From: Yoann Congal <yoann.congal@smile.fr>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][whinlatter 00/47] Patch review
Date: Thu, 16 Apr 2026 08:47:01 +0200 [thread overview]
Message-ID: <cover.1776321810.git.yoann.congal@smile.fr> (raw)
Please review this set of changes for whinlatter and have comments back by
end of day Sunday, April 19. I plan to do the release build on Monday.
This is a relatively "big" series compared to the usual: In addition to
the usual CVE fixes, there are:
- "git://" protocol patches
- Ubunutu 26.04 support patches (Host glibc 2.43 and GCC 16)
Please note: This will be the last review cycle for whinlatter.
If you expect a patch to get merged and it is not in this series ping
me as soon as possible.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/3670
The following changes since commit e8a3acb03d4c466cd08e358953df15746cb5aaca:
vim: Fix CVE-2026-26269 (2026-04-02 00:08:06 +0200)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-nut
for you to fetch changes up to dc0dd419fb43968426d342b1d84d0204001cd39f:
scripts/install-buildtools: Update to 5.3.3 (2026-04-15 23:07:17 +0000)
----------------------------------------------------------------
Adarsh Jagadish Kamini (1):
binutils: mark CVE-2025-69650 and CVE-2025-69651 as disputed
Alexander Kanavin (2):
selftest/minidebuginfo: extract files from tar archive using tarfile
module
selftest/gdbserver: replace shutil.unpack_archive with tarfile extract
Ankur Tyagi (1):
barebox/barebox-tools: upgrade 2025.09.0 -> 2025.09.3
Deepak Rathore (5):
binutils: Fix CVE-2025-69648
binutils: Fix CVE-2025-69644 CVE-2025-69647
binutils: Fix CVE-2025-69649
binutils: Fix CVE-2025-69652
nfs-utils: Fix CVE-2025-12801
Hemanth Kumar M D (2):
libxcrypt: avoid discarded-qualifiers build failure with glibc 2.43
glibc: stable 2.42 branch updates
Hitendra Prajapati (3):
vim: Fix CVE-2026-33412
vim: Fix CVE-2026-28418
vim: Fix CVE-2026-28419
Khem Raj (3):
virglrenderer: Fix build with glibc 2.43+
libxcrypt: Fix build wrt C23 support
libxcrypt: Use configure knob to disable warnings as errors
Martin Jansa (8):
gcc: backport a fix for building with gcc-16
dtc: backport fix for build with glibc-2.43
m4: backport 3 gnulib changes to fix build with glibc-2.43 on host
gettext: backport gnulib changes to fix build with glibc-2.43 on host
util-linux: backport fix to build with glibc-2.43 on host
systemd: backport fix to build with glibc-2.43 on host
spirv-tools: backport a fix for building with gcc-16
ovmf: backport a fix for build with gcc-16
Michael Halstead (1):
yocto-uninative: Update to 5.1 for glibc 2.43
Peter Marko (4):
libarchive: upgrade 3.8.5 -> 3.8.6
openssl: upgrade 3.5.5 -> 3.5.6
go: upgrade 1.25.8 -> 1.25.9
libpng: upgrade 1.6.55 -> 1.6.56
Richard Purdie (4):
pseudo: Add fix for glibc 2.43
recipetool: Recognise https://git. as git urls
selftest/scripts: Update old git protocol references
archiver: Don't try to preserve all attributes when copying files
Sunil Dora (1):
license.py: Drop visit_Str from SeenVisitor in selftest
Trevor Gamblin (1):
report-error.bbclass: replace 'codecs.open()' with 'open()'
Vijay Anusuri (2):
sqlite3: Fix CVE-2025-70873
python3: upgrade 3.13.11 -> 3.13.12
Yoann Congal (8):
oeqa/selftest/devtool: add vulkan feature check for test needing it
oeqa/selftest: add wayland feature check for tests needing it
oeqa/sdk: Default to https git protocol for YP/OE repos
scripts: Default to https git protocol for YP/OE repos
oeqa/selftest/git-submodule-test: Default to https git protocol for
YP/OE repos
meta/files/layers.example.json: switch to https clone URIs
build-appliance-image: switch SRC_URI to https protocol
scripts/install-buildtools: Update to 5.3.3
Zoltán Böszörményi (1):
binutils: Fix build with GLIBC 2.43 on the host
.../devtool/devtool-upgrade-test2_git.bb | 2 +-
.../devtool-upgrade-test2_git.bb.upgraded | 2 +-
.../devtool/devtool-upgrade-test5_git.bb | 4 +-
.../devtool-upgrade-test5_git.bb.upgraded | 4 +-
.../git-submodule-test/git-submodule-test.bb | 4 +-
meta/classes/archiver.bbclass | 2 +-
meta/classes/report-error.bbclass | 8 +-
meta/conf/distro/include/yocto-uninative.inc | 10 +-
