Steve Sakoman [Tue, 24 Oct 2023 14:25:53 +0000 (04:25 -1000)]
patch.py: Use shlex instead of deprecated pipe
The pipe library is deprecated in Python 3.11 and will be removed in
Python 3.13. pipe.quote is just an import of shlex.quote anyway.
Clean up imports while we're at it.
Signed-off-by: Ola x Nilsson <olani@axis.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
(cherry picked from commit 5f33c7b99a991c380d1813da8248ba5470ca4d4e) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Sun, 13 Aug 2023 09:09:14 +0000 (10:09 +0100)]
resulttool/report: Avoid divide by zero
Avoid a divide by zero traceback if unfortunate test counts are encountered.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c5aeea53dfacb53dedb8445cb3523dc3a8cb6dca) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Marek Vasut [Tue, 10 Oct 2023 22:47:48 +0000 (00:47 +0200)]
systemd: Backport systemd-resolved: use hostname for certificate validation in DoT
Widely accepted certificates for IP addresses are expensive and only
affordable for larger organizations. Therefore if the user provides
the hostname in the DNS= option, we should use it instead of the IP
address.
This fixes https://nvd.nist.gov/vuln/detail/CVE-2018-21029 per
suggestion https://github.com/systemd/systemd-stable/issues/72 .
CVE: CVE-2018-21029 Signed-off-by: Marek Vasut <marex@denx.de> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ryan Eatmon [Tue, 10 Oct 2023 08:26:23 +0000 (09:26 +0100)]
kernel.bbclass: Add force flag to rm calls
The latest 6.5 kernels do not appear to create the source file in
${D}${nonarch_base_libdir}/modules/${KERNEL_VERSION}/source so the
recipe errors out when trying to remove it. Simple fix is to add the
-f (force) flag to the call.
Signed-off-by: Ryan Eatmon <reatmon@ti.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Alexander Sverdlin <alexander.sverdlin@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Backported from kirkstone commit 7e177848f97e. Signed-off-by: Paul Barker <paul.barker.ct@bp.renesas.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Siddharth Doshi [Mon, 16 Oct 2023 14:43:50 +0000 (20:13 +0530)]
libxpm: upgrade to 3.5.17
- This upgrade includes multiple security fixes.
CVE-2022-4883
CVE-2022-44617
CVE-2022-46285
CVE-2022-44617
CVE-2023-43788
CVE-2023-43789
- Removed CVE-2022-46285 as it is already fixed by this upgrade.
- License-update: additional copyright holders f0857c0 man pages: Correct Copyright/License notices
Due to this commit LIC_FILES_CHKSUM is changed
- Disable reading compressed files as that requires compress/uncompress executables.
Following the approach in oe-core/master: 7de4084634 libxpm: upgrade 3.5.14 -> 3.5.15
- Add XORG_EXT to specify tar.xz as upstream has switched from bz2 to xz compression.
Signed-off-by: Siddharth Doshi <sdoshi@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Siddharth Doshi [Mon, 16 Oct 2023 14:43:49 +0000 (20:13 +0530)]
xorg-lib-common: Add variable to set tarball type
Upstream has switched some new releases from bz2 to xz compression. Add
an XORG_EXT variable so recipes can set the file name extension needed
for the compression type.
Following the approach in oe-core/master: 6a8068e036b4b2a40b38896275b936916b4db76e
xorg-lib-common: Add variable to set tarball type use a variable for the tarball suffix/compression format.
Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Siddharth Doshi <sdoshi@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pawan [Mon, 16 Oct 2023 08:21:23 +0000 (13:51 +0530)]
libwebp: Update CVE ID CVE-2023-4863
Notice that it references different CVE id:
https://nvd.nist.gov/vuln/detail/CVE-2023-5129
which was marked as a rejected duplicate of:
https://nvd.nist.gov/vuln/detail/CVE-2023-4863
but it's the same issue. Hence update CVE ID CVE-2023-4863
to CVE-2023-5129.patch.
Signed-off-by: Pawan <badganchipv@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Siddharth Doshi [Sun, 15 Oct 2023 15:30:39 +0000 (21:00 +0530)]
glib-2.0: Fix multiple vulnerabilities
CVE's Fixed:
CVE-2023-29499: glib: GVariant offset table entry size is not checked in is_normal()
CVE-2023-32611: glib: g_variant_byteswap() can take a long time with some non-normal inputs
CVE-2023-32636: glib: Timeout in fuzz_variant_text
CVE-2023-32643: glib: Heap-buffer-overflow in g_variant_serialised_get_child
CVE-2023-32665: glib: GVariant deserialisation does not match spec for non-normal data
Signed-off-by: Siddharth Doshi <sdoshi@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Mike Crowe [Thu, 12 Oct 2023 20:55:19 +0000 (21:55 +0100)]
curl: Backport fix for CVE-2023-38545
Backporting this change required tweaking the error value since the
two-level CURLE_PROXY error reporting was introduced after curl
7.69.1. The test required some tweaks to not rely on more-recent
improvements to the test infrastructure too.
Signed-off-by: Mike Crowe <mac@mcrowe.com>
CVE: CVE-2023-38545 Signed-off-by: Steve Sakoman <steve@sakoman.com>
Marek Vasut [Thu, 12 Oct 2023 01:16:43 +0000 (03:16 +0200)]
libtiff: Add fix for tiffcrop CVE-2023-1916
Add fix for tiffcrop tool CVE-2023-1916 [1].
A flaw was found in tiffcrop, a program distributed by the libtiff
package. A specially crafted tiff file can lead to an out-of-bounds
read in the extractImageSection function in tools/tiffcrop.c, resulting
in a denial of service and limited information disclosure. This issue
affects libtiff versions 4.x.
The tool is no longer part of newer libtiff distributions, hence the
fix is rejected by upstream in [2]. The backport is still applicable
to older versions of libtiff, pick the CVE fix from ubuntu 20.04 [3].
Marek Vasut [Mon, 9 Oct 2023 16:25:43 +0000 (18:25 +0200)]
cpio: Replace fix wrong CRC with ASCII CRC for large files with upstream backport
Replace the original "Wrong CRC with ASCII CRC for large files"
patch with upstream backport, and add additional fix on top of
the same problem which upstream detected and fixed.
Signed-off-by: Marek Vasut <marex@denx.de> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Marek Vasut [Mon, 9 Oct 2023 16:26:22 +0000 (18:26 +0200)]
busybox: Backport CVE-2022-48174 fix
There is a stack overflow vulnerability in ash.c:6030 in busybox before
1.35. In the environment of Internet of Vehicles, this vulnerability can
be executed from command to arbitrary code execution.
https://nvd.nist.gov/vuln/detail/CVE-2022-48174
CVE: CVE-2022-48174 Signed-off-by: Marek Vasut <marex@denx.de> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Vijay Anusuri [Mon, 9 Oct 2023 04:18:05 +0000 (09:48 +0530)]
ghostscript: Backport fix CVE-2023-43115
In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote
code execution via crafted PostScript documents because they can switch to the
IJS device, or change the IjsServer parameter, after SAFER has been activated.
NOTE: it is a documented risk that the IJS server can be specified on a gs
command line (the IJS device inherently must execute a command to start the IJS server).
Shinu Chandran [Fri, 6 Oct 2023 19:13:45 +0000 (00:43 +0530)]
libpcre2 : Follow up fix CVE-2022-1586
CVE-2022-1586 was originally fixed by OE commit
https://github.com/openembedded/openembedded-core/commit/7f4daf88b71f
through libpcre2 commit
https://github.com/PCRE2Project/pcre2/commit/50a51cb7e672
The follow up patch is required to resolve a bug in the initial fix[50a51cb7e672]
https://github.com/PCRE2Project/pcre2/commit/d4fa336fbcc3
Julian Haller [Wed, 4 Oct 2023 10:04:10 +0000 (12:04 +0200)]
dbus: Add missing CVE_PRODUCT
The current dunfell CVE scans report 0 CVEs for our dbus version. This
is not correct, though, as we use the wrong product name to query it.
Fix this to get a proper CVE list.
Signed-off-by: Julian Haller <julian.haller@philips.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* debian/patches/any/local-CVE-2023-4911.patch: Fix a buffer overflow in the
dynamic loader's processing of the GLIBC_TUNABLES environment variable
(CVE-2023-4911).
This addresses the "Looney Tunables" vulnerability described at
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege-escalation-glibc-ld-so.txt
Signed-off-by: Mike Crowe <mac@mcrowe.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Fri, 29 Sep 2023 20:17:19 +0000 (16:17 -0400)]
linux-yocto/5.4: update to v5.4.257
Updating to the latest korg -stable release that comprises
the following commits:
a140610d8aff Linux 5.4.257 42900fd140c8 net/sched: Retire rsvp classifier b3637835ac99 drm/amdgpu: fix amdgpu_cs_p1_user_fence 650ebbba5c15 mtd: rawnand: brcmnand: Fix ECC level field setting for v7.2 controller b1ef1f2f3737 ext4: fix rec_len verify error e4efb0aaf288 scsi: megaraid_sas: Fix deadlock on firmware crashdump 44654114fb6f i2c: aspeed: Reset the i2c controller when timeout occurs ce47fe53f78b tracefs: Add missing lockdown check to tracefs_create_dir() b6c042d4ac6a nfsd: fix change_info in NFSv4 RENAME replies 952e477f9080 tracing: Have option files inc the trace array ref count ff8cf370d359 tracing: Have current_trace inc the trace array ref count a70c6e57316b btrfs: fix lockdep splat and potential deadlock after failure running delayed items 8e8dcc0f1518 attr: block mode changes of symlinks a8403f9fd402 md/raid1: fix error: ISO C90 forbids mixed declarations 349640248b5e selftests: tracing: Fix to unmount tracefs for recovering environment 5b50c95cf842 btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super b61aad18b38a btrfs: add a helper to read the superblock metadata_uuid bd0fe5489102 btrfs: move btrfs_pinned_by_swapfile prototype into volumes.h a04cce3e79c6 perf tools: Add an option to build without libbfd f3701ef61fd7 perf jevents: Make build dependency on test JSONs a12e9ba7f346 tools features: Add feature test to check if libbfd has buildid support 964e025ceefd kobject: Add sanity check for kset->kobj.ktype in kset_register() 545d1070ed7c media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler warning 44d72e9edd1b serial: cpm_uart: Avoid suspicious locking 2cbe6a88fbdd scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() 9cd6b3802d7c usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc abe0cd279aee media: pci: cx23885: replace BUG with error return 641e60223971 media: tuners: qt1010: replace BUG_ON with a regular error 991c77fe18c6 media: az6007: Fix null-ptr-deref in az6007_i2c_xfer() 8dc5b370254a media: anysee: fix null-ptr-deref in anysee_master_xfer 0c02eb70b1dd media: af9005: Fix null-ptr-deref in af9005_i2c_xfer beb9550494e7 media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer() b49c6e5dd236 media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer 7ffe14fce742 powerpc/pseries: fix possible memory leak in ibmebus_bus_init() 5873df019512 jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount b12ccbfdf653 fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount() a7fde3d46ac6 ext2: fix datatype of block number in ext2_xattr_set2() 25a68f2286be md: raid1: fix potential OOB in raid1_remove_disk() 77918680ab07 bus: ti-sysc: Configure uart quirks for k3 SoC 279e32b79d03 drm/exynos: fix a possible null-pointer dereference due to data race in exynos_drm_crtc_atomic_disable() 3beb97bed860 wifi: mac80211_hwsim: drop short frames 6773ea9982dc alx: fix OOB-read compiler warning fd1a177d2ccb mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450 ff75c853b7db tpm_tis: Resend command to recover from data transfer errors 61f5453e9706 crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() d1473fc030d3 wifi: mwifiex: fix fortify warning 38eb4ef67f60 wifi: ath9k: fix printk specifier 93f4a0b74413 devlink: remove reload failed checks in params get/set callbacks aadb178c5123 hw_breakpoint: fix single-stepping when using bpf_overflow_handler cb37e7fa2339 perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09 4de282f49135 ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470 d0a13c395e22 kernel/fork: beware of __put_task_struct() calling context 3bf4463e40a1 ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer 117fb80cd1e6 locks: fix KASAN: use-after-free in trace_event_raw_event_filelock_lock 7afbfde45d66 btrfs: output extra debug info if we failed to find an inline backref 6079dc77c6f3 autofs: fix memory leak of waitqueues in autofs_catatonic_mode 8c027a5798f1 parisc: Drop loops_per_jiffy from per_cpu struct 4316b8294503 drm/amd/display: Fix a bug when searching for insert_above_mpcc 1ce8362b4ac6 kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg(). b5fc6fd660ab ixgbe: fix timestamp configuration code f9f3ce7719eb net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict() 08d36f317c40 platform/mellanox: mlxbf-tmfifo: Drop jumbo frames 0507815ae94b mlxbf-tmfifo: sparse tags for config access 7efc9e97f6e2 platform/mellanox: mlxbf-tmfifo: Drop the Rx packet if no more descriptors 479c71cda14b kcm: Fix memory leak in error path of kcm_sendmsg() c565533407cd r8152: check budget for r8152_poll() 653fbddbdfc6 net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all() ba6673824efa net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc() 5624f26a3574 net: ipv4: fix one memleak in __inet_del_ifa() e757ca9c1ca1 clk: imx8mm: Move 1443X/1416X PLL clock structure to common place 75e0bd976154 ARM: dts: BCM5301X: Extend RAM to full 256MB for Linksys EA6500 V2 5f71716772b8 usb: typec: bus: verify partner exists in typec_altmode_attention 14fe0f8627f8 usb: typec: tcpm: Refactor tcpm_handle_vdm_request 979f8743f373 usb: typec: tcpm: Refactor tcpm_handle_vdm_request payload handling 6ca8e31480b5 perf tools: Handle old data in PERF_RECORD_ATTR dffa46d0ca52 perf hists browser: Fix hierarchy mode header 6095dd28217e mtd: rawnand: brcmnand: Fix potential false time out warning aae45746f4ae mtd: rawnand: brcmnand: Fix potential out-of-bounds access in oob write 09417fbf12f8 mtd: rawnand: brcmnand: Fix crash during the panic_write aa64f6f0ce7e btrfs: use the correct superblock to compare fsid in btrfs_validate_super 6eb1fc314ce4 btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART b0d236e3afac fuse: nlookup missing decrement in fuse_direntplus_link 0e918d7c00da ata: pata_ftide010: Add missing MODULE_DESCRIPTION e03ac1773414 ata: sata_gemini: Add missing MODULE_DESCRIPTION 118db787bab3 sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory() 89099d73b2dd net: hns3: fix the port information display when sfp is absent a44602888bbe netfilter: nfnetlink_osf: avoid OOB read 62c363e6041c ip_tunnels: use DEV_STATS_INC() a5dffc12038f idr: fix param name in idr_alloc_cyclic() doc 6b0cb9c05584 s390/zcrypt: don't leak memory if dev_set_name() fails c149b61301fe igb: Change IGB_MIN to allow set rx/tx value between 64 and 80 4a5defbfe88b igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80 c805b8741476 igc: Change IGC_MIN to allow set rx/tx value between 64 and 80 8047a4898498 kcm: Destroy mutex in kcm_exit_net() a6d11571b91d net: sched: sch_qfq: Fix UAF in qfq_dequeue() f1ba9a03b166 af_unix: Fix data race around sk->sk_err. 1ffed3ea8750 af_unix: Fix data-races around sk->sk_shutdown. 5d91b7891f4a af_unix: Fix data-race around unix_tot_inflight. adcf4e069358 af_unix: Fix data-races around user->unix_inflight. e13db62db9ef net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr 23b4b1a069e9 veth: Fixing transmit return status for dropped packets 0133bc289720 igb: disable virtualization features on 82580 41f10a4d78fe net: read sk->sk_family once in sk_mc_loop() cd12efc54ff8 ipv4: annotate data-races around fi->fib_dead 01585fa32650 sctp: annotate data-races around sk->sk_wmem_queued 04301da4d870 pwm: lpc32xx: Remove handling of PWM channels 565f7bb0b3fe watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load 7a0e41223e98 perf top: Don't pass an ERR_PTR() directly to perf_session__delete() c5be10f1bf61 x86/virt: Drop unnecessary check on extended CPUID level in cpu_has_svm() 1d0cc1a9c4bd perf annotate bpf: Don't enclose non-debug code with an assert() c7cc4dc2473c kconfig: fix possible buffer overflow 0158dab8e8b8 NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info 64c5e916fabe soc: qcom: qmi_encdec: Restrict string length in decode 5c7608d976ab clk: qcom: gcc-mdm9615: use proper parent for pll0_vote clock b88626c47217 parisc: led: Reduce CPU overhead for disk & lan LED computation 536f30922556 parisc: led: Fix LAN receive and transmit LEDs cbfffe51221b lib/test_meminit: allocate pages up to order MAX_ORDER 9b7f6e500969 drm/ast: Fix DRAM init on AST2200 8ffa40ff64aa fbdev/ep93xx-fb: Do not assign to struct fb_info.dev 6d5eb57a02a5 scsi: qla2xxx: Remove unsupported ql2xenabledif option e24bc58113d1 scsi: qla2xxx: Turn off noisy message log 05935f9106f1 scsi: qla2xxx: Fix erroneous link up failure 61641000ad33 scsi: qla2xxx: fix inconsistent TMF timeout f966dc8c2d18 net/ipv6: SKB symmetric hash should incorporate transport ports d31331e2df6e drm: fix double free for gbo in drm_gem_vram_init and drm_gem_vram_create 34eb4bd9152c udf: initialize newblock to 0 206d2b7bafc0 usb: typec: tcpci: clear the fault status bit 824421868102 serial: sc16is7xx: fix broken port 0 uart init 159bc8c6b5db sc16is7xx: Set iobase to device index 355ac795843f cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug 5e7d0acc69b5 crypto: stm32 - fix loop iterating through scatterlist for DMA 306e356d583d s390/ipl: add missing secure/has_secure file to ipl type 'unknown' e972231db29b pstore/ram: Check start of empty przs during init b6c9d040191f fsverity: skip PKCS#7 parser when keyring is empty 712491c9abf2 net: handle ARPHRD_PPP in dev_is_mac_header_xmit() 15b3727108c7 X.509: if signature is unsupported skip validation 7a7dd70cb954 dccp: Fix out of bounds access in DCCP error handler 1c675c937cb2 dlm: fix plock lookup when using multiple lockspaces 8cd1c5cec6c9 parisc: Fix /proc/cpuinfo output for lscpu 0337bb53cb7d procfs: block chmod on /proc/thread-self/comm 2e1f12ce0da7 Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset" eb1fa4819d9c ntb: Fix calculation ntb_transport_tx_free_entry() b2a6a169c222 ntb: Clean up tx tail index on link down 94491412a2af ntb: Drop packets when qp link is down ff3bb51e2136 media: dvb: symbol fixup for dvb_attach() b047ac1528a1 xtensa: PMU: fix base address for the newer hardware 2791a2a69a2c backlight/lv5207lp: Compare against struct fb_info.device bc86f29e1281 backlight/bd6107: Compare against struct fb_info.device 3dd8ff569596 backlight/gpio_backlight: Compare against struct fb_info.device c2e1ce4fa498 ARM: OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch() f53ab5a2bf20 ipmi_si: fix a memleak in try_smi_init() e7f97980f735 ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl 29811f4b8255 PM / devfreq: Fix leak in devfreq_dev_release() c2ad60ed38b8 igb: set max size RX buffer when store bad packet is enabled d44403ec0676 skbuff: skb_segment, Call zero copy functions before using skbuff frags 64831fb6a204 netfilter: xt_sctp: validate the flag_info count 28ce8495b559 netfilter: xt_u32: validate user space input 109e830585e8 netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c 3d54e9949930 igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU ec6ad9d99ef4 virtio_ring: fix avail_wrap_counter in virtqueue_add_packed 12fcca2ee445 cpufreq: Fix the race condition while updating the transition_task of policy fe5dd3950178 dmaengine: ste_dma40: Add missing IRQ check in d40_probe e0f2d85ea3d0 um: Fix hostaudio build errors 88d508faf3dd mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume() efa7f31669f0 rpmsg: glink: Add check for kstrdup d2473df751d2 phy/rockchip: inno-hdmi: do not power on rk3328 post pll on reg write f36a06988c19 phy/rockchip: inno-hdmi: round fractal pixclock in rk3328 recalc_rate b0d5d77b14b4 phy/rockchip: inno-hdmi: use correct vco_div_5 macro on rk3328 90e037cabc2c tracing: Fix race issue between cpu buffer write and swap ac78921ec246 x86/speculation: Mark all Skylake CPUs as vulnerable to GDS df7ca43fe090 HID: multitouch: Correct devm device reference for hidinput input_dev name cf48a7ba5c09 HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode() 011daffb53ce RDMA/siw: Correct wrong debug message 35a78898cdfd RDMA/siw: Balance the reference of cep->kref in the error path 9b6296861a5a Revert "IB/isert: Fix incorrect release of isert connection" 03db4fe7917b amba: bus: fix refcount leak 93a4aefa5745 serial: tegra: handle clk prepare error in tegra_uart_hw_init() d2bf25674cea scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock b1e3199bade0 scsi: core: Use 32-bit hostnum in scsi_host_lookup() 103b41e97275 media: ov2680: Fix regulators being left enabled on ov2680_power_on() errors 009b1202a099 media: ov2680: Fix vflip / hflip set functions 560624cf1d3a media: ov2680: Fix ov2680_bayer_order() 218b60bc06bc media: ov2680: Remove auto-gain and auto-exposure controls 768d4d230c02 media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips c04ae531eea6 media: ov5640: Enable MIPI interface in ov5640_set_power_mipi() 916219c523e0 media: i2c: ov5640: Configure HVP lines in s_power callback 93c518d28600 USB: gadget: f_mass_storage: Fix unused variable warning 0d8c6770983e media: go7007: Remove redundant if statement 38269b9ec843 iommu/vt-d: Fix to flush cache of PASID directory table a94aaffe9290 IB/uverbs: Fix an potential error pointer dereference c3a679853826 driver core: test_async: fix an error code 27a218419c86 dma-buf/sync_file: Fix docs syntax c9e6c1fefcd5 coresight: tmc: Explicit type conversions to prevent integer overflow 463934ca5d98 scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly 668ce8d508a3 scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly 06a2dde58f40 scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly e26d52128691 x86/APM: drop the duplicate APM_MINOR_DEV macro c65be6ad55e5 serial: sprd: Fix DMA buffer leak issue 730d1b7ec94c serial: sprd: Assign sprd_port after initialized to avoid wrong access dff8066579c0 serial: sprd: remove redundant sprd_port cleanup a7d80271a150 serial: sprd: getting port index via serial aliases only 47f3be62eab5 scsi: qla4xxx: Add length check when parsing nlattrs bc66e701ca8f scsi: be2iscsi: Add length check when parsing nlattrs 161d4509dde4 scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param() bc4fbf2dab31 usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host() de4345fe4312 media: mediatek: vcodec: Return NULL if no vdec_fb is found 02c0ea731f31 media: cx24120: Add retval check for cx24120_message_send() 75d6ef197c48 media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer() 74697b417624 media: dib7000p: Fix potential division by zero afd90d353f80 drivers: usb: smsusb: fix error handling code in smsusb_init_device 4bc5ffaf8ac4 media: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link() 008b334af84a media: v4l2-fwnode: simplify v4l2_fwnode_parse_link 064e156e9f66 media: v4l2-fwnode: fix v4l2_fwnode_parse_link handling 7a9619e38c2b NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN 16282aeca44b NFSD: da_addr_body field missing in some GETDEVICEINFO replies 93a14ab67582 fs: lockd: avoid possible wrong NULL parameter d3351799be41 jfs: validate max amount of blocks before allocation. 