Wang Mingyu [Mon, 17 Nov 2025 00:42:28 +0000 (08:42 +0800)]
libdnf: upgrade 0.74.0 -> 0.75.0
optional-check.patch
removed since it's included in 0.75.0
Add patches to fix compilation error with musl:
0001-dnf-repo-Define-FNM_EXTMATCH-if-not-already-like-und.patch
0001-utils-utils.cpp-fix-compilation-with-musl.patch
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Enrico Jörns [Mon, 24 Nov 2025 22:49:26 +0000 (23:49 +0100)]
barebox: upgrade 2025.09.0 -> 2025.11.0
Changes in 2025.11.0
--------------------
* New boards supported: i.MX93 FRDM, Enclustra Mercury+ SA2.
* Stricter validation of network data in NFS client code.
* Enhance 'parted' command: allows creating partitions up to the end of the
device.
* Various fixes and improvements.
* Added support for device mapper and dm-verity.
Prepares for secure boot without the need for FIT images.
* Added security policy support.
Kconfig-level decision of operations allowed/forbidden in a specific
security mode.
* New boards supported: Samsung Galaxy S8, Samsung Galaxy S20 5G, Radxa
Rock-5T and Protonic PRT8ML.
* Various fixes and improvements.
Changelog:
- Fix issue with handling display of battery charge level.
- Fix issue with BASS permissions not requiring encryption.
- Fix issue with handling abort for OBEX SRM operation.
- Fix issue with handling device privacy.
- Add support for HFP call answer support.
- Add support for HFP simple 3-way call support.
Full changelog:
https://github.com/bluez/bluez/compare/5.84...5.85
----
Other notes:
- A new testing tool is added called 6lowpan-tester
- A patch is removed since it is included in the 5.85 release
Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Moritz Haase [Mon, 24 Nov 2025 05:55:33 +0000 (06:55 +0100)]
curl: Ensure 'CURL_CA_BUNDLE' from host env is indeed respected
Due to what looks like a copy'n'paste mistake, the environment setup script
might override 'CURL_CA_BUNDLE' from the host env instead of leaving it
untouched. Fix that.
Paul Barker [Mon, 3 Nov 2025 20:11:20 +0000 (20:11 +0000)]
pseudo: Add hard sstate dependencies for pseudo-native
Where a task (such as do_package) runs under fakeroot, the corresponding
setscene task (do_package_setscene) will also run under fakeroot when
restoring from sstate. Assuming pseudo is used as the fakeroot
implementation, we need pseudo-native and all its runtime dependencies
to be available in the sysroot before running any setscene tasks under
fakeroot.
We already add a hard dependency from all do_package_setscene tasks to
virtual/fakeroot-native:do_populate_sysroot in base.bbclass, but this
does not cover transitive dependencies. So, extend the dependencies of
pseudo-native:do_populate_sysroot_setscene to ensure that the sqlite3
library is also available in the sysroot before running fakeroot
setscene tasks.
[YOCTO #15963]
Signed-off-by: Paul Barker <paul@pbarker.dev> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
ImportError: Failed to import test module: apt
Traceback (most recent call last):
File "/usr/lib/python3.13/unittest/loader.py", line 396, in _find_test_path
module = self._get_module_from_name(name)
File "/usr/lib/python3.13/unittest/loader.py", line 339, in _get_module_from_name
__import__(name)
~~~~~~~~~~^^^^^^
File "/lava-downloads/core-image-sato/meta/lib/oeqa/runtime/cases/apt.py", line 8, in <module>
from oeqa.utils.httpserver import HTTPService
File "/lava-downloads/core-image-sato/meta/lib/oeqa/utils/httpserver.py", line 9, in <module>
from bb import multiprocessing
ModuleNotFoundError: No module named 'bb'
Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
To avoid errors we need to set a weak default for DEBUG_PREFIX_MAP_EXTRA
as it is not always set by toolchain include files.
Also, bug YOCTO #15976 mixes flags to the llvm compiler in rust and
we need to avoid the canon-prefix-map option in DEBUG_PREFIX_MAP_EXTRA.
For now, just remove this until we can properly fix the rust flags handling.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Gyorgy Sarvari [Thu, 20 Nov 2025 12:19:46 +0000 (13:19 +0100)]
bitbake.conf, gcc toolchain: add -fcanon-prefix-map to map-prefixes
This patch adds -fcanon-prefix-map to the list of compile file-prefixes
list in case at least gcc 13 is used (it's a gcc-only flag).
This flag used to be part of this list in the past, but was removed with [1].
Since then the source file paths are not canonicalized, which makes
the system to miss some (and sometimes all) source files to include
in the corresponding -src packages. As an example sqlite3 and audiofile
(from meta-oe) produces empty src packages, mostly due to the pathes:
they frequently use relative paths that don't match up with the
absolute path specified in the file-preifx map:
`pwd`/../../foo.cpp and ${S}/foo.cpp might refer to the same file, but
the first one won't match the prefix-map, so it is omitted.
This patch adds this option again with gcc in the target case.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
configfragments.py: Correct the help for enable-fragment
The help entry for --quiet had been added to list-fragments rather than
enable-fragment.
Due to the fact that --quiet is a global option, this actually adds a
dummy --quiet option as it would otherwise hide the global option, but
would never be set since any --quiet argument would already have been
parsed when this option is parsed.
Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Current du parameters used in wic scripts are conflicting: -b implies
--block-size=1 while -k implies --block-size=1K. When both parameters
are used, coreutils du and uutils du do not react similarly, leading to
failures on Ubuntu 25.10.
As we do want to use the 1K block size, remove -b and add
--apparent-size that was implied by it, so we have a predictable
behaviour.
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
gawk: use native gawk when building glibc and grub
Different versions of gawk can produce different output,
so depending on which version is installed on the build host,
reproducibility issues can occur:
https://bugzilla.yoctoproject.org/show_bug.cgi?id=16072
So far only glibc and grub have been identified to have
the issue; probably more fixes of similar nature will be
required going forward.
Adjust the gawk recipe to apply target-only tweaks
(particularly the removal of awk symlink to allow for alternatives)
to only target and nativesdk variants, so that native installs
both awk and gawk executables.
[YOCTO #16072]
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Robert Yang [Sun, 16 Nov 2025 11:54:20 +0000 (03:54 -0800)]
package.bbclass: Fix base_ver for AUTOINC
The srcpv isn't in PV any more after the following commit:
a8e7b0f932 base/package: Move source revision information from PV to PKGV
So the version.find(srcpv) will be -1, which would make base_ver to something like:
glibc-2.39+git-r (The 0 is removed)
There will be bugs when both of the following conditions are met:
* The srcrev is upgraded from value such as cff104 to b027d5 (b is less c)
* The PR value is changed from value such as r0 to r10
This would make glibc-2.39+git-r can't match glibc-2.39+git-r1, so the AUTOINC won't work,
and would still be git0, then buildhistory would report errors like:
ERROR: glibc-2.39+git-r0 do_packagedata_setscene: QA Issue: Package version for package glibc-src went backwards which would break package feeds (from 0:2.39+git0+cff1042cce-r0.0 to 0:2.39+git0+b027d5b145-r10.0) [version-going-backwards]
Strip PR to make it work as before, just like it stripped the string after
srcpv in the past.
Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
local.conf.sample: comment out the root-with-empty-password setting
This was not a good default; the autobuilder relied on it, but this
has been fixed, there's now a separate fragment as well, and testimage
has a check for the needed image features. Let's take this out and
be more secure by default everywhere.
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
local.conf.sample: do not set PACKAGE_CLASSES as it is matching oe-core's default
This setting isn't necessary as it matches what is set in oe-core
already. It may also interfere with settings on other places
such as distro files or fragments.
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/files/bitbake-setup.schema.json: move to bitbake repo
The schema for bitbake-setup configurations was provisionally
placed into oe-core, as it is an extension of an earlier
layer setup schema, but with bitbake-setup becoming the primary
way to set up layers, it makes sense to maintain both schemas
in bitbake, so that any updates and tweaks can be done in
lockstep in a single repository.
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Ross Burton [Thu, 13 Nov 2025 16:34:38 +0000 (16:34 +0000)]
initscripts: don't read /proc/cmdline in populate-volatile during build
The populate-volatile script will check for "clearcache" in the kernel
command line and wipe the caches if it has been set. This is useful at
boot, but we shouldn't be checking the kernel commandline when being
ran on the build machine at rootfs-time.
[ YOCTO #16056 ]
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Vishwas Udupa [Wed, 12 Nov 2025 11:28:23 +0000 (16:58 +0530)]
findutils:/var is populated by base-files, so no need to repack empty dir
findutils installs an empty /var which is already created
by base-files. It doesn't need to be packaged by findutils.
this helps to align towards stateless
system expectations or when updates are done via meta-updater.
Jon Mason [Thu, 13 Nov 2025 15:18:01 +0000 (10:18 -0500)]
runqemu: avoid setting "mem=" when using a DTB
Some emulated machines, such as the Raspberry Pi models, fail to boot
if a fixed "mem=" value is passed on the kernel command line. When a
DTB is used (QB_DTB is set), the memory size is already defined there,
so specifying it again is unnecessary and can cause issues.
Skip adding "mem=" to the kernel command line when QB_DTB is present.
Signed-off-by: Jon Mason <jon.mason@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Thu, 13 Nov 2025 12:15:33 +0000 (13:15 +0100)]
oeqa: drop unnecessary dependency from go runtime tests
The tests do not use scp command, so openssh-scp is not needed.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Thu, 13 Nov 2025 08:11:48 +0000 (09:11 +0100)]
go-helloworld: fix license
The example repo doesn't seem to have ever been under MIT.
It started with Apache-2.0, later changed to standard go license BSD-3.
The license file exists in the sources, so use that one instead of
taking it from the OE-Core license directory.
Note that this was already fixed in scarthgap and kirkstone, but it was
not submitted to master. Also the old releases still had Apache, so this
patch is different now with new versioni of thie component.
License-Update: Fix license declaration.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Thu, 13 Nov 2025 07:45:25 +0000 (08:45 +0100)]
oeqa: fix package detection in go sdk tests
The test are skipped if architecture contains dash because TARGET_ARCH
contains underscore while package name contains dash. Here the
translation needs to be done.
Note that poky distro default arch has dash:
MACHINE="qemux86-64"
TARGET_ARCH="x86_64"
ERROR: Nothing PROVIDES 'go-cross-canadian-x86_64'. Close matches:
gcc-cross-canadian-x86-64
gdb-cross-canadian-x86-64
go-cross-canadian-x86-64
TRANSLATED_TARGET_ARCH="x86-64"
Quoting meta/classes-recipe/cross-canadian.bbclass:
TRANSLATED_TARGET_ARCH is added into PN
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Upgrade the firmware package to latest release. Add new
Qualcomm firmware packages, rename HP package, and update
FILES path for packages ${PN}-ti-{tas2563, tas2781}.
Ross Burton [Wed, 12 Nov 2025 21:06:50 +0000 (21:06 +0000)]
classes/gnomebase: set S using GNOMEBN instead of BPN
For the majority of recipes, the default S is correct. But a few recipes
have a package name that is not the recipe name (such as GConf), and
we already handle this in the SRC_URI assignment.
Use GNOMEBN in the S assignment instead of PN so that S is correct too.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
terminal: Show a warning when launched terminal quickly exits
Terminals quitting in less than one second are likely the result of a
failure to execute the launched command: show a warning including the
command that was launched, so the user can try to debug this.
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
As the poky repository is no longer used, measurements are indexed using
the oe-core commit. But as bitbake, oe-core and meta-yocto are now
retrieved from separate gits, while measuring performances for a given branch
at some time interval, we can get the same commit for oe-core but
different ones for bitbake or meta-yocto. As a consequence, metadata
associated with the same index (oe-core commit) might differ.
To work around this, relax the equality checks for commit, commit_time
and commit_count since they might no longer match.
Ideally we'd group them into separate results but for now, treat them
as being the same.
[Based on work from Mathieu Dubois-Briand but fixed differently] Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Anuj Mittal [Fri, 7 Nov 2025 15:53:30 +0000 (21:23 +0530)]
logrotate: remove reference to state file in CONFFILES
Since commit a1f7225884 (logrotate: Do not create logrotate.status file) in
poky, logrotate.status is not installed or packaged. Remove reference to it from
CONFFILES and don't try to create /var/lib which is already taken care of by
base-files.
Joshua Watt [Thu, 6 Nov 2025 15:50:21 +0000 (08:50 -0700)]
wayland: Remove event_loop_timer test
The event_loop_timer test requires precise timing constraints (10's of
milliseconds) which cannot be achieved on qemu testing targets. Remove
this test to prevent spurious failures.
features_check: improve error message for missing required DISTRO_FEATURES
The original message for REQUIRED_DISTRO_FEATURES entries that were
missing from DISTRO_FEATURES was:
ERROR: Nothing PROVIDES 'core-image-weston'
core-image-weston was skipped: missing required distro feature 'wayland'
(not in DISTRO_FEATURES)
For newcomers, this is error message doesn't provide enough information to
identify the root cause, which could be: using the wrong DISTRO. This patch
changes the error message to include the distro name:
ERROR: Nothing PROVIDES 'core-image-weston'
core-image-weston was skipped: using DISTRO 'nodistro', which is missing
required DISTRO_FEATURES: 'wayland'
Signed-off-by: Walter Werner SCHNEIDER <contact@schnwalter.eu> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
8e2cd28cd4ba (HEAD, tag: llvmorg-21.1.5) [OpenMP] Fix preprocessor mismatches between include and usages of hwloc (#158349) df3145bf4239 [clang-shlib] Fix linking libclang-cpp on Haiku (#156401) 6bb6ffef0a5d [LLD][COFF] Fix manifest UAC trustInfo namespace (#165285) 0921531330ad [llvm-objcopy][COFF] Update .symidx values after stripping (#153322) c346c16f93d5 [BPF] Do not emit names for PTR, CONST, VOLATILE and RESTRICT BTF types (#163174) 11ef7520536c [BPF] Support for `DW_TAG_variant_part` in BTF generation (#155783) 495a2ab653ae [Hexagon] Add REQUIRES: asserts to test a2178ebcb02a [Hexagon] Incorrect MIR after "hexinsert" pass (#164021) 04102d998d0e [AArch64][llvm] Relax mandatory features for Armv9.6-A (#163973) 5c802f9eac66 [Clang] Do not warn on UTF-16 -> UTF-32 conversions. (#163927) e94561caef48 workflows/release-documentation: Allow secrets pass through from calling workflow (#162765) 1600cf040584 [Github] Only look at previous commit for MacOS Premerge (#164483) cd7d2db5a50c [lld][test] Fix AArch64 build attribute test cleanup 2cdfa9d9383c [X86] Use pseudo instructions to zero registers in `buildClearRegister` (#163358) 9faef12c7209 [sancov] Fix stack-depth tracking to use debug locations (#162428) 45afac62e373 Bump version to 21.1.5
Ross Burton [Thu, 6 Nov 2025 18:14:57 +0000 (18:14 +0000)]
nativesdk: don't map packaging variables if the recipe inherits nativesdk
The nativesdk class uses a ClassExtender to remap variables and
references, for example turning foo to nativesdk-foo. We need to do this
always because when the nativesdk class is inherited in a recipe these
need to update automatically: DEPENDS=bar should be DEPENDS=nativesdk-bar.