meta/files/layers.example.json | 4 +-
meta/lib/oeqa/buildtools-docs/cases/build.py | 2 +-
meta/lib/oeqa/selftest/cases/archiver.py | 4 +-
meta/lib/oeqa/selftest/cases/devtool.py | 8 +-
meta/lib/oeqa/selftest/cases/externalsrc.py | 2 +-
meta/lib/oeqa/selftest/cases/gdbserver.py | 4 +-
.../oeqa/selftest/cases/gitarchivetests.py | 2 +-
.../oeqa/selftest/cases/incompatible_lic.py | 2 +
meta/lib/oeqa/selftest/cases/minidebuginfo.py | 7 +-
meta/lib/oeqa/selftest/cases/oelib/license.py | 4 +-
meta/lib/oeqa/selftest/cases/sstatetests.py | 4 +-
.../cases/yoctotestresultsquerytests.py | 2 +-
meta/recipes-bsp/barebox/barebox-common.inc | 4 +-
.../CVE-2025-12801-dependent_p1.patch | 81 +++
.../CVE-2025-12801-dependent_p2.patch | 181 +++++
.../CVE-2025-12801-dependent_p3.patch | 465 +++++++++++++
.../nfs-utils/nfs-utils/CVE-2025-12801.patch | 254 +++++++
.../nfs-utils/nfs-utils_2.8.4.bb | 4 +
...sysroot-and-debug-prefix-map-from-co.patch | 2 +-
.../{openssl_3.5.5.bb => openssl_3.5.6.bb} | 2 +-
...23-qualifier-generic-fns-like-strchr.patch | 626 ++++++++++++++++++
meta/recipes-core/gettext/gettext_0.26.bb | 1 +
meta/recipes-core/glibc/glibc-version.inc | 2 +-
meta/recipes-core/glibc/glibc_2.42.bb | 2 +-
.../images/build-appliance-image_15.0.0.bb | 6 +-
...24d6e87aeae631bc0a7bb1ba983cf8def4de.patch | 29 +
meta/recipes-core/libxcrypt/libxcrypt.inc | 6 +-
...Tools-StringFuncs-fix-gcc-16-warning.patch | 42 ++
...aseTools-EfiRom-fix-compiler-warning.patch | 44 ++
meta/recipes-core/ovmf/ovmf_git.bb | 2 +
meta/recipes-core/systemd/systemd.inc | 4 +-
...ilter-out-EFSBADCRC-and-EFSCORRUPTED.patch | 34 +
meta/recipes-core/util-linux/util-linux.inc | 1 +
...x-bsearch-macro-usage-with-glibc-C23.patch | 40 ++
.../binutils/binutils-2.45.inc | 7 +
...tect-against-standard-library-macros.patch | 34 +
.../CVE-2025-69644_CVE-2025-69647.patch | 85 +++
.../binutils/binutils/CVE-2025-69648.patch | 189 ++++++
.../binutils/binutils/CVE-2025-69649.patch | 41 ++
.../binutils/binutils/CVE-2025-69652.patch | 40 ++
meta/recipes-devtools/gcc/gcc-15.2.inc | 1 +
...dy-Make-it-buildable-by-C-11-to-C-26.patch | 257 +++++++
.../go/{go-1.25.8.inc => go-1.25.9.inc} | 2 +-
...e_1.25.8.bb => go-binary-native_1.25.9.bb} | 6 +-
..._1.25.8.bb => go-cross-canadian_1.25.9.bb} | 0
...{go-cross_1.25.8.bb => go-cross_1.25.9.bb} | 0
...osssdk_1.25.8.bb => go-crosssdk_1.25.9.bb} | 0
...runtime_1.25.8.bb => go-runtime_1.25.9.bb} | 0
...ent-based-hash-generation-less-pedan.patch | 8 +-
...d-go-make-GOROOT-precious-by-default.patch | 2 +-
.../go/{go_1.25.8.bb => go_1.25.9.bb} | 0
meta/recipes-devtools/m4/m4-1.4.20.inc | 3 +
...-Fix-some-g-Wsystem-headers-warnings.patch | 135 ++++
...pilation-error-on-macOS-with-fortify.patch | 126 ++++
...23-qualifier-generic-fns-like-strchr.patch | 194 ++++++
meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
...{python3_3.13.11.bb => python3_3.13.12.bb} | 2 +-
...ibarchive_3.8.5.bb => libarchive_3.8.6.bb} | 2 +-
...sue-with-gcc-16-replaeces-PR-6542-65.patch | 50 ++
.../spir/spirv-tools_1.4.328.1.bb | 3 +-
...once_flag-ONCE_FLAG_INIT-when-presen.patch | 55 ++
.../virglrenderer/virglrenderer_1.1.1.bb | 1 +
.../0001-Fix-discarded-const-qualifiers.patch | 83 +++
meta/recipes-kernel/dtc/dtc_1.7.2.bb | 1 +
.../{libpng_1.6.55.bb => libpng_1.6.56.bb} | 2 +-
.../sqlite/files/CVE-2025-70873.patch | 33 +
meta/recipes-support/sqlite/sqlite3_3.48.0.bb | 1 +
.../vim/files/CVE-2026-28418.patch | 78 +++
.../vim/files/CVE-2026-28419.patch | 86 +++
.../vim/files/CVE-2026-33412.patch | 61 ++
meta/recipes-support/vim/vim.inc | 3 +
scripts/combo-layer.conf.example | 4 +-
scripts/contrib/patchtest.sh | 4 +-
scripts/install-buildtools | 4 +-
scripts/lib/recipetool/create.py | 2 +-
scripts/yocto_testresults_query.py | 2 +-
84 files changed, 3452 insertions(+), 70 deletions(-)
create mode 100644 meta/recipes-connectivity/nfs-utils/nfs-utils/CVE-2025-12801-dependent_p1.patch
create mode 100644 meta/recipes-connectivity/nfs-utils/nfs-utils/CVE-2025-12801-dependent_p2.patch
create mode 100644 meta/recipes-connectivity/nfs-utils/nfs-utils/CVE-2025-12801-dependent_p3.patch
create mode 100644 meta/recipes-connectivity/nfs-utils/nfs-utils/CVE-2025-12801.patch
