Yocto BitBake Question & answerのブログ

Yocto4.2.2(Mickledore)リリース

yakuhito — Thu, 20 Jul 2023 13:23:44 +0000

2023年5月5日にリリースされたYocto4.2 (Mickledore)の2回目のポイントリリース4.2.2公開のアナウンスが2022年7月20日付けでありました。

当初予定より2日早く7月8日版を利用し、7月10日にQA開始、7月15日にQA完了、TSCによるQA結果の確認を経て1日早い7月20日にリリースとなっています。

今回の更新では、26個のCVEのFIXの他、linux-yocto は、5.15.118　/ 6.1.35 へのバージョンアップを含む更新が行われています。

7/8以降次のリリースに向けて、NVDのデータベースv2へのアクセス方法の改良（タイムアウト対策を主体）を目的としたコミットが既に行われています。

次のポイントリリース4.2.3 は　2023/8/28にQA開始、2023/9/8 のリリースを予定しています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/283

---------------
Known Issues
---------------
N/A

---------------
Security Fixes
---------------
binutils: Fix CVE-2023-1972
cups: Fix CVE-2023-32324
curl: Fix CVE-2023-28319 CVE-2023-28320 CVE-2023-28321 CVE-2023-28322
dbus: Fix CVE-2023-34969
git: Fix CVE-2023-25652 CVE-2023-29007
git: Ignore CVE-2023-25815
libwebp: Fix CVE-2023-1999
libxml2: Fix CVE-2023-28484 CVE-2023-29469
libxpm: Fix CVE-2022-44617
ninja: Ignore CVE-2021-4336
openssl: Fix CVE-2023-2650 CVE-2023-1255 CVE-2023-0466 CVE-2023-0465 CVE-2023-0464
perl: Fix CVE-2023-31484 CVE-2023-31486
sysstat: Fix CVE-2023-33204
tiff: Fix CVE-2023-2731 CVE-2023-25434 CVE-2023-26965
vim: Fix CVE-2023-2426

---------------
Fixes
---------------
apr: Upgrade to 1.7.4
avahi: fix D-Bus introspection
babeltrace2: Always use BFD linker when building tests with ld-is-lld distro feature
babeltrace2: Upgrade to 2.0.5
baremetal-helloworld: Update SRCREV to fix entry addresses for ARM architectures
bind: Upgrade to 9.18.15
binutils: move packaging of gprofng static lib into common .inc
binutils: package static libs from gprofng
binutils: stable 2.40 branch updates (7343182dd1)
bitbake.conf: add unzstd in HOSTTOOLS
bitbake: runqueue: Fix deferred task/multiconfig race issue
bno_plot.py, btt_plot.py: Ask for python3 specifically
build-appliance-image: Update to mickledore head revision
busybox: Upgrade to 1.36.1
cmake.bbclass: do not search host paths for find_program()
conf: add nice level to the hash config ignred variables
connman: fix warning by specifying runstatedir at configure time
cpio: Run ptests under ptest user
dbus: Upgrade to 1.14.8
devtool: Fix the wrong variable in srcuri_entry
dnf: only write the log lock to root for native dnf
docs: bsp-guide: bsp: fix typo
dpkg: Upgrade to v1.21.22
e2fsprogs: Fix error SRCDIR when using usrmerge DISTRO_FEATURES
e2fsprogs: fix ptest bug for second running
ell: Upgrade to 0.57
expect: Add ptest support
fribidi: Upgrade to 1.0.13
gawk: Upgrade to 5.2.2
gcc : upgrade to v12.3
gdb: fix crashes when debugging threads with Arm Pointer Authentication enabled
gdb: Upgrade to 13.2
git: Upgrade to 2.39.3
glib-networking: use correct error code in ptest
glibc: Pass linker choice via compiler flags
glibc: stable 2.37 branch updates.
gnupg: Upgrade to 2.4.2
go.bbclass: don't use test to check output from ls
go: Upgrade to 1.20.5
go: Use -no-pie to build target cgo
gobject-introspection: remove obsolete DEPENDS
grub: submit determinism.patch upstream
gstreamer1.0: Upgrade to 1.22.3
gtk4: Upgrade to 4.10.4
image-live.bbclass: respect IMAGE_MACHINE_SUFFIX
image_types: Fix reproducible builds for initramfs and UKI img
inetutils: remove unused patch files
ipk: Revert Decode byte data to string in manifest handling
iso-codes: Upgrade to 4.15.0
kernel: don't force PAHOLE=false
kmod: remove unused ptest.patch
kmscube: Correct DEPENDS to avoid overwrite
layer.conf: Add missing dependency exclusion
lib/terminal.py: Add urxvt terminal
libbsd: Add correct license for all packages
libdnf: Upgrade to 0.70.1
libgcrypt: Upgrade to 1.10.2
libgloss: remove unused patch file
libmicrohttpd: Upgrade to 0.9.77
libmodule-build-perl: Upgrade to 0.4234
libx11: remove unused patch and FILESEXTRAPATHS
libx11: Upgrade to 1.8.5
libxfixes: Upgrade to v6.0.1
libxft: Upgrade to 2.3.8
libxi: Upgrade to v1.8.1
libxml2: Do not use lld linker when building with tests on rv64
libxml2: Upgrade to 2.10.4
libxpm: Upgrade to 3.5.16
linux-firmware: Upgrade to 20230515
linux-yocto/5.15: cfg: fix DECNET configuration warning
linux-yocto/5.15: Upgrade to v5.15.118
linux-yocto/6.1: fix intermittent x86 boot hangs
linux-yocto/6.1: Upgrade to v6.1.35
linux-yocto: move build / debug dependencies to .inc
logrotate: Do not create logrotate.status file
maintainers.inc: correct Carlos Rafael Giani's email address
maintainers.inc: correct unassigned entries
maintainers.inc: unassign Adrian Bunk from wireless-regdb
maintainers.inc: unassign Alistair Francis from opensbi
maintainers.inc: unassign Andreas Müller from itstool entry
maintainers.inc: unassign Chase Qi from libc-test
maintainers.inc: unassign Oleksandr Kravchuk from python3 and all other items
maintainers.inc: unassign Pascal Bach from cmake entry
maintainers.inc: unassign Ricardo Neri from ovmf
maintainers.inc: update version for gcc-source
maintainers.inc: unassign Richard Weinberger from erofs-utils entry
meta: depend on autoconf-archive-native, not autoconf-archive
meta: lib: oe: npm_registry: Add more safe caracters
migration-guides: add release notes for 4.2.1
minicom: remove unused patch files
mobile-broadband-provider-info: Upgrade to 20230416
musl: Correct SRC_URI
oeqa/selftest/bbtests: add non-existent prefile/postfile tests
oeqa/selftest/cases/devtool.py: skip all tests require folder a git repo
oeqa: adding selftest-hello and use it to speed up tests
openssh: Remove BSD-4-clause contents completely from codebase
openssl: fix building on riscv32
openssl: Upgrade to 3.1.1
overview-manual: concepts.rst: Fix a typo
parted: Add missing libuuid to linker cmdline for libparted-fs-resize.so
perf: Make built-in libtraceevent plugins cohabit with external libtraceevent
piglit: Add missing glslang dependencies
piglit: Fix c++11-narrowing warnings in tests
pkgconf: Upgrade to 1.9.5
pm-utils: fix multilib conflictions
poky.conf: bump version for 4.2.2 release
populate_sdk_base.bbclass: respect MLPREFIX for ptest-pkgs's ptest-runner
profile-manual: fix blktrace remote usage instructions
psmisc: Set ALTERNATIVE for pstree to resolve conflict with busybox
ptest-runner: Ensure data writes don't race
ptest-runner: Pull in "runner: Remove threads and mutexes" fix
ptest-runner: Pull in sync fix to improve log warnings
python3-bcrypt: Use BFD linker when building tests
python3-numpy: remove NPY_INLINE, use inline instead
qemu: a pending patch was submitted and accepted upstream
qemu: remove unused qemu-7.0.0-glibc-2.36.patch
qemurunner.py: fix error message about qmp
qemurunner: avoid leaking server_socket
ref-manual: add clarification for SRCREV
ref-manual: classes.rst: fix typo
rootfs-postcommands.bbclass: add post func remove_unused_dnf_log_lock
rpcsvc-proto: Upgrade to 1.4.4
rpm: drop unused 0001-Rip-out-partial-support-for-unused-MD2-and-RIPEMD160.patch
rpm: Upgrade to 4.18.1
rpm: write macros under libdir
runqemu-gen-tapdevs: Refactoring
runqemu-ifupdown/get-tapdevs: Add support for ip tuntap
scripts/runqemu: allocate unfsd ports in a way that doesn't race or clash with unrelated processes
scripts/runqemu: split lock dir creation into a reusable function
scripts: fix buildstats diff/summary hard bound to host python3
sdk.py: error out when moving file fails
sdk.py: fix moving dnf contents
selftest/license: Exclude from world
selftest/reproducible: Allow native/cross reuse in test
serf: Upgrade to 1.3.10
staging.bbclass: do not add extend_recipe_sysroot to prefuncs of prepare_recipe_sysroot
strace: Disable failing test
strace: Merge two similar patches
strace: Update patches/tests with upstream fixes
sysfsutils: fetch a supported fork from github
systemd-systemctl: support instance expansion in WantedBy
systemd: Drop a backport
tiff: Remove unused patch from tiff
uninative: Upgrade to 3.10 to support gcc 13
uninative: Upgrade to 4.0 to include latest gcc 13.1.1
unzip: fix configure check for cross compilation
unzip: remove hardcoded LARGE_FILE_SUPPORT
useradd-example: package typo correction
useradd-staticids.bbclass: improve error message
v86d: Improve kernel dependency
vim: Upgrade to 9.0.1527
weston-init: add profile to point users to global socket
weston-init: add the weston user to the wayland group
weston-init: add weston user to the render group
weston-init: fix the mixed indentation
weston-init: guard against systemd configs
weston-init: make sure the render group exists
wget: Upgrade to 1.21.4
wireless-regdb: Upgrade to 2023.05.03
xdpyinfo: Upgrade to 1.3.4
xf86-video-intel: Use the HTTPS protocol to fetch the Git repositories
xinput: upgrade to v1.6.4
xwininfo: upgrade to v1.1.6
xz: Upgrade to 5.4.3
yocto-bsps: update to v5.15.106
zip: fix configure check by using _Static_assert
zip: remove unnecessary LARGE_FILE_SUPPORT CLFAGS

Yocto4.0.11 LTS(Kirkstone)リリース

yakuhito — Tue, 04 Jul 2023 04:15:01 +0000

2022年4月にリリースされたYocto4.0 LTS (Kirkstone)の11回目のポイントリリース4.0.11公開のアナウンスが2023年7月4日付けでありました。
当初予定より3日早く6月23日版で構築、QAは7月3日に完了、TSC Teamのチェックを経て、予定より3日早く早く7月4日のリリースアナウンスとなりました。

今回のリリースでの主な変更点：
　　〇 CVEに登録された脆弱性への対応
　　〇カーネルは 5.10は. 5.10.175から5.10.180へ、5.15は 5.15.108 から 5.15.113 へアップグレード

　　リリースアナウンスの時点で、次のポイントリリースに向けてのコミットが複数行われています。
。

次のポイントリリース4.0.12 は 2023/08/07 版で構築、QA後の2023/08/18 のリリースを予定しています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/282

---------------
Known Issues
---------------
N/A

---------------
Security Fixes
---------------
cups: Fix CVE-2023-32324
curl: Fix CVE-2023-28319 CVE-2023-28320 CVE-2023-28321 CVE-2023-28322
git: Ignore CVE-2023-25815
go: Fix CVE-2023-24539 CVE-2023-24540
nasm: Fix CVE-2022-46457
openssh: Fix CVE-2023-28531
openssl: Fix CVE-2023-1255 CVE-2023-2650
perl: Fix CVE-2023-31484
python3-requests: Fix for CVE-2023-32681
sysstat: Fix CVE-2023-33204
vim: Fix CVE-2023-2426
webkitgtk: fix CVE-2022-42867 CVE-2022-46691 CVE-2022-46699 CVE-2022-46700

