Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
b95c01af2113 Linux 5.15.152
a1211bbf7814 serial: max310x: fix IO data corruption in batched operations
0ba485f90d97 serial: max310x: make accessing revision id interface-agnostic
31642219f27a regmap: Add bulk read/write callbacks into regmap_config
fbddd48f1456 regmap: allow to define reg_update_bits for no bus configuration
cad6da86ca98 ALSA: usb-audio: Sort quirk table entries
36dba3f4cd36 ALSA: usb-audio: Add FIXED_RATE quirk for JBL Quantum610 Wireless
bfd36b1d1869 ALSA: usb-audio: Always initialize fixed_rate in snd_usb_find_implicit_fb_sync_format()
a6f53df52b66 ALSA: usb-audio: Fix wrong kfree issue in snd_usb_endpoint_free_all
fd63fb84ed6d fs/proc: do_task_stat: move thread_group_cputime_adjusted() outside of lock_task_sighand()
9b3834276bb6 proc: Use task_is_running() for wchan in /proc/$pid/stat
3c1b2776ef19 getrusage: use sig->stats_lock rather than lock_task_sighand()
ef2734e57cb9 getrusage: use __for_each_thread()
18c7394e46d8 getrusage: move thread_group_cputime_adjusted() outside of lock_task_sighand()
c5579e7280e6 getrusage: add the "signal_struct *sig" local variable
63e09c1f46d6 drm/amd/display: Increase frame-larger-than for all display_mode_vba files
f4442513e426 drm/amd/display: remove DML Makefile duplicate lines
b4bab46400a0 drm/amd/display: move calcs folder into DML
b00e4d44ac77 drm/amd/display: Re-arrange FPU code structure for dcn2x
b6d46f306b39 hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed
c4cfa93e5018 hv_netvsc: use netif_is_bond_master() instead of open code
760d0df3add5 selftests: mptcp: decrease BW in simult flows
9a9d00c23d17 drm/amdgpu: Reset IH OVERFLOW_CLEAR bit
f57431896095 drm/amd/pm: do not expose the API used internally only in kv_dpm.c
0afbf40c0135 serial: max310x: prevent infinite while() loop in port startup
2fbf2c767b50 serial: max310x: use a separate regmap for each port
2161c5411d91 serial: max310x: use regmap methods for SPI batch operations
2aa7bcfdbb46 xhci: handle isoc Babble and Buffer Overrun events properly
56e9aeb2052c xhci: process isoc TD properly when there was a transaction error mid TD.
0d29b474fb90 selftests: mm: fix map_hugetlb failure on 64K page size systems
0b08eb637276 selftests/mm: switch to bash from sh
fdfc5fabe85a nfp: flower: add hardware offload check for post ct entry
245332d4e767 nfp: flower: add goto_chain_index for ct entry
666334fdf4c6 drm/amd/display: Fix uninitialized variable usage in core_link_ 'read_dpcd() & write_dpcd()' functions
f354086d1bf7 ALSA: usb-audio: add quirk for RODE NT-USB+
80326ce1eb74 ALSA: usb-audio: Fix microphone sound on Nexigo webcam.
