
e6617042c1 selftest/multiconfig: Test that multiconfigs in separate layers works
60774248a5 uboot-sign: Fix potential index error issues
a6344dc61a vim: Upgrade 8.2.5034 -> 8.2.5083
4aeda14352 rootfs.py: close kernel_abi_ver_file
70fabbb2d0 buildhistory.bbclass: fix shell syntax when using dash
ccd816b865 systemd: Correct 0001-pass-correct-parameters-to-getdents64.patch
ccb4acab44 lttng-modules: fix shell syntax
aa01d3f0f7 lttng-modules: Fix build failure for 5.10.119+ and 5.15.44+ kernel
7cdf493ae7 lttng-modules: fix build against 5.18-rc7+
57962911f2 linux-yocto/5.10: update to v5.10.119
eacca888d4 linux-yocto/5.15: update to v5.15.44
e939a933d3 linux-yocto/5.15: cfg/xen: Move x86 configs to separate file
cc852b651e linux-yocto/5.15: Enable MDIO bus config
7706f5ac77 linux-yocto/5.10: update to v5.10.118
c5371ad452 linux-yocto/5.15: update to v5.15.43
b23a467255 linux-yocto/5.15: bpf: explicitly disable unpriv eBPF by default
001a2245cf lttng-ust: upgrade 2.13.2 -> 2.13.3
cf73ba2e31 iso-codes: upgrade 4.9.0 -> 4.10.0
ef1df297f1 baremetal-image: fix broken symlink in do_rootfs
ff7a7dec9b bitbake.conf: Make TCLIBC and TCMODE lazy assigned
8e44728420 glibc: Drop make-native dependency
c9cf0084c4 perl: Add dependency on make-native to avoid race issues
068aad9f1d sanity: Switch to make 4.0 as a minimum version
d87cbd6f16 local.conf.sample: Update sstate url to new 'all' path
6c51379206 rootfs.py: find .ko.zst kernel modules
a04b59c40b license.bbclass: Bound beginline and endline in copy_license_files()
5c04e06d76 libseccomp: Correct LIC_FILES_CHKSUM
ece8d4cfcb alsa-plugins: fix libavtp vs. avtp packageconfig
bced754b56 kernel-yocto.bbclass: Reset to exiting on non-zero return code at end of task
a4ee07275c perl: Fix build with gcc-12
8c33c7efbe gcc-cross-canadian: Add nativesdk-zstd dependency
94ea8b8461 gcc: depend on zstd-native
da9e2bb836 openssl: Backport fix for ptest cert expiry
411fbde5ac patch.py: make sure that patches/series file exists before quilt pop
6a5e26dad5 linux-firmware: split ath3k firmware
7e7dca9844 linux-firmware: package new Qualcomm firmware
ba399cc6ba webkitgtk: upgrade 2.36.1 -> 2.36.3
ca619ca25b gtk+3: upgrade 3.24.33 -> 3.24.34
c09b41fb91 libxkbcommon: upgrade 1.4.0 -> 1.4.1
fa2e8b8183 glib-2.0: upgrade 2.72.1 -> 2.72.2
8c9ea9f6b9 logrotate: upgrade 3.19.0 -> 3.20.1
42db1a9072 cups: upgrade 2.4.1 -> 2.4.2
9661c7eb07 cve-update-db-native: make it possible to disable database updates
50ee11d88f cve-check: fix return type in check_cves
34eecaa053 cve-check: write empty fragment files in the text mode
7f22fb48eb cve-check: move update_symlinks to a library
2d031b7e2a lzo: Add further info to a patch and mark as Inactive-Upstream
6709d49f1e zip/unzip: mark all submittable patches as Inactive-Upstream
6ef864a43e makedevs: Don't use COPYING.patch just to add license file into ${S}
339af910c3 valgrind: submit arm patches upstream
b0791dc9fa bash: submit patch upstream
09007ea722 systemd: Correct path returned in sd_path_lookup()
fc3f326706 systemd: Drop 0002-don-t-use-glibc-specific-qsort_r.patch
4c3f51142b systemd: Remove __compare_fn_t type in musl-specific patch
94095275b5 systemd: Drop 0001-test-parse-argument-Include-signal.h.patch
3a8430281d systemd: Update patch status
6cd66bd9fb systemd: Drop 0016-Hide-__start_BUS_ERROR_MAP-and-__stop_BUS_ERROR_MAP.patch
5a316a07e2 systemd: Document future actions needed for set of musl patches
48713ac1c3 systemd: Drop redundant musl patches
45d7615dfe gcc: Upgrade to 11.3 release
c29718ee73 rust-common: Fix native signature dependency issues
4e05a17616 rust-common: Drop LLVM_TARGET and simplify
a0d3dde7c0 rust-common: Fix for target definitions returning 'NoneType' for arm