This mapping extends to the packaging variables (RDEPENDS, etc) as it is
usual for nativesdk to be used via BBCLASSEXTEND, so the recipe would be
written using RDEPENDS:${PN}=bar and the class would turn that into
nativesdk-bar automatically.
Some recipes don't use BBCLASSEXTEND and instead inherit nativesdk
directly. These recipes typically use "nativesdk-bar" explicitly and the
remapping isn't needed. However, the remapping still runs: it normally
has no effect but it will still run.
This is a problem for the recipes that use sdk-provides-dummy.inc to
provide names that we don't want to be in the SDK. Notably,
nativesdk-target-provides-dummy provides "pkgconfig" because packages
can have that literal dependency injected into them by rpmdeps, and
the remapping was changing this to nativesdk-pkgconfig: the intended
provides wasn't present and it became impossible to install pkgconfig
into the nativesdk sysroot.
Note that this broke when the class extension switched to use the new
bitbake filtering API[1], as this meant the remapping happens when the
variables are _read_ instead of at parse time.
[1] oe-core 24a9858a892 ("classes/lib: Switch classextend to use new filter API")
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Mike Crowe [Mon, 3 Nov 2025 15:42:34 +0000 (15:42 +0000)]
sanity: Emit the error message if CONNECTIVITY_CHECK_MSG is set
Users may still be interested in the actual error message even if there
is a custom message for failure of the connectivity check since the
cause may be intermittent.
Signed-off-by: Mike Crowe <mac@mcrowe.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Niko Mauno [Tue, 4 Nov 2025 08:33:30 +0000 (08:33 +0000)]
cve-update-db-native: pycodestyle fixes
Fixes following pycodestyle complaints:
cve-update-db-native.bb:80:39: E712 comparison to True should be 'if cond is True:' or 'if cond:'
cve-update-db-native.bb:128:20: E401 multiple imports on one line
cve-update-db-native.bb:130:18: E401 multiple imports on one line
cve-update-db-native.bb:171:21: E741 ambiguous variable name 'l'
cve-update-db-native.bb:335:26: E225 missing whitespace around operator
cve-update-db-native.bb:344:12: E713 test for membership should be 'not in'
cve-update-db-native.bb:347:12: E713 test for membership should be 'not in'
Also leaves out a redundant 'gzip' import in update_db_file().
Signed-off-by: Niko Mauno <niko.mauno@vaisala.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Niko Mauno [Tue, 4 Nov 2025 08:33:29 +0000 (08:33 +0000)]
cve-update-nvd2-native: pycodestyle fixes
Fixes following pycodestyle complaints:
cve-update-nvd2-native.bb:95:54: E712 comparison to True should be 'if cond is True:' or 'if cond:'
cve-update-nvd2-native.bb:127:15: E211 whitespace before '('
cve-update-nvd2-native.bb:127:17: E201 whitespace after '('
cve-update-nvd2-native.bb:127:19: E201 whitespace after '('
cve-update-nvd2-native.bb:127:44: E202 whitespace before ')'
cve-update-nvd2-native.bb:127:46: E203 whitespace before ','
cve-update-nvd2-native.bb:174:20: E401 multiple imports on one line
cve-update-nvd2-native.bb:183:29: E203 whitespace before ':'
cve-update-nvd2-native.bb:236:16: E111 indentation is not a multiple of 4
cve-update-nvd2-native.bb:241:16: E111 indentation is not a multiple of 4
cve-update-nvd2-native.bb:336:39: E222 multiple spaces after operator
Signed-off-by: Niko Mauno <niko.mauno@vaisala.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Richard Purdie [Mon, 10 Nov 2025 13:59:03 +0000 (13:59 +0000)]
oeqa/selftest/devtool: Update after upstream repo changes
The upstream changed the branch name, moving to archive/ so we need to
update too. Take the opportunity to match the new location too to avoid
the redirect.
We could use a different branch but upstream would probably eventually
rename that too so this may last longer.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The rationale is that both properties are relative to their respective directories
and that should be documented and clear from their names (without being too verbose).
Based on a patch from Alexander Kanavin <alex@linutronix.de> but with
updated naming.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Gyorgy Sarvari [Thu, 23 Oct 2025 10:50:58 +0000 (12:50 +0200)]
openssl: extend check_cwm test timeout
Fixes [YOCTO 14649]
The default 3s test execution timeout isn't always enough for the check_cwm test
on the autobuilder in case there is a high load on the host machine,
and due to this this case fails sometimes.
This patch doubles the timeout for this testcase to 6 seconds to allow enough
time for execution even if there is high CPU usage by other processes.
Ross Burton [Mon, 3 Nov 2025 14:21:46 +0000 (14:21 +0000)]
kea: fix CVE-2025-11232
Backport a patch from upstream to resolve CVE-2025-11232:
Invalid characters cause assert
To trigger the issue, three configuration parameters must have
specific settings: "hostname-char-set" must be left at the default
setting, which is "[^A-Za-z0-9.-]"; "hostname-char-replacement" must
be empty (the default); and "ddns-qualifying-suffix" must NOT be empty
(the default is empty). DDNS updates do not need to be enabled for
this issue to manifest. A client that sends certain option content
would then cause kea-dhcp4 to exit unexpectedly.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
1) CVE-2025-62229: Use-after-free in XPresentNotify structures creation
Using the X11 Present extension, when processing and adding the
notifications after presenting a pixmap, if an error occurs, a dangling
pointer may be left in the error code path of the function causing a
use-after-free when eventually destroying the notification structures
later.
Introduced in: Xorg 1.15
Fixed in: xorg-server-21.1.19 and xwayland-24.1.9
Fix: https://gitlab.freedesktop.org/xorg/xserver/-/commit/5a4286b1
Found by: Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
2) CVE-2025-62230: Use-after-free in Xkb client resource removal
When removing the Xkb resources for a client, the function
XkbRemoveResourceClient() will free the XkbInterest data associated
with the device, but not the resource associated with it.
As a result, when the client terminates, the resource delete function
triggers a use-after-free.
Introduced in: X11R6
Fixed in: xorg-server-21.1.19 and xwayland-24.1.9
Fix: https://gitlab.freedesktop.org/xorg/xserver/-/commit/99790a2c
https://gitlab.freedesktop.org/xorg/xserver/-/commit/10c94238
Found by: Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
3) CVE-2025-62231: Value overflow in Xkb extension XkbSetCompatMap()
The XkbCompatMap structure stores some of its values using an unsigned
short, but fails to check whether the sum of the input data might
overflow the maximum unsigned short value.
