[0/6] backport: SPDX 3.0 support to Scarthgap

Message ID	20250905171154.182825-1-kamel.bouhara@bootlin.com
Headers	show Return-Path: <kamel.bouhara@bootlin.com> ip: 217.70.183.199, mailfrom: kamel.bouhara@bootlin.com) From: Kamel Bouhara <kamel.bouhara@bootlin.com> To: openembedded-core@lists.openembedded.org Cc: JPEWhacker@gmail.com, thomas.petazzoni@bootlin.com, Miquel Raynal <miquel.raynal@bootlin.com>, mathieu.dubois-briand@bootlin.com, antonin.godard@bootlin.com, Pascal Eberhard <pascal.eberhard@se.com>, Kamel Bouhara <kamel.bouhara@bootlin.com> Subject: [PATCH 0/6] backport: SPDX 3.0 support to Scarthgap Date: Fri, 5 Sep 2025 19:11:48 +0200 Message-ID: <20250905171154.182825-1-kamel.bouhara@bootlin.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	backport: SPDX 3.0 support to Scarthgap \| expand [0/6] backport: SPDX 3.0 support to Scarthgap [1/6] backport: SPDX 3.0 fixes and tasks from upstream version Walnascar [2/6] spdx30_tasks: fix FetchData attribute in add_download_files [3/6] classes-global/license: Move functions to library code [4/6] lib/license: Move package license skip to library [5/6] lib: oe: license: Add missing import [6/6] classes-recipe/image: Add image file manifest

Message ID

20250905171154.182825-1-kamel.bouhara@bootlin.com

Headers

From: Kamel Bouhara <kamel.bouhara@bootlin.com>
To: openembedded-core@lists.openembedded.org
Cc: JPEWhacker@gmail.com,
	thomas.petazzoni@bootlin.com,
	Miquel Raynal <miquel.raynal@bootlin.com>,
	mathieu.dubois-briand@bootlin.com,
	antonin.godard@bootlin.com,
	Pascal Eberhard <pascal.eberhard@se.com>,
	Kamel Bouhara <kamel.bouhara@bootlin.com>
Subject: [PATCH 0/6] backport: SPDX 3.0 support to Scarthgap
Date: Fri,  5 Sep 2025 19:11:48 +0200
Message-ID: <20250905171154.182825-1-kamel.bouhara@bootlin.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

backport: SPDX 3.0 support to Scarthgap | expand

Message

Kamel Bouhara Sept. 5, 2025, 5:11 p.m. UTC

Hello,

This series backports SPDX 3.0 support from the upstream Walnascar
branch to Scarthgap, along with a few additional local fixes to ensure
correct integration.

The primary motivation for this series is to bring full SPDX 3.0 support
to the latest Yocto Project LTS release, Scarthgap, which will continue
to receive maintenance updates until 2028.

This ensures that long-term supported releases can benefit from the
latest SPDX standard for license and compliance tracking.

These changes are also in line with discussions at the Yocto Project
Summit in Amsterdam, where the need for up-to-date SPDX support in LTS
releases was highlighted.

The backport introduces SPDX 3.0 document support, SDK and image
integration, and related helpers. It also brings over tasks, classes,
and library code from upstream.

Feedback is particularly welcome on:
  - The correctness and completeness of the backport
  - Whether the local fixes should be adjusted or further refined

Greetings.

Kamel

Joshua Watt (4):
  classes-global/license: Move functions to library code
  lib/license: Move package license skip to library
  lib: oe: license: Add missing import
  classes-recipe/image: Add image file manifest

Kamel Bouhara (Schneider Electric) (2):
  backport: SPDX 3.0 fixes and tasks from upstream version Walnascar
  spdx30_tasks: fix FetchData attribute in add_download_files

