A flaw was found in libxml2's xmlBuildQName function, where integer
overflows in buffer size calculations can lead to a stack-based buffer
overflow. This issue can result in memory corruption or a denial
of service when processing crafted input.
A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function
(io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing
maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding,
allowing out-of-bounds reads from heap memory, potentially causing application crashes or
arbitrary code execution.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sun, 13 Jul 2025 13:30:35 +0000 (15:30 +0200)]
curl: ignore CVE-2025-4947 and CVE-2025-5025
These CVEs are for integration with WolfSSL which is not supported by
this recipe.
Ignore it if openssl packageconfig is enabled as it was done also in
scarthgap branch.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sat, 12 Jul 2025 16:06:56 +0000 (18:06 +0200)]
busybox: apply patch for CVE-2023-39810
Backport patch referencing this CVE.
Note that the hardening is not activated by default, it adds defconfig
option to enable it.
Since it introduces a breaking change, it shouldn't be enabled in LTS
release by default.
This patch makes busybox cpio equivalent in this release to what is
currently in master and in kirkstone.
Also note that gnu cpio also does not have this hardening, but the CVE
is created only against busybox.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
ltp: backport patch to fix compilation error for Skylake -march=x86-64-v3
When the input compiler enables AVX, stack realignment requirements
causes gcc to fail to omit %rbp use, due to which the test fails to
clobber %rbp in inline asm. Disable AVX to build the test on x86_64 so
that the test continues working.
Changqing Li [Wed, 2 Jul 2025 01:51:23 +0000 (09:51 +0800)]
mingetty: fix do_package warning
Reproduce steps(Under the same project dir):
1. enable DISTRO_FEATURES usrmerge, bitbake mingetty
2. disable DISTRO_FEATURES usrmerge, bitbake mingetty
Result in step 2:
WARNING: mingetty-1.08-r3 do_package: mingetty: NOT adding alternative provide /usr/sbin/getty: /usr/sbin/mingetty does not exist
WARNING: mingetty-1.08-r3 do_package: QA Issue: mingetty: Files/directories were installed but not shipped in any package:
/sbin
/usr/sbin
In step1, Line SBINDIR=/sbin is replaced to SBINDIR=/usr/sbin, in step2,
since do_fetch does not rerun, Makefile still has SBINDIR=/usr/sbin, so
sed not works as expected, SBINDIR still equal to /usr/sbin when disable
usrmerge. And cause above two warnings.
Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Wang Mingyu [Thu, 10 Jul 2025 11:16:43 +0000 (16:46 +0530)]
libpam: upgrade 1.7.0 -> 1.7.1
0001-meson.build-correct-check-for-existence-of-two-prepr.patch
removed since it's included in 1.7.1
Changelog:
===============
* pam_access: do not resolve ttys or display variables as hostnames.
* pam_access: added "nodns" option to disallow resolving of tokens as hostnames
(CVE-2024-10963).
* pam_limits: added support for rttime (RLIMIT_RTTIME).
* pam_namespace: fixed potential privilege escalation (CVE-2025-6020).
* meson: added support of elogind as a logind provider.
* Multiple minor bug fixes, build fixes, portability fixes,
documentation improvements, and translation updates.
Changelog:
===========
* Fixed CVE-2025-32462. Sudo's -h (--host) option could be specified
when running a command or editing a file. This could enable a
local privilege escalation attack if the sudoers file allows the
user to run commands on a different host.
* Fixed CVE-2025-32463. An attacker can leverage sudo's -R
(--chroot) option to run arbitrary commands as root, even if
they are not listed in the sudoers file. The chroot support has
been deprecated an will be removed entirely in a future release.
Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9d41127b241133267449d81c92eb89123e8a6f48)
Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Includes fix for CVE-2025-24223, CVE-2025-31204, CVE-2025-31205,
CVE-2025-31206, CVE-2025-31215 and CVE-2025-31257.
Changelog:
=========
- Enable CSS Overscroll Behavior by default.
- Change threaded rendering implementation to use Skia API
instead of WebCore display list that is not thread safe.
- Fix rendering when device scale factor change comes before
the web view geometry update.
- Fix network process crash on exit.
- Fix the build with ENABLE_RESOURCE_USAGE=OFF.
- Fix several crashes and rendering issues.
Drop fix-ftbfs-non-arm-non-x86.patch which is part of upgrade.
Peter Marko [Wed, 9 Jul 2025 18:52:31 +0000 (20:52 +0200)]
python3: update CVE product
There are two "new" CVEs reported for python3, their CPEs are:
* CVE-2020-1171: cpe:2.3:a:microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
* CVE-2020-1192: cpe:2.3:a:microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
These are for "Visual Studio Code Python extension".
Solve this by addding CVE vendor to python CVE product to avoid
confusion with Microsoft as vendor.
Examining CVE DB for historical python entries shows:
sqlite> select vendor, product, count(*) from products where product = 'python' or product = 'cpython'
...> or product like 'python%3' group by vendor, product;
microsoft|python|2
python|python|1054
python_software_foundation|python|2
Note that this already shows that cpython product is not used, so
CVE-2023-33595 mentioned in 62598e1138f21a16d8b1cdd1cfe902aeed854c5c
was updated.
But let's keep it for future in case new CVE starts with that again.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap b
uffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer
-Schieber (LZSS) window. This means the library may attempt to read beyond the allocated memo
ry buffer, which can result in unpredictable program behavior, crashes (denial of service), o
r the disclosure of sensitive information from adjacent memory regions.
Changqing Li [Mon, 7 Jul 2025 09:12:00 +0000 (17:12 +0800)]
icu: fix CVE-2025-5222
CVE-2025-5222:
A stack buffer overflow was found in Internationl components for unicode
(ICU ). While running the genrb binary, the 'subtag' struct overflowed
at the SRBRoot::addTag function. This issue may lead to memory
corruption and local arbitrary code execution.
Bruce Ashfield [Thu, 5 Jun 2025 02:18:55 +0000 (22:18 -0400)]
linux-yocto/6.12: libbpf: silence maybe-uninitialized warning from clang
Integrating the following commit(s) to linux-yocto/6.12:
1/1 [
Author: Ross Burton
Email: ross.burton@arm.com
Subject: libbpf: silence maybe-uninitialized warning from clang
Date: Wed, 4 Jun 2025 21:22:23 +0100
perf is build with -Werror, but clang 20.1.6 (incorrectly) finds that
mod_len may be used uninitialized:
libbpf.c: In function 'find_kernel_btf_id.constprop':
libbpf.c:10009:33: error: 'mod_len' may be used uninitialized [-Werror=maybe-uninitialized]
10009 | if (mod_name && strncmp(mod->name, mod_name, mod_len) != 0)
| ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
libbpf.c:9979:21: note: 'mod_len' was declared here
9979 | int ret, i, mod_len;
| ^~~~~~~
Inspecting the code it can be seen that mod_len is set if mod_name is
set, and the strncmp() is only called if mod_name is set, so this is a
false positive (interestingly, clang doesn't spot the same issue above).