Introduced in: X11R6
Fixed in: xorg-server-21.1.19 and xwayland-24.1.9
Fix: https://gitlab.freedesktop.org/xorg/xserver/-/commit/475d9f49
Found by: Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
1) CVE-2025-62229: Use-after-free in XPresentNotify structures creation
Using the X11 Present extension, when processing and adding the
notifications after presenting a pixmap, if an error occurs, a dangling
pointer may be left in the error code path of the function causing a
use-after-free when eventually destroying the notification structures
later.
Introduced in: Xorg 1.15
Fixed in: xorg-server-21.1.19 and xwayland-24.1.9
Fix: https://gitlab.freedesktop.org/xorg/xserver/-/commit/5a4286b1
Found by: Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
2) CVE-2025-62230: Use-after-free in Xkb client resource removal
When removing the Xkb resources for a client, the function
XkbRemoveResourceClient() will free the XkbInterest data associated
with the device, but not the resource associated with it.
As a result, when the client terminates, the resource delete function
triggers a use-after-free.
Introduced in: X11R6
Fixed in: xorg-server-21.1.19 and xwayland-24.1.9
Fix: https://gitlab.freedesktop.org/xorg/xserver/-/commit/99790a2c
https://gitlab.freedesktop.org/xorg/xserver/-/commit/10c94238
Found by: Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
3) CVE-2025-62231: Value overflow in Xkb extension XkbSetCompatMap()
The XkbCompatMap structure stores some of its values using an unsigned
short, but fails to check whether the sum of the input data might
overflow the maximum unsigned short value.
Introduced in: X11R6
Fixed in: xorg-server-21.1.19 and xwayland-24.1.9
Fix: https://gitlab.freedesktop.org/xorg/xserver/-/commit/475d9f49
Found by: Jan-Niklas Sohn working with Trend Micro Zero Day Initiative.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
readline: backport a patch to fix for caller setting rl_prompt to NULL
I've observed this issue affecting iwctl and connmanctl.
Patching readline solves the issue.
The original patch from [5] mixes many fixes in one commit. I've extract
only what matters to solve the issues observed with connman and iwd. The
final patch is the same patch sent by readline author to readline's mail list [6].
Yoann Congal [Sat, 1 Nov 2025 22:57:44 +0000 (23:57 +0100)]
oe-setup-layers: make "path" optional
Layer names and path are often redundant. Allow users to omit the path
key when it is equal to the layer name by using the layer name as a
default value for its path.
For example, from layers.example.json:
"sources": {
"meta-alex": {
"path": "meta-alex"
},
"meta-intel": {
"path": "meta-intel"
},
"poky": {
"path": "poky"
}
},
Update the schema to stop requiring "path" and remove it in example for
"meta-intel".
Peter Marko [Sat, 1 Nov 2025 21:04:15 +0000 (22:04 +0100)]
wpa-supplicant: patch CVE-2025-24912
Pick patches as listed in NVD CVE report.
Note that Debian lists one of the patches as introducing the
vulnerability. This is against what the original report [1] says.
Also the commit messages provide hints that the first patch fixes this
issue and second is fixing problem with the first patch.
[1] https://jvn.jp/en/jp/JVN19358384/
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
testimage.bbclass: check that root-login-with-empty-password image features are present
More or less all of testimage relies on logging in as root, without password,
both on console and over ssh. Previously this was enabled by default in poky
and core, but now that it isn't, testimage will error out on timeouts in
both console and ssh login attempts. This commit adds an earlier check and
provides a hint to the users about what they should do.
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
fragments: add a 'root-login-with-empty-password' fragment
Please see this for background/some discussion:
https://lists.openembedded.org/g/openembedded-architecture/topic/115913545
Care should be taken to not enable this by default, and especially not for
production images. Poky and oe-core default templates did it, and it was
not a good starting point. Hopefully the fragment name, and the description
that users will see when enabling the fragment will provide enough warning.
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
bbconfigbuild/configfragments.py: print fragment descriptions when enabling them
Such descriptions can contain useful or important information, and users may
not see that otherwise at all. To reduce clutter in CI outputs or similar
scenarios, -q option suppresses that printing.
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Even though x11 is currently a default DISTRO feature, even for
nodistro, core-image-sato should require the x11 feature. Without the
x11 in DISTRO_FEATURES, bitbake fails with the following:
ERROR: Required build target 'core-image-sato' has no buildable providers.
Missing or unbuildable dependency chain was: ['core-image-sato',
'packagegroup-core-x11-base']
With this change, the error changes to something more clear to new
users of the project:
ERROR: Nothing PROVIDES 'core-image-sato'
core-image-sato was skipped: missing required distro feature 'x11'
(not in DISTRO_FEATURES)
Signed-off-by: Walter Werner SCHNEIDER <contact@schnwalter.eu> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Ross Burton [Wed, 29 Oct 2025 13:03:10 +0000 (13:03 +0000)]
classes/base: prefer gnu-prefixed HOSTTOOLS
Ubuntu 25.10 has changed the default coreutils implementation from GNU
coreutils to uutils/coreutils. Unfortunately this causes build problems:
couldn't allocate absolute path for 'null'.
tail: cannot open 'standard input' for reading: No such file or directory
install: failed to chown '...': Invalid argument (os error 22)
Clear build failures happen in 'install' and 'tail', but there may be
further breakage.
Luckily, Ubuntu also installs GNU coreutils with a binary prefix of
'gnu', so whilst these issues are root-caused and fixed in either pseudo
or uutils we can prefer the gnu-prefixed binaries where they are present.
[ YOCTO #16028 ]
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Bruce Ashfield [Thu, 30 Oct 2025 17:12:23 +0000 (13:12 -0400)]
linux-yocto/6.12: update to v6.12.55
Updating linux-yocto/6.12 to the latest korg -stable release that comprises
the following commits:
4fc43debf504 Linux 6.12.55 d28c1b1566a1 dmaengine: Add missing cleanup on module unload f3ccb4918654 arm64: errata: Apply workarounds for Neoverse-V3AE 6de6d315f34c arm64: cputype: Add Neoverse-V3AE definitions ac50c6e0a8f9 mm/ksm: fix flag-dropping behavior in ksm_madvise a156af6a4dc3 NFSD: Define a proc_layoutcommit for the FlexFiles layout type e4d2a1d31fc9 phy: cadence: cdns-dphy: Update calibration wait time for startup state machine 963f2239bdbc mptcp: reset blackhole on success with non-loopback ifaces ad16235c9d3e mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable(). c159590e3234 mptcp: Call dst_release() in mptcp_active_enable(). 4388b7f1e42c net: Add locking to protect skb->dev access in ip_output 95d4308875d1 ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] 8f001670cbb2 net: dst: add four helpers to annotate data-races around dst->dev bcdbf4d7d913 tcp: cache RTAX_QUICKACK metric in a hot cache line f620d9ba4a09 tcp: convert to dev_net_rcu() bf580112ed61 ixgbevf: fix mailbox API compatibility by negotiating supported features 68bfddd2b3be ixgbevf: fix getting link speed data for E610 devices 8a661d63d554 ixgbevf: Add support for Intel(R) E610 device fb151d86dc04 PCI: Add PCI_VDEVICE_SUB helper macro 620f3b0ede9c vfs: Don't leak disconnected dentries on umount dc63d8781463 d_alloc_parallel(): set DCACHE_PAR_LOOKUP earlier 9ec6939a502d x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID 12e3db99bc4e x86/resctrl: Refactor resctrl_arch_rmid_read() 78a2d39e2eef md: fix mssing blktrace bio split events 2d24bf9117ad md/raid10: Handle bio_split() errors 74dc8c235ad0 md/raid1: Handle bio_split() errors 069e7bbe4382 md/raid0: Handle bio_split() errors fd819637d0cf padata: Reset next CPU when reorder sequence wraps around 88ad39711bfb xfs: use deferred intent items for reaping crosslinked blocks e9fd43b799d2 wifi: rtw89: avoid possible TX wait initialization race c33da548fbf2 NFSD: Fix last write offset handling in layoutcommit da68bc55d5f8 NFSD: Implement large extent array support in pNFS 18eee640741c NFSD: Minor cleanup in layoutcommit processing 47c609979b08 NFSD: Rework encoding and decoding of nfsd4_deviceid 5def53c55a1e nfsd: Drop dprintk in blocklayout xdr functions 434b399044ae nfsd: Use correct error code when decoding extents 7e708dbee2e8 iio: imu: inv_icm42600: Avoid configuring if already pm_runtime suspended 29c57a688bb4 iio: imu: inv_icm42600: Simplify pm_runtime setup 69a837b75edc PM: runtime: Add new devm functions 4d1422bfef2d phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling f9ad5c7c472f phy: cdns-dphy: Store hs_clk_rate and return it 9909b28175c1 xfs: fix log CRC mismatches between i386 and other architectures ab0f805bed81 xfs: rename the old_crc variable in xlog_recover_process 586c75dfd1d2 hfsplus: fix slab-out-of-bounds read in hfsplus_strcasecmp() f3fe1abdeb2c nvme/tcp: handle tls partially sent records in write_space() 2a87a1c5866c selftests: arg_parsing: Ensure data is flushed to disk before reading. 095d692e5997 ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails 9ab3e03765b9 HID: multitouch: fix name of Stylus input devices 560024035fe7 HID: hid-input: only ignore 0 battery events for digitizers bba7208765d2 ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card c1bcd7205ac3 selftests/bpf: make arg_parsing.c more robust to crashes 21ba0445e422 accel/qaic: Synchronize access to DBC request queue head & tail pointer 551f1dfbcb7f accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() 646868e6962b accel/qaic: Fix bootlog initialization ordering e15f6ac84445 ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings cb4c8439cf6d sched/fair: Fix pelt lost idle time detection 8fecfa1c17a1 drm/rockchip: vop2: use correct destination rectangle height check 33fee60d39b7 drm/draw: fix color truncation in drm_draw_fill24 e4628ada9b95 drm/amd/powerplay: Fix CIK shutdown temperature 87b634c37509 drm/amdgpu: fix handling of harvesting for ip_discovery firmware 0a77caacc1d3 drm/amdgpu: add support for cyan skillfish without IP discovery 90653d924b6b drm/amdgpu: add ip offset support for cyan skillfish 657e8f9f7489 drm/i915/guc: Skip communication warning on reset in progress af66058d13f0 ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit 129cef0e37d4 ASoC: nau8821: Generalize helper to clear IRQ status 8ed3d6cf03cb ASoC: nau8821: Cancel jdet_work before handling jack ejection 70a65e2893a7 ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec e2a7c66261fe drm/bridge: lt9211: Drop check for last nibble of version register d694f809df41 riscv: kprobes: Fix probe address validation 3fc87107f036 nvme-multipath: Skip nr_active increments in RETRY disposition 5a833099033d drm/panthor: Ensure MCU is disabled on suspend d8a3a530d8b3 net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset f30f0062f609 net: usb: lan78xx: Add error handling to lan78xx_init_mac_address 95af08507322 netdevsim: set the carrier when the device goes up bbcf2da067ae tls: don't rely on tx_work during send() 39dec4ea3daf tls: wait for pending async decryptions if tls_strp_msg_hold fails bea15cd6f1e2 tls: always set record_type in tls_process_cmsg 0e2e8c4d0c37 tls: wait for async encrypt in case of error during latter iterations of sendmsg b1cf131f6df8 tls: trim encrypted message to match the plaintext on short splice 49683288a77c tg3: prevent use of uninitialized remote_adv and local_adv variables 4602b8cee148 ksmbd: fix recursive locking in RPC handle list access 814ec62e42f4 tcp: fix tcp_tso_should_defer() vs large RTT 4f4af833c7ee amd-xgbe: Avoid spurious link down messages during interface toggle eeb434548867 net/ip6_tunnel: Prevent perpetual tunnel growth 599f9faabaee r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H 34143a23fca8 doc: fix seg6_flowlabel path 824be3d3437f net: dlink: handle dma_map_single() failure properly 7ed47a3207f5 can: m_can: fix CAN state in system PM b7f989b93836 can: m_can: call deinit/init callback when going into suspend/resume 6219594f665f can: m_can: add deinit callback df689d75c46d can: m_can: m_can_chip_config(): bring up interface in correct state 4411ca4ca715 can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active b4851ba36459 can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() 39563a86579a dax: skip read lock assertion for read-only filesystems f32fea4c0234 HID: multitouch: fix sticky fingers df23d9ac3455 Revert "io_uring/rw: drop -EOPNOTSUPP check in __io_complete_rw_common()" 24883bfe09c5 cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay 380353c3a92b usb: gadget: f_rndis: Refactor bind path to use __free() 15b9faf53ba8 usb: gadget: f_ecm: Refactor bind path to use __free() 201a66d8e663 usb: gadget: f_acm: Refactor bind path to use __free() d3fe7143928d usb: gadget: f_ncm: Refactor bind path to use __free() 56b5f34542d7 usb: gadget: Introduce free_usb_request helper 1a3949c3e5c3 usb: gadget: Store endpoint pointer in usb_request 7138de99f7b1 drm/exynos: exynos7_drm_decon: remove ctx->suspended a02e8415156b drm/exynos: exynos7_drm_decon: properly clear channels during bind 2812c6b13bcc drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions e8b5f4d80775 media: nxp: imx8-isi: m2m: Fix streaming cleanup on release f0b75b4caaaf media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() 3e7b89ed9f07 drm/msm/a6xx: Fix PDC sleep sequence 2e24713ba2db cdx: Fix device node reference leak in cdx_msi_domain_init c472088522d6 irqdomain: cdx: Switch to of_fwnode_handle() 03fe1647e265 drm/amd: Check whether secure display TA loaded successfully eacc4fc28dd9 perf/core: Fix MMAP2 event device with backing files 7024b11fb47e perf/core: Fix MMAP event path names with backing files 6ddc602b1cfb perf/core: Fix address filter match with backing files e5914820d351 drm/amdgpu: fix gfx12 mes packet status return check e4937f3ef925 drm/amdgpu: use atomic functions with memory barriers for vm fault info e5e3eb2aff92 drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies 8bc4a8d39bac cifs: parse_dfs_referrals: prevent oob on malformed input cc87d3d0f4af can: gs_usb: increase max interface to U8_MAX 52eb720e5bfd can: gs_usb: gs_make_candev(): populate net_device->dev_port 3fdcfd91b93f btrfs: do not assert we found block group item when creating free space tree 187333e6d484 btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST 376b9f404130 btrfs: fix incorrect readahead expansion length 2b039c50299b btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl d2d3902f134e btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running de985264eef6 ext4: detect invalid INLINE_DATA + EXTENTS flag combination 5b7b9a17151b ext4: wait for ongoing I/O to complete before freeing blocks 9f5738883977 jbd2: ensure that all ongoing I/O complete before freeing blocks 40bf3676cb39 f2fs: fix wrong block mapping for multi-devices d6cf1320591d r8152: add error handling in rtl8152_driver_init 4772e7f18ac2 slab: reset slab->obj_ext when freeing and it is OBJEXTS_ALLOC_FAIL e15605b68b49 smb: client: Fix refcount leak for cifs_sb_tlink dc15450a5b85 rust: cfi: only 64-bit arm and x86 support CFI_CLANG 2c6e5904c5bd drm/xe/guc: Check GuC running state before deregistering exec queue c1859a8cfe84 Linux 6.12.54 779327c2be02 nfsd: decouple the xprtsec policy check from check_nfsd_access() 2d68f8a7379d mount: handle NULL values in mnt_ns_release() e051ab688e5d ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA 996b8797d62f nfsd: fix access checking for NLM under XPRTSEC policies 4c4d66e8110e nfsd: fix __fh_verify for localio 55fd40390e27 perf test stat: Avoid hybrid assumption when virtualized e67e3e738f08 sched/fair: Block delayed tasks on throttled hierarchy during dequeue 496b5ef11dc3 writeback: Avoid excessively long inode switching times bd408c334f3a writeback: Avoid softlockup when switching many inodes 4bdabd52ca1b cramfs: Verify inode mode when loading from disk a05855302b50 fs: Add 'initramfs_options' to set initramfs mount options 2076b916bf41 pid: Add a judgment for ns null in pid_nr_ns 446a54d35759 minixfs: Verify inode mode when loading from disk e85385d5a400 copy_file_range: limit size if in compat mode 14fd5e880a47 irqchip/sifive-plic: Avoid interrupt ID 0 handling during suspend/resume 47744d188004 irqchip/sifive-plic: Make use of __assign_bit() e1d6661095b0 s390/bpf: Write back tail call counter for BPF_TRAMP_F_CALL_ORIG 9d04727414b7 s390/bpf: Write back tail call counter for BPF_PSEUDO_CALL 67228efec545 s390/bpf: Describe the frame using a struct instead of constants f6fa61d89ee5 s390/bpf: Centralize frame offset calculations 14e4623df610 mm/rmap: fix soft-dirty and uffd-wp bit loss when remapping zero-filled mTHP subpage to shared zeropage 04610b77809f ipmi: Fix handling of messages with provided receive message pointer 53d6e403affb ipmi: Rework user message limit handling 1e059ce9cc7b mptcp: pm: in-kernel: usable client side with C-flag 532db65943fc ACPI: property: Do not pass NULL handles to acpi_attach_data() 687ff8354acd ACPI: property: Add code comments explaining what is going on 6c654ecf6e19 ACPI: property: Disregard references in data-only subnode lists 237d6e1de0f2 ACPI: battery: Add synchronization between interface updates 6950184bf51b ACPI: battery: Check for error code from devm_mutex_init() call ca0e8805d8f0 ACPI: battery: initialize mutexes through devm_ APIs 5187bb848aab ACPI: battery: allocate driver data through devm_ APIs efbc2d6a9291 nfsd: unregister with rpcbind when deleting a transport 0a1ee3c932dc nfsd: don't use sv_nrthreads in connection limiting calculations. 18744bc56b0e nfsd: refine and rename NFSD_MAY_LOCK 763d4aa41845 NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() 658bedb82ec5 nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT 34ff466f74d0 x86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP b7b6f95bb336 x86/mtrr: Rename mtrr_overwrite_state() to guest_force_mtrr_state() 423eba50f833 arm64: mte: Do not flag the zero page as PG_mte_tagged fa1974fad4bc statmount: don't call path_put() under namespace semaphore 32c258aad47e KVM: x86: Advertise SRSO_USER_KERNEL_NO to userspace 81c5d23a2975 cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency 820cfaee9d92 btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() 24b760c6c45a mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag a632935c1758 mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type 71e80c82c608 mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value a4ae0c21ae13 ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples 848e6babaa8a ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams fb54ffd60064 PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release 7e8e579a0c2f PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() 5e311f009daa mm/ksm: fix incorrect KSM counter handling in mm_struct during fork 0fa388ab2c29 tracing: Fix race condition in kprobe initialization causing NULL pointer dereference 875fb3f87ae0 Squashfs: reject negative file sizes in squashfs_read_inode() 234f6e1f7e6f Squashfs: add additional inode sanity checking 7db47e737128 media: mc: Clear minor number before put device 394ad2131933 selftests/mm: skip soft-dirty tests when CONFIG_MEM_SOFT_DIRTY is disabled 6f02e337cbf4 lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older 4c0df2938e11 ext4: free orphan info with kvfree 2722f13fdeeb ACPICA: Allow to skip Global Lock initialization c7242c71cb0f ext4: validate ea_ino and size in check_xattrs 6b879c4c6bba ext4: guard against EA inode refcount underflow in xattr update 4c2473d591e1 ext4: fix an off-by-one issue during moving extents 2a0cf438320c ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() d0327630ecab ext4: correctly handle queries for metadata mappings c2ad6583fe26 ext4: increase i_disksize to offset + len in ext4_update_disksize_before_punch() a2d803fab8a6 ext4: verify orphan file size is not too big 9169ef838d0c ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() 6248ff249b4f nfsd: nfserr_jukebox in nlm_fopen should lead to a retry 017addab06aa NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() d9c7886b84b3 mm/damon/lru_sort: use param_ctx for damon_attrs staging ac42320ec873 mm/damon/vaddr: do not repeat pte_offset_map_lock() until success b9737c2063ab