rename meta/recipes-connectivity/openssl/{openssl_3.5.5.bb => openssl_3.5.6.bb} (99%)
create mode 100644 meta/recipes-core/gettext/gettext/0001-Port-to-C23-qualifier-generic-fns-like-strchr.patch
create mode 100644 meta/recipes-core/libxcrypt/files/174c24d6e87aeae631bc0a7bb1ba983cf8def4de.patch
create mode 100644 meta/recipes-core/ovmf/ovmf/0006-BaseTools-StringFuncs-fix-gcc-16-warning.patch
create mode 100644 meta/recipes-core/ovmf/ovmf/0007-BaseTools-EfiRom-fix-compiler-warning.patch
create mode 100644 meta/recipes-core/systemd/systemd/0001-errno-list-filter-out-EFSBADCRC-and-EFSCORRUPTED.patch
create mode 100644 meta/recipes-core/util-linux/util-linux/0001-lsfd-fix-bsearch-macro-usage-with-glibc-C23.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0001-gprofng-protect-against-standard-library-macros.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2025-69644_CVE-2025-69647.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2025-69648.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2025-69649.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2025-69652.patch
create mode 100644 meta/recipes-devtools/gcc/gcc/0028-libcody-Make-it-buildable-by-C-11-to-C-26.patch
rename meta/recipes-devtools/go/{go-1.25.8.inc => go-1.25.9.inc} (91%)
rename meta/recipes-devtools/go/{go-binary-native_1.25.8.bb => go-binary-native_1.25.9.bb} (79%)
rename meta/recipes-devtools/go/{go-cross-canadian_1.25.8.bb => go-cross-canadian_1.25.9.bb} (100%)
rename meta/recipes-devtools/go/{go-cross_1.25.8.bb => go-cross_1.25.9.bb} (100%)
rename meta/recipes-devtools/go/{go-crosssdk_1.25.8.bb => go-crosssdk_1.25.9.bb} (100%)
rename meta/recipes-devtools/go/{go-runtime_1.25.8.bb => go-runtime_1.25.9.bb} (100%)
rename meta/recipes-devtools/go/{go_1.25.8.bb => go_1.25.9.bb} (100%)
create mode 100644 meta/recipes-devtools/m4/m4/0001-string-h-wchar-h-Fix-some-g-Wsystem-headers-warnings.patch
create mode 100644 meta/recipes-devtools/m4/m4/0002-string-h-Fix-compilation-error-on-macOS-with-fortify.patch
create mode 100644 meta/recipes-devtools/m4/m4/0003-Port-to-C23-qualifier-generic-fns-like-strchr.patch
rename meta/recipes-devtools/python/{python3_3.13.11.bb => python3_3.13.12.bb} (99%)
rename meta/recipes-extended/libarchive/{libarchive_3.8.5.bb => libarchive_3.8.6.bb} (96%)
create mode 100644 meta/recipes-graphics/spir/spirv-tools/0001-opt-Fix-build-issue-with-gcc-16-replaeces-PR-6542-65.patch
create mode 100644 meta/recipes-graphics/virglrenderer/virglrenderer/0001-c11-use-glibc-s-once_flag-ONCE_FLAG_INIT-when-presen.patch
create mode 100644 meta/recipes-kernel/dtc/dtc/0001-Fix-discarded-const-qualifiers.patch
rename meta/recipes-multimedia/libpng/{libpng_1.6.55.bb => libpng_1.6.56.bb} (97%)
create mode 100644 meta/recipes-support/sqlite/files/CVE-2025-70873.patch
create mode 100644 meta/recipes-support/vim/files/CVE-2026-28418.patch
create mode 100644 meta/recipes-support/vim/files/CVE-2026-28419.patch
create mode 100644 meta/recipes-support/vim/files/CVE-2026-33412.patch
next reply other threads:[~2026-04-16 6:48 UTC|newest]
Thread overview: 50+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-04-16 6:47 Yoann Congal [this message]
2026-04-16 6:47 ` [OE-core][whinlatter 01/47] binutils: mark CVE-2025-69650 and CVE-2025-69651 as disputed Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 02/47] binutils: Fix CVE-2025-69648 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 03/47] binutils: Fix CVE-2025-69644 CVE-2025-69647 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 04/47] binutils: Fix CVE-2025-69649 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 05/47] binutils: Fix CVE-2025-69652 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 06/47] nfs-utils: Fix CVE-2025-12801 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 07/47] sqlite3: Fix CVE-2025-70873 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 08/47] python3: upgrade 3.13.11 -> 3.13.12 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 09/47] libarchive: upgrade 3.8.5 -> 3.8.6 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 10/47] vim: Fix CVE-2026-33412 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 