65bf8a196ba2 powerpc/iommu: Fix notifiers being shared by PCI and VIO buses 650803f93dd8 nfs/blocklayout: Use the passed in gfp flags 68ba08ab40c5 wifi: ath10k: Use RMW accessors for changing LNKCTL ab28c56192f5 drm/radeon: Use RMW accessors for changing LNKCTL d835a13232c0 drm/radeon: Prefer pcie_capability_read_word() 06c0c15ab03c drm/radeon: Replace numbers with PCI_EXP_LNKCTL2 definitions 30e633dbcd4c drm/radeon: Correct Transmit Margin masks 108ce391d6da drm/amdgpu: Use RMW accessors for changing LNKCTL 7085f1aab194 drm/amdgpu: Prefer pcie_capability_read_word() 62a1c1bd45d8 drm/amdgpu: Replace numbers with PCI_EXP_LNKCTL2 definitions adf810206cca drm/amdgpu: Correct Transmit Margin masks 7f9129b66c87 PCI: Add #defines for Enter Compliance, Transmit Margin 81d1de3b9793 powerpc/fadump: reset dump area size if fadump memory reserve fails 7159a27b1ac1 clk: imx: composite-8m: fix clock pauses when set_rate would be a no-op 044ff5356a3b PCI/ASPM: Use RMW accessors for changing LNKCTL 73d73556ed1d PCI: pciehp: Use RMW accessors for changing LNKCTL e7e3268ae9b7 PCI: Mark NVIDIA T4 GPUs to avoid bus reset a611e38d5b94 clk: sunxi-ng: Modify mismatched function name 9ad9cca12b10 drivers: clk: keystone: Fix parameter judgment in _of_pll_clk_init() de677f4379fa ipmi:ssif: Fix a memory leak when scanning for an adapter ef0d286989b1 ipmi:ssif: Add check for kstrdup 90fddb87892e ALSA: ac97: Fix possible error value of *rac97 0b1e48e4dccb of: unittest: Fix overlay type in apply/revert check 0a6f39488c38 drm/mediatek: Fix potential memory leak if vmap() fail f6364fa751d7 audit: fix possible soft lockup in __audit_inode_child() 43f0c2bb16af smackfs: Prevent underflow in smk_set_cipso() b8a61df6f404 drm/msm/mdp5: Don't leak some plane state 1f3d0e65d111 ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig dbdc828991ae drm/panel: simple: Add missing connector type and pixel format for AUO T215HVN01 4db0a85cf865 drm/armada: Fix off-by-one error in armada_overlay_get_property() dadf0d0dfcc8 of: unittest: fix null pointer dereferencing in of_unittest_find_node_by_name() def1fd88ae97 drm/tegra: dpaux: Fix incorrect return value of platform_get_irq c1ff601e1aa5 drm/tegra: Remove superfluous error messages around platform_get_irq() 1603f086200a md/md-bitmap: hold 'reconfig_mutex' in backlog_store() 630be0110e6a md/bitmap: don't set max_write_behind if there is no write mostly device a8f8c4e7281c drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl' c6b423ab655c arm64: dts: qcom: sdm845: Add missing RPMh power domain to GCC 69d9fb39480c ARM: dts: BCM53573: Fix Ethernet info for Luxul devices e6fc20a5425b drm: adv7511: Fix low refresh rate register for ADV7533/5 88d32b9ad274 ARM: dts: samsung: s5pv210-smdkv210: correct ethernet reg addresses (split) dfe36c23abf9 ARM: dts: s5pv210: add dummy 5V regulator for backlight on SMDKv210 febead00308f ARM: dts: s5pv210: correct ethernet unit address in SMDKV210 00b3f8004bdc ARM: dts: s5pv210: use defines for IRQ flags in SMDKV210 9dff1deb2507 ARM: dts: s5pv210: add RTC 32 KHz clock in SMDKV210 df9929c61c9d ARM: dts: samsung: s3c6410-mini6410: correct ethernet reg addresses (split) c20456c2cd29 ARM: dts: s3c64xx: align pinctrl with dtschema a355d140eb49 ARM: dts: s3c6410: align node SROM bus node name with dtschema in Mini6410 e5deee40fa04 ARM: dts: s3c6410: move fixed clocks under root node in Mini6410 d38b67da1572 drm/etnaviv: fix dumping of active MMU context 5b8c8527a2c3 ARM: dts: BCM53573: Use updated "spi-gpio" binding properties 5680c01363ea ARM: dts: BCM53573: Add cells sizes to PCIe node 17a5848bdca0 ARM: dts: BCM53573: Drop nonexistent "default-off" LED trigger c01cbe6c0345 drm/amdgpu: avoid integer overflow warning in amdgpu_device_resize_fb_bar() d40c192e1198 quota: fix dqput() to follow the guarantees dquot_srcu should provide dd918952b1ed quota: add new helper dquot_active() 88c0cdfe10fb quota: rename dquot_active() to inode_quota_active() 29d7249bb61c quota: factor out dquot_write_dquot() f2f64c2951a3 quota: avoid increasing DQST_LOOKUPS when iterating over dirty/inuse list 1e4f7ce32a1d drm/bridge: tc358764: Fix debug print parameter order 835f0a848a8b netrom: Deny concurrent connect(). da13749d5ff7 net/sched: sch_hfsc: Ensure inner classes have fsc curve 83382eafc745 mlxsw: i2c: Limit single transaction buffer size b2d7f0f313b8 mlxsw: i2c: Fix chunk size setting in output mailbox buffer 400ef5f79c90 net: arcnet: Do not call kfree_skb() under local_irq_disable() f306bbdce631 wifi: ath9k: use IS_ERR() with debugfs_create_dir() 231086e6a363 wifi: mwifiex: avoid possible NULL skb pointer dereference 5f6f00bcf947 wifi: ath9k: protect WMI command response buffer replacement with a lock ff703b5f3f3c wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx df1753eae74b wifi: mwifiex: Fix missed return in oob checks failed path 8f717752f94e wifi: mwifiex: fix memory leak in mwifiex_histogram_read() ab4810042cdd fs: ocfs2: namei: check return value of ocfs2_add_entry() dbe64279ae34 lwt: Check LWTUNNEL_XMIT_CONTINUE strictly 67f8f2bae8e7 lwt: Fix return values of BPF xmit ops 12bf7d9cc6af hwrng: iproc-rng200 - Implement suspend and resume calls 4f1ca8e39732 hwrng: iproc-rng200 - use semicolons rather than commas to separate statements 6c015ebce180 crypto: caam - fix unchecked return value error ec348676c7d0 Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe() 0ce06035ea67 crypto: stm32 - Properly handle pm_runtime_get failing 34de9f1d6359 wifi: mwifiex: fix error recovery in PCIE buffer descriptor management 87f8c5442373 mwifiex: switch from 'pci_' to 'dma_' API 29eca8b7863d wifi: mwifiex: Fix OOB and integer underflow when rx packets 042aeb45e484 can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also in case of OOM 516f21f21068 spi: tegra20-sflash: fix to check return value of platform_get_irq() in tegra_sflash_probe() 4fb6fcc04a99 regmap: rbtree: Use alloc_flags for memory allocations 57935355dc67 tcp: tcp_enter_quickack_mode() should be static 75b8b5b52985 bpf: Clear the probe_addr for uprobe a0fa690894c1 cpufreq: powernow-k8: Use related_cpus instead of cpus in driver.exit() 991b7c260476 perf/imx_ddr: don't enable counter0 if none of 4 counters are used 07415be140d0 x86/decompressor: Don't rely on upper 32 bits of GPRs being preserved 6dbac48ea344 x86/boot: Annotate local functions c418814fae86 x86/asm: Make more symbols local 3eb241e47d05 OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd() 5d3975e36c64 tmpfs: verify {g,u}id mount options correctly 48c54877ce33 fs: Fix error checking for d_hash_and_lookup() 0c8c20538115 new helper: lookup_positive_unlocked() 0a2b1eb8a9ce eventfd: prevent underflow for eventfd semaphores 3e9617d63edf eventfd: Export eventfd_ctx_do_read() f59ff666989c reiserfs: Check the return value from __getblk() e74903b5fbc9 Revert "net: macsec: preserve ingress frame ordering" b36c4a731aae udf: Handle error when adding extent to a file 7648ea9896b3 udf: Check consistency of Space Bitmap Descriptor 3e2265cda14e powerpc/32s: Fix assembler warning about r0 aea73dde7180 net: Avoid address overwrite in kernel_connect d7d42f114252 platform/mellanox: Fix mlxbf-tmfifo not handling all virtio CONSOLE notifications 6614af25e142 ALSA: seq: oss: Fix racy open/close of MIDI devices 601dc776a09a scsi: storvsc: Always set no_report_opcodes 107f5cad230b cifs: add a warning when the in-flight count goes negative f31618e4fc00 sctp: handle invalid error codes without calling BUG() 8d7395d0ea5e bnx2x: fix page fault following EEH recovery c1ce2f09573e netlabel: fix shift wrapping bug in netlbl_catmap_setlong() 499eb477f76b scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock d0189e40c2d1 idmaengine: make FSL_EDMA and INTEL_IDMA64 depends on HAS_IOMEM 617d1d0e1730 net: usb: qmi_wwan: add Quectel EM05GV2 5d2481bc924e clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM 3899c1d158c5 security: keys: perform capable check only on privileged operations 97ed1be29bf0 platform/x86: huawei-wmi: Silence ambient light sensor 762c352dfc41 platform/x86: intel: hid: Always call BTNL ACPI method 0e3f0e55974c ASoC: atmel: Fix the 8K sample parameter in I2SC master 0b718d1d5780 ASoc: codecs: ES8316: Fix DMIC config b796adfc9869 fs/nls: make load_nls() take a const parameter 35a9b057bfd4 s390/dasd: fix hanging device after request requeue d7768b33d0fd s390/dasd: use correct number of retries for ERP requests a21ff228f0e1 m68k: Fix invalid .section syntax 4dfc0d1edad3 vxlan: generalize vxlan_parse_gpe_hdr and remove unused args d65c5ef975d1 ethernet: atheros: fix return value check in atl1c_tso_csum() ea95a0111494 ASoC: da7219: Check for failure reading AAD IRQ events 216953c3de60 ASoC: da7219: Flush pending AAD IRQ when suspending b6f827c3f8db 9p: virtio: make sure 'offs' is initialized in zc_request b6fefef07dca pinctrl: amd: Don't show `Invalid config param` errors 99a73016a5e1 nilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse 724474dfaa98 nilfs2: fix general protection fault in nilfs_lookup_dirty_data_buffers() efe8244ba960 fsi: master-ast-cf: Add MODULE_FIRMWARE macro 6b701dab1993 firmware: stratix10-svc: Fix an NULL vs IS_ERR() bug in probe bee7f3a49469 serial: sc16is7xx: fix bug when first setting GPIO direction a6650d27ab2c Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition 5876cae6d6ef staging: rtl8712: fix race condition a17c6efa1413 HID: wacom: remove the battery when the EKR is off e4f5ad7b539a USB: serial: option: add FOXCONN T99W368/T99W373 product 837f6647b2bf USB: serial: option: add Quectel EM05G variant (0x030e) 1d2432804815 modules: only allow symbol_get of EXPORT_SYMBOL_GPL modules 6938ef59e3ff rtc: ds1685: use EXPORT_SYMBOL_GPL for ds1685_rtc_poweroff 0e0914f9a899 net: enetc: use EXPORT_SYMBOL_GPL for enetc_phc_index 6b39bd898bb0 mmc: au1xmmc: force non-modular build and remove symbol_get usage 7a67c5d93292 ARM: pxa: remove use of symbol_get() e83f5d13cb73 erofs: ensure that the post-EOF tails are all zeroed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Fri, 29 Sep 2023 20:17:18 +0000 (16:17 -0400)]
linux-yocto/5.4: update to v5.4.256
Updating to the latest korg -stable release that comprises
the following commits:
