Update to internal 1-0.91-151

Signed-off-by: P Dheeraj Srujan Kumar <[email protected]>

Author: dheerajpdsk

meta-openbmc-mods/meta-ast2600/conf/machine/include/intel-ast2600.inc

@@ -4,6 +4,7 @@ KERNEL_DEVICETREE = " \
     ${KMACHINE}-bmc-${COMPATIBLE_MACHINE}.dtb \
     "
 #KERNEL_DEVICETREE = "${KMACHINE}-ast2600-evb.dtb"
+UBOOT_MACHINE = "ast2600_openbmc_defconfig"
 
 require conf/machine/include/ast2600.inc
 require conf/machine/include/obmc-bsp-si-common.inc
@@ -13,7 +14,6 @@ TARGET_FPU = "hard"
 
 PREFERRED_PROVIDER_u-boot-fw-utils ?= "u-boot-fw-utils-aspeed-sdk"
 
-UBOOT_MACHINE = "ast2600_openbmc_defconfig"
 UBOOT_DEVICETREE = "ast2600-intel"
 
 VIRTUAL-RUNTIME_skeleton_workbook = "${MACHINE}-config"

meta-openbmc-mods/meta-ast2600/recipes-bsp/u-boot/files/0012-IPMI-command-handler-implementation-in-uboot.patch

@@ -5,15 +5,15 @@ Subject: [PATCH] IPMI command handler implementation in uboot
 
 IPMI command handler implementation in uBoot.
 Implemented IPMI commands:
- 1) Get Device ID
+ 1) Get Device ID with default Product ID=0
  2) Get Self Test Result
 
 Tested By:
 Ran the above IPMI command Via KCS channel
 and got proper response.
 - Get Device ID
   Req: ipmitool raw 6 1
-  Res: 00 23 00 82 03 02 00 57 01 00 7b 00 00 00 00 00
+  Res: 00 23 00 82 03 02 00 57 01 00 00 00 00 00 00 00
 - Get Self Test Results
   Req: ipmitool raw 6 4
   Res: 56 00
@@ -205,7 +205,7 @@ index 000000000000..04732846ac28
 +	/* Get Device ID */
 +	bool operation = 1; /* Firmware operation */
 +	u8 intel_mfg_id[3] = { 0x57, 0x01, 0x00 };
-+	u8 platform_id[2] = { 0x7B, 0x00 };
++	u8 platform_id[2] = { 0x00, 0x00 };
 +	u8 aux_fw_rev[4] = { 0x00, 0x00, 0x00, 0x00 };
 +	struct get_dev_id *result = (struct get_dev_id *)res;
 +

meta-openbmc-mods/meta-ast2600/recipes-bsp/u-boot/files/0044-Enable-WDT2-for-causing-reset-in-Kernel-u-boot-hang.patch