f1a68c6a41c6 ALSA: usb-audio: Add new quirk FIXED_RATE for JBL Quantum810 Wireless
d16ae91186f3 ALSA: usb-audio: Add quirk for Tascam Model 12
7ce0a888d646 ALSA: usb-audio: Avoid superfluous endpoint setup
3191a00dbe04 ALSA: usb-audio: Correct the return code from snd_usb_endpoint_set_params()
06b6de69cf16 ALSA: usb-audio: Apply mutex around snd_usb_endpoint_set_params()
539493f147ff ALSA: usb-audio: Properly refcounting clock rate
56e28371faf4 ALSA: usb-audio: Split endpoint setups for hw_params and prepare (take#2)
8ca3315bd876 ALSA: usb-audio: Clear fixed clock rate at closing EP
9830e7383f18 ALSA: usb-audio: Refcount multiple accesses on the single clock
0866afaff19d netrom: Fix data-races around sysctl_net_busy_read
c558e54f7712 netrom: Fix a data-race around sysctl_netrom_link_fails_count
f9c4d4246417 netrom: Fix a data-race around sysctl_netrom_routing_control
4eacb242e22e netrom: Fix a data-race around sysctl_netrom_transport_no_activity_timeout
489e05c614db netrom: Fix a data-race around sysctl_netrom_transport_requested_window_size
85f34d352f4b netrom: Fix a data-race around sysctl_netrom_transport_busy_delay
33081e0f3489 netrom: Fix a data-race around sysctl_netrom_transport_acknowledge_delay
f84f7709486d netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries
b8006cb0a34a netrom: Fix a data-race around sysctl_netrom_transport_timeout
775ed3549819 netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser
b3f0bc3a315c netrom: Fix a data-race around sysctl_netrom_obsolescence_count_initialiser
bbc21f134b89 netrom: Fix a data-race around sysctl_netrom_default_path_quality
101277e37d54 erofs: apply proper VMA alignment for memory mapped files on THP
b3c0f5538205 netfilter: nf_conntrack_h323: Add protection for bmp length out of range
bd9c90927a3c netfilter: nft_ct: fix l3num expectations with inet pseudo family
b562ebe21ed9 net/rds: fix WARNING in rds_conn_connect_if_down
f0363af9619c cpumap: Zero-initialise xdp_rxq_info struct before running XDP program
cae330325795 net/ipv6: avoid possible UAF in ip6_route_mpath_notify()
8d95465d9a42 net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()
e46274df1100 net: sparx5: Fix use after free inside sparx5_del_mact_entry
e77e0b0f2a11 geneve: make sure to pull inner header in geneve_rx()
be3be07d237c tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string
e72b4e5e16f6 i40e: disable NAPI right after disabling irqs when handling xsk_pool
533953fa90d1 ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able
ea4e938d2ce4 net: lan78xx: fix runtime PM count underflow on link stop
5ae5060e17a3 mmc: mmci: stm32: fix DMA API overlapping mappings warning
287093040fc5 mmc: mmci: stm32: use a buffer for unaligned DMA requests
8d1bab770956 locking/rwsem: Disable preemption while trying for rwsem lock
7c82dac02886 block, loop: support partitions without scanning
45f504f301d4 bpftool: Fix pretty print dump for maps without BTF loaded
1f24338cb789 jbd2: Drop the merge conflicted hunk
e1d0e3c51bde tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
1abe841fe331 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
6224acfc1d56 tpm: Add flag to use default cancellation policy
1cd19d48fb90 tpm: tis_i2c: Fix sanity check interrupt enable mask
a883da132fa8 tpm: Add tpm_tis_i2c backend for tpm_tis_core
a742ac8a1c51 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer
ef495c5f45f2 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops
1f3be2e23aa6 gcc-plugins: Reorganize gimple includes for GCC 13
24615a3b932a ata: ahci: fix enum constants for gcc-13
5d6cb145541a net: stmmac: Enable mac_managed_pm phylink config
fd93aabb4287 tools/resolve_btfids: Use pkg-config to locate libelf
130f9da78406 tools/resolve_btfids: Build with host flags
00f2f1a782f9 tools/resolve_btfids: Support cross-building the kernel with clang