---------------
Fixes
---------------
Revert "docs: conf.py: fix cve extlinks caption for sphinx <4.0"
Revert "ipk: Decode byte data to string in manifest handling"
avahi: fix D-Bus introspection
build-appliance-image: Update to kirkstone head revision
conf.py: add macro for Mitre CVE links
conf: add nice level to the hash config ignred variables
cpio: Fix wrong CRC with ASCII CRC for large files
cve-update-nvd2-native: added the missing http import
cve-update-nvd2-native: new CVE database fetcher
dhcpcd: use git instead of tarballs
e2fsprogs: fix ptest bug for second running
gcc-runtime: Use static dummy libstdc++
glibc: stable 2.35 branch updates (cbceb903c4d7)
go.bbclass: don't use test to check output from ls
gstreamer1.0: Upgrade to 1.20.6
iso-codes: Upgrade to 4.15.0
kernel-devicetree: allow specification of dtb directory
kernel-devicetree: make shell scripts posix compliant
kernel-devicetree: recursively search for dtbs
kernel: don't force PAHOLE=false
kmscube: Correct DEPENDS to avoid overwrite
lib/terminal.py: Add urxvt terminal
license.bbclass: Include LICENSE in the output when it fails to parse
linux-yocto/5.10: Upgrade to v5.10.180
linux-yocto/5.15: Upgrade to v5.15.113
llvm: backport a fix for build with gcc-13
maintainers.inc: Fix email address typo
maintainers.inc: Move repo to unassigned
migration-guides: add release notes for 4.0.10
migration-guides: use new cve_mitre macro
nghttp2: Deleted the entries for -client and -server, and removed a dependency on them from the main package.
oeqa/selftest/cases/devtool.py: skip all tests require folder a git repo
openssh: Remove BSD-4-clause contents completely from codebase
openssl: Upgrade to 3.0.9
overview-manual: concepts.rst: Fix a typo
p11-kit: add native to BBCLASSEXTEND
package: enable recursion on file globs
package_manager/ipk: fix config path generation in _create_custom_config()
piglit: Add PACKAGECONFIG for glx and opencl
piglit: Add missing glslang dependencies
piglit: Fix build time dependency
poky.conf: bump version for 4.0.11
profile-manual: fix blktrace remote usage instructions
quilt: Fix merge.test race condition
ref-manual: add clarification for SRCREV
selftest/reproducible: Allow native/cross reuse in test
staging.bbclass: do not add extend_recipe_sysroot to prefuncs of prepare_recipe_sysroot
systemd-networkd: backport fix for rm unmanaged wifi
systemd-systemctl: fix instance template WantedBy symlink construction
systemd-systemctl: support instance expansion in WantedBy
uninative: Upgrade to 3.10 to support gcc 13
uninative: Upgrade to 4.0 to include latest gcc 13.1.1
vim: Upgrade to 9.0.1527
waffle: Upgrade to 1.7.2
weston: add xwayland to DEPENDS for PACKAGECONFIG xwayland

Yocto3.1.26 LTS(Dunfell 23.26)リリース

yakuhito — Thu, 29 Jun 2023 00:01:42 +0000

Yocto3.1.26 LTS(Dunfell 23.26)リリース

一昨年4月にリリースされたYocto3.1LTS(Dunfell)の26回目のポイントリリース、3.1.26公開のアナウンスが 2023年6月28日付けでありました。

予定より2日早い6月17日版で構築、6/22にQA完了、TSCの承認を経て予定より2日早く、6月28日にリリースされています。

今回のリリースでは、CVEへの対応、UpStreanでのアップデート対応の他、linux-yoctoに対するNVDのデータベースに未反映のFix済CVEがignore-listに追加され、linux-yoctoのunfixedは、実際に未対応のもののみ表示されるようになりました。
kernelは5.4.237 から 5.4.243 にアップデートしています。

6/29 9:00 現在、次回リリースに向けてコミットは始まっており、CVEのFIXの他、cve-checkで参照するNVDのデータベースが、現在のフォーマットでの提供が2023年末で終了となることへの対応が入っています。

次のバージョン 3.1.27 は 2023/07/31版で構築、2023/8/11リリースの予定となっています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/281

---------------
Known Issues
---------------
N/A

---------------
Security Fixes
---------------
connman: Fix CVE-2023-28488
curl: Update fix for CVE-2023-27534
ffmpeg: Fix CVE-2022-48434
freetype: Fix CVE-2023-2004
ghostscript: Fix CVE-2023-28879
git: Fix CVE-2023-25652 CVE-2023-29007
go: Fix CVE-2023-24538 CVE-2023-24539 CVE-2023-24540
libwebp: Fix CVE-2023-1999
libxml2: Fix CVE-2023-28484 CVE-2023-29469
linux-yocto: Ignore CVE-2014-8171 CVE-2017-1000255 CVE-2018-10840 CVE-2018-10876 CVE-2018-10882 CVE-2018-10902 CVE-2018-14625 CVE-2018-16880 CVE-2018-16884 CVE-2018-5873 CVE-2019-20810 CVE-2019-3819 CVE-2020-10690 CVE-2020-10711 CVE-2020-10732 CVE-2020-10742 CVE-2020-10757 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10781 CVE-2020-10942 CVE-2020-11494 CVE-2020-11565 CVE-2020-11608 CVE-2020-11609 CVE-2020-11668 CVE-2020-11884 CVE-2020-12464 CVE-2020-12465 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12657 CVE-2020-12659 CVE-2020-12768 CVE-2020-12770 CVE-2020-12771 CVE-2020-12826 CVE-2020-12888 CVE-2020-13143 CVE-2020-14314 CVE-2020-14331 CVE-2020-14351 CVE-2020-14381 CVE-2020-14385 CVE-2020-14390 CVE-2020-15393 CVE-2020-15436 CVE-2020-15437 CVE-2020-15780 CVE-2020-16119 CVE-2020-16166 CVE-2020-1749 CVE-2020-24394 CVE-2020-25211 CVE-2020-25212 CVE-2020-25284 CVE-2020-25285 CVE-2020-25639 CVE-2020-25641 CVE-2020-25643 CVE-2020-25645 CVE-2020-25656 CVE-2020-25672 CVE-2020-25704 CVE-2020-25705 CVE-2020-26088 CVE-2020-26541 CVE-2020-27170 CVE-2020-27171 CVE-2020-27675 CVE-2020-27777 CVE-2020-27784 CVE-2020-27830 CVE-2020-28097 CVE-2020-28374 CVE-2020-28915 CVE-2020-28941 CVE-2020-28974 CVE-2020-29368 CVE-2020-29369 CVE-2020-29370 CVE-2020-29371 CVE-2020-29373 CVE-2020-29374 CVE-2020-29660 CVE-2020-35508 CVE-2020-36158 CVE-2020-36311 CVE-2020-36312 CVE-2020-36322 CVE-2020-36386 CVE-2020-36516 CVE-2020-36557 CVE-2020-36558 CVE-2020-8428 CVE-2020-8647 CVE-2020-8649 CVE-2020-8992 CVE-2020-9383 CVE-2021-20265 CVE-2021-20292 CVE-2021-20321 CVE-2021-23133 CVE-2021-23134 CVE-2021-27363 CVE-2021-27364 CVE-2021-28714 CVE-2021-28715 CVE-2021-28950 CVE-2021-28964 CVE-2021-28971 CVE-2021-28972 CVE-2021-29265 CVE-2021-29647 CVE-2021-29650 CVE-2021-30002 CVE-2021-3178 CVE-2021-31916 CVE-2021-32399 CVE-2021-3348 CVE-2021-33656 CVE-2021-34693 CVE-2021-3483 CVE-2021-35039 CVE-2021-3506 CVE-2021-3564 CVE-2021-3573 CVE-2021-3609 CVE-2021-3612 CVE-2021-3635 CVE-2021-3640 CVE-2021-3653 CVE-2021-3679 CVE-2021-37159r CVE-2021-3732 CVE-2021-3739 CVE-2021-3744 CVE-2021-3752 CVE-2021-3753 CVE-2021-3759 CVE-2021-3764 CVE-2021-38160 CVE-2021-38198 CVE-2021-38199 CVE-2021-38204 CVE-2021-38205 CVE-2021-38207 CVE-2021-38208 CVE-2021-38209 CVE-2021-3923 CVE-2021-4002 CVE-2021-40490 CVE-2021-4083 CVE-2021-4135 CVE-2021-4149 CVE-2021-4155 CVE-2021-4159 CVE-2021-41864 CVE-2021-42008 CVE-2021-4203 CVE-2021-42252 CVE-2021-42739 CVE-2021-43389 CVE-2021-43975 CVE-2021-43976 CVE-2021-44733 CVE-2021-45095 CVE-2021-45480 CVE-2021-45485 CVE-2021-45486 CVE-2021-45868 CVE-2022-0322 CVE-2022-0330 CVE-2022-0487 CVE-2022-0492 CVE-2022-0494 CVE-2022-0812 CVE-2022-0850 CVE-2022-0854 CVE-2022-1011 CVE-2022-1016 CVE-2022-1055 CVE-2022-1195 CVE-2022-1198 CVE-2022-1199 CVE-2022-1353 CVE-2022-1419 CVE-2022-1462 CVE-2022-1734 CVE-2022-2196 CVE-2022-2318 CVE-2022-2380 CVE-2022-24448 CVE-2022-24959 CVE-2022-2503 CVE-2022-25258 CVE-2022-25375 CVE-2022-25636 CVE-2022-26365 CVE-2022-26490 CVE-2022-2663 CVE-2022-26966 CVE-2022-27223 CVE-2022-27666 CVE-2022-28356 CVE-2022-28388 CVE-2022-28389 CVE-2022-28390 CVE-2022-2873 CVE-2022-28893 CVE-2022-3028 CVE-2022-3105 CVE-2022-3107 CVE-2022-3111 CVE-2022-3115 CVE-2022-3202 CVE-2022-32250 CVE-2022-32296 CVE-2022-32981 CVE-2022-3303 CVE-2022-33740 CVE-2022-33741 CVE-2022-33742 CVE-2022-33744 CVE-2022-33981 CVE-2022-3424 CVE-2022-3435 CVE-2022-3521 CVE-2022-3545 CVE-2022-3564 CVE-2022-3586 CVE-2022-3594 CVE-2022-36123 CVE-2022-3621 CVE-2022-3623 CVE-2022-36280 CVE-2022-3629 CVE-2022-3633 CVE-2022-3635 CVE-2022-3646 CVE-2022-3649 CVE-2022-36879 CVE-2022-36946 CVE-2022-3707 CVE-2022-39188 CVE-2022-39842 CVE-2022-40307 CVE-2022-40768 CVE-2022-4095 CVE-2022-41218 CVE-2022-41222 CVE-2022-4139 CVE-2022-41849 CVE-2022-41850 CVE-2022-41858 CVE-2022-42328 CVE-2022-42329 CVE-2022-42703 CVE-2022-42721 CVE-2022-42895 CVE-2022-4382 CVE-2022-4662 CVE-2022-47929 CVE-2023-0394 CVE-2023-0458 CVE-2023-0461 CVE-2023-1073 CVE-2023-1074 CVE-2023-1077 CVE-2023-1078 CVE-2023-1079 CVE-2023-1095 CVE-2023-1118 CVE-2023-1382 CVE-2023-1390 CVE-2023-1513 CVE-2023-1829 CVE-2023-1838 CVE-2023-1998 CVE-2023-2008 CVE-2023-2162 CVE-2023-2166 CVE-2023-2177 CVE-2023-23006 CVE-2023-23454 CVE-2023-23455 CVE-2023-23559 CVE-2023-25012 CVE-2023-26545 CVE-2023-28327 CVE-2023-28328 CVE-2023-28772
vim: Fix CVE-2023-2426
xserver-xorg: Fix CVE-2023-0494 CVE-2023-1393

---------------
Fixes
---------------
build-appliance-image: Update to dunfell head revision (d91c3c124231)
cpio: Fix wrong CRC with ASCII CRC for large files
documentation: update for 3.1.26
e2fsprogs: fix ptest bug for second running
libbsd: Add correct license for all packages
linux-firmware: upgrade to 20230404
linux-yocto/5.4: upgrade to v5.4.243
oeqa/utils/metadata.py: Fix running oe-selftest running with no distro set
openssh: Move sshdgenkeys.service to sshd.socket
perf: Depend on native setuptools3
poky.conf: bump version for 3.1.26
populate_sdk_ext.bbclass: set METADATA_REVISION with an DISTRO override
pypi.bbclass: Set CVE_PRODUCT to PYPI_PACKAGE
run-postinsts: Set dependency for ldconfig to avoid boot issues
selftest/reproducible: Allow native/cross reuse in test
selftest: skip virgl test on ubuntu 22.10, fedora 37, and all rocky
vim: Upgrade to 9.0.1527
wic/bootimg-efi: if fixed-size is set then use that for mkdosfs

Yocto4.2.1 (Mickledore)リリース

yakuhito — Mon, 29 May 2023 07:44:08 +0000

2023年5月5日にリリースされたYocto4.2 (Mickledore)の1回目のポイントリリース4.2.1公開のアナウンスが2022年5月29日付けでありました。