@@ -0,0 +1,77 @@
+From 6a5cf930c34fe2ba29fa3361b07ae42e1e1a66d3 Mon Sep 17 00:00:00 2001
+From: AKSHAY RAVEENDRAN K <[email protected]>
+Date: Mon, 11 Apr 2022 12:24:33 +0000
+Subject: [PATCH] Enable WDT2 for causing reset in Kernel/u-boot hang
+
+In the current implementation, WDT1 is enabled as the reset reason
+for u-boot/kernel hang recovery. This fix changes the watchdog timer from
+WDT1 to WDT2 for the u-boot/kernel hang or panic as WDT2 is expected
+here.
+
+Along with this fix, panic time out value is changed from "-1" to "0" in
+kernel configuration file. Which will make the system remain in hang
+instead of rebooting immediately. This will allow WDT2 to complete the
+time out period and trigger the reset.
+
+Tested:
+1. Triggered a kernel panic using "echo c > /proc/sysrq-trigger" command
+and confirmed the reset reason is WDT2 reset.
+2. After 3 kernel panics the BMC is booted to u-boot prompt
+3. The normal BMC resets(ipmitool raw 6 2) are caused by WDT1 only as
+expected.
+
+Signed-off-by: AKSHAY RAVEENDRAN K <[email protected]>
+---
+ arch/arm/dts/ast2600-intel.dts          |  2 +-
+ arch/arm/mach-aspeed/ast2600/platform.S | 11 +++++++----
+ 2 files changed, 8 insertions(+), 5 deletions(-)
+
+diff --git a/arch/arm/dts/ast2600-intel.dts b/arch/arm/dts/ast2600-intel.dts
+index dba62fd254..b894be2a64 100644
+--- a/arch/arm/dts/ast2600-intel.dts
++++ b/arch/arm/dts/ast2600-intel.dts
+@@ -98,7 +98,7 @@
+ 
+ &wdt1 {
+ 	u-boot,dm-pre-reloc;
+-	status = "okay";
++	status = "disabled";
+ };
+ 
+ &wdt2 {
+diff --git a/arch/arm/mach-aspeed/ast2600/platform.S b/arch/arm/mach-aspeed/ast2600/platform.S
+index cc1d6b7a61..967c255cd5 100644
+--- a/arch/arm/mach-aspeed/ast2600/platform.S
++++ b/arch/arm/mach-aspeed/ast2600/platform.S
+@@ -78,6 +78,9 @@
+ #define AST_WDT1_RESET_MASK2	(AST_WDT1_BASE + 0x020)
+ 
+ #define AST_WDT2_BASE		0x1E785040
++#define AST_WDT2_RELOAD_VAL     (AST_WDT2_BASE + 0x004)
++#define AST_WDT2_RESTART_CTRL   (AST_WDT2_BASE + 0x008)
++#define AST_WDT2_CTRL           (AST_WDT2_BASE + 0x00C)
+ #define AST_WDT2_RESET_MASK1	(AST_WDT2_BASE + 0x01C)
+ #define AST_WDT2_RESET_MASK2	(AST_WDT2_BASE + 0x020)
+ 
+@@ -388,14 +391,14 @@ wait_lock:
+ 	str	r0, [r1]
+ 
+ #ifdef CONFIG_HW_WATCHDOG
+-	/* Enable WDT1 to recover u-boot hang */
+-	ldr   r0, =AST_WDT1_RELOAD_VAL
++	/* Enable WDT2 to recover u-boot hang */
++	ldr   r0, =AST_WDT2_RELOAD_VAL
+ 	ldr   r1, =0x00500000             @ ~5 seconds
+ 	str   r1, [r0]
+-	ldr   r0, =AST_WDT1_RESTART_CTRL
++	ldr   r0, =AST_WDT2_RESTART_CTRL
+ 	ldr   r1, =0x00004755
+ 	str   r1, [r0]
+-	ldr   r0, =AST_WDT1_CTRL
++	ldr   r0, =AST_WDT2_CTRL
+ 	ldr   r1, =0x00000013
+ 	str   r1, [r0]
+ #endif
+-- 
+2.17.1
+

meta-openbmc-mods/meta-ast2600/recipes-bsp/u-boot/files/0045-PFR-Skip-counting-WDT2-event-when-EXTRST-is-set.patch

@@ -0,0 +1,45 @@
+From 59dc87adc78cfcc2a4dba57a777c1c46ef6cd4d8 Mon Sep 17 00:00:00 2001
+From: AKSHAY RAVEENDRAN K <[email protected]>
+Date: Tue, 19 Apr 2022 06:25:32 +0000
+Subject: [PATCH] PFR- Skip counting WDT2 event when EXTRST# is set
+
+when a kernel/u-boot panic or hang occurs the WDT2 will trigger a BMC
+reset and it will increase bootfailure count. If the bootfailure count
+is more than 3, the u-boot will abort the booting to BMC. This fix will
+remove the bootfailure count incrementing if PFR is provisioned as PFR
+CPLD will boot a recovery image anyway if the booting process is not
+working as expected and stopping in u-boot is not necessary.
+
+Tested:
+triggered kernel panic 4 times and confirmed that boot process
+is not aborted at u-boot in PFR provisioned mode.
+
+Signed-off-by: AKSHAY RAVEENDRAN K <[email protected]>
+---
+ board/aspeed/ast2600_intel/intel.c | 3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/board/aspeed/ast2600_intel/intel.c b/board/aspeed/ast2600_intel/intel.c
+index c0d82bfb4b..5a54051ac7 100644
+--- a/board/aspeed/ast2600_intel/intel.c
++++ b/board/aspeed/ast2600_intel/intel.c
+@@ -13,6 +13,7 @@
+ #define SYS_PWR_RESET_FLAG	BIT(0) /* from scu_info.c */
+ #define WATCHDOG_RESET_BIT	BIT(20)
+ #define BOOT_FAILURE_LIMIT	3
++#define EXTRST_RESET_BIT	BIT(1)
+ 
+ #define SCU_014			0x014		/* Silicon Revision ID */
+ #define REV_ID_AST2600A0	0x05000303	/* AST2600 A0 */
+@@ -703,7 +704,7 @@ int board_late_init(void)
+ 
+ 	boot_failures = get_boot_failures();
+ 
+-	if (gd->reset_reason & WATCHDOG_RESET_BIT)
++	if ((gd->reset_reason & WATCHDOG_RESET_BIT) && !(gd->reset_reason & EXTRST_RESET_BIT))
+ 		set_boot_failures(boot_failures + 1);
+ 	else
+ 		set_boot_failures(0);
+-- 
+2.17.1
+