0c2544add9fc Linux 5.4.256 1ba96e65ef4c Revert "MIPS: Alchemy: fix dbdma2" 94aef0fe5a82 powerpc/pmac/smp: Drop unnecessary volatile qualifier b29a10fd0734 powerpc/pmac/smp: Avoid unused-variable warnings 5eb967dd50a5 Linux 5.4.255 e171795856a6 dma-buf/sw_sync: Avoid recursive lock during fence signal f49cac7634da pinctrl: renesas: rza2: Add lock around pinctrl_generic{{add,remove}_group,{add,remove}_function} 197c546a598a clk: Fix undefined reference to `clk_rate_exclusive_{get,put}' 7fd9cded5646 scsi: core: raid_class: Remove raid_component_add() 56428d89a0da scsi: snic: Fix double free in snic_tgt_create() b6db4ef5ea41 irqchip/mips-gic: Don't touch vl_map if a local interrupt is not routable 61b5d77169e1 Documentation/sysctl: document page_lock_unfairness b2421a196cb0 ALSA: pcm: Check for null pointer of pointer substream before dereferencing it e8bf830efa8a interconnect: Do not skip aggregation for disabled paths 456a7a73404c Revert "ALSA: pcm: Use SG-buffer only when direct DMA is available" 52a7c86e63d2 ALSA: pcm: Fix build error on m68k and others a1ef12540ebd rtnetlink: Reject negative ifindexes in RTM_NEWLINK c404e1e19780 mm: allow a controlled amount of unfairness in the page lock 97640d8e2cee x86/fpu: Set X86_FEATURE_OSXSAVE feature after enabling OSXSAVE in CR4 b156ce3b3b61 drm/display/dp: Fix the DP DSC Receiver cap size 9e5fe282f9e2 PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus ac0e0df5180c media: vcodec: Fix potential array out-of-bounds in encoder queue_setup 79a05ca73637 radix tree: remove unused variable 32639f13441b lib/clz_ctz.c: Fix __clzdi2() and __ctzdi2() for 32-bit kernels c5f261825ff6 batman-adv: Hold rtnl lock during MTU update via netlink 61b71562beb3 batman-adv: Fix batadv_v_ogm_aggr_send memory leak 5fb1a2133707 batman-adv: Fix TT global entry leak when client roamed back e6e9d7808179 batman-adv: Do not get eth header before batadv_check_management_packet c97442e09884 batman-adv: Don't increase MTU when set by user 22288ea6beba batman-adv: Trigger events for auto adjusted MTU 3b83759fd46c nfsd: Fix race to FREE_STATEID and cl_revoked c0284760f470 clk: Fix slab-out-of-bounds error in devm_clk_release() a0bc5cf2e7f4 NFSv4: Fix dropped lock for racing OPEN and delegation return 815fb2531a48 ibmveth: Use dcbf rather than dcbfl 35e31aff6160 bonding: fix macvlan over alb bond support faf3f988cc63 net: remove bond_slave_has_mac_rcu() eebd074af272 net/sched: fix a qdisc modification with ambiguous command request 62383d9fa1af igb: Avoid starting unnecessary workqueues adef04cc4819 net: validate veth and vxcan peer ifindexes 52ddda8d218b net: bcmgenet: Fix return value check for fixed_phy_register() 189ad377d1ca net: bgmac: Fix return value check for fixed_phy_register() dcbfcb54a28f ipvlan: Fix a reference count leak warning in ipvlan_ns_exit() 8e6433fecb2b dccp: annotate data-races in dccp_poll() 7d6cc6919952 sock: annotate data-races around prot->memory_pressure d28ea7acfae7 octeontx2-af: SDP: fix receive link config 05319d707732 tracing: Fix memleak due to race between current_tracer and trace c8920972d086 drm/amd/display: check TG is non-null before checking if enabled 7d4174a99b1d drm/amd/display: do not wait for mpc idle if tg is disabled 94239d1830a1 ASoC: fsl_sai: Disable bit clock with transmitter ef9cae4a6c8d ASoC: fsl_sai: Add new added registers and new bit definition 1b3d75104542 ASoC: fsl_sai: Refine enable/disable TE/RE sequence in trigger() f9afb326b7ba regmap: Account for register length in SMBus I/O limits 7e1d1456c8db ALSA: pcm: Fix potential data race at PCM memory allocation helpers 140797d0a46e ALSA: pcm: Use SG-buffer only when direct DMA is available 95b30a431254 ALSA: pcm: Set per-card upper limit of PCM buffer allocations d0ef103e192c dm integrity: reduce vmalloc space footprint on 32-bit architectures 072d247d7a62 dm integrity: increase RECALC_SECTORS to improve recalculate speed 4e96ee117500 fbdev: fix potential OOB read in fast_imageblit() ebf84320a587 fbdev: Fix sys_imageblit() for arbitrary image widths 96f8e80656ec fbdev: Improve performance of sys_imageblit() 7e5b7360df81 MIPS: cpu-features: Use boot_cpu_type for CPU type based features 302a8fbf8cab MIPS: cpu-features: Enable octeon_cache by cpu_type 7b57fc3f4c49 fs: dlm: fix mismatch of plock results from userspace 721d5b514dfc fs: dlm: use dlm_plock_info for do_unlock_close da794f6dd549 fs: dlm: change plock interrupted message to debug again f03726ef19e1 fs: dlm: add pid to debug log 8b73497e50ef dlm: replace usage of found with dedicated list iterator variable 526cc04d718b dlm: improve plock logging if interrupted 7abd6dce29f6 PCI: acpiphp: Reassign resources on bridge if necessary fce081555293 net: phy: broadcom: stub c45 read/write for 54810 e91d5ace7051 mmc: f-sdh30: fix order of function calls in sdhci_f_sdh30_remove a0e20e267aec net: xfrm: Amend XFRMA_SEC_CTX nla_policy structure f0c10a4497af net: fix the RTO timer retransmitting skb every 1ms if linear option is enabled b1be2cfcf6cf virtio-net: set queues after driver_ok 4821df2ffe38 af_unix: Fix null-ptr-deref in unix_stream_sendpage(). 0afc186aba1e netfilter: set default timeout to 3 secs for sctp shutdown send and recv state 6875690b0eea mmc: block: Fix in_flight[issue_type] value error 54deee3fab1b mmc: wbsd: fix double mmc_free_host() in wbsd_init() 4259dd534245 cifs: Release folio lock on fscache read hit. 03373410247b ALSA: usb-audio: Add support for Mythware XA001AU capture and playback interfaces. b653289ca646 serial: 8250: Fix oops for port->pm on uart_change_pm() 7b4e6bff03e2 ASoC: meson: axg-tdm-formatter: fix channel slot allocation 29d862ee5fef ASoC: rt5665: add missed regulator_bulk_disable f21fa1892d42 ARM: dts: imx: Set default tuning step for imx6sx usdhc aadee0ae0a5f ARM: dts: imx: Set default tuning step for imx7d usdhc a23e10dafd77 ARM: dts: imx: Adjust dma-apbh node name 536c1bbedd5d ARM: dts: imx7s: Drop dma-apb interrupt-names 37cfbf847c2d bus: ti-sysc: Flush posted write on enable before reset 4637b2fa6541 bus: ti-sysc: Improve reset to work with modules with no sysconfig 210ff31342ad net: do not allow gso_size to be set to GSO_BY_FRAGS 1c7db7abd4ba sock: Fix misuse of sk_under_memory_pressure() aa670bdefc0c net: dsa: mv88e6xxx: Wait for EEPROM done before HW reset 702c58a05eb5 i40e: fix misleading debug logs ac16de2d02eb team: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves 81da9e2c4255 netfilter: nft_dynset: disallow object maps bdd7c2ff4143 ipvs: fix racy memcpy in proc_do_sync_threshold 38e5c37bfab1 selftests: mirror_gre_changes: Tighten up the TTL test match 8046beb890eb xfrm: add NULL check in xfrm_update_ae_params d34c30442d5e ip_vti: fix potential slab-use-after-free in decode_session6 eb47e612e59c ip6_vti: fix slab-use-after-free in decode_session6 db0e50741f03 xfrm: fix slab-use-after-free in decode_session6 64c6df80d35a xfrm: interface: rename xfrm_interface.c to xfrm_interface_core.c 32cc777c0a53 net: af_key: fix sadb_x_filter validation 373848d51fde net: xfrm: Fix xfrm_address_filter OOB read a0a462a0f209 btrfs: fix BUG_ON condition in btrfs_cancel_balance cc423a972cfd tty: serial: fsl_lpuart: Clear the error flags by writing 1 for lpuart32 platforms 1d29e21ed09f powerpc/rtas_flash: allow user copy to flash block cache objects 97ddf1c2105a fbdev: mmp: fix value check in mmphw_probe() 3259e2d8781f i2c: bcm-iproc: Fix bcm_iproc_i2c_isr deadlock issue b788ad3b2468 virtio-mmio: don't break lifecycle of vm_dev e22a4b77b69d virtio-mmio: Use to_virtio_mmio_device() to simply code 432429d1b25f virtio-mmio: convert to devm_platform_ioremap_resource 12c4c227891e nfsd: Remove incorrect check in nfsd4_validate_stateid a4e3c4cd02f5 nfsd4: kill warnings on testing stateids with mismatched clientids ff652b0150a4 net/ncsi: Fix gma flag setting after response b66a1defb205 tracing/probes: Fix to update dynamic data counter if fetcharg uses it bdc309d89b32 tracing/probes: Have process_fetch_insn() take a void * instead of pt_regs cc93a372e03e leds: trigger: netdev: Recheck NETDEV_LED_MODE_LINKUP on dev rename 939b8b312adc mmc: sunxi: fix deferred probing c6d1a281ae83 mmc: bcm2835: fix deferred probing b48b4b1885f7 USB: dwc3: qcom: fix NULL-deref on suspend 6da1f9fd9c8e usb: dwc3: qcom: Add helper functions to enable,disable wake irqs 5335bb0cefde interconnect: Add helpers for enabling/disabling a path e062fb979410 interconnect: Move internal structs into a separate file abc25a18a64c irqchip/mips-gic: Use raw spinlock for gic_lock 05de6069b52c irqchip/mips-gic: Get rid of the reliance on irq_cpu_online() 1224e5a9787c ALSA: hda: Fix unhandled register update during auto-suspend period a55d55a30781 PM: runtime: Add pm_runtime_get_if_active() e5d98d42bca5 PM-runtime: add tracepoints for usage_count changes 59aba9d5cd36 iommu/amd: Fix "Guest Virtual APIC Table Root Pointer" configuration in IRTE 8f302378c704 iio: addac: stx104: Fix race condition when converting analog-to-digital 7251b2915d33 iio: addac: stx104: Fix race condition for stx104_write_raw() 70d135e7de08 iio: stx104: Move to addac subdirectory 8ba99f7fc7eb iio: adc: stx104: Implement and utilize register structures 4edf338adee7 iio: adc: stx104: Utilize iomap interface e13b26d0dd10 iio: add addac subdirectory e6f66a0ad755 IMA: allow/fix UML builds 635278e97a94 powerpc/kasan: Disable KCOV in KASAN code 109f0aaa0b88 ALSA: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync() 97ed58437705 ALSA: hda/realtek: Add quirks for Unis H3C Desktop B760 & Q760 c6059af6bf5e drm/amdgpu: Fix potential fence use-after-free v2 fe49aa73cca6 Bluetooth: L2CAP: Fix use-after-free 22100df1d57f pcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db() b4a7ab57effb gfs2: Fix possible data races in gfs2_show_options() c4d5c945b69a usb: chipidea: imx: don't request QoS for imx8ulp c1c5826223ae media: platform: mediatek: vpu: fix NULL ptr dereference ef009fe2010e media: v4l2-mem2mem: add lock to protect parameter num_rdy 2a8807f9f511 FS: JFS: Check for read-only mounted filesystem in txBegin a7d17d6bd7cd FS: JFS: Fix null-ptr-deref Read in txBegin 2225000d62c1 MIPS: dec: prom: Address -Warray-bounds warning 6e7d9d76e565 fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev 3f1368af47ac udf: Fix uninitialized array access for some pathnames 8f203dd401e8 ovl: check type and offset of struct vfsmount in ovl_entry 8abed186aabd HID: add quirk for 03f0:464a HP Elite Presenter Mouse 3f378783c47b quota: fix warning in dqgrab() c3a1f5ba11c5 quota: Properly disable quotas when add_dquot_ref() fails dd445ebbee88 ALSA: emu10k1: roll up loops in DSP setup code for Audigy b8fab6aebdf2 drm/radeon: Fix integer overflow in radeon_cs_parser_init 3a3bb438dae3 macsec: use DEV_STATS_INC() b5e20a3ddea4 macsec: Fix traffic counters/statistics 4b854879f82d selftests: forwarding: tc_flower: Relax success criterion e5883ffdd0a8 mmc: sdhci-f-sdh30: Replace with sdhci_pltfm e7bd70c3bc62 mmc: sdhci_f_sdh30: convert to devm_platform_ioremap_resource
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Fri, 29 Sep 2023 20:17:17 +0000 (16:17 -0400)]
linux-yocto/5.4: update to v5.4.254
Updating to the latest korg -stable release that comprises
the following commits:
fd2a1d1f32ea Linux 5.4.254 e7711f15ed6b sch_netem: fix issues in netem_change() vs get_dist_table() 3c3ffd6a3cf7 alpha: remove __init annotation from exported page_is_ram() e12fac07f61c scsi: core: Fix possible memory leak if device_add() fails cea09922f5f7 scsi: snic: Fix possible memory leak if device_add() fails 12162414a7c1 scsi: 53c700: Check that command slot is not NULL 048ebc9a28fb scsi: storvsc: Fix handling of virtual Fibre Channel timeouts ecb1fbe2879f scsi: core: Fix legacy /proc parsing buffer overflow 979822844209 netfilter: nf_tables: report use refcount overflow 137e25f0906e nvme-rdma: fix potential unbalanced freeze & unfreeze ab32fbe3fe70 nvme-tcp: fix potential unbalanced freeze & unfreeze 756c024698f4 btrfs: set cache_block_group_error if we find an error fa7bc2684a05 btrfs: don't stop integrity writeback too early 0a3b5893c6b1 ibmvnic: Handle DMA unmapping of login buffs in release functions d66a27113ebb net/mlx5: Allow 0 for total host VFs d7b2df974299 dmaengine: mcf-edma: Fix a potential un-allocated memory access e913d89445e3 wifi: cfg80211: fix sband iftype data lookup for AP_VLAN c2145b18740c IB/hfi1: Fix possible panic during hotplug remove 9d469552c9d2 drivers: net: prevent tun_build_skb() to exceed the packet size limit 67eebc7a9217 dccp: fix data-race around dp->dccps_mss_cache ef8810965f0c bonding: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves 9c7deea5afcc net/packet: annotate data-races around tp->status 60d9662f39f5 mISDN: Update parameter type of dsp_cmx_send() dd72849bce27 selftests/rseq: Fix build with undefined __weak 302d848188d6 drm/nouveau/disp: Revert a NULL check inside nouveau_connector_get_modes ed8dcd9543b8 x86: Move gds_ucode_mitigated() declaration to header 6b342b1f3b01 x86/mm: Fix VDSO and VVAR placement on 5-level paging machines 91a5e755e11f x86/cpu/amd: Enable Zenbleed fix for AMD Custom APU 0405 14254212b431 usb: common: usb-conn-gpio: Prevent bailing out if initial role is none 25038d3f16b9 usb: dwc3: Properly handle processing of pending events 044f4446e06b usb-storage: alauda: Fix uninit-value in alauda_check_media() b97dad01c121 binder: fix memory leak in binder_init() 182f0e71ff34 iio: cros_ec: Fix the allocation size for cros_ec_command d2c539c216cc nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput 655716938d14 x86/pkeys: Revert a5eff7259790 ("x86/pkeys: Add PKRU value to init_fpstate") ea1b4c31161f radix tree test suite: fix incorrect allocation size for pthreads aa0bfe169d29 drm/nouveau/gr: enable memory loads on helper invocation on all channels 8a489b0bc87c dmaengine: pl330: Return DMA_PAUSED when transaction is paused 7c62508d6b91 ipv6: adjust ndisc_is_useropt() to also return true for PIO 0a67c1262162 mmc: moxart: read scr register without changing byte order 4b4223f7d26d Linux 5.4.253 9e5374875f96 Revert "driver core: Annotate dev_err_probe() with __must_check" ca33c0704151 drivers: core: fix kernel-doc markup for dev_err_probe() 04ece65d9bad driver code: print symbolic error code f2c1b4f9c157 driver core: Annotate dev_err_probe() with __must_check 2e8fc2ddffee ARM: dts: nxp/imx6sll: fix wrong property name in usbphy node a1ba8725577b ARM: dts: imx6sll: fixup of operating points 6c71d73945d2 ARM: dts: imx: add usb alias 66579ee141a5 ARM: dts: imx: Align L2 cache-controller nodename with dtschema 3b454fb938e1 ARM: dts: imx6sll: Make ssi node name same as other platforms 03b119d900fd arm64: dts: stratix10: fix incorrect I2C property for SCL signal 72c946246e21 ceph: defer stopping mdsc delayed_work f82fe11a30ae ceph: use kill_anon_super helper 82edffead586 ceph: show tasks waiting on caps in debugfs caps file 632023a2b3ac PM: sleep: wakeirq: fix wake irq arming d7f34e2cdd12 PM / wakeirq: support enabling wake-up irq after runtime_suspend called 9cbffa33749a selftests/rseq: Play nice with binaries statically linked against glibc 2.35+ 13553469bdbd selftests/rseq: check if libc rseq support is registered a65e7b4b31ca powerpc/mm/altmap: Fix altmap boundary check f8cf0f83cf04 mtd: rawnand: omap_elm: Fix incorrect type in assignment 2af8ed119722 test_firmware: return ENOMEM instead of ENOSPC on failed memory allocation 0f68b0f8eb5a test_firmware: prevent race conditions by a correct implementation of locking 040cdadf9fdc ext2: Drop fragment support 0336b42456e4 fs: Protect reconfiguration of sb read-write from racing writes a05ac5d00eb7 net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb a2da00d1ea1a Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb 0a44ceba77c3 fs/sysv: Null check to prevent null-ptr-deref bug 1202deb153d6 net: tap_open(): set sk_uid from current_fsuid() 1d53ea776760 net: tun_chr_open(): set sk_uid from current_fsuid() ae9cf40873d3 mtd: rawnand: meson: fix OOB available bytes for ECC 8deaaf4be175 mtd: spinand: toshiba: Fix ecc_get_status eacb19bd7cd2 USB: zaurus: Add ID for A-300/B-500/C-700 5107f9e8db60 libceph: fix potential hang in ceph_osdc_notify() 6f14228e82fe scsi: zfcp: Defer fc_rport blocking until after ADISC response a490c2e8927e tcp_metrics: fix data-race in tcpm_suck_dst() vs fastopen 6d49ed957d77 tcp_metrics: annotate data-races around tm->tcpm_net fc566cf344d8 tcp_metrics: annotate data-races around tm->tcpm_vals[] 76b47daba7cd tcp_metrics: annotate data-races around tm->tcpm_lock 38661fe6d001 tcp_metrics: annotate data-races around tm->tcpm_stamp 96f14d689dc5 tcp_metrics: fix addr_same() helper 0438e60a00d4 ip6mr: Fix skb_under_panic in ip6mr_cache_report() 5b3dbedb8d4a net: dcb: choose correct policy to parse DCB_ATTR_BCN 363c56f97122 net: ll_temac: fix error checking of irq_of_parse_and_map() 7928f81443f6 net: ll_temac: Switch to use dev_err_probe() helper 97d8a0bbda6b driver core: add device probe log helper 227b8ce59cd3 bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire 1c8262f31fd2 net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free 83e3d4b0ae37 net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free be785808db32 net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free b705759a1a25 net: add missing data-race annotation for sk_ll_usec 95dd65f29070 net: add missing data-race annotations around sk->sk_peek_off 8a6dddcb47a6 net: add missing READ_ONCE(sk->sk_rcvbuf) annotation ec4b7532d70b net: add missing READ_ONCE(sk->sk_sndbuf) annotation 9cd3adc26e53 net: add missing READ_ONCE(sk->sk_rcvlowat) annotation 481186cad78f net: annotate data-races around sk->sk_max_pacing_rate 1774250a20d7 mISDN: hfcpci: Fix potential deadlock on &hc->lock 42b28808070e net: sched: cls_u32: Fix match key mis-addressing 1b047dc9108e perf test uprobe_from_different_cu: Skip if there is no gcc ad46d4861ed3 rtnetlink: let rtnl_bridge_setlink checks IFLA_BRIDGE_MODE length 80381ecf2933 net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer() 800d8c96bf99 net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx 4730c0a1131c KVM: s390: fix sthyi error handling d2fb0969262c word-at-a-time: use the same return type for has_zero regardless of endianness be4d2b456206 loop: Select I/O scheduler 'none' from inside add_disk() 11e929c38029 perf: Fix function pointer case 1db90f97d719 arm64: Fix bit-shifting UB in the MIDR_CPU_MODEL() macro f41cab7a4653 arm64: Add AMPERE1 to the Spectre-BHB affected list 6e4aa8c89034 ASoC: cs42l51: fix driver to properly autoload with automatic module loading cf8ecd6ea680 net/sched: sch_qfq: account for stab overhead in qfq_enqueue 0e0f324c259d btrfs: fix race between quota disable and quota assign ioctls 4f8f86bc5d33 btrfs: qgroup: return ENOTCONN instead of EINVAL when quotas are not enabled 8c1d1f3a33e5 btrfs: qgroup: remove one-time use variables for quota_root checks c8b1499e420e cpufreq: intel_pstate: Drop ACPI _PSS states table patching f331413e1cf1 ACPI: processor: perflib: Avoid updating frequency QoS unnecessarily 511851c87031 ACPI: processor: perflib: Use the "no limit" frequency QoS 81cd6ceee7ce dm cache policy smq: ensure IO doesn't prevent cleaner policy progress e3efc4767a46 ASoC: wm8904: Fill the cache for WM8904_ADC_TEST_0 register 00748bc586a4 s390/dasd: fix hanging device after quiesce/resume 73e872466ddc virtio-net: fix race between set queues and probe 6db2a3c5c201 btrfs: check if the transaction was aborted at btrfs_wait_for_commit() 5adbd7ccd430 irq-bcm6345-l1: Do not assume a fixed block to cpu mapping a0019e13a9e9 tpm_tis: Explicitly check for error code d1c6e68003d3 btrfs: check for commit error at btrfs_attach_transaction_barrier() ee2eed8306b3 hwmon: (nct7802) Fix for temp6 (PECI1) processed even if PECI1 disabled 5373a1aa91b2 staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext() 352e0cae4cce Documentation: security-bugs.rst: clarify CVE handling e331a88ea56b Documentation: security-bugs.rst: update preferences when dealing with the linux-distros group fd21197af575 Revert "usb: xhci: tegra: Fix error check" e0c92c329131 usb: xhci-mtk: set the dma max_seg_size 3f39d58a0c1a USB: quirks: add quirk for Focusrite Scarlett 8f86b1b3b539 usb: ohci-at91: Fix the unhandle interrupt when resume 640cb5f5e4b4 usb: dwc3: don't reset device side if dwc3 was configured as host-only a7d080cf4fab usb: dwc3: pci: skip BYT GPIO lookup table for hardwired phy 5fc6ace75ceb Revert "usb: dwc3: core: Enable AutoRetry feature in the controller" 80d40a3d6d45 can: gs_usb: gs_can_close(): add missing set of CAN state to CAN_STATE_STOPPED 58f0affb3c47 USB: serial: simple: sort driver entries 43ee3cf0c783 USB: serial: simple: add Kaufmann RKS+CAN VCP bcf1fc781ea1 USB: serial: option: add Quectel EC200A module support 3ec7c5ef6021 USB: serial: option: support Quectel EM060K_128 da7ebd86cd2e serial: sifive: Fix sifive_serial_console_setup() section d674cb90a9ef serial: 8250_dw: Preserve original value of DLF register cdcc35e64541 tracing: Fix warning in trace_buffered_event_disable() d7b20279244f ring-buffer: Fix wrong stat of cpu_buffer->read f6e1e569ac97 ata: pata_ns87415: mark ns87560_tf_read static 53c06e0d15ee dm raid: fix missing reconfig_mutex unlock in raid_ctr() error paths 9ebcca93bd41 block: Fix a source code comment in include/uapi/linux/blkzoned.h c0aad2fe1b9f ASoC: fsl_spdif: Silence output on stop 3bd1b4793b01 drm/msm: Fix IS_ERR_OR_NULL() vs NULL check in a5xx_submit_in_rb() 4970f72f810c drm/msm/adreno: Fix snapshot BINDLESS_DATA size 5200bd7e6096 drm/msm/dpu: drop enum dpu_core_perf_data_bus_id 4990f529b745 RDMA/mlx4: Make check for invalid flags stricter 74843851d418 benet: fix return value check in be_lancer_xmit_workarounds() 07d9723cef28 net/sched: mqprio: Add length check for TCA_MQPRIO_{MAX/MIN}_RATE64 2eb617529458 net/sched: mqprio: add extack to mqprio_parse_nlattr() 29c5eb0ffac7 net/sched: mqprio: refactor nlattr parsing to a separate function 17afc24d20c9 platform/x86: msi-laptop: Fix rfkill out-of-sync on MSI Wind U100 504177c84f04 team: reset team's flags when down link is P2P device a3bb02598db9 bonding: reset bond's flags when down link is P2P device d87d67c8bdd1 tcp: Reduce chance of collisions in inet6_hashfn(). 458294ee1537 ipv6 addrconf: fix bug where deleting a mngtmpaddr can create a new temporary address a249705862d7 ethernet: atheros: fix return value check in atl1e_tso_csum() 195e806b2afb phy: hisilicon: Fix an out of bounds check in hisi_inno_phy_probe() 27b63e8b8552 vxlan: calculate correct header length for GPE 5e98318c632d i40e: Fix an NULL vs IS_ERR() bug for debugfs_create_dir() 6b1ee62ecbf1 ext4: fix to check return value of freeze_bdev() in ext4_shutdown() 65bd66a794bf keys: Fix linking a duplicate key to a keyring's assoc_array c1df96689fe1 uapi: General notification queue definitions ea64c727f201 scsi: qla2xxx: Array index may go out of bound 5e387df414f9 scsi: qla2xxx: Fix inconsistent format argument type in qla_os.c 629628738078 pwm: meson: fix handling of period/duty if greater than UINT_MAX 7ae4671a868e pwm: meson: Simplify duplicated per-channel tracking 8abacc57af7b pwm: meson: Remove redundant assignment to variable fin_freq 680e1455b828 ftrace: Fix possible warning on checking all pages used in ftrace_process_locs() 05ff1d355e0b ftrace: Store the order of pages allocated in ftrace_page e3098e52bf5a ftrace: Check if pages were allocated before calling free_pages() aad84a978841 ftrace: Add information on number of page groups allocated bd020c7763d6 fs: dlm: interrupt posix locks only when process is killed f61d5752aed0 dlm: rearrange async condition return ed092c495e29 dlm: cleanup plock_op vs plock_xop a50ad9f8c06c PCI/ASPM: Avoid link retraining race e50434e33de9 PCI/ASPM: Factor out pcie_wait_for_retrain() 7411202a0fee PCI/ASPM: Return 0 or -ETIMEDOUT from pcie_retrain_link() 8eb15ff216c1 ext4: Fix reusing stale buffer heads from last failed mounting 0204319de8ea ext4: rename journal_dev to s_journal_dev inside ext4_sb_info 356056cbe667 btrfs: fix extent buffer leak after tree mod log failure at split_node() 63008dab58ad btrfs: fix race between quota disable and relocation 0a55f346e0e5 btrfs: qgroup: catch reserved space leaks at unmount time b070f29a6143 bcache: Fix __bch_btree_node_alloc to make the failure behavior consistent 38a6dd2b68f9 bcache: remove 'int n' from parameter list of bch_bucket_alloc_set() edb81d6e1e50 gpio: tps68470: Make tps68470_gpio_output() always set the initial value 34e71f7d3a03 jbd2: Fix wrongly judgement for buffer head removing while doing checkpoint 937cb20746c8 jbd2: recheck chechpointing non-dirty buffer acc9a81f7cb2 jbd2: remove redundant buffer io error checks 05d440d0f5da jbd2: fix kernel-doc markups b41fa1ed91de jbd2: fix incorrect code style
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Security
gh-108310: Fixed an issue where instances of ssl.SSLSocket were
vulnerable to a bypass of the TLS handshake and included protections
(like certificate verification) and treating sent unencrypted data as if
it were post-handshake TLS encrypted data. Security issue reported as
CVE-2023-40217 by Aapo Oksman. Patch by Gregory P. Smith.