Silence the false positive by explicitly initializing mod_len to 0.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
]
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 43f6b7795170f0e571265f22bcef51554684206f) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Thu, 5 Jun 2025 16:32:19 +0000 (17:32 +0100)]
linux-yocto: refresh CVE exclusion list for 6.12.31
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 890041f5ed06be1c0a655030af35484d98fe3e7a) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 3 Jun 2025 02:48:58 +0000 (22:48 -0400)]
linux-yocto/6.12: update to v6.12.31
Updating linux-yocto/6.12 to the latest korg -stable release that comprises
the following commits:
df3f6d10f353d Linux 6.12.31 85fb1edd059bf drm/gem: Internally test import_attach for imported objects ee2a06bbbb8a0 x86/mm/init: Handle the special case of device private pages in add_pages(), to not increase max_pfn and trigger dma_addressing_limited() bounce buffers bounce buffers ae0d63ec39053 i3c: master: svc: Fix implicit fallthrough in svc_i3c_master_ibi_work() 73c4707510f27 pinctrl: tegra: Fix off by one in tegra_pinctrl_get_group() ecb9d3123bef7 watchdog: aspeed: fix 64-bit division c3e1091eb054c drm/amdkfd: Correct F8_MODE for gfx950 a8a34fbf915dd serial: sh-sci: Save and restore more registers 80eb73778deba bpf: abort verification if env->cur_state->loop_entry != NULL fdee1dc816b4c drm/amd/display: Exit idle optimizations before accessing PHY dd8a734155ae2 kbuild: Properly disable -Wunterminated-string-initialization for clang 3f856d5d84467 Fix mis-uses of 'cc-option' for warning disablement d66cf772bebd7 gcc-15: disable '-Wunterminated-string-initialization' entirely for now 9f58537e9b8f0 gcc-15: make 'unterminated string initialization' just a warning d28b0305f711e err.h: move IOMEM_ERR_PTR() to err.h 96537d8c67e5e spi: spi-fsl-dspi: Reset SR flags before sending a new message b1781bd47e6d4 spi: spi-fsl-dspi: Halt the module after a new message transfer b9fbbcf61e7c7 spi: spi-fsl-dspi: restrict register range for regmap access 1d45e0170cf00 spi: use container_of_cont() for to_spi_device() 92f077ff52f28 platform/x86: think-lmi: Fix attribute name usage for non-compliant items 5c54a557bde18 ksmbd: fix stream write failure 544ff7fb19727 Revert "arm64: dts: allwinner: h6: Use RSB for AXP805 PMIC connection" 111a892a235d5 Bluetooth: btmtksdio: Do close if SDIO card removed without close 3e0dc2b4f678c Bluetooth: btmtksdio: Check function enabled before doing close fedd2a1443600 nilfs2: fix deadlock warnings caused by lock dependency in init_nilfs() 483ac74183e1e mm: vmalloc: only zero-init on vrealloc shrink 94efb0d656902 mm: vmalloc: actually use the in-place vrealloc region 9f9517f156866 mm: mmap: map MAP_STACK to VM_NOHUGEPAGE only if THP is enabled 9da33ce1142b5 mm/page_alloc.c: avoid infinite retries caused by cpuset race 314bf771cb87c memcg: always call cond_resched() after fn() 9b8263cae64a6 highmem: add folio_test_partial_kmap() cb9a1019a63fe Input: xpad - add more controllers 7c220f89add8e Revert "drm/amd: Keep display off while going into S4" b4f801e8cfcc1 smb: client: Reset all search buffer pointers when releasing buffer 56b06539b6782 arm64: dts: marvell: uDPU: define pinctrl state for alarm LEDs 9bea368648ac4 smb: client: Fix use-after-free in cifs_fill_dirent dc9bdfb9b0286 drm/edid: fixed the bug that hdr metadata was not reset 56081f5d14c67 thermal: intel: x86_pkg_temp_thermal: Fix bogus trip temperature 8594a123cfa23 platform/x86: dell-wmi-sysman: Avoid buffer overflow in current_password_store() e78908caf17cb pmdomain: core: Fix error checking in genpd_dev_pm_attach_by_id() 0ae82a7abff8f pmdomain: renesas: rcar: Remove obsolete nullify checks a6ddbf9ae7884 vmxnet3: update MTU after device quiesce ba689e089369d net: dsa: microchip: linearize skb for tail-tagging switches 352fbde14177d can: kvaser_pciefd: Fix echo_skb race 8654c8a0528d0 can: kvaser_pciefd: Continue parsing DMA buf after dropped RX 80702f002b136 llc: fix data loss when reading from a socket in llc_ui_recvmsg() 4e22325b98245 ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14ASP10 bf85e49aaf3a3 ALSA: pcm: Fix race of buffer access at PCM OSS layer 799d48c95f9b6 ASoC: SOF: ipc4-pcm: Delay reporting is only supported for playback direction 20e3fa3b7df9d ASoc: SOF: topology: connect DAI to a single DAI link 6a62b917fb55b ASoC: SOF: Intel: hda-bus: Use PIO mode on ACE2+ platforms 964d355832700 ASoC: SOF: ipc4-control: Use SOF_CTRL_CMD_BINARY as numid for bytes_ext 63567ecd99a24 can: bcm: add missing rcu read protection for procfs content cc55dd28c20a6 can: bcm: add locking for bcm_op runtime updates adb05149a9055 can: slcan: allow reception of short error messages 5300e487487d7 padata: do not leak refcount in reorder_work 2f45a8d64fb4e crypto: algif_hash - fix double free in hash_accept bcb1c946c761d clk: s2mps11: initialise clk_hw_onecell_data::num before accessing ::hws[] in probe() 4a7261089d1aa octeontx2-af: Fix APR entry mapping based on APR_LMT_CFG 92b04bac366f0 octeontx2-af: Set LMT_ENA bit for APR table entries 689a205cd968a net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done 41678d7222850 octeontx2-pf: Add AF_XDP non-zero copy support 49b21795b8e56 sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() 0a2422f97651c idpf: fix idpf_vport_splitq_napi_poll() 873ebaf3c1113 io_uring: fix overflow resched cqe reordering 845ef0462ac70 net: lan743x: Restore SGMII CTRL register on resume 8e4fd8e76dd7e net: dwmac-sun8i: Use parsed internal PHY address instead of 1 3e79182c82a11 pinctrl: qcom: switch to devm_register_sys_off_handler() cd7f022296972 loop: don't require ->write_iter for writable files in loop_configure f6f5e9c8cb680 idpf: fix null-ptr-deref in idpf_features_check 8c3b8ace9ce4a ice: Fix LACP bonds without SRIOV environment 7191b69eae0f5 ice: fix vf->num_mac count with port representors 233a227a317b0 bridge: netfilter: Fix forwarding of fragmented packets 0b7d3e782027a ptp: ocp: Limit signal/freq counts in summary output functions 6a1f9a709a616 Bluetooth: btusb: use skb_pull to avoid unsafe access in QCA dump handling 1e8b7e96f71fe Bluetooth: L2CAP: Fix not checking l2cap_chan security level ca51db2316676 perf/x86/intel: Fix segfault with PEBS-via-PT with sample_freq 1c1fb885e5885 irqchip/riscv-imsic: Start local sync timer on correct CPU 2b49e68360eb6 ASoC: SOF: Intel: hda: Fix UAF when reloading module 4a39fbffad5cd devres: Introduce devm_kmemdup_array() 7207effe4743f driver core: Split devres APIs to device/devres.h ae344b9f842d9 dmaengine: fsl-edma: Fix return code for unhandled interrupts d31daa83efbab dmaengine: idxd: Fix ->poll() return value 252f78a9317ac xfrm: Sanitize marks before insert ae5e975a46e26 clk: sunxi-ng: d1: Add missing divider for MMC mod clocks 090aa8d51ec6c remoteproc: qcom_wcnss: Fix on platforms without fallback regulators 447c8f0c06190 kernel/fork: only call untrack_pfn_clear() on VMAs duplicated for fork() 7f5dc43b46205 x86/sev: Fix operator precedence in GHCB_MSR_VMPL_REQ_LEVEL macro d91576a2321d7 dmaengine: idxd: Fix allowing write() from different address spaces b1a687eb15bcf xfrm: Fix UDP GRO handling for some corner cases 9cbca30102028 espintcp: remove encap socket caching to avoid reference leak 28756f22de48d espintcp: fix skb leaks 153bc79b5d02c soundwire: bus: Fix race on the creation of the IRQ domain 8cafd7266fa02 __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock a0c50c9f9c912 drm/amd/display: Call FP Protect Before Mode Programming/Mode Support 211f589206459 xenbus: Allow PVH dom0 a non-local xenstore 5a8d073d87da4 x86/Kconfig: make CFI_AUTO_DEFAULT depend on !RUST or Rust >= 1.88 b8581b4e4d96e wifi: iwlwifi: add support for Killer on MTL 1645fc1849ef0 block: only update request sector if needed 511ea82e344e0 tools: ynl-gen: validate 0 len strings from kernel 6e9770de02496 btrfs: avoid NULL pointer dereference if no valid csum tree 230c94ca3527d btrfs: handle empty eb->folios in num_extent_folios() 7f7c8c03feba5 btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref 92dff981dddff btrfs: compression: adjust cb->compressed_folios allocation type 5926bc887da2f ASoC: intel/sdw_utils: Add volume limit to cs42l43 speakers 6b1a9a7647097 cifs: Fix changing times and read-only attr over SMB1 smb_set_file_info() function 0a9920e1ff67d cifs: Fix and improve cifs_query_path_info() and cifs_query_file_info() ad3e83a6c8033 io_uring/fdinfo: annotate racy sq/cq head/tail reads ec462449f4cf6 nvmet-tcp: don't restore null sk_state_change 6a09b6bad09a6 ALSA: usb-audio: Fix duplicated name in MIDI substream names 6d196cae4b0b2 nvme-pci: add quirks for WDC Blue SN550 15b7:5009 ff214b079d55e nvme-pci: add quirks for device 126f:1001 35ec11b38588c ALSA: hda/realtek: Add quirk for HP Spectre x360 15-df1xxx 8f76431c00b2d ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013 63affdae7ff49 ASoC: cs42l43: Disable headphone clamps during type detection 4c7a0425fb620 platform/x86: ideapad-laptop: add support for some new buttons 2418bf5d383fa platform/x86: asus-wmi: Disable OOBE state after resume from hibernation 00fe4c0e46959 platform/x86/intel: hid: Add Pantherlake support