当初予定より2日早く5月19日版で構築され、QAを問題無くパスしたため4日早い5月29日にリリースとなっています。
今回のリリースは、4.2リリース版が2023/4/22のコミットを使用となったため、更新されたものは通常に比べて少なくkernelバージョンの変更はありません。

次のポイントリリース4.2.2 は 2023/7/10 版で構築、QA後の2023/7/21 のリリースを予定しています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/279

----------------
Known Issues
----------------
N/A

----------------
Security Fixes
----------------
connman: Fix CVE-2023-28488
linux-yocto: Ignore CVE-2023-1652 CVE-2023-1829
ghostscript: Fx CVE-2023-28879
qemu: Ignore CVE-2023-0664
ruby: Fix CVE-2022-28738 CVE-2022-28739
tiff: Fix CVE-2022-4645
xwayland: Fix CVE-2023-1393

----------------
Fixes
----------------
apr: upgrade to 1.7.3
bind: upgrade to 9.18.13
build-appliance-image: Update to mickledore head revision
cargo: Fix build on musl/riscv
cpio: fix appending to archives larger than 2GB
cracklib: upgrade to 2.9.11
cve-update-nvd2-native: added the missing http import
dev-manual: init-manager.rst: add summary
dhcpcd: use git instead of tarballs
docs: add support for mickledore (4.2) release
gawk: Add skipped.txt to emit test to ignore
gawk: Disable known ptest fails on musl
gawk: Remove redundant patch
glib-networking: Add test retry to avoid failures
glib-networking: Correct glib error handling in test patch
gtk4: upgrade to 4.10.3
kernel-devsrc: depend on python3-core instead of python3
kernel-fitimage: Fix the default dtb config check
kernel: improve initramfs bundle processing time
libarchive: Enable acls, xattr for native as well as target
libhandy: upgrade to 1.8.2
libnotify: remove dependency dbus
libpam: Fix the xtests/tst-pam_motd[1|3] failures
libpcap: upgrade to 1.10.4
libsdl2: upgrade to 2.26.5
libxml2: Disable icu tests on musl
license.bbclass: Include LICENSE in the output when it fails to parse
linux-firmware: upgrade to 20230404
machine/qemuarm*: don't explicitly set vmalloc
maintainers.inc: Fix email address typo
maintainers.inc: Move repo to unassigned
man-pages: upgrade to 6.04
manuals: document SPDX_CUSTOM_ANNOTATION_VARS
manuals: expand init manager documentation
mesa: upgrade to 23.0.3
migration-guides: add release-notes for 4.1.4
migration-guides: fixes and improvements to 4.2 release notes
migration-guides: release-notes-4.0.9.rst: add missing SPDX info
migration-guides: release-notes-4.2: add doc improvement highlights
mpg123: upgrade to 1.31.3
mtools: upgrade to 4.0.43
oeqa/utils/metadata.py: Fix running oe-selftest running with no distro set
overview-manual: development-environment: update text and screenshots
overview-manual: update section about source archives
package_manager/ipk: fix config path generation in _create_custom_config()
pango: upgrade to 1.50.14
perl: patch out build paths from native binaries
poky.conf: bump version for 4.2.1 release
populate_sdk_ext.bbclass: redirect stderr to stdout so that both end in LOGFILE
populate_sdk_ext.bbclass: set METADATA_REVISION with an DISTRO override
python3targetconfig.bbclass: Extend PYTHONPATH instead of overwriting
qemu: Add fix for powerpc instruction fallback issue
qemu: Update ppc instruction fix to match revised upstream version
quilt: Fix merge.test race condition
recipes: Default to https git protocol where possible
ref-manual: add "Mixin" term
ref-manual: classes.rst: document devicetree.bbclass
ref-manual: classes: kernel: document automatic defconfig usage
ref-manual: classes: kernel: remove incorrect sentence opening
ref-manual: remove unused and obsolete file
ref-manual: system-requirements.rst: fix AlmaLinux variable name
ref-manual: variables.rst: add wikipedia shortcut for "getty"
ref-manual: variables.rst: document KERNEL_DANGLING_FEATURES_WARN_ONLY
ref-manual: variables.rst: don't mention the INIT_MANAGER "none" option
release-notes-4.2: remove/merge duplicates entries
release-notes-4.2: update RC3 changes
release-notes-4.2: update known issues and Repositories/Downloads
releases.svg: fix and explain duration of Hardknott 3.3
ruby: upgrade to 3.2.2
rust: upgrade to 1.68.2
selftest/distrodata: clean up exception lists in recipe maintainers test
systemd-systemctl: fix instance template WantedBy symlink construction
texinfo: upgrade to 7.0.3
unfs3: fix symlink time setting issue
update-alternatives.bbclass: fix old override syntax
vala: upgrade to 0.56.6
waffle: upgrade to 1.7.2
weston: add xwayland to DEPENDS for PACKAGECONFIG xwayland
wpebackend-fdo: upgrade to 1.14.2
xserver-xorg: upgrade to 21.1.8
xwayland: upgrade to 23.1.1

Yocto4.0.10 LTS(Kirkstone)リリース

yakuhito — Wed, 24 May 2023 05:40:04 +0000

2022年4月にリリースされたYocto4.0 LTS (Kirkstone)の10回目のポイントリリース4.0.10公開のアナウンスが2023年5月24日付けでありました。
当初予定より3日早く5月12日版で構築、QAは5月18日に完了、TSC Teamのチェックを経て、予定より2日早く早く5月24日のリリースアナウンスとなりました。

今回のリリースでの主な変更点：
　　〇 CVEに登録された脆弱性への対応
　　〇カーネルは 5.15.103 から 5.15.108 にアップグレード
　　〇 linux-yocto に対して、Upstreamで対処済であるにも関わらずNVDのデータベースに反映されていないFixに関して、cve-check実行時に対処済であることが判るようにcve-exclusion.inc　ファイルに記載

　　リリースアナウンスの時点で、5月12日以降次のポイントリリースに向けてのコミットは行われていません。

次のポイントリリース4.0.11 は 2023/6/26 版で構築、QA後の2023/7/7 のリリースを予定しています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/278

----------------
Known Issues
----------------
N/A

----------------
Security Fixes
----------------
binutils: Fix CVE-2023-1579 CVE-2023-1972 CVE-2023-25584 CVE-2023-25585 CVE-2023-25588
cargo : Ignore cve-2022-46176
connman: Fix CVE-2023-28488
curl: Fix CVE-2023-27533 CVE-2023-27534 CVE-2023-27535 CVE-2023-27536 CVE-2023-27538
ffmpeg: Fix CVE-2022-48434
freetype: Fix CVE-2023-2004
ghostscript: Fix CVE-2023-29979
git: Fix CVE-2023-25652 CVE-2023-29007
go: Fix CVE-2022-41722 CVE-2022-41724 CVE-2022-41725 CVE-2023-24534 CVE-2023-24537 CVE-2023-24538
go: Ignore CVE-2022-41716
libxml2: Fix CVE-2023-28484 CVE-2023-29469
libxpm: Fix CVE-2022-4883 CVE-2022-44617 CVE-2022-46285
linux-yocto: Ignore CVE-2021-3759 CVE-2021-4135 CVE-2021-4155 CVE-2022-0168 CVE-2022-0171 CVE-2022-1016 CVE-2022-1184 CVE-2022-1198 CVE-2022-1199 CVE-2022-1462 CVE-2022-1734 CVE-2022-1852 CVE-2022-1882 CVE-2022-1998 CVE-2022-2078 CVE-2022-2196 CVE-2022-2318 CVE-2022-2380 CVE-2022-2503 CVE-2022-26365 CVE-2022-2663 CVE-2022-2873 CVE-2022-2905 CVE-2022-2959 CVE-2022-3028 CVE-2022-3078 CVE-2022-3104 CVE-2022-3105 CVE-2022-3106 CVE-2022-3107 CVE-2022-3111 CVE-2022-3112 CVE-2022-3113 CVE-2022-3115 CVE-2022-3202 CVE-2022-32250 CVE-2022-32296 CVE-2022-32981 CVE-2022-3303 CVE-2022-33740 CVE-2022-33741 CVE-2022-33742 CVE-2022-33743 CVE-2022-33744 CVE-2022-33981 CVE-2022-3424 CVE-2022-3435 CVE-2022-34918 CVE-2022-3521 CVE-2022-3545 CVE-2022-3564 CVE-2022-3586 CVE-2022-3594 CVE-2022-36123 CVE-2022-3621 CVE-2022-3623 CVE-2022-3629 CVE-2022-3633 CVE-2022-3635 CVE-2022-3646 CVE-2022-3649 CVE-2022-36879 CVE-2022-36946 CVE-2022-3707 CVE-2022-39188 CVE-2022-39190 CVE-2022-39842 CVE-2022-40307 CVE-2022-40768 CVE-2022-4095 CVE-2022-41218 CVE-2022-4139 CVE-2022-41849 CVE-2022-41850 CVE-2022-41858 CVE-2022-42328 CVE-2022-42329 CVE-2022-42703 CVE-2022-42721 CVE-2022-42722 CVE-2022-42895 CVE-2022-4382 CVE-2022-4662 CVE-2022-47518 CVE-2022-47519 CVE-2022-47520 CVE-2022-47929 CVE-2023-0179 CVE-2023-0394 CVE-2023-0461 CVE-2023-0590 CVE-2023-1073 CVE-2023-1074 CVE-2023-1077 CVE-2023-1078 CVE-2023-1079 CVE-2023-1095 CVE-2023-1118 CVE-2023-1249 CVE-2023-1252 CVE-2023-1281 CVE-2023-1382 CVE-2023-1513 CVE-2023-1829 CVE-2023-1838 CVE-2023-1998 CVE-2023-2006 CVE-2023-2008 CVE-2023-2162 CVE-2023-2166 CVE-2023-2177 CVE-2023-22999 CVE-2023-23002 CVE-2023-23004 CVE-2023-23454 CVE-2023-23455 CVE-2023-23559 CVE-2023-25012 CVE-2023-26545 CVE-2023-28327 CVE-2023-28328
nasm: Fix CVE-2022-44370
python3-cryptography: Fix CVE-2023-23931
qemu: Ignore CVE-2023-0664
ruby: Fix CVE-2023-28755 CVE-2023-28756
screen: Fix CVE-2023-24626
shadow: Fix CVE-2023-29383
tiff: Fix CVE-2022-4645
webkitgtk: Fix CVE-2022-32888 CVE-2022-32923
xserver-xorg: Fix CVE-2023-1393

----------------
Fixes
----------------
bitbake: bin/utils: Ensure locale en_US.UTF-8 is available on the system
build-appliance-image: Update to kirkstone head revision
cmake: add CMAKE_SYSROOT to generated toolchain file
glibc: stable 2.35 branch updates.
kernel-devsrc: depend on python3-core instead of python3
kernel: improve initramfs bundle processing time
libarchive: Enable acls, xattr for native as well as target
libbsd: Add correct license for all packages
libpam: Fix the xtests/tst-pam_motd[1|3] failures
libxpm: upgrade to 3.5.15
linux-firmware: upgrade to 20230404
linux-yocto/5.15: upgrade to v5.15.108
migration-guides: add release-notes for 4.0.9
oeqa/utils/metadata.py: Fix running oe-selftest running with no distro set
openssl: Move microblaze to linux-latomic config
package.bbclass: correct check for /build in copydebugsources()
poky.conf: bump version for 4.0.10
populate_sdk_base: add zip options
populate_sdk_ext.bbclass: set METADATA_REVISION with an DISTRO override
run-postinsts: Set dependency for ldconfig to avoid boot issues
update-alternatives.bbclass: fix old override syntax
wic/bootimg-efi: if fixed-size is set then use that for mkdosfs
wpebackend-fdo: upgrade to 1.14.2
xorg-lib-common: Add variable to set tarball type
xserver-xorg: upgrade to 21.1.8

Yocto3.1.25 LTS(Dunfell 23.25)リリース

yakuhito — Sun, 14 May 2023 23:58:06 +0000

一昨年4月にリリースされたYocto3.1LTS(Dunfell)の25回目のポイントリリース、3.1.25公開のアナウンスが 2023年5月12日付けでありました。

予定より5日早い5月3日版で構築、QAを経て予定より7日早く、5月12日にリリースされています。

今回のリリースでは、CVEへの対応、UpStreanでのアップデート対応の他、SBoMに対応したSPDXを生成するcreate-spdx2.2.bbclassのバックポートが含まれ、dunfellでもSBoMの生成が可能となりました。
kernelは5.4.230 から 5.4.237 にアップデートしています。

5/15 9:00 現在、5/2以降のコミットは行われていません。

次のバージョン 3.1.26 は 2023/06/19版で構築、2023/6/30リリースの予定となっています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/277

----------------
Known Issues
----------------
N/A

----------------
Security Fixes
----------------
curl: Fix CVE-2023-23916 CVE-2023-27534 CVE-2023-27538 CVE-2023-27533 CVE-2023-27535 CVE-2023-27536
ffmpeg: Fix CVE-2022-3341
ghostscript: Fix CVE-2021-45944
git: Fix CVE-2023-22490 CVE-2023-23946
git: Ignore CVE-2023-22743
go: Fix CVE-2020-29510 CVE-2022-41722 CVE-2022-41723 CVE-2023-24534 CVE-2023-24537
go: Ignore CVE-2022-1705 CVE-2022-41716
libarchive: Fix CVE-2022-26280
libksba: Fix CVE-2022-3515
openssl: Fix CVE-2023-0464 CVE-2023-0465 CVE-2023-0466
qemu: Fix CVE-2020-15469 CVE-2020-15859 CVE-2020-17380 CVE-2020-35504 CVE-2020-35505 CVE-2021-3409 CVE-2022-26354 CVE-2022-4144
qemu: Ignore CVE-2023-0664
ruby: Fix CVE-2023-28756
screen: Fix CVE-2023-24626
sudo: Fix CVE-2023-28486 CVE-2023-28487
systemd: Fix CVE-2023-26604
vim: Fix CVE-2023-1127 CVE-2023-1170 CVE-2023-1175 CVE-2023-1264 CVE-2023-1355

----------------
Fixes
----------------
base-files: Drop localhost.localdomain from hosts file
bitbake: tests/fetch.py: fix link to project documentation
bmap-tools: switch to main branch
build-appliance-image: Update to dunfell head revision
buildtools-tarball: Handle spaces within user $PATH
classes/create-spdx: Backport
classes/package: Add extended packaged data
classes/package: Use gzip for extended package data
create-spdx: Use gzip for compression
cve-check: Fix false negative version issue
documentation: update for 3.1.25
ghostscript: add CVE tag "CVE-2021-45944" for check-stack-limits-after-function-evalution.patch
glibc: Add missing binutils dependency
lib/resulttool: fix typo breaking resulttool log --ptest
licenses: Add GPL+ licenses to map
linux-yocto/5.4: update to v5.4.237
oeqa rtc.py: skip if read-only-rootfs
poky.conf: bump version for 3.1.25
populate_sdk_base: add zip options
populate_sdk_ext: Handle spaces within user $PATH
pybootchartui: Fix python syntax issue
qemu: fix build error introduced by CVE-2021-3929 fix
qemu: fix compile error which imported by CVE-2022-4144
staging/multilib: Fix manifest corruption
staging: Separate out different multiconfig manifests
systemd: Fix systemd when used with busybox less
systemd: fix wrong nobody-group assignment
toolchain-scripts: Handle spaces within user $PATH
vim: set modified-by to the recipe MAINTAINER
vim: upgrade to 9.0.1429

Yocto4.1.4 (Langdale) リリース

yakuhito — Sun, 14 May 2023 23:56:41 +0000

Yocto Project から　Yocto4.1.4(Langdale) 公開のアナウンスが2023年5月12日付けでありました。
2023/04/28版で構築が行われQAを経て予定されていた5月13日より1日早くのリリースとなっています。

今回のリリースでは、従来同様CVEの対応及びレシピのアップデートの他、kernel.orgでリリース後に対応したCVEがcve-check実行時に反映されるようになりました。　
linux-yocto_5.15 は、5.15.108 にアップデートされています。（5.19は据え置き）

LTSとLTSの間にリリースされたバージョンのため、今回のリリースでYocto Projectとしてのメンテナンスは終了となります。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/276

----------------
Known Issues
----------------
N/A

----------------
Security Fixes
----------------
cve-extra-exclusions/linux-yocto: Ignore CVE-2020-27784 CVE-2021-3669 CVE-2021-3759 CVE-2021-4218 CVE-2022-0480 CVE-2022-1184 CVE-2022-1462 CVE-2022-2308 CVE-2022-2327 CVE-2022-26365 CVE-2022-2663 CVE-2022-2785 CVE-2022-3176 CVE-2022-33740 CVE-2022-33741 CVE-2022-33742 CVE-2022-3526 CVE-2022-3563 CVE-2022-3621 CVE-2022-3623 CVE-2022-3624 CVE-2022-3625 CVE-2022-3629 CVE-2022-3630 CVE-2022-3633 CVE-2022-3635 CVE-2022-3636 CVE-2022-3637 CVE-2022-3646 CVE-2022-3649
cve-extra-exclusions/linux-yocto 5.15: Ignore CVE-2022-3435 CVE-2022-3534 CVE-2022-3564 CVE-2022-3564 CVE-2022-3619 CVE-2022-3640 CVE-2022-42895 CVE-2022-42896 CVE-2022-4382 CVE-2023-0266 CVE-2023-0394
epiphany: Fix CVE-2023-26081
git: Ignore CVE-2023-22743
go: Fix CVE-2022-41722 CVE-2022-41723 CVE-2022-41724 CVE-2022-41725 CVE-2023-24532
harfbuzz: Fix CVE-2023-25193
libmicrohttpd: Fix CVE-2023-27371
libxml2: Fix CVE-2022-40303 CVE-2022-40304
openssl: Fix CVE-2023-0464 CVE-2023-0465 CVE-2023-0466
python3-setuptools: Fix CVE-2022-40897
qemu: Fix CVE-2022-4144
screen: Fix CVE-2023-24626
shadow: Ignore CVE-2016-15024
tiff: Fix CVE-2022-48281 CVE-2023-0795 CVE-2023-0796 CVE-2023-0797 CVE-2023-0798 CVE-2023-0799 CVE-2023-0800 CVE-2023-0801 CVE-2023-0802 CVE-2023-0803 CVE-2023-0804
vim: Fix CVE-2023-1127 CVE-2023-1170 CVE-2023-1175 CVE-2023-1264 CVE-2023-1355
xdg-utils: Fix CVE-2022-4055
xserver-xorg: Fix for CVE-2023-1393

----------------
Fixes
----------------
apt: re-enable version check
base-files: Drop localhost.localdomain from hosts file
binutils: Fix nativesdk ld.so search
bitbake: bin/utils: Ensure locale en_US.UTF-8 is available on the system
bitbake: cookerdata: Drop dubious exception handling code
bitbake: cookerdata: Improve early exception handling
bitbake: cookerdata: Remove incorrect SystemExit usage
bitbake: fetch/git: Fix local clone url to make it work with repo
bitbake: toaster: Add refreshed oe-core and poky fixtures
bitbake: toaster: fixtures/README: django 1.8 -> 3.2
bitbake: toaster: fixtures/gen_fixtures.py: update branches
bitbake: utils: Allow to_boolean to support int values
bmap-tools: switch to main branch
build-appliance-image: Update to langdale head revision
buildtools-tarball: Handle spaces within user $PATH
busybox: move hwclock init earlier in startup
cargo.bbclass: use offline mode for building
cpio: Fix wrong CRC with ASCII CRC for large files
cracklib: update github branch to 'main'
cups: add/fix web interface packaging
cups: check PACKAGECONFIG for pam feature
cups: use BUILDROOT instead of DESTDIR
cve-check: Fix false negative version issue
devtool/upgrade: do not delete the workspace/recipes directory
dhcpcd: Fix install conflict when enable multilib.
ffmpeg: fix build failure when vulkan is enabled
filemap.py: enforce maximum of 4kb block size
gcc-shared-source: do not use ${S}/.. in deploy_source_date_epoch
glibc: Add missing binutils dependency
go: upgrade to 1.19.7
image_types: fix multiubi var init
image_types: fix vname var init in multiubi_mkfs() function
iso-codes: upgrade to 4.13.0
kernel-devsrc: fix mismatched compiler warning
lib/oe/gpg_sign.py: Avoid race when creating .sig files in detach_sign
lib/resulttool: fix typo breaking resulttool log --ptest
libcomps: Fix callback function prototype for PyCOMPS_hash
libdnf: upgrade to 0.70.0
libgit2: update license information
libmicrohttpd: upgrade to 0.9.76
linux-yocto-rt/5.15: upgrade to -rt59
linux-yocto/5.15: upgrade to v5.15.108
linux: inherit pkgconfig in kernel.bbclass
lttng-modules: upgrade to v2.13.9
lua: Fix install conflict when enable multilib.
mdadm: Fix raid0, 06wrmostly and 02lineargrow tests
mesa-demos: packageconfig weston should have a dependency on wayland-protocols
meson: Fix wrapper handling of implicit setup command
meson: remove obsolete RPATH stripping patch
migration-guides: update release notes
oeqa ping.py: avoid busylooping failing ping command
oeqa ping.py: fail test if target IP address has not been set
oeqa rtc.py: skip if read-only-rootfs
oeqa/runtime: clean up deprecated backslash expansion
oeqa/sdk: Improve Meson test
oeqa/selftest/cases/package.py: adding unittest for package rename conflicts
oeqa/selftest/cases/runqemu: update imports
oeqa/selftest/prservice: Improve debug output for failure
oeqa/selftest/reproducible: Split different packages from missing packages output
oeqa/selftest: OESelftestTestContext: convert relative to full path when newbuilddir is provided
oeqa/targetcontrol: do not set dump_host_cmds redundantly
oeqa/targetcontrol: fix misspelled RuntimeError
oeqa/targetcontrol: remove unused imports
oeqa/utils/commands: fix usage of undefined EPIPE
oeqa/utils/commands: remove unused imports
oeqa/utils/qemurunner: replace hard-coded user 'root' in debug output
oeqs/selftest: OESelftestTestContext: replace the os.environ after subprocess.check_output
package.bbclass: check packages name conflict in do_package
pango: upgrade to 1.50.13
piglit: Fix build time dependency
poky.conf: bump version for 4.1.4
populate_sdk_base: add zip options
populate_sdk_ext: Handle spaces within user $PATH
pybootchart: Fix extents handling to account for cpu/io/mem pressure changes
pybootchartui: Fix python syntax issue
report-error: catch Nothing PROVIDES error
rpm: Fix hdr_hash function prototype
run-postinsts: Set dependency for ldconfig to avoid boot issues
runqemu: respect IMAGE_LINK_NAME
runqemu: Revert "workaround for APIC hang on pre 4.15 kernels on qemux86q"
scripts/lib/buildstats: handle top-level build_stats not being complete
selftest/recipetool: Stop test corrupting tinfoil class
selftest/runtime_test/virgl: Disable for all Rocky Linux
selftest: devtool: set BB_HASHSERVE_UPSTREAM when setting SSTATE_MIRROR
selftest: runqemu: better check for ROOTFS: in the log
selftest: runqemu: use better error message when asserts fail
shadow: Fix can not print full login timeout message
staging/multilib: Fix manifest corruption
staging: Separate out different multiconfig manifests
sudo: upgrade to 1.9.13p3
systemd.bbclass: Add /usr/lib/systemd to searchpaths as well
systemd: add group sgx to udev package
systemd: fix wrong nobody-group assignment
timezone: use 'tz' subdir instead of ${WORKDIR} directly
toolchain-scripts: Handle spaces within user $PATH
tzcode-native: fix build with gcc-13 on host
tzdata: upgrade to 2023c
tzdata: use separate B instead of WORKDIR for zic output
u-boot: Map arm64 into map for u-boot dts installation
uninative: Upgrade to 3.9 to include glibc 2.37
vala: Fix install conflict when enable multilib.
vim: add missing pkgconfig inherit
vim: set modified-by to the recipe MAINTAINER
vim: upgrade to 9.0.1429
xcb-proto: Fix install conflict when enable multilib.

Yocto4.2 (Mickledore) リリース

yakuhito — Mon, 08 May 2023 00:28:48 +0000

Yocto4.2 (Mickledore ) リリース

Yocto Project から　Yocto4.1(Mickledore ) 公開のアナウンスが2023年5月5日付けでありました。

当初は、4月3日版で構築、QA後の4月28日にリリース予定でしたが、QAテスト中に複数の問題が発生し対応を行った4月22日版で構築されたRC3がQAを経てリリースされています。
4月22日以降、git.yoctopeoject.org 上ではリリースに合わせたドキュメントの更新が行われています。

・kernel はLTSカーネル6.1.25 及び5.15.108が提供されています。
・glibc は。2.37 が提供されています。
・開発ホストでは。Python3.8 及びgcc8.0 以降が必要となります。

今回のリリースは、LTSとLTSの間でのリリースで幾つかの機能追加が行われています。
一部を紹介しますと、
・bitbakeの機能追加
・rustの構築に関する機能追加
・サポートアーキテクチャとして、 LoongArch　の追加
・x86-64-v3　　tune の追加
・gtk4の追加　(meta-gnomeから移動)
・32bitアーキテクチャ向けのY2038対応の追加
といったものがあります。
より詳細な情報につきましては、弊社ブログ　https://www.lineo.co.jp/blog/yocto/ 5月号にてお知らせします。

次のポイントリリース 4.2.1 は 2023年5月22版で構築、QA後の2023年6月2日を予定しています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/275

-----------------------------------

New Features / Enhancements in 4.2
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

-- Linux kernel 6.1, glibc 2.37 and ~350 other recipe upgrades

-- Python 3.8+ and GCC 8.0+ are now the minimum required versions on the build host
For host distributions that do not provide it, this is included as part of the
buildtools tarball.