meta-openbmc-mods/meta-ast2600/recipes-bsp/u-boot/u-boot-aspeed-sdk_%.bbappend

@@ -42,6 +42,7 @@ SRC_URI:append:intel-ast2600 = " \
     file://0036-Disable-BMC-MMIO-Decode-on-VGA-SCU-register-bit.patch \
     file://0037-Enable-I2C-clock-stretching-and-multi-master-support.patch \
     file://0038-Disabling-serial-console-if-FFUJ-is-enabled.patch \
+    file://0044-Enable-WDT2-for-causing-reset-in-Kernel-u-boot-hang.patch \
     "
 
 # CVE-2020-10648 vulnerability fix
@@ -99,6 +100,7 @@ SRC_URI:append:intel-ast2600 = " \
 
 PFR_SRC_URI = " \
     file://0043-AST2600-PFR-u-boot-env-changes-as-per-PFR-BMC-image.patch \
+    file://0045-PFR-Skip-counting-WDT2-event-when-EXTRST-is-set.patch \
     "
 
 AUTOBOOT_SRC_URI = " \

meta-openbmc-mods/meta-common/classes/image_types_phosphor_auto.bbclass

@@ -16,7 +16,9 @@ IMAGE_TYPES += "mtd-auto"
 
 IMAGE_TYPEDEP:mtd-auto = "${IMAGE_BASETYPE}"
 IMAGE_TYPES_MASKED += "mtd-auto"
-
+FLASH_UBOOT_SPL_IMAGE ?= "u-boot-spl"
+FLASH_UBOOT_IMAGE ?= "u-boot"
+image_dst ?= "image-u-boot"
 # Flash characteristics in KB unless otherwise noted
 python() {
     types = d.getVar('IMAGE_FSTYPES', True).split()
@@ -47,9 +49,23 @@ do_generate_auto() {
     bbdebug 1 "do_generate_auto IMAGE_TYPES=${IMAGE_TYPES} size=${FLASH_SIZE}KB (${DEPLOY_DIR_IMAGE}/${IMAGE_NAME}.auto.mtd)"
     # Assemble the flash image
     mk_nor_image ${IMGDEPLOYDIR}/${IMAGE_NAME}.auto.mtd ${FLASH_SIZE}
+    uboot_offset=${FLASH_UBOOT_OFFSET}
+    if [ ! -z ${SPL_BINARY} ]; then
     dd bs=1k conv=notrunc seek=${FLASH_UBOOT_OFFSET} \
+            if=${DEPLOY_DIR_IMAGE}/${FLASH_UBOOT_SPL_IMAGE}.${UBOOT_SUFFIX} \
+            of=${DEPLOY_DIR_IMAGE}/${image_dst}
+        uboot_offset=${FLASH_UBOOT_SPL_SIZE}
+        dd bs=1k conv=notrunc seek=${uboot_offset} \
+            if=${DEPLOY_DIR_IMAGE}/${FLASH_UBOOT_IMAGE}.${UBOOT_SUFFIX} \
+            of=${DEPLOY_DIR_IMAGE}/${image_dst}
+        dd bs=1k conv=notrunc seek=${FLASH_UBOOT_OFFSET} \
+            if=${DEPLOY_DIR_IMAGE}/${image_dst} \
+            of=${IMGDEPLOYDIR}/${IMAGE_NAME}.auto.mtd
+    else
+        dd bs=1k conv=notrunc seek=${FLASH_UBOOT_OFFSET} \
         if=${DEPLOY_DIR_IMAGE}/u-boot.${UBOOT_SUFFIX} \
         of=${IMGDEPLOYDIR}/${IMAGE_NAME}.auto.mtd
+    fi
 
     for OFFSET in ${FLASH_RUNTIME_OFFSETS}; do
         dd bs=1k conv=notrunc seek=${OFFSET} \

meta-openbmc-mods/meta-common/classes/obmc-phosphor-image-common.bbclass

@@ -60,7 +60,6 @@ IMAGE_INSTALL:append = " \
         ac-boot-check \
         host-error-monitor \
         beepcode-mgr \
-        psu-manager \
         kernel-panic-check \
         id-led-off \
         hsbp-manager \

meta-openbmc-mods/meta-common/recipes-connectivity/openssl/openssl/CVE-2022-0778.patch

@@ -0,0 +1,69 @@
+From 3118eb64934499d93db3230748a452351d1d9a65 Mon Sep 17 00:00:00 2001
+From: Tomas Mraz <[email protected]>
+Date: Mon, 28 Feb 2022 18:26:21 +0100
+Subject: [PATCH] Fix possible infinite loop in BN_mod_sqrt()
+
+The calculation in some cases does not finish for non-prime p.
+
+This fixes CVE-2022-0778.
+
+Based on patch by David Benjamin <[email protected]>.
+
+Reviewed-by: Paul Dale <[email protected]>
+Reviewed-by: Matt Caswell <[email protected]>
+---
+ crypto/bn/bn_sqrt.c | 30 ++++++++++++++++++------------
+ 1 file changed, 18 insertions(+), 12 deletions(-)
+
+diff --git a/crypto/bn/bn_sqrt.c b/crypto/bn/bn_sqrt.c
+index 1723d5ded5..53b0f55985 100644
+--- a/crypto/bn/bn_sqrt.c
++++ b/crypto/bn/bn_sqrt.c
+@@ -14,7 +14,8 @@ BIGNUM *BN_mod_sqrt(BIGNUM *in, const BIGNUM *a, const BIGNUM *p, BN_CTX *ctx)
+ /*
+  * Returns 'ret' such that ret^2 == a (mod p), using the Tonelli/Shanks
+  * algorithm (cf. Henri Cohen, "A Course in Algebraic Computational Number
+- * Theory", algorithm 1.5.1). 'p' must be prime!
++ * Theory", algorithm 1.5.1). 'p' must be prime, otherwise an error or
++ * an incorrect "result" will be returned.
+  */
+ {
+     BIGNUM *ret = in;
+@@ -301,18 +302,23 @@ BIGNUM *BN_mod_sqrt(BIGNUM *in, const BIGNUM *a, const BIGNUM *p, BN_CTX *ctx)
+             goto vrfy;
+         }
+ 
+-        /* find smallest  i  such that  b^(2^i) = 1 */
+-        i = 1;
+-        if (!BN_mod_sqr(t, b, p, ctx))
+-            goto end;
+-        while (!BN_is_one(t)) {
+-            i++;
+-            if (i == e) {
+-                BNerr(BN_F_BN_MOD_SQRT, BN_R_NOT_A_SQUARE);
+-                goto end;
++        /* Find the smallest i, 0 < i < e, such that b^(2^i) = 1. */
++        for (i = 1; i < e; i++) {
++            if (i == 1) {
++                if (!BN_mod_sqr(t, b, p, ctx))
++                    goto end;
++
++            } else {
++                if (!BN_mod_mul(t, t, t, p, ctx))
++                    goto end;
+             }
+-            if (!BN_mod_mul(t, t, t, p, ctx))
+-                goto end;
++            if (BN_is_one(t))
++                break;
++        }
++        /* If not found, a is not a square or p is not prime. */
++        if (i >= e) {
++            BNerr(BN_F_BN_MOD_SQRT, BN_R_NOT_A_SQUARE);
++            goto end;
+         }
+ 
+         /* t := y^2^(e - i - 1) */
+-- 
+2.25.1
+

meta-openbmc-mods/meta-common/recipes-connectivity/openssl/openssl_1.1.1l.bb

@@ -17,6 +17,7 @@ SRC_URI = "http://www.openssl.org/source/openssl-${PV}.tar.gz \
            file://0001-buildinfo-strip-sysroot-and-debug-prefix-map-from-co.patch \
            file://afalg.patch \
            file://reproducible.patch \
+           file://CVE-2022-0778.patch \
            "
 