a394d454f8 rust-common: Ensure sstate signatures have correct dependencues for do_rust_gen_targets
8286eaeff1 rust-common: Fix sstate signatures between arm hf and non-hf
cd23b8349e ovmf: Fix native build with gcc-12
c9b490e162 pciutils: avoid lspci conflict with busybox
87d7e9d703 insane.bbclass: make sure to close .patch files
9437dc2783 libseccomp: Add missing files for ptests
57e088cfe3 staging.bbclass: process direct dependencies in deterministic order
1ec2bdeff6 mesa.inc: package 00-radv-defaults.conf
e13ce12e4a ncurses: update to patchlevel 20220423
8de0650a97 libpcre2: upgrade 10.39 -> 10.40
d1b92a322a linux-yocto/5.10: update to v5.10.114
d0f237a311 linux-yocto/5.15: update to v5.15.38
3cd1e83f9b linux-yocto/5.10: update to v5.10.113
3dc0acd18f linux-yocto/5.15: update to v5.15.37
cd12e92aab cve-check: Allow warnings to be disabled
5ab5cedbc5 cve-extra-exclusions: Add kernel CVEs
e72a868593 cve-check: Only include installed packages for rootfs manifest
ecac8cb4f7 cve-check: Add helper for symlink handling
edf2b57a6b cve-check.bbclass: Added do_populate_sdk[recrdeptask].
01e54e3b62 libxslt: Mark CVE-2022-29824 as not applying
4a13afb27e tiff: Add jbig PACKAGECONFIG and clarify CVE-2022-1210
fd6b78f90c vim: Upgrade 8.2.4912 -> 8.2.5034 to fix 9 CVEs
00c04394cb tiff: mark CVE-2022-1622 and CVE-2022-1623 as invalid
269f457a62 license_image.bbclass: Make QA errors fail the build
354e778709 sqlite3: upgrade 3.38.3 -> 3.38.5
f38c8c7ad0 mobile-broadband-provider-info: upgrade 20220315 -> 20220511
74db0dc428 mesa: upgrade 22.0.2 -> 22.0.3
ddec31a801 libcgroup: upgrade 2.0.1 -> 2.0.2
e3de9ae200 gstreamer1.0-vaapi: upgrade 1.20.1 -> 1.20.2
7660a5d019 gstreamer1.0: upgrade 1.20.1 -> 1.20.2
4c4b14f0da gstreamer1.0-rtsp-server: upgrade 1.20.1 -> 1.20.2
3951888a09 gstreamer1.0-python: upgrade 1.20.1 -> 1.20.2
e2a382ffc1 gstreamer1.0-plugins-ugly: upgrade 1.20.1 -> 1.20.2
46030ac6c8 gstreamer1.0-plugins-good: upgrade 1.20.1 -> 1.20.2
b2ba5f738a gstreamer1.0-plugins-base: upgrade 1.20.1 -> 1.20.2
ce55294b63 gstreamer1.0-plugins-bad: upgrade 1.20.1 -> 1.20.2
8499251928 gstreamer1.0-omx: upgrade 1.20.1 -> 1.20.2
9f8aea1017 gstreamer1.0-libav: upgrade 1.20.1 -> 1.20.2
cf49b3984a gst-devtools: upgrade 1.20.1 -> 1.20.2
54a7fff2f5 go: upgrade 1.17.8 -> 1.17.10
b2e5a0b9cb oeqa/selftest/cve_check: add tests for recipe and image reports
ce9e354ebd pcre2: CVE-2022-1586 Out-of-bounds read
8d27f1fea9 selftest/imagefeatures/overlayfs: Always append to DISTRO_FEATURES
2c363c2333 staging: Fix rare sysroot corruption issue
ec7da0e068 classes: rootfs-postcommands: add skip option to overlayfs_qa_check
cf6699a5cb binutils: Bump to latest 2.38 release branch
4f32541b2d librepo: upgrade 1.14.2 -> 1.14.3
fbbbd289b6 mmc-utils: upgrade to latest revision
d691ddf6ad python3: fix reproducibility issue with python3-core
31909cc347 cve-check: Fix report generation
ee8d859d05 curl: Backport CVE fixes
03cc5f63bc bitbake: build: Add clean_stamp API function to allow removal of task stamps
2fd92929c2 bitbake: data: Do not depend on vardepvalueexclude flag
7c0dd56d28 bitbake: fetch2/osc: Small fixes for osc fetcher
453be4d258 base-passwd: Disable shell for default users
51e3b63427 strace: Don't run ptest as "nobody"
d7f2bec47a sed: Specify shell for "nobody" user in run-ptest
c4668d6424 sanity: Don't warn about make 4.2.1 for mint
3009af101b image.bbclass: allow overriding dependency on virtual/kernel:do_deploy
0af576a3b0 overlayfs: add docs about skipping QA check & service dependencies
0c68e5f599 e2fsprogs: update upstream status
a8a094e511 wic/plugins/rootfs: Fix permissions when splitting rootfs folders across partitions