17776a4ba9c2 tools/resolve_btfids: Install libbpf headers when building
7c9808380d70 libbpf: Make libbpf_version.h non-auto-generated
37ae1ba791ac libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations
a2667e6d7314 drm/radeon: free iio for atombios when driver shutdown
f100c753aa1f powerpc: Fix reschedule bug in KUAP-unlocked user copy
da5513f30187 libbpf: Fix build warning on ref_ctr_off
4c5a089621a8 perf python: Account for multiple words in CC
1c5699ee85d4 fs: move S_ISGID stripping into the vfs_*() helpers
838f5d0701d8 fs: add mode_strip_sgid() helper
d97172683641 squashfs: provide backing_dev_info in order to disable read-ahead
ed037d7be40c irq_work: use kasan_record_aux_stack_noalloc() record callstack
1363bd7dbde3 ixgbevf: add disable link state
e5601ae2bd24 ixgbe: add improvement for MDD response functionality
caa57cd80575 ixgbe: add the ability for the PF to disable VF link state
16a77bfcc7df Check /dev/console using init_stat()
04574fd5579a tracing/arm: Have max stack tracer handle the case of return address after data
0e51e5717018 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
1e6b7da6ddba drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
493160901320 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
04224f725aa3 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered
6f6c2996a81c irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve
1fa94473423f irqchip/gic-v3-its: Give the percpu rdist struct its own flags field
6013d1ae5feb cert host tools: Stop complaining about deprecated OpenSSL functions
efe20512212b init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash
a40d2daf2795 pnmtologo: use relocatable file name
3b40d5b41155 of: configfs: remove unused variable overlay_lock
6c085baf1838 tools: use basename to identify file in gen-mach-types
2fca0fd71981 lib/build_OID_registry: fix reproducibility issues
0f586f4ee8ad vt/conmakehash: improve reproducibility
a75774679f28 OF: DT-Overlay configfs interface (v8)
d179c639b30b x86/boot: Wrap literal addresses in absolute_pointer()
856ec356cf91 ACPI: thermal: drop an always true check
7614af249993 xfs: Fix -Werror=dangling-pointer work-around for older GCC
41470215f97e xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o
44a445c1922d virtio-pci: Remove wrong address verification in vp_del_vqs()
77aa9e489eaf bpf: Disallow unprivileged bpf by default
ebfb1822e9f9 fs/aufs: fixup 5.15.36 fixups
4eba9348d3e2 Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal""
5df6d1b00f95 jbd2: fix use-after-free of transaction_t race
2d83e8196487 jbd2: refactor wait logic for transaction updates into a common function
07a63f760793 netfilter: conntrack: avoid useless indirection during conntrack destruction
4e7122625996 Revert "fbdev: Hot-unplug firmware fb devices on forced removal"
7ba4cb36fd4f rcu: Avoid alloc_pages() when recording stack
f78574dee71e kasan: test: silence intentional read overflow warnings
d313cb89b6b1 kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC
5e279d5647cc arm64: support page mapping percpu first chunk allocator
e5bf16752dca vmalloc: choose a better start address in vm_area_register_early()
660b3d21b46f kasan: test: bypass __alloc_size checks
00aa7573e53a kasan: test: add memcpy test that avoids out-of-bounds write
67becf0b1bd4 kasan: fix tag for large allocations when using CONFIG_SLAB
bedf1e033213 workqueue, kasan: avoid alloc_pages() when recording stack
7195b67ce69b kasan: generic: introduce kasan_record_aux_stack_noalloc()
bdff763f0e29 kasan: common: provide can_alloc in kasan_save_stack()
51423ebb36ad lib/stackdepot: introduce __stack_depot_save()
85373e66d847 lib/stackdepot: remove unused function argument
5b6cc9b251f3 lib/stackdepot: include gfp.h
c9f3902d8069 aufs: reduce overhead for "code present but disabled" use case.
b98d189df02c aufs: bugfix, umount passes NULL to ->parse_monolithic()
13b883cbbbd9 aufs standalone: cosmetic, missing copyright sentence
21f8b0d81898 aufs: 5.15.5-20220117 ---> 5.15.5-20220221
6199fd896645 aufs: tiny, headers after fs_context
8ddb40e31c29 aufs: fs_context 7/7, finally remount
69035f71c6fd aufs: fs_context 6/7, now mount
bc841b970697 aufs: fs_context 5/7, parse all other mount options
435188053da2 aufs: fs_context 4/7, parse xino options
9af1f1825cbd aufs: fs_context 3/7, parse the branch-management options
1c05eb767f8c aufs: fs_context 2/7, parse "br" mount option
a8488f603134 aufs: fs_context 1/7, skelton of the new shceme
8e32e0015564 aufs: pre fs_context, convert a static flag to a macro
f90cb4144aec aufs: pre fs_context, support the incomplete sb and sbinfo case
948762ef859c aufs: pre fs_context, convert the type of alloc_sbinfo()
77151a08776b aufs: 5.15.5-20211129 ---> 5.15.5-20220117
2539adbbbe1e aufs: 5.14-20211018 ---> 5.15.5-20211129
7d32b25193c4 aufs: for v5.15-rc1, sync_inode() is gone
66ec0c509225 aufs: for v5.15-rc1, new param 'rcu' for ->get_acl()
69709dc518cd aufs: for v5.15-rc1, no mand-lock anymore
ada8fe9543e5 aufs: 5.14-20210906 ---> 5.14-20211018
b77f7f3f394a Revert "aufs: adjust to v5.15 fs changes"
81bdce5b5876 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation
97c963889222 sched/isolation: really align nohz_full with rcu_nocbs
871f23ad3627 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards"
ffad0783dd5b ARM: config: multi v7: Regenerate defconifg
5c1e1a1ff2d3 ARM: config: multi v7: Add renamed symbols
badaf96564fe ARM: config: multi v7: Clean up enabled by default options
34996040fc9b ARM: config: multi v7: Drop unavailable options
7f685244afb3 powerpc/mm: Switch obsolete dssall to .long
20301aeb1a64 riscv: fix build with binutils 2.38
9df58d070506 powerpc/lib/sstep: fix 'ptesync' build error
720b61fc400b x86_64_defconfig: Fix warnings
02bf23d26bc4 arm64: defconfig: cleanup config options
05914e2c87e5 arm: defconfig: drop unused POWER_AVS option
ffb532fa19b9 aufs5: fix build against v5.15.3+
a4b3abf4d96d qemux86: add configuration symbol to select values
fee94ee09154 clear_warn_once: add a clear_warn_once= boot parameter
3d8762d900d9 clear_warn_once: bind a timer to written reset value
95faacac47e8 clear_warn_once: expand debugfs to include read support
de20c4240018 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
0e4aacead9c1 perf: x86-32: explicitly include <errno.h>
9ad92c11468e perf: mips64: Convert __u64 to unsigned long long
09e7efe3e68a perf: fix bench numa compilation
e79becc44fa6 perf: add SLANG_INC for slang.h
b1033b588681 perf: add sgidefs.h to for mips builds
cf9db484ac0b perf: change --root to --prefix for python install
7fd052c2c562 perf: add 'libperl not found' warning
27a437cdd469 perf: force include of <stdbool.h>
3b99d21bec2f fat: don't use obsolete random32 call in namei_vfat
a7e9293b506b FAT: Added FAT_NO_83NAME
6fd0e71d9e5c FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
c379b0d324ae FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
538be0fdb124 aufs: adjust to v5.15 fs changes
f45da75c8759 aufs5: core
047f57e07e01 aufs5: standalone
029fc15574c8 aufs5: mmap
610d0192ee94 aufs5: base
d4e428d0ec5f aufs5: kbuild
eb067eca251a yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
286af18d0875 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
24d59a4e26a6 yaffs2: v5.12+ build fixups (not runtime tested)
22c73536d5d7 yaffs: include blkdev.h
506b7251bfb8 yaffs: fix misplaced variable declaration
a0e26ff364dc yaffs2: v5.6 build fixups
b10b1b2d169e yaffs2: fix memory leak when /proc/yaffs is read
ad9adccbb214 yaffs: add strict check when call yaffs_internal_read_super
2e3c3aec8279 yaffs: repair yaffs_get_mtd_device
d662538516a7 yaffs: Fix build failure by handling inode i_version with proper atomic API
70a6113ee2c7 yaffs2: fix memory leak in mount/umount
3378e4a9e404 yaffs: Avoid setting any ACL releated xattr
ec2284edddef Yaffs:check oob size before auto selecting Yaffs1
c2a49874051c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
e9a5105a3e73 yaffs2: adjust to proper location of MS_RDONLY
608807406f13 yaffs2: import git revision b4ce1bb (jan, 2020)
89e660ece42c initramfs: allow an optional wrapper script around initramfs generation
b179dbc9aa10 iwlwifi: select MAC80211_LEDS conditionally
3fd5ca3673d0 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
d1f6edbf0188 arm64/perf: Fix wrong cast that may cause wrong truncation
d202fb2caf33 defconfigs: drop obselete options
9a27e3b5f4e7 arm64/perf: fix backtrace for AAPCS with FP enabled
e20d8cf019b4 linux-yocto: Handle /bin/awk issues
b6d2a3dbbd3a uvesafb: provide option to specify timeout for task completion
adb40f1e6a1a uvesafb: print error message when task timeout occurs
f280a1ed0962 compiler.h: Undef before redefining __attribute_const__
4352732f268c vmware: include jiffies.h
7954a677968d Resolve jiffies wrapping about arp
5f28a1035d95 nfs: Allow default io size to be configured.
0d7260ad7106 check console device file on fs when booting
900a12e37e0a mount_root: clarify error messages for when no rootfs found
7b878cbea726 menuconfig,mconf-cfg: Allow specification of ncurses location
6604fc1763b3 modpost: mask trivial warnings
0d294adb09cb kbuild: exclude meta directory from distclean processing
a097cdd95a9e powerpc: serialize image targets
5db6ec39a0a3 arm: serialize build targets
cbabca27905e crtsavres: fixups for 5.4+
7fc7656ed403 powerpc/ptrace: Disable array-bounds warning with gcc8
a5faac5a19a2 powerpc: Disable attribute-alias warnings from gcc8
186c54665b67 powerpc: add crtsavres.o to archprepare for kbuild
d1ea862964ca powerpc: kexec fix for powerpc64
2ac35b89a0f9 powerpc: Add unwind information for SPE registers of E500 core
2e1c348a28bb mips: vdso: fix 'jalr $t9' crash in vdso code
ec57870b303a mips: Kconfig: add QEMUMIPS64 option
6a81b3c08107 4kc cache tlb hazard: tlbp cache coherency
74e3b2a21e54 malta uhci quirks: make allowance for slow 4k(e)c
22e65b63d3b4 arm/Makefile: Fix systemtap
b7f1ab59f19e vexpress: Pass LOADADDR to Makefile
ce2800c73bf7 arm: ARM EABI socketcall
019d142fd956 ARM: LPAE: Invalidate the TLB for module addresses during translation fault
(From OE-Core rev: 4545591ac316d4304a73b578ecfce57a10af886f)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
574362648507 Linux 5.15.151
4a4eeb691253 mptcp: fix double-free on socket dismantle
cc5e34bc5b20 Revert "tls: rx: move counting TlsDecryptErrors for sync"
9d5932275b3b net: tls: fix async vs NIC crypto offload
68dbe92d677c bpf: Derive source IP addr via bpf_*_fib_lookup()
39b4ee40d204 bpf: Add table ID to bpf_fib_lookup BPF helper
75ca92271da5 bpf: Add BPF_FIB_LOOKUP_SKIP_NEIGH for bpf_fib_lookup
20f5aafe521c Revert "interconnect: Teach lockdep about icc_bw_lock order"
fe549d8e9763 Revert "interconnect: Fix locking for runpm vs reclaim"
ead68522455b gpio: fix resource unwinding order in error path
ea514ac5f1be gpiolib: Fix the error path order in gpiochip_add_data_with_key()
c21b5ad4e79d gpio: 74x164: Enable output pins after registers are reset
6c480d0f1318 af_unix: Drop oob_skb ref before purging queue in GC.
2f3ae0905a7e Revert "drm/bridge: lt8912b: Register and attach our DSI device at probe"
22850c9950a4 fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super
94965be37add cachefiles: fix memory leak in cachefiles_add_cache()
cc32ba2fdf3f mptcp: fix possible deadlock in subflow diag
af46c8a0d8db mptcp: push at DSS boundaries
5101e9f11a87 mptcp: add needs_id for netlink appending addr
4ba8702b23e3 mptcp: clean up harmless false expressions
f431a58cb933 selftests: mptcp: add missing kconfig for NF Filter in v6
5d7f2e7d213f selftests: mptcp: add missing kconfig for NF Filter
55366b9ae937 mptcp: rename timer related helper to less confusing names
833d068e776a mptcp: process pending subflow error on close
305078c2741f mptcp: move __mptcp_error_report in protocol.c
fbd16a1e4b14 x86/cpu/intel: Detect TME keyid bits before setting MTRR mask registers
077952157636 pmdomain: qcom: rpmhpd: Fix enabled_corner aggregation
5f6e8930ca96 mmc: sdhci-xenon: fix PHY init clock stability
f4fae0a76ee2 mmc: sdhci-xenon: add timeout for PHY init complete
52af4f26c02f mmc: core: Fix eMMC initialization with 1-bit bus connection
4529c084a320 dmaengine: fsl-qdma: init irq after reg initialization
2dee8895a25e dmaengine: ptdma: use consistent DMA masks
106c1ac953a6 dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read
ab2d68655d0f btrfs: dev-replace: properly validate device names
063715c33b4c wifi: nl80211: reject iftype change with mesh ID change
9376d059a705 gtp: fix use-after-free and null-ptr-deref in gtp_newlink()
cbf67001d647 ALSA: firewire-lib: fix to check cycle continuity
7d930a4da179 tomoyo: fix UAF write bug in tomoyo_write_control()
5941a90c55d3 riscv: Sparse-Memory/vmemmap out-of-bounds fix
80b15346492b afs: Fix endless loop in directory parsing
20a4b5214f7b fbcon: always restore the old font data in fbcon_do_set_font()
5eac17127e85 ALSA: Drop leftover snd-rtctimer stuff from Makefile
e601ae81910c power: supply: bq27xxx-i2c: Do not free non existing IRQ
4b73473c050a efi/capsule-loader: fix incorrect allocation size
5bc8810b788a tls: decrement decrypt_pending if no async completion will be called
9ae48288fc8b tls: rx: use async as an in-out argument
bdb7fb29236a tls: rx: assume crypto always calls our callback
2ec59e165549 tls: rx: move counting TlsDecryptErrors for sync
b61dbb5ef449 tls: rx: don't track the async count
4fd23a600be9 tls: rx: factor out writing ContentType to cmsg
9876554897b3 tls: rx: wrap decryption arguments in a structure
d6c9c2a66c91 tls: rx: don't report text length from the bowels of decrypt
ffc8a2b82141 tls: rx: drop unnecessary arguments from tls_setup_from_iter()
1abd49fa1ffb tls: hw: rx: use return value of tls_device_decrypted() to carry status
432d40036f17 tls: rx: refactor decrypt_skb_update()
17d8bda2a6fd tls: rx: don't issue wake ups when data is decrypted
de0970d258ef tls: rx: don't store the decryption status in socket context
4c68bf84d162 tls: rx: don't store the record type in socket context
f1e71909373e igb: extend PTP timestamp adjustments to i211
a1227b27fccc rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back
7c3f28599652 netfilter: bridge: confirm multicast packets before passing them up the stack
3e9cd8913635 netfilter: let reset rules clean out conntrack entries
c3a84f83d9e5 netfilter: make function op structures const
2cb39bea7085 netfilter: core: move ip_ct_attach indirection to struct nf_ct_hook
84d3baab4b89 netfilter: nfnetlink_queue: silence bogus compiler warning
4225152bfb77 netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
af1a9a925e46 Bluetooth: Enforce validation on max value of connection interval
c3df637266df Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
4cd28dae8210 Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR
da4569d450b1 Bluetooth: Avoid potential use-after-free in hci_error_reset
8e9955630117 stmmac: Clear variable when destroying workqueue
28bbdb4e1993 uapi: in6: replace temporary label with rfc9486
1e2cbdbdfa76 net: usb: dm9601: fix wrong return value in dm9601_mdio_read
9b1f5c003284 veth: try harder when allocating queue memory
914c73e7872d net: enable memcg accounting for veth queues
8d4d26f51ef0 lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is detected
8a54834c03c3 ipv6: fix potential "struct net" leak in inet6_rtm_getaddr()
f011c103e654 net: veth: clear GRO when clearing XDP even when down
bf3f0c4169be cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back
cbfd27689b5e tun: Fix xdp_rxq_info's queue_index when detaching
afec0c5cd2ed net: ip_tunnel: prevent perpetual headroom growth
c71ed29d15b1 netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter
386bb2537e9b mtd: spinand: gigadevice: Fix the get ecc status issue
00b19ee0dcc1 netfilter: nf_tables: disallow timeout for anonymous sets
(From OE-Core rev: 32f2aba4c4e90b86c1e11ac54dedd6a015c219a6)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug
is triggered within the sms_decode_address_field() function during the SMS
PDU decoding. It is assumed that the attack scenario is accessible from a compromised
modem, a malicious base station, or just SMS.