 SRC_URI:append:class-nativesdk = " \

meta-openbmc-mods/meta-common/recipes-core/base-files/base-files/40-oom_reboot.conf

@@ -1,4 +1,2 @@
 # panic kernel on OOM
 vm.panic_on_oom=2
-# reboot after 10 sec on panic
-kernel.panic=10

meta-openbmc-mods/meta-common/recipes-core/expat/expat_2.4.4.bb meta-openbmc-mods/meta-common/recipes-core/expat/expat_2.4.5.bb

@@ -14,7 +14,7 @@ SRC_URI = "https://github.com/libexpat/libexpat/releases/download/R_${VERSION_TA
 
 UPSTREAM_CHECK_URI = "https://github.com/libexpat/libexpat/releases/"
 
-SRC_URI[sha256sum] = "14c58c2a0b5b8b31836514dfab41bd191836db7aa7b84ae5c47bc0327a20d64a"
+SRC_URI[sha256sum] = "fbb430f964c7a2db2626452b6769e6a8d5d23593a453ccbc21701b74deabedff"
 
 EXTRA_OECMAKE:class-native += "-DEXPAT_BUILD_DOCS=OFF"
 

meta-openbmc-mods/meta-common/recipes-core/host-error-monitor/host-error-monitor_%.bbappend

@@ -1,4 +1,6 @@
-SRC_URI  = "git://github.com/openbmc/host-error-monitor"
-SRCREV = "1c208480e6de77a5a41b0733c595e8d4a99e5311"
+# The URI is required for the autobump script but keep it commented
+# to not override the upstream value
+# SRC_URI  = "git://github.com/openbmc/host-error-monitor;branch=master;protocol=https"
+SRCREV = "ed6972aefe37a039d5b41d183eafc8c48549be67"
 
 EXTRA_OECMAKE = "-DYOCTO=1"

meta-openbmc-mods/meta-common/recipes-core/ipmi/intel-ipmi-oem_%.bbappend

@@ -2,7 +2,7 @@ EXTRA_OECMAKE += "${@bb.utils.contains('IMAGE_FSTYPES', 'intel-pfr', '-DINTEL_PF
 EXTRA_OECMAKE += "${@bb.utils.contains('EXTRA_IMAGE_FEATURES', 'validation-unsecure', '-DBMC_VALIDATION_UNSECURE_FEATURE=ON', '', d)}"
 EXTRA_OECMAKE += "-DUSING_ENTITY_MANAGER_DECORATORS=OFF"
 SRC_URI = "git://github.com/openbmc/intel-ipmi-oem.git"
-SRCREV = "a165038f0472459ae2ec0ae50b7e0c09969882c7"
+SRCREV = "6346e98cd5f33be2328478f865b34edc7203a99d"
 
 FILESEXTRAPATHS:append := ":${THISDIR}/${PN}"
 

meta-openbmc-mods/meta-common/recipes-core/libpeci/libpeci_%.bbappend

@@ -1,3 +1,9 @@
 # Enable downstream autobump
 SRC_URI = "git://github.com/openbmc/libpeci"
-SRCREV = "6a00e9aa72f75d66eb8b9572c7fd3894f91c6bba"
+SRCREV = "bdefaa3c95d0a93928f8ebda1ce158172d3a4bcf"
+
+inherit pkgconfig systemd
+
+PACKAGECONFIG ??= ""
+PACKAGECONFIG[dbus-raw-peci] = "-DDBUS_RAW_PECI=ON,-DDBUS_RAW_PECI=OFF,boost sdbusplus"
+SYSTEMD_SERVICE:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'dbus-raw-peci', 'com.intel.peci.service', '', d)}"