11/47] vim: Fix CVE-2026-28418 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 12/47] vim: Fix CVE-2026-28419 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 13/47] binutils: Fix build with GLIBC 2.43 on the host Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 14/47] gcc: backport a fix for building with gcc-16 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 15/47] barebox/barebox-tools: upgrade 2025.09.0 -> 2025.09.3 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 16/47] openssl: upgrade 3.5.5 -> 3.5.6 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 17/47] go: upgrade 1.25.8 -> 1.25.9 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 18/47] dtc: backport fix for build with glibc-2.43 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 19/47] pseudo: Add fix for glibc 2.43 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 20/47] yocto-uninative: Update to 5.1 " Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 21/47] m4: backport 3 gnulib changes to fix build with glibc-2.43 on host Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 22/47] gettext: backport " Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 23/47] util-linux: backport fix to " Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 24/47] systemd: " Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 25/47] virglrenderer: Fix build with glibc 2.43+ Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 26/47] libxcrypt: avoid discarded-qualifiers build failure with glibc 2.43 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 27/47] libxcrypt: Fix build wrt C23 support Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 28/47] libxcrypt: Use configure knob to disable warnings as errors Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 29/47] glibc: stable 2.42 branch updates Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 30/47] spirv-tools: backport a fix for building with gcc-16 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 31/47] ovmf: backport a fix for build " Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 32/47] libpng: upgrade 1.6.55 -> 1.6.56 Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 33/47] recipetool: Recognise https://git. as git urls Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 34/47] selftest/scripts: Update old git protocol references Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 35/47] archiver: Don't try to preserve all attributes when copying files Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 36/47] license.py: Drop visit_Str from SeenVisitor in selftest Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 37/47] oeqa/selftest/devtool: add vulkan feature check for test needing it Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 38/47] selftest/minidebuginfo: extract files from tar archive using tarfile module Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 39/47] selftest/gdbserver: replace shutil.unpack_archive with tarfile extract Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 40/47] oeqa/selftest: add wayland feature check for tests needing it Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 41/47] report-error.bbclass: replace 'codecs.open()' with 'open()' Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 42/47] oeqa/sdk: Default to https git protocol for YP/OE repos Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 43/47] scripts: " Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 44/47] oeqa/selftest/git-submodule-test: " Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 45/47] meta/files/layers.example.json: switch to https clone URIs Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 46/47] build-appliance-image: switch SRC_URI to https protocol Yoann Congal
2026-04-16 6:47 ` [OE-core][whinlatter 47/47] scripts/install-buildtools: Update to 5.3.3 Yoann Congal
2026-04-16 12:08 ` [whinlatter 00/47] Patch review Hemanth Kumar M D
2026-04-16 13:19 ` [OE-core] " Yoann Congal
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1776321810.git.yoann.congal@smile.fr \
--to=yoann.congal@smile.fr \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox