There's a (second) overhead factor applied in images generated with Wic,
and this is already documented in the .wks reference. However, the
IMAGE_OVERHEAD_FACTOR entry does not mention it, and by looking at the
partition sizes (e.g. with parted) one may find it confusing that they
don't match with the expected rootfs size (e.g. in a scenario where the
extra space is "0" and IMAGE_OVERHEAD_FACTOR="1.0").
This second overhead is already documented, though:
https://docs.yoctoproject.org/ref-manual/kickstart.html#command-part-or-partition
Mention the '--overhead-factor' option in the glossary entry and add a
reference to the wks documentation.
(From yocto-docs rev: 71a3933c609ce73ff07e5be48d9e7b03f22ef8d7)
Signed-off-by: Joao Marcos Costa <joaomarcos.costa@bootlin.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit b9040e20b015e9b02683ec3014e4ade5eb59d41a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
`src-uri-bad` is missing the required call to `oe.qa.exit_if_errors` so
the corresponding task is not marked as failed when the QA check is
classified as an error.
This issue was fixed by the introduction of the do_recipe_qa task in
OE-core (e0c71367ab59021fc430ef215bbfc3b525036ba4) which is not part
of kirkstone yet.
(From OE-Core rev: 4b593ea8df9b1d3dda0adf38786845168360311f)
Signed-off-by: Philip Lorenz <philip.lorenz@bmw.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Currently, whilst patch errors or warnings are shown, the errors don't stop builds.
The configuration isn't very configurable from WARN_QA and ERROR_QA either.
This patch:
* Uses the standard mechanisms to handle the patch fuzz warnings/errors
* Makes Upstream-Status checking configurable from WARN/ERROR_QA
* Allows that checking to be used with non-core layers
* Makes patch-fuzz an error by default
(From OE-Core rev: 76a685bfcf927593eac67157762a53259089ea8a)
(From OE-Core rev: 4899961965d70281e63582234f0ed299431eff32)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3c3fd6a65e)
The backported commit was modified to not mark "patch-fuzz" as an error
by default (which retains compatibility with kirkstone behaviour).
Signed-off-by: Philip Lorenz <philip.lorenz@bmw.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
During backporting the patch, accidentally a variable was removed.
In case the recipe is compiled for 32-bit Arm target, compilation
fails with the following error:
3.0.1-r0/git/llvm/lib/Target/ARM/ARMISelLowering.cpp:4481:13: error: 'RegVT' was not declared in this scope
| 4481 | if (RegVT == MVT::f16 || RegVT == MVT::bf16)
| | ^~~~~
This patch corrects the patch, and adds back the removed RegVT variable.
(From OE-Core rev: 77f29f8fea58de40459186952d25279877ce4994)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1.
This affects the function ff_aac_search_for_tns of the file libavcodec/aacenc_tns.c
of the component AAC Encoder. The manipulation leads to stack-based buffer overflow.
It is possible to initiate the attack remotely. The exploit has been disclosed to
the public and may be used.
(From OE-Core rev: 5a922eb95da7d373ee2bc3018065448fa128e69a)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2023-6605:
A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET
requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs.
CVE-2023-6604:
A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load
and storage consumption, potentially leading to degraded performance or denial of service
via the demuxing of arbitrary data as XBIN-formatted data without proper format validation.
CVE-2023-6602:
flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows possible data exfiltration
via improper parsing of non-TTY-compliant input files in HLS playlists.
(From OE-Core rev: aa68992ddc5744bb4fdbb3a3cd0636b303449be2)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Since pulseaudio-server requires the audio group, we explicitly add it.
When use useradd-staticids or do not use the default group in
base-passwd, an error will occur because the audio group is not defined.
NOTE: pulseaudio: Performing useradd with [--root
TOPDIR/tmp/work/cortexa72-poky-linux/pulseaudio/17.0/recipe-sysroot
--home-dir /var/run/pulse --gid 998 --groups audio,pulse
--no-create-home --system --shell /bin/false --uid 998 pulse]
useradd: group 'audio' does not exist
ERROR: pulseaudio: useradd command did not succeed.
(From OE-Core rev: 71ed9d8394f7e625270ee66f9c2816bba4aa2016)
Signed-off-by: Kyungjik Min <dpmin7@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The default CONNECTIVITY_CHECK_URIS uses "https://yoctoproject.org/connectivity.html"
which redirect to "https://www.yoctoproject.org/connectivity.html".
Some network configurations with proxies or restricted internet access
don't handle HTTP redirects properly during the sanity check phase,
causing build failures with:
ERROR: OE-core's config sanity checker detected a potential misconfiguration.
Either fix the cause of this error or at your own risk disable the checker (see sanity.conf).
Following is the list of potential problems / advisories:
Fetcher failure for URL: 'https://yoctoproject.org/connectivity.html'. URL doesn't work.
Updated the default URL to use the final destination directly to avoid
redirect-related connectivity check failures.
Also updated SDK test cases in https.py to use the corrected URL for
consistency.
(From OE-Core rev: aceb2920fbdef43db7b0b698865358e288901610)
Signed-off-by: Deepak Rathore <deeratho@cisco.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 60cdf960a3560f391babd559737f1afb31fb2c5c)
Signed-off-by: Deepak Rathore <deeratho@cisco.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This comment should not have been merged.
It shows that the license did not change.
(From OE-Core rev: 652986a4c67fc5d1c69cd3c2cb0d7f197b960be6)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Handles CVE-2025-53905, CVE-2025-53906, CVE-2025-55157, CVE-2025-55158.
Changes between 9.1.1198 -> 9.1.1652
====================================
https://github.com/vim/vim/compare/v9.1.1198...v9.1.1652
Refresh patches.
Disable newly introduced wayland support (in patch version 1485).
To this belongs also adding recursion in delete command for dir auto
which was newly failing as there is wayland directory inside now.
If someone is interested, this can be probably enabled, but without
additional work it results in compilation error due to function
redefinition conflicts.
(From OE-Core rev: e87d427d928234ef0441f9ce1fe8631fbe471094)
(From OE-Core rev: bd2dc808baec7e940a09f80afa2c2997efe7cbfe)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
After the below commit introduced, the shebang size of native scripts
is also checked, so rework the patch to fix the gap.
377fe11bc0 insane.bbclass: Make do_qa_staging check shebangs
Fixes:
ERROR: QA Issue: : /work/x86_64-linux/vim-native/9.0.0005-r0/sysroot-destdir/work/x86_64-linux/vim-native/9.0.0005-r0/recipe-sysroot-native/usr/share/vim/vim90/tools/mve.awk maximum shebang size exceeded, the maximum size is 128. [shebang-size]
ERROR: QA Issue: : /work/x86_64-linux/vim-native/9.0.0005-r0/sysroot-destdir/work/x86_64-linux/vim-native/9.0.0005-r0/recipe-sysroot-native/usr/share/vim/vim90/tools/efm_perl.pl maximum shebang size exceeded, the maximum size is 128. [shebang-size]
(From OE-Core rev: 79232458b9cdc741a2049d83839af73f58a5554c)
(From OE-Core rev: 671f8cec8ef463d75e9393c5fc03cf913ef9edf6)
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Git is a fast, scalable, distributed revision control system with an
unusually rich command set that provides both high-level operations
and full access to internals. When reading a config value, Git strips
any trailing carriage return and line feed (CRLF). When writing a
config entry, values with a trailing CR are not quoted, causing the CR
to be lost when the config is later read. When initializing a
submodule, if the submodule path contains a trailing CR, the altered
path is read resulting in the submodule being checked out to an
incorrect location. If a symlink exists that points the altered path
to the submodule hooks directory, and the submodule contains an
executable post-checkout hook, the script may be unintentionally
executed after checkout. This vulnerability is fixed in v2.43.7,
v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-48384
Upstream-patch:
05e9cd64ee
(From OE-Core rev: 34cb9674a5ce337a75af0dc415706d0323c427a6)
Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability was determined in LibTIFF up to 4.5.1. Affected
by this issue is the function readSeparateStripsetoBuffer of the
file tools/tiffcrop.c of the component tiffcrop. The manipulation
leads to stack-based buffer overflow. Local access is required to
approach this attack. The patch is identified as
8a7a48d7a645992ca83062b3a1873c951661e2b3. It is recommended to
apply a patch to fix this issue.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-8851
Upstream patch:
8a7a48d7a6
(From OE-Core rev: 1ced84bbd4ab15f0f16176e367744b496a0ea97c)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability classified as problematic was found in libtiff
4.6.0. This vulnerability affects the function PS_Lvl2page of
the file tools/tiff2ps.c of the component tiff2ps. The
manipulation leads to null pointer dereference. It is possible
to launch the attack on the local host. The complexity of an
attack is rather high. The exploitation appears to be difficult.
The exploit has been disclosed to the public and may be used.
The name of the patch is 6ba36f159fd396ad11bf6b7874554197736ecc8b.
It is recommended to apply a patch to fix this issue. One of the
maintainers explains, that "[t]his error only occurs if
DEFER_STRILE_LOAD (defer-strile-load:BOOL=ON) or TIFFOpen( .. "rD")
option is used."
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-8534
Upstream patch:
6ba36f159f
(From OE-Core rev: c897368cd363d3e50372ab1fc95bc31f1a883dc4)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability was found in LibTIFF up to 4.7.0. It has been declared
as problematic. Affected by this vulnerability is the function
t2p_read_tiff_init of the file tools/tiff2pdf.c of the component fax2ps.
The manipulation leads to null pointer dereference. The attack needs to
be approached locally. The complexity of an attack is rather high. The
exploitation appears to be difficult. The patch is named
2ebfffb0e8836bfb1cd7d85c059cd285c59761a4. It is recommended to apply a
patch to fix this issue.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-13978
Upstream patch:
2ebfffb0e8
(From OE-Core rev: f6ff692be6b08290845b6c6c27eaf5d676476464)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
We have found that since this patch SELECT queries with
COUNT(DISTINCT(column)) seem to cause sqlite to segfault
This reverts commit 4d5093e5103016c08b3a32fd83b1ec9edd87cd5a.
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This CVE is for virtio-snd which was introduced in 8.2.0.
Therefore ignore this CVE for version 6.2.0.
(From OE-Core rev: 93545ef00c4930dd297649934bee0e95c520ee16)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in m2crypto. This issue may allow a remote attacker to
decrypt captured messages in TLS servers that use RSA key exchanges,
which may lead to exposure of confidential or sensitive data.
The CVE-2023-50781 in M2Crypto is addressed by modifying OpenSSL because
M2Crypto relies on OpenSSL for its cryptographic operations.The issue
stems from OpenSSL’s RSA PKCS#1 v1.5 padding verification being
vulnerable to Bleichenbacher-type attacks.To mitigate this, OpenSSL
introduced an implicit rejection mechanism in the RSA PKCS#1 v1.5
padding.Therefore, resolving the vulnerability requires changes within
OpenSSL itself to ensure M2Crypto’s security.
References:
https://nvd.nist.gov/vuln/detail/CVE-2023-50781https://github.com/openssl/openssl/pull/13817/commitshttps://todo.sr.ht/~mcepl/m2crypto/342?__goaway_challenge=meta-refresh&__goaway_id=45a03d6accb7b343867110db1f7fb334
(From OE-Core rev: d24c4923d6f7a25bdc3ec5d4ac6bee32bb0bae88)
Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Fix:
../recipe-sysroot/usr/include/libuboot.h:29:2: error: unknown type name 'size_t'
size_t envsize;
^
This error can be avoided by using CXXFLAGS:append = " -include cstddef"
but this way would be needed in all recipes that use libuboot.h.
Therefore, Backport the patch to include <cstddef> in C++ builds.
(From OE-Core rev: e401a16d8e26d25cec95fcea98d6530036cffca1)
Signed-off-by: Youngseok Jeong <youngseok1.jeong@lge.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The previous fix missed another cherry-pick that fixed building
manpages after the coredump patch. The version-info.xml file doesn't
exist in 250. It was introduced later, so remove the reference to
it.
(From OE-Core rev: 0a383ef579ffe5f5c4ef2c78040540f1332e4ea6)
Signed-off-by: Daniel McGregor <daniel.mcgregor@vecima.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This class has been in OE-Core for a while but never documented in the
reference manual. Add some description for it and link to the existing
documentation on it.
(From yocto-docs rev: 1576091585f8ffdcadd8b8eee525614ab16b6fa0)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 362a331255525fc853dab3af4ec905c417fabb0b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This variable is part of uboot-sign but not documented.
(From yocto-docs rev: 1a07897a273867b4cf26759e88e423c552a09c4a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 05eb461cb1da76ad9cbaf634da7f47447b3f6765)
[fix minor conflicts in classes.rst]
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update the distributions to match the list of workers on the
Autobuilder. This list was generated with the help of
yocto-autobuilder-helper/scripts/yocto-supported-distros.
Also:
- Sort the lists alphabetically.
- Fill the second list with EOL distros still running on the
Autobuilder.
(From yocto-docs rev: 207477ddfead183f9df06215b1acb453138708cb)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The example repo doesn't seem to have ever been under MIT to begin with
but rather Apache-2.0.
The license file exists in the sources, so use that one instead of
taking it from the OE-Core license directory.
License-Update: Incorrect license is now proper
(From OE-Core rev: 3d1c037a7cb7858a4e3c33a94f5d343a81aac5f7)
Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
By default, the tests are built and run at do_compile and we can see
errors like below in log.do_compile:
gnupg-2.3.7/tests/cms/inittests: line 99: ../../sm/gpgsm: cannot execute binary file: Exec format error
Note that the do_compile process still succeeds. However, we'd better avoid
executing these target binaries at build time.
(From OE-Core rev: b02f99a0b82ed55a07c00b32805ad676c04ee4ab)
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(master rev: 74d48497470ce209bc6bdf49c2e2cfda67dce6ae)
Signed-off-by: Guocai He <guocai.he.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick 2 commits as in scarthgap branch plus one additional precondition
to apply those.
(From OE-Core rev: e43507dad134c5036be1c79a37f73c34f4fb6292)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability was found in LibTIFF up to 4.7.0. It has been
rated as critical. This issue affects the function setrow of the
file tools/thumbnail.c. The manipulation leads to buffer overflow.
An attack has to be approached locally. The patch is named
e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to
apply a patch to fix this issue. This vulnerability only affects
products that are no longer supported by the maintainer.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-8177
Upstream patch:
e8de4dc1f9
(From OE-Core rev: fbf3238630c104c9e17d6e902986358cea5986ff)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability was found in LibTIFF up to 4.7.0. It has
been declared as critical. This vulnerability affects the
function get_histogram of the file tools/tiffmedian.c. The
manipulation leads to use after free. The attack needs to
be approached locally. The exploit has been disclosed to
the public and may be used. The patch is identified as
fe10872e53efba9cc36c66ac4ab3b41a839d5172. It is recommended
to apply a patch to fix this issue.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-8176
Upstream patches:
3994cf3b3bce46f002ececc4ddbf1f
(From OE-Core rev: 5dbc4ccce8676b016de8c1393c2f0d0f74eb9337)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This is a single commit bump containing only CVE fix
$ git log --oneline d80401002011f470d9c6eb604bf734715e9b3a8c..a66bc3941ff298e474d5f02d0c3303401951141f
a66bc3941f posix: Fix double-free after allocation failure in regcomp (bug 33185)
Test results didn't change except newly added test succeeding.
(tst-regcomp-bracket-free)
Also add CVE-2025-0395 ignore which was already included in previous
hash bumps.
Also drop an unreferenced patch.
(From OE-Core rev: 3921549f6420e44a250d06cdef2c9d423fb6e39f)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick commit referencing this CVE from 2.13 branch.
(From OE-Core rev: 9418c88c964dffc21abe6a056db72c3c81e25137)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick relevant commit from 3.8.10 release MR [1].
The MR contains referece to undiscoled issue, so any security relevant
patch should be picked.
Binary test file was added as separate file as binary diffs are not
supported.
[1] https://gitlab.com/gnutls/gnutls/-/merge_requests/1979
(From OE-Core rev: 990bd6fab5c6004b9fbcdb9c76bcb3a96ba5887a)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick relevant commit from 3.8.10 release MR [1].
The ME contains referece to undiscoled issue, so any security relevant
patch should be picked.
Binary test file was added as separate file as binary diffs are not
supported.
[1] https://gitlab.com/gnutls/gnutls/-/merge_requests/1979
(From OE-Core rev: 33181e3e8c7427fc823f750e936732b69e247987)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE patch [1] as mentioned in [2] relies on several patches not yet
available in version 2020.81 we have in kirkstone.
The good folks from Debian did the hard work identifying them as they
have the same version in bullseye release.
The commits were picked from [3] and they have their references to
dropbear upstream commits.
[1] e5a0ef27c2
[2] https://security-tracker.debian.org/tracker/CVE-2025-47203
[3] 7f48e75892
(From OE-Core rev: 91eeffaf14917c7c994a8de794b915231e69c5d6)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
* many configure tests (which might not fail before) are failing with gcc-14:
# grep implicit build/config.log
conftest.c:47:1: error: return type defaults to 'int' [-Wimplicit-int]
conftest.c:47:1: error: return type defaults to 'int' [-Wimplicit-int]
conftest.c:47:1: error: return type defaults to 'int' [-Wimplicit-int]
conftest.c:47:1: error: return type defaults to 'int' [-Wimplicit-int]
conftest.c:47:1: error: return type defaults to 'int' [-Wimplicit-int]
conftest.c:47:1: error: return type defaults to 'int' [-Wimplicit-int]
conftest.c:50:17: error: implicit declaration of function 'exit' [-Wimplicit-function-declaration]
conftest.c:50:17: warning: incompatible implicit declaration of built-in function 'exit' [-Wbuiltin-declaration-mismatch]
conftest.c:53:9: error: implicit declaration of function 'msem_init' [-Wimplicit-function-declaration]
conftest.c:54:9: error: implicit declaration of function 'msem_lock' [-Wimplicit-function-declaration]
conftest.c:55:9: error: implicit declaration of function 'msem_unlock' [-Wimplicit-function-declaration]
conftest.c:56:9: error: implicit declaration of function 'exit' [-Wimplicit-function-declaration]
conftest.c:56:9: warning: incompatible implicit declaration of built-in function 'exit' [-Wbuiltin-declaration-mismatch]
conftest.c:50:9: error: implicit declaration of function '_spin_lock_try' [-Wimplicit-function-declaration]
conftest.c:51:9: error: implicit declaration of function '_spin_unlock' [-Wimplicit-function-declaration]
* I have noticed this on db-native build on host with gcc-14
where it caused fatal do_configure error:
http://errors.yoctoproject.org/Errors/Details/784164/
checking for mutexes... UNIX/fcntl
configure: error: Support for FCNTL mutexes was removed in BDB 4.8.
the config.log confirms it's because implicit-int:
configure:22798: checking for mutexes
configure:22925: gcc -o conftest -isystem/OE/build/oe-core/tmp-glibc/work/x86_64-linux/db-native/5.3.28/recipe-sysroot-native/usr/include -O2 -pipe -isystem/OE/build/oe-core/tmp-glibc/work/x86_64-linux/db-native/5.3.28/recipe-sysroot-native/usr/include -D_GNU_SOURCE -D_REENTRANT -L/OE/build/oe-core/tmp-glibc/work/x86_64-linux/db-native/5.3.28/recipe-sysroot-native/usr/lib -L/OE/build/oe-core/tmp-glibc/work/x86_64-linux/db-native/5.3.28/recipe-sysroot-native/lib -Wl,--enable-new-dtags -Wl,-rpath-link,/OE/build/oe-core/tmp-glibc/work/x86_64-linux/db-native/5.3.28/recipe-sysroot-native/usr/lib -Wl,-rpath-link,/OE/build/oe-core/tmp-glibc/work/x86_64-linux/db-native/5.3.28/recipe-sysroot-native/lib -Wl,-rpath,/OE/build/oe-core/tmp-glibc/work/x86_64-linux/db-native/5.3.28/recipe-sysroot-native/usr/lib -Wl,-rpath,/OE/build/oe-core/tmp-glibc/work/x86_64-linux/db-native/5.3.28/recipe-sysroot-native/lib -Wl,-O1 conftest.c -lpthread >&5
conftest.c:47:1: error: return type defaults to 'int' [-Wimplicit-int]
47 | main() {
| ^~~~
configure:22925: $? = 1
configure: program exited with status 1
* comparing target db with and without this change shows following diff
in log.do_configure:
db $ diff 5.3.28*/temp/log.do_configure
268c268
< checking for mutexes... POSIX/pthreads/library
---
> checking for mutexes... POSIX/pthreads/library/x86_64/gcc-assembly
271c271
< checking for atomic operations... no
---
> checking for atomic operations... x86/gcc-assembly
(From OE-Core rev: 4d3ce333c10fadf746b6d8b55a88777c97e11ffa)
(From OE-Core rev: 277b5ec3c0212ca8600dd89d0a33f784a060131f)
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6108da955e7c553247ff5356cf1c990b3d334edf)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update to the 4.0.28 release of the 4.0 series for buildtools
(From OE-Core rev: 8e59118164d6468443db211d9ade058402f21add)
Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Below commits on glibc-2.35 stable branch are updated.
git log --oneline d2febe7c407665c18cfea1930c65f41899ab3aa3..80401002011f470d9c6eb604bf734715e9b3a8c2
8040100201 Fix error reporting (false negatives) in SGID tests
c6ec750be5 support: Pick group in support_capture_subprogram_self_sgid if UID == 0
c9e44b6467 support: Don't fail on fchown when spawning sgid processes
621c65ccf1 elf: Ignore LD_LIBRARY_PATH and debug env var for setuid for static
c7ff2bc297 Revert "elf: Ignore LD_LIBRARY_PATH and debug env var for setuid for static"
8624f6431b elf: Fix subprocess status handling for tst-dlopen-sgid (bug 32987)
ed10034f00 elf: Test case for bug 32976 (CVE-2025-4802)
08aea7712d support: Add support_record_failure_barrier
901e24b128 support: Use const char * argument in support_capture_subprogram_self_sgid
bff3b0f16c elf: Ignore LD_LIBRARY_PATH and debug env var for setuid for static
Dropped :
0025-CVE-2025-4802.patch
ed10034f00 elf: Test case for bug 32976 (CVE-2025-4802)
Test results:
Before after diff
PASS 4833 4839 +6
XPASS 6 6 0
FAIL 133 130 -3
XFAIL 16 16 0
UNSUPPORTED 200 197 -3
Following commits improved test results:
8040100201 Fix error reporting (false negatives) in SGID tests
Improved SGID test handling by unifying error reporting and using secure temporary directories.
Replaced non-standard exit codes and fixed premature exits to avoid masking failures.
These changes reduced false negatives, increasing overall test pass rates.
8624f6431b elf: Fix subprocess status handling for tst-dlopen-sgid (bug 32987)
Fixed tst-dlopen-sgid false positives by correctly handling subprocess exit status (bug 32987).
Ensured test fails on abnormal or non-zero child exits.
This commit restores reliability in SGID testing and is the first step toward centralized SGID test error handling.
UNSUPPORTED tests changes
-UNSUPPORTED: elf/tst-env-setuid
-UNSUPPORTED: elf/tst-env-setuid-tunables
-UNSUPPORTED: stdlib/tst-secure-getenv
FAILed tests changes
-FAIL: elf/tst-dlopen-sgid
-FAIL: misc/tst-error1
-FAIL: resolv/tst-resolv-aliases
PASSed tests changes
+PASS: elf/tst-env-setuid
+PASS: elf/tst-env-setuid-tunables
+PASS: stdlib/tst-secure-getenv
+PASS: elf/tst-dlopen-sgid
+PASS: misc/tst-error1
+PASS: resolv/tst-resolv-aliases
(From OE-Core rev: 2ea1d2d9bc6d173a8a586542d47a7f8a443d24c1)
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The previous fix for CVE-2024-43398 did not include patches
to provide context for the changes it made.
This caused an exception at run-time when ruby parsed
rexml/parsers/baseparser.rb. This was first observed when using
ruby-native to build the sdformat recipe.
With these additional backports, the sdformat build proceeds
successfully. The REXML library was also tested manually on-target
with a script that used REXML::Document.new file to parse an
XML file.
(From OE-Core rev: 6bf00fde2d4043c6b558733a33041ce5694342d3)
Signed-off-by: Rob Woolley <rob.woolley@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
These two CVEs were fixed via the 5.0.3 release, and the
backported patches that fixed them were subsequently left
behind (although not deleted) by dadb16481810 ("ffmpeg:
upgrade 5.0.1 -> 5.0.3")
* CVE-2022-3109: An issue was discovered in the FFmpeg
package, where vp3_decode_frame in libavcodec/vp3.c lacks
check of the return value of av_malloc() and will cause a
null pointer dereference, impacting availability.
* CVE-2022-3341: A null pointer dereference issue was
discovered in 'FFmpeg' in decode_main_header() function of
libavformat/nutdec.c file. The flaw occurs because the
function lacks check of the return value of
avformat_new_stream() and triggers the null pointer
dereference error, causing an application to crash.
`bitbake ffmpeg` reports these two as "Unpatched".
Ignore them for now, until the NVD updates the versions where
these do not affect anymore.
(From OE-Core rev: 78aef4b1002c515aa2c1a64fea5bb013c9bc86a8)
Signed-off-by: Daniel Díaz <daniel.diaz@sonos.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There are new CVEs reported for this recipe which are not for this
componene, but for a component with same name from apache.
sqlite> select vendor, product, id, count(*) from products where product like 'orc' group by vendor, product, id;
apache|orc|CVE-2018-8015|1
apache|orc|CVE-2025-47436|4
gstreamer|orc|CVE-2024-40897|1
(From OE-Core rev: c31dec7b32fe34fafd61dd593a2884eee13084fb)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The upstream servers are having issues so switch to our own shadow copy
of the repo.
(Bitbake rev: 8e2d1f8de055549b2101614d85454fcd1d0f94b2)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The SRC_URI is changed to git://gitlab.eclipse.org/eclipse/tcf/tcf.agent.git
(From OE-Core rev: d9f424921179a52ffe053411c44f20e44e7deba1)
Signed-off-by: Guocai He <guocai.he.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There are already decorators to skip on the value of MACHINE, but for
flexibility it's better to skip based on the target architecture. This
means, for example, the ISO image tests could skip if the architecture
isn't x86.
(From OE-Core rev: a8381f4b7d7c294d9ad8a9d3f0b1f7c409753716)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 0c21ff0a92906b6b4820eb8beddf8762fe70653d)
Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Below commit on binutils-2.38 stable branch are updated.
9bee8d65d32 x86: Check MODRM for call and jmp in binutils older than 2.45
Before After Diff
No. of expected passes 280 280 0
No. of unexpected failures 2 2 0
No. of untested testcases 1 1 0
No. of unsupported tests 7 7 0
Testing was done and there were no regressions found
(From OE-Core rev: 7ac807166dfb6723f4e0b53c21f434e21d25563e)
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Changelog:
===========
* Fixed CVE-2025-32462. Sudo's -h (--host) option could be specified
when running a command or editing a file. This could enable a
local privilege escalation attack if the sudoers file allows the
user to run commands on a different host.
* Fixed CVE-2025-32463. An attacker can leverage sudo's -R
(--chroot) option to run arbitrary commands as root, even if
they are not listed in the sudoers file. The chroot support has
been deprecated an will be removed entirely in a future release.
License-Update: Copyright updated to 2025
0001-sudo.conf.in-fix-conflict-with-multilib.patch refreshed for 1.9.17
(From OE-Core rev: f8343726bca7f884213436cda3f51684c22ad3f1)
Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function
(io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing
maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding,
allowing out-of-bounds reads from heap memory, potentially causing application crashes or
arbitrary code execution.
(From OE-Core rev: 1803f965e4990be3fbdcd52544f0080e9c83800d)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick commit referencing this CVE.
(From OE-Core rev: 49ccf7b56a0598f84dcac2532c462aa2c285f66c)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug
is triggered within the decode_deliver_report() function during the SMS decoding.
It is assumed that the attack scenario is accessible from a compromised modem,
a malicious base station, or just SMS. There is a bound check for this memcpy
length in decode_submit(), but it was forgotten in decode_deliver_report().
(From OE-Core rev: 3a3519324ec390044ff9f97c0f32027782699124)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug
is triggered within the decode_status_report() function during the SMS decoding.
It is assumed that the attack scenario is accessible from a compromised modem,
a malicious base station, or just SMS. There is a bound check for this memcpy
length in decode_submit(), but it was forgotten in decode_status_report().
(From OE-Core rev: 02005c81a55930d9f57d44674cdc5eb6171c8c76)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol,
when an approved safe prime is used, allows remote attackers (from the client side) to
trigger unnecessarily expensive server-side DHE modular-exponentiation calculations.
The client may cause asymmetric resource consumption. The basic attack scenario is that
the client must claim that it can only communicate with DHE, and the server must be
configured to allow DHE and validate the order of the public key.
Reference:
https://github.com/openssl/openssl/pull/25088
(From OE-Core rev: 635fc639a13a6b28cac5c67cff23b7f4477bc41c)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There are two "new" CVEs reported for python3, their CPEs are:
* CVE-2020-1171: cpe:2.3🅰️microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
* CVE-2020-1192: cpe:2.3🅰️microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
These are for "Visual Studio Code Python extension".
Solve this by addding CVE vendor to python CVE product to avoid
confusion with Microsoft as vendor.
Examining CVE DB for historical python entries shows:
sqlite> select vendor, product, count(*) from products where product = 'python' or product = 'cpython'
...> or product like 'python%3' group by vendor, product;
microsoft|python|2
python|python|1054
python_software_foundation|python|2
(From OE-Core rev: 06f615e6939a22bc8f12b30d8dea582ab3ccebe6)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Backport patch to fix CVE-2025-5278.
The patch is adjusted to fit 9.0 version. And the test case is
also adjusted to avoid using valgrind. valgrind in kirkstone is
reporting errors for coreutils' sort utility with/without this patch.
To avoid ptest failure, we disable valgrind explicitly.
(From OE-Core rev: bb7dbb195b55d9aaa0180906843f5af2dcf7509f)
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
While search queries already handled words with hyphens correctly, they
did not do so for words with dots.
To fix this, we
- enhance the word tokenizer to treat both dots ('.') and hyphens ('-')
as valid characters within words.
(For robustness, explicitly exclude dots/hyphens at the start or end
of a word from indexing.)
- adjust query processing to avoid splitting on dots in search input
This allows search queries to correctly match terms such as
'local.conf', 'site.conf', and similar ones now.
Fixes: [YOCTO #14534]
(From yocto-docs rev: 02cc810c17e37563a206629d703dc21fc4280cbf)
Signed-off-by: Enrico Jörns <ejo@pengutronix.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 80084a4cabdf7f61c7e93eda8ddbd5bc7d54e041)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Replace the hardcoded /usr/bin by ${bindir}, as it should be.
Reported-by: Thomas Perrot <thomas.perrot@bootlin.com>
(From yocto-docs rev: 574aff4830ba20ee4471e15656ca5de22a743c37)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 576677eae6960dbc2d2ececeba0fde5bba7bb69f)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
3dea0e7f549e Linux 5.15.186
e3ff9f86cdb7 scsi: qedf: Use designated initializer for struct qed_fcoe_cb_ops
8e31c6cc3cba scsi: elx: efct: Fix memory leak in efct_hw_parse_filter()
92750bfe7b0d arm64/ptrace: Fix stack-out-of-bounds read in regs_get_kernel_stack_nth()
a9f6aab7910a perf: Fix sample vs do_exit()
4be8065eace7 s390/pci: Fix __pcilg_mio_inuser() inline assembly
6d7fcd8a7a42 bpf: Fix L4 csum update on IPv6 in CHECKSUM_COMPLETE
f02c9c448e50 net: Fix checksum update for ILA adj-transport
ecbea1a5fec5 ext4: avoid remount errors with 'abort' mount option
1578f57a3fc3 ext4: make 'abort' mount option handling standard
ef5706bed97e mm/huge_memory: fix dereferencing invalid pmd migration entry
956b5aebb349 net_sched: sch_sfq: reject invalid perturb period
6c589aa31802 net_sched: sch_sfq: move the limit validation
6b96d7a9e8e7 net_sched: sch_sfq: use a temporary work area for validating configuration
1b562b7f9231 net_sched: sch_sfq: don't allow 1 packet limit
548cf048b426 net_sched: sch_sfq: handle bigger packets
8a1eca898580 net_sched: sch_sfq: annotate data-races around q->perturb_period
98236b25d03f arm64: proton-pack: Add new CPUs 'k' values for branch mitigation
df53d4187092 arm64: bpf: Only mitigate cBPF programs loaded by unprivileged users
993f63239c21 arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs
d759395f25ca arm64: spectre: increase parameters that can be used to turn off bhb mitigation individually
fc061c32e327 arm64: proton-pack: Expose whether the branchy loop k value
005f3b7bd378 arm64: proton-pack: Expose whether the platform is mitigated by firmware
3af65d4123fe arm64: insn: Add support for encoding DSB
803228bb5ad9 arm64: insn: add encoders for atomic operations
0fc6db6d17bb arm64: move AARCH64_BREAK_FAULT into insn-def.h
cebd765ba328 Revert "cpufreq: tegra186: Share policy per cluster"
9051e4373dd1 serial: sh-sci: Increment the runtime usage counter for the earlycon device
ee195051be2d ARM: dts: am335x-bone-common: Increase MDIO reset deassert delay to 50ms
1a233520de8c ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
57a00096a11b ARM: dts: am335x-bone-common: Add GPIO PHY reset on revision C3 board
ca3829c18c8d net: atm: fix /proc/net/atm/lec handling
17e156a94e94 net: atm: add lec_mutex
dc724bd34d56 calipso: Fix null-ptr-deref in calipso_req_{set,del}attr().
8595350615f9 tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer
d54e0c077b7c tcp: fix tcp_packet_delayed() for tcp_is_non_sack_preventing_reopen() behavior
1b0ad1870491 atm: atmtcp: Free invalid length skb in atmtcp_c_send().
d8cd847fb862 mpls: Use rcu_dereference_rtnl() in mpls_route_input_rcu().
527fad1ae32f wifi: carl9170: do not ping device which has failed to load firmware
5adc79cfdd21 ptp: fix breakage after ptp_vclock_in_use() rework
b52215848977 net: ice: Perform accurate aRFS flow match
ef0b5bbbed7f aoe: clean device rq_list in aoedev_downdev()
f90220fc4a5f pldmfw: Select CRC32 when PLDMFW is selected
ef3f3face5d0 hwmon: (occ) fix unaligned accesses
a5537ce4a98a hwmon: (occ) Rework attribute registration for stack usage
6e757e3c5728 hwmon: (occ) Add soft minimum power cap attribute
f4999111956a drm/nouveau/bl: increase buffer size to avoid truncate warning
3fc1401476cb drm/msm/dsi/dsi_phy_10nm: Fix missing initial VCO rate
760e9efae70f erofs: remove unused trace event erofs_destroy_inode
a3d864c901a3 mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race
8410996eb6fe mm: hugetlb: independent PMD page table shared count
366298f2b04d mm/hugetlb: unshare page tables during VMA split, not before
37d49f91e523 iio: accel: fxls8962af: Fix temperature calculation
8f5fcf574eed ALSA: hda/realtek: enable headset mic on Latitude 5420 Rugged
639b31e38853 ALSA: hda/intel: Add Thinkpad E15 to PM deny list
a8aec0d35e93 ALSA: usb-audio: Rename ALSA kcontrol PCM and PCM1 for the KTMicro sound card
a4a4abc818de Input: sparcspkr - avoid unannotated fall-through
add2a8e193f3 block: default BLOCK_LEGACY_AUTOLOAD to y
1df80d748f98 HID: usbhid: Eliminate recurrent out-of-bounds bug in usbhid_parse()
287b4f085d2c atm: Revert atm_account_tx() if copy_from_iter_full() fails.
6500f360a435 selinux: fix selinux_xfrm_alloc_user() to set correct ctx_len
06780dbaa929 selftests/x86: Add a test to detect infinite SIGTRAP handler loop
9d83ca27a634 udmabuf: use sgtable-based scatterlist wrappers
3f6e9a24abeb scsi: s390: zfcp: Ensure synchronous unit_add
f65f2291e795 scsi: storvsc: Increase the timeouts to storvsc_timeout
f41c62532877 jffs2: check jffs2_prealloc_raw_node_refs() result in few other places
4adee34098a6 jffs2: check that raw node were preallocated before writing summary
58f664614f8c drivers/rapidio/rio_cm.c: prevent possible heap overwrite
a41f447cb27a Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older
96baba48722b powerpc/eeh: Fix missing PE bridge reconfiguration during VFIO EEH recovery
25375f0d0b6c platform/x86: dell_rbu: Stop overwriting data buffer
07d7b8e7ef7d platform/x86: dell_rbu: Fix list usage
b90dd5b12152 Revert "bus: ti-sysc: Probe for l4_wkup and l4_cfg interconnect devices first"
dd89a7e18c9c tee: Prevent size calculation wraparound on 32-bit kernels
a5cc6ccac4d9 ARM: OMAP2+: Fix l4ls clk domain handling in STANDBY
73f3d6261ac4 bus: fsl-mc: increase MC_CMD_COMPLETION_TIMEOUT_MS value
04584bba3249 watchdog: da9052_wdt: respect TWDMIN
5e615cecf32e octeontx2-pf: Add error log forcn10k_map_unmap_rq_policer()
5badeca146b2 bpf, sockmap: Fix data lost during EAGAIN retries
fecb2fc3fc10 i40e: fix MMIO write access to an invalid page in i40e_clear_hw
cafc3c567e4e sock: Correct error checking condition for (assign|release)_proto_idx()
d34f2384d6df scsi: lpfc: Use memcpy() for BIOS version
eb295874a43c pinctrl: mcp23s08: Reset all pins to input at probe
56ce76e8d406 software node: Correct a OOB check in software_node_get_reference_args()
9d9513b44446 vxlan: Do not treat dst cache initialization errors as fatal
410a033bfa8c net: bridge: mcast: re-implement br_multicast_{enable, disable}_port functions
c9bfb30b75c3 iommu/amd: Ensure GA log notifier callbacks finish running before module unload
7cf3c7bd83ee scsi: lpfc: Fix lpfc_check_sli_ndlp() handling for GEN_REQUEST64 commands
2fc2e9e865cc libbpf: Add identical pointer detection to btf_dedup_is_equiv()
59bbff4eedff clk: rockchip: rk3036: mark ddrphy as critical
d7ef254e7207 wifi: mac80211: do not offer a mesh path if forwarding is disabled
0d4a81c341eb net: mlx4: add SOF_TIMESTAMPING_TX_SOFTWARE flag when getting ts info
4bcc11448b16 pinctrl: armada-37xx: propagate error from armada_37xx_gpio_get()
c871d2b85c57 pinctrl: armada-37xx: propagate error from armada_37xx_pmx_gpio_set_direction()
0245c91f4fdc pinctrl: armada-37xx: propagate error from armada_37xx_gpio_get_direction()
017035aaff2b pinctrl: armada-37xx: propagate error from armada_37xx_pmx_set_by_name()
fbab07112a9e net: atlantic: generate software timestamp just before the doorbell
c1ee5f16757a ipv4/route: Use this_cpu_inc() for stats on PREEMPT_RT
97033659fc83 tcp: fix initial tp->rcvq_space.space value for passive TS enabled flows
a7d4705f60b6 tcp: always seek for minimal rtt in tcp_rcv_rtt_update()
8ce9d65726d5 net: dlink: add synchronization for stats update
ef1b88325c74 i2c: npcm: Add clock toggle recovery
b08e4cebc034 cpufreq: scmi: Skip SCMI devices that aren't used by the CPUs
c0952a626fd9 sctp: Do not wake readers in __sctp_write_space()
70da1f7eb88a wifi: mt76: mt76x2: Add support for LiteOn WN4516R,WN4519R
add1804ea2e0 emulex/benet: correct command version selection in be_cmd_get_stats()
b0e79c9cc207 i2c: designware: Invoke runtime suspend on quick slave re-registration
d99e45521ebb tipc: use kfree_sensitive() for aead cleanup
722e716966c2 net: macb: Check return value of dma_set_mask_and_coherent()
1cf0a6f43399 cpufreq: Force sync policy boost with global boost on sysfs update
ca41c10be569 thermal/drivers/qcom/tsens: Update conditions to strictly evaluate for IP v2+
9a317e436265 pmdomain: ti: Fix STANDBY handling of PER power domain
794b0efb20a8 nios2: force update_mmu_cache on spurious tlb-permission--related pagefaults
febbe1ce4c77 media: i2c: imx334: update mode_3840x2160_regs array
bb97dfab7615 media: platform: exynos4-is: Add hardware sync wait to fimc_is_hw_change_mode()
7a209e4b6b2a media: tc358743: ignore video while HPD is low
ba5026e805cb drm/amdkfd: Set SDMA_RLCx_IB_CNTL/SWITCH_INSIDE_IB
0a51b85b9960 drm/msm/dpu: don't select single flush for active CTL blocks
4a8cb9908b51 jfs: Fix null-ptr-deref in jfs_ioc_trim
258c755b28f6 drm/amdgpu/gfx9: fix CSIB handling
7715a25c8930 drm/amdgpu/gfx8: fix CSIB handling
603c8dd458da ext4: prevent stale extent cache entries caused by concurrent get es_cache
05aba2d316db sunrpc: fix race in cache cleanup causing stale nextcheck time
979408dbd76f media: rkvdec: Initialize the m2m context before the controls
f29503cd7a1e media: ti: cal: Fix wrong goto on error path
44618bee303b jfs: fix array-index-out-of-bounds read in add_missing_indices
e3bb0c5a3071 ext4: ext4: unify EXT4_EX_NOCACHE|NOFAIL flags in ext4_ext_remove_space()
5179d4cf092e drm/amdgpu/gfx7: fix CSIB handling
9cb5da9c83a8 media: uapi: v4l: Change V4L2_TYPE_IS_CAPTURE condition
dc2aa8079d78 media: ccs-pll: Better validate VT PLL branch
b6fa8b7b8a64 drm/amdgpu/gfx10: fix CSIB handling
1db83a0b4f1f media: i2c: imx334: Fix runtime PM handling in remove function
498e95513b5b drm/msm/a6xx: Increase HFI response timeout
6a4d3708dec4 drm/amd/display: Add NULL pointer checks in dm_force_atomic_commit()
bc487c490b75 media: uapi: v4l: Fix V4L2_TYPE_IS_OUTPUT condition
b905b9926ee1 drm/msm/hdmi: add runtime PM calls to DDC transfer function
fce2d5e2b3ce media: i2c: imx334: Enable runtime PM before sub-device registration
bcc8724b34c5 drm/bridge: anx7625: change the gpiod_set_value API
66e84439ec2a exfat: fix double free in delayed_free
3742e777735a drm/bridge: analogix_dp: Add irq flag IRQF_NO_AUTOEN instead of calling disable_irq()
fbee3fe40ca2 sunrpc: update nextcheck time when adding new cache entries
767e4d5300ea drm/amdgpu/gfx6: fix CSIB handling
767af6fc3787 ACPI: battery: negate current when discharging
abd7d5fb3394 PM: runtime: fix denying of auto suspend in pm_suspend_timer_fn()
82608027b6e7 ASoC: tegra210_ahub: Add check to of_device_get_match_data()
64cc1a4a4440 ACPICA: utilities: Fix overflow check in vsnprintf()
6336d96ae88f power: supply: bq27xxx: Retrieve again when busy
960236150cd3 ACPICA: fix acpi parse and parseext cache leaks
49047b184f2b ACPI: bus: Bail out if acpi_kobj registration fails
15fa571eedf1 ASoC: tas2770: Power cycle amp on ISENSE/VSENSE change
6448774d5889 ACPICA: Avoid sequence overread in call to strncmp()
106a648780bf clocksource: Fix the CPUs' choice in the watchdog per CPU verification
5a68893b594e ACPICA: fix acpi operand cache leak in dswstate.c
bf68c0f4c75f iio: adc: ad7606_spi: fix reg write value mask
4b2fac04ed6f iio: imu: inv_icm42600: Fix temperature calculation
e401d55901a8 iio: accel: fxls8962af: Fix temperature scan element sign
fe551adf4bd3 PCI: dw-rockchip: Fix PHY function call sequence in rockchip_pcie_phy_deinit()
ff1283be679c PCI: Fix lock symmetry in pci_slot_unlock()
a040e7effbb6 PCI: Add ACS quirk for Loongson PCIe
2fd7537ffd9c PCI: cadence-ep: Correct PBA offset in .set_msix() callback
8ec133fb054a uio_hv_generic: Use correct size for interrupt and monitor pages
3562c09feeb8 remoteproc: core: Release rproc->clean_table after rproc_attach() fails
c56d6ef2711e remoteproc: core: Cleanup acquired resources when rproc_handle_resources() fails in rproc_attach()
fbf3da023bd2 regulator: max14577: Add error check for max14577_read_reg()
5155f04287e5 mips: Add -std= flag specified in KBUILD_CFLAGS to vdso CFLAGS
2ec9fda98d1a staging: iio: ad5933: Correct settling cycles encoding per datasheet
9da3e442714f net: ch9200: fix uninitialised access during mii_nway_restart
6805582abb72 ftrace: Fix UAF when lookup kallsym after ftrace disabled
445e7055a68d dm-mirror: fix a tiny race condition
ee3639385312 mtd: nand: sunxi: Add randomizer configuration before randomizer enable
45413b242513 mtd: rawnand: sunxi: Add randomizer configuration in sunxi_nfc_hw_ecc_write_chunk
6fe586c14d8f mm: fix ratelimit_pages update error in dirty_ratio_handler()
3b4a50d733ac RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction
74bc813d11c3 ipc: fix to protect IPCS lookups using RCU
b0dba0c78323 clk: meson-g12a: add missing fclk_div2 to spicc
1fd94aa3fff0 parisc: fix building with gcc-15
bf9c07864765 vgacon: Add check for vc_origin address range in vgacon_scroll()
1a10d91766eb fbdev: Fix fb_set_var to prevent null-ptr-deref in fb_videomode_to_var
1ee9bab20949 EDAC/altera: Use correct write width with the INTTEST register
ac6992f72bd8 NFC: nci: uart: Set tty->disc_data only in success path
38ef48a8afef f2fs: fix to do sanity check on sit_bitmap_size
fbfe8446cd32 f2fs: prevent kernel warning due to negative i_nlink from corrupted image
e5a2481dc2a0 Input: ims-pcu - check record size in ims_pcu_flash_firmware()
a597a609bfd4 ext4: ensure i_size is smaller than maxbytes
9004a1cc5cfc ext4: factor out ext4_get_maxbytes()
c6187eb191a2 ext4: fix calculation of credits for extent tree modification
9d1d1c5bf4fc ext4: inline: fix len overflow in ext4_prepare_inline_data
01cf92dfced5 bus: fsl-mc: fix GET/SET_TAILDROP command ids
0997566153bd bus: fsl-mc: do not add a device-link for the UAPI used DPMCP device
7fc89c218fc9 ata: pata_via: Force PIO for ATAPI devices on VT6415/VT6330
312c121beb9c can: tcan4x5x: fix power regulator retrieval during probe
516fdd430171 bus: mhi: host: Fix conflict between power_up and SYSERR
0e8878685902 ARM: omap: pmic-cpcap: do not mess around without CPCAP or OMAP4
22441bf144ad ARM: 9447/1: arm/memremap: fix arch_memremap_can_ram_remap()
b592691f650c media: uvcvideo: Fix deferred probing error
739359516f96 media: uvcvideo: Send control events for partial succeeds
e1019ff183fb media: uvcvideo: Return the number of processed controls
89b5ab822bf6 media: vivid: Change the siize of the composing
7e62be1f3b24 media: vidtv: Terminating the subsequent process of initialization failure
230c37b5948d media: videobuf2: use sgtable-based scatterlist wrappers
42f3fdd39fbd media: venus: Fix probe error handling
8b451a9a46f2 media: v4l2-dev: fix error handling in __video_register_device()
a4c47df59539 media: gspca: Add error handling for stv06xx_read_sensor()
41807a5f6742 media: cxusb: no longer judge rbuf when the write fails
6f79b25ddfe9 media: ccs-pll: Check for too high VT PLL multiplier in dual PLL case
0220fe256b44 media: ccs-pll: Correct the upper limit of maximum op_pre_pll_clk_div
64f7f8c362ab media: ccs-pll: Start OP pre-PLL multiplier search from correct value
fe52765d1c90 media: ccs-pll: Start VT pre-PLL multiplier search from correct value
7fce1722991d media: ov8856: suppress probe deferral errors
55fed78e52fe wifi: rtlwifi: disable ASPM for RTL8723BE with subsystem ID 11ad:1723
43d5e3bb5f1d jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata()
0fccf5f01ed2 nfsd: Initialize ssc before laundromat_work to prevent NULL dereference
425efc6b3292 nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request
1f7f8168abe8 wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback()
8d5510e94dab net/mlx5: Add error handling in mlx5_query_nic_vport_node_guid()
ea4b1cb6561e net/mlx5_core: Add error handling inmlx5_query_nic_vport_qkey_viol_cntr()
b0e86598e073 powerpc/pseries/msi: Avoid reading PCI device registers in reduced power states
2023dea8dd9b ASoC: meson: meson-card-utils: use of_property_present() for DT parsing
190dcc1e3f6b ASoC: qcom: sdm845: Add error handling in sdm845_slim_snd_hw_params()
5a16ebe0050e gfs2: move msleep to sleepable context
e4da95e1246f crypto: marvell/cesa - Do not chain submitted requests
8cb51a55b26e configfs: Do not override creating attribute file failure in populate_attrs()
4ad892bdacb6 xfs: allow inode inactivation during a ro mount log recovery
7eac413a3ea3 kbuild: hdrcheck: fix cross build with clang
1b8763684529 kbuild: userprogs: fix bitsize and target detection on clang
117ea3f4e59c drm/meson: Use 1000ULL when operating with mode->clock
56e5419b5f5c net: usb: aqc111: debug info before sanitation
3f77ba79a36d calipso: unlock rcu before returning -EAFNOSUPPORT
2dace5e016c9 x86/iopl: Cure TIF_IO_BITMAP inconsistencies
2a04a591170f xen/arm: call uaccess_ttbr0_enable for dm_op hypercall
e67c0dac405a usb: typec: tcpm/tcpci_maxim: Fix bounds check in process_rx()
8bc30532b978 usb: Flush altsetting 0 endpoints before reinitializating them after reset.
f78b3fdd2c7f usb: cdnsp: Fix issue with detecting USB 3.2 speed
8c65ca53c2e6 usb: cdnsp: Fix issue with detecting command completion event
b4209e4b778e VMCI: fix race between vmci_host_setup_notify and vmci_ctx_unset_notify
6d929bef6bda usb: usbtmc: Fix read_stb function and get_stb ioctl
4751118c3ed8 drm/amd/display: Do not add '-mhard-float' to dcn2{1,0}_resource.o for clang
510ce6a1393c kbuild: Add KBUILD_CPPFLAGS to as-option invocation
0690824cc325 kbuild: add $(CLANG_FLAGS) to KBUILD_CPPFLAGS
f85d6a08cc9f kbuild: Add CLANG_FLAGS to as-instr
d36719f29376 mips: Include KBUILD_CPPFLAGS in CHECKFLAGS invocation
d08146795689 drm/amd/display: Do not add '-mhard-float' to dml_ccflags for clang
cefb372db498 kbuild: Update assembler calls to use proper flags and language target
3b68784d1439 MIPS: Prefer cc-option for additions to cflags
3ef47d2b7a41 MIPS: Move '-Wa,-msoft-float' check from as-option to cc-option
aaf384815bc1 x86/boot/compressed: prefer cc-option for CFLAGS additions
2f3daa04a932 posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()
c8c4f0c2684a ALSA: usb-audio: Add implicit feedback quirk for RODE AI-1
4a07125cc40d perf: Ensure bpf_perf_link path is properly serialized
929d62e86f0c nvmet-fcloop: access fcpreq only when holding reqlock
64007aab1cf6 fs/filesystems: Fix potential unsigned integer underflow in fs_name()
0b479d0aa488 net_sched: ets: fix a race in ets_qdisc_change()
52247723c300 sch_ets: make est_qlen_notify() idempotent
852d27f773a7 net_sched: tbf: fix a race in tbf_change()
110a47efcf23 net_sched: red: fix a race in __red_change()
20f68e6a9e41 net_sched: prio: fix a race in prio_tune()
dc84c55f121d net/mlx5: Fix return value when searching for existing flow group
7ec31c2003f9 net/mlx5: Ensure fw pages are always allocated on same NUMA
014ad9210373 net/mdiobus: Fix potential out-of-bounds read/write access
694456462ed6 net: mdio: C22 is now optional, EOPNOTSUPP if not provided
268625b73e4c macsec: MACsec SCI assignment for ES = 0
6fa68d7eab34 net: Fix TOCTOU issue in sk_is_readable()
15e46043bc46 i40e: retry VFLR handling if there is ongoing VF reset
5008c550c634 i40e: return false from i40e_reset_vf if reset is in progress
597b481ca1ce drm/meson: fix more rounding issues with 59.94Hz modes
bd27ff504e4d drm/meson: use vclk_freq instead of pixel_freq in debug print
f5d21eae4d7c drm/meson: fix debug log statement when setting the HDMI clocks
363e63997798 drm/meson: use unsigned long long / Hz for frequency types
7298df96179b powerpc/vas: Return -EINVAL if the offset is non-zero in mmap()
81260c41b518 powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap
5814a7fc3abb net_sched: sch_sfq: fix a potential crash on gso_skb handling
75ad1ca646ee scsi: iscsi: Fix incorrect error path labels for flashnode operations
5c89dc8c3461 ath10k: snoc: fix unbalanced IRQ enable in crash recovery
5d217e7031a5 ptp: remove ptp->n_vclocks check logic in ptp_vclock_in_use()
f592eb12b43f scsi: core: ufs: Fix a hang in the error handler
5f30a81fc188 serial: sh-sci: Clean sci_ports[0] after at earlycon exit
b7f05abd60f0 serial: sh-sci: Move runtime PM enable to sci_probe_single()
7857505af578 serial: sh-sci: Check if TX data was written to device in .tx_empty()
e82d6c45db4f arm64: dts: ti: k3-am65-main: Add missing taps to sdhci0
c3b4bc986af5 arm64: dts: ti: k3-am65-main: Fix sdhci node properties
29f0cd61d6b5 arm64: dts: ti: k3-am65-main: Drop deprecated ti,otap-del-sel property
f3c2b179b413 Input: synaptics-rmi - fix crash with unsupported versions of F34
17e5ca8ef81c Input: synaptics-rmi4 - convert to use sysfs_emit() APIs
ef0c767a559b pmdomain: core: Fix error checking in genpd_dev_pm_attach_by_id()
432a171d6005 do_change_type(): refuse to operate on unmounted/not ours mounts
eb34dc108e3e fix propagation graph breakage by MOVE_MOUNT_SET_GROUP move_mount(2)
668923c47460 seg6: Fix validation of nexthop addresses
18e65229a328 wireguard: device: enable threaded NAPI
b5ad58285f92 netfilter: nf_set_pipapo_avx2: fix initial map fill
ae98a1787fdc gve: add missing NULL check for gve_alloc_pending_packet() in TX DQO
277006dd681e PM: sleep: Fix power.is_suspended cleanup for direct-complete devices
61f418cd4ea5 vmxnet3: correctly report gso type for UDP tunnels
6ef8dfb1b68f net: dsa: tag_brcm: legacy: fix pskb_may_pull length
d94c6f53b0a7 ice: create new Tx scheduler nodes for new queues only
96bc5ce57b16 Bluetooth: L2CAP: Fix not responding with L2CAP_CR_LE_ENCRYPTION
02f56169e6eb spi: bcm63xx-hsspi: fix shared reset
bb9c9e989a80 spi: bcm63xx-spi: fix shared reset
417e17c44f3d net/mlx4_en: Prevent potential integer overflow calculating Hz
605f09ae583e driver: net: ethernet: mtk_star_emac: fix suspend/resume issue
e0b11227c4e8 net: tipc: fix refcount warning in tipc_aead_encrypt
54e7ce239d69 gve: Fix RX_BUFFERS_POSTED stat to report per-queue fill_cnt
28dd08343cc5 net: stmmac: platform: guarantee uniqueness of bus_id
dae5b8818593 vt: remove VT_RESIZE and VT_RESIZEX from vt_compat_ioctl()
38c5712df50d MIPS: Loongson64: Add missing '#interrupt-cells' for loongson64c_ls7a
2659abc74cb3 iio: adc: ad7124: Fix 3dB filter frequency reading
19fd9f5a6936 serial: Fix potential null-ptr-deref in mlb_usio_probe()
0a1e16a6cbf4 usb: renesas_usbhs: Reorder clock handling and power management in probe
6c1344a5bb1c PCI/DPC: Initialize aer_err_info before using it
9f133e04c622 dmaengine: ti: Add NULL check in udma_probe()
3e7061f62bd7 PCI: cadence: Fix runtime atomic count underflow
19f0d83e1450 rtc: sh: assign correct interrupts with DT
92270f14a8c1 nfs: ignore SB_RDONLY when remounting nfs
3293cc462518 nfs: clear SB_RDONLY before getting superblock
477c4882e53e perf record: Fix incorrect --user-regs comments
00b96ed79bce perf tests switch-tracking: Fix timestamp comparison
f93ea1e5e185 mfd: stmpe-spi: Correct the name used in MODULE_DEVICE_TABLE
f79f8d8dda3a mfd: exynos-lpass: Avoid calling exynos_lpass_disable() twice in exynos_lpass_remove()
e009779acc04 rpmsg: qcom_smd: Fix uninitialized return variable in __qcom_smd_send()
e8461ec67a36 remoteproc: qcom_wcnss_iris: Add missing put_device() on error in probe
8d39a6fd9843 perf scripts python: exported-sql-viewer.py: Fix pattern matching with Python 3
9d06ac32c202 backlight: pm8941: Add NULL check in wled_configure()
07a4014cc66b perf ui browser hists: Set actions->thread before calling do_zoom_thread()
c6dbaf7e31cb perf build: Warn when libdebuginfod devel files are not available
2d63433e8eaa fbdev: core: fbcvt: avoid division by 0 in fb_cvt_hperiod()
1fd889c14572 soc: aspeed: Add NULL check in aspeed_lpc_enable_snoop()
0fab016dc4aa soc: aspeed: lpc: Fix impossible judgment condition
3a2249e91547 arm64: dts: rockchip: disable unrouted USB controllers and PHY on RK3399 Puma with Haikou
26e868438691 ARM: dts: qcom: apq8064 merge hw splinlock into corresponding syscon device
7002b954c4a8 bus: fsl-mc: fix double-free on mc_dev
1ce784ddfb31 nilfs2: do not propagate ENOENT error from nilfs_btree_propagate()
c155d46ff02c nilfs2: add pointer check for nilfs_direct_propagate()
1a955db41131 ocfs2: fix possible memory leak in ocfs2_finish_quota_recovery
5c51aa862cbe Squashfs: check return result of sb_min_blocksize
ca87e905ff3c arm64: dts: imx8mn-beacon: Fix RTC capacitive load
485f23661881 arm64: dts: imx8mm-beacon: Fix RTC capacitive load
d274c1372926 ARM: dts: at91: at91sam9263: fix NAND chip selects
dac5dfede03f ARM: dts: at91: usb_a9263: fix GPIO for Dataflash chip select
8636cafb2c67 f2fs: fix to correct check conditions in f2fs_cross_rename
e61079985c54 f2fs: use d_inode(dentry) cleanup dentry->d_inode
92dd2d870e7b net: phy: mscc: Stop clearing the the UDPv4 checksum for L2 frames
ad17eb86d042 net: openvswitch: Fix the dead loop of MPLS parse
26ce90f1ce60 calipso: Don't call calipso functions for AF_INET sk.
7d589b470f39 net: lan743x: rename lan743x_reset_phy to lan743x_hw_reset_phy
e7fb4ebee6e9 bpf: Avoid __bpf_prog_ret0_warn when jit fails
f398d2dfe450 net: usb: aqc111: fix error handling of usbnet read calls
42a44e25eee4 netfilter: nft_tunnel: fix geneve_opt dump
4edb40b05cb6 bpf, sockmap: Avoid using sk_socket after free when sending
d796723b1481 vfio/type1: Fix error unwind in migration dirty bitmap allocation
83c1ed5c83ca netfilter: nf_tables: nft_fib_ipv6: fix VRF ipv4/ipv6 result discrepancy
7ee3fb6258da wifi: ath9k_htc: Abort software beacon handling if disabled
1ee8ea6937d1 wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds
7f9efa13f2af s390/bpf: Store backchain even for leaf progs
2b901bf2fa23 clk: qcom: gcc-msm8939: Fix mclk0 & mclk1 for 24 MHz
ee90be48edb3 bpf: Fix WARN() in get_bpf_raw_tp_regs
2ecafe59668d pinctrl: at91: Fix possible out-of-boundary access
12cda7fcc4cf libbpf: Use proper errno value in nlattr
2fef0e86682f ktls, sockmap: Fix missing uncharge operation
54ce9bcdaee5 clk: bcm: rpi: Add NULL check in raspberrypi_clk_register()
c22099a64880 clk: qcom: gcc-sm6350: Add *_wait_val values for GDSCs
9c5268e5d633 bpf: Fix uninitialized values in BPF_{CORE,PROBE}_READ
f9784da76ad7 RDMA/mlx5: Fix error flow upon firmware failure for RQ destruction
e9022196bdbe netfilter: nft_quota: match correctly when the quota just depleted
ba18b0b9272f netfilter: bridge: Move specific fragmented packet to slow_path instead of dropping it
c6c7e7ab962b libbpf: Use proper errno value in linker
a6412e93cf4a f2fs: fix to detect gcing page in f2fs_is_cp_guaranteed()
ce6849b76dad f2fs: clean up w/ fscrypt_is_bounce_page()
65b935d4e5c4 iommu: Protect against overflow in iommu_pgsize()
5c3e52ab7887 RDMA/hns: Include hnae3.h in hns_roce_hw_v2.h
f1ba4e35fb3f wifi: rtw88: do not ignore hardware read error during DPK
6dfe62db59f3 libbpf: Fix buffer overflow in bpf_object__init_prog
f4b0ce074bd6 net: ncsi: Fix GCPS 64-bit member variables
6a324d77f7ea f2fs: fix to do sanity check on sbi->total_valid_block_count
d6181bd1dfa1 bpf, sockmap: fix duplicated data transmission
2160dcc38acf IB/cm: use rwlock for MAD agent lock
f9507cf2dd0e wifi: ath11k: fix node corruption in ar->arvifs list
e74b9a7269aa firmware: SDEI: Allow sdei initialization without ACPI_APEI_GHES
809b522315a0 drm/tegra: rgb: Fix the unbound reference count
afc9153b1e57 drm/vkms: Adjust vkms_state->active_planes allocation type
58d0e3088812 drm: rcar-du: Fix memory leak in rcar_du_vsps_init()
39044a10d912 selftests/seccomp: fix syscall_restart test for arm compat
7287af1ec4d3 firmware: psci: Fix refcount leak in psci_dt_init
1b6780143d59 m68k: mac: Fix macintosh_config for Mac II
5390b3d4c6d4 fs/ntfs3: handle hdr_first_de() return value
892a242ca5b1 media: rkvdec: Fix frame size enumeration
85cdcb834fb4 drm/amd/pp: Fix potential NULL pointer dereference in atomctrl_initialize_mc_reg_table
259b74c2b329 spi: sh-msiof: Fix maximum DMA transfer size
cfc61c34077e ACPI: OSI: Stop advertising support for "3.0 _SCP Extensions"
92322500c1aa x86/mtrr: Check if fixed-range MTRRs exist in mtrr_save_fixed_ranges()
3319b48d1ba2 PM: wakeup: Delete space in the end of string shown by pm_show_wakelocks()
b227c27359a0 power: reset: at91-reset: Optimize at91_reset()
bf6a8502a5f4 EDAC/skx_common: Fix general protection fault
03657814c828 crypto: sun8i-ce - move fallback ahash_request to the end of the struct
02b661940874 crypto: xts - Only add ecb if it is not already there
200b752c0066 crypto: lrw - Only add ecb if it is not already there
9bacddcf6886 crypto: marvell/cesa - Avoid empty transfer descriptor
e1cc69da6195 crypto: marvell/cesa - Handle zero-length skcipher requests
c798023fa973 x86/cpu: Sanitize CPUID(0x80000000) output
ada335e8475d crypto: sun8i-ss - do not use sg_dma_len before calling DMA functions
fb2671376bbf perf/core: Fix broken throttling when max_samples_per_tick=1
333f2d85b615 gfs2: gfs2_create_inode error handling fix
2f62eda4d974 thunderbolt: Do not double dequeue a configuration request
2e74fd21b845 usb: usbtmc: Fix timeout value in get_stb
547f3e678922 USB: serial: pl2303: add new chip PL2303GC-Q20 and PL2303GT-2AB
3f1aac91fc36 usb: storage: Ignore UAS driver for SanDisk 3.2 Gen2 storage device
cfd327ad2e00 usb: quirks: Add NO_LPM quirk for SanDisk Extreme 55AE
0188c74bf3ac rtc: Fix offset calculation for .start_secs < 0
c360f8ff1bef rtc: Make rtc_time64_to_tm() support dates before 1970
6df0e243e757 acpi-cpufreq: Fix nominal_freq units to KHz in get_max_boost_ratio()
e0a83d422a18 pinctrl: armada-37xx: set GPIO output value before setting direction
bb9578e9f35f pinctrl: armada-37xx: use correct OUTPUT_VAL register for GPIOs > 31
ebf6f96c7993 tracing: Fix compilation warning on arm32
1c700860e8bc Linux 5.15.185
dcbee1061a46 perf/arm-cmn: Initialise cmn->cpu earlier
dcb08fd2c6cb platform/x86: thinkpad_acpi: Ignore battery threshold change event notification
dbc155cf4e70 platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys
961caaf8ad35 tpm: tis: Double the timeout B to 4s
1706ef825254 nvme-pci: add NVME_QUIRK_NO_DEEPEST_PS quirk for SOLIDIGM P44 Pro
128b5f020651 spi: spi-sun4i: fix early activation
4916624695c0 um: let 'make clean' properly clean underlying SUBARCH as well
13108bf19da5 platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS
49c13288c919 nfs: don't share pNFS DS connections between net namespaces
5c46ec760d3b HID: quirks: Add ADATA XPG alpha wireless mouse support
1686594d7285 coredump: hand a pidfd to the usermode coredump helper
5ff7313a1f45 fork: use pidfd_prepare()
7f8c3fd203fd pid: add pidfd_prepare()
b06450fb3e73 coredump: fix error handling for replace_fd()
2c928b3a0b04 net_sched: hfsc: Address reentrant enqueue adding class to eltree twice
cc6790f4b085 arm64: dts: qcom: sm8350: Fix typo in pil_camera_mem node
9fdb86f0bf65 smb: client: Reset all search buffer pointers when releasing buffer
1b197931fbc8 smb: client: Fix use-after-free in cifs_fill_dirent
5492aaea844e x86/its: Fix undefined reference to cpu_wants_rethunk_at()
8f8637b9d26d drm/i915/gvt: fix unterminated-string-initialization warning
3c2729dfcf30 xen/swiotlb: relax alignment requirements
34901631e6e3 i3c: master: svc: Fix implicit fallthrough in svc_i3c_master_ibi_work()
9d678b2976ec kbuild: Disable -Wdefault-const-init-unsafe
0e0cf836cfe4 spi: spi-fsl-dspi: Reset SR flags before sending a new message
a3a147ef6d02 spi: spi-fsl-dspi: Halt the module after a new message transfer
0e989441cfbc spi: spi-fsl-dspi: restrict register range for regmap access
6fd4a4cb3ca1 Revert "arm64: dts: allwinner: h6: Use RSB for AXP805 PMIC connection"
c6da28bc4e1f mm/page_alloc.c: avoid infinite retries caused by cpuset race
5dcdbb69aa3a memcg: always call cond_resched() after fn()
ff887e77b777 Revert "drm/amd: Keep display off while going into S4"
26d20ea0f233 drm/edid: fixed the bug that hdr metadata was not reset
fb7cde625872 platform/x86: dell-wmi-sysman: Avoid buffer overflow in current_password_store()
0f5d93ee3f8b llc: fix data loss when reading from a socket in llc_ui_recvmsg()
10217da9644a ALSA: pcm: Fix race of buffer access at PCM OSS layer
0622846db728 can: bcm: add missing rcu read protection for procfs content
fbd8fdc2b218 can: bcm: add locking for bcm_op runtime updates
1a426abdf1c8 padata: do not leak refcount in reorder_work
c3059d58f79f crypto: algif_hash - fix double free in hash_accept
24f942d9820b octeontx2-af: Set LMT_ENA bit for APR table entries
f5c2c4eaaa5a net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done
89c301e929a0 sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()
207dabae49b2 net: dwmac-sun8i: Use parsed internal PHY address instead of 1
ec180b032459 bridge: netfilter: Fix forwarding of fragmented packets
069cbc318de5 Bluetooth: L2CAP: Fix not checking l2cap_chan security level
0995986ffd5e xfrm: Sanitize marks before insert
6a39058059f6 remoteproc: qcom_wcnss: Fix on platforms without fallback regulators
f6d45fd92f62 __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock
769dd92ef97e xenbus: Allow PVH dom0 a non-local xenstore
a876703894a6 btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref
fc01b547c3f8 nvmet-tcp: don't restore null sk_state_change
7bd0049e9699 ALSA: hda/realtek: Add quirk for HP Spectre x360 15-df1xxx
e3bf273d9ad7 ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013
2568cf939a64 pinctrl: meson: define the pull up/down resistor value as 60 kOhm
64ca70dee2cc ASoC: imx-card: Adjust over allocation of memory in imx_card_parse_of()
39db9b5a1673 drm: Add valid clones check
85a8dfc77227 drm/atomic: clarify the rules around drm_atomic_state->allow_modeset
a0d2f4905b16 wifi: ath9k: return by of_get_mac_address
8d278ad829c2 regulator: ad5398: Add device tree support
8ed3d1784774 spi: zynqmp-gqspi: Always acknowledge interrupts
d2c65c8be7a1 wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate
3b61fb788954 perf/amd/ibs: Fix perf_ibs_op.cnt_mask for CurCnt
15c799f7f8e1 bpftool: Fix readlink usage in get_fd_type
164beeabcb1b drm/ast: Find VBIOS mode from regular display size
d6fd1eee0767 HID: usbkbd: Fix the bit shift number for LED_KANA
2c6387f545be scsi: st: Restore some drive settings after reset
7e25573e1ac5 scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine
1f66789ad7de net/mana: fix warning in the writer of client oob
39ea4ca9d39a rcu: fix header guard for rcu_all_qs()
b4d9a18fc87f rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y
41097ac64d0d r8169: don't scan PHY addresses > 0
e033da39fc6a vxlan: Annotate FDB data races
4d20b4a861af media: qcom: camss: csid: Only add TPG v4l2 ctrl if TPG hardware is available
eae500bc8dcc hwmon: (xgene-hwmon) use appropriate type for the latency value
7b99233dda9b clk: qcom: camcc-sm8250: Use clk_rcg2_shared_ops for some RCGs
3373abfa5d29 wifi: rtw88: Fix download_firmware_validate() for RTL8814AU
c47f92ee6cfb r8152: add vendor/device ID pair for Dell Alienware AW1022z
14298c88e2dd ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure().
4d87acf13f28 arch/powerpc/perf: Check the instruction type before creating sample with perf_mem_data_src
711734c77fe4 wifi: mac80211: remove misplaced drv_mgd_complete_tx() call
11ab6d6ee7d8 wifi: mac80211: don't unconditionally call drv_mgd_complete_tx()
e42329d27770 net/mlx5e: reduce rep rxq depth to 256 for ECPF
a411de3091f6 net/mlx5e: set the tx_queue_len for pfifo_fast
c74b91453b8c net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB
99b713f4b7df drm/amd/display: Initial psr_version with correct setting
cc958022666c drm/amdgpu: reset psp->cmd to NULL after releasing the buffer
c48f7855988f phy: core: don't require set_mode() callback for phy_get_mode() to work
c8128c04193b net/mlx4_core: Avoid impossible mlx4_db_alloc() order value
485dc9ef39f7 media: v4l: Memset argument to 0 before calling get_mbus_config pad op
b4e81a758035 smack: recognize ipv4 CIPSO w/o categories
8de1d394e31e pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map
b45a50fc1f4e ASoC: soc-dai: check return value at snd_soc_dai_set_tdm_slot()
d95e6cf0df39 ASoC: tas2764: Power up/down amp on mute ops
c1f0a98342d4 ASoC: ops: Enforce platform maximum on initial value
d5db6ffb03fa net/mlx5: Apply rate-limiting to high temperature warning
937b9c41cc71 net/mlx5: Modify LSB bitmask in temperature event to include only the first bit
5611b5f79836 ACPI: HED: Always initialize before evged
94afbd920a51 PCI: Fix old_size lower bound in calculate_iosize() too
af8431851b8e eth: mlx4: don't try to complete XDP frames in netpoll
30064eee8fe7 can: c_can: Use of_property_present() to test existence of DT property
fc173cada345 RDMA/core: Fix best page size finding when it can cross SG entries
288813ddcc21 EDAC/ie31200: work around false positive build warning
128cdb617a87 net: pktgen: fix access outside of user given buffer in pktgen_thread_write()
b2334244a421 wifi: rtw88: Fix rtw_desc_to_mcsrate() to handle MCS16-31
211539ee8d46 wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU
94ba815f5110 wifi: rtw88: Fix rtw_init_vht_cap() for RTL8814AU
f0b5f65aebcc scsi: mpt3sas: Send a diag reset if target reset fails
85cd3f245c15 clocksource: mips-gic-timer: Enable counter when CPUs start
51d70446278a MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core
6fd978a7117e MIPS: Use arch specific syscall name match function
9a3f2d08291b x86/kaslr: Reduce KASLR entropy on most x86 systems
17cf6821b758 libbpf: Fix out-of-bound read
14790abc8779 cpuidle: menu: Avoid discarding useful information
2579ca741b84 x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus()
5eb9da3b7d2e drm/amd/display: handle max_downscale_src_width fail check
eee2fb58449f x86/build: Fix broken copy command in genimage.sh when making isoimage
db5833217f13 soc: ti: k3-socinfo: Do not use syscon helper to build regmap
32de1542f467 bonding: report duplicate MAC address in all situations
5fe40d499f50 net: xgene-v2: remove incorrect ACPI_PTR annotation
cfc5a07f9330 drm/amdkfd: KFD release_work possible circular locking
2e04e067d4d6 selftests/net: have `gro.sh -t` return a correct exit code
2c48a122fa0a net/mlx5: Avoid report two health errors on same syndrome
97bab02f0b64 firmware: arm_ffa: Set dma_mask for ffa devices
f5b5945c0bf2 PCI: brcmstb: Add a softdep to MIP MSI-X driver
ee8274d80151 PCI: brcmstb: Expand inbound window size up to 64GB
0a9022295477 fpga: altera-cvp: Increase credit timeout
55883a34d309 drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence
b5c0bd07a48f ARM: at91: pm: fix at91_suspend_finish for ZQ calibration
e62a64a000ba hwmon: (gpio-fan) Add missing mutex locks
4fc2d289b3cc x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2
c953cea9035c clk: imx8mp: inform CCF of maximum frequency of clocks
1bd5406866d0 media: uvcvideo: Add sanity check to uvc_ioctl_xu_ctrl_map
e88247716dd7 ipv4: fib: Move fib_valid_key_len() to rtm_to_fib_config().
674b969287f4 net: pktgen: fix mpls maximum labels list parsing
c3a1354b631d net: ethernet: ti: cpsw_new: populate netdev of_node
b91a5652610b pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned"
c91447e35b9b media: cx231xx: set device_caps for 417
fb26963bd247 drm/amdgpu: Do not program AGP BAR regs under SRIOV in gfxhub_v1_0.c
654c295f9079 remoteproc: qcom_wcnss: Handle platforms with only single power domain
5111227d7f1f orangefs: Do not truncate file size
025c8f477625 dm cache: prevent BUG_ON by blocking retries on failed device resumes
246346230486 media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe()
5753a20bf23c ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114
8f12fab5a765 ieee802154: ca8210: Use proper setters and getters for bitwise types
cc29d05861d0 rtc: ds1307: stop disabling alarms on probe
f7dd2a729049 tcp: bring back NUMA dispersion in inet_ehash_locks_alloc()
5cb296e94210 powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7
d3bb3258d105 arm64: tegra: p2597: Fix gpio for vdd-1v8-dis regulator
4b173bb2c466 crypto: lzo - Fix compression buffer overrun
2592aeda794c cpufreq: tegra186: Share policy per cluster
f6535bc6556d ASoC: qcom: sm8250: explicitly set format in sm8250_be_hw_params_fixup()
bc23966b90d9 auxdisplay: charlcd: Partially revert "Move hwidth and bwidth to struct hd44780_common"
2b572c409811 ipv6: save dontfrag in cork
1acb22d09f5c mmc: sdhci: Disable SD card clock before changing parameters
8d52676f791d arm64/mm: Check PUD_TYPE_TABLE in pud_bad()
066675bb11ab netfilter: conntrack: Bound nf_conntrack sysctl writes
3695ade72a9b timer_list: Don't use %pK through printk()
1351995ba665 posix-timers: Add cond_resched() to posix_timer_add() search loop
1a8df82d201e RDMA/uverbs: Propagate errors from rdma_lookup_get_uobject()
7258b92ceff3 xen: Add support for XenServer 6.1 platform device
8dbcb21f0926 dm: restrict dm device size to 2^63-512 bytes
91628988aca3 crypto: octeontx2 - suppress auth failure screaming due to negative tests
49a99ccec1c8 kbuild: fix argument parsing in scripts/config
ac8fbc318cec ASoC: mediatek: mt6359: Add stub for mt6359_accdet_enable_jack_detect
317615342d2a rtc: rv3032: fix EERD location
fe5a5b9d1441 tcp: reorganize tcp_in_ack_event() and tcp_count_delivered()
fa7183cc13dd vfio/pci: Handle INTx IRQ_NOTCONNECTED
8f070ca005e4 scsi: st: ERASE does not change tape location
84e7b679f8d6 scsi: st: Tighten the page format heuristics with MODE SELECT
db03d5b2db5c ext4: reorder capability check last
1ad3d069cf4d um: Update min_low_pfn to match changes in uml_reserved
3eac35c34a98 um: Store full CSGSFS and SS register from mcontext
fdcd142d310c dlm: make tcp still work in multi-link env
30748ce7e156 i3c: master: svc: Fix missing STOP for master request
ce8d1993b122 btrfs: send: return -ENAMETOOLONG when attempting a path that is too long
0175d448b2f8 btrfs: get zone unusable bytes while holding lock at btrfs_reclaim_bgs_work()
23a2379b0dd9 btrfs: avoid linker error in btrfs_find_create_tree_block()
e98cb12ba84d btrfs: make btrfs_discard_workfn() block_group ref explicit
74314f8937ea i2c: pxa: fix call balance of i2c->clk handling routines
d18963f219b3 i2c: qup: Vote for interconnect bandwidth to DRAM
7887df0fe9ec wifi: mt76: only mark tx-status-failed frames as ACKed on mt76x0/2
4b62412e985c mmc: host: Wait for Vdd to settle on card power off
f49c337037df libnvdimm/labels: Fix divide error in nd_label_data_init()
c7af649198dc PCI: vmd: Disable MSI remapping bypass under Xen
18282d8518bf pNFS/flexfiles: Report ENETDOWN as a connection error
0ea65822090b tools/build: Don't pass test log files to linker
11c24ad1ffde PCI: dwc: ep: Ensure proper iteration over outbound map windows
ed30141557d1 lockdep: Fix wait context check on softirq for PREEMPT_RT
0a474eaf3574 dql: Fix dql->limit value when reset.
897a205ffc43 thermal/drivers/qoriq: Power down TMU on system suspend
2328a3bf513c SUNRPC: rpcbind should never reset the port to the value '0'
8a72549eaf12 SUNRPC: rpc_clnt_set_transport() must not change the autobind setting
01d50dfae8e9 NFSv4: Treat ENETUNREACH errors as fatal for state recovery
552baa350a2f fbdev: core: tileblit: Implement missing margin clearing for tileblit
442192330096 fbcon: Use correct erase colour for clearing in fbcon
5caaec485f37 fbdev: fsl-diu-fb: add missing device_remove_file()
84a2fccac8c8 mailbox: use error ret code of of_parse_phandle_with_args()
236bad68c007 tracing: Mark binary printing functions with __printf() attribute
2272e75d7a80 NFSv4: Check for delegation validity in nfs_start_delegation_return_locked()
f41f9ce3c709 kconfig: merge_config: use an empty file as initfile
bc9f8527198a samples/bpf: Fix compilation failure for samples/bpf on LoongArch Fedora
af8a8fce197b bpf: fix possible endless loop in BPF map iteration
2391dc87e84a net: enetc: refactor bulk flipping of RX buffers to separate function
0b18c3a17bc7 cgroup: Fix compilation issue due to cgroup_mutex not being exported
41c810a06470 dma-mapping: avoid potential unused data compilation warning
02d2d6caee3a virtio_ring: Fix data race by tagging event_triggered as racy for KCSAN
019ca2804f3f scsi: target: iscsi: Fix timeout on deleted connection
(From OE-Core rev: a7cea8a5c91d26ba7c3f72448f0897f5c2f81fd1)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-
one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-
byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, lea
ding to unpredictable program behavior, crashes, or in specific circumstances, could be lever
aged as a building block for more sophisticated exploitation.
Reference:
https://security-tracker.debian.org/tracker/CVE-2025-5917
Upstream-patch:
7c02cde37a
(From OE-Core rev: 2b2a2fce345c9bfcad44cc8ef3419f43dd07b022)
Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability has been identified in the libarchive library. This flaw
involves an integer overflow that can be triggered when processing a Web
Archive (WARC) file that claims to have more than INT64_MAX - 4 content
bytes. An attacker could craft a malicious WARC archive to induce this
overflow, potentially leading to unpredictable program behavior, memory
corruption, or a denial-of-service condition within applications that
process such archives using libarchive.
Reference:
https://security-tracker.debian.org/tracker/CVE-2025-5916
Upstream-patch:
ef09372952
(From OE-Core rev: 0e939bf5fc7412c7357fcd7d8ae760f023ac40eb)
Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap b
uffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer
-Schieber (LZSS) window. This means the library may attempt to read beyond the allocated memo
ry buffer, which can result in unpredictable program behavior, crashes (denial of service), o
r the disclosure of sensitive information from adjacent memory regions.
Reference:
https://security-tracker.debian.org/tracker/CVE-2025-5915
Upstream-patches:
a612bf62f8
(From OE-Core rev: 41e7be4aa28481530d5e259d0f25b238b86c012d)
Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
When asked to use a `.netrc` file for credentials *and* to
follow HTTP redirects, curl could leak the password used
for the first host to the followed-to host under certain
circumstances.
This flaw only manifests itself if the netrc file has a
`default` entry that omits both login and password. A
rare circumstance.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-0167
Upstream patch:
0e120c5b92
(From OE-Core rev: 7c5aee3066e4c8056d994cd50b26c18a16316c96)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Backport patch to fix CVE-2025-5278.
The patch is adjusted to fit 9.0 version.
(From OE-Core rev: 4e55668ef07d99d8c1141c2f4270f43f5b280159)
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the RandR extension, where the RRChangeProviderProperty function
does not properly validate input. This issue leads to an integer overflow when
computing the total size to allocate.
(From OE-Core rev: 78055e8b6a9ea5063658886c5b5d22821d689fc5)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the X server's request handling. Non-zero 'bytes to ignore'
in a client's request can cause the server to skip processing another client's
request, potentially leading to a denial of service.
(From OE-Core rev: 589bf97e1aa236477d895c227446966d0a278f3c)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the X server's request handling. Non-zero 'bytes to ignore'
in a client's request can cause the server to skip processing another client's
request, potentially leading to a denial of service.
(From OE-Core rev: 9ab0fb0deebd4abb22dbfc6b40fe962cb3388fbd)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the XFIXES extension. The XFixesSetClientDisconnectMode handler
does not validate the request length, allowing a client to read unintended memory
from previous requests
(From OE-Core rev: 89dde7f86e1c2e61ed71ecf92e908dbe402a2668)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the Big Requests extension. The request length is multiplied
by 4 before checking against the maximum allowed size, potentially causing an
integer overflow and bypassing the size check.
(From OE-Core rev: 17033023d679a597e31964b0fed2b2e89cdf61ec)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the X Rendering extension's handling of animated cursors.
If a client provides no cursors, the server assumes at least one is present,
leading to an out-of-bounds read and potential crash.
(From OE-Core rev: 2c8e82f860792e7fb99c78c512be57ce74774a34)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
urllib3 is a user-friendly HTTP client library for Python. Prior to
2.5.0, it is possible to disable redirects for all requests by
instantiating a PoolManager and specifying retries in a way that
disable redirects. By default, requests and botocore users are not
affected. An application attempting to mitigate SSRF or open redirect
vulnerabilities by disabling redirects at the PoolManager level will
remain vulnerable. This issue has been patched in version 2.5.0.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-50181
Upstream patch:
f05b132912
(From OE-Core rev: 574146765ea3f9b36532abf4ebc8bd2976396f0b)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Patch 0003 is the actual patch to fix CVE.
Patch 0002 is a preparation patch which systemd upstream uses for
all actively maintained branches in preparation for patch 0003.
Patch 0001 is a bug fix patch and is needed to avoid conflict introduced
by patch 0002. Note that patch 0002 claims itself to be of no functional
change, so this patch 0001 is really needed for patch 0002.
Patch 0004 is a compilation fix patch which adds a macro needed by
previous 0002 patch.
(From OE-Core rev: a2e75ca4fa01d5005906fb88d28d52ea951def00)
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Adds patch to backport fix for CVE-2025-5914.
(From OE-Core rev: 4a4c6e0382834e03480e07f30ed5efa23f6c6fe2)
Signed-off-by: Colin Pinnell McAllister <colin.mcallister@garmin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The patch for CVE-2022-48434 was removed when ffmpeg was updated to
5.0.3. The CVE was fixed in 5.0.2, but NVD has not updated the affected
versions yet. Added an ignore for this CVE to mark as fixed.
(From OE-Core rev: a8c6e2da68c9fc6c692b41c7370ec937680f788c)
Signed-off-by: Colin Pinnell McAllister <colin.mcallister@garmin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
ctest automatically optimizes the order of (parallel) test execution based on
historic test case runtime via the COST property (see [0]), which can have a
significant impact on overall test run times. Sadly this feature is broken in
CMake < 4.0.0 for test cases that have spaces in their name (see [1]).
This commit is a backport of f24178f3 (which itself backports the upstream fix).
the patch was adapted slightly to apply cleanly to the older CMake version in
kirkstone. As repeated test runs are expected to mainly take place inside the
SDK, the patch is only applied to 'nativesdk' builds.
[0]: https://cmake.org/cmake/help/latest/prop_test/COST.html
[1]: https://gitlab.kitware.com/cmake/cmake/-/issues/26594
Reported-By: John Drouhard <john@drouhard.dev>
(From OE-Core rev: f6a160f7ea57af6dfeca003e6c05aa42419fb755)
Signed-off-by: Moritz Haase <Moritz.Haase@bmw.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Explicitly set Python-related flags to use sysroot-staged headers and tools.
(From OE-Core rev: 85a5d7b1d2c8600f30e38e034f828e5897d9a093)
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
NVD ([1]) tracks this as:
cpe:2.3🅰️golang:go:*:*:*:*:*:*:*:*
Running on/with
cpe:2.3⭕microsoft:windows:-:*:*:*:*:*:*:*
Yocto cve-check ignores the "Running on/with", so it needs to be ignored
explicitly.
[1] https://nvd.nist.gov/vuln/detail/CVE-2024-3566
(From OE-Core rev: 571fd82e29fe809c63a5743e534ed7816d787963)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
To accompany earlier updating of kernel version, update this lonely
reference to be consistent.
(From yocto-docs rev: 97cd3ee7f3bf1de8454708d1852ea9cdbd45c39b)
Signed-off-by: "Robert P. J. Day" <rpjday@crashcourse.ca>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit e26c2018cd663de91ee08e0cba55eda1a4c30210)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Change the sample kernel version being used from 4.4 to a more modern
6.12.
(From yocto-docs rev: 4894e00cc69cf499d28b90a991d4bac0cecb97e7)
Signed-off-by: "Robert P. J. Day" <rpjday@crashcourse.ca>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1bad12b6ccfe1c0d26918926176a0c743568de26)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The nativesdk- prefix to the recipe filename should only be used when
using the inherit method as the BBCLASSEXTEND method will do some magic
when generating the "implicit" name of the recipe.
This matches the instructions for the native class.
(From yocto-docs rev: 84ab43b9766e0415e090c6af404ce1c61316f384)
Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 15fe239e1e62b9add737aa732dd7f5e9948ee03d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
We explain how to create a native (nativesdk) recipe in two different
ways via a bullet list but reading quickly the instructions may mislead
one into doing both options whereas they are incompatible.
This rewords both the nativesdk and native sections so that the second
bullet point starts with an Or and explicit that this applies to target
recipes.
(From yocto-docs rev: c2e814ba75524225390ecad0d3615e48f866374a)
Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 6d0d338a5f2686ddeee5eed7b6e05f3db800d33a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
In embedded box, sed might be provided another providers like Busybox,
hence use generic options whenever possible.
/bin/sed -> /etc/alternatives/sed
/etc/alternatives/sed -> /bin/busybox.nosuid
Here used 'sed -u' option is not necessary, hence removed it.
Fixes below error:
sed: invalid option -- 'u'
Also added 'set -eux' option which halts execution of the script
on any failures.
(From OE-Core rev: 5b3b290baa0a83f493b7ca25d5ffa5ff279bcc69)
(From OE-Core rev: fe7fa1ec7d005d858ccbdd81eb6f7bfab04b7e46)
Signed-off-by: Aditya Tayade <Aditya.Tayade@kpit.com>
Signed-off-by: Pawan Badganchi <Pawan.Badganchi@kpit.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 07caee1829d2a61bc018fe0e37ecd482922179ee)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(cherry picked from commit d2da6b5c56)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update LICENSE defined for xz packages to match the license
information provided in the xz COPYING file.
The License information from PACKAGERS file of xz mentions
packages with lzma files are in public domain.They ask to
use GPLv2+, if only it's not possible to mention "PD and GPLv2+".
Include PD license with GPLv2 to packages with lzma content:
xz-dev package contains lzma header
xz-doc package contains lzma man pages
xz packages contains lzma binaries
Links: https://github.com/tukaani-project/xz/blob/v5.4.6/COPYINGhttps://github.com/tukaani-project/xz/blob/v5.4.6/PACKAGERS
(From OE-Core rev: d511c41dac048fbdd93a54136e93b0623a18a83d)
(From OE-Core rev: a9b751f211ccfc1c8d58aba290dc8b4de5383acc)
Signed-off-by: Bhabu Bindu <bindu.bhabu@kpit.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4e5b955def5d9f305f5aba2c68b73287c03fd163)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Install libpng test-suite to run it as a ptest.
As the test-suite takes more than 30 seconds to run,
add libpng-ptest to PTESTS_SLOW in ptest-packagelists.inc
(From OE-Core rev: 5835b803acc255c227213670588dd01c5168c266)
Signed-off-by: Poonam Jadhav <poonam.jadhav@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The old SRC_URIs are not available and need to update.
(From OE-Core rev: 94d24ff01573dc1d65078c92150dc252b3e9b145)
Signed-off-by: Guocai He <guocai.he.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update to the 4.0.27 release of the 4.0.27 series for buildtools
(From OE-Core rev: 9277fae3c81a269994faa6ba6f6c9bdfc74e11bd)
Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Currently, CVE_PRODUCT only detects vulnerabilities where the product is "ffmpeg".
However, there are also vulnerabilities where the product is "libswresample",
and "libavcodec" as shown below.
https://app.opencve.io/vendors/?vendor=ffmpeg
Therefore, add "libswresample libavcodec" to CVE_PRODUCT to detect vulnerabilities
where the product is "libswresample libavcodec" as well.
(From OE-Core rev: 9684eba5c543de229108008e29afd1dd021a9799)
(From OE-Core rev: 34df694e0cdf4c1e3dfc99502a9e615b8c802cdb)
Signed-off-by: aszh07 <mail2szahir@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Naman Jain <namanj1@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2025-1373 does not appear to affect ffmpeg 5.0.3. The CVE has been
added to the ignore list.
(From OE-Core rev: 99cda92e387ca071c4235c14a137510a4fb481c2)
Signed-off-by: Colin Pinnell McAllister <colin.mcallister@garmin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Backport patch for this CVE and also patch for its regression.
(From OE-Core rev: 7f2ce7ea6bd3397e4a4f3f7bb6957d14838f66c5)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Requests is a HTTP library. Due to a URL parsing issue, Requests
releases prior to 2.32.4 may leak .netrc credentials to third parties
for specific maliciously-crafted URLs. Users should upgrade to version
2.32.4 to receive a fix. For older versions of Requests, use of the
.netrc file can be disabled with `trust_env=False` on one's Requests
Session.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-47081
Upstream patch:
96ba401c12
(From OE-Core rev: 37d746033710509ffabc244e0130d20fd81d9673)
Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The js_splitter_code string contains backslashes that Python tries to
use as escape sequence but doesn't manage to, hence the following
SyntaxWarning message:
documentation/conf.py:188: SyntaxWarning: invalid escape sequence '\p'
.split(/[^\p{Letter}\p{Number}_\p{Emoji_Presentation}-]+/gu)
Considering that we want this to be sent verbatim to the JS, let's make
this a raw string instead.
Fixes: d4a98ee19e0c ("conf.py: tweak SearchEnglish to be hyphen-friendly")
(From yocto-docs rev: 92bc958301d0aeab0a19e75b8604f01770358195)
Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c1056672ef45b197136eb8815728d426337a5901)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This repository is partially included in another repository: poky.
However its README isn't making it, so documentation/README pointing at
the README at the root of the git repository would lead the contributor
nowhere.
Instead, let's include the appropriate information directly in
documentation/README which does make it to the poky git repo.
(From yocto-docs rev: acad3d63501d1ee8bd0759438f456488ca7869bf)
Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 0298318cea2947e65754eab97255164e64a862de)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
KCONFIG_MODE defaults to 'allnoconfig' when not set, regardless of whether
KBUILD_DEFCONFIG points to an in-tree or a meta-layer defconfig.
(From yocto-docs rev: 5a35f8bd19cca200c6b271f049fb94543de79f06)
Signed-off-by: Carlos Sánchez de La Lama <csanchezdll@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f374b9c426f6c10710e011a4ad660231ee26efb8)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The project is switching the way handle our CDN provision of sstate objects,
update the URL accordingly.
(cherry picked from commit 406e8a8e30404c0538f5aa46f211540bae2b206b)
(From yocto-docs rev: 5c9336284c0664e0d56cf602751a9ffef6303002)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
* -image and -base change PKG to:
PKG:${KERNEL_PACKAGE_NAME}-image = "${KERNEL_PACKAGE_NAME}-image-${@legitimize_package_name(d.getVar(KERNEL_VERSION))}"
PKG:${KERNEL_PACKAGE_NAME}-base = "${KERNEL_PACKAGE_NAME}-${@legitimize_package_name(d.getVar(KERNEL_VERSION))}"
* but only when debian.bbclass is inheritted they add the original package name into RPROVIDES by:
https://git.openembedded.org/openembedded-core/commit/?id=3409c4379559afbb1d1d29045582995147a33bbc
* fixes the build if some packagegroup or something RDEPENDS on kernel-image or kernel-base
and the DISTRO doesn't inherit debian.bbclass
* as shown in pkgdata:
linux-raspberrypi $ egrep "^(PKG:)|(RPRO)" 6.6.36+git-*/pkgdata/runtime/kernel-image
6.6.36+git-debian/pkgdata/runtime/kernel-image:RPROVIDES:kernel-image: kernel-image (=6.6.36+git@PRSERV_PV_AUTOINC@+733366844f_769634f344)
6.6.36+git-debian/pkgdata/runtime/kernel-image:PKG:kernel-image: kernel-image-6.6.36-v8
6.6.36+git-without-debian/pkgdata/runtime/kernel-image:PKG:kernel-image: kernel-image-6.6.36-v8
linux-raspberrypi $ egrep "^(PKG:)|(RPRO)" 6.6.36+git-*/pkgdata/runtime/kernel-image-image
6.6.36+git-debian/pkgdata/runtime/kernel-image-image:RPROVIDES:kernel-image-image: kernel-image-image (=6.6.36+git@PRSERV_PV_AUTOINC@+733366844f_769634f344)
6.6.36+git-debian/pkgdata/runtime/kernel-image-image:PKG:kernel-image-image: kernel-image-image-6.6.36-v8
6.6.36+git-without-debian/pkgdata/runtime/kernel-image-image:PKG:kernel-image-image: kernel-image-image-6.6.36-v8
(From OE-Core rev: 05498781657a3f8b38b000f91594ecd78850ce47)
(From OE-Core rev: 350513959f6800eef6579153c2ae95960ca24ea7)
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9cb954884b)
Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Drop upstreamed patch and refresh remaining patches.
* https://www.python.org/downloads/release/python-31017/
Security content in this release
* gh-131809: Upgrade vendored expat to 2.7.1
* gh-80222: Folding of quoted string in display_name violates RFC
* gh-121284: Invalid RFC 2047 address header after refolding with
email.policy.default
* gh-131261: Update libexpat to 2.7.0
* gh-105704: CVE-2025-0938 urlparse does not flag hostname containing
[ or ] as incorrect
* gh-119511: OOM vulnerability in the imaplib module
* https://www.python.org/downloads/release/python-31018/
Security content in this release
* gh-135034: [CVE 2024-12718] [CVE 2025-4138] [CVE 2025-4330]
[CVE 2025-4435] [CVE 2025-4517] Fixes multiple issues that allowed
tarfile extraction filters (filter="data" and filter="tar") to be
bypassed using crafted symlinks and hard links.
* gh-133767: Fix use-after-free in the “unicode-escape” decoder with a
non-“strict” error handler.
* gh-128840: Short-circuit the processing of long IPv6 addresses early
in ipaddress to prevent excessive memory consumption and a minor
denial-of-service.
gh-133767 got meawhile CVE-2025-4516 assigned.
(From OE-Core rev: 838a8b5ca148dfa6c6c2c76f1705d1e358a31648)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Forgot to add CVE-2025-1182 patch file to SRC_URI in the following commit
https://lists.openembedded.org/g/openembedded-core/message/217350
After rebasing the CVE-2025-1180.patch, we encountered hunk errors while applying the
CVE-2025-1182.patch, so I have modified the patch accordingly.
(From OE-Core rev: 131f93b8efcddac984965a250b5391c43ca54ac8)
Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation
violation via the component /libavcodec/jpeg2000dec.c.
(From OE-Core rev: 948e3fe6d4a0762bcd56e1cc04c4100c46915669)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows
attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.
(From OE-Core rev: 2494f863a163d13967d927618a101078f6980538)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Refreshed CVE-2024-36613.patch against to the current version
Removed below patches since already fixed in this version
0001-avcodec-rpzaenc-stop-accessing-out-of-bounds-frame.patch [1]
0001-avcodec-smcenc-stop-accessing-out-of-bounds-frame.patch [2]
0001-avcodec-vp3-Add-missing-check-for-av_malloc.patch [3]
0001-avformat-nutdec-Add-check-for-avformat_new_stream.patch [4]
CVE-2022-48434.patch [5]
[1] 1eb002596e
[2] 293dc39bca
[3] 2cdddcd6ec
[4] 481e81be12
[5] 3bc28e9d1a
(From OE-Core rev: dadb16481810ebda8091b36e3ee03713c90b5e7e)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
TagLib before 2.0 allows a segmentation violation and application crash
during tag writing via a crafted WAV file in which an id3 chunk is the
only valid chunk.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2023-47466
Upstream patch:
dfa33bec08
(From OE-Core rev: bcf0102e0e9ecf55106eafcc4c2ad8b2e7ad762b)
Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
libsoup-2.74.2/tests/auth-test.c:1554:39: error: unknown type name 'SoupServerMessage'; did you mean 'SoupServerClass'?
Fix auth-test.c compilation failure caused by CVE-2025-32910 patch
Link: 9af7d0fc75
(From OE-Core rev: 05d14768b5edf41c89b05725e06fd86b5376e6fd)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
gs_lib_ctx_stash_sanitized_arg in base/gslibctx.c in Artifex Ghostscript before 10.05.1
lacks argument sanitization for the # case. A created PDF document includes
its password in cleartext.
(From OE-Core rev: 7052a81e4f9b19b5640b414c10b19f8232d81572)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Since Linux v2.4 it has been possible to stop all NFS server by running
rpc.nfsd 0
i.e. by requesting that zero threads be running. This is preferred as
it doesn't risk killing some other process which happens to be called
"nfsd".
Since Linux v6.6 - and other stable kernels to which
Commit: 390390240145 ("nfsd: don't allow nfsd threads to be
signalled.")
has been backported - sending a signal no longer works to stop nfs server
threads.
This patch changes the nfsserver script to use "rpc.nfsd 0" to stop
server threads.
(From OE-Core rev: 415e73d53e5342f3f6ff6acd521ded2df3fbca1f)
Signed-off-by: NeilBrown <neil@brown.name>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 7b09ad289a36)
Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
98f47d0e9b8c5 Linux 5.15.184
4ad2d3c4d3cc4 x86/modules: Set VM_FLUSH_RESET_PERMS in module_alloc()
618df75f2e30c ice: arfs: fix use-after-free when freeing @rx_cpu_rmap
b8d8f53e18581 netfilter: nf_tables: do not defer rule destruction via call_rcu
a394c160d57f4 netfilter: nf_tables: wait for rcu grace period on net_device removal
ba674db81a154 netfilter: nf_tables: pass nft_chain to destroy function, not nft_ctx
7170875083254 btrfs: do not clean up repair bio if submit fails
d64807ded1b60 btrfs: don't BUG_ON() when 0 reference count at btrfs_lookup_extent_info()
65ccb2793da74 sctp: add mutual exclusion in proc_sctp_do_udp_port()
ef3a6d3795068 selftests/mm: compaction_test: support platform with huge mount of memory
6dacd2514eb9f usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control()
e15fd96c0b701 usb: typec: fix potential array underflow in ucsi_ccg_sync_control()
9794ffd9d0c39 usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group
f4bd982563c2f usb: typec: ucsi: displayport: Fix deadlock
cec4f45bf51e0 clocksource/i8253: Use raw_spinlock_irqsave() in clockevent_i8253_disable()
4f8244e0a2f4c block: fix direct io NOWAIT flag not work
d83e52750d9a1 dmaengine: idxd: fix memory leak in error handling path of idxd_setup_groups
7aa46ac359d34 dmaengine: idxd: fix memory leak in error handling path of idxd_setup_engines
e7320147cf618 dmaengine: ti: k3-udma: Use cap_mask directly from dma_device structure instead of a local copy
0ea0433f822ed dmaengine: ti: k3-udma: Add missing locking
ca5b213bf4b42 wifi: mt76: disable napi on driver removal
6fe084205a537 phy: renesas: rcar-gen3-usb2: Set timing registers only once
35968b3f9538f phy: Fix error handling in tegra_xusb_port_init
72b4e7e9a1599 tracing: samples: Initialize trace_array_printk() with the correct function
560877a88d047 ftrace: Fix preemption accounting for stacktrace filter command
deea40f26b9de ftrace: Fix preemption accounting for stacktrace trigger command
466ef37d5545d ALSA: usb-audio: Add sample rate quirk for Microdia JP001 USB Camera
e9600f67e8b9f ALSA: usb-audio: Add sample rate quirk for Audioengine D1
9a51bc5224421 ALSA: es1968: Add error handling for snd_pcm_hw_constraint_pow2()
d993895c11c42 ACPI: PPTT: Fix processor subtable walk
d4175c6f96294 btrfs: fix discard worker infinite loop after disabling discard
530e67c4b0120 dmaengine: Revert "dmaengine: dmatest: Fix dmatest waiting less when interrupted"
cfcb2a5affbe8 x86/its: FineIBT-paranoid vs ITS
e7117657695bd x86/its: Fix build errors when CONFIG_MODULES=n
1b231a497756e x86/its: Use dynamic thunks for indirect branches
c9ec159fed9f5 x86/its: Align RETs in BHB clear sequence to avoid thunking
4804d7974301f x86/its: Add "vmexit" option to skip mitigation on some CPUs
e30bcefa93a64 x86/its: Enable Indirect Target Selection mitigation
5d19a0574b755 x86/its: Add support for ITS-safe return thunk
498afe80ce3ec x86/alternatives: Remove faulty optimization
a70424c61d5e6 x86/alternative: Optimize returns patching
858073be8899e x86/its: Add support for ITS-safe indirect thunk
34be1a3100b08 x86/its: Enumerate Indirect Target Selection (ITS) bug
da8db23e3c8dd Documentation: x86/bugs/its: Add ITS documentation
86a34f5eb24c9 x86/speculation: Remove the extra #ifdef around CALL_NOSPEC
2d69c40c820a4 x86/speculation: Add a conditional CS prefix to CALL_NOSPEC
175b3cb84685e x86/speculation: Simplify and make CALL_NOSPEC consistent
8595a7453a5f6 x86,nospec: Simplify {JMP,CALL}_NOSPEC
65346f970490e NFSv4/pnfs: Reset the layout state after a layoutreturn
1eccb3a2dfe2e qlcnic: fix memory leak in qlcnic_sriov_channel_cfg_cmd()
6d7a81a69af50 ALSA: sh: SND_AICA should depend on SH_DMA_API
c8fe73ea80b49 net: dsa: sja1105: discard incoming frames in BR_STATE_LISTENING
64675a9c00443 net: cadence: macb: Fix a possible deadlock in macb_halt_tx.
d3336f746f196 net_sched: Flush gso_skb list too during ->change()
894b06a72bd61 spi: loopback-test: Do not split 1024-byte hexdumps
72f552e00c50f nfs: handle failure of nfs_get_lock_context in unlock path
f8f470e3a7574 RDMA/rxe: Fix slab-use-after-free Read in rxe_queue_cleanup bug
d91ab703438c6 iio: chemical: sps30: use aligned_s64 for timestamp
a7a49aaab5787 iio: adc: ad7768-1: Fix insufficient alignment of timestamp.
67c9081445295 tracing: probes: Fix a possible race in trace_probe_log APIs
cc64061b90937 platform/x86: asus-wmi: Fix wlan_ctrl_by_user detection
e0bb89c44b56e efi: libstub: Use '-std=gnu11' to fix build with GCC 15
b5d500042eb33 usb: hcd-pci: remove the action of faking interrupt request
6f0605db50e2c clk: imx: Add check for kcalloc
5b837b9e1543e bpf: Fix the indention issue in grow_stack_state()
42b62697634d1 cifs: Fix the calling of smb_version_operations::calc_smb_size()
b14acf729e9dc f2fs: Add inline to f2fs_build_fault_attr() stub
7c317bec311f8 f2fs: check validation of fault attrs in f2fs_build_fault_attr()
81c12119c23f8 bpf: Fix accesses to uninit stack slots [ Upstream commit 6b4a64bafd107e521c01eec3453ce94a3fb38529 ]
c4fa05422d87c smb: client: fix potential OOB in smb2_dump_detail()
299ef3b5b00bf of: module: add buffer overflow check in of_modalias()
b8086c3c1548b reiserfs: Avoid touching renamed directory if parent does not change
ea091017ef62c ipv6: Fix data races around sk->sk_prot.
ff8710da80ee6 ipv6: annotate some data-races around sk->sk_prot
e8c2eafaaa6ac tcp: Fix data races around icsk->icsk_af_ops.
8d1bab7709564 locking/rwsem: Disable preemption while trying for rwsem lock
7c82dac028864 block, loop: support partitions without scanning
45f504f301d41 bpftool: Fix pretty print dump for maps without BTF loaded
1f24338cb789e jbd2: Drop the merge conflicted hunk
e1d0e3c51bde6 tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
1abe841fe331a tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
6224acfc1d56b tpm: Add flag to use default cancellation policy
1cd19d48fb909 tpm: tis_i2c: Fix sanity check interrupt enable mask
a883da132fa82 tpm: Add tpm_tis_i2c backend for tpm_tis_core
a742ac8a1c511 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer
ef495c5f45f2e tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops
1f3be2e23aa6d gcc-plugins: Reorganize gimple includes for GCC 13
24615a3b932aa ata: ahci: fix enum constants for gcc-13
5d6cb145541aa net: stmmac: Enable mac_managed_pm phylink config
fd93aabb42872 tools/resolve_btfids: Use pkg-config to locate libelf
130f9da784063 tools/resolve_btfids: Build with host flags
00f2f1a782f9b tools/resolve_btfids: Support cross-building the kernel with clang
17776a4ba9c20 tools/resolve_btfids: Install libbpf headers when building
7c9808380d70c libbpf: Make libbpf_version.h non-auto-generated
37ae1ba791ac7 libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations
a2667e6d7314d drm/radeon: free iio for atombios when driver shutdown
f100c753aa1f9 powerpc: Fix reschedule bug in KUAP-unlocked user copy
da5513f301871 libbpf: Fix build warning on ref_ctr_off
4c5a089621a8f perf python: Account for multiple words in CC
1c5699ee85d4f fs: move S_ISGID stripping into the vfs_*() helpers
838f5d0701d89 fs: add mode_strip_sgid() helper
d971726836412 squashfs: provide backing_dev_info in order to disable read-ahead
ed037d7be40c3 irq_work: use kasan_record_aux_stack_noalloc() record callstack
1363bd7dbde39 ixgbevf: add disable link state
e5601ae2bd249 ixgbe: add improvement for MDD response functionality
caa57cd80575d ixgbe: add the ability for the PF to disable VF link state
16a77bfcc7df1 Check /dev/console using init_stat()
04574fd5579a4 tracing/arm: Have max stack tracer handle the case of return address after data
0e51e57170184 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
1e6b7da6ddba7 drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
4931609013207 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
04224f725aa36 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered
6f6c2996a81c1 irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve
1fa94473423ff irqchip/gic-v3-its: Give the percpu rdist struct its own flags field
6013d1ae5feb1 cert host tools: Stop complaining about deprecated OpenSSL functions
efe20512212b0 init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash
a40d2daf2795d pnmtologo: use relocatable file name
3b40d5b41155f of: configfs: remove unused variable overlay_lock
6c085baf18386 tools: use basename to identify file in gen-mach-types
2fca0fd719812 lib/build_OID_registry: fix reproducibility issues
0f586f4ee8ada vt/conmakehash: improve reproducibility
a75774679f28c OF: DT-Overlay configfs interface (v8)
d179c639b30ba x86/boot: Wrap literal addresses in absolute_pointer()
856ec356cf91e ACPI: thermal: drop an always true check
7614af249993e xfs: Fix -Werror=dangling-pointer work-around for older GCC
41470215f97ee xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o
44a445c1922dc virtio-pci: Remove wrong address verification in vp_del_vqs()
77aa9e489eafd bpf: Disallow unprivileged bpf by default
ebfb1822e9f97 fs/aufs: fixup 5.15.36 fixups
4eba9348d3e2e Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal""
5df6d1b00f95b jbd2: fix use-after-free of transaction_t race
2d83e8196487f jbd2: refactor wait logic for transaction updates into a common function
07a63f760793c netfilter: conntrack: avoid useless indirection during conntrack destruction
4e71226259962 Revert "fbdev: Hot-unplug firmware fb devices on forced removal"
7ba4cb36fd4f3 rcu: Avoid alloc_pages() when recording stack
f78574dee71e4 kasan: test: silence intentional read overflow warnings
d313cb89b6b1f kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC
5e279d5647ccf arm64: support page mapping percpu first chunk allocator
e5bf16752dcac vmalloc: choose a better start address in vm_area_register_early()
660b3d21b46f3 kasan: test: bypass __alloc_size checks
00aa7573e53a2 kasan: test: add memcpy test that avoids out-of-bounds write
67becf0b1bd44 kasan: fix tag for large allocations when using CONFIG_SLAB
bedf1e033213c workqueue, kasan: avoid alloc_pages() when recording stack
7195b67ce69b3 kasan: generic: introduce kasan_record_aux_stack_noalloc()
bdff763f0e295 kasan: common: provide can_alloc in kasan_save_stack()
51423ebb36adb lib/stackdepot: introduce __stack_depot_save()
85373e66d8474 lib/stackdepot: remove unused function argument
5b6cc9b251f32 lib/stackdepot: include gfp.h
c9f3902d8069e aufs: reduce overhead for "code present but disabled" use case.
b98d189df02cc aufs: bugfix, umount passes NULL to ->parse_monolithic()
13b883cbbbd9f aufs standalone: cosmetic, missing copyright sentence
21f8b0d81898e aufs: 5.15.5-20220117 ---> 5.15.5-20220221
6199fd8966450 aufs: tiny, headers after fs_context
8ddb40e31c29b aufs: fs_context 7/7, finally remount
69035f71c6fd1 aufs: fs_context 6/7, now mount
bc841b9706977 aufs: fs_context 5/7, parse all other mount options
435188053da29 aufs: fs_context 4/7, parse xino options
9af1f1825cbd7 aufs: fs_context 3/7, parse the branch-management options
1c05eb767f8c3 aufs: fs_context 2/7, parse "br" mount option
a8488f603134a aufs: fs_context 1/7, skelton of the new shceme
8e32e0015564e aufs: pre fs_context, convert a static flag to a macro
f90cb4144aec4 aufs: pre fs_context, support the incomplete sb and sbinfo case
948762ef859c2 aufs: pre fs_context, convert the type of alloc_sbinfo()
77151a08776b1 aufs: 5.15.5-20211129 ---> 5.15.5-20220117
2539adbbbe1e4 aufs: 5.14-20211018 ---> 5.15.5-20211129
7d32b25193c4c aufs: for v5.15-rc1, sync_inode() is gone
66ec0c509225d aufs: for v5.15-rc1, new param 'rcu' for ->get_acl()
69709dc518cd8 aufs: for v5.15-rc1, no mand-lock anymore
ada8fe9543e50 aufs: 5.14-20210906 ---> 5.14-20211018
b77f7f3f394ad Revert "aufs: adjust to v5.15 fs changes"
81bdce5b58765 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation
97c9638892228 sched/isolation: really align nohz_full with rcu_nocbs
871f23ad36271 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards"
ffad0783dd5b2 ARM: config: multi v7: Regenerate defconifg
5c1e1a1ff2d39 ARM: config: multi v7: Add renamed symbols
badaf96564fe1 ARM: config: multi v7: Clean up enabled by default options
34996040fc9bd ARM: config: multi v7: Drop unavailable options
7f685244afb3a powerpc/mm: Switch obsolete dssall to .long
20301aeb1a641 riscv: fix build with binutils 2.38
9df58d0705069 powerpc/lib/sstep: fix 'ptesync' build error
720b61fc400b5 x86_64_defconfig: Fix warnings
02bf23d26bc4c arm64: defconfig: cleanup config options
05914e2c87e51 arm: defconfig: drop unused POWER_AVS option
ffb532fa19b90 aufs5: fix build against v5.15.3+
a4b3abf4d96d7 qemux86: add configuration symbol to select values
fee94ee091541 clear_warn_once: add a clear_warn_once= boot parameter
3d8762d900d93 clear_warn_once: bind a timer to written reset value
95faacac47e8d clear_warn_once: expand debugfs to include read support
de20c4240018c perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
0e4aacead9c15 perf: x86-32: explicitly include <errno.h>
9ad92c11468e2 perf: mips64: Convert __u64 to unsigned long long
09e7efe3e68a0 perf: fix bench numa compilation
e79becc44fa6b perf: add SLANG_INC for slang.h
b1033b5886819 perf: add sgidefs.h to for mips builds
cf9db484ac0b4 perf: change --root to --prefix for python install
7fd052c2c5624 perf: add 'libperl not found' warning
27a437cdd4691 perf: force include of <stdbool.h>
3b99d21bec2f6 fat: don't use obsolete random32 call in namei_vfat
a7e9293b506bb FAT: Added FAT_NO_83NAME
6fd0e71d9e5c1 FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
c379b0d324aeb FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
538be0fdb124f aufs: adjust to v5.15 fs changes
f45da75c8759b aufs5: core
047f57e07e01b aufs5: standalone
029fc15574c88 aufs5: mmap
610d0192ee94d aufs5: base
d4e428d0ec5f4 aufs5: kbuild
eb067eca251ab yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
286af18d0875e yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
24d59a4e26a67 yaffs2: v5.12+ build fixups (not runtime tested)
22c73536d5d7e yaffs: include blkdev.h
506b7251bfb81 yaffs: fix misplaced variable declaration
a0e26ff364dcc yaffs2: v5.6 build fixups
b10b1b2d169ef yaffs2: fix memory leak when /proc/yaffs is read
ad9adccbb2147 yaffs: add strict check when call yaffs_internal_read_super
2e3c3aec8279b yaffs: repair yaffs_get_mtd_device
d662538516a7c yaffs: Fix build failure by handling inode i_version with proper atomic API
70a6113ee2c7c yaffs2: fix memory leak in mount/umount
3378e4a9e4043 yaffs: Avoid setting any ACL releated xattr
ec2284edddef1 Yaffs:check oob size before auto selecting Yaffs1
c2a49874051cd fs: yaffs2: replace CURRENT_TIME by other appropriate apis
e9a5105a3e735 yaffs2: adjust to proper location of MS_RDONLY
608807406f138 yaffs2: import git revision b4ce1bb (jan, 2020)
89e660ece42c8 initramfs: allow an optional wrapper script around initramfs generation
b179dbc9aa109 iwlwifi: select MAC80211_LEDS conditionally
3fd5ca3673d03 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
d1f6edbf01883 arm64/perf: Fix wrong cast that may cause wrong truncation
d202fb2caf337 defconfigs: drop obselete options
9a27e3b5f4e73 arm64/perf: fix backtrace for AAPCS with FP enabled
e20d8cf019b42 linux-yocto: Handle /bin/awk issues
b6d2a3dbbd3a3 uvesafb: provide option to specify timeout for task completion
adb40f1e6a1a5 uvesafb: print error message when task timeout occurs
f280a1ed09626 compiler.h: Undef before redefining __attribute_const__
4352732f268c1 vmware: include jiffies.h
7954a677968dc Resolve jiffies wrapping about arp
5f28a1035d950 nfs: Allow default io size to be configured.
0d7260ad71066 check console device file on fs when booting
900a12e37e0a2 mount_root: clarify error messages for when no rootfs found
7b878cbea7261 menuconfig,mconf-cfg: Allow specification of ncurses location
6604fc1763b3d modpost: mask trivial warnings
0d294adb09cbc kbuild: exclude meta directory from distclean processing
a097cdd95a9ef powerpc: serialize image targets
5db6ec39a0a3e arm: serialize build targets
cbabca27905e2 crtsavres: fixups for 5.4+
7fc7656ed403e powerpc/ptrace: Disable array-bounds warning with gcc8
a5faac5a19a2e powerpc: Disable attribute-alias warnings from gcc8
186c54665b676 powerpc: add crtsavres.o to archprepare for kbuild
d1ea862964cae powerpc: kexec fix for powerpc64
2ac35b89a0f90 powerpc: Add unwind information for SPE registers of E500 core
2e1c348a28bbc mips: vdso: fix 'jalr $t9' crash in vdso code
ec57870b303a8 mips: Kconfig: add QEMUMIPS64 option
6a81b3c081078 4kc cache tlb hazard: tlbp cache coherency
74e3b2a21e542 malta uhci quirks: make allowance for slow 4k(e)c
22e65b63d3b4c arm/Makefile: Fix systemtap
b7f1ab59f19e5 vexpress: Pass LOADADDR to Makefile
ce2800c73bf7e arm: ARM EABI socketcall
019d142fd956a ARM: LPAE: Invalidate the TLB for module addresses during translation fault
(From OE-Core rev: 471382b66a0f9f7001d80355c7a9128ff4b6b4b9)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
3b8db0e4f263 Linux 5.15.182
4226622647e3 scsi: target: Fix WRITE_SAME No Data Buffer crash
aaa763ab8cec dm: fix copying after src array boundaries
655e607898f8 iommu/arm-smmu-v3: Fix iommu_device_probe bug due to duplicated stream ids
6077d3a53d99 iommu/arm-smmu-v3: Use the new rb tree helpers
f95659affee3 irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode()
073b77f8619f irqchip/gic-v2m: Mark a few functions __init
5883bcce0ca5 irqchip/gic-v2m: Add const to of_device_id
cdde591d23f4 Revert "drm/meson: vclk: fix calculation of 59.94 fractional rates"
853e14cf36f6 net: phy: microchip: force IRQ polling mode for lan88xx
d7084c39aed6 ARM: dts: opos6ul: add ksz8081 phy properties
91ff1e9652fb firmware: arm_scmi: Balance device refcount when destroying devices
d9f609cb50eb net: hns3: fix deadlock issue when externel_lb and reset are executed together
c7f24b7d9454 of: module: add buffer overflow check in of_modalias()
cc826a9e1e4e PCI: imx6: Skip controller_id generation logic for i.MX7D
21491989477a net: hns3: defer calling ptp_clock_register()
19a68aa1b993 net: hns3: fixed debugfs tm_qset size
a059cef34d73 net: hns3: fix an interrupt residual problem
85fc1d802edf net: hns3: add support for external loopback test
796f64db86d1 net: hns3: store rx VLAN tag offload state for VF
6bed80284c17 net: fec: ERR007885 Workaround for conventional TX
df993daa4c96 net: lan743x: Fix memleak issue when GSO enabled
f21fb533fc3e nvme-tcp: fix premature queue removal and I/O failover
dd008c029fdb bnxt_en: Fix ethtool -d byte order for 32-bit values
69b10dd23ab8 bnxt_en: Fix out-of-bound memcpy() during ethtool -w
f4f30f64f7ae bnxt_en: Fix coredump logic to free allocated buffer
15cb7eab09fe net: ipv6: fix UDPv6 GSO segmentation with NAT
6b732322eb65 net: dlink: Correct endianness handling of led_mode
a32dcc3b8293 ice: Check VF VSI Pointer Value in ice_vc_add_fdir_fltr()
e06e4cdfb65e ice: Refactor promiscuous functions
0bf32d6fb1fc net_sched: qfq: Fix double list add in class with netem as child qdisc
554acc5a2ea9 net_sched: ets: Fix double list add in class with netem as child qdisc
e3e949a39a91 net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc
2968632880f1 net_sched: drr: Fix double list add in class with netem as child qdisc
6884fc89d3fc net: ethernet: mtk-star-emac: rearm interrupts in rx_poll only when advised
bedd287fdd31 net: ethernet: mtk-star-emac: fix spinlock recursion issues on rx/tx poll
97da99868573 net: ethernet: mtk-star-emac: separate tx/rx handling with two NAPIs
688fff006fd1 net/mlx5: E-switch, Fix error handling for enabling roce
225ee358a4ed net/mlx5: E-Switch, Initialize MAC Address for Default GID
9d3ef89b6a5e net/sched: act_mirred: don't override retval if we already lost the skb
9efb2b99b96c KVM: x86: Load DR6 with guest value only before entering .vcpu_run() loop
1a3f9482b50b tracing: Fix oob write in trace_seq_to_buffer()
8ba0bfe23917 iommu/vt-d: Apply quirk_iommu_igfx for 8086:0044 (QM57/QS57)
466d9da26707 iommu/amd: Fix potential buffer overflow in parse_ivrs_acpihid
4df67fb22782 dm: always update the array size in realloc_argv on success
526530ec0058 dm-integrity: fix a warning on invalid table line
508be7c00143 wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage()
113304ce7e8a mmc: renesas_sdhi: Fix error handling in renesas_sdhi_probe
d5a69c78c9cc amd-xgbe: Fix to ensure dependent features are toggled with RX checksum offload
ec4584495868 parisc: Fix double SIGFPE crash
6266b3509b2c arm64: errata: Add missing sentinels to Spectre-BHB MIDR arrays
f0d2cca416c6 i2c: imx-lpi2c: Fix clock count when probe defers
b98f280fa8c1 EDAC/altera: Set DDR and SDMMC interrupt mask before registration
72d3974ed3a8 EDAC/altera: Test the correct error reg offset
2ec0f5f6d476 drm/nouveau: Fix WARN_ON in nouveau_fence_context_kill()
169346d866dc ALSA: usb-audio: Add second USB ID for Jabra Evolve 65 headset
e0bb89c44b56 efi: libstub: Use '-std=gnu11' to fix build with GCC 15
b5d500042eb3 usb: hcd-pci: remove the action of faking interrupt request
6f0605db50e2 clk: imx: Add check for kcalloc
5b837b9e1543 bpf: Fix the indention issue in grow_stack_state()
42b62697634d cifs: Fix the calling of smb_version_operations::calc_smb_size()
b14acf729e9d f2fs: Add inline to f2fs_build_fault_attr() stub
7c317bec311f f2fs: check validation of fault attrs in f2fs_build_fault_attr()
81c12119c23f bpf: Fix accesses to uninit stack slots [ Upstream commit 6b4a64bafd107e521c01eec3453ce94a3fb38529 ]
c4fa05422d87 smb: client: fix potential OOB in smb2_dump_detail()
299ef3b5b00b of: module: add buffer overflow check in of_modalias()
b8086c3c1548 reiserfs: Avoid touching renamed directory if parent does not change
ea091017ef62 ipv6: Fix data races around sk->sk_prot.
ff8710da80ee ipv6: annotate some data-races around sk->sk_prot
e8c2eafaaa6a tcp: Fix data races around icsk->icsk_af_ops.
8d1bab770956 locking/rwsem: Disable preemption while trying for rwsem lock
7c82dac02886 block, loop: support partitions without scanning
45f504f301d4 bpftool: Fix pretty print dump for maps without BTF loaded
1f24338cb789 jbd2: Drop the merge conflicted hunk
e1d0e3c51bde tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
1abe841fe331 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
6224acfc1d56 tpm: Add flag to use default cancellation policy
1cd19d48fb90 tpm: tis_i2c: Fix sanity check interrupt enable mask
a883da132fa8 tpm: Add tpm_tis_i2c backend for tpm_tis_core
a742ac8a1c51 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer
ef495c5f45f2 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops
1f3be2e23aa6 gcc-plugins: Reorganize gimple includes for GCC 13
24615a3b932a ata: ahci: fix enum constants for gcc-13
5d6cb145541a net: stmmac: Enable mac_managed_pm phylink config
fd93aabb4287 tools/resolve_btfids: Use pkg-config to locate libelf
130f9da78406 tools/resolve_btfids: Build with host flags
00f2f1a782f9 tools/resolve_btfids: Support cross-building the kernel with clang
17776a4ba9c2 tools/resolve_btfids: Install libbpf headers when building
7c9808380d70 libbpf: Make libbpf_version.h non-auto-generated
37ae1ba791ac libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations
a2667e6d7314 drm/radeon: free iio for atombios when driver shutdown
f100c753aa1f powerpc: Fix reschedule bug in KUAP-unlocked user copy
da5513f30187 libbpf: Fix build warning on ref_ctr_off
4c5a089621a8 perf python: Account for multiple words in CC
1c5699ee85d4 fs: move S_ISGID stripping into the vfs_*() helpers
838f5d0701d8 fs: add mode_strip_sgid() helper
d97172683641 squashfs: provide backing_dev_info in order to disable read-ahead
ed037d7be40c irq_work: use kasan_record_aux_stack_noalloc() record callstack
1363bd7dbde3 ixgbevf: add disable link state
e5601ae2bd24 ixgbe: add improvement for MDD response functionality
caa57cd80575 ixgbe: add the ability for the PF to disable VF link state
16a77bfcc7df Check /dev/console using init_stat()
04574fd5579a tracing/arm: Have max stack tracer handle the case of return address after data
0e51e5717018 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
1e6b7da6ddba drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
493160901320 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
04224f725aa3 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered
6f6c2996a81c irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve
1fa94473423f irqchip/gic-v3-its: Give the percpu rdist struct its own flags field
6013d1ae5feb cert host tools: Stop complaining about deprecated OpenSSL functions
efe20512212b init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash
a40d2daf2795 pnmtologo: use relocatable file name
3b40d5b41155 of: configfs: remove unused variable overlay_lock
6c085baf1838 tools: use basename to identify file in gen-mach-types
2fca0fd71981 lib/build_OID_registry: fix reproducibility issues
0f586f4ee8ad vt/conmakehash: improve reproducibility
a75774679f28 OF: DT-Overlay configfs interface (v8)
d179c639b30b x86/boot: Wrap literal addresses in absolute_pointer()
856ec356cf91 ACPI: thermal: drop an always true check
7614af249993 xfs: Fix -Werror=dangling-pointer work-around for older GCC
41470215f97e xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o
44a445c1922d virtio-pci: Remove wrong address verification in vp_del_vqs()
77aa9e489eaf bpf: Disallow unprivileged bpf by default
ebfb1822e9f9 fs/aufs: fixup 5.15.36 fixups
4eba9348d3e2 Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal""
5df6d1b00f95 jbd2: fix use-after-free of transaction_t race
2d83e8196487 jbd2: refactor wait logic for transaction updates into a common function
07a63f760793 netfilter: conntrack: avoid useless indirection during conntrack destruction
4e7122625996 Revert "fbdev: Hot-unplug firmware fb devices on forced removal"
7ba4cb36fd4f rcu: Avoid alloc_pages() when recording stack
f78574dee71e kasan: test: silence intentional read overflow warnings
d313cb89b6b1 kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC
5e279d5647cc arm64: support page mapping percpu first chunk allocator
e5bf16752dca vmalloc: choose a better start address in vm_area_register_early()
660b3d21b46f kasan: test: bypass __alloc_size checks
00aa7573e53a kasan: test: add memcpy test that avoids out-of-bounds write
67becf0b1bd4 kasan: fix tag for large allocations when using CONFIG_SLAB
bedf1e033213 workqueue, kasan: avoid alloc_pages() when recording stack
7195b67ce69b kasan: generic: introduce kasan_record_aux_stack_noalloc()
bdff763f0e29 kasan: common: provide can_alloc in kasan_save_stack()
51423ebb36ad lib/stackdepot: introduce __stack_depot_save()
85373e66d847 lib/stackdepot: remove unused function argument
5b6cc9b251f3 lib/stackdepot: include gfp.h
c9f3902d8069 aufs: reduce overhead for "code present but disabled" use case.
b98d189df02c aufs: bugfix, umount passes NULL to ->parse_monolithic()
13b883cbbbd9 aufs standalone: cosmetic, missing copyright sentence
21f8b0d81898 aufs: 5.15.5-20220117 ---> 5.15.5-20220221
6199fd896645 aufs: tiny, headers after fs_context
8ddb40e31c29 aufs: fs_context 7/7, finally remount
69035f71c6fd aufs: fs_context 6/7, now mount
bc841b970697 aufs: fs_context 5/7, parse all other mount options
435188053da2 aufs: fs_context 4/7, parse xino options
9af1f1825cbd aufs: fs_context 3/7, parse the branch-management options
1c05eb767f8c aufs: fs_context 2/7, parse "br" mount option
a8488f603134 aufs: fs_context 1/7, skelton of the new shceme
8e32e0015564 aufs: pre fs_context, convert a static flag to a macro
f90cb4144aec aufs: pre fs_context, support the incomplete sb and sbinfo case
948762ef859c aufs: pre fs_context, convert the type of alloc_sbinfo()
77151a08776b aufs: 5.15.5-20211129 ---> 5.15.5-20220117
2539adbbbe1e aufs: 5.14-20211018 ---> 5.15.5-20211129
7d32b25193c4 aufs: for v5.15-rc1, sync_inode() is gone
66ec0c509225 aufs: for v5.15-rc1, new param 'rcu' for ->get_acl()
69709dc518cd aufs: for v5.15-rc1, no mand-lock anymore
ada8fe9543e5 aufs: 5.14-20210906 ---> 5.14-20211018
b77f7f3f394a Revert "aufs: adjust to v5.15 fs changes"
81bdce5b5876 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation
97c963889222 sched/isolation: really align nohz_full with rcu_nocbs
871f23ad3627 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards"
ffad0783dd5b ARM: config: multi v7: Regenerate defconifg
5c1e1a1ff2d3 ARM: config: multi v7: Add renamed symbols
badaf96564fe ARM: config: multi v7: Clean up enabled by default options
34996040fc9b ARM: config: multi v7: Drop unavailable options
7f685244afb3 powerpc/mm: Switch obsolete dssall to .long
20301aeb1a64 riscv: fix build with binutils 2.38
9df58d070506 powerpc/lib/sstep: fix 'ptesync' build error
720b61fc400b x86_64_defconfig: Fix warnings
02bf23d26bc4 arm64: defconfig: cleanup config options
05914e2c87e5 arm: defconfig: drop unused POWER_AVS option
ffb532fa19b9 aufs5: fix build against v5.15.3+
a4b3abf4d96d qemux86: add configuration symbol to select values
fee94ee09154 clear_warn_once: add a clear_warn_once= boot parameter
3d8762d900d9 clear_warn_once: bind a timer to written reset value
95faacac47e8 clear_warn_once: expand debugfs to include read support
de20c4240018 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
0e4aacead9c1 perf: x86-32: explicitly include <errno.h>
9ad92c11468e perf: mips64: Convert __u64 to unsigned long long
09e7efe3e68a perf: fix bench numa compilation
e79becc44fa6 perf: add SLANG_INC for slang.h
b1033b588681 perf: add sgidefs.h to for mips builds
cf9db484ac0b perf: change --root to --prefix for python install
7fd052c2c562 perf: add 'libperl not found' warning
27a437cdd469 perf: force include of <stdbool.h>
3b99d21bec2f fat: don't use obsolete random32 call in namei_vfat
a7e9293b506b FAT: Added FAT_NO_83NAME
6fd0e71d9e5c FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
c379b0d324ae FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
538be0fdb124 aufs: adjust to v5.15 fs changes
f45da75c8759 aufs5: core
047f57e07e01 aufs5: standalone
029fc15574c8 aufs5: mmap
610d0192ee94 aufs5: base
d4e428d0ec5f aufs5: kbuild
eb067eca251a yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
286af18d0875 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
24d59a4e26a6 yaffs2: v5.12+ build fixups (not runtime tested)
22c73536d5d7 yaffs: include blkdev.h
506b7251bfb8 yaffs: fix misplaced variable declaration
a0e26ff364dc yaffs2: v5.6 build fixups
b10b1b2d169e yaffs2: fix memory leak when /proc/yaffs is read
ad9adccbb214 yaffs: add strict check when call yaffs_internal_read_super
2e3c3aec8279 yaffs: repair yaffs_get_mtd_device
d662538516a7 yaffs: Fix build failure by handling inode i_version with proper atomic API
70a6113ee2c7 yaffs2: fix memory leak in mount/umount
3378e4a9e404 yaffs: Avoid setting any ACL releated xattr
ec2284edddef Yaffs:check oob size before auto selecting Yaffs1
c2a49874051c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
e9a5105a3e73 yaffs2: adjust to proper location of MS_RDONLY
608807406f13 yaffs2: import git revision b4ce1bb (jan, 2020)
89e660ece42c initramfs: allow an optional wrapper script around initramfs generation
b179dbc9aa10 iwlwifi: select MAC80211_LEDS conditionally
3fd5ca3673d0 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
d1f6edbf0188 arm64/perf: Fix wrong cast that may cause wrong truncation
d202fb2caf33 defconfigs: drop obselete options
9a27e3b5f4e7 arm64/perf: fix backtrace for AAPCS with FP enabled
e20d8cf019b4 linux-yocto: Handle /bin/awk issues
b6d2a3dbbd3a uvesafb: provide option to specify timeout for task completion
adb40f1e6a1a uvesafb: print error message when task timeout occurs
f280a1ed0962 compiler.h: Undef before redefining __attribute_const__
4352732f268c vmware: include jiffies.h
7954a677968d Resolve jiffies wrapping about arp
5f28a1035d95 nfs: Allow default io size to be configured.
0d7260ad7106 check console device file on fs when booting
900a12e37e0a mount_root: clarify error messages for when no rootfs found
7b878cbea726 menuconfig,mconf-cfg: Allow specification of ncurses location
6604fc1763b3 modpost: mask trivial warnings
0d294adb09cb kbuild: exclude meta directory from distclean processing
a097cdd95a9e powerpc: serialize image targets
5db6ec39a0a3 arm: serialize build targets
cbabca27905e crtsavres: fixups for 5.4+
7fc7656ed403 powerpc/ptrace: Disable array-bounds warning with gcc8
a5faac5a19a2 powerpc: Disable attribute-alias warnings from gcc8
186c54665b67 powerpc: add crtsavres.o to archprepare for kbuild
d1ea862964ca powerpc: kexec fix for powerpc64
2ac35b89a0f9 powerpc: Add unwind information for SPE registers of E500 core
2e1c348a28bb mips: vdso: fix 'jalr $t9' crash in vdso code
ec57870b303a mips: Kconfig: add QEMUMIPS64 option
6a81b3c08107 4kc cache tlb hazard: tlbp cache coherency
74e3b2a21e54 malta uhci quirks: make allowance for slow 4k(e)c
22e65b63d3b4 arm/Makefile: Fix systemtap
b7f1ab59f19e vexpress: Pass LOADADDR to Makefile
ce2800c73bf7 arm: ARM EABI socketcall
019d142fd956 ARM: LPAE: Invalidate the TLB for module addresses during translation fault
(From OE-Core rev: 514e700790ed3af0894ad114432aa44090ddb306)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
16fdf2c7111b Linux 5.15.181
26277a425020 PCI: Release resource invalidated by coalescing
e4af080f3ef6 PCI: Fix dropping valid root bus resources with .end = zero
ad367516b1c0 PCI: Fix use-after-free in pci_bus_release_domain_nr()
1f7fb4247d90 nvme: fixup scan failure for non-ANA multipath controllers
d2e15c2fd913 MIPS: cm: Fix warning if MIPS_CM is disabled
c82ca029b29f xdp: Reset bpf_redirect_info before running a xdp's BPF prog.
43c296870740 drm/amd/display: fix double free issue during amdgpu module unload
bb6b2175b606 net: dsa: mv88e6xxx: enable .port_set_policy() for 6320 family
527978c76ef2 net: dsa: mv88e6xxx: enable PVT for 6321 switch
7a10a6b17401 net: dsa: mv88e6xxx: fix atu_move_port_mask for 6341 family
3ea027203778 crypto: atmel-sha204a - Set hwrng quality to lowest possible
4e386645bc01 comedi: jr3_pci: Fix synchronous deletion of timer
a1166e98d80c jfs: define xtree root and page independently
2ddd4a7a8b0f md/raid1: Add check for missing source disk in process_checks()
e5e274f64f32 ubsan: Fix panic from test_ubsan_out_of_bounds
7dd6ab7f467c loop: aio inherit the ioprio of original request
1d8f9378cb48 scsi: pm80xx: Set phy_attached to zero when device is gone
47e8efd6c623 scsi: hisi_sas: Fix I/O errors caused by hardware port ID changes
4b7bdc2efa11 ext4: make block validity check resistent to sb bh corruption
0773465fbe1b nvmet-fc: put ref when assoc->del_work is already scheduled
33acc9c2d1e4 nvmet-fc: take tgtport reference only once
b6a2cd26bcb9 x86/bugs: Don't fill RSB on context switch with eIBRS
a71d88ae28ef x86/bugs: Don't fill RSB on VMEXIT with eIBRS+retpoline
56332c566f36 x86/bugs: Use SBPB in write_ibpb() if applicable
33f046d7c8d3 selftests/mincore: Allow read-ahead pages to reach the end of the file
3e70fa900584 objtool: Stop UNRET validation on UD2
d2830ae38358 nvme: re-read ANA log page after ns scan completes
26671f662eda ACPI PPTT: Fix coding mistakes in a couple of sizeof() calls
5a8389206cd4 nvme: requeue namespace scan on missed AENs
bbe7c3b33292 xen: Change xen-acpi-processor dom0 dependency
605de05255b3 selftests: ublk: fix test_stripe_04
373512760e13 udmabuf: fix a buf size overflow issue during udmabuf creation
4da2a94ed523 KVM: s390: Don't use %pK through tracepoints
20a3cec623fa sched/isolation: Make CONFIG_CPU_ISOLATION depend on CONFIG_SMP
40845d9146b9 ntb: reduce stack usage in idt_scan_mws
5fe708c5e3c8 qibfs: fix _another_ leak
1640c9b81d66 objtool, ASoC: codecs: wcd934x: Remove potential undefined behavior in wcd934x_slim_irq_handler()
d26a6093d529 usb: gadget: aspeed: Add NULL pointer check in ast_vhub_init_dev()
3a259d74f57a usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running
0725a991727d dmaengine: dmatest: Fix dmatest waiting less when interrupted
e03b10c45c76 sound/virtio: Fix cancel_sync warnings on uninitialized work_structs
059d35a7393c usb: dwc3: gadget: Avoid using reserved endpoints on Intel Merrifield
423e146ed630 fs/ntfs3: Fix WARNING in ntfs_extend_initialized_size
e10e634ee40f usb: host: max3421-hcd: Add missing spi_device_id table
d9ef9664e44e s390/tty: Fix a potential memory leak bug
e1e00dc45648 s390/sclp: Add check for get_zeroed_page()
6992fb10dff2 parisc: PDT: Fix missing prototype warning
aa36ec5d96c9 clk: check for disabled clock-provider in of_clk_get_hw_from_clkspec()
1dd4a8561d85 crypto: null - Use spin lock instead of mutex
10829b24512a MIPS: cm: Detect CM quirks from device tree
809fce49f0b6 USB: wdm: add annotation
6261b99ef0ed USB: wdm: wdm_wwan_port_tx_complete mutex in atomic context
b02a3fef3e8c USB: wdm: close race between wdm_open and wdm_wwan_port_stop
17dd48b3f6f2 USB: wdm: handle IO errors in wdm_wwan_port_start
68be90d3d1aa USB: VLI disk crashes if LPM is used
394ff4699263 usb: quirks: Add delay init quirk for SanDisk 3.2Gen1 Flash Drive
50d68345d467 usb: quirks: add DELAY_INIT quirk for Silicon Motion Flash Drive
c0079630f268 usb: dwc3: gadget: check that event count does not exceed event buffer length
a143ed263d51 USB: OHCI: Add quirk for LS7A OHCI controller (rev 0x02)
3ec61fa704a4 usb: chipidea: ci_hdrc_imx: implement usb_phy_init() error handling
24b808d7516f usb: chipidea: ci_hdrc_imx: fix call balance of regulator routines
8060b719676e usb: chipidea: ci_hdrc_imx: fix usbmisc handling
b96239582531 usb: cdns3: Fix deadlock when using NCM gadget
94df04953061 USB: serial: simple: add OWON HDS200 series oscilloscope support
82e841dc1eaf USB: serial: option: add Sierra Wireless EM9291
184cdaa3ea5f USB: serial: ftdi_sio: add support for Abacus Electrics Optical Probe
b59c7fefded5 serial: sifive: lock port in startup()/shutdown() callbacks
116c7d35b8f7 KVM: x86: Reset IRTE to host control if *new* route isn't postable
26ccc791de50 mei: me: add panther lake H DID
843a6fc56e71 USB: storage: quirk for ADATA Portable HDD CH94
59f993cd36b6 mcb: fix a double free bug in chameleon_parse_gdd()
95a34125831e KVM: SVM: Allocate IR data using atomic allocation
aeba2e15c873 drm/amd/display: Fix gpu reset in multidisplay config
a14b254c35fe net: selftests: initialize TCP header and skb payload with zero
bef170d651d3 virtio_console: fix missing byte order handling for cols and rows
c71ab87a2523 iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE
da7936518996 net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too
fcc8ede66356 net_sched: hfsc: Fix a UAF vulnerability in class handling
5fd464fd24de tipc: fix NULL pointer dereference in tipc_mon_reinit_self()
663c3da86e80 net: phy: leds: fix memory leak
46a35fe74bae cpufreq: cppc: Fix invalid return value in .get() callback
8fbaa76690f6 cpufreq: scpi: Fix null-ptr-deref in scpi_cpufreq_get_rate()
4e3d1c1925d8 cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate()
ad03f3f852df dma/contiguous: avoid warning about unused size_bytes
c049376c76d1 drm/msm/a6xx: Fix stale rpmh votes from GPU
cac1786e41b4 drm/msm/a6xx: Avoid gx gbit halt during rpm suspend
d5572d3d0034 drm/msm/a6xx: Handle GMU prepare-slumber hfi failure
c8064e9c334f drm/msm/a6xx: Improve gpu recovery sequence
14c96391dff0 string: Add load_unaligned_zeropad() code path to sized_strscpy()
039b1d64c8ea kmsan: disable strscpy() optimization under KMSAN
f124c35b4a36 selftests/mm: generate a temporary mountpoint for cgroup filesystem
fbf43c9e237c ksmbd: Prevent integer overflow in calculation of deadtime
3297497ad224 PCI: Fix reference leak in pci_register_host_bridge()
db273126bf54 PCI: Assign PCI domain IDs by ida_alloc()
fd168b7d1d7c PCI: Coalesce host bridge contiguous apertures
786474c9dadf gpio: tegra186: fix resource handling in ACPI probe path
bc121680d4eb gpio: tegra186: Force one interrupt per bank
32d554841024 cifs: fix integer overflow in match_server()
9c9000cb91b9 cifs: avoid NULL pointer dereference in dbg call
0f552a0a33db cifs: print TIDs as hex
74c7d67a3c30 backlight: led_bl: Hold led_access lock when calling led_sysfs_disable()
28d49aeb7760 backlight: led_bl: Convert to platform remove callback returning void
9d708a3b72b0 iio: adc: ad7768-1: Fix conversion result sign
fda3b0b782c8 iio: adc: ad7768-1: Move setting of val a bit later to avoid unnecessary return value check
8ee067cf0cf8 soc: samsung: exynos-chipid: Add NULL pointer check in exynos_chipid_probe()
c6f24e85919e soc: samsung: exynos-chipid: Pass revision reg offsets
75dd8356b681 soc: samsung: exynos-chipid: avoid soc_device_to_device()
f54829389feb net: dsa: mv88e6xxx: fix VTU methods for 6320 family
36771754d618 auxdisplay: hd44780: Fix an API misuse in hd44780.c
959b07fb28b0 auxdisplay: hd44780: Convert to platform remove callback returning void
f1d518c0bad0 media: streamzap: fix race between device disconnection and urb callback
a5d7d89ac48a media: streamzap: remove unused struct members
b608bd3b51c0 media: streamzap: less chatter
6dd4cf3ece54 media: streamzap: no need for usb pid/vid in device name
fa5fec7f1555 media: streamzap: remove unnecessary ir_raw_event_reset and handle
ed4ee9639b07 module: sign with sha512 instead of sha1 by default
74a466a15731 Bluetooth: SCO: Fix UAF on sco_sock_timeout
e7d3a0c7bf77 f2fs: Add inline to f2fs_build_fault_attr() stub
c7dc74ab7975 scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI
984212fa6b4b pmdomain: ti: Add a null pointer check to the omap_prm_domain_init
6e5b601706ce f2fs: check validation of fault attrs in f2fs_build_fault_attr()
eac1e7e1705f mm: fix apply_to_existing_page_range()
0c35d1914353 fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats
7d21587d35bc drm/i915/gt: Cleanup partial engine discovery failures
d154b333a566 dm cache: fix flushing uninitialized delayed_work on cache_ctr error
4de2c04c3acd jfs: Fix shift-out-of-bounds in dbDiscardAG
500f00c80637 MIPS: ds1287: Match ds1287_set_base_clock() function types
9aad60a2e686 MIPS: cevt-ds1287: Add missing ds1287.h include
dd0e9415ff0c MIPS: dec: Declare which_prom() as static
dac465986a4a net: defer final 'struct net' free in netns dismantle
22018622e1e9 scsi: ufs: bsg: Set bsg_queue to NULL after removal
6e9ed2f4721e scsi: lpfc: Fix a possible data race in lpfc_unregister_fcf_rescan()
930268823f6b openvswitch: fix lockup on tx to unregistering netdev with carrier
5efcb301523b net: openvswitch: fix race on port output
211168339657 ipvs: properly dereference pe in ip_vs_add_service
22e9b83f0f33 ext4: fix timer use-after-free on failed mount
7d215e013d09 blk-iocost: do not WARN if iocg was already offlined
d20f28f00770 blk-cgroup: support to track if policy is online
3516f93cc63d bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers
0d90d9e15414 bpf: avoid holding freeze_mutex during mmap operation
82e813b12b10 sched/task_stack: fix object_is_on_stack() for KASAN tagged pointers
bb6570085826 smb: client: fix potential UAF in cifs_stats_proc_show()
ce49569079a9 smb: client: fix potential deadlock when releasing mids
878f32878351 smb/server: fix potential null-ptr-deref of lease_ctx_info in smb2_open()
4a788ebbb10d smb: client: fix NULL ptr deref in crypto_aead_setkey()
ef51c0d544b1 smb: client: fix UAF in async decryption
ed3b36f351d9 cifs: Fix UAF in cifs_demultiplex_thread()
336a066990bb smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
58de45f4d663 net: make sock_inuse_add() available
480469f145e5 ksmbd: fix potencial out-of-bounds when buffer offset is invalid
d798fd98e356 smb: client: fix potential UAF in cifs_dump_full_key()
d54fdcf171f0 nvmet-fc: Remove unused functions
6955fd3a6fb9 landlock: Add the errata interface
3cc1116de109 drm/amdgpu: fix usage slab after free
fcf9d6a9f30e drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing
b19ca8425a4b drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create'
e3cd0d8362de drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links
27fda36eedad wifi: ath10k: avoid NULL pointer error during sdio remove
c1cbf006feee phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function
a262c2dc833f powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()
d1c85e262c16 x86/pvh: Call C code via the kernel virtual mapping
386617efacab net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup
66a9937187ac bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
7d3914a477ee phonet/pep: fix racy skb_queue_empty() use
6cc52df69e84 filemap: Fix bounds checking in filemap_read()
90c8482a5d97 net: fix crash when config small gso_max_size/gso_ipv4_max_size
77aa9855a878 ipv6: release nexthop on device removal
f241e4a78f6a misc: pci_endpoint_test: Fix 'irq_type' to convey the correct type
30f2cd70c4f9 misc: pci_endpoint_test: Fix displaying 'irq_type' after 'request_irq' error
54c9f299ad7d misc: pci_endpoint_test: Avoid issue of interrupts remaining after request_irq error
980a236af12f mptcp: sockopt: fix getting IPV6_V6ONLY
8fbd9487f676 kbuild: Add '-fno-builtin-wcslen'
5d3779ceaac8 cpufreq: Reference count policy in cpufreq_update_limits()
93cc7c7f9b83 KVM: arm64: Eagerly switch ZCR_EL{1,2}
ec3efc04a6ce KVM: arm64: Calculate cptr_el2 traps on activating traps
52a473ba8330 KVM: arm64: Remove VHE host restore of CPACR_EL1.ZEN
08ce0d1ee622 KVM: arm64: Remove host FPSIMD saving for non-protected KVM
5289ac43b69c KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state
978c0ccf80ce arm64/fpsimd: Stop using TIF_SVE to manage register saving in KVM
6b3d37c9c61e arm64/fpsimd: Have KVM explicitly say which FP registers to save
8be8ba9cf1df arm64/fpsimd: Track the saved FPSIMD state type separately to TIF_SVE
c4ab60a86c5e KVM: arm64: Discard any SVE state when entering KVM guests
58ed930115b8 KVM: arm64: Always start with clearing SVE flag on load
a2231da36777 KVM: arm64: Get rid of host SVE tracking/saving
2f420df780c5 drm/sti: remove duplicate object names
ada78110b2d3 drm/nouveau: prime: fix ttm_bo_delayed_delete oops
4941966558a0 drm/amdgpu/dma_buf: fix page_link check
80814924260c drm/amd/pm/powerplay/hwmgr/vega20_thermal: Prevent division by zero
f2904fa2b9da drm/amd/pm/swsmu/smu13/smu_v13_0: Prevent division by zero
be0fffc4152a drm/amd/pm/powerplay/hwmgr/smu7_thermal: Prevent division by zero
0c02fcbe4a13 drm/amd/pm/powerplay: Prevent division by zero
b7c41df49137 drm/amd/pm: Prevent division by zero
c177517ea65c drm/repaper: fix integer overflows in repeat functions
3d81ec24e7db perf/x86/intel/uncore: Fix the scale of IIO free running counters on SPR
93c5be4da097 perf/x86/intel/uncore: Fix the scale of IIO free running counters on ICX
609ed2fcc9b5 perf/x86/intel/uncore: Fix the scale of IIO free running counters on SNR
b55b385b3938 perf/x86/intel: Allow to update user space GPRs from PEBS records
5ee09cdaf341 virtiofs: add filesystem context source name check
aac80c3e05cb tracing: Fix filter string testing
e5467a695337 riscv: Avoid fortify warning in syscall_get_arguments()
7596182dc17f mm/gup: fix wrongly calculated returned value in fault_in_safe_writeable()
6b563dc85fb3 loop: LOOP_SET_FD: send uevents for partitions
81565d0986a9 loop: properly send KOBJ_CHANGED uevent for disk device
63d5a3e207bf isofs: Prevent the use of too small fid
cd83035b6f2a i2c: cros-ec-tunnel: defer probe if parent EC is not present
a33c035df01d hfs/hfsplus: fix slab-out-of-bounds in hfs_bnode_read_key
877ee3ba2f78 crypto: caam/qi - Fix drv_ctx refcount bug
cdd459a58bb6 btrfs: correctly escape subvol in btrfs_show_options()
a70832d35559 nfsd: decrease sc_count directly if fail to queue dl_recall
bf5f65aebeaf nfs: add missing selections of CONFIG_CRC32
72f7ccad7ed5 nfs: move nfs_fhandle_hash to common include file
41a125eb52d6 asus-laptop: Fix an uninitialized variable
442a0ab6a4e9 ASoC: codecs:lpass-wsa-macro: Fix logic of enabling vi channels
1a19d2306753 ASoC: codecs:lpass-wsa-macro: Fix vi feedback rate
440225ed4fbb Revert "PCI: Avoid reset when disabled via sysfs"
2b109b99d45f writeback: fix false warning in inode_to_wb()
9ac9ad08723d cpufreq/sched: Fix the usage of CPUFREQ_NEED_UPDATE_LIMITS
6bc390b02d4b riscv: KGDB: Remove ".option norvc/.option rvc" for kgdb_compiled_break
854d0f048ead riscv: KGDB: Do not inline arch_kgdb_breakpoint()
3c03e585860a riscv: Properly export reserved regions in /proc/iomem
9ea760991c11 net: dsa: avoid refcount warnings when ds->ops->tag_8021q_vlan_del() fails
8ccdf5e24b27 net: dsa: mv88e6xxx: avoid unregistering devlink regions which were never registered
f7b3bddffff2 net: b53: enable BPDU reception for management port
118d05b53034 cxgb4: fix memory leak in cxgb4_init_ethtool_filters() error path
a27526e6b48e net: openvswitch: fix nested key length validation in the set() action
5c1313b93c8c net: mctp: Set SOCK_RCU_FREE
18924cdfea58 igc: cleanup PTP module if probe fails
7d2d77e51371 igc: handle the IGC_PTP_ENABLED flag correctly
5572511776d4 igc: move ktime snapshot into PTM retry loop
c1f174edaccc igc: fix PTM cycle trigger logic
6d16d6cb212f Revert "wifi: mac80211: Update skb's control block key in ieee80211_tx_dequeue()"
24b2cdfc16e9 Bluetooth: l2cap: Check encryption key size on incoming connection
2d7c60c2a38b Bluetooth: btrtl: Prevent potential NULL dereference
056f04935bd8 Bluetooth: hci_event: Fix sending MGMT_EV_DEVICE_FOUND for invalid address
791daf8240ce RDMA/core: Silence oversized kvmalloc() warning
bb93bd4b9920 RDMA/hns: Fix wrong maximum DMA segment size
3af43d7282a8 RDMA/usnic: Fix passing zero to PTR_ERR in usnic_ib_pci_probe()
e2c440b23f21 md/raid10: fix missing discard IO accounting
f89ab86401c9 scsi: iscsi: Fix missing scsi_host_put() in error path
2996144be660 wifi: wl1251: fix memory leak in wl1251_tx_work
305741e7e632 wifi: mac80211: Purge vif txq in ieee80211_do_stop()
9d00c0a807a3 wifi: mac80211: Update skb's control block key in ieee80211_tx_dequeue()
3c619aec1f53 wifi: at76c50x: fix use after free access in at76_disconnect
00999e369e9e scsi: hisi_sas: Enable force phy when SATA disk directly connected
31676d55028a scsi: libsas: Add struct sas_tmf_task
42bbb529955c scsi: libsas: Delete lldd_clear_aca callback
04bbb1b72b55 scsi: hisi_sas: Fix setting of hisi_sas_slot.is_internal
8b8e6d433bd9 scsi: hisi_sas: Factor out task prep and delivery code
6587850b8827 scsi: hisi_sas: Pass abort structure for internal abort
9ebfa3eb9d52 scsi: hisi_sas: Start delivery hisi_sas_task_exec() directly
9e5a0f577716 Bluetooth: hci_uart: Fix another race during initialization
e8ea4dd6659f x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions()
fb627b8fe4d7 ACPI: platform-profile: Fix CFI violation when accessing sysfs files
46e22de65eb4 arm64: errata: Add newer ARM cores to the spectre_bhb_loop_affected() lists
72972552d0d0 HSI: ssi_protocol: Fix use after free vulnerability in ssi_protocol Driver Due to Race Condition
9242391c20b1 pinctrl: qcom: Clear latched interrupt status when changing IRQ type
40c4c64507fe PCI: Fix reference leak in pci_alloc_child_bus()
8730a3c6f0f1 PCI: brcmstb: Fix missing of_node_put() in brcm_pcie_probe()
fa4d10970ea3 of/irq: Fix device node refcount leakages in of_irq_init()
90d3d651b985 of/irq: Fix device node refcount leakage in API irq_of_parse_and_map()
52f0888eff56 of/irq: Fix device node refcount leakages in of_irq_count()
bd8f17219533 ntb: use 64-bit arithmetic for the MSI doorbell mask
94c1cf839b7a gpio: zynq: Fix wakeup source leaks on device unbind
dd38803c9088 ftrace: Add cond_resched() to ftrace_graph_set_hash()
422dd984f7ef dm-integrity: set ti->error on memory allocation failure
9c5eedb065fa crypto: ccp - Fix check for the primary ASP device
2e794415ff7f thermal/drivers/rockchip: Add missing rk3328 mapping entry
0f7df4899299 sctp: detect and prevent references to a freed transport in sendmsg
20035e675ca0 mm/hwpoison: do not send SIGBUS to processes with recovered clean pages
f3509cecd0fd mm: add missing release barrier on PGDAT_RECLAIM_LOCKED unlock
7de3726a3afd sparc/mm: disable preemption in lazy mmu mode
66a10239be04 arm64: dts: mediatek: mt8173: Fix disp-pwm compatible string
2dd21fc16490 mtd: rawnand: Add status chack in r852_ready()
e7d6ceff95c5 mtd: inftlcore: Add error check for inftl_read_oob()
cef678a27711 mptcp: only inc MPJoinAckHMacFailure for HMAC failures
b3088bd2a679 mptcp: fix NULL pointer in can_accept_new_subflow
9ce88838fcea lib: scatterlist: fix sg_split_phys to preserve original scatterlist offsets
031b53078e88 locking/lockdep: Decrease nr_unused_locks if lock unused in zap_class()
90ee23c2514a mfd: ene-kb3930: Fix a potential NULL pointer dereference
ad926f735b4d jbd2: remove wrong sb->s_sequence check
3ba402610843 i3c: Add NULL pointer check in i3c_master_queue_ibi()
c658e1302ee3 i3c: master: svc: Use readsb helper for reading MDB
5d74f8a5fb3c vdpa/mlx5: Fix oversized null mkey longer than 32bit
2883e9e74f73 ext4: fix off-by-one error in do_split
899d0353ea69 bus: mhi: host: Fix race between unprepare and queue_buf
65cc93278f69 ASoC: qdsp6: q6asm-dai: fix q6asm_dai_compr_set_params error path
9ae11b06c557 wifi: mac80211: fix integer overflow in hwmp_route_info_get()
977fb8126e5c wifi: mt76: Add check for devm_kstrdup()
8f80ade0f6ea clocksource/drivers/stm32-lptimer: Use wakeup capable instead of init wakeup
c1e3583fb61f mtd: Replace kcalloc() with devm_kcalloc()
ef922b40bb6d net: dsa: mv88e6xxx: workaround RGMII transmit delay erratum for 6320 family
8f8ed592d8a1 mtd: Add check for devm_kcalloc()
f195e94c7af9 media: venus: hfi_parser: refactor hfi packet parsing logic
1ad6aa1464b8 media: venus: hfi_parser: add check to avoid out of bound access
08ac0e22e456 media: i2c: ov7251: Introduce 1 ms delay between regulators and en GPIO
e8396890db79 media: i2c: ov7251: Set enable GPIO low in probe
7c3118db4998 media: i2c: ccs: Set the device's runtime PM status correctly in probe
5a6b5aa8ebc1 media: i2c: ccs: Set the device's runtime PM status correctly in remove
457a61c59856 media: v4l2-dv-timings: prevent possible overflow in v4l2_detect_gtf()
432f748824b6 media: streamzap: prevent processing IR data on URB failure
fbcb584efa5c mtd: rawnand: brcmnand: fix PM resume warning
b88004318aeb spi: cadence-qspi: Fix probe on AM62A LP SK
0b08172a635d arm64: errata: Add KRYO 2XX/3XX/4XX silver cores to Spectre BHB safe list
8cb58a817a45 arm64: errata: Assume that unknown CPUs _are_ vulnerable to Spectre BHB
1a646a6206e0 arm64: errata: Add QCOM_KRYO_4XX_GOLD to the spectre_bhb_k24_list
f6ea5a8a5344 arm64: cputype: Add MIDR_CORTEX_A76AE
09a128539129 xenfs/xensyms: respect hypervisor's "next" indication
b98fbad6abda media: siano: Fix error handling in smsdvb_module_init()
680cc5303f7c media: vim2m: print device name after registering device
32af5c1fdb9b media: venus: hfi: add check to handle incorrect queue size
1b8fb257234e media: venus: hfi: add a check to handle OOB in sfr region
83724b88175c media: i2c: adv748x: Fix test pattern selection mask
84f2ca8d5f2d ext4: don't treat fhandle lookup of ea_inode as FS corruption
8273ae803009 bpf: support SKF_NET_OFF and SKF_LL_OFF on skb frags
831062d76d37 bpf: Add endian modifiers to fix endian warnings
ed6ff2d48873 pwm: fsl-ftm: Handle clk_get_rate() returning 0
1f45022f219b pwm: rcar: Improve register calculation
dc12f37acbc3 pwm: rcar: Simplify multiplication/shift logic
e3cf0c38d3ce pwm: mediatek: Prevent divide-by-zero in pwm_mediatek_config()
7fa3d93d4d29 ktest: Fix Test Failures Due to Missing LOG_FILE Directories
09dbf22fd68c fbdev: omapfb: Add 'plane' value check
c250262d6485 PCI: vmd: Make vmd_dev::cfg_lock a raw_spinlock_t type
1690b4949247 drm/mediatek: mtk_dpi: Explicitly manage TVD clock in power on/off
25c299517d58 drm/amdkfd: Fix pqm_destroy_queue race with GPU reset
62b3040a1a29 drm/amdkfd: clamp queue size to minimum
0236f723b445 drivers: base: devres: Allow to release group on device release
e2dacf842095 drm/bridge: panel: forbid initializing a panel with unknown connector type
e33d1037fd89 drm: panel-orientation-quirks: Add new quirk for GPD Win 2
b60523a75c2b drm: panel-orientation-quirks: Add support for AYANEO 2S
cc301b9d48ab drm/amd/display: Update Cursor request mode to the beginning prefetch always
0a5ba5e28b7b drm: allow encoder mode_set even when connectors change for crtc
d71a57a34ab6 Bluetooth: hci_uart: fix race during initialization
effeecfe60fc tracing: fix return value in __ftrace_event_enable_disable for TRACE_REG_UNREGISTER
523fa0979d84 net: vlan: don't propagate flags on open
5a194041bffd wifi: mt76: mt76x2u: add TP-Link TL-WDN6200 ID to device table
c6015d0f7a22 scsi: st: Fix array overflow in st_setup()
f737418b6de3 ext4: ignore xattrs past end
1648029cd302 ext4: protect ext4_release_dquot against freezing
fd4c73a2669c ahci: add PCI ID for Marvell 88SE9215 SATA Controller
67e16ccba74d f2fs: fix to avoid out-of-bounds access in f2fs_truncate_inode_blocks()
714036b176ba ata: libata-eh: Do not use ATAPI DMA for a device limited to PIO mode
a741f29ac8b6 jfs: add sanity check for agwidth in dbMount
86bfeaa18f9e jfs: Prevent copying of nlink with value 0 from disk inode
3d8a45f87010 fs/jfs: Prevent integer overflow in AG size calculation
761e36cf8c86 fs/jfs: cast inactags to s64 to prevent potential overflow
4f10732712fc jfs: Fix uninit-value access of imap allocated in the diMount() function
91522aba56e9 page_pool: avoid infinite loop to schedule delayed worker
691d45955eda ALSA: usb-audio: Fix CME quirk for UF series keyboards
c30b45c78e1a ASoC: fsl_audmix: register card device depends on 'dais' property
81b19dc8ad80 ALSA: hda: intel: Fix Optimus when GPU has no sound
6b4449e4f033 HID: pidff: Fix null pointer dereference in pidff_find_fields
4c5f8e594657 HID: pidff: Do not send effect envelope if it's empty
b5d9c541ad33 HID: pidff: Convert infinite length from Linux API to PID standard
01e1c8a26ea3 xen/mcelog: Add __nonstring annotations for unterminated strings
595a9e7b8cda arm64: cputype: Add QCOM_CPU_PART_KRYO_3XX_GOLD
016cc0079e74 perf: arm_pmu: Don't disable counter in armpmu_add()
4162ed24d454 x86/cpu: Don't clear X86_FEATURE_LAHF_LM flag in init_amd_k8() on AMD when running in a virtual machine
0e297a02e03d pm: cpupower: bench: Prevent NULL dereference on malloc failure
c2077a80caf2 umount: Allow superblock owners to force umount
d504882159a2 nft_set_pipapo: fix incorrect avx2 match of 5th field octet
99aa698dec34 net: ppp: Add bound checking for skb data on ppp_sync_txmung
e342ea4ce54f nvmet-fcloop: swap list_add_tail arguments
bea745327f00 ata: sata_sx4: Add error handling in pdc20621_i2c_read()
3c1c0a8c1a07 ata: sata_sx4: Drop pointless VPRINTK() calls and convert the remaining ones
81a5174e64ce net: ethtool: Don't call .cleanup_data when prepare_data fails
ac91c6125468 net: tls: explicitly disallow disconnect
ed06675d3b8c tipc: fix memory leak in tipc_link_xmit
d0d720f92828 ata: pata_pxa: Fix potential NULL pointer dereference in pxa_ata_probe()
e0bb89c44b56 efi: libstub: Use '-std=gnu11' to fix build with GCC 15
b5d500042eb3 usb: hcd-pci: remove the action of faking interrupt request
6f0605db50e2 clk: imx: Add check for kcalloc
5b837b9e1543 bpf: Fix the indention issue in grow_stack_state()
42b62697634d cifs: Fix the calling of smb_version_operations::calc_smb_size()
b14acf729e9d f2fs: Add inline to f2fs_build_fault_attr() stub
7c317bec311f f2fs: check validation of fault attrs in f2fs_build_fault_attr()
81c12119c23f bpf: Fix accesses to uninit stack slots [ Upstream commit 6b4a64bafd107e521c01eec3453ce94a3fb38529 ]
c4fa05422d87 smb: client: fix potential OOB in smb2_dump_detail()
299ef3b5b00b of: module: add buffer overflow check in of_modalias()
b8086c3c1548 reiserfs: Avoid touching renamed directory if parent does not change
ea091017ef62 ipv6: Fix data races around sk->sk_prot.
ff8710da80ee ipv6: annotate some data-races around sk->sk_prot
e8c2eafaaa6a tcp: Fix data races around icsk->icsk_af_ops.
8d1bab770956 locking/rwsem: Disable preemption while trying for rwsem lock
7c82dac02886 block, loop: support partitions without scanning
45f504f301d4 bpftool: Fix pretty print dump for maps without BTF loaded
1f24338cb789 jbd2: Drop the merge conflicted hunk
e1d0e3c51bde tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
1abe841fe331 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
6224acfc1d56 tpm: Add flag to use default cancellation policy
1cd19d48fb90 tpm: tis_i2c: Fix sanity check interrupt enable mask
a883da132fa8 tpm: Add tpm_tis_i2c backend for tpm_tis_core
a742ac8a1c51 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer
ef495c5f45f2 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops
1f3be2e23aa6 gcc-plugins: Reorganize gimple includes for GCC 13
24615a3b932a ata: ahci: fix enum constants for gcc-13
5d6cb145541a net: stmmac: Enable mac_managed_pm phylink config
fd93aabb4287 tools/resolve_btfids: Use pkg-config to locate libelf
130f9da78406 tools/resolve_btfids: Build with host flags
00f2f1a782f9 tools/resolve_btfids: Support cross-building the kernel with clang
17776a4ba9c2 tools/resolve_btfids: Install libbpf headers when building
7c9808380d70 libbpf: Make libbpf_version.h non-auto-generated
37ae1ba791ac libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations
a2667e6d7314 drm/radeon: free iio for atombios when driver shutdown
f100c753aa1f powerpc: Fix reschedule bug in KUAP-unlocked user copy
da5513f30187 libbpf: Fix build warning on ref_ctr_off
4c5a089621a8 perf python: Account for multiple words in CC
1c5699ee85d4 fs: move S_ISGID stripping into the vfs_*() helpers
838f5d0701d8 fs: add mode_strip_sgid() helper
d97172683641 squashfs: provide backing_dev_info in order to disable read-ahead
ed037d7be40c irq_work: use kasan_record_aux_stack_noalloc() record callstack
1363bd7dbde3 ixgbevf: add disable link state
e5601ae2bd24 ixgbe: add improvement for MDD response functionality
caa57cd80575 ixgbe: add the ability for the PF to disable VF link state
16a77bfcc7df Check /dev/console using init_stat()
04574fd5579a tracing/arm: Have max stack tracer handle the case of return address after data
0e51e5717018 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
1e6b7da6ddba drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
493160901320 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
04224f725aa3 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered
6f6c2996a81c irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve
1fa94473423f irqchip/gic-v3-its: Give the percpu rdist struct its own flags field
6013d1ae5feb cert host tools: Stop complaining about deprecated OpenSSL functions
efe20512212b init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash
a40d2daf2795 pnmtologo: use relocatable file name
3b40d5b41155 of: configfs: remove unused variable overlay_lock
6c085baf1838 tools: use basename to identify file in gen-mach-types
2fca0fd71981 lib/build_OID_registry: fix reproducibility issues
0f586f4ee8ad vt/conmakehash: improve reproducibility
a75774679f28 OF: DT-Overlay configfs interface (v8)
d179c639b30b x86/boot: Wrap literal addresses in absolute_pointer()
856ec356cf91 ACPI: thermal: drop an always true check
7614af249993 xfs: Fix -Werror=dangling-pointer work-around for older GCC
41470215f97e xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o
44a445c1922d virtio-pci: Remove wrong address verification in vp_del_vqs()
77aa9e489eaf bpf: Disallow unprivileged bpf by default
ebfb1822e9f9 fs/aufs: fixup 5.15.36 fixups
4eba9348d3e2 Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal""
5df6d1b00f95 jbd2: fix use-after-free of transaction_t race
2d83e8196487 jbd2: refactor wait logic for transaction updates into a common function
07a63f760793 netfilter: conntrack: avoid useless indirection during conntrack destruction
4e7122625996 Revert "fbdev: Hot-unplug firmware fb devices on forced removal"
7ba4cb36fd4f rcu: Avoid alloc_pages() when recording stack
f78574dee71e kasan: test: silence intentional read overflow warnings
d313cb89b6b1 kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC
5e279d5647cc arm64: support page mapping percpu first chunk allocator
e5bf16752dca vmalloc: choose a better start address in vm_area_register_early()
660b3d21b46f kasan: test: bypass __alloc_size checks
00aa7573e53a kasan: test: add memcpy test that avoids out-of-bounds write
67becf0b1bd4 kasan: fix tag for large allocations when using CONFIG_SLAB
bedf1e033213 workqueue, kasan: avoid alloc_pages() when recording stack
7195b67ce69b kasan: generic: introduce kasan_record_aux_stack_noalloc()
bdff763f0e29 kasan: common: provide can_alloc in kasan_save_stack()
51423ebb36ad lib/stackdepot: introduce __stack_depot_save()
85373e66d847 lib/stackdepot: remove unused function argument
5b6cc9b251f3 lib/stackdepot: include gfp.h
c9f3902d8069 aufs: reduce overhead for "code present but disabled" use case.
b98d189df02c aufs: bugfix, umount passes NULL to ->parse_monolithic()
13b883cbbbd9 aufs standalone: cosmetic, missing copyright sentence
21f8b0d81898 aufs: 5.15.5-20220117 ---> 5.15.5-20220221
6199fd896645 aufs: tiny, headers after fs_context
8ddb40e31c29 aufs: fs_context 7/7, finally remount
69035f71c6fd aufs: fs_context 6/7, now mount
bc841b970697 aufs: fs_context 5/7, parse all other mount options
435188053da2 aufs: fs_context 4/7, parse xino options
9af1f1825cbd aufs: fs_context 3/7, parse the branch-management options
1c05eb767f8c aufs: fs_context 2/7, parse "br" mount option
a8488f603134 aufs: fs_context 1/7, skelton of the new shceme
8e32e0015564 aufs: pre fs_context, convert a static flag to a macro
f90cb4144aec aufs: pre fs_context, support the incomplete sb and sbinfo case
948762ef859c aufs: pre fs_context, convert the type of alloc_sbinfo()
77151a08776b aufs: 5.15.5-20211129 ---> 5.15.5-20220117
2539adbbbe1e aufs: 5.14-20211018 ---> 5.15.5-20211129
7d32b25193c4 aufs: for v5.15-rc1, sync_inode() is gone
66ec0c509225 aufs: for v5.15-rc1, new param 'rcu' for ->get_acl()
69709dc518cd aufs: for v5.15-rc1, no mand-lock anymore
ada8fe9543e5 aufs: 5.14-20210906 ---> 5.14-20211018
b77f7f3f394a Revert "aufs: adjust to v5.15 fs changes"
81bdce5b5876 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation
97c963889222 sched/isolation: really align nohz_full with rcu_nocbs
871f23ad3627 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards"
ffad0783dd5b ARM: config: multi v7: Regenerate defconifg
5c1e1a1ff2d3 ARM: config: multi v7: Add renamed symbols
badaf96564fe ARM: config: multi v7: Clean up enabled by default options
34996040fc9b ARM: config: multi v7: Drop unavailable options
7f685244afb3 powerpc/mm: Switch obsolete dssall to .long
20301aeb1a64 riscv: fix build with binutils 2.38
9df58d070506 powerpc/lib/sstep: fix 'ptesync' build error
720b61fc400b x86_64_defconfig: Fix warnings
02bf23d26bc4 arm64: defconfig: cleanup config options
05914e2c87e5 arm: defconfig: drop unused POWER_AVS option
ffb532fa19b9 aufs5: fix build against v5.15.3+
a4b3abf4d96d qemux86: add configuration symbol to select values
fee94ee09154 clear_warn_once: add a clear_warn_once= boot parameter
3d8762d900d9 clear_warn_once: bind a timer to written reset value
95faacac47e8 clear_warn_once: expand debugfs to include read support
de20c4240018 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
0e4aacead9c1 perf: x86-32: explicitly include <errno.h>
9ad92c11468e perf: mips64: Convert __u64 to unsigned long long
09e7efe3e68a perf: fix bench numa compilation
e79becc44fa6 perf: add SLANG_INC for slang.h
b1033b588681 perf: add sgidefs.h to for mips builds
cf9db484ac0b perf: change --root to --prefix for python install
7fd052c2c562 perf: add 'libperl not found' warning
27a437cdd469 perf: force include of <stdbool.h>
3b99d21bec2f fat: don't use obsolete random32 call in namei_vfat
a7e9293b506b FAT: Added FAT_NO_83NAME
6fd0e71d9e5c FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
c379b0d324ae FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
538be0fdb124 aufs: adjust to v5.15 fs changes
f45da75c8759 aufs5: core
047f57e07e01 aufs5: standalone
029fc15574c8 aufs5: mmap
610d0192ee94 aufs5: base
d4e428d0ec5f aufs5: kbuild
eb067eca251a yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
286af18d0875 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
24d59a4e26a6 yaffs2: v5.12+ build fixups (not runtime tested)
22c73536d5d7 yaffs: include blkdev.h
506b7251bfb8 yaffs: fix misplaced variable declaration
a0e26ff364dc yaffs2: v5.6 build fixups
b10b1b2d169e yaffs2: fix memory leak when /proc/yaffs is read
ad9adccbb214 yaffs: add strict check when call yaffs_internal_read_super
2e3c3aec8279 yaffs: repair yaffs_get_mtd_device
d662538516a7 yaffs: Fix build failure by handling inode i_version with proper atomic API
70a6113ee2c7 yaffs2: fix memory leak in mount/umount
3378e4a9e404 yaffs: Avoid setting any ACL releated xattr
ec2284edddef Yaffs:check oob size before auto selecting Yaffs1
c2a49874051c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
e9a5105a3e73 yaffs2: adjust to proper location of MS_RDONLY
608807406f13 yaffs2: import git revision b4ce1bb (jan, 2020)
89e660ece42c initramfs: allow an optional wrapper script around initramfs generation
b179dbc9aa10 iwlwifi: select MAC80211_LEDS conditionally
3fd5ca3673d0 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
d1f6edbf0188 arm64/perf: Fix wrong cast that may cause wrong truncation
d202fb2caf33 defconfigs: drop obselete options
9a27e3b5f4e7 arm64/perf: fix backtrace for AAPCS with FP enabled
e20d8cf019b4 linux-yocto: Handle /bin/awk issues
b6d2a3dbbd3a uvesafb: provide option to specify timeout for task completion
adb40f1e6a1a uvesafb: print error message when task timeout occurs
f280a1ed0962 compiler.h: Undef before redefining __attribute_const__
4352732f268c vmware: include jiffies.h
7954a677968d Resolve jiffies wrapping about arp
5f28a1035d95 nfs: Allow default io size to be configured.
0d7260ad7106 check console device file on fs when booting
900a12e37e0a mount_root: clarify error messages for when no rootfs found
7b878cbea726 menuconfig,mconf-cfg: Allow specification of ncurses location
6604fc1763b3 modpost: mask trivial warnings
0d294adb09cb kbuild: exclude meta directory from distclean processing
a097cdd95a9e powerpc: serialize image targets
5db6ec39a0a3 arm: serialize build targets
cbabca27905e crtsavres: fixups for 5.4+
7fc7656ed403 powerpc/ptrace: Disable array-bounds warning with gcc8
a5faac5a19a2 powerpc: Disable attribute-alias warnings from gcc8
186c54665b67 powerpc: add crtsavres.o to archprepare for kbuild
d1ea862964ca powerpc: kexec fix for powerpc64
2ac35b89a0f9 powerpc: Add unwind information for SPE registers of E500 core
2e1c348a28bb mips: vdso: fix 'jalr $t9' crash in vdso code
ec57870b303a mips: Kconfig: add QEMUMIPS64 option
6a81b3c08107 4kc cache tlb hazard: tlbp cache coherency
74e3b2a21e54 malta uhci quirks: make allowance for slow 4k(e)c
22e65b63d3b4 arm/Makefile: Fix systemtap
b7f1ab59f19e vexpress: Pass LOADADDR to Makefile
ce2800c73bf7 arm: ARM EABI socketcall
019d142fd956 ARM: LPAE: Invalidate the TLB for module addresses during translation fault
(From OE-Core rev: ce581f5cb80f1e6a405f70ba2fa23a09d9687e7c)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This modifies the default indexer split() and js splitQuery()
methods to support searching for words with hyphens.
While this might not be an ideal, rock solid, and fully future-proof
solution, it allows at least to search for strings inlcuding hyphens,
such as 'bitbake-layers', 'send-error-report', or 'oe-core'.
Below is a bit more detailed explanation of the two modifications done:
1) The default split regex in the sphinx-doc SearchLanguage base class
is:
| _word_re = re.compile(r'\w+')
which we simply extend to include hyphens '-'.
This will result in a searchindex.js that contains words with hyphens,
too.
2) The 'searchtool.js' code notes for its splitQuery() implementation:
| /**
| * Default splitQuery function. Can be overridden in ``sphinx.search`` with a
| * custom function per language.
| *
| * The regular expression works by splitting the string on consecutive characters
| * that are not Unicode letters, numbers, underscores, or emoji characters.
| * This is the same as ``\W+`` in Python, preserving the surrogate pair area.
| */
| if (typeof splitQuery === "undefined") {
| var splitQuery = (query) => query
| .split(/[^\p{Letter}\p{Number}_\p{Emoji_Presentation}]+/gu)
| .filter(term => term) // remove remaining empty strings
| }
The hook for this is documented in the sphinx-docs 'SearchLanguage'
base class.
| .. attribute:: js_splitter_code
|
| Return splitter function of JavaScript version. The function should be
| named as ``splitQuery``. And it should take a string and return list of
| strings.
|
| .. versionadded:: 3.0
We use this to define a simplified splitQuery() function with a split
argument that splits on empty spaces only.
We extend SearchEnglish (which extends SearchLanguage) here to retain
the stemmer code and stopwords for English.
[YOCTO #14534]
(From yocto-docs rev: 72e70a6af6eb3d4ca41f9e64069d8d3f61b420a3)
Signed-off-by: Enrico Jörns <ejo@pengutronix.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d4a98ee19e0cbd6be96923dc72faee143a6b294b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Fix as many instances of unbalanced-inline-literals-delimiters as reported
by 'make sphinx-lint' as possible. Sphinx and/or its linter seem to get
tripped up randomly when references contain links to heading which contain
literals enclosed in double-back-tics, and not all of them can be "fixed"
to pass both building and linting.
(From yocto-docs rev: 2c1e5b080ad5e62d8283d332cbc473fd2d59c6e6)
Signed-off-by: Trevor Woerner <twoerner@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Add a section after the 'git format-patch' information encouraging developers
to add patch version changelogs to their patch updates.
(From yocto-docs rev: a9f9d53fa4a29e3cf846868567190425ffed8bf0)
Signed-off-by: Trevor Woerner <twoerner@gmail.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 2e3a37c4607b296956993e557d1786c4876e5722)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
- Add the future "Whinlatter" (5.3) and "Wrynose" (6.0) releases.
- Make the "Walnascar" release a current release.
- Update the month in Current.
(From yocto-docs rev: b60476dd7b056d7b5dd48ac7fce943b4e3542277)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit adb8573b54626e033921a9f4e3db259312b79207)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The version has changed now (3.10.12 as of writing). Avoid having to
maintain this information by removing the version info from the intro.
Also fix a typo ("uses now uses") and give a link to yocto-autobuilder2.
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: c404868285bfeb64600e70650483c664a8eb9574)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1ed64dbdf4a60b000305cdc2c67dc24f4bc97ef7)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This document was written with SPDX 3.0 in mind (create-spdx-3.0 class)
on OE-Core's master, but Kirkstone only supports SPDX 2.2 (named simply
create-spdx).
The create-spdx class only generate a tar.zst output, so remove the
other outputs listed here.
Also, ancillary outputs are not only deployed in tmp/deploy/spdx/MACHINE
but tmp/deploy/spdx in general.
(From yocto-docs rev: 25b5ec4c71c97228f8386f5b6c4fbe272c207ed6)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The cpymemdi/setmemdi implementation doesn't fully support strict alignment.
Block the expansion if the alignment is less than 16 with STRICT_ALIGNMENT.
Clean up the condition when to use MOPS. (PR103100)
The original patch for GCC 12 removed MOPS & SIMD conditionals for setmem and
cpymem expansions in aarch64.md file. However, this version for GCC 11 does not
backport the SIMD & MOPS-related changes and retains the conditions in aarch64.md
file to preserve correctness and compatibility with the GCC 11 backend.
All changes and outputs have been verified by the author.
Upstream-Status: Backport [https://gcc.gnu.org/cgit/gcc/commit/?id=b9d16d8361a9e3a82a2f21e759e760d235d43322]
(From OE-Core rev: a99a65632116955dc69809a14bf536b22582de72)
Signed-off-by: Sundeep KOKKONDA <sundeep.kokkonda@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
During ptest execution, util-linux adds mount entries in /etc/fstab
and runs `mount -a`, which mounts all available entries from
/etc/fstab. This can cause unintended mounts that are unrelated to
the test, leading to incorrect test behavior.
To avoid this, upstream util-linux introduced a mechanism using
CUSTOM_FSTAB,which isolates test-specific fstab entries. Only entries
listed in CUSTOM_FSTAB are mounted during test execution, ensuring
tests do not interfere with or depend on the system's /etc/fstab.
This commit backports below upstream changes to use CUSTOM_FSTAB.
ed3d33faffb1580bd7606aa8d17b6b
(From OE-Core rev: 94747fb63518bf907eb7c09fc2e146e39e235a7d)
Signed-off-by: Virendra Thakur <virendra.thakur@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2025-47268
ping in iputils through 20240905 allows a denial of service (application
error or incorrect data collection) via a crafted ICMP Echo Reply
packet, because of a signed 64-bit integer overflow in timestamp
multiplication.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-47268
Patch from:
070cfacd73
(From OE-Core rev: a463c8e3950ccf58316d48241c2cd82484f25fda)
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This is needed to properly support memmem() and friends under musl
as musl guards the declarations with _GNU_SOURCE define, and if the
declarations are not present, gcc will issue warnings and generate
assembly that assumes the functions return int (instead of e.g.
void*), with catastrophic consequences at runtime.
(From OE-Core rev: 79dc3f42958bfefe03a8240e2a57501c38d2bd3c)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6422e62fbc5c65a2165a72c97c880cfa9a80e957)
Signed-off-by: Peter Hurley <peter@meraki.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update to the 4.0.26 release of the 4.0 series for buildtools
(From OE-Core rev: 04ff268291598c1e0588cff43df694a714e48746)
Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick patch mentioned in NVD links for this CVE.
Tested by runniing ptest and CVE reproducer (before&after).
Ptest fails on test dist/threads/t/join, however the same test also
fails without this patch.
(From OE-Core rev: 8e3c821e9ce8f3a9667847a284bc5a6f4973ea13)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
After introducing the DISTRO_LATEST_TAG and DISTRO_REL_LATEST_TAG
macros, use them in links that currently use DISTRO/DISTRO_REL_TAG. When
building for the tip of a branch, this will replace the current A.B.999
in links to the latest existing tag.
The links were found across the documentation by running 'grep -r
"http.*5\.2\.999"' inside the _build/html output after building the
docs.
[YOCTO #14802]
(From yocto-docs rev: 0d51e553d5f83eea6634e03ddc9c7740bf72fcea)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 29be069ebbf2c55d72fc51d99ed5a558af37c05e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Introduce the DISTRO_LATEST_TAG macro, which should always point to the
latest existing tag in the documentation, unlike DISTRO which may point
to A.B.999 to represent the tip of a branch.
This variable is needed to fix dead links in the documentation that
currently use the DISTRO macro.
Also, make DISTRO_REL_TAG use the DISTRO macro directly, to avoid
repetition, and add a DISTRO_REL_LATEST_TAG macro that has the same role
as DISTRO_LATEST_TAG but with "yocto-" prepended to it.
In set_versions.py, run the "git describe --abbrev=0 --tags
--match='yocto-*'" command to get the latest existing tag on the
currently checked out commit. Fallback to ourversion in case we didn't
find any.
(From yocto-docs rev: 9fabb08405601646fd9b00326442e03d43f68804)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit a85b0e500c94921f77fa7b7dbb877e4945f96d1e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The word "modern" appears twice, remove the extra one.
(From yocto-docs rev: db02bc7eb59feaece5d2a07b3586fd41c7a73a1e)
Signed-off-by: Andrew Kreimer <algonell@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Document the AUTOTOOLS_SCRIPT_PATH and the CONFIGURE_SCRIPT variables.
(From yocto-docs rev: f7721ff5312b1ebf87dd374db22b254913879ff0)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This reverts commit 7adaec468d.
It does not seem to fix the issue it was supposed to fix.
Additionally it breaks code which decides in full/partial update,
because it manipulates timestamp that code is relying on.
(From OE-Core rev: 25ba9895b98715adb66a06e50f644aea2e2c9eb6)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit ebc65fdddd7ce51f0f1008baa30d0ae7918ae0bb)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A LogNamespace error for systemd v250:
"""
Apr 28 17:44:00 a-rinline2b systemd[467]:
systemd-journald@tester.service: Failed to set up special execution
directory in /var/log: Not a directory
Apr 28 17:44:00 a-rinline2b systemd[467]:
systemd-journald@tester.service: Failed at step LOGS_DIRECTORY spawning
/lib/systemd/systemd-journald: Not a directory
"""
That's because that "/var/log/journal" couldn't be created during
program runtime.
(From OE-Core rev: 8eb185024f9a9e57a9b710c70f09552729558892)
Signed-off-by: Haitao Liu <haitao.liu@windriver.com>
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Backport a patch to fix systemd journal issue about
sd_journal_next not behaving correctly after sd_journal_seek_tail.
(From OE-Core rev: ea59aed1ff7dbfb28d1e2cd55adca80dad2502e2)
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability in the package_index module of pypa/setuptools versions up to 69.1.1
allows for remote code execution via its download functions. These functions, which
are used to download packages from URLs provided by users or retrieved from package
index servers, are susceptible to code injection. If these functions are exposed to
user-controlled inputs, such as package URLs, they can execute arbitrary commands on
the system. The issue is fixed in version 70.0.
References:
https://nvd.nist.gov/vuln/detail/CVE-2024-6345https://ubuntu.com/security/CVE-2024-6345
Upstream patch:
88807c7062
(From OE-Core rev: 238c305ba2c513a070818de4b6ad4316b54050a7)
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick commit from 2.13 branch as 2.9 branch is unmaintained now.
(From OE-Core rev: 7777cd6b28988a0981b990d9da9d448dcdfe7b8b)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick commit from 2.12 branch as 2.9 branch is unmaintained now.
(From OE-Core rev: fbd708438aba0381a6c4f3d6cfbbd743f89a4f97)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Backport patch to remove vulnerable component.
This is a breaking change, but there will be no other fix for this CVE
as upstream did the deletion without providing a fix first.
If someone really needs this feature, which the commit message describes
as deprecated, bbappend with patch removal is possible.
License-Update: passprompt plugin removed
(From OE-Core rev: d04a2b5f4899845429e1c5893535f5df1221fcbf)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Initially, PAM community fixed CVE-2024-10041 in the version v1.6.0 via commit b3020da.
But not all cases were covered with this fix and issues were reported after the release.
In the v1.6.1 release, PAM community fixed these issues via commit b7b9636.
Backport this commit b7b9636, which
Fixes: b3020da ("pam_unix/passverify: always run the helper to obtain shadow password file entries")
Backport from b7b9636208
(From OE-Core rev: 71035c8c5907f7103ce40b92490a10bd3dde7226)
Signed-off-by: Shubham Kulkarni <skulkarni@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 has a DoS
vulnerability when it parses an XML that has many deep elements that have
same local name attributes. If you need to parse untrusted XMLs with tree
parser API like REXML::Document.new, you may be impacted to this vulnerability.
If you use other parser APIs such as stream parser API and SAX2 parser API,
this vulnerability is not affected. The REXML gem 3.3.6 or later include the
patch to fix the vulnerability.
Reference:
https://security-tracker.debian.org/tracker/CVE-2024-43398
Upstream-patch:
7cb5eaeb22
(From OE-Core rev: f23d1bfca0ea57150c397bc2e495191fb61423d0)
Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Upgrade from 250.5 to 250.14 removed patches for these CVEs because they
were interated in the new version.
However NVD DB does not contain information about these backports to
v250 branch, so they need to be ignored.
(From OE-Core rev: b86129da823c55a3e08ee72c99675301948949f8)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
NVD responses changed to an invalid json between:
* April 5, 2025 at 3:03:44 AM GMT+2
* April 5, 2025 at 4:19:48 AM GMT+2
The last response is since then in format
{
"resultsPerPage": 625,
"startIndex": 288000,
"totalResults": 288625,
"format": "NVD_CVE",
"version": "2.0",
"timestamp": "2025-04-07T07:17:17.534",
"vulnerabilities": [
{...},
...
{...},
]
}
Json does not allow trailing , in responses, that is json5 format.
So cve-update-nvd2-native do_Fetch task fails with log backtrace ending:
...
File: '/builds/ccp/meta-siemens/projects/ccp/../../poky/meta/recipes-core/meta/cve-update-nvd2-native.bb', lineno: 234, function: update_db_file
0230: if raw_data is None:
0231: # We haven't managed to download data
0232: return False
0233:
*** 0234: data = json.loads(raw_data)
0235:
0236: index = data["startIndex"]
0237: total = data["totalResults"]
0238: per_page = data["resultsPerPage"]
...
File: '/usr/lib/python3.11/json/decoder.py', lineno: 355, function: raw_decode
0351: """
0352: try:
0353: obj, end = self.scan_once(s, idx)
0354: except StopIteration as err:
*** 0355: raise JSONDecodeError("Expecting value", s, err.value) from None
0356: return obj, end
Exception: json.decoder.JSONDecodeError: Expecting value: line 1 column 1442633 (char 1442632)
...
There was no announcement about json format of API v2.0 by nvd.
Also this happens only if whole database is queried (database update is
fine, even when multiple pages as queried).
And lastly it's only the cve list, all other lists inside are fine.
So this looks like a bug in NVD 2.0 introduced with some update.
Patch this with simple character deletion for now and let's monitor the
situation and possibly switch to json5 in the future.
Note that there is no native json5 support in python, we'd have to use
one of external libraries for it.
(From OE-Core rev: cee817c0c3653cc96833815bfe2c87d2d85cc19e)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6e526327f5c9e739ac7981e4a43a4ce53a908945)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Directory traversal vulnerability in the do_extract_currentfile
function in miniunz.c in miniunzip in minizip before 1.1-5 might
allow remote attackers to write to arbitrary files via a crafted
entry in a ZIP archive.
Reference:
https://security-tracker.debian.org/tracker/CVE-2014-9485
Upstream-patch:
14a5f8f266
(From OE-Core rev: 32c4b28fc06e39ab8ef86aebc5e1e1ae19934495)
Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There is a new CVE which is missing vulnStatus field:
https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-2682
This leads to:
File: '<snip>/poky/meta/recipes-core/meta/cve-update-nvd2-native.bb', lineno: 336, function: update_db
0332:
0333: accessVector = None
0334: vectorString = None
0335: cveId = elt['cve']['id']
*** 0336: if elt['cve']['vulnStatus'] == "Rejected":
0337: c = conn.cursor()
0338: c.execute("delete from PRODUCTS where ID = ?;", [cveId])
0339: c.execute("delete from NVD where ID = ?;", [cveId])
0340: c.close()
Exception: KeyError: 'vulnStatus'
(From OE-Core rev: 453c5c8d9031be2b3a25e2a04e0f5f6325ef7298)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:
0ef80b084295 Revert "x86/mm: Randomize per-cpu entry area"
bcd2efd15975 mt76: mt7915: fix txrate reporting
e1e411e59308 x86/mm: Randomize per-cpu entry area
ba824e697315 mm: fix mmap kernel hang
f0a53361993a Linux 5.10.234
c762b76981fc Partial revert of xhci: use pm_ptr() instead #ifdef for CONFIG_PM conditionals
664760c49d98 xhci: use pm_ptr() instead of #ifdef for CONFIG_PM conditionals
1f66a3a1a516 drm/v3d: Assign job pointer to NULL before signaling the fence
d2b550208155 Input: xpad - add support for wooting two he (arm)
098b8808e2e6 Input: xpad - add unofficial Xbox 360 wireless receiver clone
5e9fed31adc8 Input: atkbd - map F23 key to support default copilot shortcut
99c866bea85e Revert "usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null"
94770cf7c512 USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb()
354aef2ec80a wifi: iwlwifi: add a few rate index validity checks
31bd7378c6fe ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find()
d072ea247481 Bluetooth: RFCOMM: Fix not validating setsockopt user input
d19a8650fd3d vfio/platform: check the bounds of read/write syscalls
553df82a8c73 signal/m68k: Use force_sigsegv(SIGSEGV) in fpsp040_die
f70103a4355c m68k: Update ->thread.esp0 before calling syscall_trace() in ret_from_signal
03c56665dab1 net: sched: fix ets qdisc OOB Indexing
8c41abc11aa8 gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag
09f698656628 ASoC: samsung: Add missing depends on I2C
20019b1f0040 irqchip/sunxi-nmi: Add missing SKIP_WAKE flag
3ff6ce057622 scsi: iscsi: Fix redundant response for ISCSI_UEVENT_GET_HOST_STATS request
d5bd48f16d4a seccomp: Stub for !CONFIG_SECCOMP
c269af144a79 ASoC: samsung: Add missing selects for MFD_WM8994
771f8a8a6995 ASoC: wm8994: Add depends on MFD core
fe2c0bd6d1e2 net: fix data-races around sk->sk_forward_alloc
285ce1f89f8d scsi: sg: Fix slab-use-after-free read in sg_release()
7ffaf1a16f65 x86/xen: fix SLS mitigation in xen_hypercall_iret()
daeac89cdb03 vsock: prevent null-ptr-deref in vsock_*[has_data|has_space]
18a7fc371d1d vsock/virtio: discard packets if the transport changes
a925a200299a fou: remove warn in gue_gro_receive on unsupported protocol
f9f76ff74dae nfsd: add list_head nf_gc to struct nfsd_file
8a8b83016f06 ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()
83f5a87ee8ca blk-cgroup: Fix UAF in blkcg_unpin_online()
605889754ee6 RDMA/hns: Fix deadlock on SRQ async events.
461091c27f55 vmalloc: fix accounting with i915
e8d3c53c6f1c drm/radeon: check bo_va->bo is non-NULL before using it
85a9c98a5e0f iio: adc: rockchip_saradc: fix information leak in triggered buffer
031538ff9c32 iio: imu: inv_icm42600: fix timestamps after suspend if sensor is on
641b4041cb4e iio: imu: inv_icm42600: fix spi burst write not supported
da55e7622580 Revert "PCI: Use preserve_config in place of pci_flags"
14984139f1f2 hrtimers: Handle CPU state correctly on hotplug
d1099ad23596 irqchip/gic-v3: Handle CPU_PM_ENTER_FAILED correctly
2dfbb920a89b gpiolib: cdev: Fix use after free in lineinfo_changed_notify
80da29deb88a fs/proc: fix softlockup in __read_vmcore (part 2)
ae527bd2b537 vsock: reset socket state when de-assigning the transport
3cde51df39c3 vsock/virtio: cancel close work in the destructor
f9710a5cbd99 net: ethernet: xgbe: re-add aneg to supported features in PHY quirks
17dcfc0f54b7 x86/asm: Make serialize() always_inline
a722df501ba3 nvmet: propagate npwg topology
3f8b360ce0e0 poll_wait: add mb() to fix theoretical race between waitqueue_active() and .poll()
99db426762e1 kheaders: Ignore silly-rename files
95597be4806d fs: fix missing declaration of init_files
2cf7601e1295 hfs: Sanity check the root record
98ea165a2ac2 mac802154: check local interfaces before deleting sdata list
3eb329978997 i2c: rcar: fix NACK handling when being a target
8d037f34385a i2c: mux: demux-pinctrl: check initial mux selection, too
a34050f70e79 drm/v3d: Ensure job pointer is set to NULL after job completion
72dc13457e67 net/mlx5: Fix RDMA TX steering prio
47166d31e531 net/mlx5: Refactor mlx5_get_flow_namespace
9f07d9fd6181 net/mlx5: Add priorities for counters in RDMA namespaces
faf64fe8915d nfp: bpf: prevent integer overflow in nfp_bpf_event_output()
5f1678346109 gtp: Destroy device along with udp socket's netns dismantle.
66f1864cd0b1 gtp: Use for_each_netdev_rcu() in gtp_genl_dump_pdp().
320a0dea3b28 gtp: use exit_batch_rtnl() method
fae8bd0b07f9 net: add exit_batch_rtnl() method
37fdbeb0e293 net: net_namespace: Optimize the code
bb36838dac7b bpf: Fix bpf_sk_select_reuseport() memory leak
9f7ad4eb839d net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()
a13d640d8c8e phy: usb: Fix clock imbalance for suspend/resume
3bc29a491192 phy: usb: Use slow clock for wake enabled suspend
246428bfb9e7 sctp: sysctl: rto_min/max: avoid using current->nsproxy
acec80d9f126 drm: adv7511: Fix use-after-free in adv7533_attach_dsi()
49881fcef3d4 drm: bridge: adv7511: use dev_err_probe in probe function
3747465c5da7 drm: bridge: adv7511: unregister cec i2c device after cec adapter
09a817549036 drm/bridge: adv7533: Switch to devm MIPI-DSI helpers
2c0106fdd35c drm/mipi-dsi: Create devm device attachment
5ad24956a20e drm/mipi-dsi: Create devm device registration
cb3a64b6b449 drm: bridge: adv7511: Remove redundant null check before clk_disable_unprepare
8ff6f635a08c ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv
af45819b29bf ocfs2: correct return value of ocfs2_local_free_info()
a8d08d9f5e12 phy: usb: Toggle the PHY power during init
5917962b5196 phy: usb: Add "wake on" functionality for newer Synopsis XHCI controllers
5330de58f70d block: remove the update_bdev parameter to set_capacity_revalidate_and_notify
afa920d411e9 sd: update the bdev size in sd_revalidate_disk
72224a75c5f6 nvme: let set_capacity_revalidate_and_notify update the bdev size
dddf71505857 loop: let set_capacity_revalidate_and_notify update the bdev size
5601c261bbc5 arm64: dts: rockchip: add hevc power domain clock to rk3328
00360f3f3962 arm64: dts: rockchip: add #power-domain-cells to power domain nodes
3528099673ba iio: inkern: call iio_device_put() only on mapped devices
ac8d932e3214 iio: adc: at91: call input_free_device() on allocated iio_dev
1b7b9084fad8 iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep()
2d72fc4a1ca6 iio: gyro: fxas21002c: Fix missing data update in trigger handler
3bf8d1e87939 iio: adc: ti-ads8688: fix information leak in triggered buffer
a386d9d2dc66 iio: imu: kmx61: fix information leak in triggered buffer
b0e9c11c762e iio: light: vcnl4035: fix information leak in triggered buffer
e1c1e8c05010 iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer
d25f1fc27367 iio: pressure: zpa2326: fix information leak in triggered buffer
3e4d32cc1459 usb: gadget: f_fs: Remove WARN_ON in functionfs_bind
209b72d3c4e1 usb: fix reference leak in usb_new_device()
d9f78c900648 USB: core: Disable LPM only for non-suspended ports
ee63cb2262e3 USB: usblp: return error when setting unsupported protocol
1062b648bff6 usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null
4c51407cb8a4 usb: dwc3: gadget: fix writing NYET threshold
258b3530cfdf USB: serial: cp210x: add Phoenix Contact UPS Device
09d4072aabee usb-storage: Add max sectors quirk for Nokia 208
717b7360ccc1 staging: iio: ad9832: Correct phase range check
38da4bab433c staging: iio: ad9834: Correct phase range check
e764b4e18789 USB: serial: option: add Neoway N723-EA support
dad372177818 USB: serial: option: add MeiG Smart SRM815
66de7a2541d8 md/raid5: fix atomicity violation in raid5_cache_count
08765d4e44d4 scripts/sorttable: fix orc_sort_cmp() to maintain symmetry and transitivity
88136f799f33 drm/amd/display: increase MAX_SURFACES to the value supported by hw
2f8067b3425c ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[]
522ddfb1fb62 ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[]
8c38baa03ac8 riscv: Fix sleeping in invalid context in die()
497471baf53b drm/amd/display: Add check for granularity in dml ceil/floor helpers
dc583e7e5f85 sctp: sysctl: auth_enable: avoid using current->nsproxy
03ca51faba2b sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy
2c1a42fbd98e dm-ebs: don't set the flag DM_TARGET_PASSES_INTEGRITY
cd30a3960433 dm thin: make get_first_thin use rcu-safe list first function
9340385468d0 afs: Fix the maximum cell name length
a965f7f0ea3a netfilter: conntrack: clamp maximum hashtable size to INT_MAX
208929266386 netfilter: nf_tables: imbalance in flowtable binding
72e6ca38ca66 tls: Fix tls_sw_sendmsg error handling
53b7a6762483 cxgb4: Avoid removal of uninserted tid
43658e4a5f27 net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute
22e3f5ee7317 tcp/dccp: allow a connection when sk_max_ack_backlog is zero
9261b8252473 tcp/dccp: complete lockless accesses to sk->sk_max_ack_backlog
c9c0471e29f0 net: 802: LLC+SNAP OID:PID lookup on start of skb data
c2da454712f2 ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe()
4a6167ae75ad netfilter: nft_dynset: honor stateful expressions in set definition
01c4e22c260d ASoC: mediatek: disable buffer pre-allocation
d8cfbb8723bd exfat: fix the infinite loop in exfat_readdir()
5c10baed458e dm array: fix cursor index when skipping across block boundaries
cb223d9606a3 dm array: fix unreleased btree blocks on closing a faulty array cursor
fc1ef07c3522 dm array: fix releasing a faulty array block twice in dm_array_cursor_end
359abf6ca962 jbd2: flush filesystem device before updating tail sequence
0f2b2d9e881c ceph: give up on paths longer than PATH_MAX
70a41e4b4d83 smb: client: fix potential OOB in smb2_dump_detail()
e1109eace22a scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine
14c02f4e6920 Linux 5.10.233
d675fefbaec3 mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim()
17c3f7988f32 drm: adv7511: Drop dsi single lane support
081bdb3a3167 net/sctp: Prevent autoclose integer overflow in sctp_association_init()
5a1dd20a9d86 sky2: Add device ID 11ab:4373 for Marvell 88E8075
c55d186376a8 pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking
42a6eb4ed7a9 RDMA/uverbs: Prevent integer overflow issue
50804bd95f00 modpost: fix the missed iteration for the max bit in do_input()
0cd78baf4dd2 modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host
d5a30a6117ea btrfs: don't set lock_owner when locking extent buffer for reading
51b03b7473a0 btrfs: locking: remove the recursion handling code
20d96aa61607 ARC: build: Try to guess GCC variant of cross compiler
58713417015b irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base
af37dc1f017b net: usb: qmi_wwan: add Telit FE910C04 compositions
e529b4686038 bpf: fix potential error return
6f3ce0ee5c3c sound: usb: format: don't warn that raw DSD is unsupported
a2718ed1eb8c btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount
12a6e304325d wifi: mac80211: wake the queues in case of failure in resume
2558d753df06 tracing: Prevent bad count for tracing_cpumask_write
1bf53a2145fa kernel: Initialize cpumask before parsing
ba5120a2fb5f btrfs: fix use-after-free when COWing tree bock and tracing is enabled
bf267f2f81bc btrfs: rename and export __btrfs_cow_block()
1817e3e849f6 btrfs: locking: remove all the blocking helpers
4da6be8eb618 btrfs: switch extent buffer tree lock to rw_semaphore
42d7147c9c21 dmaengine: dw: Select only supported masters for ACPI devices
d3017895e393 ila: serialize calls to nf_register_net_hooks()
0d3fa6c3c9ca af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK
fa57f07ba062 af_packet: fix vlan_get_tci() vs MSG_PEEK
7eaa71f56a6f RDMA/rtrs: Ensure 'ib_sge list' is accessible
925f2be402f9 eth: bcmsysport: fix call balance of priv->clk handling routines
9c76fb573889 ALSA: usb-audio: US16x08: Initialize array before use
0f67a980f2ae net: llc: reset skb->transport_header
6a14b46052ee netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext
cf6befa7c569 netrom: check buffer length before accessing it
60e64b6261d1 drm/bridge: adv7511_audio: Update Audio InfoFrame properly
bbcbb83a7f1f RDMA/bnxt_re: Fix the locking while accessing the QP table
070d214c0183 RDMA/bnxt_re: Fix max_qp_wrs reported
cff07807f693 RDMA/bnxt_re: Fix reporting hw_ver in query_device
5684c11d3aec RDMA/bnxt_re: Add check for path mtu in modify_qp
aea89a85bc74 RDMA/mlx5: Enforce same type port association for multiport RoCE
af3626302040 net/mlx5: Make API mlx5_core_is_ecpf accept const pointer
6531f9c7e518 thunderbolt: Add support for Intel Panther Lake-M/P
f8b8c8c83528 thunderbolt: Add support for Intel Lunar Lake
e7cca35083b8 thunderbolt: Add Intel Barlow Ridge PCI ID
a534e5d47e4f thunderbolt: Add support for Intel Meteor Lake
aeb4a70248f5 thunderbolt: Add support for Intel Raptor Lake
21347105ded3 thunderbolt: Add support for Intel Alder Lake
712137b177b4 selinux: ignore unknown extended permissions
36c569dfa724 x86/hyperv: Fix hv tsc page based sched_clock for hibernation
c47e02201171 ipv6: prevent possible UAF in ip6_xmit()
3cb8e49178e1 skb_expand_head() adjust skb->truesize incorrectly
f67138dd338c nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net
a1c3a19446a4 btrfs: avoid monopolizing a core when activating a swap file
b29c7783ac1f power: supply: gpio-charger: Fix set charge current limits
5c4a141ff09e tracing: Constify string literal data member in struct trace_event_call
e3b89e6a6422 arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs
de29cb3bdfb2 arm64: mm: Rename asid2idx() to ctxid2asid()
109f91d8b933 drm/dp_mst: Fix MST sideband message body length check
221109ba2127 bpf: fix recursive lock when verdict program return SK_PASS
79f87a6ec39f bpf: Check validity of link->type in bpf_link_show_fdinfo()
1504108cb602 ipv6: fix possible UAF in ip6_finish_output2()
ee6b1db17f82 ipv6: use skb_expand_head in ip6_xmit
4132c4ad00dd ipv6: use skb_expand_head in ip6_finish_output2
23f95bbe7250 skbuff: introduce skb_expand_head()
3754c15b9348 MIPS: Probe toolchain support of -msym32
9ca428c6397a virtio-blk: don't keep queue frozen during system suspend
bbb55d1cb0b0 scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error
f37f301d84ea scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time
3cc9e1a56692 platform/x86: asus-nb-wmi: Ignore unknown event 0xCF
c06a5b7f12a4 regmap: Use correct format specifier for logging range errors
1c58d374ca44 ALSA: hda/conexant: fix Z60MR100 startup pop issue
f36d024bd15e scsi: megaraid_sas: Fix for a potential deadlock
c1d93e7100e5 scsi: qla1280: Fix hw revision numbering for ISP1020/1040
7911ca06b674 watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04
7fca949e30c3 tracing/kprobe: Make trace_kprobe's module callback called after jump_label update
1562871ef613 mtd: rawnand: fix double free in atmel_pmecc_create_user()
ed1a8aaa3445 dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset
e87dbcfdf1c0 dmaengine: mv_xor: fix child node refcount handling in early exit
619a5aeb0f0d phy: core: Fix that API devm_phy_destroy() fails to destroy the phy
8826abb0ae2d phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider
574e5cfae2d8 phy: core: Fix that API devm_phy_put() fails to release the phy
9e21f671b9a9 phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup()
722ece95fcce phy: core: Fix an OF node refcount leakage in _of_phy_get()
36a6523d097d mtd: diskonchip: Cast an operand to prevent potential overflow
9ad478986fd1 nfsd: restore callback functionality for NFSv4.0
d814eeb7faa4 bpf: Check negative offsets in __bpf_skb_min_len()
1b63193b150c tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress()
4e5aab3e4115 mm/vmstat: fix a W=1 clang compiler warning
e11778189513 media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg
4e2e9adaea7d epoll: Add synchronous wakeup support for ep_poll_callback
6e1e991c4017 ceph: validate snapdirname option length when mounting
b7f89856c5fc of: Fix refcount leakage for OF node returned by __of_get_dma_parent()
c86a40c26857 of: Fix error path in of_parse_phandle_with_args_map()
9416f17809a1 udmabuf: also check for F_SEAL_FUTURE_WRITE
5d4ed71327b0 nilfs2: prevent use of deleted inode
8d42147c83ee of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one()
64ee07cfd50f NFS/pnfs: Fix a live lock between recalled layouts and layoutget
d81f4e73aff9 Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet
8b53be082fc6 btrfs: tree-checker: reject inline extent items with 0 ref count
98f31cf96f47 zram: refuse to use zero sized block device as backing device
df56b6f9b430 sh: clk: Fix clk_enable() to return 0 on NULL clk
6742afdf6171 hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers
525c3d0595b0 USB: serial: option: add Telit FE910C04 rmnet compositions
b38b9456621d USB: serial: option: add MediaTek T7XX compositions
25a5f80417b2 USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready
452c1654c3cd USB: serial: option: add MeiG Smart SLM770A
daf09316ddc2 USB: serial: option: add TCL IK512 MBIM & ECM
0e8098cc2538 efivarfs: Fix error on non-existent file
de4359fa4f81 i2c: riic: Always round-up when calculating bus period
8eb181aee760 chelsio/chtls: prevent potential integer overflow on 32bit
ddfb709c2895 mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk
ad26612c2af9 netfilter: ipset: Fix for recursive locking warning
a24ce83a2de1 net: ethernet: bgmac-platform: fix an OF node reference leak
1942218bf95f net: hinic: Fix cleanup in create_rxqs/txqs()
64f3f7388b90 ionic: use ee->offset when returning sprom data
81bdfcd6e6a9 netdevsim: prevent bad user input in nsim_dev_health_break_write()
2fb425f27ee6 netdevsim: switch to memdup_user_nul()
82c7ad9ca099 net/smc: check return value of sock_recvmsg when draining clc data
846bada23bfc net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg
e18830b7c498 net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll
7678451d66b8 erofs: fix incorrect symlink detection in fast symlink
0ab621fcdff1 erofs: fix order >= MAX_ORDER warning due to crafted negative i_size
0f851f8c62d0 i2c: pnx: Fix timeout in wait functions
e430962901c7 usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled
4ba1ee910938 usb: cdns3: Add quirk flag to enable suspend residency
9339c91863de PCI: Add ACS quirk for Broadcom BCM5760X NIC
dab416edff9d ALSA: usb: Fix UBSAN warning in parse_audio_unit()
f9869f6772e3 MIPS: Loongson64: DTS: Fix msi node for ls7a
0dde3ae52a0d PCI: Use preserve_config in place of pci_flags
6c7731ad179a PCI/AER: Disable AER service on suspend
5e473f462a16 net: sched: fix ordering of qlen adjustment
aaccf3924c7a scsi: dpt_i2o: Remove obsolete driver
0c8ac16c1e2f usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
bfdadc630e33 firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier()
abc9475430fd Linux 5.10.232
20ad30bed789 x86/static-call: fix 32-bit build
e7c1fcdda47b ALSA: usb-audio: Fix a DMA to stack memory bug
b751972c26f6 x86/xen: remove hypercall page
b09001da8227 x86/xen: use new hypercall functions instead of hypercall page
76b42b1340ca x86/xen: add central hypercall functions
05df6e6cd9a7 x86/xen: don't do PV iret hypercall through hypercall page
bed5b6a6f207 x86/static-call: provide a way to do very early static-call updates
4099bcd87390 objtool/x86: allow syscall instruction
e74011db5179 x86: make get_cpu_vendor() accessible from Xen code
1d5354a9182b xen/netfront: fix crash when removing device
dac3f7ba392c Revert "clkdev: remove CONFIG_CLKDEV_LOOKUP"
8b7e0d915689 Revert "clocksource/drivers:sp804: Make user selectable"
7f4e1fee0a74 drm/i915: Fix memory leak by correcting cache object name in error handler
47b341f714e6 tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe()
dadf82c1b260 bpf: sync_linked_regs() must preserve subreg_def
6fd69b2f2991 blk-iocost: Avoid using clamp() on inuse in __propagate_weights()
32a849c676ea ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired
45af429f76e7 team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
a1a97584334c bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
49cb8083c8df net: bonding, dummy, ifb, team: advertise NETIF_F_GSO_SOFTWARE
216509dda290 net/sched: netem: account for backlog updates from child qdisc
0fd8c3179b08 qca_spi: Make driver probing reliable
ab891aeb28d1 qca_spi: Fix clock speed for multiple QCA7000
68e6a5f0cdd8 cxgb4: use port number to set mac addr
cf604286b70d ACPI: resource: Fix memory resource type union access
76d856f03d02 net: lapb: increase LAPB_HEADER_LEN
4d2b56e2fb1e selftests: mlxsw: sharedbuffer: Remove duplicate test cases
938742593a57 selftests: mlxsw: sharedbuffer: Remove h1 ingress test case
a771f349c95d tipc: fix NULL deref in cleanup_bearer()
784fc6707949 batman-adv: Do not let TT changes list grows indefinitely
48e63887c01f batman-adv: Remove uninitialized data in full table TT response
4fb09749f266 batman-adv: Do not send uninitialized TT changes
616aa5f3c86e acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl
632fb232b6bb exfat: fix potential deadlock on __exfat_get_dentry_set
e26fa236758e virtio/vsock: Fix accept_queue memory leak
7b2e41b2d251 bpf, sockmap: Fix update element with same
7ba7e748bd71 xfs: fix scrub tracepoints when inode-rooted btrees are involved
4e33aedc3026 xfs: don't drop errno values when we fail to ficlone the entire range
28b3c03a6790 usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer
922142bcff97 usb: ehci-hcd: fix call balance of clocks handling routines
0f6184603ba8 usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature
1e05b5b36aea ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys()
ff6f8a29e2a7 usb: host: max3421-hcd: Correctly abort a USB request.
bd92492a960c tcp: check space before adding MPTCP SYN options
df8d35efada4 Linux 5.10.231
af442dd3e3fc octeontx2-pf: Fix otx2_get_fecparam()
ddeef5079c6b octeontx2: Fix condition.
bde4e7c15271 media: uvcvideo: Require entities to have a non-zero unique ID
45a92cbc88e4 ALSA: usb-audio: Fix out of bounds reads when finding clock sources
3fc53e46fdc8 scsi: core: Fix scsi_mode_select() buffer length handling
a0777b45095f scsi: sd: Fix sd_do_mode_sense() buffer length handling
38283b035c9d PCI: rockchip-ep: Fix address translation unit programming
43c48ad24c03 Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()"
f5e45e9464c7 modpost: Add .irqentry.text to OTHER_SECTIONS
969ee61aa117 ocfs2: Revert "ocfs2: fix the la space leak when unmounting an ocfs2 volume"
4fcd903a5d9e drm/amd/display: Check BIOS images before it is used
7d5f99db8b15 xhci: dbc: Fix STALL transfer event handling
99f0fe6d0191 jffs2: Fix rtime decompressor
f6fc251baefc jffs2: Prevent rtime decompress memory corruption
dbedf8ddde53 KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE
c329033f1b72 KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device
f4dbf393bfb4 KVM: arm64: vgic-its: Add a data length check in vgic_its_save_*
c3cded0ff622 Revert "unicode: Don't special case ignorable code points"
7522e61c5350 btrfs: fix missing snapshot drew unlock when root is dead during swap activation
354f24382480 sched/core: Prevent wakeup of ksoftirqd during idle load balance
a676dbc8af8c sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU turning busy
4aaaf22aa193 sched/fair: Add NOHZ balancer flag for nohz.next_balance updates
f8d61ae46cf4 sched/fair: Trigger the update of blocked load on newly idle cpu
0669c671ab36 sched/fair: Merge for each idle cpu loop of ILB
88136224a8f1 sched/fair: Remove unused parameter of update_nohz_stats
1940ddbeb9af sched/fair: Remove update of blocked load from newidle_balance
f3794dbff0ed sched/core: Remove the unnecessary need_resched() check in nohz_csd_func()
44624fbc019f misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle
a79a7e3c03ae powerpc/prom_init: Fixup missing powermac #size-cells
5a2eaa3ad2b8 MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a
19bc36c8d4ec usb: chipidea: udc: handle USB Error Interrupt if IOC not set
5ac1dd51aaa0 i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock
e5f0e94f95b8 PCI: Add ACS quirk for Wangxun FF5xxx NICs
1af3a54dcea4 PCI: Add 'reset_subordinate' to reset hierarchy below bridge
dff561e4060d f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode.
22169b367563 nvdimm: rectify the illogical code within nd_dax_probe()
38953b4419d1 pinctrl: qcom-pmic-gpio: add support for PM8937
5d552000fe9f scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset
910f9d22095d scsi: st: Don't modify unknown block number in MTIOCGET
ddcfc5708da9 leds: class: Protect brightness_show() with led_cdev->led_access mutex
3dd2c5cb2c69 scsi: hisi_sas: Add cond_resched() for no forced preemption model
dd72b3ac2fc0 tracing: Use atomic64_inc_return() in trace_clock_counter()
170b0323b032 pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU
18347e7e0404 netpoll: Use rcu_access_pointer() in __netpoll_setup
78b13b562206 net/neighbor: clear error in case strict check is not set
f795bdf9dbe2 rocker: fix link status detection in rocker_carrier_init()
042da326b0a3 ASoC: hdmi-codec: reorder channel allocation list
e07b54b67e9c Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables
7522d7d745d1 wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw()
856b24b5d92c wifi: ipw2x00: libipw_rx_any(): fix bad alignment
13c3a54f48a6 drm/amdgpu: set the right AMDGPU sg segment limitation
03c4c3e02cf9 drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov
368a53315222 jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
97e693593162 jfs: fix array-index-out-of-bounds in jfs_readdir
df7c76636952 jfs: fix shift-out-of-bounds in dbSplit
8c97a4d5463a jfs: array-index-out-of-bounds fix in dtReadFirst
3ccce34a5c3f dma-debug: fix a possible deadlock on radix_lock
064149161c37 drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr
d28d22728b85 wifi: ath5k: add PCI ID for Arcadyan devices
9400aeb5cd02 wifi: ath5k: add PCI ID for SX76X
35360255ca30 net: inet6: do not leave a dangling sk pointer in inet6_create()
2bc34d8c8898 net: inet: do not leave a dangling sk pointer in inet_create()
14959fd7538b net: ieee802154: do not leave a dangling sk pointer in ieee802154_create()
ce39b5576785 net: af_can: do not leave a dangling sk pointer in can_create()
daa13175a6de Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()
1dc1e1db9270 af_packet: avoid erroring out after sock_init_data() in packet_create()
50a90e5af499 net/sched: cbs: Fix integer overflow in cbs_set_port_rate()
a75fe481c42c net: ethernet: fs_enet: Use %pa to format resource_size_t
fbc8d9665322 net: fec_mpc52xx_phy: Use %pa to format resource_size_t
00c9f6e82591 samples/bpf: Fix a resource leak
86b66b8091c9 r8169: don't apply UDP padding quirk on RTL8126A
823f4dff6cbd drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check()
418cf1b2c399 drm/mcde: Enable module autoloading
a3c885165d7c drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model
c04d1dc54b11 drm/vc4: hvs: Set AXI panic modes for the HVS
c5623d7f9f90 media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108
7850ca9a6695 media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera
f4f2ef66d288 kcsan: Turn report_filterlist_lock into a raw_spinlock
34cd4ec08b89 kselftest/arm64: Don't leak pipe fds in pac.exec_sign_all()
8f855689c164 btrfs: avoid unnecessary device path update for the same device
99192c735ed4 s390/cpum_sf: Handle CPU hotplug remove during sampling
c2527d07c7e9 iommu/arm-smmu: Defer probe of clients after smmu device bound
24328b776fb2 ocfs2: update seq_file index in ocfs2_dlm_seq_next
d3aeb50fcb12 mmc: core: Further prevent card detect during shutdown
af940c0d623d mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet
287e4952d77b regmap: detach regmap from dev on regmap_exit
7175728f6b2d dma-buf: fix dma_fence_array_signaled v4
70f3de869865 bpf: fix OOB devmap writes when deleting elements
336e30f32ae7 bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again
e3732102a9d6 nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()
df43d8da6bac scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt
12f04fc8580e scsi: qla2xxx: Fix use after free on unload
c87add0d819b scsi: qla2xxx: Supported speed displayed incorrectly for VPorts
406e57325daa scsi: qla2xxx: Fix NVMe and NPIV connect issue
d7fd14dd866f ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG)
a59d39e4770f ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8
b3ebf8cbd886 ALSA: usb-audio: add mixer mapping for Corsair HS80
1152dd13845e arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL
4a6f053af119 tracing: Fix cmp_entries_dup() to respect sort() comparison rules
4cbc202f28a5 watchdog: rti: of: honor timeout-sec property
5912a921289e HID: wacom: fix when get product name maybe null pointer
43c6d763569f bpf: Fix exact match conditions in trie_get_next_key()
adb4a970bfa9 bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie
9c19ea59965e ocfs2: free inode when ocfs2_get_init_inode() fails
e0c6ce842409 spi: mpc52xx: Add cancel_work_sync before module remove
dbedc7e142df tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg
8cd416aaac68 drm/sti: Add __iomem for mixer_dbg_mxn's parameter
7fd09abc4bdd i3c: master: Fix dynamic address leak when 'assigned-address' is present
b70ba15c66d5 i3c: master: Extend address status bit to 4 and add I3C_ADDR_SLOT_EXT_DESIRED
1c47272e535d i3c: master: Replace hard code 2 with macro I3C_ADDR_SLOT_STATUS_BITS
3aecd6fd55cf i3c: fix incorrect address slot lookup on 64-bit
fbb3aa94fc8d dt-bindings: serial: rs485: Fix rs485-rts-delay property
0da0be3b1d17 dt_bindings: rs485: Correct delay values
4733f68e59bb gpio: grgpio: Add NULL check in grgpio_probe
c8e3aa367e71 gpio: grgpio: use a helper variable to store the address of ofdev->dev
d9fa09ca004b geneve: do not assume mac header is set in geneve_xmit_skb()
d93efe18b49a ethtool: Fix wrong mod state in case of verbose and no_mask bitset
e21855091f11 netfilter: nft_set_hash: skip duplicated elements pending gc run
6099b5d3e371 netfilter: ipset: Hold module reference while requesting a module
98ea587a4048 net: sched: fix erspan_opt settings in cls_flower
e0155b1b1509 igb: Fix potential invalid memory access in igb_init_module()
9da327f2e6b7 net/qed: allow old cards not supporting "num_images" to work
650ee9a22d7a tipc: Fix use-after-free of kernel socket in cleanup_bearer().
c99507fff94b dccp: Fix memory leak in dccp_feat_change_recv
b90d061345bb net/ipv6: release expired exception dst cached in socket
b3282c2bebee can: j1939: j1939_session_new(): fix skb reference counting
aa632691c722 net: hsr: avoid potential out-of-bound access in fill_frame_info()
f9653b00bef2 net/sched: tbf: correct backlog statistic for GSO packets
7f5eda0e315b ptp: Add error handling for adjfine callback in ptp_clock_adjtime
ad28612ebae1 netfilter: x_tables: fix LED ID check in led_tg_check()
0b2cbed82b7c ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init()
273cab979da1 can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics
265f8341470f can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL
601ec0003c17 watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart()
05bed96e4cb0 iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call
4715e23b3a7f drm/etnaviv: flush shader L1 cache after user commandstream
c1406d8329f5 btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc()
2d505a801e57 nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur
7fd29d284b55 nfsd: make sure exp active before svc_export_show
1f53e8400b13 dm thin: Add missing destroy_work_on_stack()
c6ac663c92c8 PCI: keystone: Add link up check to ks_pcie_other_map_bus()
093ecc6d82ff i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()
aa10c746e79a scsi: ufs: exynos: Fix hibern8 notify callbacks
a1f2aff064ef util_macros.h: fix/rework find_closest() macros
afc1e3c00b3f ad7780: fix division by zero in ad7780_write_raw()
6fd018aa168e btrfs: ref-verify: fix use-after-free after invalid ref action
6f3821acd7c3 quota: flush quota_release_work upon quota writeback
366e55e91fe9 octeontx2-pf: Fix out-of-bounds read in otx2_get_fecparam()
442dadf32d1c ASoC: fsl_micfil: fix the naming style for mask definition
971b48934577 sh: intc: Fix use-after-free bug in register_intc_controller()
86a1f9fa2480 sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport
8c06a00a9be6 SUNRPC: Replace internal use of SOCKWQ_ASYNC_NOSPACE
a4b153bdaad5 sunrpc: remove unnecessary test in rpc_task_set_client()
3ccfa8269fae SUNRPC: Convert rpc_client refcount to use refcount_t
e2730edfff6b SUNRPC: correct error code comment in xs_tcp_setup_socket()
f69fb61c69a0 nfs: ignore SB_RDONLY when mounting nfs
bd4624d73373 modpost: remove incorrect code in do_eisa_entry()
b0660da68491 rtc: ab-eoz9: don't fail temperature reads on undervoltage notification
7f5a2ed5c181 9p/xen: fix release of IRQ
fa365f688014 9p/xen: fix init sequence
57ee79e9c94c block: return unsigned int from bdev_io_min
25ec6cd751c9 jffs2: fix use of uninitialized variable
8d8b3f5f4cbf ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit
04c0b0f37617 ubi: fastmap: Fix duplicate slab cache names while attaching
36b25baf96b8 ubifs: Correct the total block count by deducting journal reservation
0d68e8514d90 rtc: check if __rtc_read_time was successful in rtc_timer_do_work()
cd154812858d rtc: abx80x: Fix WDT bit position of the status register
c48db3147c14 rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq()
5237a297ffd3 NFSv4.0: Fix a use-after-free problem in the asynchronous open()
2365f57820c0 um: Always dump trace for specified task in show_stack
634b3c3d0b5c um: Fix the return value of elf_core_copy_task_fpregs
e6102b72edc4 um: Fix potential integer overflow during physmem setup
52ee41452527 rpmsg: glink: Propagate TX failures in intentless mode as well
02999e135b01 SUNRPC: make sure cache entry active before cache_show
3c5f545c9a1f NFSD: Prevent a potential integer overflow
a44a4260a28c lib: string_helpers: silence snprintf() output truncation warning
8ceb21d76426 usb: dwc3: gadget: Fix looping of queued SG entries
a98340265f28 usb: dwc3: gadget: Fix checking for number of TRBs left
3591fe07aa53 ALSA: hda/realtek: Apply quirk for Medion E15433
99af54eb0c96 ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max
820bc3f297e8 ALSA: hda/realtek: Set PCBeep to default value for ALC274
ee68e7bd8022 ALSA: hda/realtek: Update ALC225 depop procedure
03a469024f67 media: v4l2-core: v4l2-dv-timings: check cvt/gtf result
d7408a052aa1 media: wl128x: Fix atomicity violation in fmc_send_cmd()
f74b360a012a HID: wacom: Interpret tilt data from Intuos Pro BT as signed values
2d2192fd2e6b block: fix ordering between checking BLK_MQ_S_STOPPED request adding
dad458e77540 arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled
77755dc95ff2 sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
35f8f72b4579 um: vector: Do not use drvdata in release
3997d11fd996 serial: 8250: omap: Move pm_runtime_get_sync
6be99d4c117b um: net: Do not use drvdata in release
509ba8746f81 um: ubd: Do not use drvdata in release
0f6737cad88b ubi: wl: Put source PEB into correct list if trying locking LEB failed
fb6d3c6c1218 platform/chrome: cros_ec_typec: fix missing fwnode reference decrement
11b414ff9ab4 spi: Fix acpi deferred irq probe
2e151b8ca316 netfilter: ipset: add missing range check in bitmap_ip_uadt
fa0e202e23ff Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit"
0ff91b3bf53e serial: sh-sci: Clean sci_ports[0] after at earlycon exit
b12869cab514 Revert "usb: gadget: composite: fix OS descriptors w_value logic"
5be4bc1c73ca driver core: bus: Fix double free in driver API bus_register()
e844bccad7ee Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}()
a26842e4683f exfat: fix uninit-value in __exfat_get_dentry_set
7fc42f249daf locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass()
0b9622163926 tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler
f856246ff6da apparmor: test: Fix memory leak for aa_unpack_strdup()
b9322408d83a comedi: Flush partial mappings in error case
a4236cc4f952 fsnotify: fix sending inotify event with unexpected filename
da6e6ff1f6c5 PCI: Fix use-after-free of slot->bus on hot remove
5442dbd3342a KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status
1a89ef73b510 crypto: x86/aegis128 - access 32-bit arguments as 32-bit
e8f728442dd5 perf/x86/intel/pt: Fix buffer full but size is 0 case
626a8b956719 ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata()
bbf3f1fd8a0a jfs: xattr: check invalid xattr size more strictly
ea0527d5cc61 ext4: fix FS_IOC_GETFSMAP handling
442c6f05d94e ext4: supress data-race warnings in ext4_free_inodes_{count,set}()
62dc01c83fa7 ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices
03d68e2d244c soc: qcom: socinfo: fix revision check in qcom_socinfo_probe()
4c9fded47888 usb: ehci-spear: fix call balance of sehci clk handling routines
0aa9e30b5b4a xen: Fix the issue of resource not being properly released in xenbus_dev_probe()
e47f0e95441b apparmor: fix 'Do simple duplicate message elimination'
f89f677adc78 ALSA: hda/realtek: Update ALC256 depop procedure
6e99925d8548 ALSA: hda/realtek - Add type for ALC287
9f26a607d846 staging: greybus: uart: clean up TIOCGSERIAL
7bf3e45ea60b misc: apds990x: Fix missing pm_runtime_disable()
8a960584638f USB: chaoskey: Fix possible deadlock chaoskey_list_lock
bb37389d14f4 USB: chaoskey: fail open after removal
2e72f53f740a usb: yurex: make waiting on yurex_write interruptible
30b9a7786c48 usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read()
653903e36ca2 iio: light: al3010: Fix an error handling path in al3010_probe()
75e6dc33f16a ipmr: fix tables suspicious RCU usage
e5dffbd159ef ipmr: convert /proc handlers to rcu_read_lock()
a9615376a999 bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down
6b41c5627117 net: hsr: fix hsr_init_sk() vs network/transport headers.
1564c7ed9d29 net: introduce a netdev feature for UDP GRO forwarding
4654bcb686ac spi: atmel-quadspi: Fix register name in verbose logging function
b58678e3f243 net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken
3dbdb3f85b74 marvell: pxa168_eth: fix call balance of pep->clk handling routines
882ea20ce07c net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration
b18ab1198587 tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets
6728375984cb net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device
c399dd6e7042 power: supply: bq27xxx: Fix registers of bq27426
c5351bfba7b9 power: supply: bq27xxx: Support CHARGE_NOW for bq27z561/bq28z610/bq34z100
da4008a289e1 power: supply: core: Remove might_sleep() from power_supply_put()
70f1bad32127 fs_parser: update mount_api doc to match function signature
0918f5643fc6 vfio/pci: Properly hide first-in-list PCIe extended capability
145482f4c894 vdpa/mlx5: Fix suboptimal range on iotlb iteration
eb681998c889 NFSD: Fix nfsd4_shutdown_copy()
9d4f174342a7 NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir()
752a75811f27 NFSD: Prevent NULL dereference in nfsd4_process_cb_update()
9df83cc000ed remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region
b5ba1b37142f rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length
295cb2524309 rpmsg: glink: Fix GLINK command prefix
9761e51e1d43 rpmsg: glink: Send READ_NOTIFY command in FIFO full case
3dd661b963a3 rpmsg: glink: Add TX_DATA_CONT command while sending
e72735fcce17 perf trace: Avoid garbage when not printing a syscall's arguments
10eb66d4f295 perf trace: Do not lose last events in a race
68ccc1830e9d m68k: coldfire/device.c: only build FEC when HW macros are defined
2255a994d6f1 m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x
10f14161e830 perf trace: avoid garbage when not printing a trace event's arguments
af87c2069952 f2fs: check curseg->inited before write_sum_page in change_curseg
c6d54485cf81 f2fs: remove the unused flush argument to change_curseg
5bb54d3b377e f2fs: open code allocate_segment_by_default
c6ad7333e530 f2fs: remove struct segment_allocation default_salloc_ops
a7e306f7c32d f2fs: avoid using native allocate_segment_by_default()
6e5de38f605c f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block
43b2e068aef4 PCI: cpqphp: Fix PCIBIOS_* return value confusion
1fe390f27875 PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads
edb4833a3838 perf probe: Correct demangled symbols in C++ program
0b04b48e4cc2 perf probe: Fix libdw memory leak
26db806fa23e perf cs-etm: Don't flush when packet_queue fills up
c751d28b403f clk: clk-axi-clkgen: make sure to enable the AXI bus clock
a68e4f76ee85 clk: axi-clkgen: use devm_platform_ioremap_resource() short-hand
43afa76e6efe dt-bindings: clock: axi-clkgen: include AXI clk
fc7ef5873472 dt-bindings: clock: adi,axi-clkgen: convert old binding to yaml format
29216bb390e3 fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()
d161e5ea0ca7 fbdev/sh7760fb: Alloc DMA memory from hardware device
6f1fabc9e331 powerpc/kexec: Fix return of uninitialized variable
fd57d992f371 powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static
66b7ddd1804e ocfs2: fix uninitialized value in ocfs2_file_read_iter()
bd715e191d44 RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg()
a4d2011cbe03 scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()
a56777a3ef5b scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()
e3b9ba55c18f scsi: fusion: Remove unused variable 'rc'
ef2c2580189e scsi: bfa: Fix use-after-free in bfad_im_module_exit()
cc30125eb6b6 mfd: rt5033: Fix missing regmap_del_irq_chip()
896927b0157a RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey
6956c0e7346c powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore
54cb5fa850f9 mtd: rawnand: atmel: Fix possible memory leak
c912aae5363a cpufreq: loongson2: Unregister platform_driver on failure
61d590d7076b mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices
c472b55cc0bc mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device
0b648968bfa4 mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device
48d3964f2bcd mfd: intel_soc_pmic_bxtwc: Use dev_err_probe()
2630b18bed7d mfd: da9052-spi: Change read-mask to write-mask
b86340df10b1 mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race
a85e5215609d powerpc/vdso: Flag VDSO64 entry points as functions
62a8d90e3221 trace/trace_event_perf: remove duplicate samples on the first tracepoint event
49e8a0e07b02 wireguard: selftests: load nf_conntrack if not present
63bc9a42a02e netpoll: Use rcu_access_pointer() in netpoll_poll_lock
fb91ce37dc9a Bluetooth: fix use-after-free in device_for_each_child()
49de4ac80427 driver core: Introduce device_find_any_child() helper
f2d06d4e129e ALSA: 6fire: Release resources at card release
4dd821dcbfce ALSA: caiaq: Use snd_card_free_when_closed() at disconnection
bf0aa35a7cb8 ALSA: us122l: Use snd_card_free_when_closed() at disconnection
24fe9f7ca83e ALSA: usx2y: Use snd_card_free_when_closed() at disconnection
d5a733ee2624 ALSA: usx2y: Cleanup probe and disconnect callbacks
cfb1f6bc2eed ALSA: usx2y: Coding style fixes
9a70db03857a ALSA: usx2y: Fix spaces
5674ae441c89 net: rfkill: gpio: Add check for clk_enable()
b751f3423fbd drm/amdkfd: Fix wrong usage of INIT_WORK()
6543a34f34a1 selftests: net: really check for bg process completion
1df5d631ba9e bpf, sockmap: Fix sk_msg_reset_curr
d26d977633d1 bpf, sockmap: Several fixes to bpf_msg_pop_data
2b4530ecc018 bpf, sockmap: Several fixes to bpf_msg_push_data
5a0ae8e4f79c selftests/bpf: Add push/pop checking for msg_verify_data in test_sockmap
78eb4af79e8a selftests/bpf: Fix total_bytes in msg_loop_rx in test_sockmap
74d2b00f488f selftests, bpf: Add one test for sockmap with strparser
3e35560e80a9 selftests/bpf: Fix SENDPAGE data logic in test_sockmap
a9fa0d2ce890 selftests/bpf: Add txmsg_pass to pull/push/pop in test_sockmap
224b9bc4977c netlink: typographical error in nlmsg_type constants definition
59362f51f4c2 drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk()
3fd17a47ee72 wifi: wfx: Fix error handling in wfx_core_init()
67d32d63c058 drm/etnaviv: hold GPU lock across perfmon sampling
02aac657c48e drm/etnaviv: fix power register offset on GC300
17551e3d94b7 drm/etnaviv: dump: fix sparse warnings
04c0cd65a844 drm/etnaviv: Request pages from DMA32 zone on addressing_limited
54163a35fe44 drm/etnaviv: rework linear window offset calculation
e5e10c00610d drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq()
e44d23fa0dc6 drm/panfrost: Remove unused id_mask from struct panfrost_model
5ff9de1f2712 octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c
2d1648603752 octeontx2-pf: ethtool fec mode support
8cafe71ad0fb octeontx2-af: Add new CGX_CMD to get PHY FEC statistics
9bb714350200 octeontx2-af: forward error correction configuration
a5f3aebadcb7 octeontx2-pf: Calculate LBK link instead of hardcoding
4dce1962411f octeontx2-af: Mbox changes for 98xx
50c56b0f5fe3 drm: fsl-dcu: enable PIXCLK on LS1021A
b773f406b6de drm/fsl-dcu: Convert to Linux IRQ interfaces
5fa329c44e1e wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()
4496d25157c9 selftests/bpf: Fix txmsg_redir of test_txmsg_pull in test_sockmap
addabcb1bd37 selftests/bpf: Fix msg_verify_data in test_sockmap
d4f54c609d28 drm/bridge: tc358767: Fix link properties discovery
e4decf4c8b56 netdevsim: copy addresses for both in and out paths
7fd24ee949bd netdevsim: rely on XFRM state direction instead of flags
76ff31c0113d xfrm: store and rely on direction to construct offload flags
837f37f0cf39 xfrm: rename xfrm_state_offload struct to allow reuse
bfdad9de02a3 bpf: Fix the xdp_adjust_tail sample prog issue
7706afc21304 ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode
5e3385bca11a ASoC: fsl_micfil: fix regmap_write_bits usage
b2a72a772ef0 ASoC: fsl_micfil: use GENMASK to define register bit fields
226fc91c860b ASoC: fsl_micfil: do not define SHIFT/MASK for single bits
fa55ed175c7b ASoC: fsl_micfil: Drop unnecessary register read
78a71b056c2c dt-bindings: vendor-prefixes: Add NeoFidelity, Inc
54550eeb8f86 wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2
f3749bc13cb3 wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1
145f3ac8c92e drm/v3d: Address race-condition in MMU flush
c992e517c8a6 drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq()
0bde5b6e230a drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq()
d1ae370b82e9 wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq()
29ee7d6fa18f wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq()
1d602e4b6dcb drm/omap: Fix locking in omap_gem_new_dmabuf()
c941af142200 wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()
ba35d3b212fb drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused
0c24b82bc4d1 media: atomisp: Add check for rgby_data memory allocation failure
4478f599a283 media: atomisp: remove #ifdef HAS_NO_HMEM
380c0e1d96f3 firmware: arm_scpi: Check the DVFS OPP count returned by the firmware
02dff60d0c99 selftests/resctrl: Protect against array overrun during iMC config parsing
5f0e91a5f4ed regmap: irq: Set lockdep class for hierarchical IRQ domains
409b1e428cf9 pmdomain: ti-sci: Add missing of_node_put() for args.np
dd1985f9752f ARM: dts: cubieboard4: Fix DCDC5 regulator constraints
9db3ef898a6e pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle
e8174fb173cc cgroup/bpf: only cgroup v2 can be attached by bpf programs
067d0c56630d Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline"
2295468c0c20 arm64: dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source trackpad
1b07333bbc3a arm64: dts: mt8183: krane: Fix the address of eeprom at i2c4
839e76cea2ab tpm: fix signed/unsigned bug when checking event logs
dad86eb91cf9 mmc: mmc_spi: drop buggy snprintf()
748557ca7dc9 soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()
c9c6a62c91e9 soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq()
f9dc2ae5a2cd spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq()
85cf7a3c6f7d spi: spi-fsl-lpspi: downgrade log level for pio mode
ef1db3d1d2bf clocksource/drivers:sp804: Make user selectable
d08932bb6e38 clkdev: remove CONFIG_CLKDEV_LOOKUP
e48e204f364a kcsan, seqlock: Fix incorrect assumption in read_seqbegin()
dc684d966f48 time: Fix references to _msecs_to_jiffies() handling of values
069601e4b657 crypto: cavium - Fix an error handling path in cpt_ucode_load_fw()
28f8ffa945f7 crypto: bcm - add error check in the ahash_hmac_init function
dead96e1c748 crypto: caam - add error check to caam_rsa_set_priv_key_form
a56860294ccd crypto: cavium - Fix the if condition to exit loop after timeout
a92ccd3618e4 crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY
99ec5eb5bbf3 EDAC/fsl_ddr: Fix bad bit shift operations
e0269ea7a628 EDAC/bluefield: Fix potential integer overflow
29551174590e firmware: google: Unregister driver_info on failure
cc386170b331 crypto: caam - Fix the pointer passed to caam_qi_shutdown()
e8a2b1c1c2ea hfsplus: don't query the device logical block size multiple times
3cab4bbc6691 s390/syscalls: Avoid creation of arch/arch/ directory
cf9efea8c092 acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block()
6c772871c2e5 arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG
ff01ac3e766c m68k: mvme147: Reinstate early console
f65ca93b859d m68k: mvme16x: Add and use "mvme16x.h"
21f46b07c20b m68k: mvme147: Fix SCSI controller IRQ numbers
452f9ddd12be nvme-pci: fix freeing of the HMB descriptor table
d3df9f26cff9 initramfs: avoid filename buffer overrun
17f35a6c9391 mips: asm: fix warning when disabling MIPS_FP_SUPPORT
72d6dd978f1d x86/xen/pvh: Annotate indirect branch as safe
8ce88918e4d8 kselftest/arm64: mte: fix printf type warnings about longs
8025d65d6242 x86/barrier: Do not serialize MSR accesses on AMD
67be3cd92aa0 nvme: fix metadata handling in nvme-passthrough
73b078e3314d cifs: Fix buffer overflow when parsing NFS reparse points
36741bfcfbff rcu-tasks: Idle tasks on offline CPUs are in quiescent states
e01ff1251c77 ipmr: Fix access to mfc_cache_list without lock held
e8529cfd7086 ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry
e05e8f54d23f proc/softirqs: replace seq_printf with seq_put_decimal_ull_width
444c9d41210c ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div()
ddd61392263d ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate()
a8ebe0a22527 can: j1939: fix error in J1939 documentation.
f6b4294a0249 regulator: rk808: Add apply_bit for BUCK3 on RK809
b070a9e0dbf3 soc: qcom: Add check devm_kasprintf() returned value
6df3ee9073cd net: usb: qmi_wwan: add Quectel RG650V
bc014d8d6561 x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB
f61da9401963 ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13
501ac2d1aae6 selftests/watchdog-test: Fix system accidentally reset after watchdog-test
6b5737b14af1 mac80211: fix user-power when emulating chanctx
9347d7c552c8 ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet
43323a4e5b3f mm: resolve faulty mmap_region() error path behaviour
a32712d54c61 mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling
7a450540c82f mm: unconditionally close VMAs on error
f68a0236337e mm: avoid unsafe VMA hook invocation when error arises on mmap hook
57cc8d253099 mm: revert "mm: shmem: fix data-race in shmem_getattr()"
ed98d26021db NFSD: Never decrement pending_async_copies on error
059434d23c45 NFSD: Initialize struct nfsd4_copy earlier
9e52ff544e0b NFSD: Limit the number of concurrent async COPY operations
4fcb25459430 NFSD: Async COPY result needs to return a write verifier
7f9b91ed15df NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point
2e7ce4e50d14 media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set
c29a44d9a402 mmc: core: fix return value check in devm_mmc_alloc_host()
b22ddca004d3 drm/bridge: tc358768: Fix DSI command tx
938c13740f8b Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
0a5014ad37c7 nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
344558d81c7c ocfs2: fix UBSAN warning in ocfs2_verify_volume()
b017697a517f nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
d4b42f926adc KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN
c96f90911dd1 vdpa/mlx5: Fix PA offset with unaligned starting iotlb map
28d4ed71ae0b ocfs2: uncache inode which has failed entering the group
5fe8bcc82f1d x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y
ffad2ac8c859 net/mlx5e: kTLS, Fix incorrect page refcounting
a508c74ceae2 net/mlx5: fs, lock FTE when checking if active
6e3f2c512d2b netlink: terminate outstanding dump on socket close
b5214ca796fb clk: qcom: gcc-qcs404: fix initial rate of GPLL3
3e7f845614ee leds: lp55xx: Remove redundant test for invalid channel number
5dabb7af57bc ftrace: Fix regression with module command in stack_trace_filter
5f86e79c0b22 ovl: Filter invalid inodes with missing lookup function
2cc30545dd3a media: uvcvideo: Stop stream during unregister
74a65313578b media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal()
da56bb858954 media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate()
580d1e5cf2cd media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled
5a53f97cd597 media: ts2020: fix null-ptr-deref in ts2020_probe()
5c9ab34c87af media: i2c: tc358743: Fix crash in the probe error path when using polling
b240a0472f8e arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer
711d99f845cd Linux 5.10.230
918326996932 9p: fix slab cache name creation for real
d02492863023 mm: krealloc: Fix MTE false alarm in __do_krealloc
b17397a0a5c5 io_uring: fix possible deadlock in io_register_iowq_max_workers()
dd7a728d5c0d md/raid10: improve code of mrdev in raid10_sync_request
8ea0b8e32bed net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition
9db25c2b41c3 fs: Fix uninitialized value issue in from_kuid and from_kgid
35b4795a7ebf vDPA/ifcvf: Fix pci_read_config_byte() return code handling
7e222d2c7f9a powerpc/powernv: Free name on error in opal_event_init()
b718f71747b7 sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML
dc834af641d7 crypto: marvell/cesa - Disable hash algorithms
4d8f6679b03a bpf: use kvzmalloc to allocate BPF verifier environment
0bf6971b7d1e HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad
2bc339b00fbd 9p: Avoid creating multiple slab caches with the same name
2f4bfcc4c5fa net: phy: ti: take into account all possible interrupt sources
16a8ebc88fe2 ALSA: usb-audio: Add endianness annotations
eb1bdcb7dfc3 vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans
414476c4fb11 hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
0d71863c19be ALSA: usb-audio: Add quirks for Dell WD19 dock
4dc9c1e83aeb ALSA: usb-audio: Support jack detection on Dell dock
6a7e6dcf90fe ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove()
e068a87cf25e irqchip/gic-v3: Force propagation of the active state with a read-back
bb17f42135f5 USB: serial: option: add Quectel RG650V
6d5bd4bc14d7 USB: serial: option: add Fibocom FG132 0x0112 composition
c5748d95608c USB: serial: qcserial: add support for Sierra Wireless EM86xx
e567fc8f7a44 USB: serial: io_edgeport: fix use after free in debug printk
d76923164705 usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd()
6e2848d1c8c0 usb: musb: sunxi: Fix accessing an released usb phy
5dd3f5a9244a fs/proc: fix compile warning about variable 'vmcore_mmap_ops'
faff5bbb2762 media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format
547087307bc1 net: do not delay dst_entries_add() in dst_release()
83aa0c996417 perf session: Add missing evlist__delete when deleting a session
2297d80a13a6 Revert "perf hist: Add missing puts to hist__account_cycles"
82090f94c723 net: bridge: xmit: make sure we have at least eth header len bytes
11eab327a2a8 spi: fix use-after-free of the add_lock mutex
c8dce228db6f spi: Fix deadlock when adding SPI controllers on SPI buses
982a2757e725 splice: don't generate zero-len segement bvecs
bf0b0c6d1597 btrfs: reinitialize delayed ref list after deleting it from the list
8fc5ea9231af nfs: Fix KMSAN warning in decode_getfattr_attrs()
485d9232112b io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
f336622838e5 io_uring: use kiocb_{start,end}_write() helpers
f83a32351efd fs: create kiocb_{start,end}_write() helpers
955089c2403c io_uring: rename kiocb_end_write() local helper
6f383f653d03 dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow
483b7261b35a dm cache: fix potential out-of-bounds access on the first resume
f136d8d3f26f dm cache: optimize dirty bit checking with find_next_bit when resizing
ee1f74925717 dm cache: fix out-of-bounds access to the dirty bitset when resizing
5b975f146d82 dm cache: correct the number of origin blocks to match the target length
2ac7f253dead drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported
17f5f18085ac drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()
1829c36f9329 pwm: imx-tpm: Use correct MODULO value for EPWM mode
054931ca3cfc media: v4l2-tpg: prevent the risk of a division by zero
5a9bd375bf88 media: pulse8-cec: fix data timestamp at pulse8_setup()
828047c70f47 media: cx24116: prevent overflows on SNR calculus
f54e8e1e39da media: s5p-jpeg: prevent buffer overflows
3a977b554f66 ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove
ac40b9dff274 ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init()
c1eba9f0e235 scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer
8e823ce93cc8 media: adv7604: prevent underflow condition when reporting colorspace
e351002b3a7a media: dvb_frontend: don't play tricks with underflow values
a4a17210c03a media: dvbdev: prevent the risk of out of memory access
ae6fd157eae4 media: stb0899_algo: initialize cfr before using it
63b122f53793 Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown"
30606ea3fae5 net: arc: fix the device for dma_map_single/dma_unmap_single
71d08334c2cb net: phy: ti: add PHY_RST_AFTER_CLK_EN flag
d3f517f904df net: phy: ti: implement generic .handle_interrupt() callback
f398d0a5b783 net: phy: export phy_error and phy_trigger_machine
590a4b2d4e0b net: hns3: fix kernel crash when uninstalling driver
cf6bae33c5aa can: c_can: fix {rx,tx}_errors statistics
40b283ba7666 sctp: properly validate chunk size in sctp_sf_ootb()
22f4e2f86ad8 net: enetc: set MAC address to the VF net_device
1e4332581cd4 security/keys: fix slab-out-of-bounds in key_task_permission
d7dc68d82ab3 HID: core: zero-initialize the report buffer
7830bfc3e7e7 ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin
92f5b6978293 ARM: dts: rockchip: Fix the spi controller on rk3036
c34f7b904748 ARM: dts: rockchip: drop grf reference from rk3036 hdmi
db87a9fb6a58 ARM: dts: rockchip: fix rk3036 acodec node
7ddbc813ba64 arm64: dts: imx8mp: correct sdhc ipg clk
e38f91b78388 arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc
fbccf9647f0f arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion
752c5bfb600f arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards
ebb427d5f270 arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328
9d0d15f26b86 arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator
b874a7e65b4f Linux 5.10.229
7948c22cc70b mac80211: always have ieee80211_sta_restart()
1e5a17dc77d8 vt: prevent kernel-infoleak in con_font_get()
a508a102edf8 drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)
1d0d406bfc6b Revert "drm/mipi-dsi: Set the fwnode for mipi_dsi_device"
bda1a99a0dd6 mm: shmem: fix data-race in shmem_getattr()
aa0cee46c5d3 nilfs2: fix kernel bug due to missing clearing of checked flag
bfd1d223d80c x86/bugs: Use code segment selector for VERW operand
70767689ec6e ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow
d592b2e9212f riscv: Remove duplicated GET_RM
170ad7e7a662 riscv: Remove unused GENERATING_ASM_OFFSETS
7e6bb3443185 riscv: Use '%u' to format the output of 'cpu'
1e617230b783 riscv: efi: Set NX compat flag in PE/COFF header
c345728678df riscv: vdso: Prevent the compiler from inserting calls to memset()
35770ca6180c mm: avoid leaving partial pfn mappings around in error case
69d4e1ce9087 mm: add remap_pfn_range_notrack
c72e0df0b56c nilfs2: fix potential deadlock with newly created symlinks
edc84c1c1a85 iio: light: veml6030: fix microlux value calculation
442f786c5bff staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg()
d0231f43df47 wifi: iwlegacy: Clear stale interrupts before resuming device
4112450da7d6 wifi: ath10k: Fix memory leak in management tx
c21efba8b5a8 wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
1cfc32930461 Revert "driver core: Fix uevent_show() vs driver detach race"
796df8d64caa xhci: Use pm_runtime_get to prevent RPM on unsupported systems
065789892e37 xhci: Fix Link TRB DMA in command ring stopped completion event
efefde4d1b7c usb: phy: Fix API devm_usb_put_phy() can not release the phy
2d4650d2b297 usbip: tools: Fix detach_port() invalid port error path
603342ab037d misc: sgi-gru: Don't disable preemption in GRU driver
aae9c5b472d6 NFS: remove revoked delegation from server's delegation list
8395b6096959 net: amd: mvme147: Fix probe banner message
0cac4a2718b2 firmware: arm_sdei: Fix the input parameter of cpuhp_remove_state()
422f1b66b149 kasan: Fix Software Tag-Based KASAN with GCC
8e99d41858eb compiler-gcc: remove attribute support check for `__no_sanitize_address__`
4336f120937d compiler-gcc: be consistent with underscores use for `no_sanitize`
e3e608cbad37 netfilter: nft_payload: sanitize offset and length before calling skb_checksum()
a27a5c40ee4c net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
b88262c950c3 net: support ip generic csum processing in skb_csum_hwoffload_help
590976f92172 bpf: Fix out-of-bounds write in trie_get_next_key()
ce691c814bc7 net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT
9cab53f03263 gtp: allow -1 to be specified as file description from userspace
e2742758c9c8 ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
465d3a8eca3f ASoC: cs42l51: Fix some error handling paths in cs42l51_probe()
45a628911d3c wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
66e35e42f51e wifi: iwlwifi: mvm: disconnect station vifs if recovery failed
02b121beda58 mac80211: Add support to trigger sta disconnect on hardware restart
89e25a2ec2a2 mac80211: do drv_reconfig_complete() before restarting all
1ac988c6b8ff RDMA/bnxt_re: synchronize the qp-handle table array
8256f6166d02 RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
f121dee2f907 RDMA/cxgb4: Dump vendor specific QP details
935ca968019f wifi: brcm80211: BRCM_TRACING should depend on TRACING
fd3b368769ae wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
e38ccb226de5 mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
ffbb1f15bae7 cgroup: Fix potential overflow issue when checking max_depth
5b1e461fefb0 selftests/mm: fix incorrect buffer->mirror size in hmm2 double_map test
8df5cd51fd70 xfrm: validate new SA's prefixlen using SA family when sel.family is unset
4abbba710583 arm64/uprobes: change the uprobe_opcode_t typedef to fix the sparse warning
03c9c2c2d2d0 ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe()
f4b6a6493eb5 net: phy: dp83822: Fix reset pin definitions
2fe399bb8efd serial: protect uart_port_dtr_rts() in uart_shutdown() too
066314b0b76f selinux: improve error checking in sel_write_load()
3eb6aa870057 hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event
631330f5a635 ALSA: hda/realtek: Add subwoofer quirk for Acer Predator G9-593
76ce386feb14 KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
0f0374d09c82 openat2: explicitly return -E2BIG for (usize > PAGE_SIZE)
9f2ab98371c2 nilfs2: fix kernel bug due to missing clearing of buffer delay flag
1f440403be1f ACPI: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue
59a1b38d3a5f ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[]
234682910971 drm/amd: Guard against bad data for ATIF ACPI method
c9085e2401b8 ALSA: hda/realtek: Update default depop procedure
5e431f85c87b ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()
c7fcfdba35ab posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()
0da93d67da90 r8169: avoid unsolicited interrupts
8a283a19026a net: sched: fix use-after-free in taprio_change()
95b3f3ed5ac6 net: usb: usbnet: fix name regression
77bc881d370e be2net: fix potential memory leak in be_xmit()
db755e553490 net/sun3_82586: fix potential memory leak in sun3_82586_send_packet()
9f95de15904a xfrm: respect ip protocols rules criteria when performing dst lookups
6ba07c4a9eac xfrm: extract dst lookup parameters into a struct
02874ca52df2 tracing: Consider the NULL character when validating the event length
df848523d6b4 jfs: Fix sanity check in dbMount
8605ca4bd0f4 arm64: Force position-independent veneers
0329056e0730 ASoC: fsl_sai: Enable 'FIFO continue on error' FCONT bit
75f828e944da drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA
649d64650623 iomap: update ki_pos a little later in iomap_dio_complete
c9b77438077d exec: don't WARN for racy path_noexec check
20e27c773945 block, bfq: fix procress reference leakage for bfqq in merge chain
bf83ba3c55d4 KVM: s390: gaccess: Check if guest address is in memslot
6e1659b674b6 KVM: s390: gaccess: Cleanup access to guest pages
472088ffb1cc KVM: s390: gaccess: Refactor access address range check
511ca935092a KVM: s390: gaccess: Refactor gpa and length calculation
cf9ddf9ed94c arm64: probes: Fix uprobes for big-endian kernels
7f1ef59185d2 arm64:uprobe fix the uprobe SWBP_INSN in big-endian
6c151aeb6dc4 Bluetooth: bnep: fix wild-memory-access in proto_unregister
5c345c47e884 s390: Initialize psw mask in perf_arch_fetch_caller_regs()
6af43ec3bf40 usb: typec: altmode should keep reference to parent
ed31aba8ce93 smb: client: fix OOBs when building SMB2_IOCTL request
8c1e6717f60d scsi: target: core: Fix null-ptr-deref in target_alloc_device()
4af714e82379 genetlink: hold RCU in genlmsg_mcast()
b6321146773d net: systemport: fix potential memory leak in bcm_sysport_xmit()
f48eaf4e88c3 net/smc: Fix searching in list of known pnetids in smc_pnet_add_pnetid
aacf6e28aeda net: ethernet: aeroflex: fix potential memory leak in greth_start_xmit_gbit()
56dbb74b6a4b macsec: don't increment counters for an unrelated SA
2c7dd3ca6be9 drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation
df6fed0a2a1a RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages
78aaf54ad5d7 RDMA/bnxt_re: Return more meaningful error
718609f51866 ipv4: give an IPv4 dev to blackhole_netdev
59df170bdec9 RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP
9076d449e77b ARM: dts: bcm2837-rpi-cm3-io3: Fix HDMI hpd-gpio pin
dbe51dd516e6 RDMA/bnxt_re: Add a check for memory allocation
c17e5cbbb180 RDMA/bnxt_re: Fix incorrect AVID type in WQE structure
f141044cc6d3 net: bridge: mcast: wait for previous gc cycles when removing port
7640df3a194c net: atlantic: eliminate double free in error handling logic
3cbcd4752671 RDMA/hns: Fix UAF for cq async event
5a8fa04b2a4d Linux 5.10.228
2abe57d62a45 ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2
25e86fb0aeec powerpc/mm: Always update max/min_low_pfn in mem_topology_setup()
c1d0476885d7 nilfs2: propagate directory read errors from nilfs_find_entry()
c38add9ac0e4 tcp: fix mptcp DSS corruption due to large pmtu xmit
fde99e972b8f mptcp: handle consistently DSS corruption
609937aa962a mptcp: track and update contiguous data status
b7d7b7fc876f irqchip/gic-v4: Don't allow a VMOVP on a dying VPE
6f44a5fc15b5 x86/entry_32: Clear CPU buffers after register restore in NMI return
9ab38a1cdb66 x86/entry_32: Do not clobber user EFLAGS.ZF
846280578855 x86/apic: Always explicitly disarm TSC-deadline timer
e475220d64be x86/resctrl: Annotate get_mem_config() functions as __init
1826b6d69bbb parport: Proper fix for array out-of-bounds access
9f8ddf14fa79 USB: serial: option: add Telit FN920C04 MBIM compositions
0fc55ec9fcac USB: serial: option: add support for Quectel EG916Q-GL
608b626f710d xhci: Fix incorrect stream context type macro
fc2cb5e3af53 Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001
63d6a3b07838 Bluetooth: Remove debugfs directory on module init failure
516655749a01 iio: adc: ti-ads124s08: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
f80375f275fb iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
dc99dfa2ba66 iio: light: opt3001: add missing full-scale range value
bf3ab8e1c28f iio: light: veml6030: fix IIO device retrieval from embedded device
2d06787b70d8 iio: light: veml6030: fix ALS sensor resolution
ffc4174309a9 iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency()
9504153a480f iio: adc: ti-ads8688: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
c27133637aba iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig
c4c2211b1202 iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig
3abc1ebea3fb iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig
0782809c019b drm/vmwgfx: Handle surface check failure correctly
df75c78bfeff drm/radeon: Fix encoder->possible_clones
6ddcaee244ff io_uring/sqpoll: close race on waiting for sqring entries
3bc6d0f8b70a blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race
eca3edf87679 x86/bugs: Do not use UNTRAIN_RET with IBPB on entry
e7c0f8ca3bdd x86/bugs: Skip RSB fill at VMEXIT
0ab77a47e3ff x86/entry: Have entry_ibpb() invalidate return predictions
c5e57863d790 x86/cpufeatures: Add a IBPB_NO_RET BUG flag
77fa26062032 x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET
dfa4b5d4ba1c KVM: s390: Change virtual to physical address access in diag 0x258 handler
d04709509594 s390/sclp_vt220: Convert newlines to CRLF instead of LFCR
b12ef2d4dfee io_uring/sqpoll: do not put cpumask on stack
66b98c4f18b0 io_uring/sqpoll: retain test for whether the CPU is valid
54a987b41db3 io_uring/sqpoll: do not allow pinning outside of cpuset
71fbc3af3dac KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()
e8e599a63506 wifi: mac80211: fix potential key use-after-free
417d5838ca73 mm/swapfile: skip HugeTLB pages for unuse_vma
043f05526163 fat: fix uninitialized variable
bf1a0222229d irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1
cafa5942bd2d net: macb: Avoid 20s boot delay by skipping MDIO bus registration for fixed-link PHY
ce43c48cdc4d arm64: probes: Fix simulate_ldr*_literal()
3728b4eb2791 arm64: probes: Remove broken LDR (literal) uprobe support
673a1c5a2998 posix-clock: Fix missing timespec64 check in pc_clock_settime()
dbe055567af8 net: enetc: add missing static descriptor and inline keyword
5f47cdeeefd9 ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2
6c8784a6662b watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger
3b24ef662ec6 gfs2: Fix potential glock use-after-free on unmount
03a85a51f33a fix vfsub build error
12594a0e7118 sock_map: avoid race between sock_map_close and sk_psock_put
7a346798c1e1 sock_map: Fix a potential use-after-free in sock_map_close()
843556a46e16 bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself
4af417c06d37 of: module: add buffer overflow check in of_modalias()
b29e4b50c556 scripts/gdb: fix SB_* constants parsing
02fd398f5e2b bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS
2bba1cb1487b loop: Select I/O scheduler 'none' from inside add_disk()
027f4dd7c993 blk-mq: Introduce the BLK_MQ_F_NO_SCHED_BY_DEFAULT flag
2214ded26c86 tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
44494049e815 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
0d7c23009d82 tpm: Add flag to use default cancellation policy
07914bef4e16 tpm: tis_i2c: Fix sanity check interrupt enable mask
35f85f04bd69 tpm: Add tpm_tis_i2c backend for tpm_tis_core
7b04c6c08107 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer
4790cb2d1283 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops
50f74deaf308 hwmon: Add driver for Texas Instruments TMP464 and TMP468
a4e6e4b7bb08 dt-bindings: hwmon: add tmp464.yaml
e0ed2149d7b5 drm/amdkfd: Check for null pointer after calling kmemdup
c6ddded89322 ARM: renumber bits related to _TIF_WORK_MASK
35b96a325c1e arm64: make _TIF_WORK_MASK bits contiguous
f5a8f06aa595 arm64: uaccess: remove vestigal UAO support
3a330b569301 arm64: uaccess: remove redundant PAN toggling
9cbbb016d6e7 arm64: uaccess: remove addr_limit_user_check()
fd83411f5e08 arm64: uaccess: remove set_fs()
15a6dc2f4b53 arm64: uaccess cleanup macro naming
912a6ab683a4 arm64: uaccess: split user/kernel routines
d004ab02dae2 arm64: uaccess: refactor __{get,put}_user
e1941a8b459e arm64: uaccess: simplify __copy_user_flushcache()
dfae822b4c59 arm64: uaccess: rename privileged uaccess routines
1efdb8f0a0c7 arm64: sdei: explicitly simulate PAN/UAO entry
b35fec69554c arm64: sdei: move uaccess logic to arch/arm64/
b5a28033fe7b arm64: head.S: always initialize PSTATE
243eb8553513 arm64: head.S: cleanup SCTLR_ELx initialization
74a00405d97f arm64: head.S: rename el2_setup -> init_kernel_el
73c5f386d175 arm64: add C wrappers for SET_PSTATE_*()
e17fb7543df1 arm64: ensure ERET from kthread is illegal
eff6289cc53b ixgbevf: add disable link state
262595681381 ixgbe: add improvement for MDD response functionality
b9d78b06dea8 ixgbe: add the ability for the PF to disable VF link state
d829911485da Documentation: arm64: Document PMU counters access from userspace
fe5d29bfce20 arm64: perf: Enable PMU counter userspace access for perf event
15ce6d04ed6a arm64: perf: Add userspace counter access disable switch
4f288acbeed8 perf: Add a counter for number of user access events in context
354ba4a8c4b8 x86: perf: Move RDPMC event flag to a common definition
d29cec94c49b libperf xyarray: Add bounds checks to xyarray__entry()
8264d2b91841 libperf: Add support for user space counter access
7fd81b678b5f libperf tests: Add support for verbose printing
6029ff53a48f libperf: Add evsel mmap support
28b0c8956369 tools include: Add an initial math64.h
492e532d20f1 perf record: Improve 'Workload failed' message printing events + what was exec'ed
d0a1fc61733e perf evlist: Add a method to return the list of evsels as a string
81a77b39be0a perf annotate: Fix sample events lost in stdio mode
2883e69e202d pnmtologo: use relocatable file name
80f5207b5abd tools: use basename to identify file in gen-mach-types
4d201ec392f1 vt/conmakehash: improve reproducibility
ae24d013888f lib/build_OID_registry: fix reproducibility issues
5d72da88dbb4 x86/boot: Wrap literal addresses in absolute_pointer()
dc0bd7aa2319 ACPI: thermal: drop an always true check
0c4288cceef5 xfs: Fix -Werror=dangling-pointer work-around for older GCC
5509050b3392 xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o
669827c6e293 virtio-pci: Remove wrong address verification in vp_del_vqs()
1c80d994d3db regulator: consumer: Add missing stubs to regulator/consumer.h
3303d0e2aeff ipv6: Fix stats accounting in ip6_pkt_drop
c56e60f665e7 memcg: enable accounting of ipc resources
e6c8ebd210a2 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation
1655ee30e684 sched/isolation: really align nohz_full with rcu_nocbs
253c752ed120 pstore/ftrace: Add and use ftrace_test_recursion_trylock_safe
356e8a12bd66 pstore/ftrace: Add recursion protection to the ftrace callback
334706a1e873 ftrace: Add ftrace_test_recursion_trylock() helper function
78c260d7f60b ftrace: Move the recursion testing into global headers
c0b313d988a1 powerpc/mm: Switch obsolete dssall to .long
1bd813fe8d0e riscv: fix build with binutils 2.38
835a2d1b24c6 powerpc/lib/sstep: fix 'ptesync' build error
fd84b99a8ccb drm/amd/display: Don't allow partial copy_from_user
024f4ff63d55 drm/amdgpu: Fix even more out of bound writes from debugfs
0c0ad634e899 e1000e: Serialize TGP e1000e PM ops
add88b0536fa e1000e: Make mei_me active when e1000e is in use
a8f317c1a17e yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
c8400a2cbe1f iommu/arm-smmu-v3: Ratelimit event dump
b8ec7e43e95e regmap: teach regmap to use raw spinlocks if requested in the config
4b7fa7684be7 OF: DT-Overlay configfs interface (v7)
d515a5c0e9a9 net: xilinx_emaclite: Do not print real IOMEM pointer
11329e49959b drivers: net: xilinx_emaclite: remove arch limitation
29dc69bf2a07 drivers: net: xilinx_emaclite: Add COMPILE_TEST support
ff106eff01f6 drivers: net: xilinx_emaclite: Fix -Wpointer-to-int-cast warnings with W=1
c27462391070 serial: 8250: 8250_omap: Fix possible array out of bounds access
16976d8e307f perf intel-pt: Use aux_watermark
d421a2346946 perf: Cap allocation order at aux_watermark
6da8d5f29481 timers: Fix get_next_timer_interrupt() with no timers pending
af141841735a eventfd: Enlarge recursion limit to allow vhost to work
a125a6102808 iwlwifi: select MAC80211_LEDS conditionally
139fe7d68413 rcu: Fix stall-warning deadlock due to non-release of rcu_node ->lock
8d0c79931235 console: Fix build when CONFIG_BLK_DEV_INITRD is disabled.
ea777841e8ea yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
ab49d2db98bd cgroup1: fix leaked context root causing sporadic NULL deref in LTP
bdda1b6cf99b aufs5: aufs-core
2fa276071d07 aufs5: aufs-standalone
06ed4d532456 aufs5: aufs-mmap
372857834999 aufs5: aufs-kbuild
fd68c9840693 aufs5: aufs-base
a673c127156c Revert "aufs5: core"
cf62bfcde384 Revert "aufs5: aufs5-base"
a644419ec785 Revert "aufs5: aufs5-mmap"
b893f9a999bb Revert "aufs5: aufs5-standalone"
c60db0819480 Revert "aufs: initial port to v5.10"
c66a5900f139 Revert "Revert "aufs: initial port to v5.10""
1320cf58f5dd Revert "aufs: linux-v5.10-rc1, no more set_fs()"
02349d7738ff Revert "for aufs: linux-v5.10-rc1, no more vfs_(read|write)f_t"
f01dab74750c Revert "aufs: linux-v5.10-rc1, no more f_op->read() and ->write()"
3d5de709b676 Revert "aufs5: aufs5-kbuild"
a97f1329edf7 tracing/arm: Have max stack tracer handle the case of return address after data
5c54112a05ab net: Treat __napi_schedule_irqoff() as __napi_schedule() on PREEMPT_RT
ddac76981cb3 sched/isolation: reconcile rcu_nocbs= and nohz_full=
56fd8c36614e net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
a8808e541750 aufs: linux-v5.10-rc1, no more f_op->read() and ->write()
cb1c41dac775 for aufs: linux-v5.10-rc1, no more vfs_(read|write)f_t
a5805df6583f aufs: linux-v5.10-rc1, no more set_fs()
64e145dcca8c Revert "aufs: initial port to v5.10"
d6e20b2257ec defconfig: add dependency for CONFIG_ACPI_APEI_PCIEAER
b237d48208d0 arm64/mm: Drop THP conditionality from FORCE_MAX_ZONEORDER
1209195ed0f7 driver: adc: ltc2497: return directly after reading the adc conversion value
a60fe3fcf113 Revert "mfd: syscon: Don't free allocated name for regmap_config"
13d68767aa4a rcutorture: Use "all" and "N" in "nohz_full" and "rcu_nocbs"
54e69571a97d rcu: deprecate "all" option to rcu_nocbs=
a605b9d20447 lib: test_bitmap: add tests for "N" alias
8c22517f444e lib: bitmap: support "N" as an alias for size of bitmap
88187167e63a lib: bitmap: move ERANGE check from set_region to check_region
ca5429633613 lib: bitmap: fold nbits into region struct
9381134cea8a lib: test_bitmap: add more start-end:offset/len tests
c825800730ab lib: test_bitmap: add tests to trigger ERANGE case.
8cc8264dca3f lib: test_bitmap: clearly separate ERANGE from EINVAL tests.
470da7b7f2ff Revert "cpumask: Un-inline cpulist_parse for SMP; prepare for ascii helpers"
28dc1d37602d Revert "cpumask: Make "all" alias global and not just RCU"
dbfe0b183fca Revert "cpumask: Add a "none" alias to complement "all""
a57711fcff30 Revert "cpumask: Add "last" alias for cpu list specifications"
34523d7c8476 qemux86: add configuration symbol to select values
cdca78778415 objtool: Fix seg fault with Clang non-section symbols
d3287798bd88 x86/entry: Emit a symbol for register restoring thunk
2ad99ddaac78 cpumask: Add "last" alias for cpu list specifications
c10e9481810b cpumask: Add a "none" alias to complement "all"
b00ceed9d388 cpumask: Make "all" alias global and not just RCU
8b215206e797 cpumask: Un-inline cpulist_parse for SMP; prepare for ascii helpers
1b5024caeda8 clear_warn_once: add a clear_warn_once= boot parameter
fc0dd76cce0e clear_warn_once: bind a timer to written reset value
d64fc2d2b14a clear_warn_once: expand debugfs to include read support
77592e956cc9 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
6e022759f727 perf: x86-32: explicitly include <errno.h>
22d6bbb947d4 perf: mips64: Convert __u64 to unsigned long long
c35f9150001c perf: fix bench numa compilation
c4caef513eb1 perf: add SLANG_INC for slang.h
07dfbf9405dd perf: add sgidefs.h to for mips builds
42c5431ad2cf perf: change --root to --prefix for python install
af79bfe90143 perf: add 'libperl not found' warning
ddfbd9e75f08 perf: force include of <stdbool.h>
0f34e6305176 fat: don't use obsolete random32 call in namei_vfat
b5b55eaad1df FAT: Added FAT_NO_83NAME
756b13bfab6e FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
fabad71cb2b5 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
06fd68d75bd1 aufs: initial port to v5.10
c9126877d1f5 aufs5: core
f5150173c643 aufs5: aufs5-standalone
b57d26b072d9 aufs5: aufs5-mmap
78f128c4b8e5 aufs5: aufs5-base
47aa35171d08 aufs5: aufs5-kbuild
35c480a23c66 yaffs: include blkdev.h
2c64c43540a5 yaffs: fix misplaced variable declaration
bde410ee9f59 yaffs2: v5.6 build fixups
414c8e866931 yaffs2: fix memory leak when /proc/yaffs is read
c99c1990cf7c yaffs: add strict check when call yaffs_internal_read_super
498f5fafe50a yaffs: repair yaffs_get_mtd_device
7ca3c08ebbf9 yaffs: Fix build failure by handling inode i_version with proper atomic API
0ba47e881bb8 yaffs2: fix memory leak in mount/umount
39a5406665dd yaffs: Avoid setting any ACL releated xattr
ca5b43ddc6fd Yaffs:check oob size before auto selecting Yaffs1
c2619c05a53e fs: yaffs2: replace CURRENT_TIME by other appropriate apis
5e08fb7b8ee0 yaffs2: adjust to proper location of MS_RDONLY
5f1a1a9678a8 yaffs2: import git revision b4ce1bb (jan, 2020)
fc21f09ae369 initramfs: allow an optional wrapper script around initramfs generation
73887fca03be arm64/perf: Fix wrong cast that may cause wrong truncation
a267cafaac44 defconfigs: drop obselete options
eb5d1bc00c3f arm64/perf: fix backtrace for AAPCS with FP enabled
062b2c98c087 linux-yocto: Handle /bin/awk issues
d3beb253ae71 uvesafb: provide option to specify timeout for task completion
75ccbf377a51 uvesafb: print error message when task timeout occurs
18ffa2e88024 compiler.h: Undef before redefining __attribute_const__
3ed931201746 vmware: include jiffies.h
938942859596 Resolve jiffies wrapping about arp
069a883d837c nfs: Allow default io size to be configured.
3b568edcd3e9 check console device file on fs when booting
77ec93228920 mount_root: clarify error messages for when no rootfs found
17a15e0f7536 menuconfig,mconf-cfg: Allow specification of ncurses location
8f13b1349a74 modpost: mask trivial warnings
b6c9e0fa24e8 kbuild: exclude meta directory from distclean processing
62dbbdbec60a powerpc: serialize image targets
27b8dec5dbb3 arm: serialize build targets
fc365512e4c4 Revert "platform/x86: wmi: Destroy on cleanup rather than unregister"
9a6e91d2e691 crtsavres: fixups for 5.4+
7dbc3cd0398f powerpc/ptrace: Disable array-bounds warning with gcc8
ebe3bcb89cb0 powerpc: Disable attribute-alias warnings from gcc8
65ba0e7de081 powerpc: add crtsavres.o to archprepare for kbuild
6bd3efdce5a9 powerpc: kexec fix for powerpc64
41671522c159 powerpc: Add unwind information for SPE registers of E500 core
8851006b0109 mips: vdso: fix 'jalr $t9' crash in vdso code
ed5db62477e8 mips: Kconfig: add QEMUMIPS64 option
2a7ca094fc42 4kc cache tlb hazard: tlbp cache coherency
b742d60d3f70 malta uhci quirks: make allowance for slow 4k(e)c
8a160fc86eb6 arm/Makefile: Fix systemtap
b9805882353c vexpress: Pass LOADADDR to Makefile
332e618aa7ae arm: ARM EABI socketcall
1ec682cb85f8 ARM: LPAE: Invalidate the TLB for module addresses during translation fault
(From OE-Core rev: f95f69b878c9d4e50e1728b300dd00329850f5f8)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
0c935c049b5c Linux 5.15.179
bf500b0d0cfe net: ipv6: fix dst refleaks in rpl, seg6 and ioam6 lwtunnels
02e43735932d kbuild: userprogs: use correct lld when linking through clang
bb0245fa72b7 sched: sch_cake: add bounds checks to host bulk flow fairness counts
bab61f41c942 vsock: Orphan socket after transport release
e48fcb403c2d vsock: Keep the binding until socket destruction
857428f4acc1 bpf, vsock: Invoke proto::close on close()
117f7a2975ba media: uvcvideo: Remove dangling pointers
0fdd7cc59338 media: uvcvideo: Fix crash during unbind if gpio unit is in use
607dc724b162 nilfs2: handle errors that nilfs_prepare_chunk() may return
e5606b783307 nilfs2: eliminate staggered calls to kunmap in nilfs_rename
1fa500f494f1 nilfs2: move page release outside of nilfs_delete_entry and nilfs_set_link
1cd7fd082c78 spi-mxs: Fix chipselect glitch
cd0938805875 mtd: rawnand: cadence: fix unchecked dereference
3e9899c12d5a md: select BLOCK_LEGACY_AUTOLOAD
1a7c8039d2ee media: uvcvideo: Avoid returning invalid controls
69b06b05ff94 media: uvcvideo: Avoid invalid memory access
4e15cf870d2c drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmd_ioctl
ade9362dec18 eeprom: digsy_mtc: Make GPIO lookup table match the device
7746f3bb8917 bus: mhi: host: pci_generic: Use pci_try_reset_function() to avoid deadlock
09d34c4cbc38 slimbus: messaging: Free transaction ID in delayed interrupt scenario
1437d13ca83e intel_th: pci: Add Panther Lake-P/U support
cebbd798ff25 intel_th: pci: Add Panther Lake-H support
8875af55b825 intel_th: pci: Add Arrow Lake support
e1651332291e mei: me: add panther lake P DID
cf46f88b92cf Squashfs: check the inode number is not the invalid value of zero
ac9a7d4c9007 usb: xhci: Enable the TRB overfetch quirk on VIA VL805
41eae5d6e308 xhci: pci: Fix indentation in the PCI device ID definitions
c3a772540220 usb: gadget: Check bmAttributes only if configuration is valid
7e6b36d92dce usb: gadget: Fix setting self-powered state on suspend
2b229d7b8a59 usb: gadget: Set self-powered based on MaxPower and bmAttributes
a0dc4a3bdede usb: typec: tcpci_rt1711h: Unmask alert interrupts to fix functionality
3d8b87be73e9 usb: typec: ucsi: increase timeout for PPM reset operations
00ac1ea9c0cd usb: dwc3: gadget: Prevent irq storm when TH re-executes
78669d6f45a5 usb: dwc3: Set SUSPENDENABLE soon after phy init
bf4409f84023 usb: atm: cxacru: fix a flaw in existing endpoint checks
3248c1f833f9 usb: renesas_usbhs: Flush the notify_hotplug_work
a1ad97347a45 usb: quirks: Add DELAY_INIT and NO_LPM for Prolific Mass Storage Card Reader
894b4c75eadf usb: hub: lack of clearing xHC resources
ec4b6f492ea1 usb: renesas_usbhs: Use devm_usb_get_phy()
50b9010da101 usb: renesas_usbhs: Call clk_put()
30e37db26120 Revert "drivers/card_reader/rtsx_usb: Restore interrupt based detection"
329393a0325b gpio: rcar: Fix missing of_node_put() call
f185b6d0aeea net: ipv6: fix missing dst ref drop in ila lwtunnel
82043c99801e net: ipv6: fix dst ref loop in ila lwtunnel
5cb300dcdd27 sched/fair: Fix potential memory corruption in child_cfs_rq_on_list
49bf31477184 net-timestamp: support TCP GSO case for a few missing flags
413e908f13ce exfat: fix soft lockup in exfat_clear_bitmap
6d099f3f7b27 x86/sgx: Fix size overflows in sgx_encl_create()
a2d112a3b408 x86/sgx: Support VA page allocation without reclaiming
51e5bc6d39d1 x86/sgx: Export sgx_encl_{grow,shrink}()
48fa260f15b6 x86/sgx: Move PTE zap code to new sgx_zap_enclave_ptes()
110a40c51415 x86/sgx: Support loading enclave page without VMA permissions check
0fb7aa04c19e vlan: enforce underlying device type
4e2191b0fd0c ppp: Fix KMSAN uninit-value warning with bpf
b7d8d4529984 net: hns3: make sure ptp clock is unregister and freed if hclge_ptp_get_cycle returns an error
671aaa17bd31 be2net: fix sleeping while atomic bugs in be_ndo_bridge_getlink
3f9e7298053c drm/sched: Fix preprocessor guard
e9813e0887fe hwmon: fix a NULL vs IS_ERR_OR_NULL() check in xgene_hwmon_probe()
9b6f083db141 llc: do not use skb_get() before dev_queue_xmit()
e2eebbb52d15 ALSA: usx2y: validate nrpacks module parameter on probe
afa9cd90e765 hwmon: (ad7314) Validate leading zero bits and return error
996340f3db89 hwmon: (ntc_thermistor) Fix the ncpXXxh103 sensor table
13de3056e38c hwmon: (pmbus) Initialise page count in pmbus_identify()
8e4e08ca4cc6 caif_virtio: fix wrong pointer check in cfv_probe()
455217ac9db0 net: gso: fix ownership in __udp_gso_segment
17451b795002 nvmet-tcp: Fix a possible sporadic response drops in weakly ordered arch
01b18a330cda HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove()
4283afde4f8d HID: google: fix unused variable warning under !CONFIG_ACPI
47616b82f2d4 wifi: iwlwifi: limit printed string from FW file
b4739de37538 mm: don't skip arch_sync_kernel_mappings() in error paths
955c5a1ddd6e mm/page_alloc: fix uninitialized variable
51e0101ab9e9 block: fix conversion of GPT partition name to 7-bit
03f075d56063 s390/traps: Fix test_monitor_call() inline assembly
cdd9f58f7fe4 rapidio: fix an API misues when rio_add_net() fails
181d4daaefb3 rapidio: add check for rio_add_net() in rio_scan_alloc_net()
cd1bdcb77fdc wifi: nl80211: reject cooked mode if it is set along with other flags
6a5e3b23054c wifi: cfg80211: regulatory: improve invalid hints checking
d8786dfa9f45 x86/cpu: Properly parse CPUID leaf 0x2 TLB descriptor 0x63
61104ea20840 x86/cpu: Validate CPUID leaf 0x2 EDX output
dafc649de271 x86/cacheinfo: Validate CPUID leaf 0x2 EDX output
421c91ba9099 platform/x86: thinkpad_acpi: Add battery quirk for ThinkPad X131e
63c2c523f5ca drm/radeon: Fix rs400_gpu_init for ATI mobility radeon Xpress 200M
ffcc3f070263 ALSA: hda/realtek: update ALC222 depop optimize
6ea0f0a47640 ALSA: hda: intel: Add Dell ALC3271 to power_save denylist
807789018186 gpio: aggregator: protect driver attr handlers against module unload
7c1f36f9c9ac gpio: rcar: Use raw_spinlock to protect register access
b1d95d733cd6 HID: appleir: Fix potential NULL dereference at raw event handle
a3325fdbee9b Revert "of: reserved-memory: Fix using wrong number of cells to get property 'alignment'"
6486abfcf891 drm/amdgpu: disable BAR resize on Dell G5 SE
4be891399cdc drm/amdgpu: Check extended configuration space register when system uses large bar
f618aeb6cad2 smb: client: Add check for next_buffer in receive_encrypted_standard()
a56a6e8589a9 pfifo_tail_enqueue: Drop new packet when sch->limit == 0
e38f9d761b34 intel_idle: Handle older CPUs, which stop the TSC in deeper C states, correctly
288fdb8dcb71 sched/core: Prevent rescheduling when interrupts are disabled
3d67976d304e vmlinux.lds: Ensure that const vars with relocations are mapped R/O
7cca31035c05 mptcp: always handle address removal under msk socket lock
b66eb3f54ac3 phy: exynos5-usbdrd: fix MPLL_MULTIPLIER and SSC_REFCLKSEL masks in refclk
f07c325f54c4 phy: tegra: xusb: reset VBUS & ID OVERRIDE
d20b23a5412c net: enetc: correct the xdp_tx statistics
ccce797d9052 net: enetc: update UDP checksum when updating originTimestamp field
b68d88b79975 net: enetc: fix the off-by-one issue in enetc_map_tx_buffs()
9bcb8cbc3e5d usbnet: gl620a: fix endpoint checking in genelink_bind()
e3aea1dba97d i2c: npcm: disable interrupt enable bit before devm_request_irq
c327a355a4ff drm/amd/display: Fix HPD after gpu reset
922e18d67bc0 perf/core: Fix low freq setting via IOC_PERIOD
fca3b89abc92 ALSA: usb-audio: Re-add sample rate quirk for Pioneer DJM-900NXS2
3d738b53ed6c ftrace: Avoid potential division by zero in function_stat_show()
7163da88c07b x86/CPU: Fix warm boot hang regression on AMD SC1100 SoC systems
2daabaa55c7c net: ipv6: fix dst ref loop on input in rpl lwt
c0b11dc50590 net: ipv6: rpl_iptunnel: mitigate 2-realloc issue
dbd4f89a4a58 net: ipv6: fix dst ref loop on input in seg6 lwt
634710a372ba net: ipv6: seg6_iptunnel: mitigate 2-realloc issue
8513e56e31fc include: net: add static inline dst_dev_overhead() to dst.h
3e97606c954f seg6: add support for SRv6 H.L2Encaps.Red behavior
86df97f030be seg6: add support for SRv6 H.Encaps.Red behavior
bf5801cc24cc net/mlx5: IRQ, Fix null string in debug print
b8e0dd7ff319 net: mvpp2: cls: Fixed Non IP flow, with vlan tag flow defination.
0e70cec1839f tcp: Defer ts_recent changes until req is owned
a3c25f8374c2 ipvs: Always clear ipvs_property flag in skb_scrub_packet()
eba344580acb ASoC: es8328: fix route from DAC to output
39a26120ad99 net: cadence: macb: Synchronize stats calculations
718725496191 net: loopback: Avoid sending IP packets without an Ethernet header
806fcc99e4c0 afs: Fix the server_list to unuse a displaced server rather than putting it
9055fb0bb4f4 afs: Make it possible to find the volumes that are using a server
ba335b157a6a afs: remove variable nr_servers
1154e50e53e4 Bluetooth: L2CAP: Fix L2CAP_ECRED_CONN_RSP response
a340768d7311 ALSA: usb-audio: Avoid dropping MIDI events at closing multiple ports
a8f4ceb21f65 sunrpc: suppress warnings for unused procfs functions
f36cf97e4978 RDMA/mlx5: Fix bind QP error cleanup flow
66fee638e4dd scsi: core: Clear driver private data when retrying request
668ef6c54ca7 scsi: core: Don't memset() the entire scsi_cmnd in scsi_init_command()
4b49d939b5a7 ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up
802d342bf8bc ovl: pass ofs to creation operations
be2343e08165 ovl: use wrappers to all vfs_*xattr() calls
1cd7f84c88ae IB/mlx5: Set and get correct qp_num for a DCT QP
9a7fc5641c6f x86/cpu/kvm: SRSO: Fix possible missing IBPB on VM-Exit
b0c7cda8d636 mtd: rawnand: cadence: fix incorrect device in dma_unmap_single
099a31651850 mtd: rawnand: cadence: use dma_map_resource for sdma address
0301f9b44877 mtd: rawnand: cadence: fix error code in cadence_nand_init()
29853440da38 acct: block access to kernel internal filesystems
5d5b936cfa4b acct: perform last write from workqueue
d97d560f7d36 ALSA: hda/conexant: Add quirk for HP ProBook 450 G4 mute LED
924b239f9704 nfp: bpf: Add check for nfp_app_ctrl_msg_alloc()
872c7c7e57a7 drop_monitor: fix incorrect initialization order
c0a9a9481591 tee: optee: Fix supplicant wait loop
a3feeb1b4cb2 bpf: skip non exist keys in generic_map_lookup_batch
3bb2204ec30f nvme/ioctl: add missing space in err message
9f3891867e8e power: supply: da9150-fg: fix potential overflow
ef305447885e arp: switch to dev_getbyhwaddr() in arp_req_set_public()
e860d5103591 net: Add non-RCU dev_getbyhwaddr() helper
2af45b1f2962 flow_dissector: Fix port range key handling in BPF conversion
fbb727e4934a flow_dissector: Fix handling of mixed port and port-range keys
65196ee66ec2 net: extract port range fields from fl_flow_key
a94e59db1d89 geneve: Suppress list corruption splat in geneve_destroy_tunnels().
cb15bb1bde0b gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl().
f74f65601467 geneve: Fix use-after-free in geneve_find_dev().
6847b3e40bb9 powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC
718d0480ca3a ALSA: hda/realtek: Fixup ALC225 depop procedure
71f427413d2d powerpc/64s: Rewrite __real_pte() and __rpte_to_hidx() as static inline
61a45806db46 powerpc/64s/mm: Move __real_pte stubs into hash-4k.h
b09957657d77 USB: gadget: f_midi: f_midi_complete to call queue_work
006a4e9069a1 usb: dwc3: Fix timeout issue during controller enter/exit from halt state
47cc53c3ebe3 usb: dwc3: Increase DWC3 controller halt timeout
3c0e0aecb78c batman-adv: Drop unmanaged ELP metric worker
6ad063461332 batman-adv: Drop initialization of flexible ethtool_link_ksettings
d775f9e9e663 media: uvcvideo: Only save async fh if success
e0360e009904 media: uvcvideo: Refactor iterators
972f412da53b media: uvcvideo: Set error_idx during ctrl_commit errors
c113bccf1f87 soc: mediatek: mtk-devapc: Fix leaking IO map on driver remove
c3fa28e6cac8 soc/mediatek: mtk-devapc: Convert to platform remove callback returning void
4dd78251db13 soc: mediatek: mtk-devapc: Fix leaking IO map on error paths
10185d020c8f soc: mediatek: mtk-devapc: Switch to devm_clk_get_enabled()
f03ad378249f kfence: skip __GFP_THISNODE allocations on NUMA systems
8e19db074ab3 kfence: enable check kfence canary on panic via boot param
b7792fe79fbe kfence: allow use of a deferrable timer
0621d2599d6e tpm: Change to kvalloc() in eventlog/acpi.c
906ac470b16c tpm: Use managed allocation for bios event log
5e8bee0e4914 arm64: dts: mediatek: mt8183: Disable DSI display output by default
4a06ed6b962b ASoC: renesas: rz-ssi: Add a check for negative sample_space
8c4b9b0c3950 drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event()
5211d75e2cb7 drm/probe-helper: Create a HPD IRQ event helper for a single connector
f3b9fb276459 ksmbd: fix integer overflows on 32 bit systems
a9042dbc1ed4 memcg: fix soft lockup in the OOM process
4edae3ff6d4e mm: update mark_victim tracepoints fields
a32ba399a030 media: imx-jpeg: Fix potential error pointer dereference in detach_pm()
e290d1fe37f7 crypto: testmgr - some more fixes to RSA test vectors
add54f963938 crypto: testmgr - populate RSA CRT parameters in RSA test vectors
40689219a28b crypto: testmgr - fix version number of RSA tests
bd258be9a8be crypto: testmgr - Fix wrong test case of RSA
8fbf27a746c3 crypto: testmgr - fix wrong key length for pkcs1pad
4969dcc05bc3 arm64: mte: Do not allow PROT_MTE on MAP_HUGETLB user mappings
c4041b6b0a7a pps: Fix a use-after-free
26f2fdc47fea btrfs: avoid monopolizing a core when activating a swap file
dc550af962b7 Revert "btrfs: avoid monopolizing a core when activating a swap file"
caae54426402 x86/i8253: Disable PIT timer 0 when not in use
3aa5254d8096 f2fs: fix to wait dio completion
234549fb3db3 ARM: dts: dra7: Add bus_dma_limit for l4 cfg bus
c97306464928 selftests: rtnetlink: update netdevsim ipsec output format
28435f5d9d08 netdevsim: print human readable IP address
810109436b28 parport_pc: add support for ASIX AX99100
79cf08014ef3 serial: 8250_pci: add support for ASIX AX99100
1840fb92baf4 can: ems_pci: move ASIX AX99100 ids to pci_ids.h
d8ff250e085a nilfs2: protect access to buffers with no active references
f51ff43c4c5a nilfs2: do not force clear folio if buffer is referenced
1bf43414ccff nilfs2: do not output warnings when clearing dirty buffers
c6ddb3848599 alpha: replace hardcoded stack offsets with autogenerated ones
5fb8cda2fcea x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0
9c0a3aab4b8d kdb: Do not assume write() callback available
22e19c8c5f6b drm/v3d: Stop active perfmon if it is being destroyed
37054243cf5d drm/tidss: Clear the interrupt status for interrupts being disabled
2b7db8abf84f drm/tidss: Fix issue in irq handling causing irq-flood issue
29fa42197f26 ipv6: mcast: add RCU protection to mld_newpack()
e24d225e4cb8 ndisc: extend RCU protection in ndisc_send_skb()
a884f57600e4 openvswitch: use RCU protection in ovs_vport_cmd_fill_info()
d9366ac2f956 arp: use RCU protection in arp_xmit()
40d8f2f2a373 neighbour: use RCU protection in __neigh_notify()
44e359552378 neighbour: delete redundant judgment statements
b870256dd2a5 ndisc: use RCU protection in ndisc_alloc_skb()
28de355b63ad ipv6: use RCU protection in ip6_default_advmss()
ce3c6165fce0 ipv4: use RCU protection in __ip_rt_update_pmtu()
fc07a232326a net: ipv4: Cache pmtu for all packet paths if multipath enabled
a7246d3949c2 selftest: net: Test IPv4 PMTU exceptions with DSCP and ECN
7385291def47 Namespaceify mtu_expires sysctl
686792179f20 Namespaceify min_pmtu sysctl
4561343d2b6c ipv4: use RCU protection in inet_select_addr()
50d356db0542 ipv4: use RCU protection in rt_is_expired()
6e0d21491686 net: add dev_net_rcu() helper
c22b8d77816e net: treat possible_net_t net pointer as an RCU one and add read_pnet_rcu()
0e5ea98edc3b ipv4: add RCU protection to ip4_dst_hoplimit()
60f54f0d4ea5 clocksource: Use migrate_disable() to avoid calling get_random_u32() in atomic context
a02540d4401f clocksource: Use pr_info() for "Checking clocksource synchronization" message
4ae5e361537d clocksource: Replace cpumask_weight() with cpumask_empty()
acfebfb2abf3 btrfs: fix hole expansion when writing at an offset beyond EOF
e4291f26c501 mlxsw: Add return value check for mlxsw_sp_port_get_stats_raw()
9abfb2c8693d arm64: Handle .ARM.attributes section in linker scripts
78be8f779b20 regmap-irq: Add missing kfree()
40a35d14f3c0 partitions: mac: fix handling of bogus partition table
4647cb4e0013 gpio: stmpe: Check return value of stmpe_reg_read in stmpe_gpio_irq_sync_unlock
ede3fa7b0cb6 alpha: align stack for page fault and user unaligned trap handlers
bf3f395b9c37 serial: 8250: Fix fifo underflow on flush
19f3e16bc9f7 cgroup: fix race between fork and cgroup.kill
4d832459170d efi: Avoid cold plugged memory for placing the kernel
b737d6439113 alpha: make stack 16-byte aligned (most cases)
f1767d255807 can: j1939: j1939_sk_send_loop(): fix unable to send messages with data length zero
f7a43d1563ac can: c_can: fix unbalanced runtime PM disable in error path
9fccb6b65510 USB: serial: option: drop MeiG Smart defines
412458d7e92b USB: serial: option: fix Telit Cinterion FN990A name
60f0765d673b USB: serial: option: add Telit Cinterion FN990B compositions
95fcacb5b9a9 USB: serial: option: add MeiG Smart SLM828
6878c61a3880 usb: cdc-acm: Fix handling of oversized fragments
871619c2b78f usb: cdc-acm: Check control transfer buffer size before access
9ee5bb1938f3 USB: cdc-acm: Fill in Renesas R-Car D3 USB Download mode quirk
d3a67adb365c USB: hub: Ignore non-compliant devices with too many configs or interfaces
d8e86700c8a8 usb: gadget: f_midi: fix MIDI Streaming descriptor lengths
aeda961736f3 USB: Add USB_QUIRK_NO_LPM quirk for sony xperia xz1 smartphone
6afdad04f6c1 USB: quirks: add USB_QUIRK_NO_LPM quirk for Teclast dist
b605fd13b832 usb: core: fix pipe creation for get_bMaxPacketSize0
1af4043ec5bc USB: pci-quirks: Fix HCCPARAMS register error for LS7A EHCI
ef5e915db375 usb: dwc2: gadget: remove of_node reference upon udc_stop
626ab15ddc4b usb: gadget: udc: renesas_usb3: Fix compiler warning
6a902573f2ca usb: roles: set switch registered flag early on
f4ca0cf536b1 perf/x86/intel: Ensure LBRs are disabled when a CPU is starting
45fa526b0f5a KVM: x86: Reject Hyper-V's SEND_IPI hypercalls if local APIC isn't in-kernel
2e8f0f0e0097 batman-adv: Ignore neighbor throughput metrics in error case
f0a16c6c7976 batman-adv: fix panic during interface removal
6b7d69806c42 ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet 5V
8725882b0f69 orangefs: fix a oob in orangefs_debug_write
848b58151775 x86/mm/tlb: Only trim the mm_cpumask once a second
cd8de1f521d5 Grab mm lock before grabbing pt lock
69b812149b8b vfio/pci: Enable iowrite64 and ioread64 for vfio pci
20b7d9675437 PCI/DPC: Quirk PIO log size for Intel Raptor Lake-P
59a707ad952e media: vidtv: Fix a null-ptr-deref in vidtv_mux_stop_thread
d485a8b22794 media: cxd2841er: fix 64-bit division on gcc-9
ba842a609ff8 x86/xen: allow larger contiguous memory regions in PV guests
5b750e76dfd5 xen: remove a confusing comment on auto-translated guest I/O
d340047cf29b gpio: bcm-kona: Add missing newline to dev_err format string
f66a5da15f14 gpio: bcm-kona: Make sure GPIO bits are unlocked when requesting IRQ
54b0de7b6abe gpio: bcm-kona: Fix GPIO lock/unlock for banks above bank 0
092dc83b9a3c drm/i915/selftests: avoid using uninitialized context
88a3e6afaf00 arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array
f443687ad20c team: better TEAM_OPTION_TYPE_STRING validation
5bb4228c3226 vrf: use RCU protection in l3mdev_l3_out()
80f70686857e ndisc: ndisc_send_redirect() must use dev_get_by_index_rcu()
2052b44cd0a6 HID: multitouch: Add NULL check in mt_input_configured
efa8a261c575 NFSD: fix hang in nfsd4_shutdown_callback
6f7cfee1a316 nfsd: clear acl_access/acl_default after releasing them
e22a97700901 tty: xilinx_uartps: split sysrq handling
59cf03ddf127 mptcp: prevent excessive coalescing on receive
03b605ac1e5b ocfs2: check dir i_size in ocfs2_find_entry
ad73b43e6908 memory: tegra20-emc: Correct memory device mask
12a1cf9db178 gpio: xilinx: remove excess kernel doc
9772e2e15482 net/ncsi: use dev_set_mac_address() for Get MC MAC Address handling
3fec5d194fc9 MIPS: ftrace: Declare ftrace_get_parent_ra_addr() as static
1334c64a5d1d ptp: Ensure info->enable callback is always set
0eda6b12a108 net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset
83db3d545d39 net/ncsi: wait for the last response to Deselect Package before configuring channel
2ed6d46f8037 misc: fastrpc: Fix registered buffer page address
820603335006 mtd: onenand: Fix uninitialized retlen in do_otp_read()
10b3f947b609 NFC: nci: Add bounds checking in nci_hci_create_pipe()
8f41df5fd4c1 nilfs2: fix possible int overflows in nilfs_fiemap()
8aee4184c5b7 ocfs2: handle a symlink read error correctly
5a1c86066f1b ocfs2: fix incorrect CPU endianness conversion causing mount failure
c00e53672d7d pnfs/flexfiles: retry getting layout segment for reads
f65ce06387f8 vfio/platform: check the bounds of read/write syscalls
66325de71801 nvmem: core: improve range check for nvmem_cell_write()
c897de3d1f4d nvmem: qcom-spmi-sdam: Set size in struct nvmem_config
f52f00efd8c0 crypto: qce - unregister previously registered algos in error path
efae52c61150 crypto: qce - fix goto jump in error path
14810fb99091 media: uvcvideo: Remove redundant NULL assignment
74512c021525 media: uvcvideo: Fix event flags in uvc_ctrl_send_events
1662c5812b84 media: ccs: Fix cleanup order in ccs_probe()
66a2c461703e media: ccs: Fix CCS static data parsing for large block sizes
d6fae50f5eb7 media: ov5640: fix get_light_freq on auto
9a6c627f3fe4 media: mc: fix endpoint iteration
9e6cd5f99496 soc: qcom: smem_state: fix missing of_node_put in error path
1880c45ebe14 iio: light: as73211: fix channel handling in only-color triggered buffer
22d1dcd0b053 media: ccs: Clean up parsed CCS static data on parse failure
6bdbb75ffc6c xfs: Add error handling for xfs_reflink_cancel_cow_range
4e9af1ddbc98 crypto: qce - fix priority to be less than ARMv8 CE
231dfd6bb61e arm64: dts: qcom: sm8350: Fix MPSS memory length
e7e06872144e x86/boot: Use '-std=gnu11' to fix build with GCC 15
81a3a0c1a68f kbuild: Move -Wenum-enum-conversion to W=2
2bce0a6a4433 scsi: storvsc: Set correct data length for sending SCSI command without payload
73d3d3c66f10 scsi: qla2xxx: Move FCE Trace buffer allocation to user control
ad88fd9ee93a nvme-pci: Add TUXEDO IBP Gen9 to Samsung sleep quirk
662964484f8a nvme-pci: Add TUXEDO InfinityFlex to Samsung sleep quirk
d88422ccb97f PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf()
abe03cd5d5b7 ALSA: hda/realtek: Enable headset mic on Positivo C6400
94e418935e1d Revert "media: uvcvideo: Require entities to have a non-zero unique ID"
d24476777e8b mips/math-emu: fix emulation of the prefx instruction
63b759c9680e dm-crypt: track tag_offset in convert_context
84d6db1a7327 dm-crypt: don't update io->sector after kcryptd_crypt_write_io_submit()
453a0a22ceb8 powerpc/pseries/eeh: Fix get PE state translation
a3d92e7af72a MIPS: Loongson64: remove ROM Size unit in boardinfo
48a6a4dfa5c8 serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use
6b7947990681 serial: sh-sci: Drop __initdata macro for port_cfg
2d09d3c9afa2 soc: qcom: socinfo: Avoid out of bounds read of serial number
5fa25ae6484b usb: gadget: f_tcm: Don't prepare BOT write request twice
d5e48551866e usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint
45956a34f9a8 usb: gadget: f_tcm: Decrement command ref count on cleanup
93facdc47dc6 usb: gadget: f_tcm: Translate error to sense
61541d9b5a23 wifi: brcmfmac: fix NULL pointer dereference in brcmf_txfinalize()
7f44aa9d3960 wifi: rtlwifi: rtl8821ae: Fix media status report
e27d77db198a HID: hid-sensor-hub: don't use stale platform-data on remove
c0a158e7634a of: reserved-memory: Fix using wrong number of cells to get property 'alignment'
4f7c0deea1b3 of: Fix of_find_node_opts_by_path() handling of alias+path+options
87141db6d148 of: Correct child specifier used as input of the 2nd nexus node
a0d751d2d8ec perf bench: Fix undefined behavior in cmpworker()
be042a185cc5 efi: libstub: Use '-std=gnu11' to fix build with GCC 15
38287f779b34 blk-cgroup: Fix class @block_class's subsystem refcount leakage
44bd016cbaa3 clk: qcom: clk-rpmh: prevent integer overflow in recalc_rate
4e2996526679 clk: qcom: gcc-mdm9607: Fix cmd_rcgr offset for blsp1_uart6 rcg
175af15551ed clk: qcom: gcc-sm6350: Add missing parent_map for two clocks
4d8d1f443a6c clk: qcom: clk-alpha-pll: fix alpha mode configuration
45d563356db6 clk: sunxi-ng: a100: enable MMC clock reparenting
f26831839566 Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection
cf601a24120c Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc
250164081da0 drm/i915: Drop 64bpp YUV formats from ICL+ SDR planes
5098970ecc1d drm/komeda: Add check for komeda_get_layer_fourcc_list()
e89f74ef6bee drm/amd/pm: Mark MM activity as unsupported
224fa21f00fc KVM: s390: vsie: fix some corner-cases when grabbing vsie pages
7c4899239d0f KVM: Explicitly verify target vCPU is online in kvm_get_vcpu()
b0e8b635a331 arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma
bc8ca18b8ef4 binfmt_flat: Fix integer overflow bug on 32 bit systems
20ecbadad51a m68k: vga: Fix I/O defines
592ffb238132 s390/futex: Fix FUTEX_OP_ANDN implementation
61b4e072b7e8 drm/modeset: Handle tiled displays in pan_display_atomic.
4e2de62318b9 leds: lp8860: Write full EEPROM, not only half of it
fc7da1095247 cpufreq: s3c64xx: Fix compilation warning
4defa9ebef14 tun: revert fix group permission check
98a2c685293a netem: Update sch->q.qlen before qdisc_tree_reduce_backlog()
d85d721f3225 x86/xen: add FRAME_END to xen_hypercall_hvm()
aaa15fc4291b x86/xen: fix xen_hypercall_hvm() to not clobber %rbx
d308661a0f4e net: rose: lock the socket in rose_bind()
5bb48702e946 net: atlantic: fix warning during hot unplug
a6f3981d04d1 gpio: pca953x: Improve interrupt support
61e7e18fa64c udp: gso: do not drop small packets when PMTU reduces
540ffff7925b tg3: Disable tg3 PCIe AER on system reboot
712e6ed39e5c gpu: drm_dp_cec: fix broken CEC adapter properties check
256768b17e62 firmware: iscsi_ibft: fix ISCSI_IBFT Kconfig entry
51df156e04e5 nvme: handle connectivity loss in nvme_set_queue_count
cf30300a216a usb: xhci: Fix NULL pointer dereference on certain command aborts
b27f10764d80 usb: xhci: Add timeout argument in address_device USB HCD callback
d31d3dc92775 xfs: don't over-report free space or inodes in statvfs
bd015e2e7f26 xfs: report realtime block quota limits on realtime directories
d25041d4a3b2 gpio: xilinx: Convert gpio_lock to raw spinlock
4489cce8e4e7 net/ncsi: fix locking in Get MAC Address handling
8930834d1525 net/ncsi: Add NC-SI 1.2 Get MC MAC Address command
3f46fefab962 usb: chipidea: ci_hdrc_imx: decrement device's refcount in .remove() and in the error path of .probe()
998b1fa6c218 usb: chipidea/ci_hdrc_imx: Convert to platform remove callback returning void
9794ea40979b usb: chipidea: ci_hdrc_imx: use dev_err_probe()
af431197516a x86/mm: Don't disable PCID when INVLPG has been fixed by microcode
c56ea30db33d platform/x86: acer-wmi: Ignore AC events
78a88a1690bc Input: allocate keycode for phone linking
b191b2b3b5ad selftests/net/ipsec: Fix Null pointer dereference in rtattr_pack()
f213bb330fc6 tipc: re-order conditions in tipc_crypto_key_rcv()
c9b80829b001 mmc: sdhci-msm: Correctly set the load for the regulator
4dddb00d0397 net: wwan: iosm: Fix hibernation by re-binding the driver around it
5c60cdcff102 APEI: GHES: Have GHES honor the panic= setting
3fa04850ddac i2c: Force ELAN06FA touchpad I2C bus freq to 100KHz
0bae6625cabc wifi: iwlwifi: avoid memory leak
578845229c4e net/mlx5: use do_aux_work for PHC overflow checks
463f5f6402b9 HID: Wacom: Add PCI Wacom device support
c16b96035c48 mfd: lpc_ich: Add another Gemini Lake ISA bridge PCI device-id
b2bd5857a0d6 tomoyo: don't emit warning in tomoyo_write_control()
d280a12e9b87 wifi: brcmsmac: add gain range check to wlc_phy_iqcal_gainparams_nphy()
bafaee99fc23 mmc: core: Respect quirk_max_rate for non-UHS SDIO card
9b560350aa7b tun: fix group permission check
ecf6a4a55809 safesetid: check size of policy writes
bb8ff054e19f printk: Fix signed integer overflow when defining LOG_BUF_LEN_MAX
99795e62e7a5 x86/amd_nb: Restrict init function to AMD-based systems
23434fcf90b9 lockdep: Fix upper limit for LOCKDEP_*_BITS configs
56135262c1f9 sched: Don't try to catch up excess steal time.
13dae4fa17be btrfs: convert BUG_ON in btrfs_reloc_cow_block() to proper error handling
367b72fa18b0 btrfs: fix data race when accessing the inode's disk_i_size at btrfs_drop_extents()
7e954b6bb95d btrfs: fix use-after-free when attempting to join an aborted transaction
51bcf530c6dc btrfs: output the reason for open_ctree() failure
bbb7f49839b5 usb: gadget: f_tcm: Don't free command immediately
3ba8884a56a3 media: uvcvideo: Fix double free in error path
3a7fda57b0f9 mptcp: consolidate suboption status
83a3a5aeb1b1 usb: typec: tcpci: Prevent Sink disconnection before vPpsShutdown in SPR PPS
bb52bce4c91c usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE
16d5669ff07f usb: dwc3: core: Defer the probe until USB power supply ready
2cfbf53baeaf usb: gadget: f_tcm: Fix Get/SetInterface return value
3c1f8dfa01b3 drivers/card_reader/rtsx_usb: Restore interrupt based detection
d42168f109f9 net: usb: rtl8150: enable basic endpoint checking
10eff770fd16 ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro
deec230cb835 ktest.pl: Check kernelrelease return in get_version
5083a7ae4500 netfilter: nf_tables: reject mismatching sum of field_len with set key length
d712ca4807ce NFSD: Reset cb_seq_status after NFS4ERR_DELAY
b0938ffd39ae f2fs: Introduce linear search for dentries
679bb865c881 hexagon: Fix unbalanced spinlock in die()
8e83dbe9ff32 hexagon: fix using plain integer as NULL pointer warning in cmpxchg
4bd72d9fe11d kconfig: fix memory leak in sym_warn_unmet_dep()
5f45a419bdd1 kconfig: WERROR unmet symbol dependency
ccc1287a02ea kconfig: deduplicate code in conf_read_simple()
3e31777acf2d kconfig: remove unused code for S_DEF_AUTO in conf_read_simple()
131f1604fa6b kconfig: require a space after '#' for valid input
6bdf078908c3 kconfig: add warn-unknown-symbols sanity check
4780a614f013 kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST
c48b8fc7f0a8 genksyms: fix memory leak when the same symbol is read from *.symref file
bb28d02726ab genksyms: fix memory leak when the same symbol is added from source
13310513f549 net: hsr: fix fill_frame_info() regression vs VLAN packets
df3398504b97 net: sh_eth: Fix missing rtnl lock in suspend/resume path
3ce32a9fb1d2 bgmac: reduce max frame size to support just MTU 1500
ab2df791b1d4 vsock: Allow retrying on connect() failure
a48ebcd853a4 perf trace: Fix runtime error of index out of bounds
0dd6c67f6cfe ptp: Properly handle compat ioctls
7d7d201eb3b7 net: davicom: fix UAF in dm9000_drv_remove
cfb17f637562 net: netdevsim: try to close UDP port harness races
1409b45d4690 net: rose: fix timer races against user threads
c499bd77ca2a PM: hibernate: Add error handling for syscore_suspend()
547ef7e8cbb9 ipmr: do not call mr_mfc_uses_dev() for unres entries
6468f3a9842f net: fec: implement TSO descriptor cleanup
5934bfaeaffe gpio: mxc: remove dead code after switch to DT-only
8c640dd3d900 net: hns3: fix oops when unload drivers paralleling
1787cd67bb94 ubifs: skip dumping tnc tree when zroot is null
e5536677da80 rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read
2943af7d72d7 dmaengine: ti: edma: fix OF node reference leaks in edma_driver
c9cc70bca158 xfrm: replay: Fix the update of replay_esn->oseq_hi for GSO
6be3ea508111 tools/bootconfig: Fix the wrong format specifier
26e5c3c8d780 NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE
edcaf4156ced NFSv4.2: fix COPY_NOTIFY xdr buf size calculation
f6bae8cc42ab module: Extend the preempt disabled section in dereference_symbol_descriptor().
2e2bb52b8e58 ocfs2: mark dquot as inactive if failed to start trans while releasing dquot
fe761befd845 scsi: ufs: bsg: Delete bsg_dev when setting up bsg fails
13186db840b9 scsi: mpt3sas: Set ioc->manu_pg11.EEDPTagMode directly to 1
6987e021b64c PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region()
68ee578e6e31 staging: media: imx: fix OF node leak in imx_media_add_of_subdevs()
6f3c167de057 mtd: hyperbus: hbmc-am654: fix an OF node reference leak
784a7f4a9efb mtd: hyperbus: hbmc-am654: Convert to platform remove callback returning void
c1aea4faa984 mtd: hyperbus: Make hyperbus_unregister_device() return void
3b86841430a6 media: uvcvideo: Propagate buf->error to userspace
235ab2be3572 media: camif-core: Add check for clk_enable()
cc0d04ae127d media: mipi-csis: Add check for clk_enable()
5bdd8b64153d media: i2c: ov9282: Correct the exposure offset
8ab5c3af1406 media: i2c: imx412: Add missing newline to prints
333f8f9b6667 media: marvell: Add check for clk_enable()
a61cd3df84b3 PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy()
55c326068f6b media: lmedm04: Handle errors for lme2510_int_read
8bea20f4d630 media: rc: iguanair: handle timeouts
0486d65804cc efi: sysfb_efi: fix W=1 warnings when EFI is not set
8049a0845bfc of: reserved-memory: Do not make kmemleak ignore freed address
ca36f0848eb8 memblock: drop memblock_free_early_nid() and memblock_free_early()
d26e179d2cac xen/x86: free_p2m_page: use memblock_free_ptr() to free a virtual pointer
708ce479ff3c RDMA/mlx5: Fix indirect mkey ODP page count
95b4474c93a0 RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults
fe090e183d26 RDMA/mlx5: Remove iova from struct mlx5_core_mkey
b9c5f50926e3 fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device()
96cd8661f225 ARM: dts: mediatek: mt7623: fix IR nodename
311afb2be167 arm64: dts: qcom: sdm845: Fix interrupt types of camss interrupts
eb3e76baaf1b arm64: dts: qcom: sm8150-microsoft-surface-duo: fix typos in da7280 properties
312e11fc5060 arm64: dts: qcom: sm8350: correct sleep clock frequency
8fbb052b3bd3 arm64: dts: qcom: sm8250: correct sleep clock frequency
c990f5e0b2cb arm64: dts: qcom: sm6125: correct sleep clock frequency
88c84e743d4c arm64: dts: qcom: sc7280: correct sleep clock frequency
afc66a233ad9 arm64: dts: qcom: msm8994: correct sleep clock frequency
9cc46ab94b61 arm64: dts: qcom: msm8916: correct sleep clock frequency
09153a482e90 arm64: dts: qcom: msm8994: Describe USB interrupts
31952ff5833c arm64: dts: qcom: msm8996: Fix up USB3 interrupts
ea7232a05e10 arm64: dts: mediatek: mt8183-kukui-jacuzzi: Drop pp3300_panel voltage settings
c3def10c610a memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code()
d9f36f957bb2 memory: tegra20-emc: Support matching timings by LPDDR2 configuration
0f3c0d94c815 memory: Add LPDDR2-info helpers
4274acb5b996 arm64: dts: mediatek: mt8183: willow: Support second source touchscreen
cba8c5daa9d8 arm64: dts: mediatek: mt8183: kenzo: Support second source touchscreen
d098183961e0 arm64: dts: mediatek: mt8173-evb: Fix MT6397 PMIC sub-node names
b9a5544dbad5 arm64: dts: mediatek: mt8173-elm: Fix MT6397 PMIC sub-node names
032c92e01aaa arm64: dts: mediatek: mt8173-elm: Drop regulator-compatible property
2a28a21a925f arm64: dts: mediatek: mt8173-evb: Drop regulator-compatible property
e53ca458f543 rdma/cxgb4: Prevent potential integer overflow on 32bit
160450e4908b RDMA/mlx4: Avoid false error about access to uninitialized gids array
f92f10cdb7fa arm64: dts: mediatek: mt8516: reserve 192 KiB for TF-A
52a976a83dda arm64: dts: mediatek: mt8516: add i2c clock-div property
6047c27de667 arm64: dts: mediatek: mt8516: remove 2 invalid i2c clocks
bcc6c817e2ad arm64: dts: mediatek: mt8516: fix wdt irq type
3ad0e4e15581 arm64: dts: mediatek: mt8516: fix GICv2 range
9792f0c9880a arm64: dts: mt8183: set DMIC one-wire mode on Damu
abbb15f54a35 ARM: at91: pm: change BU Power Switch to automatic mode
4c6209efea22 padata: avoid UAF for reorder_work
035ed9577b48 padata: add pd get/put refcnt helper
f3e0b9f790f8 padata: fix UAF in padata_reorder
e306eaaa3d78 bpf: Send signals asynchronously if !preemptible
d6becd34dc65 perf report: Fix misleading help message about --demangle
54b587874a7c perf top: Don't complain about lack of vmlinux when not resolving some kernel samples
ca0b62b2dc9a padata: fix sysfs store callback check
b467ed29b586 crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto()
778a73f8d38d crypto: hisilicon/sec2 - fix for aead invalid authsize
37e032978e55 crypto: hisilicon/sec2 - fix for aead icv error
017b2680816b crypto: hisilicon/sec2 - optimize the error return process
8f268c476c83 crypto: hisilicon/sec - delete redundant blank lines
0db426905cb4 crypto: hisilicon/sec - add some comments for soft fallback
4086792b8883 ktest.pl: Remove unused declarations in run_bisect_test function
4c45f82e101a ASoC: renesas: rz-ssi: Use only the proper amount of dividers
49c5d851a2bf perf bpf: Fix two memory leakages when calling perf_env__insert_bpf_prog_info()
ac026a0ba486 perf header: Fix one memory leakage in process_bpf_prog_info()
11491bb26fd9 perf header: Fix one memory leakage in process_bpf_btf()
d79fc69eda73 ASoC: sun4i-spdif: Add clock multiplier settings
6a5d02ae6ff8 libbpf: Fix segfault due to libelf functions not setting errno
3c99e59404f3 tools/testing/selftests/bpf/test_tc_tunnel.sh: Fix wait for server bind
b8583b54455c net/rose: prevent integer overflows in rose_setsockopt()
3cfabbb18810 tcp_cubic: fix incorrect HyStart round start detection
ed8c0300f302 net: ethernet: ti: am65-cpsw: fix freeing IRQ in am65_cpsw_nuss_remove_tx_chns()
920f736e6c64 netfilter: nft_flow_offload: update tcp state flags under lock
38646749d6e1 net: sched: Disallow replacing of child qdisc from one parent to another
26bc6076798a net: avoid race between device unregistration and ethnl ops
f023bf675814 net/mlxfw: Drop hard coded max FW flash image size
0e2f1d93d287 net: let net.core.dev_weight always be non-zero
0cc8fc34df84 selftests/landlock: Fix error message
78eadb30f5ce clk: analogbits: Fix incorrect calculation of vco rate delta
7d07de96990e wifi: cfg80211: adjust allocation of colocated AP data
7427e4afbd16 wifi: cfg80211: Handle specific BSSID in 6GHz scanning
23b54d193a90 selftests: harness: fix printing of mismatch values in __EXPECT()
28063f72460d cpufreq: ACPI: Fix max-frequency computation
965e41a93fce wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO
a1fccf6b72b5 landlock: Handle weird files
b32a42383c26 landlock: Move filesystem helpers and add a new one
ba079f94cb0a net/smc: fix data error when recvmsg with MSG_PEEK flag
9394c1163c20 wifi: wlcore: fix unbalanced pm_runtime calls
a7e98a85990a samples/landlock: Fix possible NULL dereference in parse_path()
332ee5fc52e1 regulator: of: Implement the unwind path of of_regulator_match()
bd099a2fa9be team: prevent adding a device which is already a team device lower
f5072f5c806f clk: imx8mp: Fix clkout1/2 support
68fb4aafe3bb cpufreq: schedutil: Fix superfluous updates caused by need_freq_update
0e833dc042b9 leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata()
4efb30e564f2 dt-bindings: mfd: bd71815: Fix rsense and typos
725d01fdde59 cpupower: fix TSC MHz calculation
fc1750250f85 ACPI: fan: cleanup resources in the error path of .probe()
f575806ef1da regulator: dt-bindings: mt6315: Drop regulator-compatible property
a57bce750a52 HID: multitouch: fix support for Goodix PID 0x01e9
25c30f902438 Revert "HID: multitouch: Add support for lenovo Y9000P Touchpad"
8c52d33d88ef HID: multitouch: Add support for lenovo Y9000P Touchpad
4c436e8bd326 wifi: rtlwifi: pci: wait for firmware loading before releasing memory
b96371339fd9 wifi: rtlwifi: fix memory leaks and invalid access at probe error path
0eea81f30c6e wifi: rtlwifi: destroy workqueue at rtl_deinit_core
8e2fcc68fbaa wifi: rtlwifi: remove unused check_buddy_priv
ed3d742c2204 wifi: rtlwifi: remove unused dualmac control leftovers
c8951a13d626 wifi: rtlwifi: remove unused timer and related code
5f945d2595cd rtlwifi: replace usage of found with dedicated list iterator variable
94b4c15bca53 dt-bindings: leds: class-multicolor: Fix path to color definitions
f045124251f5 dt-bindings: leds: class-multicolor: reference class directly in multi-led node
594cb8eeac49 dt-bindings: leds: Add multicolor PWM LED bindings
7c09f7ba7ad3 dt-bindings: leds: Optional multi-led unit address
e547ede9d118 dt-bindings: leds: Add Qualcomm Light Pulse Generator binding
621600ed2ce5 dt-bindings: Another pass removing cases of 'allOf' containing a '$ref'
b220d6b97a8b spi: dt-bindings: add schema listing peripheral-specific properties
efb8b60b7990 dt-bindings: mmc: controller: clarify the address-cells description
4960235d6662 spi: zynq-qspi: Add check for clk_enable()
5a80bbc5df58 wifi: rtlwifi: usb: fix workqueue leak when probe fails
643c584528ce wifi: rtlwifi: fix init_sw_vars leak when probe fails
284a6f64f4cf wifi: rtlwifi: wait for firmware loading before releasing memory
949845dfdb9b wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step
56e84ffaf3d8 wifi: rtlwifi: do not complete firmware loading needlessly
eb288ab33fd8 ipmi: ipmb: Add check devm_kasprintf() returned value
62f14b506f5b genirq: Make handle_enforce_irqctx() unconditionally available
2396bc91935c drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table
a32ea3f982b3 HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections
c589074b64dd drm/etnaviv: Fix page property being used for non writecombine buffers
c7971fc03a06 sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat
b3a5ff8c4b6e sched/psi: Use task->psi_flags to clear in CPU migration
105ff3024397 afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call
0a60270ee48c select: Fix unbalanced user_access_end()
b9ca509e5b7f partitions: ldm: remove the initial kernel-doc notation
8714ecb8fa55 nvme: Add error check for xa_store in nvme_get_effects_log
113563188f22 pstore/blk: trivial typo fixes
e3be8862d73c nbd: don't allow reconnect after disconnect
2d43a6fcea0e block: retry call probe after request_module in blk_request_module
6327dacfe6d6 block: deprecate autoloading based on dev_t
effcbfb1e5ea fs: fix proc_handler for sysctl_nr_open
a3eff27900d0 fs: move fs stat sysctls to file_table.c
ca5d118b213e fs: move inode sysctls to its own file
548fae8fb904 sysctl: share unsigned long const values
7584027c80dc sysctl: use const for typically used max/min proc sysctls
d96a8f8e86d1 hung_task: move hung_task sysctl interface to hung_task.c
f3cfafcdb5bb afs: Fix directory format encoding struct
ef5f2706364d afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY
e0bb89c44b56 efi: libstub: Use '-std=gnu11' to fix build with GCC 15
b5d500042eb3 usb: hcd-pci: remove the action of faking interrupt request
6f0605db50e2 clk: imx: Add check for kcalloc
5b837b9e1543 bpf: Fix the indention issue in grow_stack_state()
42b62697634d cifs: Fix the calling of smb_version_operations::calc_smb_size()
b14acf729e9d f2fs: Add inline to f2fs_build_fault_attr() stub
7c317bec311f f2fs: check validation of fault attrs in f2fs_build_fault_attr()
81c12119c23f bpf: Fix accesses to uninit stack slots [ Upstream commit 6b4a64bafd107e521c01eec3453ce94a3fb38529 ]
c4fa05422d87 smb: client: fix potential OOB in smb2_dump_detail()
299ef3b5b00b of: module: add buffer overflow check in of_modalias()
b8086c3c1548 reiserfs: Avoid touching renamed directory if parent does not change
ea091017ef62 ipv6: Fix data races around sk->sk_prot.
ff8710da80ee ipv6: annotate some data-races around sk->sk_prot
e8c2eafaaa6a tcp: Fix data races around icsk->icsk_af_ops.
8d1bab770956 locking/rwsem: Disable preemption while trying for rwsem lock
7c82dac02886 block, loop: support partitions without scanning
45f504f301d4 bpftool: Fix pretty print dump for maps without BTF loaded
1f24338cb789 jbd2: Drop the merge conflicted hunk
e1d0e3c51bde tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
1abe841fe331 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
6224acfc1d56 tpm: Add flag to use default cancellation policy
1cd19d48fb90 tpm: tis_i2c: Fix sanity check interrupt enable mask
a883da132fa8 tpm: Add tpm_tis_i2c backend for tpm_tis_core
a742ac8a1c51 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer
ef495c5f45f2 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops
1f3be2e23aa6 gcc-plugins: Reorganize gimple includes for GCC 13
24615a3b932a ata: ahci: fix enum constants for gcc-13
5d6cb145541a net: stmmac: Enable mac_managed_pm phylink config
fd93aabb4287 tools/resolve_btfids: Use pkg-config to locate libelf
130f9da78406 tools/resolve_btfids: Build with host flags
00f2f1a782f9 tools/resolve_btfids: Support cross-building the kernel with clang
17776a4ba9c2 tools/resolve_btfids: Install libbpf headers when building
7c9808380d70 libbpf: Make libbpf_version.h non-auto-generated
37ae1ba791ac libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations
a2667e6d7314 drm/radeon: free iio for atombios when driver shutdown
f100c753aa1f powerpc: Fix reschedule bug in KUAP-unlocked user copy
da5513f30187 libbpf: Fix build warning on ref_ctr_off
4c5a089621a8 perf python: Account for multiple words in CC
1c5699ee85d4 fs: move S_ISGID stripping into the vfs_*() helpers
838f5d0701d8 fs: add mode_strip_sgid() helper
d97172683641 squashfs: provide backing_dev_info in order to disable read-ahead
ed037d7be40c irq_work: use kasan_record_aux_stack_noalloc() record callstack
1363bd7dbde3 ixgbevf: add disable link state
e5601ae2bd24 ixgbe: add improvement for MDD response functionality
caa57cd80575 ixgbe: add the ability for the PF to disable VF link state
16a77bfcc7df Check /dev/console using init_stat()
04574fd5579a tracing/arm: Have max stack tracer handle the case of return address after data
0e51e5717018 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
1e6b7da6ddba drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
493160901320 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
04224f725aa3 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered
6f6c2996a81c irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve
1fa94473423f irqchip/gic-v3-its: Give the percpu rdist struct its own flags field
6013d1ae5feb cert host tools: Stop complaining about deprecated OpenSSL functions
efe20512212b init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash
a40d2daf2795 pnmtologo: use relocatable file name
3b40d5b41155 of: configfs: remove unused variable overlay_lock
6c085baf1838 tools: use basename to identify file in gen-mach-types
2fca0fd71981 lib/build_OID_registry: fix reproducibility issues
0f586f4ee8ad vt/conmakehash: improve reproducibility
a75774679f28 OF: DT-Overlay configfs interface (v8)
d179c639b30b x86/boot: Wrap literal addresses in absolute_pointer()
856ec356cf91 ACPI: thermal: drop an always true check
7614af249993 xfs: Fix -Werror=dangling-pointer work-around for older GCC
41470215f97e xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o
44a445c1922d virtio-pci: Remove wrong address verification in vp_del_vqs()
77aa9e489eaf bpf: Disallow unprivileged bpf by default
ebfb1822e9f9 fs/aufs: fixup 5.15.36 fixups
4eba9348d3e2 Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal""
5df6d1b00f95 jbd2: fix use-after-free of transaction_t race
2d83e8196487 jbd2: refactor wait logic for transaction updates into a common function
07a63f760793 netfilter: conntrack: avoid useless indirection during conntrack destruction
4e7122625996 Revert "fbdev: Hot-unplug firmware fb devices on forced removal"
7ba4cb36fd4f rcu: Avoid alloc_pages() when recording stack
f78574dee71e kasan: test: silence intentional read overflow warnings
d313cb89b6b1 kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC
5e279d5647cc arm64: support page mapping percpu first chunk allocator
e5bf16752dca vmalloc: choose a better start address in vm_area_register_early()
660b3d21b46f kasan: test: bypass __alloc_size checks
00aa7573e53a kasan: test: add memcpy test that avoids out-of-bounds write
67becf0b1bd4 kasan: fix tag for large allocations when using CONFIG_SLAB
bedf1e033213 workqueue, kasan: avoid alloc_pages() when recording stack
7195b67ce69b kasan: generic: introduce kasan_record_aux_stack_noalloc()
bdff763f0e29 kasan: common: provide can_alloc in kasan_save_stack()
51423ebb36ad lib/stackdepot: introduce __stack_depot_save()
85373e66d847 lib/stackdepot: remove unused function argument
5b6cc9b251f3 lib/stackdepot: include gfp.h
c9f3902d8069 aufs: reduce overhead for "code present but disabled" use case.
b98d189df02c aufs: bugfix, umount passes NULL to ->parse_monolithic()
13b883cbbbd9 aufs standalone: cosmetic, missing copyright sentence
21f8b0d81898 aufs: 5.15.5-20220117 ---> 5.15.5-20220221
6199fd896645 aufs: tiny, headers after fs_context
8ddb40e31c29 aufs: fs_context 7/7, finally remount
69035f71c6fd aufs: fs_context 6/7, now mount
bc841b970697 aufs: fs_context 5/7, parse all other mount options
435188053da2 aufs: fs_context 4/7, parse xino options
9af1f1825cbd aufs: fs_context 3/7, parse the branch-management options
1c05eb767f8c aufs: fs_context 2/7, parse "br" mount option
a8488f603134 aufs: fs_context 1/7, skelton of the new shceme
8e32e0015564 aufs: pre fs_context, convert a static flag to a macro
f90cb4144aec aufs: pre fs_context, support the incomplete sb and sbinfo case
948762ef859c aufs: pre fs_context, convert the type of alloc_sbinfo()
77151a08776b aufs: 5.15.5-20211129 ---> 5.15.5-20220117
2539adbbbe1e aufs: 5.14-20211018 ---> 5.15.5-20211129
7d32b25193c4 aufs: for v5.15-rc1, sync_inode() is gone
66ec0c509225 aufs: for v5.15-rc1, new param 'rcu' for ->get_acl()
69709dc518cd aufs: for v5.15-rc1, no mand-lock anymore
ada8fe9543e5 aufs: 5.14-20210906 ---> 5.14-20211018
b77f7f3f394a Revert "aufs: adjust to v5.15 fs changes"
81bdce5b5876 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation
97c963889222 sched/isolation: really align nohz_full with rcu_nocbs
871f23ad3627 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards"
ffad0783dd5b ARM: config: multi v7: Regenerate defconifg
5c1e1a1ff2d3 ARM: config: multi v7: Add renamed symbols
badaf96564fe ARM: config: multi v7: Clean up enabled by default options
34996040fc9b ARM: config: multi v7: Drop unavailable options
7f685244afb3 powerpc/mm: Switch obsolete dssall to .long
20301aeb1a64 riscv: fix build with binutils 2.38
9df58d070506 powerpc/lib/sstep: fix 'ptesync' build error
720b61fc400b x86_64_defconfig: Fix warnings
02bf23d26bc4 arm64: defconfig: cleanup config options
05914e2c87e5 arm: defconfig: drop unused POWER_AVS option
ffb532fa19b9 aufs5: fix build against v5.15.3+
a4b3abf4d96d qemux86: add configuration symbol to select values
fee94ee09154 clear_warn_once: add a clear_warn_once= boot parameter
3d8762d900d9 clear_warn_once: bind a timer to written reset value
95faacac47e8 clear_warn_once: expand debugfs to include read support
de20c4240018 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
0e4aacead9c1 perf: x86-32: explicitly include <errno.h>
9ad92c11468e perf: mips64: Convert __u64 to unsigned long long
09e7efe3e68a perf: fix bench numa compilation
e79becc44fa6 perf: add SLANG_INC for slang.h
b1033b588681 perf: add sgidefs.h to for mips builds
cf9db484ac0b perf: change --root to --prefix for python install
7fd052c2c562 perf: add 'libperl not found' warning
27a437cdd469 perf: force include of <stdbool.h>
3b99d21bec2f fat: don't use obsolete random32 call in namei_vfat
a7e9293b506b FAT: Added FAT_NO_83NAME
6fd0e71d9e5c FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
c379b0d324ae FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
538be0fdb124 aufs: adjust to v5.15 fs changes
f45da75c8759 aufs5: core
047f57e07e01 aufs5: standalone
029fc15574c8 aufs5: mmap
610d0192ee94 aufs5: base
d4e428d0ec5f aufs5: kbuild
eb067eca251a yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
286af18d0875 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
24d59a4e26a6 yaffs2: v5.12+ build fixups (not runtime tested)
22c73536d5d7 yaffs: include blkdev.h
506b7251bfb8 yaffs: fix misplaced variable declaration
a0e26ff364dc yaffs2: v5.6 build fixups
b10b1b2d169e yaffs2: fix memory leak when /proc/yaffs is read
ad9adccbb214 yaffs: add strict check when call yaffs_internal_read_super
2e3c3aec8279 yaffs: repair yaffs_get_mtd_device
d662538516a7 yaffs: Fix build failure by handling inode i_version with proper atomic API
70a6113ee2c7 yaffs2: fix memory leak in mount/umount
3378e4a9e404 yaffs: Avoid setting any ACL releated xattr
ec2284edddef Yaffs:check oob size before auto selecting Yaffs1
c2a49874051c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
e9a5105a3e73 yaffs2: adjust to proper location of MS_RDONLY
608807406f13 yaffs2: import git revision b4ce1bb (jan, 2020)
89e660ece42c initramfs: allow an optional wrapper script around initramfs generation
b179dbc9aa10 iwlwifi: select MAC80211_LEDS conditionally
3fd5ca3673d0 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
d1f6edbf0188 arm64/perf: Fix wrong cast that may cause wrong truncation
d202fb2caf33 defconfigs: drop obselete options
9a27e3b5f4e7 arm64/perf: fix backtrace for AAPCS with FP enabled
e20d8cf019b4 linux-yocto: Handle /bin/awk issues
b6d2a3dbbd3a uvesafb: provide option to specify timeout for task completion
adb40f1e6a1a uvesafb: print error message when task timeout occurs
f280a1ed0962 compiler.h: Undef before redefining __attribute_const__
4352732f268c vmware: include jiffies.h
7954a677968d Resolve jiffies wrapping about arp
5f28a1035d95 nfs: Allow default io size to be configured.