524a41059d pypi.bbclass: Set CVE_PRODUCT to PYPI_PACKAGE
718700b20e cairo: Add missing GPLv3 license checksum entry
eedfa5ace3 linux-firmware: upgrade 20220411 -> 20220509
98481ac1de linux-firmware: replace mkdir by install
0070210dee vim: Upgrade 8.2.4681 -> 8.2.4912
708d015124 libxml2: Upgrade 2.9.13 -> 2.9.14
21da7a4def xwayland: upgrade 22.1.0 -> 22.1.1
7fb8cfd96c webkitgtk: upgrade 2.36.0 -> 2.36.1
2b7d34e5ec sqlite3: upgrade 3.38.2 -> 3.38.3
f5b41e7181 libinput: upgrade 1.19.3 -> 1.19.4
713dea485f fribidi: upgrade 1.0.11 -> 1.0.12
9bbf4f6ddb ffmpeg: upgrade 5.0 -> 5.0.1
c8e81c00a9 epiphany: upgrade 42.0 -> 42.2
6648bf972f cronie: upgrade 1.6.0 -> 1.6.1
ef9819dfb1 bind: upgrade 9.18.1 -> 9.18.2
1b98b19017 mesa: upgrade 22.0.0 -> 22.0.2
226c321269 systemd: Fix build regression with latest update
72f4f94d4e systemd: upgrade 250.4 -> 250.5
e977c0cf23 qemu: backport patch for CVE-2021-4207
d6e618ac2e qemu: backport patch for CVE-2021-4206
cf9a7e4cc6 freetype: backport patch for CVE-2022-27406
c27fdfb851 freetype: backport patch for CVE-2022-27405
7f44415639 freetype: backport patch for CVE-2022-27404
8c489602f2 build-appliance-image: Update to kirkstone head revision
93491db3bf openssl: minor security upgrade 3.0.2 -> 3.0.3
546d7cfea4 virgl: skip headless test on alma 8.6
8941afebd1 qemuarmv5: use arm-versatile-926ejs KMACHINE
300cc18871 poky.conf: bump version for 4.0.1 release
5bac84e954 yocto-bsps: update to v5.15.36
ca27d0e613 abi_version/sstate: Bump hashequiv and sstate versions due to git changes
667ea36429 package: Ensure we track whether PRSERV was active or not
38c8316155 Revert "bitbake.conf: mark all directories as safe for git to read"
7868ccd57a scripts/git: Ensure we don't have circular references
db10b2623d scripts: Make git intercept global
74522a6048 base: Avoid circular references to our own scripts
6c843a5069 oeqa/selftest: add test for git working correctly inside pseudo
c5580a0571 rootfs-postcommands: fix symlinks where link and output path are equal
dd08692cac cve-check: fix symlinks where link and output path are equal
645c157bef cve-check: add JSON format to summary output
b7601c92ff cve-update-db-native: let the user to drive the update interval
fc56536e8a cve-update-db-native: update the CVE database once a day only
e163bed574 cve-check: no need to depend on the fetch task
b1a9c64d5d strace: fix ptest failure in landlock
17fe9070f9 linux-yocto/5.15: fix qemuarm graphical boot
533d5ae8c4 linux-yocto: Enable powerpc-debug fragment for ppc64 LE
e50b978409 linux-yocto/5.15: update to v5.15.36
f6ebb58225 linux-yocto/5.15: fix -standard kernel build issue
eccb29aba0 linux-yocto: enable powerpc debug fragment
c9896633c2 linux-yocto/5.15: Fix CVE-2022-28796
b6bc88c365 linux-yocto/5.15: update to v5.15.35
dd1d4a5f70 linux-yocto/5.15: netfilter: conntrack: avoid useless indirection during conntrack destruction
304e8e2496 linux-yocto/5.15: fix ppc boot
74dbe8d878 linux-yocto/5.15: kasan: fix BUG: sleeping function called from invalid context
f31412cd99 linux-yocto/5.15: base: enable kernel crypto userspace API
635c414737 linux-yocto/5.15: update to v5.15.33
c115a5d6c9 linux-yocto/5.15: arm: poky-tiny cleanup and fixes
3b78842c32 poky-tiny: enable qemuarmv5/qemuarm64 and cleanups
bd83f437b2 linux-yocto/5.10: update to v5.10.112
086152f286 linux-yocto/5.10: base: enable kernel crypto userspace API
14d4c55592 linux-yocto/5.10: update to v5.10.110
02d6a8fd27 qemu: Add packageconfig for libbpf support
c0cbd7c572 powerpc: Remove invalid GLIBC_EXTRA_OECONF
d19e723ec2 volatile-binds: Change DefaultDependencies from false to no