mm/hugetlb: early exit from hugetlb_pages_alloc_boot() when max_huge_pages=0 856fe1a900a6 mm/page_alloc: only set ALLOC_HIGHATOMIC for __GPF_HIGH allocations ee2b37c11d62 mm/thp: fix MTE tag mismatch when replacing zero-filled subpages b419093e5e42 wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 feb1774aaf85 wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 bd3ac455a88d wifi: ath11k: HAL SRNG: don't deinitialize and re-initialize again 715b6a5b41da slab: mark slab->obj_exts allocation failures unconditionally e8baa4bf9d90 slab: prevent warnings when slab obj_exts vector allocation fails f7ab235fa0d7 s390: Add -Wno-pointer-sign to KBUILD_CFLAGS_DECOMPRESSOR 54ccd92b7976 s390/dasd: Return BLK_STS_INVAL for EINVAL from do_dasd_request 9582756d9746 s390/dasd: enforce dma_alignment to ensure proper buffer validation 86cade051b67 selftests: mptcp: join: validate C-flag + def limit 93749fb7f6a4 x86/umip: Fix decoding of register forms of 0F 01 (SGDT and SIDT aliases) 4fe479073715 x86/umip: Check that the instruction opcode is at least two bytes 08c70f1f7217 x86/fred: Remove ENDBR64 from FRED entry points 1ce9d6c60c92 spi: cadence-quadspi: Fix cqspi_setup_flash() a3a7b7467956 spi: cadence-quadspi: Flush posted register writes before DAC access 4497954dd233 spi: cadence-quadspi: Flush posted register writes before INDAC access 1f17a94311e8 PCI: tegra194: Reset BARs when running in PCIe endpoint mode a93bd0a668b2 PCI: tegra194: Handle errors in BPMP response 695c062da7d3 PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() 7503861b839b PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock 8f79f82ea5da PCI: rcar-host: Drop PMSR spinlock 551108bd5c9b PCI: rcar-gen4: Fix PHY initialization 65b218539486 PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit 37e46d6cfb7d PCI: j721e: Fix programming sequence of "strap" settings 3bc0a180d928 PCI/AER: Support errors introduced by PCIe r6.0 a4bc85f083ad PCI/AER: Fix missing uevent on recovery when a reset is requested 2fad3c11066c PCI/ERR: Fix uevent on failure to recover 53154cd40ccf PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV 3ea9bd428581 PCI/sysfs: Ensure devices are powered for config reads d4f9b44e81fc PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock 97e4a50069fc PCI: xilinx-nwl: Fix ECAM programming 866236611286 rseq/selftests: Use weak symbol reference, not definition, to link with glibc 4790e3a1f61d rtc: interface: Fix long-standing race when setting alarm 04eaae798085 rtc: interface: Ensure alarm irq is enabled when UIE is enabled cbcfb32b6aae memory: samsung: exynos-srom: Fix of_iomap leak in exynos_srom_probe 99141fc03c22 mmc: mmc_spi: multiple block read remove read crc ack cb7a1f5e2930 mmc: core: SPI mode remove cmd7 c2c8a3bfd824 mtd: rawnand: fsmc: Default to autodetect buswidth 1463cd066f32 xsk: Harden userspace-supplied xdp_desc validation d381de7fd4cd xtensa: simdisk: add input size check in proc_write_simdisk e3c5ac668bb9 sparc: fix error handling in scan_one_device() 9632dd92bd55 sparc64: fix hugetlb for sun4u 8019b3699289 sctp: Fix MAC comparison to be constant-time 4fbcd2bc60df scsi: sd: Fix build warning in sd_revalidate_disk() 7b2ef1a0a2f1 scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() 305b1a39f3bb sched/deadline: Fix race in push_dl_task() b9cc7155e65f Revert "ipmi: fix msg stack when IPMI is disconnected" d9457e625875 pwm: berlin: Fix wrong register in suspend/resume e5505b3c7370 powerpc/pseries/msi: Fix potential underflow and leak issue e7057be810ed powerpc/powernv/pci: Fix underflow and leak issue b91518adbec9 power: supply: max77976_charger: fix constant current reporting fb03a2cd4b1b pinctrl: samsung: Drop unused S3C24xx driver data df2a0ee58d9e nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk 371ccc8908b3 parisc: Remove spurious if statement from raw_copy_from_user() a75aa35e1aa1 parisc: don't reference obsolete termio struct for TC* constants 660b40a31932 openat2: don't trigger automounts with RESOLVE_NO_XDEV f112154107d4 of: unittest: Fix device reference count leak in of_unittest_pci_node_verify b4f4122b5795 loop: fix backing file reference leak on validation error e5400e827220 lib/genalloc: fix device leak in of_gen_pool_get() ec230e7ac6a9 KEYS: trusted_tpm1: Compare HMAC values in constant time 19b45c84bd9f kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths 38946f094bbd iommu/vt-d: PRS isn't usable if PDS isn't supported c322dc8051b8 iio: imu: inv_icm42600: Drop redundant pm_runtime reinitialization in resume 6187753da298 init: handle bootloader identifier in kernel parameters bb9730d8c063 iio: xilinx-ams: Unmask interrupts after updating alarms 2165424b1485 iio: xilinx-ams: Fix AMS_ALARM_THR_DIRECT_MASK 9fcf4821964b iio: frequency: adf4350: Fix prescaler usage. 4b8613394c0d iio: dac: ad5421: use int type to store negative error codes f10ec6a5a22f iio: dac: ad5360: use int type to store negative error codes cf2f2250882a iio/adc/pac1934: fix channel disable configuration b26923512dbe fuse: fix livelock in synchronous file put from fuseblk workers a9bce5fed67c fuse: fix possibly missing fuse_copy_finish() call in fuse_notify() f12039df1515 fs: quota: create dedicated workqueue for quota_release_work 8ce394a094f1 fs/ntfs3: Fix a resource leak bug in wnd_extend() f7cf0d774710 fbdev: Fix logic error in "offb" name match b99bc5a48ddc eventpoll: Replace rwlock with spinlock 23351fbe499f crypto: rockchip - Fix dma_unmap_sg() nents value f037ab3dd49c crypto: atmel - Fix dma_unmap_sg() direction 3ddd4942ea3d crypto: aspeed - Fix dma_unmap_sg() direction ba63d4e9857a cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() bc9f74e96b3e copy_sighand: Handle architectures where sizeof(unsigned long) < sizeof(u64) c83d6fbabc07 clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk 61a60c45ebd6 bus: mhi: host: Do not use uninitialized 'dev' pointer in mhi_init_irq_setup() 3d20d59c0e86 bus: mhi: ep: Fix chained transfer handling in read path 361d67276eb8 btrfs: avoid potential out-of-bounds in btrfs_encode_fh() c7c6c09cb46f blk-crypto: fix missing blktrace bio split events a91c4c1efb9a drm/amd/display: Enable Dynamic DTBCLK Switch ee49c1cf1b9c drm/xe/uapi: loosen used tracking restriction eca4673229b0 drm/nouveau: fix bad ret code in nouveau_bo_move_prep 82ba9b12e8ee drm/rcar-du: dsi: Fix 1/2/3 lane support ebb874e62067 drm/panthor: Fix memory leak in panthor_ioctl_group_create() 70de0a96c3a0 media: lirc: Fix error handling in lirc_register() cf5cdf7534db media: ti: j721e-csi2rx: Fix source subdev link creation a5d05d925a84 media: ti: j721e-csi2rx: Use devm_of_platform_populate f52c8cfe84b9 media: vivid: fix disappearing <Vendor Command With ID> messages 7a5509677577 media: venus: firmware: Use correct reset sequence for IRIS2 6abc3b74e50a media: s5p-mfc: remove an unused/uninitialized variable b7f82da7f864 media: pci: mg4b: fix uninitialized iio scan data 502ee4852b2c media: pci: ivtv: Add missing check after DMA map bf81e513c282 media: mc: Fix MUST_CONNECT handling for pads with no links 153afef28222 media: i2c: mt9v111: fix incorrect type for ret a9edd7f64eed media: cx18: Add missing check after DMA map cde6cdb2b25f media: cec: extron-da-hd-4k-plus: drop external-module make commands 823087ab267e firmware: meson_sm: fix device leak at probe b1fc6cc30e12 xen/events: Update virq_to_irq on migration a1e7f07ae6b5 xen/events: Return -EEXIST for bound VIRQs 8f6306ed9f23 xen/manage: Fix suspend error path 0f8b3aabb253 xen/events: Cleanup find_virq() return codes 377229c49c08 dt-bindings: phy: rockchip-inno-csi-dphy: make power-domains non-required 3479e0e9a325 perf/arm-cmn: Fix CMN S3 DTM offset 719215a16020 ARM: OMAP2+: pm33xx-core: ix device node reference leaks in amx3_idle_init 3ba58e9158d2 ARM: AM33xx: Implement TI advisory 1.0.36 (EMU0/EMU1 pins state on reset) 4e7eec38e27d arm64: kprobes: call set_memory_rox() for kprobe page 454128d96cf5 arm64: dts: ti: k3-am62a-main: Fix main padcfg length 07dd0edfcdec arm64: dts: qcom: x1e80100-pmics: Disable pm8010 by default 28901349a6ab arm64: dts: qcom: sdm845: Fix slimbam num-channels/ees 1e137c4b12b7 arm64: dts: qcom: msm8939: Add missing MDSS reset 34d90c37bb68 arm64: dts: qcom: msm8916: Add missing MDSS reset 947751c11e08 ACPI: debug: fix signedness issues in read/write helpers 594101b69cc5 ACPI: TAD: Add missing sysfs_remove_group() for ACPI_TAD_RT c19ce8b13f64 ACPI: property: Fix buffer properties extraction for subnodes e3e6f0ba1cd2 s390/vmlinux.lds.S: Move .vmlinux.info to end of allocatable sections 62f922283aa7 s390: vmlinux.lds.S: Reorder sections ee04cff9ed4d bpf: Avoid RCU context warning when unpinning htab with internal structs 7aef9f900528 gpio: wcd934x: mark the GPIO controller as sleeping d9839dbaae6a tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single fc2f2011d3d8 cifs: Query EA $LXMOD in cifs_query_path_info() for WSL reparse points 7a411fb4674d smb: client: fix missing timestamp updates after utime(2) 6e2c760b644a cifs: Fix copy_to_iter return value check dc4c854a5e74 crypto: essiv - Check ssize for decryption and in-place encryption a794af484367 selftests: netfilter: query conntrack state to check for port clash resolution dae85dc6ad5b bridge: br_vlan_fill_forward_path_pvid: use br_vlan_group_rcu() 7ea55a44493a netfilter: nft_objref: validate objref and objrefmap expressions d74bcf496985 drm/amd/display: Properly disable scaling on DCE6 00f1bd57068b drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 56251bdf36ee drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs 9626d3af3cd1 drm/amdgpu: Add additional DCE6 SCL registers 2ff846335798 mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() b586fbbebd49 mailbox: mtk-cmdq: Switch to pm_runtime_put_autosuspend() 2a2b88a2d780 mailbox: mtk-cmdq-mailbox: Switch to __pm_runtime_put_autosuspend() f36a305d30f5 bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} 1ee147efee68 mailbox: zynqmp-ipi: Fix SGI cleanup on unbind cd0cbf2713f6 mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop 91bbee4e6dfe mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes ddd9c81a1b3b mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call 6d6754330981 tcp: take care of zero tp->window_clamp in tcp_set_rcvlowat() cdab92a75985 perf python: split Clang options when invoking Popen 882b91ec6e9f tools build: Align warning options with perf 6f4f4bab8973 net: fsl_pq_mdio: Fix device node reference leak in fsl_pq_mdio_probe 7b9269de9815 ice: ice_adapter: release xa entry on adapter allocation failure 70acdd1eb35f net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work c11ace909e87 tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request(). d0e8f1445c19 net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() 488c94753979 drm/vmwgfx: Fix copy-paste typo in validation 655a2f29bfc2 drm/vmwgfx: Fix Use-after-free in validation 13c9e4ed125e drm/vmwgfx: Fix a null-ptr access in the cursor snooper f224b06c7281 s390/cio: Update purge function to unregister the unused subchannels c772e7cc9045 drm/xe/hw_engine_group: Fix double write lock release in error path e82948ba83cc net/mlx4: prevent potential use after free in mlx4_en_do_uc_filter() 9fc2af69d5d1 ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel 2db1464d8be2 LoongArch: Init acpi_gbl_use_global_lock to false f7f2b1c3038c LoongArch: Add cflag -fno-isolate-erroneous-paths-dereference eb6cd53402db ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time a41a9d0a5b59 ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size 53d07ac2adfb ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size 00d3af40b158 scsi: mvsas: Fix use-after-free bugs in mvs_work_queue 5e1020047cb7 cpufreq: tegra186: Set target frequency for all cpus in policy 8d54bd8d8768 clk: tegra: do not overallocate memory for bpmp clocks 28defa35ed15 clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver a8b0247e7e9e clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() 04d7cef497a9 clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() 51d376a16e55 clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m c766c3aa3169 perf evsel: Ensure the fallback message is always written to f49a92fe5716 perf tools: Add fallback for exclude_guest b01c2dd67929 perf test: Add a test for default perf stat command 8e67c35a6425 perf test: Don't leak workload gopipe in PERF_RECORD_* f1c41dbd0810 perf session: Fix handling when buffer exceeds 2 GiB 3fcbe5482810 perf test shell lbr: Avoid failures with perf event paranoia 491c4eed60fa perf test: Update sysfs path for core PMU caps 20027d8416a4 perf vendor events arm64 AmpereOneX: Fix typo - should be l1d_cache_access_prefetches c955a161b4a9 perf arm_spe: Correct memory level for remote access 4dd0a97e3b7a perf arm-spe: Rename the common data source encoding ec29c3e9bdcc perf arm_spe: Correct setting remote access bdde538d5d8c rtc: optee: fix memory leak on driver removal d98a5eeede96 rtc: x1205: Fix Xicor X1205 vendor prefix 4be14daf8919 perf util: Fix compression checks returning -1 as bool ca370366fdcd clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() 18a8d826b469 clk: at91: peripheral: fix return value 2fe5844fa994 clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() 535e310360f6 libperf event: Ensure tracing data is multiple of 8 sized 2f3e5c090166 perf evsel: Avoid container_of on a NULL leader 7be1a7b56ef1 perf test trace_btf_enum: Skip if permissions are insufficient 2692752311d6 perf disasm: Avoid undefined behavior in incrementing NULL 1aeb7e6392d5 asm-generic/io.h: Skip trace helpers if rwmmio events are disabled 94e6336dc1f0 media: v4l2-subdev: Fix alloc failure check in v4l2_subdev_call_state_try() 0cd821daa260 iio: frequency: adf4350: Fix ADF4350_REG3_12BIT_CLKDIV_MODE 2af086f6fd99 KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 801f7999ab8b dma-mapping: fix direction in dma_alloc direction traces 15b8a5b4cdc1 page_pool: Fix PP_MAGIC_MASK to avoid crashing on some 32-bit arches 68a8fc370b86 clocksource/drivers/clps711x: Fix resource leaks in error paths 659874b7ee49 listmount: don't call path_put() under namespace semaphore b42a82c630f4 rseq: Protect event mask against membarrier IPI fdd380a59505 arm64: map [_text, _stext) virtual address range non-executable+read-only 90f60c455d10 fscontext: do not consume log entries when returning -EMSGSIZE 02f0b08f970f fs: always return zero on success from replace_fd()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
projects / thirdparty / openembedded / openembedded-core-contrib.git / log