-- BitBake in this release now supports a new addpylib directive to enable
Python libraries within layers.

This directive should be added to your layer configuration
as in the below example from 'meta/conf/layer.conf' :

addpylib ${LAYERDIR}/lib oe

-- BitBake in this release now supports a new addpylib directive to enable
Python libraries within layers. For more information,
see `bitbake-user-manual/bitbake-user-manual-metadata:extending python library code`.

-- BitBake has seen multiple internal changes that may improve
memory and disk usage as well as parsing time, in particular:

- BitBake's Cooker server is now multithreaded.

- Ctrl+C can now be used to interrupt some long-running operations
that previously ignored it.

- BitBake's cache has been extended to include more hash
debugging data, but has also been optimized to compress cache data

- BitBake's UI will now ping the server regularly to ensure
it is still alive.

-- New variables:

- 'VOLATILE_TMP_DIR' allows to specify
whether '/tmp' should be on persistent storage
or in RAM.

- 'SPDX_CUSTOM_ANNOTATION_VARS' allows to add
specific comments to the 'SPDX' description of a recipe.

-- Rust improvements:

- This release adds Cargo support on the target, and includes
automated QA tests for this functionality.

- It also supports checksums for Rust crates and makes
them mandatory for each crate in a recipe.

- New 'cargo-update-recipe-crates' class to
enable updating 'SRC_URI' crate lists from 'Cargo.lock'

- Enabled building Rust for baremetal targets

- You can now also easily select to build beta or nightly
versions of Rust with a new 'RUST_CHANNEL' variable
(use at own risk)

- Support for local GitHub repos in 'SRC_URI' as
replacements for Cargo dependencies

- Use built-in Rust targets for '-native' builds to save several
minutes building the Rust toolchain

-- Architecture-specific enhancements:

- This release adds initial support for the LoongArch
(loongarch64) architecture, though there is no testing for it yet.

- New 'x86-64-v3' tunes (AVX, AVX2, BMI1, BMI2, F16C, FMA, LZCNT, MOVBE, XSAVE)

- go: add support to build on ppc64le
- rust: rustfmt now working and installed for riscv32
- libpng: enable NEON for aarch64 to ensure consistency with arm32.
- baremetal-helloworld: Enable x86 and x86-64 ports

-- Kernel-related enhancements:

- Added some support for building 6.2/6.3-rc kernels
- linux-yocto-dev: mark as compatible with qemuarm64 and qemuarmv5
- Add kernel specific OBJCOPY to help switching toolchains cleanly for kernel build between gcc and clang

-- New core recipes:

- debugedit
- gtk4 (import from meta-gnome)
- gcr: add recipe for gcr-4
- graphene (import from meta-oe)
- libc-test
- libportal (import from meta-gnome)
- libslirp
- libtest-fatal-perl
- libtest-warnings-perl (import from meta-perl)
- libtry-tiny-perl
- python3-build
- python3-pyproject-hooks
- python3-hatch-fancy-pypi-readme
- python3-unittest-automake

-- QEMU/runqemu enhancements:

- Set 'QB_SMP' with ?= to make it easier to modify
- Set 'QB_CPU' with ?= to make it easier to modify (x86 configuration only)
- New 'QB_NFSROOTFS_EXTRA_OPT' to allow extra options to be appended to the NFS rootfs options in kernel boot args, e.g. "wsize=4096,rsize=4096"
- New 'QB_SETUP_CMD' and 'QB_CLEANUP_CMD' to enable running custom shell setup and cleanup commands before and after QEMU.
- 'QB_DEFAULT_KERNEL' now defaults to pick the bundled initramfs kernel image if the Linux kernel image is generated with 'INITRAMFS_IMAGE_BUNDLE' set to "1"
- Split out the QEMU guest agent to its own 'qemu-guest-agent' package
- runqemu: new 'guestagent' option to enable communication with the guest agent
- runqemu: respect 'IMAGE_LINK_NAME' when searching for image

-- Image-related enhancements:

- Add 7-Zip support in image conversion types (7zip)
- New 'IMAGE_MACHINE_SUFFIX' variable to allow easily removing machine name suffix from image file names

-- wic Image Creator enhancements:

- bootimg-efi.py : add support for directly loading Linux kernel UEFI stub
- bootimg-efi.py : implement '--include-path'
- Allow usage of 'fstype=none' to specify an unformatted partition
- Implement repeatable disk identifiers based on 'SOURCE_DATE_EPOCH'

-- FIT image related improvements:

- FIT image signing support has been reworked to remove interdependencies and make it more easily extensible
- Skip FDT section creation for applicable symlinks to avoid the same dtb being duplicated
- New 'FIT_CONF_DEFAULT_DTB' variable to enable selecting default dtb when multiple dtbs exist

-- SDK-related improvements:

- Extended the following recipes to nativesdk:

- bc
- gi-docgen
- gperf
- python3-iniconfig
- python3-atomicwrites
- python3-markdown
- python3-smartypants
- python3-typogrify
- ruby
- unifdef

- New 'SDK_ZIP_OPTIONS' variable to enable passing additional options to the zip command when preparing the SDK zip archive
- New Rust SDK target packagegroup (packagegroup-rust-sdk-target)

-- Testing:

- The ptest images have changed structure in this release. The
underlying core-image-ptest recipe now uses 'BBCLASSEXTEND' to
create a variant for each ptest enabled recipe in OE-Core.

For example, this means that core-image-ptest-bzip2,
core-image-ptest-lttng-tools and many more image targets now exist
and can be built/tested individually.

The core-image-ptest-all and core-image-ptest-fast targets are now
wrappers that target groups of individual images and means that the tests
can be executed in parallel during our automated testing. This also means
the dependencies are more accurately tested.

- It is now possible to track regression changes between releases using
'yocto_testresults_query.py', which is a thin wrapper over 'resulttool'.
Here is an example command, which allowed to spot and fix a regression in the
'quilt' ptest:

yocto_testresults_query.py regression-report 4.2_M1 4.2_M2

See this blog post about regression detection:

https://bootlin.com/blog/continuous-integration-in-yocto-improving-the-r...

- This release adds support for parallel ptest execution with a ptest per image.
This takes ptest execution time from 3.5 hours to around 45 minutes on the autobuilder.

- Basic Rust compile/run and cargo tests

- New 'python3-unittest-automake' recipe which provides modules for pytest
and unittest to adjust their output to automake-style for easier integration
with the ptest system.

- ptest support added to 'bc', 'cpio' and 'gnutls', and fixes made to
ptests in numerous other recipes.

- 'ptest-runner' now adds a non-root "ptest" user to run tests.

- 'resulttool': add a '--list-ptest' option to the log subcommand to list ptest names
in a results file

- 'resulttool': regression: add metadata filtering for oeselftest

-- New 'PACKAGECONFIG' options in the following recipes:

- at-spi2-core
- base-passwd
- cronie
- cups
- curl
- file
- gstreamer1.0-plugins-good
- gtk+3
- iproute2
- libsdl2
- libtiff
- llvm
- mesa
- psmisc
- qemu
- sudo
- systemd
- tiff
- util-linux

-- Extended the following recipes to native:

- iso-codes
- libxkbcommon
- p11-kit
- python3-atomicwrites
- python3-dbusmock
- python3-iniconfig
- xkeyboard-config

-- Utility script changes:

- 'devtool': ignore patch-fuzz errors when extracting source in order to enable fixing fuzz issues
- 'oe-setup-layers': make efficiently idempotent
- 'oe-setup-layers': print a note about submodules if present
- New 'buildstats-summary' script to show a summary of the buildstats data
- report-error.bbclass: catch 'Nothing PROVIDES' error
- 'combo-layer': add 'sync-revs' command
- 'convert-overrides': allow command-line customizations

-- bitbake-layers improvements:

- 'layerindex-fetch': checkout layer(s) branch when clone exists
- 'create': add '-a'/'--add-layer option' to add layer to 'bblayers.conf' after creating layer
- 'show-layers': improve output layout

-- Other BitBake improvements:

- Inline Python snippets can now include dictionary expressions
- Evaluate the value of export/unexport/network flags so that they can be reset to "0"
- Make 'EXCLUDE_FROM_WORLD' boolean so that it can be reset to "0"
- Support int values in 'bb.utils.to_boolean()' in addition to strings
- 'bitbake-getvar': Add a 'quiet' command line argument
- Allow the '@' character in variable flag names
- Python library code will now be included when calculating task hashes
- 'fetch2/npmsw': add more short forms for git operations
- Display a warning when 'SRCREV = "${AUTOREV}"' is set too late to be effective
- Display all missing 'SRC_URI' checksums at once
- Improve error message for a missing multiconfig
- Switch to a new 'BB_CACHEDIR' variable for codeparser cache location
- Mechanism introduced to reduce the codeparser cache unnecessarily growing in size

-- Packaging changes:

- 'rng-tools' is no longer recommended by 'openssh', and the 'rng-tools'
service files have been split out to their own package
- linux-firmware: split 'rtl8761' and 'amdgpu' firmware
- linux-firmware: add new firmware file to '${PN}-qcom-adreno-a530'
- iproute2: separate 'routel' and add Python dependency
- xinetd: move 'xconv.pl' script to separate package
- perf: enable debug/source packaging

-- Miscellaneous changes:

- Supporting 64 bit dates on 32 bit platforms: several packages have been
updated to pass year 2038 tests, and a QA check for 32 bit time and file
offset functions has been added (default off)

- Patch fuzz/Upstream-Status checking has been reworked:

- Upstream-Status checking is now configurable from 'WARN_QA'/'ERROR_QA' (patch-status-core)
- Can now be enabled for non-core layers (patch-status-noncore)
- 'patch-fuzz' is now in 'ERROR_QA' by default, and actually stops the build

- Many packages were updated to add large file support.

- vulkan-loader: allow headless targets to build the loader
- dhcpcd: fix to work with systemd
- u-boot: add /boot to 'SYSROOT_DIRS' to allow boot files to be used by other recipes
- linux-firmware: don't put the firmware into the sysroot
- cups: add 'PACKAGECONFIG' to control web interface and default to off
- buildtools-tarball: export certificates to python and curl
- yocto-check-layer: allow OE-Core to be tested
- yocto-check-layer: check for patch file upstream status
- boost: enable building 'Boost.URL' library
- native.bbclass: drop special variable handling
- Poky: make it easier to set 'INIT_MANAGER' from local.conf
- 'create-spdx': add support for custom annotations (SPDX_CUSTOM_ANNOTATION_VARS)
- 'create-spdx': report downloads as separate packages
- 'create-spdx': remove the top-level image SPDX file and the JSON index file from 'DEPLOYDIR' to avoid confusion
- 'os-release': replace 'DISTRO_CODENAME' with 'VERSION_CODENAME' (still set from 'DISTRO_CODENAME')
- weston: add kiosk shell
- overlayfs.bbclass: Allow unused mount points
- 'sstatesig': emit more helpful error message when not finding sstate manifest
- pypi.bbclass: Set 'SRC_URI' downloadfilename with an optional prefix
- 'poky-bleeding' distro: update and rework
- package.bbclass : check if package names conflict via 'PKG:${PN}' override in 'do_package'
- cve-update-nvd2-native: new NVD CVE database fetcher using the 2.0 API
- mirrors.bbclass: use shallow tarball for 'binutils-native'/'nativesdk-binutils'
- 'meta/conf': move default configuration templates into 'meta/conf/templates/default'
- binutils: enable '--enable-new-dtags' as per many Linux distributions
- base-files: drop 'localhost.localdomain' from hosts file as per many Linux distributions
- packagegroup-core-boot: make 'init-ifupdown' package a recommendation

Known Issues in 4.2
~~~~~~~~~~~~~~~~~~~

-- N/A

Recipe License changes in 4.2
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

The following corrections have been made to the 'LICENSE' values set by recipes:

-- curl: set 'LICENSE' appropriately to 'curl' as it is a special derivative of the MIT/X license, not exactly that license.
-- libgit2: added 'Zlib', 'ISC', 'LGPL-2.1-or-later' and 'CC0-1.0' to 'LICENSE' covering portions of the included code.
-- linux-firmware: set package 'LICENSE' appropriately for all qcom packages

Security Fixes in 4.2
~~~~~~~~~~~~~~~~~~~~~