aa000a4ee9897 smb: server: smb2pdu: check return value of xa_store() c134c62b9e97b pinctrl: meson: define the pull up/down resistor value as 60 kOhm 5863bd44ed2fa book3s64/radix: Fix compile errors when CONFIG_ARCH_WANT_OPTIMIZE_DAX_VMEMMAP=n b5aa85b9b0c4c ASoC: imx-card: Adjust over allocation of memory in imx_card_parse_of() 9fddd1f15465f drm: Add valid clones check 08150a6c83a9a drm/panel-edp: Add Starry 116KHD024006 aa52c70ae1322 drm/buddy: fix issue that force_merge cannot free all roots 135105287781e drm/atomic: clarify the rules around drm_atomic_state->allow_modeset 6ceef704e2bce drm/xe: Reject BO eviction if BO is bound to current VM 650c1769cfe9d drm/xe/sa: Always call drm_suballoc_manager_fini() 1cc37163730aa wifi: rtw89: coex: Separated Wi-Fi connecting event from Wi-Fi scan event c9db43696ed0e drm/xe: Do not attempt to bootstrap VF in execlists mode 274ae1044bd2c drm/xe: Move suballocator init to after display init 115360031be90 wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation e1fffcd1d75db drm/nouveau: fix the broken marco GSP_MSG_MAX_SIZE 878ccaf79c95f drm: bridge: adv7511: fill stream capabilities fb0d82562c078 wifi: ath12k: Fix end offset bit definition in monitor ring descriptor bb2d55681ee70 wifi: ath12k: Fetch regdb.bin file from board-2.bin a3f6e4682f3d4 wifi: ath9k: return by of_get_mac_address 331c0af96c034 drm/xe/pf: Reset GuC VF config when unprovisioning critical resource 63780d7352f0f accel/qaic: Mask out SR-IOV PCI resources a1e3f2ea66c0d wifi: ath12k: fix ath12k_hal_tx_cmd_ext_desc_setup() info1 override ff56fbf50eff9 regulator: ad5398: Add device tree support 697a6f8a91063 spi: zynqmp-gqspi: Always acknowledge interrupts c533839e0a48d wifi: rtw89: add wiphy_lock() to work that isn't held wiphy_lock() yet 9e9e974915908 wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate 0b63d246248f5 wifi: rtl8xxxu: retry firmware download on error ff5c6e3d251ea clk: renesas: rzg2l-cpg: Refactor Runtime PM clock validation 3a95341c65e4e perf/amd/ibs: Fix ->config to sample period calculation for OP PMU e225dbb03af65 perf/amd/ibs: Fix perf_ibs_op.cnt_mask for CurCnt 46f1c2b508e33 firmware: arm_scmi: Relax duplicate name constraint across protocol ids ff84436446a02 bpftool: Fix readlink usage in get_fd_type c80b2d159c31f bpf: Use kallsyms to find the function name of a struct_ops's stub function c3fd672e6644a drm/ast: Find VBIOS mode from regular display size 538a82168e52b dm vdo: use a short static string for thread name prefix f8b4edbcf3531 dm vdo indexer: prevent unterminated string warning 0cc2aa7472085 irqchip/riscv-aplic: Add support for hart indexes a3300021d4875 ASoC: rt722-sdca: Add some missing readable registers 67f7080cb30e5 ASoC: codecs: pcm3168a: Allow for 24-bit in provider mode b99c2faf40215 arm64: zynqmp: add clock-output-names property in clock nodes 9e3eaf7f750e1 HID: usbkbd: Fix the bit shift number for LED_KANA b5a1ef646ce13 wifi: ath12k: Avoid napi_sync() before napi_enable() dbb6efb3d8f34 scsi: st: Restore some drive settings after reset 1be28b37a6a7b scsi: lpfc: Free phba irq in lpfc_sli4_enable_msi() when pci_irq_vector() fails 609bc6e9c1869 scsi: lpfc: Ignore ndlp rport mismatch in dev_loss_tmo callbk c670902775c20 scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine f5ce5628576dd net/mana: fix warning in the writer of client oob 7cc781374e20e drm/xe/relay: Don't use GFP_KERNEL for new transactions e2017f44c6d4a ice: count combined queues using Rx/Tx count 887e39ac4704e perf: Avoid the read if the count is already updated d402437cde36c rcu: fix header guard for rcu_all_qs() fcabb696743a4 rcu: handle unstable rdp in rcu_read_unlock_strict() 5cdaa970d73a4 rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y 65daba41f935e ice: treat dyn_allowed only as suggestion 3c8b4657a6d75 ice: init flow director before RDMA 58cdd1ee650b3 bridge: mdb: Allow replace of a host-joined group 76e56dbe508b3 net: flush_backlog() small changes ba59747562c49 r8169: don't scan PHY addresses > 0 ded26f9e4cdbe ipv4: ip_gre: Fix set but not used warning in ipgre_err() if IPv4-only a6644aeb8ddf1 vxlan: Annotate FDB data races 61e931ee145ee cpufreq: amd-pstate: Remove unnecessary driver_lock in set_boost b82e496531c57 net/mlx5e: Avoid WARN_ON when configuring MQPRIO with HTB offload enabled 91526279362d3 tools: ynl-gen: don't output external constants 37c07516ac6a5 eth: fbnic: set IFF_UNICAST_FLT to avoid enabling promiscuous mode when adding unicast addrs d2b58a10228a9 drm/rockchip: vop2: Improve display modes handling on RK3588 HDMI0 91c53b8cd81ce media: qcom: camss: Add default case in vfe_src_pad_code 85e0e03303390 media: qcom: camss: csid: Only add TPG v4l2 ctrl if TPG hardware is available 1d15319323d84 f2fs: introduce f2fs_base_attr for global sysfs entries 77818483460b5 hwmon: (xgene-hwmon) use appropriate type for the latency value c4092cb06398f tools/power turbostat: Clustered Uncore MHz counters should honor show/hide options 247b420fea798 net: page_pool: avoid false positive warning if NAPI was never added b063f36a929a3 clk: qcom: camcc-sm8250: Use clk_rcg2_shared_ops for some RCGs 2368794c0cf41 wifi: rtw89: call power_on ahead before selecting firmware 01edf9255f33d wifi: rtw89: fw: validate multi-firmware header before accessing f4c99c7b710b1 wifi: rtw89: fw: validate multi-firmware header before getting its size 2eb2cfca35801 wifi: rtw89: coex: Assign value over than 0 to avoid firmware timer hang 50f78100b9393 wifi: rtw88: Fix __rtw_download_firmware() for RTL8814AU 1c564864438b2 wifi: rtw88: Fix download_firmware_validate() for RTL8814AU 2a25d61107c6e ext4: remove writable userspace mappings before truncating page cache 73733c2fdb378 ext4: don't write back data before punch hole in nojournal mode 39255ab2edfb0 leds: trigger: netdev: Configure LED blink interval for HW offload 16ddd67bb5579 pstore: Change kmsg_bytes storage size to u32 556f53a8ec374 iio: adc: ad7944: don't use storagebits for sizing 7fea5a914001a r8152: add vendor/device ID pair for Dell Alienware AW1022z 9f2911868a733 ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure(). f9ab6efdee1ff arch/powerpc/perf: Check the instruction type before creating sample with perf_mem_data_src c2e02e2b21591 powerpc/pseries/iommu: create DDW for devices with DMA mask less than 64-bits 9aeaf1956e75a powerpc/pseries/iommu: memory notifier incorrectly adds TCEs for pmemory 701118e6f621f net: fec: Refactor MAC reset to function 641ad8d64a08c wifi: mac80211: set ieee80211_prep_tx_info::link_id upon Auth Rx 8315b79220d2d wifi: mac80211: remove misplaced drv_mgd_complete_tx() call 26e384fafda89 wifi: mac80211: don't unconditionally call drv_mgd_complete_tx() 8e1800f1db7eb wifi: iwlwifi: don't warn during reprobe 15d8ceef9289f wifi: iwlwifi: use correct IMR dump variable 4d8fd111e0f55 mptcp: pm: userspace: flags: clearer msg if no remote addr 6a0997d78ffa3 wifi: ath12k: fix the ampdu id fetch in the HAL_RX_MPDU_START TLV 06daedb4439bb xfrm: prevent high SEQ input in non-ESN mode bbd6dc1fb6c56 drm/v3d: Add clock handling e5a69d1696323 net/mlx5e: reduce the max log mpwrq sz for ECPF and reps 74d153d8ec150 net/mlx5e: reduce rep rxq depth to 256 for ECPF af94d4f46c09a net/mlx5e: set the tx_queue_len for pfifo_fast a3a845ebc8f98 net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB 4a94ccac4930d net/mlx5: XDP, Enable TX side XDP multi-buffer support d4df87dae1444 scsi: target: spc: Fix loop traversal in spc_rsoc_get_descr() 9acae6e987058 drm/amd/display/dm: drop hw_support check in amdgpu_dm_i2c_xfer() f5e9d0d206cbd drm/amdgpu: enlarge the VBIOS binary size limit 7ef18e2ffdc12 drm/amdgpu: Use active umc info from discovery 1bb46b5433a8a drm/amd/display: Populate register address for dentist for dcn401 af3d57ea9ec74 drm/amd/display: Use Nominal vBlank If Provided Instead Of Capping It e55c5704b12ee drm/amd/display: Increase block_sequence array size 17e40a52a1492 drm/amd/display: Initial psr_version with correct setting 563adeeeb0ffa drm/amd/display: Update CR AUX RD interval interpretation 47bfc7a02704f Revert "drm/amd/display: Exit idle optimizations before attempt to access PHY" 45068cc170ebf drm/amd/display: Support multiple options during psr entry. 4f4cb81def433 drm/amd/pm: Skip P2S load for SMU v13.0.12 a25d045ebfbce drm/amdgpu: reset psp->cmd to NULL after releasing the buffer ed2039d840a12 drm/amd/display: Don't try AUX transactions on disconnected link a8726bee7046d drm/amd/display: pass calculated dram_speed_mts to dml2 452807a863018 drm/amdgpu: Set snoop bit for SDMA for MI series 5ca70518bc23d drm/amdkfd: fix missing L2 cache info in topology 365d302ac763d drm/amdgpu/mes11: fix set_hw_resources_1 calculation 11c7fa11fa076 net: stmmac: dwmac-loongson: Set correct {tx,rx}_fifo_size 97dba4472e484 soundwire: cadence_master: set frame shape and divider based on actual clk freq c043867b654ec soundwire: amd: change the soundwire wake enable/disable sequence 164c9f5edf2ae phy: exynos5-usbdrd: fix EDS distribution tuning (gs101) ef31dc41cf67b phy: core: don't require set_mode() callback for phy_get_mode() to work afb512502f2d7 phy: phy-rockchip-samsung-hdptx: Swap the definitions of LCPLL_REF and ROPLL_REF a507a213e82ca pinctrl: renesas: rzg2l: Add suspend/resume support for pull up/down 5de11f82cbfd1 serial: sh-sci: Update the suspend/resume support e6e31b0182de5 sched: Reduce the default slice to avoid tasks getting an extra tick 9c5f85b72fa6d x86/traps: Cleanup and robustify decode_bug() eb6fd16b4fc4f x86/ibt: Handle FineIBT in handle_cfi_failure() b870651021223 drm/xe/debugfs: Add missing xe_pm_runtime_put in wedge_mode_set cf126a14584e5 drm/xe/debugfs: fixed the return value of wedged_mode_set 6469a2b1140d0 clk: qcom: clk-alpha-pll: Do not use random stack value for recalc rate 328a2ec198e70 clk: qcom: ipq5018: allow it to be bulid on arm32 01d28e67f567b drm/xe: Fix xe_tile_init_noalloc() error propagation 884d64e8e4dc6 drm/xe: Stop ignoring errors from xe_ttm_stolen_mgr_init() 50c5bbb45c7df net/mlx4_core: Avoid impossible mlx4_db_alloc() order value 69689d1138c85 media: v4l: Memset argument to 0 before calling get_mbus_config pad op 9a981079097be media: i2c: imx219: Correct the minimum vblanking value 12aeff4944dc6 kunit: tool: Use qboot on QEMU x86_64 8f5ce688c8318 smack: Revert "smackfs: Added check catlen" 316f2911fb11a smack: recognize ipv4 CIPSO w/o categories 5b1b4cb46d951 pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map c4260bf83b429 ASoC: soc-dai: check return value at snd_soc_dai_set_tdm_slot() 2ea042779621d ASoC: tas2764: Power up/down amp on mute ops 409c12ce79b33 ASoC: tas2764: Mark SW_RESET as volatile 8d8083881ecbb ASoC: tas2764: Add reg defaults for TAS2764_INT_CLK_CFG 000dd6e3441fc ASoC: ops: Enforce platform maximum on initial value 83ea947238953 firmware: xilinx: Dont send linux address to get fpga config get status e1c4bb3774421 firmware: arm_ffa: Handle the presence of host partition in the partition info 3a3fab1be5a0c firmware: arm_ffa: Reject higher major version as incompatible 587386c56fb88 net/mlx5: Apply rate-limiting to high temperature warning c4e1ce22b9ab9 net/mlx5: Modify LSB bitmask in temperature event to include only the first bit 3770acff3110f media: test-drivers: vivid: don't call schedule in loop 2fe6284364423 irqchip/riscv-imsic: Set irq_set_affinity() for IMSIC base dc5f5c9d2bbc6 hrtimers: Replace hrtimer_clock_to_base_table with switch-case 7f131fda2654e vxlan: Join / leave MC group after remote changes 1fb8106316a21 ACPI: HED: Always initialize before evged 82b54455b6b7f PCI: Fix old_size lower bound in calculate_iosize() too 161cc125043a2 eth: mlx4: don't try to complete XDP frames in netpoll 46ba5757a7a47 bpf: copy_verifier_state() should copy 'loop_entry' field 2b129e89b8c6e bpf: don't do clean_live_states when state->loop_entry->branches > 0 eaeb67bd851ce can: c_can: Use of_property_present() to test existence of DT property a89326d35bf6f pmdomain: imx: gpcv2: use proper helper for property detection 3ccfdd5b33742 RDMA/core: Fix best page size finding when it can cross SG entries e6a46719a2369 serial: mctrl_gpio: split disable_ms into sync and no_sync APIs b14e726d57f61 drm/amd/display: Don't treat wb connector as physical in create_validate_stream_for_sink cee5d56fa783f Revert "drm/amd/display: Request HW cursor on DCN3.2 with SubVP" 775f3afa6ade1 drm/amd/display: Read LTTPR ALPM caps during link cap retrieval 1e826acee1165 drm/amd/display: Fix BT2020 YCbCr limited/full range input 2bba67f03071a drm/amd/display: Guard against setting dispclk low when active b02b561bf7692 drm/amd/display: Add support for disconnected eDP streams 94e6687ceda91 drm/amd/pm: Fetch current power limit from PMFW 098788e118d1e irqchip/riscv-imsic: Separate next and previous pointers in IMSIC vector d85004266a32c eeprom: ee1004: Check chip before probing 011a62d2d79ac mfd: axp20x: AXP717: Add AXP717_TS_PIN_CFG to writeable regs a82c0c3996771 i3c: master: svc: Flush FIFO before sending Dynamic Address Assignment(DAA) 7d0c92af8d355 EDAC/ie31200: work around false positive build warning 4593aaf48fc16 power: supply: axp20x_battery: Update temp sensor for AXP717 from device tree 6b1d3e9db82d0 net: pktgen: fix access outside of user given buffer in pktgen_thread_write() d37783f25a3c8 wifi: rtw89: 8922a: fix incorrect STA-ID in EHT MU PPDU 7dafba4e854cd wifi: rtw89: fw: add blacklist to avoid obsolete secure firmware 6ffcf25e63226 wifi: rtw89: fw: get sb_sel_ver via get_unaligned_le32() 1cbef396c5f3b wifi: rtw89: fw: propagate error code from rtw89_h2c_tx() a4523765fa3a9 wifi: rtw88: Fix rtw_desc_to_mcsrate() to handle MCS16-31 adcc65afaa979 wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU 9a3f80a727aac wifi: rtw88: Fix rtw_init_vht_cap() for RTL8814AU 1653c72dabfd6 scsi: mpt3sas: Send a diag reset if target reset fails b5038d313a3b7 PCI: epf-mhi: Update device ID for SA8775P 0b21e99cf638b clocksource: mips-gic-timer: Enable counter when CPUs start 1a3529f36f26e MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core 53f42776e435f genirq/msi: Store the IOMMU IOVA directly in msi_desc instead of iommu_cookie 5111c2e0cf2b6 x86/locking: Use ALT_OUTPUT_SP() for percpu_{,try_}cmpxchg{64,128}_op() 95b8f2b7d9312 drm/amdgpu: remove all KFD fences from the BO on release af706d0e279fc MIPS: Use arch specific syscall name match function 9058b48578aea drm/xe/oa: Ensure that polled read returns latest data 4d9fa2ebc01c4 net: ipv6: Init tunnel link-netns before registering dev 897c98fb32801 crypto: skcipher - Zap type in crypto_alloc_sync_skcipher 9f27b38771b05 crypto: ahash - Set default reqsize from ahash_alg 562e512f6bf99 x86/kaslr: Reduce KASLR entropy on most x86 systems 0bdaab17a2a17 net/mlx5: Change POOL_NEXT_SIZE define value and make it global d2d76fc02543a scsi: scsi_debug: First fixes for tapes b55a97d1bd408 dm: fix unconditional IO throttle caused by REQ_PREFLUSH 2c600cbe33f20 libbpf: Fix out-of-bound read 20a53c3689a20 loop: check in LO_FLAGS_DIRECT_IO in loop_default_blocksize 5b62f941eae80 scsi: mpi3mr: Update timestamp only for supervisor IOCs a68686c08b70b net/mlx5e: Add correct match to check IPSec syndromes for switchdev mode c2aa6567a6a48 media: tc358746: improve calculation of the D-PHY timing registers bb8fb041cba26 media: adv7180: Disable test-pattern control on adv7180 083383aba01f2 cpuidle: menu: Avoid discarding useful information 0d508cefcd24a vdpa/mlx5: Fix mlx5_vdpa_get_config() endianness on big-endian machines 6398dd09d50b4 vhost-scsi: Return queue full for page alloc failures during copy 7eb29d704d276 x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus() 7bbfaa24c02f4 ASoC: mediatek: mt8188: Add reference for dmic clocks 4a21b57d83c55 ASoC: mediatek: mt8188: Treat DMIC_GAINx_CUR as non-volatile 6e5935b755b4a drm/amd/display: Fix mismatch type comparison 990e4fb37bcd4 drm/amd/display: fix dcn4x init failed 54dd746ed8a30 drm/amd/display: handle max_downscale_src_width fail check 5cab1de0cea28 x86/build: Fix broken copy command in genimage.sh when making isoimage de48b82dcf583 Octeontx2-af: RPM: Register driver with PCI subsys IDs 673dde8d3c3ec bpf: Search and add kfuncs in struct_ops prologue and epilogue 06100e642f4b8 soc: ti: k3-socinfo: Do not use syscon helper to build regmap 54ef1a89e287e wifi: ath12k: Improve BSS discovery with hidden SSID in 6 GHz band e39fd41117bd9 bonding: report duplicate MAC address in all situations f872f7aaa4cac net: xgene-v2: remove incorrect ACPI_PTR annotation 459b3f7cf0dcf net: ethernet: mtk_ppe_offload: Allow QinQ, double ETH_P_8021Q only 562b4f70bf88a leds: pwm-multicolor: Add check for fwnode_property_read_u32 b8fcb1cdbfc0c drm/xe: xe_gen_wa_oob: replace program_invocation_short_name 0d8562e358176 drm/amdkfd: KFD release_work possible circular locking 1dd943dfb56f8 pinctrl: sophgo: avoid to modify untouched bit when setting cv1800 pinconf baaf3084c2cb9 selftests/net: have `gro.sh -t` return a correct exit code 11e721443c564 net/mlx5: Avoid report two health errors on same syndrome 1f512005f497d drm/xe/pf: Create a link between PF and VF devices df888ad55f8f8 drm/xe/vf: Retry sending MMIO request to GUC on timeout error 3a3efeef64364 firmware: arm_ffa: Set dma_mask for ffa devices 12153e3948c59 PCI: brcmstb: Add a softdep to MIP MSI-X driver 3ffaa2e999380 PCI: brcmstb: Expand inbound window size up to 64GB 7add9c10ca284 wifi: ath12k: Report proper tx completion status to mac80211 1c2c538bbd602 soc: apple: rtkit: Implement OSLog buffers properly 92c6687ba951f soc: apple: rtkit: Use high prio work queue e359d62886cb1 perf: arm_pmuv3: Call kvm_vcpu_pmu_resync_el0() before enabling counters b38fbf98645be fpga: altera-cvp: Increase credit timeout 7857d8977e986 drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence 89800836bf32f ARM: at91: pm: fix at91_suspend_finish for ZQ calibration cd62e9d42fe76 hwmon: (gpio-fan) Add missing mutex locks e7e30a4a37d1e x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 0d232fa3b0769 clk: imx8mp: inform CCF of maximum frequency of clocks 2d6231d5ce9b6 media: uvcvideo: Handle uvc menu translation inside uvc_get_le_value b98aad5e5ebf9 media: uvcvideo: Add sanity check to uvc_ioctl_xu_ctrl_map 82209faa87f4a ublk: complete command synchronously on error 564f03a7970c2 block: mark bounce buffering as incompatible with integrity f7226dedac039 drm/rockchip: vop2: Add uv swap for cluster window f33b310eac36a ipv4: fib: Move fib_valid_key_len() to rtm_to_fib_config(). 