Library
gh-107845: tarfile.data_filter() now takes the location of symlinks into
account when determining their target, so it will no longer reject some
valid tarballs with LinkOutsideDestinationError.
Tools/Demos
gh-107565: Update multissltests and GitHub CI workflows to use OpenSSL
1.1.1v, 3.0.10, and 3.1.2.
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Mon, 11 Sep 2023 20:47:41 +0000 (21:47 +0100)]
vim: Upgrade 9.0.1664 -> 9.0.1894
This includes multiple CVE fixes.
The license change is due to changes in maintainership, the license
itself is unchanged.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 91e66b93a0c0928f0c2cfe78e22898a6c9800f34) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Tue, 12 Sep 2023 17:24:34 +0000 (18:24 +0100)]
gcc: Fix -fstack-protector issue on aarch64
This series of patches fixes deficiencies in GCC's -fstack-protector
implementation for AArch64 when using dynamically allocated stack space.
This is CVE-2023-4039. See:
Buffer Overflow vulnerability in function bitwriter_grow_ in flac before
1.4.0 allows remote attackers to run arbitrary code via crafted input to
the encoder.
Signed-off-by: Meenali Gupta <meenali.gupta@windriver.com> Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Tested-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a84b8d683b4b3f4d30999eac987790896d21eba6) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Thu, 27 Jul 2023 16:25:50 +0000 (17:25 +0100)]
oeqa/runtime/ltp: Increase ltp test output timeout
On our slower arm server, the tests currently timeout leading to inconsistent test
results. Increase the timeout to avoid this and aim to make the test results
consistent.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9a8b49208f3c99e184eab426360b137bc773aa31) Signed-off-by: Steve Sakoman <steve@sakoman.com>
We have a suspicion that the read() call may return EAGAIN on the non-blocking
fd and this may truncate test output leading to some of our intermittent failures.
Tweak the code to avoid this potential issue.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a8920c105725431e989cceb616bd04eaa52127ec) Signed-off-by: Steve Sakoman <steve@sakoman.com>
kernel: Fix path comparison in kernel staging dir symlinking
Due to an oversight in the do_symlink_kernsrc function, the path
comparison between "S" and "STAGING_KERNEL_DIR" is broken. The code
obtains both variables, but modifies the local copy of "S" before
comparing them, causing the comparison to always return false.
This can cause the build to fail when the EXTERNALSRC flag is enabled,
since the code will try to create a symlink even if one already exists.
This patch resolves the issue by comparing the variables before they are
modified.
Add in stable updates to glibc 2.38 to fix malloc bugs
Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 39f987fcb20ad7c0e45425b9f508d463c50ce0c1) Signed-off-by: Steve Sakoman <steve@sakoman.com>
remove the traling blanks before the ;-delimiter, so one could use
"_remove" to avoid running tasks like 'rootfs_update_timestamp',
which are currently hardcoded and not bound to any
configurable feature flag
Signed-off-by: Priyal Doshi <pdoshi@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an
insufficiently trustworthy search path, leading to remote code
execution if an agent is forwarded to an attacker-controlled system.
(Code in /usr/lib is not necessarily safe for loading into ssh-agent.)
NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
Ross Burton [Fri, 25 Aug 2023 16:44:17 +0000 (17:44 +0100)]
linux-yocto: add script to generate kernel CVE_CHECK_WHITELIST entries
Instead of manually looking up new CVEs and determining what point
releases the fixes are incorporated into, add a script to generate the
CVE_CHECK_WHITELIST data automatically.
First, note that this is very much an interim solution until the
cve-check class fetches data from www.linuxkernelcves.com directly.
The script should be passed the path to a local clone of the
linuxkernelcves repository[1] and the kernel version number. It will
then write to standard output the CVE_STATUS entries for every known
kernel CVE.
The script should be periodically reran as CVEs are backported and
kernels upgraded frequently.
[1] https://github.com/nluedtke/linux_kernel_cves
Note: for the Dunfell backport this is not a cherry-pick of the commit
in master as the variable names are different. This incorporates the
following commits:
linux/generate-cve-exclusions: add version check warning
linux/generate-cve-exclusions.py: fix comparison
linux-yocto: add script to generate kernel CVE_STATUS entries
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
it is introduced by a commit to fix CVE. So remove option '-O2' from
CFLAGS rather than revert the commit to avoid the failure.
[YOCTO #14367]
CC: Tony Battersby <tonyb@cybernetics.com> Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 69805629b8f47fd46a37b7c5cc435982e2ac3d1d) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Wed, 5 Jul 2023 10:50:01 +0000 (11:50 +0100)]
oeqa/runtime/cases/rpm: fix wait_for_no_process_for_user failure case
str.format() doesn't use % notation, update the formatting to work.
assertTrue() is a member of self not a global, and assertTrue(True) will
always pass. Change this to just self.fail() as this is the failure case.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 017f3a0b1265c1a3b69c20bdb56bbf446111977e) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Michael Halstead [Wed, 16 Aug 2023 09:05:44 +0000 (02:05 -0700)]
yocto-uninative: Update to 4.2 for glibc 2.38
Uninative 4.2 adds glibc 2.38.
Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c6654fab00a1b4e4bb05eec8b77c8c60e1f8a709) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 1c5c8ff97ba0a7f9adc592d702b865b3d166a24b) Signed-off-by: Steve Sakoman <steve@sakoman.com>
linux-firmware: split platform-specific Adreno shaders to separate packages
For newest Qualcomm platforms the firmware for the Adreno GPU consists
of two parts: platform-independent SQE/GMU/GPMU/PFP/PM4 and
platform-specific ZAP shader, which is used during the boot process. As
the platform-independent parts can be shared between different
platforms, split the platform-specific part to the separate package.
Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bf00a042d2fa2eb4b20d8c5982926758821bf990) Signed-off-by: Steve Sakoman <steve@sakoman.com>
RTL8822 is a serie of wireless modules that need firmwares to function correctly.
The linux firmware recipe does not have a package of these firmwares, and this commit add them.
Signed-off-by: BELOUARGA Mohamed <m.belouarga@technologyandstrategy.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6459959beeb91c0b694f5f17b6587a12c6dcb087) Signed-off-by: Steve Sakoman <steve@sakoman.com>
linux-firmware: package firmare for Dragonboard 410c
Latest linux-firmware archive inclues firmware for the Dragonboard 410c
device (Qualcomm apq8016 SBC). Follow the rest of linux-firmware-qcom-*
packages as a template and create packages for the new firmware files.
Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 380216e8d3b63d563ebfb10445fc6eb5e77eb9f2) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Chee Yang Lee [Mon, 21 Aug 2023 01:16:31 +0000 (09:16 +0800)]
tiff: CVE-2022-3599.patch also fix CVE-2022-4645 CVE-2023-30774
The same patch also fix CVE-2022-4645 CVE-2023-30774
CVE-2022-4645 - https://gitlab.com/libtiff/libtiff/-/issues/277
CVE-2023-30774 - https://gitlab.com/libtiff/libtiff/-/issues/463
Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Yuta Hayama <hayama@lineo.co.jp> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
The following linux-firmware commit moved the mt7601u firmware blob
into a mediatek/ subdirectory, update the path accordingly. 8451c2b1 ("mt76xx: Move the old Mediatek WiFi firmware to mediatek")
Peter Marko [Thu, 10 Aug 2023 17:46:12 +0000 (19:46 +0200)]
openssl: Upgrade 1.1.1t -> 1.1.1v
https://www.openssl.org/news/openssl-1.1.1-notes.html
Major changes between OpenSSL 1.1.1u and OpenSSL 1.1.1v [1 Aug 2023]
* Fix excessive time spent checking DH q parameter value (CVE-2023-3817)
* Fix DH_check() excessive time with over sized modulus (CVE-2023-3446)
Major changes between OpenSSL 1.1.1t and OpenSSL 1.1.1u [30 May 2023]
* Mitigate for very slow `OBJ_obj2txt()` performance with gigantic OBJECT IDENTIFIER sub-identities. (CVE-2023-2650)
* Fixed documentation of X509_VERIFY_PARAM_add0_policy() (CVE-2023-0466)
* Fixed handling of invalid certificate policies in leaf certificates (CVE-2023-0465)
* Limited the number of nodes created in a policy tree ([CVE-2023-0464])
All CVEs for upgrade to 1.1.1u were already patched, so effectively
this will apply patches for CVE-2023-3446 and CVE-2023-3817 plus
several non-CVE fixes.