-- apr-util: CVE-2022-25147
-- apr: CVE-2022-24963 CVE-2022-28331
-- binutils: CVE-2022-4285 CVE-2023-25586
-- curl: CVE-2022-32221 CVE-2022-35260 CVE-2022-42915 CVE-2022-42916 CVE-2022-43551 CVE-2022-43552
-- dbus: CVE-2022-42010 CVE-2022-42011 CVE-2022-42012
-- epiphany: CVE-2023-26081
-- expat: CVE-2022-43680
-- ffmpeg: CVE-2022-3964 CVE-2022-3965
-- git: CVE-2022-23521 CVE-2022-23521 CVE-2022-39260 CVE-2022-41903 CVE-2022-41953 (ignored)
-- glibc: CVE-2023-25139 (ignored)
-- go: CVE-2023-24532 CVE-2023-24537
-- grub2: CVE-2022-2601 CVE-2022-3775 CVE-2022-28736
-- inetutils: CVE-2019-0053
-- less: CVE-2022-46663
-- libarchive: CVE-2022-36227
-- libinput: CVE-2022-1215
-- libksba: CVE-2022-47629
-- libpam: CVE-2022-28321
-- libpng: CVE-2019-6129
-- libx11: CVE-2022-3554
-- openssh: CVE-2023-28531
-- openssl: CVE-2022-3358 CVE-2022-3786 CVE-2022-3602 CVE-2022-3996 CVE-2023-0286 CVE-2022-4304 CVE-2022-4203 CVE-2023-0215 CVE-2022-4450 CVE-2023-0216 CVE-2023-0217 CVE-2023-0401 CVE-2023-0464
-- pkgconf: CVE-2023-24056
-- ppp: CVE-2022-4603
-- python3-cryptography{-vectors}: CVE-2022-3602 CVE-2022-3786 CVE-2023-23931
-- python3: CVE-2022-37460
-- qemu: CVE-2022-3165
-- rust: CVE-2022-46176
-- rxvt-unicode: CVE-2022-4170
-- screen: CVE-2023-24626
-- shadow: CVE-2023-29383 CVE-2016-15024 (ignored)
-- sudo: CVE-2023-22809 CVE-2022-43995
-- systemd: CVE-2022-4415 (ignored)
-- tar: CVE-2022-48303
-- tiff: CVE-2022-3599 CVE-2022-3597 CVE-2022-3626 CVE-2022-3627 CVE-2022-3570 CVE-2022-3598 CVE-2022-3970 CVE-2022-48281
-- vim: CVE-2022-3352 CVE-2022-4141 CVE-2023-0049 CVE-2023-0051 CVE-2023-0054 CVE-2023-0288 CVE-2023-1127 CVE-2023-1170 CVE-2023-1175 CVE-2023-1127 CVE-2023-1170 CVE-2023-1175 CVE-2023-1264 CVE-2023-1355 CVE-2023-0433 CVE-2022-47024 CVE-2022-3705
-- xdg-utils: CVE-2022-4055
-- xserver-xorg: CVE-2022-3550 CVE-2022-3551 CVE-2023-1393 CVE-2023-0494 CVE-2022-3553 (ignored)