3de322a98b365 scsi: logging: Fix scsi_logging_level bounds 500d22dbd9662 ALSA: hda/realtek: Enable PC beep passthrough for HP EliteBook 855 G7 592ba27580364 perf/hw_breakpoint: Return EOPNOTSUPP for unsupported breakpoint type f9d15ef2e069d net: pktgen: fix mpls maximum labels list parsing 8d7e13c31c526 media: imx335: Set vblank immediately 4176d6f2a67b8 iommufd: Disallow allocating nested parent domain with fault ID af73c8fd7388d ublk: enforce ublks_max only for unprivileged devices c4f025a58eef1 dpll: Add an assertion to check freq_supported_num ebaed867bfd1e net: phy: nxp-c45-tja11xx: add match_phy_device to TJA1103/TJA1104 94df9fd015ace net: ethernet: ti: cpsw_new: populate netdev of_node 1a4a834f2af5b rcu: Fix get_state_synchronize_rcu_full() GP-start detection 5aba8ac434d8b pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned" 4731d5328f507 media: cx231xx: set device_caps for 417 f29c876d72d71 perf/core: Clean up perf_try_init_event() cc714c89ef5a9 drm/amd/display: Request HW cursor on DCN3.2 with SubVP 1f2b3ea00717f drm/amd/display: Fix p-state type when p-state is unsupported e015cef8b78f6 drm/amd/display: Fix DMUB reset sequence for DCN401 682c4226f317e drm/amd/display: Skip checking FRL_MODE bit for PCON BW determination 5bf0fd2bd5efb drm/amd/display: Ensure DMCUB idle before reset on DCN31/DCN35 a23f3910123b5 drm/amdgpu: Do not program AGP BAR regs under SRIOV in gfxhub_v1_0.c 69bb5b3ae3480 remoteproc: qcom_wcnss: Handle platforms with only single power domain 95080412e9304 blk-throttle: don't take carryover for prioritized processing of metadata c4525b513de39 net: phylink: use pl->link_interface in phylink_expects_phy() 93f581d7634ff drm/gem: Test for imported GEM buffers with helper cd918ec24168f orangefs: Do not truncate file size 6ad0673ab24f0 soc: mediatek: mtk-mutex: Add DPI1 SOF/EOF to MT8188 mutex tables cc80a5cc52093 dm cache: prevent BUG_ON by blocking retries on failed device resumes 1c171908807cb usb: xhci: set page size to the xHCI-supported size 5520fed18df86 media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe() 25056d1fe57eb ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114 8fc16414c3ef7 soc: samsung: include linux/array_size.h where needed 4943c0bae1248 drm/xe: Retry BO allocation 623669ae7a820 drm/xe: Nuke VM's mapping upon close a3642d2d73a97 ieee802154: ca8210: Use proper setters and getters for bitwise types 3afa1610e5a4e rtc: ds1307: stop disabling alarms on probe 73d01bcbf2aad tcp: bring back NUMA dispersion in inet_ehash_locks_alloc() a06861298554b ALSA: seq: Improve data consistency at polling 515a21a5e19ab powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7 09193145d1180 arm64: tegra: Resize aperture for the IGX PCIe C5 slot 2f0044e20fab1 arm64: tegra: p2597: Fix gpio for vdd-1v8-dis regulator ecaa856227ae4 drm/amdgpu: Fix missing drain retry fault the last entry c700730d816d6 drm/amdkfd: Set per-process flags only once cik/vi e1901e8e6bbc4 drm/amdkfd: Set per-process flags only once for gfx9/10/11/12 6a1706dfe0569 crypto: mxs-dcp - Only set OTP_KEY bit for OTP key 7caad075acb63 crypto: lzo - Fix compression buffer overrun f615e8d2dec67 misc: pci_endpoint_test: Give disabled BARs a distinct error code fe2329eff5bee PCI: endpoint: pci-epf-test: Fix double free that causes kernel to oops 1e0398a349e85 watchdog: aspeed: Update bootstatus handling d95fdee2253e6 cpufreq: tegra186: Share policy per cluster 11be3d3f956ba iommu/amd/pgtbl_v2: Improve error handling 9032252905664 coresight-etb10: change etb_drvdata spinlock's type to raw_spinlock_t 75ae2a3553611 badblocks: Fix a nonsense WARN_ON() which checks whether a u64 variable < 0 7bd6061b0a44b ASoC: qcom: sm8250: explicitly set format in sm8250_be_hw_params_fixup() 84c069dc5fc89 auxdisplay: charlcd: Partially revert "Move hwidth and bwidth to struct hd44780_common" 53ce754286180 gfs2: Check for empty queue in run_queue ff11cd673e477 drm/amd/display: Fix incorrect DPCD configs while Replay/PSR switch ed7eda66b20cb drm/amd/display: not abort link train when bw is low 83e4f1de0802b drm/amd/display: calculate the remain segments for all pipes 65e51bc2803bb drm/amd/display: remove minimum Dispclk and apply oem panel timing. c1502fc84d1c6 ipv6: save dontfrag in cork faba68a86ab79 wifi: cfg80211: allow IR in 20 MHz configurations 22d8cc7f5d5a9 wifi: mac80211_hwsim: Fix MLD address translation 07709d31829fd wifi: mac80211: fix warning on disconnect during failed ML reconf a791a6bf02c49 wifi: iwlwifi: fix the ECKV UEFI variable name 7ce37a3ca0907 wifi: iwlwifi: mark Br device not integrated 181e8b56b74ad wifi: iwlwifi: fix debug actions order 1c55feb63827f wifi: iwlwifi: w/a FW SMPS mode selection 0446d34a853d9 wifi: iwlwifi: don't warn when if there is a FW error 101a3b9920a79 printk: Check CON_SUSPEND when unblanking a console 063ad8885c7c6 iommu: Keep dev->iommu state consistent a21f1607d0b3c hwmon: (dell-smm) Increment the number of fans aef1b639ae2a8 wifi: iwlwifi: mvm: fix setting the TK when associated 3a75fe58a164a usb: xhci: Don't change the status of stalled TDs on failed Stop EP 28306c58daf81 mmc: sdhci: Disable SD card clock before changing parameters 38828e0dc771c mmc: dw_mmc: add exynos7870 DW MMC support 8ad58a7eba6db arm64/mm: Check PUD_TYPE_TABLE in pud_bad() 6215143ad372d arm64/mm: Check pmd_table() in pmd_trans_huge() 4f89f257f32da phy: rockchip: usbdp: Only verify link rates/lanes/voltage when the corresponding set flags are set 236a87e9d2110 PNP: Expand length of fixup id string 21153e0974fcc netfilter: conntrack: Bound nf_conntrack sysctl writes 4210174827586 wifi: rtw89: set force HE TB mode when connecting to 11ax AP 3fb9ee05ec15f timer_list: Don't use %pK through printk() 6e816a97fa840 net: hsr: Fix PRP duplicate detection f933879c5b6a6 net: stmmac: dwmac-rk: Validate GRF and peripheral GRF during probe ae22452d15c89 posix-timers: Ensure that timer initialization is fully visible d0dc233fe2241 posix-timers: Add cond_resched() to posix_timer_add() search loop 135dde13b96d5 RDMA/uverbs: Propagate errors from rdma_lookup_get_uobject() 785ac69911332 ext4: do not convert the unwritten extents if data writeback fails 2f5f326214321 ext4: reject the 'data_err=abort' option in nojournal mode 3039f0c9c7554 clk: qcom: lpassaudiocc-sc7280: Add support for LPASS resets for QCM6490 3673382803c51 ASoC: sun4i-codec: support hp-det-gpios property de3c09de746f7 drm/amdgpu: Update SRIOV video codec caps 858425dc2df3e drm/amdgpu/gfx11: don't read registers in mqd init 73d437ae63ce6 drm/amdgpu/gfx12: don't read registers in mqd init 580750a317d7b mfd: tps65219: Remove TPS65219_REG_TI_DEV_ID check 27b19f29c9a06 pinctrl-tegra: Restore SFSEL bit when freeing pins f5363ffdabc2a xen: Add support for XenServer 6.1 platform device 8ef935698f3fd net/smc: use the correct ndev to find pnetid by pnetid table 174dedce648aa dm: restrict dm device size to 2^63-512 bytes ee87fc3a1271f crypto: octeontx2 - suppress auth failure screaming due to negative tests 572ed3fb99c4e kconfig: do not clear SYMBOL_VALID when reading include/config/auto.conf 61d7c8a753445 kbuild: fix argument parsing in scripts/config 555c0b713ca83 bpf: Allow pre-ordering for bpf cgroup progs 6c303960b1443 ASoC: mediatek: mt6359: Add stub for mt6359_accdet_enable_jack_detect e8358aa00ea7b ASoC: pcm6240: Drop bogus code handling IRQ as GPIO 0076b0423b2cd spi: spi-mux: Fix coverity issue, unchecked return value b35ccfdc8573e erofs: initialize decompression early c8c643809f4a1 thunderbolt: Do not add non-active NVM if NVM upgrade is disabled for retimer 2585e6cbd96eb objtool: Fix error handling inconsistencies in check() a0d34b9be2bee rtc: rv3032: fix EERD location dab35f4921f85 tcp: reorganize tcp_in_ack_event() and tcp_count_delivered() 50452704ecbad jbd2: do not try to recover wiped journal e2520cc19b758 PCI: dwc: Use resource start as ioremap() input in dw_pcie_pme_turn_off() e658f2d94a74c bpf: Return prog btf_id without capable check 66e8f1d64b1b0 vfio/pci: Handle INTx IRQ_NOTCONNECTED 0268f485aa69f scsi: st: ERASE does not change tape location c6d366f8d24ff scsi: st: Tighten the page format heuristics with MODE SELECT 853a4e7439ef1 hypfs_create_cpu_files(): add missing check for hypfs_mkdir() failure 94c3cbc69abbb ext4: reorder capability check last a55ebe30f17a0 riscv: Call secondary mmu notifier when flushing the tlb 5cdd304662d54 bnxt_en: Query FW parameters when the CAPS_CHANGE bit is set 34253084291cb wifi: mwifiex: Fix HT40 bandwidth issue. 728945c962695 um: Update min_low_pfn to match changes in uml_reserved d6d2f664cbf3b um: Store full CSGSFS and SS register from mcontext 7790a9449cf43 clocksource/drivers/timer-riscv: Stop stimecmp when cpu hotplug 39ff1903246aa dlm: make tcp still work in multi-link env f3ea633a111e0 s390/tlb: Use mm_has_pgste() instead of mm_alloc_pgste() 1ea4653cff35c i3c: master: svc: Fix missing STOP for master request 94206e0d72f7a drm/amdgpu: adjust drm_firmware_drivers_only() handling 85bda883a634c drm/amd/display: Guard against setting dispclk low for dcn31x ca8fcb8bcef33 drm/amdgpu: release xcp_mgr on exit a5a507fa5f223 blk-cgroup: improve policy registration error handling c60f8684a8118 btrfs: send: return -ENAMETOOLONG when attempting a path that is too long c4845a09a1edd btrfs: get zone unusable bytes while holding lock at btrfs_reclaim_bgs_work() 0058c61d47ee1 btrfs: fix non-empty delayed iputs list on unmount due to async workers 8629f9d9a92e8 btrfs: run btrfs_error_commit_super() early a4840945f514c btrfs: avoid linker error in btrfs_find_create_tree_block() 1144874b41dcd btrfs: make btrfs_discard_workfn() block_group ref explicit 477a412a2f6cc i2c: pxa: fix call balance of i2c->clk handling routines 3b9cf1c0fafa2 i2c: qup: Vote for interconnect bandwidth to DRAM c6f2694c580c2 x86/mm: Check return value from memblock_phys_alloc_range() d0f9875257440 x86/microcode: Update the Intel processor flag scan check 8973fb71c9269 x86/smpboot: Fix INIT delay assignment for extended Intel Families 44e041675383b x86/stackprotector/64: Only export __ref_stack_chk_guard on CONFIG_SMP 63b7dade892b6 x86/headers: Replace __ASSEMBLY__ with __ASSEMBLER__ in UAPI headers ac3af695c4b00 wifi: mt76: mt7925: fix fails to enter low power mode in suspend state 8b526e4d944ae wifi: mt76: mt7925: load the appropriate CLC data based on hardware type c9c64da88e38d wifi: mt76: mt7996: revise TXS size 1d58321192052 wifi: mt76: mt7996: fix SER reset trigger on WED reset fa6c05122fb82 wifi: mt76: only mark tx-status-failed frames as ACKed on mt76x0/2 8f82cf305efd6 cgroup/rstat: avoid disabling irqs for O(num_cpu) dca76ee1f02ae drm/amdgpu: Skip pcie_replay_count sysfs creation for VF 67bb2175095eb mmc: host: Wait for Vdd to settle on card power off 4005036642a27 staging: vchiq_arm: Create keep-alive thread during probe 123bcd8f42b7e pidfs: improve multi-threaded exec and premature thread-group leader exit polling 1d1e1efad1cf0 libnvdimm/labels: Fix divide error in nd_label_data_init() 37ac2434aae16 ext4: on a remount, only log the ro or r/w state when it has changed 3e10592b477ec xen/pci: Do not register devices with segments >= 0x10000 2a8bedeb963f0 PCI: vmd: Disable MSI remapping bypass under Xen 8b80fd3f76f2a drm/amdkfd: set precise mem ops caps to disabled for gfx 11 and 12 98e38fe7d3557 drm/amdgpu/discovery: check ip_discovery fw file available 1630224189cc4 pNFS/flexfiles: Report ENETDOWN as a connection error a1596965a7c82 tools/build: Don't pass test log files to linker 2780aa8394415 r8169: disable RTL8126 ZRX-DC timeout e63b634806a1d PCI: dwc: ep: Ensure proper iteration over outbound map windows c0c59a1f77665 objtool: Properly disable uaccess validation ac30595154da0 lockdep: Fix wait context check on softirq for PREEMPT_RT 44b79041c44ae dql: Fix dql->limit value when reset. f48ee562c095e Bluetooth: Disable SCO support if READ_VOICE_SETTING is unsupported/broken 7ec409ee15ac1 Bluetooth: btmtksdio: Prevent enabling interrupts after IRQ handler removal 7cfde2a482800 thermal/drivers/qoriq: Power down TMU on system suspend c347928320080 thermal/drivers/mediatek/lvts: Start sensor interrupts disabled 7b32d4e62c871 net: tn40xx: create swnode for mdio and aqr105 phy and add to mdiobus b07ba838aded8 net: tn40xx: add pci-id of the aqr105-based Tehuti TN4010 cards 9e542640c2e59 mctp: Fix incorrect tx flow invalidation condition in mctp-i2c c0d63ee0dd063 ASoC: codecs: wsa883x: Correct VI sense channel mask 780699001b8e2 ASoC: codecs: wsa884x: Correct VI sense channel mask ace57bd1fb49d spi-rockchip: Fix register out of bounds access dac9e6af5328f SUNRPC: rpcbind should never reset the port to the value '0' 984d8a392f6b3 SUNRPC: rpc_clnt_set_transport() must not change the autobind setting 71e07bb1556c7 NFSv4: Treat ENETUNREACH errors as fatal for state recovery 1e317f5781160 cifs: Fix establishing NetBIOS session for SMB2+ connection 51d44dba94e79 cifs: add validation check for the fields in smb_aces 15c961d7a9e5f cifs: Set default Netbios RFC1001 server name to hostname in UNC ff968e486e420 fbdev: core: tileblit: Implement missing margin clearing for tileblit 8c912c0a6860c fbcon: Use correct erase colour for clearing in fbcon 230abe5d3f68b fbdev: fsl-diu-fb: add missing device_remove_file() 6427b5c0f0aae riscv: Allow NOMMU kernels to access all of RAM 15787ab82a461 mailbox: use error ret code of of_parse_phandle_with_args() 2c80f975e94d5 mailbox: pcc: Use acpi_os_ioremap() instead of ioremap() 2d21895e77c64 tpm: Convert warn to dbg in tpm2_start_auth_session() 2eb8f4701961b ACPI: PNP: Add Intel OC Watchdog IDs to non-PNP device list 4f427ca9edf89 tracing: Mark binary printing functions with __printf() attribute b4c11dd41c40c iommufd: Extend IOMMU_GET_HW_INFO to report PASID capability e506751b7dd98 arm64: Add support for HIP09 Spectre-BHB mitigation 1a9b696a003ae SUNRPC: Don't allow waiting for exiting tasks ac83bf58f6876 NFS: Don't allow waiting for exiting tasks 46a47dc10fa78 NFSv4: Check for delegation validity in nfs_start_delegation_return_locked() 01677e7ee12f2 io_uring/msg: initialise msg request opcode bab0bd138910e exfat: call bh_read in get_block only when necessary d40ca27602eab fuse: Return EPERM rather than ENOSYS from link() c9a508b6bbd2f smb: client: Store original IO parameters and prevent zero IO sizes 150f38eddefc4 cifs: Fix negotiate retry functionality 0705b6d5bc328 cifs: Fix querying and creating MF symlinks over SMB1 6ebb9d54eccc8 cifs: Add fallback for SMB2 CREATE without FILE_READ_ATTRIBUTES 100b452e0eeda s390/vfio-ap: Fix no AP queue sharing allowed message written to kernel log c42f740a07eea x86/fred: Fix system hang during S4 resume with FRED enabled 192b02f8c7ba8 kconfig: merge_config: use an empty file as initfile dac9d6ad5eaf7 samples/bpf: Fix compilation failure for samples/bpf on LoongArch Fedora 8014d3e56ec0c bpf: fix possible endless loop in BPF map iteration 218c838d0356a io_uring: don't duplicate flushing in io_req_post_cqe 64f505b08e0cf block: fix race between set_blocksize and read paths e9f646f089bc3 selftests/bpf: Mitigate sockmap_ktls disconnect_after_delete failure cd39fae34f094 drm/amdgpu: Allow P2P access through XGMI 36cb568f559ad drm/amd/display: Enable urgent latency adjustment on DCN35 9ece099e951a5 fs/ext4: use sleeping version of sb_find_get_block() f1c5aa614b5c2 fs/jbd2: use sleeping version of __find_get_block() aafc270531431 fs/ocfs2: use sleeping version of __find_get_block() a49a4a87cea36 fs/buffer: use sleeping version of __find_get_block() e138fc2316c32 fs/buffer: introduce sleeping flavors for pagecache lookups 4f5553a08fb74 fs/buffer: split locking for pagecache lookups 836917e7a65cd ima: process_measurement() needlessly takes inode_lock() on MAY_READ e22034cbee52b dma-mapping: Fix warning reported for missing prototype 7f7f70c316976 net: enetc: refactor bulk flipping of RX buffers to separate function 523c08f630a3d scsi: mpi3mr: Add level check to control event logging bd8c9404e44ad vhost-scsi: protect vq->log_used with vq->mutex f93675793bdcd vhost_task: fix vhost_task_create() documentation 97edaa0ec64c5 cgroup: Fix compilation issue due to cgroup_mutex not being exported 3eec42a17ad4d dma-mapping: avoid potential unused data compilation warning a8dd6b7b391d9 mei: vsc: Use struct vsc_tp_packet as vsc-tp tx_buf and rx_buf type de8c0b93a63cf intel_th: avoid using deprecated page->mapping, index fields 299881317756d dma/mapping.c: dev_dbg support for dma_addressing_limited b730cb109633c virtio_ring: Fix data race by tagging event_triggered as racy for KCSAN 7aea1517fb6c9 scsi: ufs: Introduce quirk to extend PA_HIBERN8TIME for UFS devices 87389bff743c5 scsi: target: iscsi: Fix timeout on deleted connection 1603a34b80ffb nvmem: qfprom: switch to 4-byte aligned reads 410f8b72e02c6 nvmem: core: update raw_len if the bit reading is required 4327479e559c0 nvmem: core: verify cell's raw_len a4f865ecdbdd2 nvmem: core: fix bit offsets of more than one byte d6abe0f6ade98 nvmem: rockchip-otp: add rk3576 variant data 49b4e88b559cd nvmem: rockchip-otp: Move read-offset into variant-data 3fc60952271b6 cpufreq: Add SM8650 to cpufreq-dt-platdev blocklist c000fc26c431e phy: renesas: rcar-gen3-usb2: Assert PLL reset on PHY power off 918d43686271e phy: renesas: rcar-gen3-usb2: Lock around hardware registers and driver data 64cf5b896fd39 phy: renesas: rcar-gen3-usb2: Move IRQ request in probe 0abae7dc42f21 i2c: designware: Fix an error handling path in i2c_dw_pci_probe() 0d1002c60cd47 i2c: designware: Use temporary variable for struct device 4fa55c5230f4c drm/amd/display: Defer BW-optimization-blocked DRR adjustments 5f05863810cfd drm/amd/display: Correct timing_adjust_pending flag setting. 839b2350b861f drm/amd/display: Do not enable replay when vtotal update is pending. 892f054b3fa2a drm/amd/display: Configure DTBCLK_P with OPTC only for dcn401
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit fdb0a51598156f99aa91f7495d7eada92a459e97) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
]
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 1baa2ede9b759632bd97f3308752ec863dc6543e) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Thu, 29 May 2025 10:58:08 +0000 (11:58 +0100)]
linux-yocto: refresh CVE exclusions
As we upgraded the kernel, the exclusions need to be updated too.
This marks many CVEs as resolved.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e99d1e7116aef8c5458cd51c0b97b8e275ade3a9) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Thu, 29 May 2025 10:58:07 +0000 (11:58 +0100)]
linux/generate-cve-exclusions: show the name and version of the data source
Add another comment to state what the data source for the CVE data was,
specifically the basename of the repository and the "git describe" output
of HEAD.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5e66e2b79faec2285d249b16457ecc63c4042444) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Niko Mauno [Mon, 26 May 2025 09:29:27 +0000 (09:29 +0000)]
linux: cve-exclusions: Amend terminology
Replace the term 'needs backporting' with 'may need backporting' in
generate-cve-exclusions.py when the checked kernel version may or may
not be in the vulnerable version range, thus making backporting
necessary only in the former case.
In tandem we regenerate the content of cve-exclusion_6.12.inc using
https://github.com/CVEProject/cvelistV5.git repository main branch at
git hash b20d0043711588b6409ae3118bc0510ab888c316 to keep the content
in sync with the script.
Signed-off-by: Niko Mauno <niko.mauno@vaisala.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit feb80e6be16f27611a018d0ef7841cbb466c47d1) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Niko Mauno [Mon, 26 May 2025 09:29:26 +0000 (09:29 +0000)]
linux: cve-exclusions: Fix false negatives
Amend the generate-cve-exclusions.py checking logic in part of the code
responsible for iterating the "affected" defaultStatus part of the JSON
structure in order to mitigate occurrences of false negatives in the
generated output, as well as occurrences of wrong reason for negative
result in case where the reason is actually that the checked kernel
version is in backport fix scope.
In tandem we regenerate the content of cve-exclusion_6.12.inc using
https://github.com/CVEProject/cvelistV5.git repository main branch at
git hash b20d0043711588b6409ae3118bc0510ab888c316 to keep the content
in sync with the script.
Signed-off-by: Niko Mauno <niko.mauno@vaisala.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b1a5939535d67b9c0e6d8c2729cff9749a0ebaae) Signed-off-by: Steve Sakoman <steve@sakoman.com>
With ~/cvelistV5/ containing clone from
https://github.com/CVEProject/cvelistV5.git repository main branch at
git hash b20d0043711588b6409ae3118bc0510ab888c316.
Signed-off-by: Niko Mauno <niko.mauno@vaisala.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0df05f0bf82fdffb14c4243d07ace22b2d7e4c79) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Randy MacLeod [Thu, 15 May 2025 19:05:23 +0000 (15:05 -0400)]
linux: add CVE_STATUS for a chrome* bug
This is not a linux-yocto CVE yet it shows up in the reports as:
linux-yocto-custom CVE-2023-3079 0.0 8.8 Unpatched https://nvd.nist.gov/vuln/detail/CVE-2023-3079
For reference, the CPE says:
Affects cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
So affects all Linux systems,
Running on/with cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
[ YOCTO #15780 ]
Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
(cherry picked from commit 22ef4d2d116afb9d603a05fb107dd9da0e74558b) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sun, 27 Apr 2025 09:43:02 +0000 (11:43 +0200)]
linux/cve-exclusion: do not shift first_affected
Stop shifting first_affected if backport is indicated. This does not
have effect on generated list, but makes the logic cleaner as it will
not shift it to "first affected on our branch" and also make it behave
like in defaultStatus==affected case.
Cc: daniel.turull@ericsson.com Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit dc1ecb69389dd79354084757ba6b9af0781afcc0) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sun, 27 Apr 2025 09:43:01 +0000 (11:43 +0200)]
linux/cve-exclusion: update exclusions after script fixes
This will shift fixed version of many CVEs, it does not change status of
any CVE.
Note that the current format of cvelistV5 does not allow us to determine
real value of "fixed_in" without also checking the hashes, but the
result are still fine.
The reason is that many entries are missing original_commit_for_fix
field and thus we see the final "fixed_in" version to be set to backport
to previous branch (e.g. 6.12.23 instead of 6.13).
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 1697404589e2d3a625f9da2e8906e47af668c1c3) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Current code takes the first version found as "fixed-version".
That is not correct as it is almost always only the oldest backport.
Fix it by unconditionally shift the assigmnet of variable "fixed" so
that we take last instead of first version.
Cc: daniel.turull@ericsson.com Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 68f8e58a249c8adef18e63f0841e8bfea16f354e) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sun, 27 Apr 2025 09:42:59 +0000 (11:42 +0200)]
linux/cve-exclusion: update with latest cvelistV5
This is preparation for fix in the script so that next update shows only
entries updated by the script change.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 583e9f15c01555863ae467c7f91729ce85aae194) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Daniel Turull [Sat, 26 Apr 2025 16:19:29 +0000 (18:19 +0200)]
cve-exclusions: correct cve status for 5 entries
In commit 8a7af09feb the CVE_STATUS was copy from the old data
for 6.6 kernel, which had backport information.
Correcting status to when the fix was introduced and adding
references to the fixes.
Fixes: 8a7af09febc28477094de0999ab6321d910811b2 Reported-by: Peter Marko <Peter.Marko@siemens.com> Signed-off-by: Daniel Turull <daniel.turull@ericsson.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit fc3e32bc4cf79ddce0eb9fa409656de4dc0e00ea) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Daniel Turull [Fri, 11 Apr 2025 06:40:15 +0000 (08:40 +0200)]
linux/cve-exclusion: Execute the script after changing to the new data source
Execute new script generate-cve-exclusions.py
./generate-cve-exclusions.py ~/cvelistV5/ 6.12.19 > cve-exclusion_6.12.inc
After using the database from CVEproject, some old
CVEs did not have correct metadata, therefore moving missing ones
from old cve-exclusions_6.12.inc into cve-exclusion.inc
Comparing output from cve_check before and after, two CVEs are removed:
CVE-2023-52904 and CVE-2024-38381
Signed-off-by: Daniel Turull <daniel.turull@ericsson.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 8a7af09febc28477094de0999ab6321d910811b2) Signed-off-by: Steve Sakoman <steve@sakoman.com>
There are multiple problems with the sstate creation tests. They currently both execute
twice, once to check one set of files, then another. We can do this together in one
test which makes the code easier to follow.
The common test function also has parameters which were always the same value, so
those can be simplified.
We can use the umask context manager from bb.utils to simplfy the umask code.
The badperms test was actually broken, it was detecting bad permissions, then
ignoring them. This patch fixes that regression too and allows the check to
operate (relying on a separate fix to sstate umask handling).
The result should be an easier to understand couple of test cases which should
also function correctly and be more reliable.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5b9263040013199c5cb480125d5ca349f5d6dc55) Signed-off-by: Rasmus Villemoes <ravi@prevas.dk> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Fri, 27 Jun 2025 07:41:32 +0000 (09:41 +0200)]
oeqa/sstatetests: Fix NATIVELSBSTRING handling
The NATIVELSBSTRING variable changes value once a BuildStarted event occurs in a build
directory. This meant running some of the tests directly in a fresh build directory
would fail but they'd pass when run as a group of tests. This is clearly suboptimal.
Move the NATIVELSBSTRING handling to a location where the value is consistent
and a comment about the interesting behaviour of the variable so it hopefully doesn't
catch out others in future.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e1c46fdb44fed18909d9ff4b43b4e445c5a22d33) Signed-off-by: Rasmus Villemoes <ravi@prevas.dk> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Rasmus Villemoes [Fri, 27 Jun 2025 07:41:31 +0000 (09:41 +0200)]
sstate: apply proper umask when fetching from SSTATE_MIRROR
Currently, files and directories created under ${SSTATE_DIR} when
fetching from an sstate mirror are not created with group write,
unlike when the sstate artifacts are generated locally. That's
inconsistent, and problematic when the local sstate dir is shared
among multiple users.
Wrap the fetching in a bb.utils.umask() context manager, and for simplicity
move the mkdir of SSTATE_DIR inside that.
Signed-off-by: Rasmus Villemoes <ravi@prevas.dk> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a6038553aaef3b88b834a09018c524c4fa41e625) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Robert Yang [Tue, 24 Jun 2025 07:07:21 +0000 (00:07 -0700)]
package_rpm.bbclass: Remove empty build directory
Fixed:
$ bitbake acl
$ ls tmp/work/core2-64-poky-linux/acl/2.3.2/build/acl-2.3.2-build/
This empty directory is created by rpmbuild, just remove it like others above.