Because of mips build changes were backported to openssl 1.1.1 branch,
backport of a patch from kirkstone is necessary.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 8 Aug 2023 03:55:46 +0000 (23:55 -0400)]
linux-yocto/5.4: update to v5.4.251
Updating to the latest korg -stable release that comprises
the following commits:
887433e4bc93 Linux 5.4.251 1e02fbe4f0ed tracing/histograms: Return an error if we fail to add histogram to hist_vars list b1062596556e tcp: annotate data-races around fastopenq.max_qlen 21c325d01ecc tcp: annotate data-races around tp->notsent_lowat 7175277b4d0b tcp: annotate data-races around rskq_defer_accept 3121d649e4c6 tcp: annotate data-races around tp->linger2 b1cd5655fc13 net: Replace the limit of TCP_LINGER2 with TCP_FIN_TIMEOUT_MAX 8ce44cf35ef6 tcp: annotate data-races around tp->tcp_tx_delay c822536b3e41 netfilter: nf_tables: can't schedule in nft_chain_validate caa228792fb5 netfilter: nf_tables: fix spurious set element insertion failure b8944e53ee70 llc: Don't drop packet from non-root netns. b07e31824df6 fbdev: au1200fb: Fix missing IRQ check in au1200fb_drv_probe 6d39e9fc5934 Revert "tcp: avoid the lookup process failing to get sk in ehash table" 0c0bd9789a8d net:ipv6: check return value of pskb_trim() 17046107ca15 iavf: Fix use-after-free in free_netdev 765e1eaf42de net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()/cpsw_ale_set_field() 3b6f56021af6 pinctrl: amd: Use amd_pinconf_set() for all config options 951f4e9730f1 fbdev: imxfb: warn about invalid left/right margin 3e03319ab97d spi: bcm63xx: fix max prepend length c9f56f3c7bc9 igb: Fix igb_down hung on surprise removal 7d80e834625c wifi: iwlwifi: mvm: avoid baid size integer overflow 41d149376078 wifi: wext-core: Fix -Wstringop-overflow warning in ioctl_standard_iw_point() 970c7035f4b0 devlink: report devlink_port_type_warn source device e09a285ea1e8 bpf: Address KCSAN report on bpf_lru_list cec1857b1ea5 sched/fair: Don't balance task to its current running CPU 9d8d3df71516 arm64: mm: fix VA-range sanity check 8ad6679a5bb9 posix-timers: Ensure timer ID search-loop limit is valid d0345f7c7dbc md/raid10: prevent soft lockup while flush writes 09539f9e2076 md: fix data corruption for raid456 when reshape restart while grow up 4181c30a2c55 nbd: Add the maximum limit of allocated index in nbd_dev_add d4f1cd9b9d66 debugobjects: Recheck debug_objects_enabled before reporting 0afcebcec057 ext4: correct inline offset when handling xattrs in inode body 5d580017bdb9 drm/client: Fix memory leak in drm_client_modeset_probe 52daf6ba2e0d drm/client: Fix memory leak in drm_client_target_cloned 9533dbfac0ff can: bcm: Fix UAF in bcm_proc_show() 5dd838be69e4 selftests: tc: set timeout to 15 minutes 7f83199862c2 fuse: revalidate: don't invalidate if interrupted ae91ab710d8e btrfs: fix warning when putting transaction with qgroups enabled after abort e217a3d19e10 perf probe: Add test for regression introduced by switch to die_get_decl_file() 380c7ceabdde drm/atomic: Fix potential use-after-free in nonblocking commits b7084ebf4f54 scsi: qla2xxx: Remove unused nvme_ls_waitq wait queue 3f22f9ddbb29 scsi: qla2xxx: Pointer may be dereferenced a1c5149a82de scsi: qla2xxx: Correct the index of array 1b7e5bdf2be2 scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport() 4f90a8b04816 scsi: qla2xxx: Fix potential NULL pointer dereference d25fded78d88 scsi: qla2xxx: Wait for io return on terminate rport 056fd1820724 tracing/probes: Fix not to count error code to total length 93114cbc7cb1 tracing: Fix null pointer dereference in tracing_err_log_open() 597eb52583d4 xtensa: ISS: fix call to split_if_spec e84829522fc7 ring-buffer: Fix deadloop issue on reading trace_pipe 481535905608 tracing/histograms: Add histograms to hist_vars if they have referenced variables 46574e5a0a2a tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() when iterating clk 30962268fa1a tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in case of error 0697a1a592c7 Revert "8250: add support for ASIX devices with a FIFO bug" 45e55e9cac13 meson saradc: fix clock divider mask length 2cdced57bc00 ceph: don't let check_caps skip sending responses for revoke msgs 1883a484c87e hwrng: imx-rngc - fix the timeout for init and self check e3373e6b6c79 firmware: stratix10-svc: Fix a potential resource leak in svc_create_memory_pool() 826c7bfe5c49 serial: atmel: don't enable IRQs prematurely 15d4bd0f0a6b drm/rockchip: vop: Leave vblank enabled in self-refresh 6bc6ec8b0a0b drm/atomic: Allow vblank-enabled + self-refresh "disable" f86942709b0e fs: dlm: return positive pid value for F_GETLK ecfd1f82c4f5 md/raid0: add discard support for the 'original' layout dac4afa3efae misc: pci_endpoint_test: Re-init completion for every test dd2210379205 misc: pci_endpoint_test: Free IRQs before removing the device 9cfa4ef25de5 PCI: rockchip: Set address alignment for endpoint mode 35aec6bc0c04 PCI: rockchip: Use u32 variable to access 32-bit registers 13b93891308c PCI: rockchip: Fix legacy IRQ generation for RK3399 PCIe endpoint core c049b20655f6 PCI: rockchip: Add poll and timeout to wait for PHY PLLs to be locked a1f311d430f2 PCI: rockchip: Write PCI Device ID to correct register 592795119f2b PCI: rockchip: Assert PCI Configuration Enable bit after probe 35c95eda7b6d PCI: qcom: Disable write access to read only registers for IP v2.3.3 b0aac7792525 PCI: Add function 1 DMA alias quirk for Marvell 88SE9235 f450388d8b6d PCI/PM: Avoid putting EloPOS E2/S2/H2 PCIe Ports in D3cold a4855aeb13e4 jfs: jfs_dmap: Validate db_l2nbperpage while mounting ee2fd448608e ext4: only update i_reserved_data_blocks on successful block allocation 02543d1ddd77 ext4: fix wrong unit use in ext4_mb_clear_bb 96a85becb811 erofs: fix compact 4B support for 16k block size 42725e5c1b18 SUNRPC: Fix UAF in svc_tcp_listen_data_ready() 29a560437f67 misc: fastrpc: Create fastrpc scalar with correct buffer count b157987242bd powerpc: Fail build if using recordmcount with binutils v2.37 2b59740ebc86 net: bcmgenet: Ensure MDIO unregistration has clocks enabled 1fe96568e78b mtd: rawnand: meson: fix unaligned DMA buffers handling 86b9820395f2 tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation 96a16069a81d pinctrl: amd: Only use special debounce behavior for GPIO 0 6dcb493fc478 pinctrl: amd: Detect internal GPIO0 debounce handling a1a443651569 pinctrl: amd: Fix mistake in handling clearing pins at startup cf57a0853ba5 net/sched: make psched_mtu() RTNL-less safe 96391959a99e net/sched: flower: Ensure both minimum and maximum ports are specified 166fa538e0dd cls_flower: Add extack support for src and dst port range options aadca5f08aef wifi: airo: avoid uninitialized warning in airo_get_rate() cc2c06ca7fbf erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond EOF b55c38fe2441 platform/x86: wmi: Break possible infinite loop when parsing GUID cb8a256202b9 platform/x86: wmi: move variables 669c488cb25a platform/x86: wmi: use guid_t and guid_equal() fd8049d6553f platform/x86: wmi: remove unnecessary argument 4c8e26fc3302 platform/x86: wmi: Fix indentation in some cases 8717326e4362 platform/x86: wmi: Replace UUID redefinitions by their originals c7eeba470585 ipv6/addrconf: fix a potential refcount underflow for idev 7a06554214fe NTB: ntb_tool: Add check for devm_kcalloc 88e243618e4c NTB: ntb_transport: fix possible memory leak while device_register() fails b5b9e041eb04 ntb: intel: Fix error handling in intel_ntb_pci_driver_init() 0ae4fac8fe33 NTB: amd: Fix error handling in amd_ntb_pci_driver_init() bb17520c0383 ntb: idt: Fix error handling in idt_pci_driver_init() 4e64ef41c6cf udp6: fix udp6_ehashfn() typo 61b4c4659746 icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev(). 4c7276a6daf7 ionic: remove WARN_ON to prevent panic_on_warn 3e77647acdcf ionic: ionic_intr_free parameter change f0dc38bdef52 ionic: move irq request to qcq alloc 7cf21fba1bf8 ionic: clean irq affinity on queue deinit ef7fc26b6a19 ionic: improve irq numa locality 808211a8d427 net/sched: cls_fw: Fix improper refcount update leads to use-after-free d98ac5bce2d5 net: mvneta: fix txq_map in case of txq_number==1 58cd168825b4 scsi: qla2xxx: Fix error code in qla2x00_start_sp() b49b55a7d578 igc: set TP bit in 'supported' and 'advertising' fields of ethtool_link_ksettings a45afb07121c igc: Remove delay during TX ring configuration 59c190082a01 drm/panel: simple: Add connector_type for innolux_at043tn24 64b76abfe32d drm/panel: Add and fill drm_panel type field 362940f8e40f drm/panel: Initialise panel dev and funcs through drm_panel_init() 6d5172a3ab8f workqueue: clean up WORK_* constant types, clarify masking 003d33924911 net: lan743x: Don't sleep in atomic context 373b9475ea8c block/partition: fix signedness issue for Amiga partitions 22df19fee7b9 tty: serial: fsl_lpuart: add earlycon for imx8ulp platform b7d636c924eb netfilter: nf_tables: prevent OOB access in nft_byteorder_eval 61c7a5256543 netfilter: conntrack: Avoid nf_ct_helper_hash uses after free 565bdccdded3 netfilter: nf_tables: fix scheduling-while-atomic splat 7c4610ac3b41 netfilter: nf_tables: unbind non-anonymous set if rule construction fails 90d54ee329d2 netfilter: nf_tables: reject unbound anonymous set before commit phase 1df28fde1270 netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain 1adb5c272b20 netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE 077ef851f0a3 netfilter: nf_tables: add rescheduling points during loop detection walks 11352851944c netfilter: nf_tables: use net_generic infra for transaction data d59ed9dc0058 netfilter: add helper function to set up the nfnetlink header and use it fa498dead9ee netfilter: nftables: add helper function to set the base sequence number ef35dd70a340 netfilter: nf_tables: fix nat hook table deletion d1b7fe307c75 block: add overflow checks for Amiga partition support 2b71cbf7ab48 fanotify: disallow mount/sb marks on kernel internal pseudo fs 9a6ce27a5d61 fs: no need to check source c1c41cda0ab1 ARM: orion5x: fix d2net gpio initialization 679c34821ab7 btrfs: fix race when deleting quota root from the dirty cow roots list f0fbbd405a94 fs: Lock moved directories b97ac51f8492 fs: Establish locking order for unrelated directories d95dc41ad181 Revert "f2fs: fix potential corruption when moving a directory" a9a926423a63 ext4: Remove ext4 locking of moved directory eefebf8877d3 fs: avoid empty option when generating legacy mount string e9a3310bc2fc jffs2: reduce stack usage in jffs2_build_xattr_subsystem() a249a61ac528 integrity: Fix possible multiple allocation in integrity_inode_get() 0729029e6472 bcache: Remove unnecessary NULL point check in node allocations 4be68f1c7076 mmc: sdhci: fix DMA configure compatibility issue when 64bit DMA mode is used. 2f6c76994646 mmc: core: disable TRIM on Micron MTFC4GACAJCN-1M c491e27151c1 mmc: core: disable TRIM on Kingston EMMC04G-M627 ce7278dedab7 NFSD: add encoding of op_recall flag for write delegation 5016511287dc ALSA: jack: Fix mutex call in snd_jack_report() c64fda48a3ad i2c: xiic: Don't try to handle more interrupt events after error 696e470e910e i2c: xiic: Defer xiic_wakeup() and __xiic_start_xfer() in xiic_process() 498962715773 sh: dma: Fix DMA channel offset calculation 58b1b3c54e16 net: dsa: tag_sja1105: fix MAC DA patching from meta frames 67a67e258407 net/sched: act_pedit: Add size check for TCA_PEDIT_PARMS_EX ab0085bd7902 xsk: Honor SO_BINDTODEVICE on bind 9347e432297e xsk: Improve documentation for AF_XDP e63dc31b9452 tcp: annotate data races in __tcp_oow_rate_limited() e9c2687988b7 net: bridge: keep ports without IFF_UNICAST_FLT in BR_PROMISC mode fffa51e786ce powerpc: allow PPC_EARLY_DEBUG_CPM only when SERIAL_CPM=y 45b34500f3ef f2fs: fix error path handling in truncate_dnode() 860d9b717f65 mailbox: ti-msgmgr: Fill non-message tx data fields with 0x0 398e6a015877 spi: bcm-qspi: return error if neither hif_mspi nor mspi is available 18d50fb44109 Add MODULE_FIRMWARE() for FIRMWARE_TG357766. 