Recipe Upgrades in 4.2
~~~~~~~~~~~~~~~~~~~~~~

-- acpid: upgrade 2.0.33 -> 2.0.34
-- adwaita-icon-theme: update 42.0 -> 43
-- alsa-lib: upgrade 1.2.7.2 -> 1.2.8
-- alsa-ucm-conf: upgrade 1.2.7.2 -> 1.2.8
-- alsa-utils: upgrade 1.2.7 -> 1.2.8
-- apr: update 1.7.0 -> 1.7.2
-- apr-util: update 1.6.1 -> 1.6.3
-- argp-standalone: replace with a maintained fork
-- at-spi2-core: upgrade 2.44.1 -> 2.46.0
-- autoconf-archive: upgrade 2022.09.03 -> 2023.02.20
-- babeltrace: upgrade 1.5.8 -> 1.5.11
-- base-passwd: Update to 3.6.1
-- bash: update 5.1.16 -> 5.2.15
-- bind: upgrade 9.18.7 -> 9.18.12
-- binutils: Upgrade to 2.40 release
-- bluez: update 5.65 -> 5.66
-- boost-build-native: update 1.80.0 -> 1.81.0
-- boost: upgrade 1.80.0 -> 1.81.0
-- btrfs-tools: upgrade 5.19.1 -> 6.1.3
-- busybox: 1.35.0 -> 1.36.0
-- ccache: upgrade 4.6.3 -> 4.7.4
-- cmake: update 3.24.0 -> 3.25.2
-- cracklib: upgrade to v2.9.10
-- curl: upgrade 7.86.0 -> 8.0.1
-- dbus: upgrade 1.14.0 -> 1.14.6
-- diffoscope: upgrade 221 -> 236
-- diffstat: upgrade 1.64 -> 1.65
-- diffutils: update 3.8 -> 3.9
-- dos2unix: upgrade 7.4.3 -> 7.4.4
-- dpkg: update 1.21.9 -> 1.21.21
-- dropbear: upgrade 2022.82 -> 2022.83
-- dtc: upgrade 1.6.1 -> 1.7.0
-- e2fsprogs: upgrade 1.46.5 -> 1.47.0
-- ed: upgrade 1.18 -> 1.19
-- elfutils: update 0.187 -> 0.188
-- ell: upgrade 0.53 -> 0.56
-- enchant2: upgrade 2.3.3 -> 2.3.4
-- encodings: update 1.0.6 -> 1.0.7
-- epiphany: update 42.4 -> 43.1
-- ethtool: upgrade 5.19 -> 6.2
-- expat: upgrade to 2.5.0
-- ffmpeg: upgrade 5.1.1 -> 5.1.2
-- file: upgrade 5.43 -> 5.44
-- flac: update 1.4.0 -> 1.4.2
-- font-alias: update 1.0.4 -> 1.0.5
-- fontconfig: upgrade 2.14.0 -> 2.14.2
-- font-util: upgrade 1.3.3 -> 1.4.0
-- freetype: update 2.12.1 -> 2.13.0
-- gawk: update 5.1.1 -> 5.2.1
-- gcr3: update 3.40.0 -> 3.41.1
-- gcr: rename gcr -> gcr3
-- gdb: Upgrade to 13.1
-- gdk-pixbuf: upgrade 2.42.9 -> 2.42.10
-- gettext: update 0.21 -> 0.21.1
-- ghostscript: update 9.56.1 -> 10.0.0
-- gi-docgen: upgrade 2022.1 -> 2023.1
-- git: upgrade 2.37.3 -> 2.39.2
-- glib-2.0: update 2.72.3 -> 2.74.6
-- glibc: upgrade to 2.37 release + stable updates
-- glib-networking: update 2.72.2 -> 2.74.0
-- glslang: upgrade 1.3.236.0 -> 1.3.239.0
-- gnu-config: upgrade to latest revision
-- gnupg: upgrade 2.3.7 -> 2.4.0
-- gnutls: upgrade 3.7.7 -> 3.8.0
-- gobject-introspection: upgrade 1.72.0 -> 1.74.0
-- go: update 1.19 -> 1.20.1
-- grep: update 3.7 -> 3.10
-- gsettings-desktop-schemas: upgrade 42.0 -> 43.0
-- gstreamer1.0: upgrade 1.20.3 -> 1.22.0
-- gtk+3: upgrade 3.24.34 -> 3.24.36
-- gtk4: update 4.8.2 -> 4.10.0
-- harfbuzz: upgrade 5.1.0 -> 7.1.0
-- hdparm: update 9.64 -> 9.65
-- help2man: upgrade 1.49.2 -> 1.49.3
-- icu: update 71.1 -> 72-1
-- ifupdown: upgrade 0.8.37 -> 0.8.41
-- igt-gpu-tools: upgrade 1.26 -> 1.27.1
-- inetutils: upgrade 2.3 -> 2.4
-- init-system-helpers: upgrade 1.64 -> 1.65.2
-- iproute2: upgrade 5.19.0 -> 6.2.0
-- iptables: update 1.8.8 -> 1.8.9
-- iputils: update to 20221126
-- iso-codes: upgrade 4.11.0 -> 4.13.0
-- jquery: upgrade 3.6.0 -> 3.6.3
-- kexec-tools: upgrade 2.0.25 -> 2.0.26
-- kmscube: upgrade to latest revision
-- libarchive: upgrade 3.6.1 -> 3.6.2
-- libbsd: upgrade 0.11.6 -> 0.11.7
-- libcap: upgrade 2.65 -> 2.67
-- libdnf: update 0.69.0 -> 0.70.0
-- libdrm: upgrade 2.4.113 -> 2.4.115
-- libedit: upgrade 20210910-3.1 -> 20221030-3.1
-- libepoxy: update 1.5.9 -> 1.5.10
-- libffi: upgrade 3.4.2 -> 3.4.4
-- libfontenc: upgrade 1.1.6 -> 1.1.7
-- libgit2: upgrade 1.5.0 -> 1.6.3
-- libgpg-error: update 1.45 -> 1.46
-- libhandy: update 1.6.3 -> 1.8.1
-- libical: upgrade 3.0.14 -> 3.0.16
-- libice: update 1.0.10 -> 1.1.1
-- libidn2: upgrade 2.3.3 -> 2.3.4
-- libinput: upgrade 1.19.4 -> 1.22.1
-- libjpeg-turbo: upgrade 2.1.4 -> 2.1.5.1
-- libksba: upgrade 1.6.0 -> 1.6.3
-- libmicrohttpd: upgrade 0.9.75 -> 0.9.76
-- libmodule-build-perl: update 0.4231 -> 0.4232
-- libmpc: upgrade 1.2.1 -> 1.3.1
-- libnewt: update 0.52.21 -> 0.52.23
-- libnotify: upgrade 0.8.1 -> 0.8.2
-- libpcap: upgrade 1.10.1 -> 1.10.3
-- libpciaccess: update 0.16 -> 0.17
-- libpcre2: upgrade 10.40 -> 10.42
-- libpipeline: upgrade 1.5.6 -> 1.5.7
-- libpng: upgrade 1.6.38 -> 1.6.39
-- libpsl: upgrade 0.21.1 -> 0.21.2
-- librepo: upgrade 1.14.5 -> 1.15.1
-- libsdl2: upgrade 2.24.1 -> 2.26.3
-- libsm: 1.2.3 > 1.2.4
-- libsndfile1: upgrade 1.1.0 -> 1.2.0
-- libsolv: upgrade 0.7.22 -> 0.7.23
-- libsoup-2.4: upgrade 2.74.2 -> 2.74.3
-- libsoup: upgrade 3.0.7 -> 3.2.2
-- libtest-fatal-perl: upgrade 0.016 -> 0.017
-- libtest-needs-perl: upgrade 0.002009 -> 0.002010
-- libunistring: upgrade 1.0 -> 1.1
-- liburcu: upgrade 0.13.2 -> 0.14.0
-- liburi-perl: upgrade 5.08 -> 5.17
-- libva: upgrade 2.15.0 -> 2.16.0
-- libva-utils: upgrade 2.15.0 -> 2.17.1
-- libwebp: upgrade 1.2.4 -> 1.3.0
-- libwpe: upgrade 1.12.3 -> 1.14.1
-- libx11: 1.8.1 -> 1.8.4
-- libx11-compose-data: 1.6.8 -> 1.8.4
-- libxau: upgrade 1.0.10 -> 1.0.11
-- libxcomposite: update 0.4.5 -> 0.4.6
-- libxcrypt-compat: upgrade 4.4.30 -> 4.4.33
-- libxcrypt: upgrade 4.4.28 -> 4.4.30
-- libxdamage: update 1.1.5 -> 1.1.6
-- libxdmcp: update 1.1.3 -> 1.1.4
-- libxext: update 1.3.4 -> 1.3.5
-- libxft: update 2.3.4 -> 2.3.6
-- libxft: upgrade 2.3.6 -> 2.3.7
-- libxinerama: update 1.1.4 -> 1.1.5
-- libxkbcommon: upgrade 1.4.1 -> 1.5.0
-- libxkbfile: update 1.1.0 -> 1.1.1
-- libxkbfile: upgrade 1.1.1 -> 1.1.2
-- libxml2: upgrade 2.9.14 -> 2.10.3
-- libxmu: update 1.1.3 -> 1.1.4
-- libxpm: update 3.5.13 -> 3.5.15
-- libxrandr: update 1.5.2 -> 1.5.3
-- libxrender: update 0.9.10 -> 0.9.11
-- libxres: update 1.2.1 -> 1.2.2
-- libxscrnsaver: update 1.2.3 -> 1.2.4
-- libxshmfence: update 1.3 -> 1.3.2
-- libxslt: upgrade 1.1.35 -> 1.1.37
-- libxtst: update 1.2.3 -> 1.2.4
-- libxv: update 1.0.11 -> 1.0.12
-- libxxf86vm: update 1.1.4 -> 1.1.5
-- lighttpd: upgrade 1.4.66 -> 1.4.69
-- linux-firmware: upgrade 20220913 -> 20230210
-- linux-libc-headers: bump to 6.1
-- linux-yocto/5.15: update genericx86* machines to v5.15.103
-- linux-yocto/5.15: update to v5.15.108
-- linux-yocto/6.1: update to v6.1.25
-- linux-yocto-dev: bump to v6.3
-- linux-yocto-rt/5.15: update to -rt59
-- linux-yocto-rt/6.1: update to -rt7
-- llvm: update 14.0.6 -> 15.0.7
-- log4cplus: upgrade 2.0.8 -> 2.1.0
-- logrotate: upgrade 3.20.1 -> 3.21.0
-- lsof: upgrade 4.95.0 -> 4.98.0
-- ltp: upgrade 20220527 -> 20230127
-- lttng-modules: upgrade 2.13.4 -> 2.13.9
-- lttng-tools: update 2.13.8 -> 2.13.9
-- lttng-ust: upgrade 2.13.4 -> 2.13.5
-- makedepend: upgrade 1.0.6 -> 1.0.8
-- make: update 4.3 -> 4.4.1
-- man-db: update 2.10.2 -> 2.11.2
-- man-pages: upgrade 5.13 -> 6.03
-- matchbox-config-gtk: Update to latest SRCREV
-- matchbox-desktop-2: Update 2.2 -> 2.3
-- matchbox-panel-2: Update 2.11 -> 2.12
-- matchbox-terminal: Update to latest SRCREV
-- matchbox-wm: Update 1.2.2 -> 1.2.3
-- mc: update 4.8.28 -> 4.8.29
-- mesa: update 22.2.0 -> 23.0.0
-- meson: upgrade 0.63.2 -> 1.0.1
-- mmc-utils: upgrade to latest revision
-- mobile-broadband-provider-info: upgrade 20220725 -> 20221107
-- mpfr: upgrade 4.1.0 -> 4.2.0
-- mpg123: upgrade 1.30.2 -> 1.31.2
-- msmtp: upgrade 1.8.22 -> 1.8.23
-- mtd-utils: upgrade 2.1.4 -> 2.1.5
-- mtools: upgrade 4.0.40 -> 4.0.42
-- musl-obstack: Update to 1.2.3
-- musl: Upgrade to latest master
-- nasm: update 2.15.05 -> 2.16.01
-- ncurses: upgrade 6.3+20220423 -> 6.4
-- netbase: upgrade 6.3 -> 6.4
-- newlib: Upgrade 4.2.0 -> 4.3.0
-- nghttp2: upgrade 1.49.0 -> 1.52.0
-- numactl: upgrade 2.0.15 -> 2.0.16
-- opensbi: Upgrade to 1.2 release
-- openssh: upgrade 9.0p1 -> 9.3p1
-- openssl: Upgrade 3.0.5 -> 3.1.0
-- opkg: upgrade to version 0.6.1
-- orc: upgrade 0.4.32 -> 0.4.33
-- ovmf: upgrade edk2-stable202205 -> edk2-stable202211
-- pango: upgrade 1.50.9 -> 1.50.13
-- patchelf: upgrade 0.15.0 -> 0.17.2
-- pciutils: upgrade 3.8.0 -> 3.9.0
-- piglit: upgrade to latest revision
-- pinentry: update 1.2.0 -> 1.2.1
-- pixman: upgrade 0.40.0 -> 0.42.2
-- pkgconf: upgrade 1.9.3 -> 1.9.4
-- popt: update 1.18 -> 1.19
-- powertop: upgrade 2.14 -> 2.15
-- procps: update 3.3.17 -> 4.0.3
-- psmisc: upgrade 23.5 -> 23.6
-- puzzles: upgrade to latest revision
-- python3-alabaster: upgrade 0.7.12 -> 0.7.13
-- python3-attrs: upgrade 22.1.0 -> 22.2.0
-- python3-babel: upgrade 2.10.3 -> 2.12.1
-- python3-bcrypt: upgrade 3.2.2 -> 4.0.1
-- python3-certifi: upgrade 2022.9.14 -> 2022.12.7
-- python3-chardet: upgrade 5.0.0 -> 5.1.0
-- python3-cryptography: upgrade 38.0.3 -> 39.0.4
-- python3-cryptography-vectors: upgrade 37.0.4 -> 39.0.2
-- python3-cython: upgrade 0.29.32 -> 0.29.33
-- python3-dbusmock: update 0.28.4 -> 0.28.7
-- python3-dbus: upgrade 1.2.18 -> 1.3.2
-- python3-dtschema: upgrade 2022.8.3 -> 2023.1
-- python3-flit-core: upgrade 3.7.1 -> 3.8.0
-- python3-gitdb: upgrade 4.0.9 -> 4.0.10
-- python3-git: upgrade 3.1.27 -> 3.1.31
-- python3-hatch-fancy-pypi-readme: upgrade 22.7.0 -> 22.8.0
-- python3-hatchling: upgrade 1.9.0 -> 1.13.0
-- python3-hatch-vcs: upgrade 0.2.0 -> 0.3.0
-- python3-hypothesis: upgrade 6.54.5 -> 6.68.2
-- python3-importlib-metadata: upgrade 4.12.0 -> 6.0.0
-- python3-iniconfig: upgrade 1.1.1 -> 2.0.0
-- python3-installer: update 0.5.1 -> 0.6.0
-- python3-iso8601: upgrade 1.0.2 -> 1.1.0
-- python3-jsonschema: upgrade 4.9.1 -> 4.17.3
-- python3-lxml: upgrade 4.9.1 -> 4.9.2
-- python3-mako: upgrade 1.2.2 -> 1.2.4
-- python3-markupsafe: upgrade 2.1.1 -> 2.1.2
-- python3-more-itertools: upgrade 8.14.0 -> 9.1.0
-- python3-numpy: upgrade 1.23.3 -> 1.24.2
-- python3-packaging: upgrade to 23.0
-- python3-pathspec: upgrade 0.10.1 -> 0.11.0
-- python3-pbr: upgrade 5.10.0 -> 5.11.1
-- python3-pip: upgrade 22.2.2 -> 23.0.1
-- python3-poetry-core: upgrade 1.0.8 -> 1.5.2
-- python3-psutil: upgrade 5.9.2 -> 5.9.4
-- python3-pycairo: upgrade 1.21.0 -> 1.23.0
-- python3-pycryptodome: upgrade 3.15.0 -> 3.17
-- python3-pycryptodomex: upgrade 3.15.0 -> 3.17
-- python3-pygments: upgrade 2.13.0 -> 2.14.0
-- python3-pyopenssl: upgrade 22.0.0 -> 23.0.0
-- python3-pyrsistent: upgrade 0.18.1 -> 0.19.3
-- python3-pytest-subtests: upgrade 0.8.0 -> 0.10.0
-- python3-pytest: upgrade 7.1.3 -> 7.2.2
-- python3-pytz: upgrade 2022.2.1 -> 2022.7.1
-- python3-requests: upgrade 2.28.1 -> 2.28.2
-- python3-scons: upgrade 4.4.0 -> 4.5.2
-- python3-setuptools-rust: upgrade 1.5.1 -> 1.5.2
-- python3-setuptools-scm: upgrade 7.0.5 -> 7.1.0
-- python3-setuptools: upgrade 65.0.2 -> 67.6.0
-- python3-sphinxcontrib-applehelp: update 1.0.2 -> 1.0.4
-- python3-sphinxcontrib-htmlhelp: 2.0.0 -> 2.0.1
-- python3-sphinx-rtd-theme: upgrade 1.0.0 -> 1.2.0
-- python3-sphinx: upgrade 5.1.1 -> 6.1.3
-- python3-subunit: upgrade 1.4.0 -> 1.4.2
-- python3-testtools: upgrade 2.5.0 -> 2.6.0
-- python3-typing-extensions: upgrade 4.3.0 -> 4.5.0
-- python3: update 3.10.6 -> 3.11.2
-- python3-urllib3: upgrade 1.26.12 -> 1.26.15
-- python3-wcwidth: upgrade 0.2.5 -> 0.2.6
-- python3-wheel: upgrade 0.37.1 -> 0.40.0
-- python3-zipp: upgrade 3.8.1 -> 3.15.0
-- qemu: update 7.1.0 -> 7.2.0
-- quota: update 4.06 -> 4.09
-- readline: update 8.1.2 -> 8.2
-- repo: upgrade 2.29.2 -> 2.32
-- rgb: update 1.0.6 -> 1.1.0
-- rng-tools: upgrade 6.15 -> 6.16
-- rsync: update 3.2.5 -> 3.2.7
-- rt-tests: update 2.4 -> 2.5
-- ruby: update 3.1.2 -> 3.2.1
-- rust: update 1.63.0 -> 1.68.1
-- rxvt-unicode: upgrade 9.30 -> 9.31
-- sed: update 4.8 -> 4.9
-- shaderc: upgrade 2022.2 -> 2023.2
-- shadow: update 4.12.1 -> 4.13
-- socat: upgrade 1.7.4.3 -> 1.7.4.4
-- spirv-headers: upgrade 1.3.236.0 -> 1.3.239.0
-- spirv-tools: upgrade 1.3.236.0 -> 1.3.239.0
-- sqlite3: upgrade 3.39.3 -> 3.41.0
-- strace: upgrade 5.19 -> 6.2
-- stress-ng: update 0.14.03 -> 0.15.06
-- sudo: upgrade 1.9.11p3 -> 1.9.13p3