Note, master branch doesn't have this problem after upgrade to rpm 4.20.1, but
it's not easy to find which patch(es) fixed the problem, and the issues haven't
been fixed completely, there is still an empty SRPMS directory, so just remove
the build directory as others above.
If we don't fix this, there might be warnings when a recipe uses:
libnsl2 and libtirpc were build dependencies for the nis module.
The nis module was deprecated in Python 3.11 and removed in Python 3.13
Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Praveen Kumar [Fri, 27 Jun 2025 10:20:54 +0000 (15:50 +0530)]
python3-setuptools: fix CVE-2025-47273
setuptools is a package that allows users to download, build, install,
upgrade, and uninstall Python packages. A path traversal vulnerability
in `PackageIndex` is present in setuptools prior to version 78.1.1. An
attacker would be allowed to write files to arbitrary locations on the
filesystem with the permissions of the process running the Python code,
which could escalate to remote code execution depending on the context.
Version 78.1.1 fixes the issue.
Yogita Urade [Thu, 26 Jun 2025 11:54:59 +0000 (17:24 +0530)]
python3-urllib3: fix CVE-2025-50182
urllib3 is a user-friendly HTTP client library for Python. Prior
to 2.5.0, urllib3 does not control redirects in browsers and
Node.js. urllib3 supports being used in a Pyodide runtime utilizing
the JavaScript Fetch API or falling back on XMLHttpRequest. This
means Python libraries can be used to make HTTP requests from a
browser or Node.js. Additionally, urllib3 provides a mechanism to
control redirects, but the retries and redirect parameters are
ignored with Pyodide; the runtime itself determines redirect
behavior. This issue has been patched in version 2.5.0.
Yogita Urade [Thu, 26 Jun 2025 11:54:58 +0000 (17:24 +0530)]
python3-urllib3: fix CVE-2025-50181
urllib3 is a user-friendly HTTP client library for Python. Prior to
2.5.0, it is possible to disable redirects for all requests by
instantiating a PoolManager and specifying retries in a way that
disable redirects. By default, requests and botocore users are not
affected. An application attempting to mitigate SSRF or open redirect
vulnerabilities by disabling redirects at the PoolManager level will
remain vulnerable. This issue has been patched in version 2.5.0.
Moritz Haase [Tue, 17 Jun 2025 09:24:56 +0000 (11:24 +0200)]
cmake: Correctly handle cost data of tests with arbitrary chars in name
ctest automatically optimizes the order of (parallel) test execution based on
historic test case runtime via the COST property (see [0]), which can have a
significant impact on overall test run times. Sadly this feature is broken in
CMake < 4.0.0 for test cases that have spaces in their name (see [1]).
This commit backports the upstream fix. As repeated test runs are expected to
mainly take place inside the SDK, the patch is only applied to 'nativesdk'
builds.
Reported-By: John Drouhard <john@drouhard.dev> Signed-off-by: Moritz Haase <Moritz.Haase@bmw.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit dcbaf42dd74cc0bda7254856589613718ed3f057) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Praveen Kumar [Fri, 20 Jun 2025 06:05:11 +0000 (11:35 +0530)]
bind: upgrade 9.20.8 -> 9.20.9
Overview of changes in bind 9.20.9
==================================
Security Fixes:
1. Prevent an assertion failure when processing TSIG algorithm.
2. DNS messages that included a Transaction Signature (TSIG) containing
an invalid value in the algorithm field caused named to crash with an
assertion failure. This has been fixed. (CVE-2025-40775) [GL #5300]
For additional feature changes and bug fixes, please see:
https://downloads.isc.org/isc/bind9/9.20.9/doc/arm/html/notes.html#notes-for-bind-9-20-9
Peter Marko [Sat, 14 Jun 2025 07:47:33 +0000 (09:47 +0200)]
testimage: get real os-release file
/etc/os-release is a symlink to /usr/lib.
Symlink is retrieved as a dead link which points to nowhere if also the
original file is not accompanying it.
Fetch the real file in addition to this link.
Alternative could be to use "tar -h" (supported also by busybox tar),
however that could lose some important information if links are relevant
for failure analysis.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
GCC 14.3 is a bug-fix release from the GCC 14 branch
containing important fixes for regressions and serious bugs in
GCC 14.2 with more than 211 bugs fixed since the previous release.
Peter Marko [Tue, 10 Jun 2025 22:09:38 +0000 (00:09 +0200)]
go: upgrade 1.24.3 -> 1.24.4
Upgrade to latest 1.24.x release [1]:
$ git --no-pager log --oneline go1.24.3..go1.24.4 6796ebb2cb [release-branch.go1.24] go1.24.4 85897ca220 [release-branch.go1.24] net/http: strip sensitive proxy headers from redirect requests 9f9cf28f8f [release-branch.go1.24] os: don't follow symlinks on Windows when O_CREATE|O_EXCL a31c931adf [release-branch.go1.24] cmd/link: allow linkname reference to a TEXT symbol regardless of size 03811ab1b3 [release-branch.go1.24] crypto/x509: decouple key usage and policy validation 04a9473847 [release-branch.go1.24] lib/fips140: set inprocess.txt to v1.0.0 db8f1dc948 [release-branch.go1.24] hash/maphash: hash channels in purego version of maphash.Comparable 664cf832ec [release-branch.go1.24] runtime/debug: document DefaultGODEBUG as a BuildSetting 431f75a0b9 [release-branch.go1.24] os: fix Root.Mkdir permission bits on OpenBSD
Fixes CVE-2025-4673, CVE-2025-0913 and CVE-2025-22874 [2].
Peter Marko [Sun, 8 Jun 2025 21:54:36 +0000 (23:54 +0200)]
python3: upgrade 3.13.3 -> 3.13.4
Refresh patches.
* https://www.python.org/downloads/release/python-3134/
Security content in this release
* gh-135034: [CVE 2024-12718] [CVE 2025-4138] [CVE 2025-4330]
[CVE 2025-4435] [CVE 2025-4517] Fixes multiple issues that allowed
tarfile extraction filters (filter="data" and filter="tar") to be
bypassed using crafted symlinks and hard links.
* gh-133767: Fix use-after-free in the “unicode-escape” decoder with a
non-“strict” error handler.
* gh-128840: Short-circuit the processing of long IPv6 addresses early
in ipaddress to prevent excessive memory consumption and a minor
denial-of-service.
gh-133767 got meawhile CVE-2025-4516 assigned.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Modify 0001-Makefile.pre-use-qemu-wrapper-when-gathering-profile.patch
to remove 'test_types' from the pgo-wrapper call, since that fails now
under qemu.
Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Sun, 8 Jun 2025 21:54:34 +0000 (23:54 +0200)]
python3: backport the full fix for importlib scanning invalid distributions
Even with our fixes in deterministic_imports.patch the
importlib.metadata package scan was still returning Distribution objects
for empty directories. This interacts badly with rebuilds when recipes
are changing as when a recipe is removed from the sysroot directories
are not removed[1].
In particular this breaks python3-meson-python-native rebuilds when
Meson upgrades from 1.7 to 1.8: the site-packages directory has an empty
meson-1.7.dist-info/ and populated meson-1.8.dist-info/. Whilst it's
deterministic to return the empty 1.7 first, this breaks pypa/build as
it looks through the distributions in order.
We had discussed this with upstream previously and there's a more
comprehensive fix upstream (actually in importlib_metadata, not cpython)
which ensures that valid distribution objects are listed first. So we
can drop our patch and replace it with a backport to fix these rebuilds.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
There was a regression introduced by the change to use
systemd-systemctl-native rather than a python fake implementation,
which caused template units to not be properly enabled when set in
the SYSTEMD_SERVICE variable. Through investigation, it seems that
the best way to re-enable template instances is to handle them
explicitly in the systemd.bbclass and enable them with `preset`, like
most units are handled[1,2].
Per the systemd.preset manpage, the format for template units is
different than for regular units[3]. We need to coalesce all the
template instances onto a single line and emit them as an additional
space-deliminated argument.
Ran this against openbmc's phosphor-ipmi-net recipe and generated
the following preset file:
```
$ cat packages-split/phosphor-ipmi-net/usr/lib/systemd/system-preset/98-phosphor-ipmi-net.preset
enable phosphor-ipmi-net@.service eth0
enable phosphor-ipmi-net@.socket eth0
```
Signed-off-by: Patrick Williams <patrick@stwcx.xyz> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
PR32858 ld segfault on fuzzed object
We missed one place where it is necessary to check for empty groups.
Backport a patch from upstream to fix CVE-2025-5244
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=d1458933830456e54223d9fc61f0d9b3a19256f5]
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Changqing Li [Fri, 30 May 2025 07:47:52 +0000 (15:47 +0800)]
libsoup: upgrade 3.6.4 -> 3.6.5
Changes in libsoup from 3.6.4 to 3.6.5:
* session: Strip authentication credentials on cross-origin redirects [Patrick Griffis]
* build: Use pkg-config instead of krb5-config for the gssapi dependency [Patrick Griffis]
* http1: When using chunked encoding report an error in case of unexpected stream end [Andrzej Surdej]
* http2: When a message has no content still respect its Content-Type [Patrick Griffis]
* http2: Revert manual window size management temporarily, as it could stall [Patrick Griffis]
* sniffer: Fix potential overflows [Patrick Griffis]
* hsts: Fix minor leak [Patrick Griffis]
* headers: Fix a few parsing edge cases that could be an out of bound read [Patrick Griffis]
* connection: Avoid ever calling disconnect twice [Patrick Griffis]
* auth-digest: Fix handling when a nonce isn't present [Patrick Griffis]
* cookies: Limit max size of max-age, path, and domain attributes to 1024 bytes [Patrick Griffis]
* cookies: Limit max size of name and value to 4096 bytes [Patrick Griffis]
* docs: Remove references to old libsoup domain [Simon McVittie]
projects / thirdparty / openembedded / openembedded-core-contrib.git / log