4280a7dd25 scripts/contrib/oe-build-perf-report-email.py: remove obsolete check for phantomjs and optipng
4df837b96f go-helloworld: remove unused GO_WORKDIR
983c257517 lib/sstatesig: Fix find_siginfo to match sstate filename generation
5e0de3463e kmod: Enable xz support by default
681ae51e6e pulseaudio: conditionally depend on alsa-plugins-pulseaudio-conf
1c65a77b39 openssl: extract legacy provider module to a separate package
0d81d82645 bitbake: fetch/git : Use cat as pager
fe1a4d1240 bitbake: cache: correctly handle file names containing colons
dc41a59eaa bitbake: runqueue: Fix sig file location when using multiconfig
b34c299467 bitbake: fetch2/ssh.py: decode path back for ssh
b6df0485bc bitbake: fetch2/osc: Add missing parameter
719b4e733b bitbake: buildinfohelper: Drop unused variables
455c7b4393 bitbake: runqueue: Drop pointless variable assignment
2de11757c4 bitbake: persist_data: Use a valid exception for missing implementation
1d847bb2cf bitbake: ui/knotty: Drop pointless pass statement
5eb655e42b bitbake: siggen: Drop pointless break statement
08ee5cf2ea bitbake: fetch2/crate: Drop unused import
98472efbca bitbake: buildinfohelper: Drop unused function
2c3009eb3a bitbake: msg: Drop unused local variable
ba1a9588f0 bitbake: cooker: Drop unused loop
91cca6ad72 bitbake: ui/buildinfohelper: Drop unused import
e62e1284a0 bitbake: server/process: Drop unused import
6cb50fc2a1 bitbake: tests/parse: Fix one test overwriting another
a550f8333f bitbake: providers: use local variable for packages_dynamic pattern
d84c73d1ef libxml2: update patch status
5077019ae1 staging: Ensure we filter out ourselves
dfe1dd65e3 util-linux: Create u-a symlink for findfs utility
646a590310 sanity: skip make 4.2.1 warning for debian
6644b3e9b6 neard: Switch SRC_URI to git repo
d4a5862ce8 bitbake.conf: mark all directories as safe for git to read
5984100237 base: Drop git intercept
f6eb720890 install/devshell: Introduce git intercept script due to fakeroot issues
5c91954b7d go.bbclass: disable the use of the default configuration file
04ab58c85d create-spdx: delete virtual/kernel dependency to fix FreeRTOS build
b11e684951 cases/buildepoxy.py: fix typo
7f91e5a7d8 devshell.bbclass: Allow devshell & pydevshell to use the network
f8a450a39d terminal.py: Restore error output from Terminal
c99977a517 gstreamer1.0-plugins-bad: drop patch
ce24cf8f2c gstreamer1.0: Minor documentation addition
42b8797084 gstreamer1.0-plugins-good: Fix libsoup dependency
47f2e75837 busybox: Use base_bindir instead of hardcoding /bin path
4c098bd8ae qemu.bbclass: Extend ppc/ppc64 extra options
50d24a763f libc-glibc: Use libxcrypt to provide virtual/crypt
c5ca6110ce wic: do not use PARTLABEL for msdos partition tables
25a6012a1e gcompat: Fix build when usrmerge distro feature is enabled
6b96b3c0cc musl: Fix build when usrmerge distro feature is enabled
6107518b42 arch-armv8-2a.inc: fix a typo in TUNEVALID variable
9a06759aef linux-firmware: correct license for ar3k firmware
6adc3aa634 kernel-yocto.bbclass: Fixup do_kernel_configcheck usage of KMETA
ef36e735ae package.bbclass: Prevent perform_packagecopy from removing /sysroot-only
80adcbf1f4 seatd: Disable overflow warning as error on ppc64/musl
da4096dfb9 glibc: ptest: Fix glibc-tests package issue
bdbca4b3af glib: upgrade 2.72.0 -> 2.72.1
275c29d930 subversion: upgrade to 1.14.2
a869054e4e apt: upgrade 2.4.4 -> 2.4.5
498bbee789 cve_check: skip remote patches that haven't been fetched when searching for CVE tags
ed9500ddb6 python3: ignore CVE-2015-20107
881a9d82e7 e2fsprogs: fix CVE-2022-1304

Change-Id: I45fd4029ce7ec4aba8dc8e915d151a9889f85013

poky: Upgrade poky to kirkstone-4.0.3 plus few additional commits.

Merge request reports