-- swig: update 4.0.2 -> 4.1.1
-- sysstat: upgrade 12.6.0 -> 12.6.2
-- systemd: update 251.4 -> 253.1
-- systemtap: upgrade 4.7 -> 4.8
-- taglib: upgrade 1.12 -> 1.13
-- tcf-agent: Update to current version
-- tcl: update 8.6.11 -> 8.6.13
-- texinfo: update 6.8 -> 7.0.2
-- tiff: update 4.4.0 -> 4.5.0
-- tzdata: update 2022d -> 2023c
-- u-boot: upgrade 2022.07 -> 2023.01
-- unfs: update 0.9.22 -> 0.10.0
-- usbutils: upgrade 014 -> 015
-- util-macros: upgrade 1.19.3 -> 1.20.0
-- vala: upgrade 0.56.3 -> 0.56.4
-- valgrind: update to 3.20.0
-- vim: Upgrade 9.0.0598 -> 9.0.1429
-- virglrenderer: upgrade 0.10.3 -> 0.10.4
-- vte: update 0.68.0 -> 0.72.0
-- vulkan-headers: upgrade 1.3.236.0 -> 1.3.239.0
-- vulkan-loader: upgrade 1.3.236.0 -> 1.3.239.0
-- vulkan-samples: update to latest revision
-- vulkan-tools: upgrade 1.3.236.0 -> 1.3.239.0
-- vulkan: update 1.3.216.0 -> 1.3.236.0
-- wayland-protocols: upgrade 1.26 -> 1.31
-- wayland-utils: update 1.0.0 -> 1.1.0
-- webkitgtk: update 2.36.7 -> 2.38.5
-- weston: update 10.0.2 -> 11.0.1
-- wireless-regdb: upgrade 2022.08.12 -> 2023.02.13
-- wpebackend-fdo: upgrade 1.12.1 -> 1.14.0
-- xcb-util: update 0.4.0 -> 0.4.1
-- xcb-util-keysyms: 0.4.0 -> 0.4.1
-- xcb-util-renderutil: 0.3.9 -> 0.3.10
-- xcb-util-wm: 0.4.1 -> 0.4.2
-- xcb-util-image: 0.4.0 -> 0.4.1
-- xf86-input-mouse: update 1.9.3 -> 1.9.4
-- xf86-input-vmmouse: update 13.1.0 -> 13.2.0
-- xf86-video-vesa: update 2.5.0 -> 2.6.0
-- xf86-video-vmware: update 13.3.0 -> 13.4.0
-- xhost: update 1.0.8 -> 1.0.9
-- xinit: update 1.4.1 -> 1.4.2
-- xkbcomp: update 1.4.5 -> 1.4.6
-- xkeyboard-config: upgrade 2.36 -> 2.38
-- xprop: update 1.2.5 -> 1.2.6
-- xrandr: upgrade 1.5.1 -> 1.5.2
-- xserver-xorg: upgrade 21.1.4 -> 21.1.7
-- xset: update 1.2.4 -> 1.2.5
-- xvinfo: update 1.1.4 -> 1.1.5
-- xwayland: upgrade 22.1.3 -> 22.1.8
-- xz: upgrade 5.2.6 -> 5.4.2
-- zlib: upgrade 1.2.12 -> 1.2.13
-- zstd: upgrade 1.5.2 -> 1.5.4

Yocto4.0.9 LTS(Kirkstone)リリース

yakuhito — Tue, 25 Apr 2023 03:18:56 +0000

2022年4月にリリースされたYocto4.0 LTS (Kirkstone)の9回目のポイントリリース4.0.9公開のアナウンスが2023年4月22日付けでありました。
当初予定より1日遅れの4月11日版で構築、QA後の4月22日にリリースアナウンスとなりました。

今回のリリースでの主な変更点：
　　〇 CVEに登録された脆弱性への対応
　　〇カーネルは 5.10.160/5.15.91から5.10.175/5.15.103 にアップグレード
　　〇　bitbake/devtool といったツールの不具合対策
　　〇　いくつかのレシピのアップデート

　　リリースアナウンスの時点で、4月11日以降次のポイントリリースに向けて既に複数の脆弱性対策を含んだコミットが行われています。
　　・binutils : CVE-20230-1579
　　・curl: CVE-2023-27533 CVE-2023-27534
　　・tiff: CVE-2022-4645
　　・go; CVE-2022-41724 CVE-2022-41725

次のポイントリリース4.0.10 は 2023/5/15 版で構築、QA後の2023/5/26 のリリースを予定しています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/274

※上記アナウンスでは、opensslのcve-2022-2879 が Security Fixesに含まれていますが、Yocto4.0.7に先行してバックポートパッチが適応され、既に対応されていたため、下記のFixeedでは除外してあります。

---------------
Known Issues
---------------
N/A

---------------
Security Fixes
---------------
binutils: Fix CVE-2023-22608
curl: Fix CVE-2023-23914 CVE-2023-23915 CVE-2023-23916
epiphany: Fix CVE-2023-26081
git: Ignore CVE-2023-22743
glibc: Fix CVE-2023-0687
gnutls: Fix CVE-2023-0361
go: Fix CVE-2022-2879 CVE-2022-41720 CVE-2022-41723
harfbuzz: Fix CVE-2023-25193
less: Fix CVE-2022-46663
libmicrohttpd: Fix CVE-2023-27371
libsdl2: Fix CVE-2022-4743
openssl: Fix CVE-2023-0464 CVE-2023-0465 CVE-2023-0466
pkgconf: Fix CVE-2023-24056
python3: Fix CVE-2023-24329
shadow: Ignore CVE-2016-15024
systemd: Fix CVE-2022-4415
tiff: Fix CVE-2023-0800 CVE-2023-0801 CVE-2023-0802 CVE-2023-0803 CVE-2023-0804
vim: Fix CVE-2023-0433 CVE-2023-0512 CVE-2023-1127 CVE-2023-1170 CVE-2023-1175 CVE-2023-1264 CVE-2023-1355
xserver-xorg: Fix CVE-2023-0494
xwayland: Fix CVE-2023-0494

---------------
Fixes
---------------
base-files: Drop localhost.localdomain from hosts file
binutils: Fix nativesdk ld.so search
bitbake: cookerdata: Drop dubious exception handling code
bitbake: cookerdata: Improve early exception handling
bitbake: cookerdata: Remove incorrect SystemExit usage
bitbake: fetch/git: Fix local clone url to make it work with repo
bitbake: utils: Allow to_boolean to support int values
bmap-tools: switch to main branch
buildtools-tarball: Handle spaces within user $PATH
busybox: Fix depmod patch
cracklib: update github branch to 'main'
cups: add/fix web interface packaging
cups: check PACKAGECONFIG for pam feature
cups: use BUILDROOT instead of DESTDIR
curl: fix dependencies when building with ldap/ldaps
cve-check: Fix false negative version issue
dbus: upgrade to 1.14.6
devtool/upgrade: do not delete the workspace/recipes directory
dhcpcd: Fix install conflict when enable multilib.
dhcpcd: fix dhcpcd start failure on qemuppc64
gcc-shared-source: do not use ${S}/.. in deploy_source_date_epoch
glibc: Add missing binutils dependency
image_types: fix multiubi var init
iso-codes: upgrade to 4.13.0
json-c: Add ptest for json-c
kernel-yocto: fix kernel-meta data detection
lib/buildstats: handle tasks that never finished
lib/resulttool: fix typo breaking resulttool log --ptest
libjpeg-turbo: upgrade to 2.1.5.1
libmicrohttpd: upgrade to 0.9.76
libseccomp: fix for the ptest result format
libssh2: Clean up ptest patch/coverage
linux-firmware: add yamato fw files to qcom-adreno-a2xx package
linux-firmware: properly set license for all Qualcomm firmware
linux-firmware: upgrade to 20230210
linux-yocto-rt/5.15: update to -rt59
linux-yocto/5.10: upgrade to v5.10.175
linux-yocto/5.15: upgrade to v5.15.103
linux: inherit pkgconfig in kernel.bbclass
lttng-modules: fix for kernel 6.2+
lttng-modules: upgrade to v2.13.9
lua: Fix install conflict when enable multilib.
mdadm: Fix raid0, 06wrmostly and 02lineargrow tests
meson: Fix wrapper handling of implicit setup command
migration-guides: add 4.0.8 release notes
nghttp2: never build python bindings
oeqa rtc.py: skip if read-only-rootfs
oeqa ssh.py: fix hangs in run()
oeqa/sdk: Improve Meson test
oeqa/selftest/prservice: Improve debug output for failure
oeqa/selftest/resulttooltests: fix minor typo
openssl: upgrade to 3.0.8
package.bbclase: Add check for /build in copydebugsources()
patchelf: replace a rejected patch with an equivalent uninative.bbclass tweak
poky.conf: bump version for 4.0.9
populate_sdk_ext: Handle spaces within user $PATH
pybootchartui: Fix python syntax issue
python3-git: fix indent error
python3-setuptools-rust-native: Add direct dependency of native python3 modules
qemu: Revert "fix CVE-2021-3507" as not applicable for qemu 6.2
rsync: Add missing prototypes to function declarations
rsync: Turn on -pedantic-errors at the end of 'configure'
runqemu: kill qemu if it hangs
scripts/lib/buildstats: handle top-level build_stats not being complete
selftest/recipetool: Stop test corrupting tinfoil class
selftest/runtime_test/virgl: Disable for all Rocky Linux
selftest: devtool: set BB_HASHSERVE_UPSTREAM when setting SSTATE_MIRROR
sstatesig: Improve output hash calculation
staging/multilib: Fix manifest corruption
staging: Separate out different multiconfig manifests
sudo: update 1.9.12p2 -> 1.9.13p3
systemd.bbclass: Add /usr/lib/systemd to searchpaths as well
systemd: add group sgx to udev package
systemd: fix wrong nobody-group assignment
timezone: use 'tz' subdir instead of ${WORKDIR} directly
toolchain-scripts: Handle spaces within user $PATH
tzcode-native: fix build with gcc-13 on host
tzdata: use separate B instead of WORKDIR for zic output
uninative: upgrade to 3.9 to include libgcc and glibc 2.37
vala: Fix install conflict when enable multilib.
vim: add missing pkgconfig inherit
vim: set modified-by to the recipe MAINTAINER
vim: upgrade to 9.0.1429
wic: Fix usage of fstype=none in wic
wireless-regdb: upgrade to 2023.02.13
xserver-xorg: upgrade to 21.1.7
xwayland: upgrade to 22.1.8

Yocto3.1.24 LTS(Dunfell 23.24)リリース

yakuhito — Wed, 22 Mar 2023 08:47:54 +0000

一昨年4月にリリースされたYocto3.1LTS(Dunfell)の24回目のポイントリリース、3.1.24公開のアナウンスが 2023年3月22日付けでありました。

予定より5日早い3月15日版で構築、QAを経て予定より9日早く、3月22日にリリースされています。

今回のリリースでは、CVEへの対応、UpStreanでのアップデート対応、bitbakeやbusyboxの構築時のbug fix 等もが含まれています。
kernelに関しては5.4.230で変更はありません。

3/22 17:00 現在、3/15以降のコミットは行われていません。

次のバージョン 3.1.25 は 4.2のリリース後の2023/05/8版で構築、2023/5/19リリースの予定となっています。
3.1.24 から、ubuntu-22.04 fedoro-36 almalinx-8,7 が　構築確認対象バージョンに追加されています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/273

----------------
Known Issues
----------------
N/A

- ---------------
Security Fixes
- ---------------
apr-util: Fix CVE-2022-25147
apr: Fix CVE-2022-24963 CVE-2022-28331 CVE-2021-35940
bluez5: Ignore CVE-2022-39177
curl: Fix CVE-2022-43552
git: Fix CVE-2022-23521 CVE-2022-41903
git: Ignore CVE-2022-41953
glibc: Fix CVE-2023-0687
gnutls: Fix CVE-2023-0361
harfbuzz: Fix CVE-2023-25193
openssl: Fix CVE-2022-4304 CVE-2022-4450 CVE-2023-0215 CVE-2023-0286
qemu: fix CVE-2021-3929
shadow: ignore CVE-2016-15024
sudo: Fix CVE-2023-22809
tar: Fix CVE-2022-48303
tiff: Fix CVE-2022-3570 CVE-2022-3597 CVE-2022-3598 CVE-2022-3599 CVE-2022-3626 CVE-2022-3627 CVE-2022-3970 CVE-2022-48281 CVE-2023-0795 CVE-2023-0796 CVE-2023-0797 CVE-2023-0798 CVE-2023-0799 CVE-2023-0800 CVE-2023-0801 CVE-2023-0802 CVE-2023-0803 CVE-2023-0804
vim: Fix CVE-2023-0433 CVE-2023-0512

----------------
Fixes
----------------
apr-util: Fix CFLAGS used in build
apr-util: Upgrade to 1.6.3
apr: Cache configure tests which use AC_TRY_RUN
apr: Fix to work with autoconf 2.70
apr: Use correct strerror_r implementation based on libc type
apr: Upgrade to 1.7.2
bitbake: cooker: Drop sre_constants usage
bitbake: runqueue: Avoid deadlock avoidance task graph corruption
bitbake: runqueue: Ensure deferred tasks are sorted by multiconfig
bitbake: runqueue: Fix issues with multiconfig deferred task deadlock messages
bitbake: runqueue: Fix multiconfig deferred task sstate validity caching issue
bitbake: runqueue: Handle deferred task rehashing in multiconfig builds
bitbake: runqueue: Improve multiconfig deferred task issues
build-appliance-image: Update to dunfell head revision
busybox: always start do_compile with orig config files
busybox: rm temporary files if do_compile was interrupted
classes/fs-uuid: Fix command output decoding issue
devshell: Do not add scripts/git-intercept to PATH
devtool/menuconfig: remove True option to getVar calls
documentation: update for 3.1.24
gcc: Fix inconsistent noexcept specifier for valarray in libstdc++
go: remove True option to getVar calls
image.bbclass: print all QA functions exceptions
image.bbclass: remove True option to getVarFlag calls
kernel-yocto: fix kernel-meta data detection
libc-locale: Fix on target locale generation
license_image: remove True option to getVar calls
linux-firmware: add yamato fw files to qcom-adreno-a2xx package
linux-firmware: properly set license for all Qualcomm firmware
linux-firmware: Upgrade to 20230210
linux: inherit pkgconfig in kernel.bbclass
make-mod-scripts: Ensure kernel build output is deterministic
meta: remove True option to getVar and getVarFlag calls (again)
nativesdk: Handle chown/chgrp calls in nativesdk do_install tasks
oeqa context.py: fix --target-ip comment to include ssh port number
oeqa/qemurunner: do not use Popen.poll() when terminating runqemu with a signal
oeqa/selftest/prservice: Improve debug output for failure
openssl: Upgrade to 1.1.1t
overview-manual: update patchwork instance URL
poky.conf: Update SANITY_TESTED_DISTROS to match autobuilder
poky.conf: bump version for 3.1.24
profile-manual: update WireShark hyperlinks
qemu: Fix slirp determinism issue
quilt: fix intermittent failure in faildiff.test
quilt: use upstreamed faildiff.test fix
ref-manual: document SSTATE_EXCLUDEDEPS_SYSROOT
ref-system-requirements.rst: add AlmaLinux 8.7, Fedora 35, Fedora 36, and Ubuntu 22.04 to list of supported distros
vim: add missing pkgconfig inherit
vim: Upgrade to 9.0.1293
wireless-regdb: Upgrade to 2023.02.13