4d8fc6137749 sctp: fix potential deadlock on &net->sctp.addr_wq_lock 999ff7fe492b rtc: st-lpc: Release some resources in st_rtc_probe() in case of error d5c39cca4d03 pwm: sysfs: Do not apply state to already disabled PWMs 5375c024f8ae pwm: imx-tpm: force 'real_period' to be zero in suspend d252c74b8b7a mfd: stmpe: Only disable the regulators if they are enabled d9db18addf42 KVM: s390: vsie: fix the length of APCB bitmap baec796723b7 mfd: stmfx: Fix error path in stmfx_chip_init 5d26f134efa8 serial: 8250_omap: Use force_suspend and resume for system suspend 337073cacad4 mfd: intel-lpss: Add missing check for platform_get_resource 0a6afc83b028 usb: dwc3: qcom: Release the correct resources in dwc3_qcom_remove() becd09685d44 KVM: s390: fix KVM_S390_GET_CMMA_BITS for GFNs in memslot holes 151b0dd6d1a0 mfd: rt5033: Drop rt5033-battery sub-device 8e8dae8eb230 usb: hide unused usbfs_notify_suspend/resume functions fe9cdc198619 usb: phy: phy-tahvo: fix memory leak in tahvo_usb_probe() 1531ba3fab51 extcon: Fix kernel doc of property capability fields to avoid warnings 257daec29dcd extcon: Fix kernel doc of property fields to avoid warnings 648a163cff21 usb: dwc3: qcom: Fix potential memory leak d485150c9a52 media: usb: siano: Fix warning due to null work_func_t function pointer 619e6f9a564a media: videodev2.h: Fix struct v4l2_input tuner index comment e9586c49bdd4 media: usb: Check az6007_read() return value fd869bdb5f12 sh: j2: Use ioremap() to translate device tree address into kernel memory 85f4c53849e4 w1: fix loop in w1_fini() dc88382c1d44 block: change all __u32 annotations to __be32 in affs_hardblocks.h fa8548d1a0a4 block: fix signed int overflow in Amiga partition support bec218258cbd usb: dwc3: gadget: Propagate core init errors to UDC during pullup f55127df9918 USB: serial: option: add LARA-R6 01B PIDs bac502cd472a hwrng: st - keep clock enabled while hwrng is registered 071560202a52 hwrng: st - Fix W=1 unused variable warning 18fa56ca4cb8 NFSv4.1: freeze the session table upon receiving NFS4ERR_BADSESSION c182d87c67e2 ARC: define ASM_NL and __ALIGN(_STR) outside #ifdef __ASSEMBLY__ guard 02dc8e8bdbe4 modpost: fix off by one in is_executable_section() 1030c0c30968 crypto: marvell/cesa - Fix type mismatch warning ad3c4ecff00b modpost: fix section mismatch message for R_ARM_{PC24,CALL,JUMP24} 084bf580019c modpost: fix section mismatch message for R_ARM_ABS32 c893658d9ce6 crypto: nx - fix build warnings when DEBUG_FS is not enabled a43bcb0b661c hwrng: virtio - Fix race on data_avail and actual data b70315e44f03 hwrng: virtio - always add a pending request 102a354d52ca hwrng: virtio - don't waste entropy f2a7dfd35f0c hwrng: virtio - don't wait on cleanup 6fe732764a58 hwrng: virtio - add an internal buffer 2cbfb51d2c7e powerpc/mm/dax: Fix the condition when checking if altmap vmemap can cross-boundary aa3932eb0739 pinctrl: at91-pio4: check return value of devm_kasprintf() e297350c33f6 perf dwarf-aux: Fix off-by-one in die_get_varname() 7f822c8036fe pinctrl: cherryview: Return correct value if pin in push-pull mode 1768e362f20f PCI: Add pci_clear_master() stub for non-CONFIG_PCI 5d3955bc32d4 PCI: ftpci100: Release the clock resources 331dce61c0d4 PCI: pciehp: Cancel bringup sequence if card is not present f58c8563686b scsi: 3w-xxxx: Add error handling for initialization failure in tw_probe() 666e7f9d60ce PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free 961c8370c5f7 scsi: qedf: Fix NULL dereference in error handling 6f64558b43cf ASoC: imx-audmix: check return value of devm_kasprintf() 35455616110b clk: keystone: sci-clk: check return value of kasprintf() ffe6ad17cf14 clk: cdce925: check return value of kasprintf() 5f13d67027fa ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer 801c8341f7af clk: tegra: tegra124-emc: Fix potential memory leak 262db3ff58e2 drm/radeon: fix possible division-by-zero errors cacc0506e571 drm/amdkfd: Fix potential deallocation of previously deallocated memory. 9e3858f82e3c fbdev: omapfb: lcd_mipid: Fix an error handling path in mipid_spi_probe() 5541d1856c87 arm64: dts: renesas: ulcb-kf: Remove flow control for SCIF1 40ac5cb6cbb0 IB/hfi1: Fix sdma.h tx->num_descs off-by-one errors 68e0033dee72 soc/fsl/qe: fix usb.c build errors b756eb5eb9b0 ASoC: es8316: Do not set rate constraints for unsupported MCLKs d1c1ca27cac0 ASoC: es8316: Increment max value for ALC Capture Target Volume control b54bac970b54 memory: brcmstb_dpfe: fix testing array offset after use f54142ed16b5 ARM: ep93xx: fix missing-prototype warnings c2324c5aa247 drm/panel: simple: fix active size for Ampire AM-480272H3TMQW-T01H 4a23954279fc arm64: dts: qcom: msm8916: correct camss unit address 97dcb8dfefaa ARM: dts: gta04: Move model property out of pinctrl node 25bbd1c7bef8 RDMA/bnxt_re: Fix to remove an unnecessary log ed039ad88ab0 drm: sun4i_tcon: use devm_clk_get_enabled in `sun4i_tcon_init_clocks` 87ccaf56097a Input: adxl34x - do not hardcode interrupt trigger type c7a8cc9140cf ARM: dts: BCM5301X: Drop "clock-names" from the SPI node c516c00847f5 Input: drv260x - sleep between polling GO bit 3e789aee218b radeon: avoid double free in ci_dpm_init() bc5b57a23087 netlink: Add __sock_i_ino() for __netlink_diag_dump(). 1c405b3d3769 ipvlan: Fix return value of ipvlan_queue_xmit() 1d2ab3d4383e netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value. 337fdce45063 netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one 32deadf89430 lib/ts_bm: reset initial match offset for every block of text dd6ff3f38627 net: nfc: Fix use-after-free caused by nfc_llcp_find_local edc5d8776a32 nfc: llcp: simplify llcp_sock_connect() error paths 9c9662e2512b gtp: Fix use-after-free in __gtp_encap_destroy(). 08d8ff1bc688 selftests: rtnetlink: remove netdevsim device after ipsec offload test bd1de6107f10 netlink: do not hard code device address lenth in fdb dumps 8f6652ed2ad9 netlink: fix potential deadlock in netlink_set_err() 88d89b4a3102 wifi: ath9k: convert msecs to jiffies where needed 76d5bda2c3af wifi: cfg80211: rewrite merging of inherited elements e4c33144fc75 wifi: iwlwifi: pull from TXQs with softirqs disabled 2ba902da9090 rtnetlink: extend RTEXT_FILTER_SKIP_STATS to IFLA_VF_INFO 786e264b37d2 wifi: ath9k: Fix possible stall on ath9k_txq_list_has_key() 68305a19bada memstick r592: make memstick_debug_get_tpc_name() static 6f4454ccbea9 kexec: fix a memory leak in crash_shrink_memory() 4503261ab97b watchdog/perf: more properly prevent false positives with turbo modes d5fa3918dfce watchdog/perf: define dummy watchdog_update_hrtimer_threshold() on correct config 7874fb3bef8b wifi: rsi: Do not set MMC_PM_KEEP_POWER in shutdown 4dc3560561a0 wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes f432198058a6 wifi: ray_cs: Fix an error handling path in ray_probe() 8fe51dce8bdc wifi: ray_cs: Drop useless status variable in parse_addr() 0dec0ad304d4 wifi: ray_cs: Utilize strnlen() in parse_addr() ee73ad566a29 wifi: wl3501_cs: Fix an error handling path in wl3501_probe() b7df4e0cb4ed wl3501_cs: use eth_hw_addr_set() 24f34f67be24 net: create netdev->dev_addr assignment helpers dd5dca10d806 wl3501_cs: Fix misspelling and provide missing documentation 051d70773b9c wl3501_cs: Remove unnecessary NULL check 91c3c9eaf1ed wl3501_cs: Fix a bunch of formatting issues related to function docs add539f7d16b wifi: atmel: Fix an error handling path in atmel_probe() 5b06f702805d wifi: orinoco: Fix an error handling path in orinoco_cs_probe() ca4a2955d866 wifi: orinoco: Fix an error handling path in spectrum_cs_probe() 91c3325da240 regulator: core: Streamline debugfs operations 1bb38ef697e4 regulator: core: Fix more error checking for debugfs_create_dir() 6ca0c94f2b02 nfc: llcp: fix possible use of uninitialized variable in nfc_llcp_send_connect() 66a1be74230b nfc: constify several pointers to u8, char and sk_buff fea2104e752a wifi: mwifiex: Fix the size of a memory allocation in mwifiex_ret_802_11_scan() bc5099512057 spi: spi-geni-qcom: Correct CS_TOGGLE bit in SPI_TRANS_CFG f394d204d640 samples/bpf: Fix buffer overflow in tcp_basertt 90e3c1017757 wifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx be3989d93be3 wifi: ath9k: fix AR9003 mac hardware hang check register offset calculation 717e4277ddf7 ima: Fix build warnings 8430a8e8e854 pstore/ram: Add check for kstrdup 540cdd720772 evm: Complete description of evm_inode_setattr() 568b73406d93 ARM: 9303/1: kprobes: avoid missing-declaration warnings ba6da16eefb1 powercap: RAPL: Fix CONFIG_IOSF_MBI dependency c97460ce1f7c PM: domains: fix integer overflow issues in genpd_parse_state() 54cc10a0f4b0 clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe 38ca169d66c3 clocksource/drivers/cadence-ttc: Use ttc driver as platform driver 8af3b8d770da tracing/timer: Add missing hrtimer modes to decode_hrtimer_mode(). 7b0c664541cd irqchip/jcore-aic: Fix missing allocation of IRQ descriptors d244927e350e irqchip/jcore-aic: Kill use of irq_create_strict_mappings() be481881753b md/raid10: fix io loss while replacement replace rdev 45fa023b3334 md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request 31c805a44b75 md/raid10: fix wrong setting of max_corr_read_errors 283f4a63fee3 md/raid10: fix overflow of md/safe_mode_delay b0b971fe7d61 md/raid10: check slab-out-of-bounds in md_bitmap_get_counter 484104918305 x86/resctrl: Only show tasks' pid in current pid namespace 7206eca1ac44 x86/resctrl: Use is_closid_match() in more places 6f2bb37da468 bgmac: fix *initial* chip reset to support BCM5358 794bfb6fd992 drm/amdgpu: Validate VM ioctl flags. 2a4cfd5b0354 scripts/tags.sh: Resolve gtags empty index generation fff826d665f9 drm/i915: Initialise outparam for error return from wait_for_register 99036f1aed7e HID: wacom: Use ktime_t rather than int when dealing with timestamps 815c95d82b79 fbdev: imsttfb: Fix use after free bug in imsttfb_probe a7c8d2f3753d video: imsttfb: check for ioremap() failures f042d80a631f x86/smp: Use dedicated cache-line for mwait_play_dead() 23f98fe887ce gfs2: Don't deref jdesc in evict
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 8 Aug 2023 03:55:45 +0000 (23:55 -0400)]
linux-yocto/5.4: update to v5.4.250
Updating to the latest korg -stable release that comprises
the following commits:
27745d94abe1 Linux 5.4.250 00363ef30797 x86/cpu/amd: Add a Zenbleed fix 92b292bed627 x86/cpu/amd: Move the errata checking functionality up 4d4112e2845c x86/microcode/AMD: Load late on both threads too
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
The commit [https://github.com/openembedded/openembedded-core/commit/c22bbe9b45e3]
backports fix for CVE-2023-25193 for version 2.6.4.
The apply() in src/hb-ot-layout-gpos-table.hh ends prematurely.
The if block in apply() has an extra return statement,
which causes it to return w/o executing
buffer->unsafe_to_concat_from_outbuffer() function.
Signed-off-by: Dhairya Nagodra <dnagodra@cisco.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Yuta Hayama [Thu, 27 Jul 2023 08:56:26 +0000 (17:56 +0900)]
cve-update-nvd2-native: always pass str for json.loads()
Currently json.loads() accepts one of the types str, bytes, or bytearray
as an argument, but bytes and bytearrays have only been allowed since
python 3.6. The version of Python3 provided by default on Ubuntu 16.04
and Debian 9.x is 3.5, so make raw_data type str to work correctly on
these build hosts.
Signed-off-by: Yuta Hayama <hayama@lineo.co.jp> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Thu, 10 Aug 2023 20:22:37 +0000 (22:22 +0200)]
procps: patch CVE-2023-4016
Backport patch from upstream master.
There were three changes needed to apply the patch:
* move NEWS change to start of the file
* change file location from src/ps/ to ps/
* change xmalloc/xcmalloc to malloc/cmalloc
The x*malloc functions were introduced in commit in future version.
https://gitlab.com/procps-ng/procps/-/commit/584028dbe513127ef68c55aa631480454bcc26bf
They call the original function plus additionally throw error when out of memory.
https://gitlab.com/procps-ng/procps/-/blob/v4.0.3/local/xalloc.h?ref_type=tags
So this replacement is correct in context of our version.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>