(From OE-Core rev: 996c03dfb5295ec38286dee37c70c700b88e0a1e)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug
is triggered within the decode_submit_report() function during the SMS decoding.
It is assumed that the attack scenario is accessible from a compromised modem,
a malicious base station, or just SMS. There is a bound check for this memcpy
length in decode_submit(), but it was forgotten in decode_submit_report().
(From OE-Core rev: 51cf006ac7b5b97e65864fb1cb6f5b47192c4ebf)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
If DROPBEAR_RSAKEY_DIR has already been set before, e.g. by overwriting
the file dropbear.default, the line will still be appended a second time.
DROPBEAR_RSAKEY_DIR="/path/to/dropbear"
DROPBEAR_EXTRA_ARGS="-B"
DROPBEAR_RSAKEY_DIR=/var/lib/dropbear
(Backport of rev: 6045314d29)
(From OE-Core rev: 8a502301209ef144932ef5071c1a9b738db23270)
Signed-off-by: Michael Glembotzki <Michael.Glembotzki@iris-sensing.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw has been discovered in GnuTLS where an application crash can be induced
when attempting to verify a specially crafted .pem bundle using the
"certtool --verify-chain" command.
(From OE-Core rev: e63819fbabbde3d12df06ae302da70ab990df26d)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability
that exploits deterministic behavior in systems like GnuTLS, leading to
side-channel leaks. In specific scenarios, such as when using the
GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in
nonce size from 513 to 512 bits, exposing a potential timing side-channel.
(From OE-Core rev: 18c4f65934331da48c597201c33334578e91a45d)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
nghttp2 is an implementation of the Hypertext Transfer Protocol
version 2 in C. The nghttp2 library prior to version 1.61.0 keeps
reading the unbounded number of HTTP/2 CONTINUATION frames even
after a stream is reset to keep HPACK context in sync. This
causes excessive CPU usage to decode HPACK stream. nghttp2 v1.61.0
mitigates this vulnerability by limiting the number of CONTINUATION
frames it accepts per stream. There is no workaround for this
vulnerability.
References:
https://nvd.nist.gov/vuln/detail/CVE-2024-28182
(From OE-Core rev: 85e65af4727695d61c225a5911325764f423c331)
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2024-24576 only applies when invoking batch files (with the `bat` and `cmd` extensions) on Windows & No other platform or use is affected.
More details about CVE is here: https://nvd.nist.gov/vuln/detail/CVE-2024-24576
(From OE-Core rev: 44e0b6b028657d32de5971d6a42a88767ef8c710)
Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
As reported by "make sphinx-lint"
Tabs are even removed in Makefile examples,
as Sphinx turns them to spaces anyway in the generated output.
(From yocto-docs rev: fd1423141e7458ba557db465c171b0b4e9063987)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Reviewed-by: Quentin Schulz <quentin.schulz@theobroma-systems.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
To make it more obvious which directories are needed, pass only these to
*mkdir* and use the option `-p` to create the missing parents.
(From yocto-docs rev: 4ddcedca4b09e2c051b33a40659ffce1db2984f5)
Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de>
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
As reported by "make sphinx-lint"
(From yocto-docs rev: 18d86626406fe07d4f62ef0b9168c0220b3dd90a)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Makes it possible to catch errors not reported by sphinx,
such as idle spaces. After customization, this should be used
to enforce our syntax conventions, such as two spaces after a "-"
character to introduce a list item.