 meta/classes-global/base.bbclass              |   41 +-
 meta/classes-global/license.bbclass           |  165 -
 .../create-spdx-image-3.0.bbclass             |   85 +
 .../create-spdx-sdk-3.0.bbclass               |   74 +
 meta/classes-recipe/image.bbclass             |   58 +
 meta/classes-recipe/license_image.bbclass     |   14 +-
 meta/classes-recipe/nospdx.bbclass            |   13 +
 meta/classes/create-spdx-3.0.bbclass          |  200 +
 meta/classes/spdx-common.bbclass              |   99 +
 meta/lib/oe/__init__.py                       |    2 +-
 meta/lib/oe/license.py                        |  203 +
 meta/lib/oe/sbom30.py                         | 1096 ++++
 meta/lib/oe/spdx30.py                         | 5593 +++++++++++++++++
 meta/lib/oe/spdx30_tasks.py                   | 1348 ++++
 meta/lib/oe/spdx_common.py                    |  244 +
 15 files changed, 9028 insertions(+), 207 deletions(-)
 create mode 100644 meta/classes-recipe/create-spdx-image-3.0.bbclass
 create mode 100644 meta/classes-recipe/create-spdx-sdk-3.0.bbclass
 create mode 100644 meta/classes-recipe/nospdx.bbclass
 create mode 100644 meta/classes/create-spdx-3.0.bbclass
 create mode 100644 meta/classes/spdx-common.bbclass
 create mode 100644 meta/lib/oe/sbom30.py
 create mode 100644 meta/lib/oe/spdx30.py
 create mode 100644 meta/lib/oe/spdx30_tasks.py
 create mode 100644 meta/lib/oe/spdx_common.py

--
2.43.0

Comments

Kamel Bouhara Sept. 5, 2025, 7:16 p.m. UTC | #1

On Fri, Sep 05, 2025 at 07:11:48PM +0200, Kamel Bouhara wrote:
> Hello,
>

Please note this entire patch series is for Scarthgap.
Sorry for the missing [scarthgap] tag in the subject line.

Cc: Steve Sakoman <steve@sakoman.com>

> This series backports SPDX 3.0 support from the upstream Walnascar
> branch to Scarthgap, along with a few additional local fixes to ensure
> correct integration.
>
> The primary motivation for this series is to bring full SPDX 3.0 support
> to the latest Yocto Project LTS release, Scarthgap, which will continue
> to receive maintenance updates until 2028.
>
> This ensures that long-term supported releases can benefit from the
> latest SPDX standard for license and compliance tracking.
>
> These changes are also in line with discussions at the Yocto Project
> Summit in Amsterdam, where the need for up-to-date SPDX support in LTS
> releases was highlighted.
>
> The backport introduces SPDX 3.0 document support, SDK and image
> integration, and related helpers. It also brings over tasks, classes,
> and library code from upstream.
>
> Feedback is particularly welcome on:
>   - The correctness and completeness of the backport
>   - Whether the local fixes should be adjusted or further refined
>
> Greetings.
>
> Kamel
>
> Joshua Watt (4):
>   classes-global/license: Move functions to library code
>   lib/license: Move package license skip to library
>   lib: oe: license: Add missing import
>   classes-recipe/image: Add image file manifest
>
> Kamel Bouhara (Schneider Electric) (2):
>   backport: SPDX 3.0 fixes and tasks from upstream version Walnascar
>   spdx30_tasks: fix FetchData attribute in add_download_files
>
>  meta/classes-global/base.bbclass              |   41 +-
>  meta/classes-global/license.bbclass           |  165 -
>  .../create-spdx-image-3.0.bbclass             |   85 +
>  .../create-spdx-sdk-3.0.bbclass               |   74 +
>  meta/classes-recipe/image.bbclass             |   58 +
>  meta/classes-recipe/license_image.bbclass     |   14 +-
>  meta/classes-recipe/nospdx.bbclass            |   13 +
>  meta/classes/create-spdx-3.0.bbclass          |  200 +
>  meta/classes/spdx-common.bbclass              |   99 +
>  meta/lib/oe/__init__.py                       |    2 +-
>  meta/lib/oe/license.py                        |  203 +
>  meta/lib/oe/sbom30.py                         | 1096 ++++
>  meta/lib/oe/spdx30.py                         | 5593 +++++++++++++++++
>  meta/lib/oe/spdx30_tasks.py                   | 1348 ++++
>  meta/lib/oe/spdx_common.py                    |  244 +
>  15 files changed, 9028 insertions(+), 207 deletions(-)
>  create mode 100644 meta/classes-recipe/create-spdx-image-3.0.bbclass
>  create mode 100644 meta/classes-recipe/create-spdx-sdk-3.0.bbclass
>  create mode 100644 meta/classes-recipe/nospdx.bbclass
>  create mode 100644 meta/classes/create-spdx-3.0.bbclass
>  create mode 100644 meta/classes/spdx-common.bbclass
>  create mode 100644 meta/lib/oe/sbom30.py
>  create mode 100644 meta/lib/oe/spdx30.py
>  create mode 100644 meta/lib/oe/spdx30_tasks.py
>  create mode 100644 meta/lib/oe/spdx_common.py
>
> --
> 2.43.0
>

--
Kamel Bouhara, Bootlin
Embedded Linux and kernel engineering
https://bootlin.com