Just run "make sphinx-lint".
(From yocto-docs rev: a735549a764f7cfebdc7534761b4d75dc523371a)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
reorder CVEs from alphabetical order to numerical order, align it
with text based release notes.
(From yocto-docs rev: a2ce17f656758db737c398263efa594604ca2271)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
These test suites are full of timing-sensitive test cases, so skip
them too.
[ YOCTO #15321 ]
(From OE-Core rev: f94c74cee8b2650dd3211a49dc7e88bf60d2e6a7)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit dd06c3668dbe9ec1cf9a0a84d7a6bc9851f9c662)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There are several tests in the test suite which are very dependent on
timing and fail on a loaded host system, so skip them.
[ YOCTO #14825#14882#15081 ]
(From OE-Core rev: 161d336a6c57fddb36a0c4e8c2def84ce70128e3)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 68beb4f4b5a0bea5d431decddf7656f18ac7a04a)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Some tests hardcode assumptions on locales, which may not be present in
musl systems e.g., therefore add a way to skip such tests using -skip
option.
Skip unixInit-3* test on musl
(From OE-Core rev: a70f9039259d7d38c5a3e50f7003d3228d1ab692)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit fa66f1cee2d88c2276442e8b4aaeccde5490f9ea)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Add CVE-2023-51767 to CVE_CHECK_IGNORE to avoid in cve-check reports
as upstream does not consider CVE-2023-51767 a bug underlying in
OpenSSH and does not intent to address it in OpenSSH.
(From OE-Core rev: de4186610335201c69d8952d605bb291f4a7427c)
Signed-off-by: Sana Kazi <sana.kazi@kpit.com>
Signed-off-by: Sana Kazi <sana.kazisk19@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2023-47100 is a duplicate of CVE-2023-47038. They have the same
advertised fix commit, which has already been merged into the
perl_5.34.3 sources used in kirkstone.
(From OE-Core rev: 8df158f39f1eed1e3ae88ddf935c67e067b72525)
Signed-off-by: Alex Stewart <alex.stewart@ni.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Typo prevents cupsd to start correctly with following error:
Unable to read "/etc/cups/cupsd.conf" due to errors.
Using `/usr/sbin/cupsd -t` to check the configuration:
Unknown authorization type Defaul on line 77 of /etc/cups/cupsd.conf.
Unknown Policy Limit directive AuthType on line 77 of /etc/cups/cupsd.conf.
(From OE-Core rev: eab100205bc5cdffc5ccc7752e1ee5abd9ebb58a)
Signed-off-by: Jonathan GUILLOT <jonathan@joggee.fr>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Try to particularly emphasize that it can be used to find
out why something rebuilds when it shouldn't.
(From yocto-docs rev: 1cd543e62e8f1b65e65108d919c2f481001e044c)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The documentation of the variable SPDX_NAMESPACE_PREFIX does not exist.
This variable is used to change the prefix of some links in SPDX docs.
(From yocto-docs rev: 0055b7ea1cdf72359695e08fe6d2ca9a405fba51)
Signed-off-by: BELOUARGA Mohamed <m.belouarga@technologyandstrategy.com>
Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
According to errors reported by "make stylecheck"
(From yocto-docs rev: b3aaf4523190f7528d49c29a9aea234bb1647eae)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
* this is often confused to apply for e.g. meta-oe as well
where it doesn't apply as meta-oe has own ML mentioned
in README.
(From yocto-docs rev: 98102408fe5468529e040a138f09c8fbc5fe065a)
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Allowing to remove nested parentheses in the text!
(From yocto-docs rev: a0ba062f8b31426f80ccd760e29b054405ee2a8e)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Instead of "manpage(s)" or "man page(s)".
To address one of the errors reported by "make stylecheck"
(From yocto-docs rev: f6e69f8877d1d33200993f21b448e7fa3cf7859b)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Plus a few text styling improvements, some reported by "make stylecheck"
(From yocto-docs rev: ce0e83716197773d8eae0c2f0edc1cf290ebd60f)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