0d7260ad7106 check console device file on fs when booting
900a12e37e0a mount_root: clarify error messages for when no rootfs found
7b878cbea726 menuconfig,mconf-cfg: Allow specification of ncurses location
6604fc1763b3 modpost: mask trivial warnings
0d294adb09cb kbuild: exclude meta directory from distclean processing
a097cdd95a9e powerpc: serialize image targets
5db6ec39a0a3 arm: serialize build targets
cbabca27905e crtsavres: fixups for 5.4+
7fc7656ed403 powerpc/ptrace: Disable array-bounds warning with gcc8
a5faac5a19a2 powerpc: Disable attribute-alias warnings from gcc8
186c54665b67 powerpc: add crtsavres.o to archprepare for kbuild
d1ea862964ca powerpc: kexec fix for powerpc64
2ac35b89a0f9 powerpc: Add unwind information for SPE registers of E500 core
2e1c348a28bb mips: vdso: fix 'jalr $t9' crash in vdso code
ec57870b303a mips: Kconfig: add QEMUMIPS64 option
6a81b3c08107 4kc cache tlb hazard: tlbp cache coherency
74e3b2a21e54 malta uhci quirks: make allowance for slow 4k(e)c
22e65b63d3b4 arm/Makefile: Fix systemtap
b7f1ab59f19e vexpress: Pass LOADADDR to Makefile
ce2800c73bf7 arm: ARM EABI socketcall
019d142fd956 ARM: LPAE: Invalidate the TLB for module addresses during translation fault
(From OE-Core rev: 8d6940f6a2c5fb81d3ed8dafb95b52a013174a57)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick commit mentioned in NDV CVE report
b8b4b713c5
which is on 3.10 branch.
(From OE-Core rev: 70036b4ea0ab968adab82fc632bb967f95203de2)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Fixed:
IMAGE_INSTALL:append = " libxcrypt-compat"
$ bitbake <image> -cpopulate_sdk
file /usr/lib/libcrypt.so from install of libxcrypt-compat-dev-4.4.33-r0.0.aarch64 conflicts with file from package libcrypt-dev-4.4.33-r0.2.aarch64
Remove libcrypt.so like other files to fix the error.
(From OE-Core rev: dc0c7a8c3d1d4f02869b7f0d42f704fd24bf0dde)
(From OE-Core rev: 1172a71f2104454a13e64886adbdb381aa8d6e0e)
Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
In X.Org X server 20.11 through 21.1.16, when a client application
uses easystroke for mouse gestures, the main thread modifies various
data structures used by the input thread without acquiring a lock,
aka a race condition. In particular, AttachDevice in dix/devices.c
does not acquire an input lock.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2022-49737
Upstream patch:
dc7cb45482
(From OE-Core rev: 740ea9019cf5cf309c5a4ef380eac17d21078ac8)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
In X.Org X server 20.11 through 21.1.16, when a client application
uses easystroke for mouse gestures, the main thread modifies various
data structures used by the input thread without acquiring a lock,
aka a race condition. In particular, AttachDevice in dix/devices.c
does not acquire an input lock.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2022-49737
Upstream patch:
dc7cb45482
(From OE-Core rev: c6a8ad45174a416c4129deb210eab9b7721ce01d)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Version bump is needed after "siggen.py: Improve taskhash reproducibility"
otherwise there will be taskhash mismatch errors
(Bitbake rev: 046871d9fd76efdca7b72718b328d8f545523f7e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2024-10573:
An out-of-bounds write flaw was found in mpg123 when handling crafted streams.
When decoding PCM, the libmpg123 may write past the end of a heap-located buffer.
Consequently, heap corruption may happen, and arbitrary code execution is not
discarded. The complexity required to exploit this flaw is considered high as
the payload must be validated by the MPEG decoder and the PCM synth before execution.
Additionally, to successfully execute the attack, the user must scan through the
stream, making web live stream content (such as web radios) a very unlikely attack vector.
Reference: [https://nvd.nist.gov/vuln/detail/CVE-2024-10573]
Upstream patches: [svn://scm.orgis.org/mpg123/branches/1.31-fixes@5442]
(From OE-Core rev: a227b80e29c5ba5d963acaa4ddb4b9ad45483bd5)
Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick commit referencing this MR which was merged to master.
Note that this commit also patched CVE-2025-1632 in bsdunzip, however
that utility was introduced only in 3.7.0, so that part is not
applicable in kirkstone.
(From OE-Core rev: ec837d3b21b4f8b98abac53e2833f1490ba6bf1e)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
As we just match on product by default, ignore three CVEs which are
for the "Puzzles" WordPress theme by ThemeREX (CPE themerex:puzzles).
(From OE-Core rev: 87326573c82ac1e8dc335319442236ef2341501e)
(From OE-Core rev: 48791ba2329ee930285e5ed8eff0f2535c70bec7)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Adapted to different kirkstone CVE_STATUS format.
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
file checksums are part of the data checksummed
to generate the task hash. The list of file checksums
was not ordered.
In this commit we make sure the task hash checksum takes
a list of checksum data that is ordered by unique file name
thus guaranteeing reproducibility.
(Bitbake rev: da5f41996687e18b78d9c9845e621d832115aa1e)
Signed-off-by: Paulo Neves <paulo@myneves.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Starting from 2023d version, tzcode makefile does not use anymore "cc"
variable for C compiler, due to Makefile refactoring.
Replacing "cc" with "CC" fixes the issue.
(From OE-Core rev: 0216c229d5c60d0023b0a7d6e8ee41bdfa16f8ef)
Signed-off-by: Alessio Cascone <alessio.cascone@vimar.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b3cdfca5ef84ed2054faef9abddef3aeed930e17)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
* Noteworthy changes in release 4.20.0 (2025-02-01) [stable]
- The release tarball is now reproducible.
- We publish a minimal source-only tarball generated by 'git archive'.
- Update gnulib files and various build/maintenance fixes.
- Fix CVE-2024-12133: Potential DoS in handling of numerous SEQUENCE OF or SET
OF elements
License-Update: file COPYING.LESSER renamed to COPYING.LESSERv2 & Copyright year updated to 2025
(From OE-Core rev: 0ff5d08053d92eeae5b2a23f8e0d7a280488723c)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This was removed in 2019, so swap it for poky-altcfg.
(From yocto-docs rev: 9b4c36f7b02dd4bedfec90206744a1e90e37733c)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 7f7f6570befdda280c174a5f9776b20f53f3ea0d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
core-image-lsb was removed in 2019[1], so remove all of the incredibly
obsolete references in the documentation.
[1] oe-core fb064356af615d67d85b65942103bf943d84d290
(From yocto-docs rev: 6001f1baa513566639abee86376dc72748f3cd34)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 062445a49919eff117b5478c1fb18d125c1f895c)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Building weston with core-image-weston SDK fails:
```
../libweston/renderer-gl/gl-shader-config-color-transformation.c:29:10: fatal error: GLES3/gl3.h: No such file or directory
29 | #include <GLES3/gl3.h>
| ^~~~~~~~~~~~~
```
Both GLES2 and GLES3 implementations are contained in libGLESv2.so.2,
which is packaged in libgles2-mesa. However, the headers are split
between libgles2-mesa-dev and libgles3-mesa-dev, which is why the
GLES3 headers end up missing in the SDK sysroot.
Add a dependency so the GLES3 headers are properly associated with
the GLES3 implementation.
(From OE-Core rev: 7e1308ec413e69a8427ac5998431005d9e4b8033)
(From OE-Core rev: 0d9f2fcc2058407eb138297d9f8f12595851b963)
Signed-off-by: Tom Hochstein <tom.hochstein@oss.nxp.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Johannes Kauffmann <johanneskauffmann@hotmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Patch copied from xserver-xorg recipe.
CVE reported for both and patch apply on both.
Upstream-Commit: ba1d14f8ef
(From OE-Core rev: 2158a34839068b878344d214d3fc9feeb17e504a)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Patch copied from xserver-xorg recipe.
CVE reported for both and patch apply on both.
Upstream-Commit: 3e77295f88
(From OE-Core rev: 3575ad718c8ea7d808247842df19982f00725187)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Patch copied from xserver-xorg recipe.
CVE reported for both and patch apply on both.
Upstream-Commit: 96798fc196
(From OE-Core rev: 4e41b1c8cccd3b2f359ee949cad402b9418f5983)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The patches are copied from xserver-xorg recipe.
CVE reported for both and patches apply on both.
Upstream-Commit:
bc1fdbe465
& 26769aa71f
(From OE-Core rev: 77487fb0756951e29628f41ff00db12a5f9d7c27)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Patch copied from xserver-xorg recipe.
CVE reported for both and patch apply on both.
Upstream-Commit: 4a5e9b1895
(From OE-Core rev: 4b0f6aaa994eeab5d18211ace8034ec8b92b7419)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This vulnerability has now a CVE assigned.
(From OE-Core rev: 204ff9dd9c62a8a346e89880b2e15a4c0e9ad6e0)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update SRC_URI for tzcode.
Update the http to https in SRC_URI to fix the do_fetch issue.
(From OE-Core rev: b663540d143b0e5fcb9ceeec45cde7fe3e68f9bb)
Signed-off-by: Guocai He <guocai.he.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
When testing a Yocto SDK installer on Alpine 3.21, we recently ended up with a
broken SDK. One of the commands the relocation script calls in a piped
multi-command chain failed (see [0]), but the installer did not realize that -
since it doesn't use 'set -o pipefail'. Thus, the error was never reported to
the user and the installer claimed to have set up the SDK correctly - which
wasn't the case.
Given that the SDK installer is a POSIX-compliant shell script and that the
'pipefail' option used to be missing from the standard, it's not surprising that
it isn't used. Thankfully however, in June of 2024, a new version of POSIX
(POSIX.1-2024) was released - and that one finally includes the 'pipefail'
option (see [1]). A number of shells already support it, so let's enable it if
available to make the SDK installer more robust.
The change has been tested locally using SDK installers for internal projects,
based on both Kirkstone and Scarthgap.
[0]: https://gitlab.alpinelinux.org/alpine/aports/-/issues/16797
[1]: https://pubs.opengroup.org/onlinepubs/9799919799.2024edition/utilities/V3_chap02.html#set
(From OE-Core rev: 1cb4b41c7faf77fcc347b1276d86d4288968c926)
(From OE-Core rev: 1de469f1ffb1680e3a75da2c3895fb1e4f43859f)
Signed-off-by: Moritz Haase <Moritz.Haase@bmw.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 10dce263f0)
Signed-off-by: Akash Hadke <akash.hadke27@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update SRC_URI to fix the following error:
WARNING: virglrenderer-native-0.9.1-r0 do_fetch: Failed to fetch URL
git://anongit.freedesktop.org/git/virglrenderer;branch=branch-0.9.1,
attempting MIRRORS if available
(From OE-Core rev: 72450859dd5ee5395b64917516f185a2eed52775)
Signed-off-by: Libo Chen <libo.chen.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Latest stable branch update which includes 396 commits and the full
list of changes can be found at:
https://github.com/systemd/systemd-stable/compare/v250.5...v250.14
All the patches were refreshed with devtool.
Backported this upstreamed patch to resolve the compile error while
building systemd with qemumips machine.
- 0001-core-fix-build-when-seccomp-is-off.patch
These 2 below patches were modified to resolve the merge conflicts
introduced by systemd v250.14 version:
1. 0001-Move-sysusers.d-sysctl.d-binfmt.d-modules-load.d-to-.patch
- This patch was just adjusted based on the systemd v250.14 version.
2. 0001-pass-correct-parameters-to-getdents64.patch
- For this patch, there was a commit reverted as part of the v250.8 tag:
51089e007f
These below 6 patches were dropped as systemd v250.14 already has
the changes:
- 0001-shared-json-allow-json_variant_dump-to-return-an-err.patch
- CVE-2022-3821.patch
- CVE-2022-4415-1.patch
- CVE-2022-4415-2.patch
- CVE-2022-45873.patch
- CVE-2023-7008.patch
(From OE-Core rev: 371d030a665e3c963a586ab02d10f1f36b225435)
Signed-off-by: Narpat Mali <narpat.falna@gmail.com>
Signed-off-by: Randy Macleod <randy.macleod@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The text format has been removed, so also remove references and examples
using this format. Replace with examples with the JSON format.
(From yocto-docs rev: 9798689e4f4b74163c2e8594f3d1ce082d295aa1)
Signed-off-by: Marta Rybczynska <marta.rybczynska@ygreky.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit a52cd7bcadccc53e982f90d6e170d00798322597)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer
dereference via the component libavformat/mov.c.
(From OE-Core rev: 599ee3f195bc66d57797c121fa0b73a901d6edfa)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module,
a potential security vulnerability exists due to insufficient validation of
certain parameters when parsing Speex codec extradata. This vulnerability
could lead to integer overflow conditions, potentially resulting in undefined
behavior or crashes during the decoding process.
(From OE-Core rev: 3efef582892a5a9286041837098b80aa59d1b688)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library
which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition.
(From OE-Core rev: 46680bed23ef6f529c7e554b5611a7c098fce8a9)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Incorrect Access Control in GStreamer RTSP server 1.25.0 in gst-rtsp-server/rtsp-media.c
allows remote attackers to cause a denial of service via a series of specially crafted
hexstream requests.
(From OE-Core rev: ce328462a12eeaa59994e2236071aa17a083c263)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This vulnerability was introduced in 5.1, so 5.0.1 is not affected.
(From OE-Core rev: ea6e581067cafd5f367c68871bc312d3ba11b4da)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There is no release which is vulnerable to these CVEs.
These vulnerabilities are in new features being developed and were fixed
before release.
NVD most likely does not accept CVE rejection from a non-maintainer and
non-reporter, so ignoring this CVE should be acceptable solution.
(From OE-Core rev: 220a05e27913bf838881c3f22a17d0409c5154a9)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick commit from 2.12 branch.
(From OE-Core rev: ab804cd27ecf7ee65a9feea477140502ecbc0d73)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This reverts commit a9cd3321558e95f61ed4c5eca0dcf5a3f4704925.
The fix for CVE-2023-45237 has been reverted. And the fix for
CVE-2023-45236 depends on it. So revert it too.
(From OE-Core rev: c61e31f192837b05bc309a05aef95c3be5b44997)
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This reverts commit 6f8bdaad9d22e65108f859a695277ce1b20ef7c6.
his reverts commit 4c2d3e3730.
The fix for CVE-2023-45237 causes ovmf firmware not support pxe boot
any more and no boot item in OVMF menu such as
UEFI PXEv4 (MAC address)
It has not been fixed by ovmf upstream and an issue has been created on
https://github.com/tianocore/tianocore.github.io/issues/82
Revert the fixes for now.
(From OE-Core rev: d3f399f54042efc6f4ca2092dd11819ae1f7c51f)
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error
and resultant heap memory corruption for squashfs directory listing because the
path separator is not considered in a size calculation.
https://nvd.nist.gov/vuln/detail/CVE-2024-57259
(From OE-Core rev: e4b713ff07695487cc9307ffc3576a11775cde4d)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1
occur for a crafted squashfs filesystem via sbrk, via request2size,
or because ptrdiff_t is mishandled on x86_64.
https://nvd.nist.gov/vuln/detail/CVE-2024-57258
(From OE-Core rev: b4bf3ba66052db7a311ac696563a8a0f9c585600)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1
occurs for zalloc (adding one to an le32 variable) via a crafted ext4
filesystem with an inode size of 0xffffffff, resulting in a malloc of
zero and resultant memory overwrite.
https://nvd.nist.gov/vuln/detail/CVE-2024-57256
(From OE-Core rev: 534aa63726f31241e3a9d4aa70d4005fa0300133)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1
occurs via a crafted squashfs filesystem with an inode size of 0xffffffff,
resulting in a malloc of zero and resultant memory overwrite.
https://nvd.nist.gov/vuln/detail/CVE-2024-57255
(From OE-Core rev: 687b6e0a166d7dc999b7d226a9bd68155f59a03a)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
An integer overflow in sqfs_inode_size in Das U-Boot before
2025.01-rc1 occurs in the symlink size calculation via a
crafted squashfs filesystem.
https://nvd.nist.gov/vuln/detail/CVE-2024-57254
(From OE-Core rev: 956836ab347e9112be0f8892b1b82c4bcb17990c)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This patch mitigates the vulnerability identified via CVE-2019-14196.
The previous patch was bypassed/ineffective, and now the vulnerability
is identified via CVE-2022-30767. The patch removes the sanity check
introduced to mitigate CVE-2019-14196 since it's ineffective.
filefh3_length is changed to unsigned type integer, preventing negative
numbers from being used during comparison with positive values during
size sanity checks.
(From OE-Core rev: b7072637ba110718714745a01d67e1b6b0096165)
Signed-off-by: Carlos Dominguez <carlos.dominguez@windriver.com>
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Import the favicon from https://www.yoctoproject.org/, convert it to
16x16 (as per the Sphinx documentation) to make a 1291B image of the
Yocto logo.
(From yocto-docs rev: 73119a723b48a4038479591f0443c5acb3d21337)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit e3ee43e6d70685a2404aae2d60557a42879b0bb1)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This patch is ported from a merge request shown below,
and the following represents the original commit text.
------------------------------------------------------
top: In the bye_bye function, replace fputs with the write interface.
When top calls malloc, if a signal is received, it will
call sig_endpgm to process the signal. In the bye_bye function, if the
-b option is enable, the Batch variable is set, the fputs function
will calls malloc at the same time. The malloc function is not reentrant, so
it will cause the program to crash.
(From OE-Core rev: 573f5b2d8fec9f8a4ed17e836ef3feeb6de62e5a)
Signed-off-by: Shaohua Zhan <shaohua.zhan@windriver.com>
------------------------------------------------------
Reference(s):
https://gitlab.com/procps-ng/procps/-/merge_requests/127
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
I have a theory that some of the console boot issues we're seeing are due to
starting images with three serial ports yet only starting gettys on two of them.
This means that occasionally, depending on the port numbering we may not get
a login prompt on the console we expect it on.
To fix this, change the runqemu code so that if serial ports are passed in on
the commandline (as is the case in automated testing), we don't add any other
GUI serial consoles.
We do need to make sure we do have at least two serial ports since we don't want
getty timeout warnings.
(From OE-Core rev: 44e1279970d306b0da4fcc11f9e780915f481819)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 1b0348535dce3b776efbcf26406b94730a51eb85)
Signed-off-by: Ming Liu <liu.ming50@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update to the 4.0.24 release of the 4.0 series for buildtools.
(From OE-Core rev: 93b1e2cbee96bd8731a5d5d0fe5462c2518fe8a7)
Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder.
(From OE-Core rev: aec2ad743893d72d46c79701a0dac982931e3171)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1
allows attackers to cause a denial of service in the application via a crafted VQA file.
(From OE-Core rev: 93a1e2fd2bb42977339510ef7d71288a88a34ab8)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library
allowing for an integer overflow, potentially resulting in a denial-of-service (DoS)
condition or other undefined behavior.
(From OE-Core rev: 1af53c8dd20662e720ac4dad31833a9d776b795a)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing.
Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate
data can take excessive time, leading to increased resource consumption.
This flaw allows a remote attacker to send a specially crafted certificate, causing
GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition.
(From OE-Core rev: 5fbe46de6d2e3862316cf486503f18e616c3c0a7)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
REXML is an XML toolkit for Ruby. The REXML gem 3.3.2 has a DoS
vulnerability when it parses an XML that has many entity expansions
with SAX2 or pull parser API. The REXML gem 3.3.3 or later include
the patch to fix the vulnerability.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-41946
Upstream-patch:
033d1909a8
(From OE-Core rev: b0e74fd8922bba8e954a223ec46de5c33d2ff743)
Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Uses the new foreach_runtime_provider_pkgdata() API to look up all
possible runtime providers of a given dependency when resolving
file-rdeps. This allows the check to correctly handle RPROVIDES for
non-virtual dependencies
(From OE-Core rev: 018fa1b7cb5e6a362ebb45b93e52b0909a782ac9)
(From OE-Core rev: 0ff31972b60dda5d8bada2ffb428cc54bb49e8cf)
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Adds an API that makes it easier to iterate over the package data for a
all providers of a runtime dependency.
(From OE-Core rev: 68bdc219a4a819e83217f5b54c463624af8d3b9e)
(From OE-Core rev: 579717212ba2892e32315788ccd65320556d32a3)
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
ptest compile and install tasks do not have parallel build settings for
cmake. On powerful build machines this can cause overload situations
and oomkills.
Observed when building qtgrpc with ptest generally enabled in distro.
Having this in ptest class is suboptimal, but creating ptest-cmake class
just for these two variables is probably overkill.
(From OE-Core rev: 3c311fbf0c2090268e9b83123d762b05b61b4074)
(From OE-Core rev: bd12abeff6ee14385fba63fa5ba15d9fadec4d0e)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
As a user i want to override `RUSTLIB` path on a bbclass, lets
call it `XYZ.bbclass`.
If a certain recipe inherits `cargo.bbclass` and `XYZ.bbclass` the
value of `RUSTLIB` is dependent on the order of the inherit.
If `cargo.bbclass` is inherit before `XYZ.bbclass` this will reflect
the desired value of `RUSTLIB`, on the oposite, if the `XYZ.bbclass`
is inherit before `cargo.bbclass` then the `RUSTLIB` defined on
`rust-common.bbclass` will prevail.
Changed definition of `RUSTLIB` to soft assignment to make it overridable.
(From OE-Core rev: d8ccc3ad338a8020c998566249af2019baaa6e44)
Signed-off-by: Pedro Silva Ferreira <Pedro.Silva.Ferreira@criticaltechworks.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
(cherry picked from commit 6eeb832f73ffb48f5f05dc47191f60e4599e640f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
When building with GCC -Os, a warning is triggered indicating that sprintf might overflow.
Error:
netname.c: In function 'user2netname':
netname.c:51:28: error: '%s' directive writing up to 255 bytes into a
region of size between 239 and 249 [-Werror=format-overflow=]
51 | sprintf (netname, "%s.%d@%s", OPSYS, uid, dfltdom);
| ^~ ~~~~~~~
netname.c:51:3: note: 'sprintf' output between 8 and 273 bytes into a
destination of size 256
51 | sprintf (netname, "%s.%d@%s", OPSYS, uid, dfltdom);
| ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
cc1: all warnings being treated as errors
However the code does test prior the sprintf call that dfltdom plus
the required extra space for OPSYS, uid, and extra character will not
overflow and return 0 instead.
Upstream-patch: 6128e82ebe
Reviewed-by: Carlos O'Donell <carlos@redhat.com>
Tested-by: Carlos O'Donell <carlos@redhat.com>
(From OE-Core rev: 78fac0f623e01bd52b2ea3a597d056726deca8a4)
Signed-off-by: Nikhil R <nikhilr5@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
c16c81c81336 Linux 5.15.178
6cfafcad46e9 drm/v3d: Assign job pointer to NULL before signaling the fence
8b74aa1e1c08 Input: xpad - add support for wooting two he (arm)
c9d4d5785f2d Input: xpad - add unofficial Xbox 360 wireless receiver clone
1475c07bf30f Input: atkbd - map F23 key to support default copilot shortcut
66453ea6ed0a ALSA: usb-audio: Add delay quirk for USB Audio Device
20ce02f2f73a Revert "usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null"
6068dcff7f19 USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb()
091a023cf2ae wifi: iwlwifi: add a few rate index validity checks
81d4dd05c412 scsi: storvsc: Ratelimit warning logs to prevent VM denial of service
6ac5dfa57513 ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find()
84adb88c8027 platform/chrome: cros_ec_typec: Check for EC driver
542532afe249 fs/ntfs3: Additional check in ntfs_file_release
00767fbd67af Bluetooth: RFCOMM: Fix not validating setsockopt user input
2c2dc87cdebe Bluetooth: SCO: Fix not validating setsockopt user input
92340e6c5122 vfio/platform: check the bounds of read/write syscalls
bcf0d815e728 net: sched: fix ets qdisc OOB Indexing
4e3ded34f3f3 gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag
322948a57582 mptcp: don't always assume copied data in mptcp_cleanup_rbuf()
2c3524a308b2 regmap: detach regmap from dev on regmap_exit
df560e90a4d6 ASoC: samsung: Add missing depends on I2C
72370a2bc2e6 irqchip/sunxi-nmi: Add missing SKIP_WAKE flag
46bdd737a16b scsi: iscsi: Fix redundant response for ISCSI_UEVENT_GET_HOST_STATS request
318ebf851143 seccomp: Stub for !CONFIG_SECCOMP
42b4b670bd23 ASoC: samsung: Add missing selects for MFD_WM8994
0783cd485b4a ASoC: wm8994: Add depends on MFD core
003148680b79 Linux 5.15.177
448fe5a1a4b5 Partial revert of xhci: use pm_ptr() instead #ifdef for CONFIG_PM conditionals
0bd4efe3226d xhci: use pm_ptr() instead of #ifdef for CONFIG_PM conditionals
c3d052cae566 net: fix data-races around sk->sk_forward_alloc
198b89dd5a59 scsi: sg: Fix slab-use-after-free read in sg_release()
9a4d196e8a5e x86/xen: fix SLS mitigation in xen_hypercall_iret()
167cbd3e5268 nfsd: add list_head nf_gc to struct nfsd_file
e43dd28405e6 ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()
6486915fa661 vsock/virtio: discard packets if the transport changes
8a07350fe070 blk-cgroup: Fix UAF in blkcg_unpin_online()
e667d5d566a2 Revert "regmap: detach regmap from dev on regmap_exit"
d8ebb991790f Revert "drm/amdgpu: rework resume handling for display (v2)"
7a07fb80ea88 iio: adc: rockchip_saradc: fix information leak in triggered buffer
b5c2c988cb6a iio: imu: inv_icm42600: fix timestamps after suspend if sensor is on
96ac1454f343 iio: imu: inv_icm42600: fix spi burst write not supported
39f320df3537 Revert "PCI: Use preserve_config in place of pci_flags"
ac3dd2497e6e drm/i915/fb: Relax clear color alignment to 64 bytes
15b453db41d3 hrtimers: Handle CPU state correctly on hotplug
59472bf85a3c irqchip/gic-v3: Handle CPU_PM_ENTER_FAILED correctly
2d008d4961b0 gpiolib: cdev: Fix use after free in lineinfo_changed_notify
649b266606bc fs/proc: fix softlockup in __read_vmcore (part 2)
64e5fd96330d filemap: avoid truncating 64-bit offset to 32 bits
9e5fed46ccd2 vsock: prevent null-ptr-deref in vsock_*[has_data|has_space]
a4606b774de2 vsock: reset socket state when de-assigning the transport
048dbd2b5b85 vsock/virtio: cancel close work in the destructor
92f1b7930f13 net: ethernet: xgbe: re-add aneg to supported features in PHY quirks
aba13043e628 x86/asm: Make serialize() always_inline
612269eb3f8f nvmet: propagate npwg topology
7df94f7f9e22 poll_wait: add mb() to fix theoretical race between waitqueue_active() and .poll()
1c878c5527e1 ACPI: resource: acpi_dev_irq_override(): Check DMI match last
a592ce58ca78 kheaders: Ignore silly-rename files
2d1a5a595bf2 fs: fix missing declaration of init_files
87e207b6aa93 hfs: Sanity check the root record
80aee0bc0dbe mac802154: check local interfaces before deleting sdata list
c5f1bc1d2324 i2c: rcar: fix NACK handling when being a target
6c6e0961ccfd i2c: mux: demux-pinctrl: check initial mux selection, too
37c63955ca68 Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data"
2f176c0ec9f5 hwmon: (tmp513) Fix division of negative numbers
14e0a874488e drm/v3d: Ensure job pointer is set to NULL after job completion
83775c9a9a65 net/mlx5: Fix RDMA TX steering prio
a04effa1b79f net/mlx5: Refactor mlx5_get_flow_namespace
ef6bb594598b net/mlx5: Add priorities for counters in RDMA namespaces
3cc3575223c6 net: xilinx: axienet: Fix IRQ coalescing packet count overflow
fdfe7ef525ad nfp: bpf: prevent integer overflow in nfp_bpf_event_output()
036f8d814a2c gtp: Destroy device along with udp socket's netns dismantle.
ed8be92df48d gtp: Use for_each_netdev_rcu() in gtp_genl_dump_pdp().
a111a7487f65 gtp: use exit_batch_rtnl() method
041325b73abc net: add exit_batch_rtnl() method
3450092cc2d1 pktgen: Avoid out-of-bounds access in get_imix_entries
0ab52a8ca6e1 bpf: Fix bpf_sk_select_reuseport() memory leak
9bb26176fba5 net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()
9f15cd4174d0 phy: usb: Fix clock imbalance for suspend/resume
795537eb2af1 phy: usb: Use slow clock for wake enabled suspend
88b01048f286 mptcp: fix TCP options overflow.
05ba00d97bb4 mptcp: drop port parameter of mptcp_pm_add_addr_signal
f44e6d70c100 ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv
86f8046aa649 ocfs2: correct return value of ocfs2_local_free_info()
0552befaccd8 phy: usb: Toggle the PHY power during init
d0178cb2ccea phy: usb: Add "wake on" functionality for newer Synopsis XHCI controllers
b2cec0d8f676 of: address: Preserve the flags portion on 1:1 dma-ranges mapping
6a7832e332d9 of: address: Store number of bus flag cells rather than bool
1b868ff7950b of: address: Remove duplicated functions
19ec883a51bd of: address: Fix address translation when address-size is greater than 2
b3f6bed9bf61 of/address: Add support for 3 address cell bus
bce3629a9e53 of: unittest: Add bus address range parsing tests
437b875e7389 arm64: dts: rockchip: add hevc power domain clock to rk3328
f587c1ac6895 block, bfq: fix waker_bfqq UAF after bfq_split_bfqq()
e43dfc4a9c15 iio: adc: ad7124: Disable all channels at probe time
d83ccca9e17e iio: inkern: call iio_device_put() only on mapped devices
028a1ba8e3ba iio: adc: at91: call input_free_device() on allocated iio_dev
060214459b63 iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep()
c31009d2bd49 iio: gyro: fxas21002c: Fix missing data update in trigger handler
aae967380068 iio: adc: ti-ads8688: fix information leak in triggered buffer
a07f69808441 iio: imu: kmx61: fix information leak in triggered buffer
cb488706cdec iio: light: vcnl4035: fix information leak in triggered buffer
006073761888 iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer
64a989aa7475 iio: pressure: zpa2326: fix information leak in triggered buffer
19fc1c83454c usb: gadget: f_fs: Remove WARN_ON in functionfs_bind
d9d18e2011c1 usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints
7cdb2d0f1af9 usb: fix reference leak in usb_new_device()
162428a00a0c USB: core: Disable LPM only for non-suspended ports
8309c947b208 USB: usblp: return error when setting unsupported protocol
d2de56cc45ee usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null
1c7818e2746e topology: Keep the cpumask unchanged when printing cpumap
85b8a1a3176d usb: dwc3: gadget: fix writing NYET threshold
7f626e8e148c USB: serial: cp210x: add Phoenix Contact UPS Device
2165ef034891 usb-storage: Add max sectors quirk for Nokia 208
2748a203e098 staging: iio: ad9832: Correct phase range check
e299dcbfc039 staging: iio: ad9834: Correct phase range check
98645eac8ed4 USB: serial: option: add Neoway N723-EA support
f072315c5d41 USB: serial: option: add MeiG Smart SRM815
203f38eb72f2 md/raid5: fix atomicity violation in raid5_cache_count
3b930badf88d scripts/sorttable: fix orc_sort_cmp() to maintain symmetry and transitivity
1e5cc8d5b121 drm/amd/display: increase MAX_SURFACES to the value supported by hw
dd3f23919b4d ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[]
21db38809fb8 ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[]
10c24df2e303 riscv: Fix sleeping in invalid context in die()
95793f9684e5 drm/amd/display: Add check for granularity in dml ceil/floor helpers
1dc5da6c4178 sctp: sysctl: plpmtud_probe_interval: avoid using current->nsproxy
0a0966312ac3 sctp: sysctl: udp_port: avoid using current->nsproxy
bd2a29394235 sctp: sysctl: auth_enable: avoid using current->nsproxy
0f78f0946674 sctp: sysctl: rto_min/max: avoid using current->nsproxy
86ddf8118123 sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy
e52a55ec2d1f dm-ebs: don't set the flag DM_TARGET_PASSES_INTEGRITY
802666a40c71 dm thin: make get_first_thin use rcu-safe list first function
7cb3e77e9b4e afs: Fix the maximum cell name length
781c743e18bf ksmbd: fix a missing return value check bug
e719611285cd drm/mediatek: Add support for 180-degree rotation in the display driver
b1b2353d768f netfilter: conntrack: clamp maximum hashtable size to INT_MAX
2f2c1ce86708 netfilter: nf_tables: imbalance in flowtable binding
6d6ce5f75d0e tls: Fix tls_sw_sendmsg error handling
8fe5fcf25438 cxgb4: Avoid removal of uninserted tid
0cfe1297df07 bnxt_en: Fix possible memory leak when hwrm_req_replace fails
a313d6e6d5f3 net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute
10923508eb77 tcp/dccp: allow a connection when sk_max_ack_backlog is zero
bcd1557f1d38 tcp/dccp: complete lockless accesses to sk->sk_max_ack_backlog
e67fff8fd12c net: 802: LLC+SNAP OID:PID lookup on start of skb data
8cc8bdfbe065 ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe()
294b9826da0e ASoC: mediatek: disable buffer pre-allocation
1f94fe692b7e exfat: fix the infinite loop in __exfat_free_cluster()
28c21f0ac529 exfat: fix the infinite loop in exfat_readdir()
3995b25d000c dm array: fix cursor index when skipping across block boundaries
c850ddd1e1d8 dm array: fix unreleased btree blocks on closing a faulty array cursor
738994872d77 dm array: fix releasing a faulty array block twice in dm_array_cursor_end
6029c4240529 jbd2: flush filesystem device before updating tail sequence
d42ad3f161a5 ceph: give up on paths longer than PATH_MAX
b5d500042eb3 usb: hcd-pci: remove the action of faking interrupt request
6f0605db50e2 clk: imx: Add check for kcalloc
5b837b9e1543 bpf: Fix the indention issue in grow_stack_state()
42b62697634d cifs: Fix the calling of smb_version_operations::calc_smb_size()
b14acf729e9d f2fs: Add inline to f2fs_build_fault_attr() stub
7c317bec311f f2fs: check validation of fault attrs in f2fs_build_fault_attr()
81c12119c23f bpf: Fix accesses to uninit stack slots [ Upstream commit 6b4a64bafd107e521c01eec3453ce94a3fb38529 ]
c4fa05422d87 smb: client: fix potential OOB in smb2_dump_detail()
299ef3b5b00b of: module: add buffer overflow check in of_modalias()
b8086c3c1548 reiserfs: Avoid touching renamed directory if parent does not change
ea091017ef62 ipv6: Fix data races around sk->sk_prot.
ff8710da80ee ipv6: annotate some data-races around sk->sk_prot
e8c2eafaaa6a tcp: Fix data races around icsk->icsk_af_ops.
8d1bab770956 locking/rwsem: Disable preemption while trying for rwsem lock
7c82dac02886 block, loop: support partitions without scanning
45f504f301d4 bpftool: Fix pretty print dump for maps without BTF loaded
1f24338cb789 jbd2: Drop the merge conflicted hunk
e1d0e3c51bde tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
1abe841fe331 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
6224acfc1d56 tpm: Add flag to use default cancellation policy
1cd19d48fb90 tpm: tis_i2c: Fix sanity check interrupt enable mask
a883da132fa8 tpm: Add tpm_tis_i2c backend for tpm_tis_core
a742ac8a1c51 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer
ef495c5f45f2 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops
1f3be2e23aa6 gcc-plugins: Reorganize gimple includes for GCC 13
24615a3b932a ata: ahci: fix enum constants for gcc-13
5d6cb145541a net: stmmac: Enable mac_managed_pm phylink config
fd93aabb4287 tools/resolve_btfids: Use pkg-config to locate libelf
130f9da78406 tools/resolve_btfids: Build with host flags
00f2f1a782f9 tools/resolve_btfids: Support cross-building the kernel with clang
17776a4ba9c2 tools/resolve_btfids: Install libbpf headers when building
7c9808380d70 libbpf: Make libbpf_version.h non-auto-generated
37ae1ba791ac libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations
a2667e6d7314 drm/radeon: free iio for atombios when driver shutdown
f100c753aa1f powerpc: Fix reschedule bug in KUAP-unlocked user copy
da5513f30187 libbpf: Fix build warning on ref_ctr_off
4c5a089621a8 perf python: Account for multiple words in CC
1c5699ee85d4 fs: move S_ISGID stripping into the vfs_*() helpers
838f5d0701d8 fs: add mode_strip_sgid() helper
d97172683641 squashfs: provide backing_dev_info in order to disable read-ahead
ed037d7be40c irq_work: use kasan_record_aux_stack_noalloc() record callstack
1363bd7dbde3 ixgbevf: add disable link state
e5601ae2bd24 ixgbe: add improvement for MDD response functionality
caa57cd80575 ixgbe: add the ability for the PF to disable VF link state
16a77bfcc7df Check /dev/console using init_stat()
04574fd5579a tracing/arm: Have max stack tracer handle the case of return address after data
0e51e5717018 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
1e6b7da6ddba drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
493160901320 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
04224f725aa3 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered
6f6c2996a81c irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve
1fa94473423f irqchip/gic-v3-its: Give the percpu rdist struct its own flags field
6013d1ae5feb cert host tools: Stop complaining about deprecated OpenSSL functions
efe20512212b init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash
a40d2daf2795 pnmtologo: use relocatable file name
3b40d5b41155 of: configfs: remove unused variable overlay_lock
6c085baf1838 tools: use basename to identify file in gen-mach-types
2fca0fd71981 lib/build_OID_registry: fix reproducibility issues
0f586f4ee8ad vt/conmakehash: improve reproducibility
a75774679f28 OF: DT-Overlay configfs interface (v8)
d179c639b30b x86/boot: Wrap literal addresses in absolute_pointer()
856ec356cf91 ACPI: thermal: drop an always true check
7614af249993 xfs: Fix -Werror=dangling-pointer work-around for older GCC
41470215f97e xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o
44a445c1922d virtio-pci: Remove wrong address verification in vp_del_vqs()
77aa9e489eaf bpf: Disallow unprivileged bpf by default
ebfb1822e9f9 fs/aufs: fixup 5.15.36 fixups
4eba9348d3e2 Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal""
5df6d1b00f95 jbd2: fix use-after-free of transaction_t race
2d83e8196487 jbd2: refactor wait logic for transaction updates into a common function
07a63f760793 netfilter: conntrack: avoid useless indirection during conntrack destruction
4e7122625996 Revert "fbdev: Hot-unplug firmware fb devices on forced removal"
7ba4cb36fd4f rcu: Avoid alloc_pages() when recording stack
f78574dee71e kasan: test: silence intentional read overflow warnings
d313cb89b6b1 kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC
5e279d5647cc arm64: support page mapping percpu first chunk allocator
e5bf16752dca vmalloc: choose a better start address in vm_area_register_early()
660b3d21b46f kasan: test: bypass __alloc_size checks
00aa7573e53a kasan: test: add memcpy test that avoids out-of-bounds write
67becf0b1bd4 kasan: fix tag for large allocations when using CONFIG_SLAB
bedf1e033213 workqueue, kasan: avoid alloc_pages() when recording stack
7195b67ce69b kasan: generic: introduce kasan_record_aux_stack_noalloc()
bdff763f0e29 kasan: common: provide can_alloc in kasan_save_stack()
51423ebb36ad lib/stackdepot: introduce __stack_depot_save()
85373e66d847 lib/stackdepot: remove unused function argument
5b6cc9b251f3 lib/stackdepot: include gfp.h
c9f3902d8069 aufs: reduce overhead for "code present but disabled" use case.
b98d189df02c aufs: bugfix, umount passes NULL to ->parse_monolithic()
13b883cbbbd9 aufs standalone: cosmetic, missing copyright sentence
21f8b0d81898 aufs: 5.15.5-20220117 ---> 5.15.5-20220221
6199fd896645 aufs: tiny, headers after fs_context
8ddb40e31c29 aufs: fs_context 7/7, finally remount
69035f71c6fd aufs: fs_context 6/7, now mount
bc841b970697 aufs: fs_context 5/7, parse all other mount options
435188053da2 aufs: fs_context 4/7, parse xino options
9af1f1825cbd aufs: fs_context 3/7, parse the branch-management options
1c05eb767f8c aufs: fs_context 2/7, parse "br" mount option
a8488f603134 aufs: fs_context 1/7, skelton of the new shceme
8e32e0015564 aufs: pre fs_context, convert a static flag to a macro
f90cb4144aec aufs: pre fs_context, support the incomplete sb and sbinfo case
948762ef859c aufs: pre fs_context, convert the type of alloc_sbinfo()
77151a08776b aufs: 5.15.5-20211129 ---> 5.15.5-20220117
2539adbbbe1e aufs: 5.14-20211018 ---> 5.15.5-20211129
7d32b25193c4 aufs: for v5.15-rc1, sync_inode() is gone
66ec0c509225 aufs: for v5.15-rc1, new param 'rcu' for ->get_acl()
69709dc518cd aufs: for v5.15-rc1, no mand-lock anymore
ada8fe9543e5 aufs: 5.14-20210906 ---> 5.14-20211018
b77f7f3f394a Revert "aufs: adjust to v5.15 fs changes"
81bdce5b5876 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation
97c963889222 sched/isolation: really align nohz_full with rcu_nocbs
871f23ad3627 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards"
ffad0783dd5b ARM: config: multi v7: Regenerate defconifg
5c1e1a1ff2d3 ARM: config: multi v7: Add renamed symbols
badaf96564fe ARM: config: multi v7: Clean up enabled by default options
34996040fc9b ARM: config: multi v7: Drop unavailable options
7f685244afb3 powerpc/mm: Switch obsolete dssall to .long
20301aeb1a64 riscv: fix build with binutils 2.38
9df58d070506 powerpc/lib/sstep: fix 'ptesync' build error
720b61fc400b x86_64_defconfig: Fix warnings
02bf23d26bc4 arm64: defconfig: cleanup config options
05914e2c87e5 arm: defconfig: drop unused POWER_AVS option
ffb532fa19b9 aufs5: fix build against v5.15.3+
a4b3abf4d96d qemux86: add configuration symbol to select values
fee94ee09154 clear_warn_once: add a clear_warn_once= boot parameter
3d8762d900d9 clear_warn_once: bind a timer to written reset value
95faacac47e8 clear_warn_once: expand debugfs to include read support
de20c4240018 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
0e4aacead9c1 perf: x86-32: explicitly include <errno.h>
9ad92c11468e perf: mips64: Convert __u64 to unsigned long long
09e7efe3e68a perf: fix bench numa compilation
e79becc44fa6 perf: add SLANG_INC for slang.h
b1033b588681 perf: add sgidefs.h to for mips builds
cf9db484ac0b perf: change --root to --prefix for python install
7fd052c2c562 perf: add 'libperl not found' warning
27a437cdd469 perf: force include of <stdbool.h>
3b99d21bec2f fat: don't use obsolete random32 call in namei_vfat
a7e9293b506b FAT: Added FAT_NO_83NAME
6fd0e71d9e5c FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
c379b0d324ae FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
538be0fdb124 aufs: adjust to v5.15 fs changes
f45da75c8759 aufs5: core
047f57e07e01 aufs5: standalone
029fc15574c8 aufs5: mmap
610d0192ee94 aufs5: base
d4e428d0ec5f aufs5: kbuild
eb067eca251a yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
286af18d0875 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
24d59a4e26a6 yaffs2: v5.12+ build fixups (not runtime tested)
22c73536d5d7 yaffs: include blkdev.h
506b7251bfb8 yaffs: fix misplaced variable declaration
a0e26ff364dc yaffs2: v5.6 build fixups
b10b1b2d169e yaffs2: fix memory leak when /proc/yaffs is read
ad9adccbb214 yaffs: add strict check when call yaffs_internal_read_super
2e3c3aec8279 yaffs: repair yaffs_get_mtd_device
d662538516a7 yaffs: Fix build failure by handling inode i_version with proper atomic API
70a6113ee2c7 yaffs2: fix memory leak in mount/umount
3378e4a9e404 yaffs: Avoid setting any ACL releated xattr
ec2284edddef Yaffs:check oob size before auto selecting Yaffs1
c2a49874051c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
e9a5105a3e73 yaffs2: adjust to proper location of MS_RDONLY
608807406f13 yaffs2: import git revision b4ce1bb (jan, 2020)
89e660ece42c initramfs: allow an optional wrapper script around initramfs generation
b179dbc9aa10 iwlwifi: select MAC80211_LEDS conditionally
3fd5ca3673d0 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
d1f6edbf0188 arm64/perf: Fix wrong cast that may cause wrong truncation
d202fb2caf33 defconfigs: drop obselete options
9a27e3b5f4e7 arm64/perf: fix backtrace for AAPCS with FP enabled
e20d8cf019b4 linux-yocto: Handle /bin/awk issues
b6d2a3dbbd3a uvesafb: provide option to specify timeout for task completion
adb40f1e6a1a uvesafb: print error message when task timeout occurs
f280a1ed0962 compiler.h: Undef before redefining __attribute_const__
4352732f268c vmware: include jiffies.h
7954a677968d Resolve jiffies wrapping about arp
5f28a1035d95 nfs: Allow default io size to be configured.
0d7260ad7106 check console device file on fs when booting
900a12e37e0a mount_root: clarify error messages for when no rootfs found
7b878cbea726 menuconfig,mconf-cfg: Allow specification of ncurses location
6604fc1763b3 modpost: mask trivial warnings
0d294adb09cb kbuild: exclude meta directory from distclean processing
a097cdd95a9e powerpc: serialize image targets
5db6ec39a0a3 arm: serialize build targets
cbabca27905e crtsavres: fixups for 5.4+
7fc7656ed403 powerpc/ptrace: Disable array-bounds warning with gcc8
a5faac5a19a2 powerpc: Disable attribute-alias warnings from gcc8
186c54665b67 powerpc: add crtsavres.o to archprepare for kbuild
d1ea862964ca powerpc: kexec fix for powerpc64
2ac35b89a0f9 powerpc: Add unwind information for SPE registers of E500 core
2e1c348a28bb mips: vdso: fix 'jalr $t9' crash in vdso code
ec57870b303a mips: Kconfig: add QEMUMIPS64 option
6a81b3c08107 4kc cache tlb hazard: tlbp cache coherency
74e3b2a21e54 malta uhci quirks: make allowance for slow 4k(e)c
22e65b63d3b4 arm/Makefile: Fix systemtap
b7f1ab59f19e vexpress: Pass LOADADDR to Makefile
ce2800c73bf7 arm: ARM EABI socketcall
019d142fd956 ARM: LPAE: Invalidate the TLB for module addresses during translation fault
(From OE-Core rev: 709bfb0e600148d65018db450a69de220c874efd)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
4735586da88e Linux 5.15.176
63eac98d6f08 mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim()
5c4eb5401d7e dt-bindings: display: adi,adv7533: Drop single lane support
0f51034bb813 drm: adv7511: Drop dsi single lane support
f9c3adb083d3 net/sctp: Prevent autoclose integer overflow in sctp_association_init()
d809d1aabec8 sky2: Add device ID 11ab:4373 for Marvell 88E8075
9372e160d821 pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking
c2f961c46ea0 RDMA/uverbs: Prevent integer overflow issue
9aeece68684c kcov: mark in_softirq_really() as __always_inline
362f86f3ee45 modpost: fix the missed iteration for the max bit in do_input()
3b5efbf000d5 modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host
ef26e5bb560b usb: xhci: Avoid queuing redundant Stop Endpoint commands
f4539c3cab44 ARC: build: Try to guess GCC variant of cross compiler
84142875b293 irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base
faab60ed274d net: usb: qmi_wwan: add Telit FE910C04 compositions
cc63b8c102c4 bpf: fix potential error return
2dedcab091f2 sound: usb: format: don't warn that raw DSD is unsupported
01b3661663c5 sound: usb: enable DSD output for ddHiFi TC44C
63f4b594a688 btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount
22d36ad92e57 drm/amdkfd: Correct the migration DMA map direction
bd3eca303b3f wifi: mac80211: wake the queues in case of failure in resume
efbdbf36c338 btrfs: sysfs: fix direct super block member reads
0efdc0606fc8 btrfs: sysfs: convert scnprintf and snprintf to sysfs_emit
526ff5b27f09 btrfs: fix use-after-free when COWing tree bock and tracing is enabled
d4a7270b37d0 btrfs: rename and export __btrfs_cow_block()
ad0677c37c14 ila: serialize calls to nf_register_net_hooks()
de4f8d477c67 af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK
65c67049e9ed af_packet: fix vlan_get_tci() vs MSG_PEEK
0caa776f2829 net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init()
579cfa595af1 net: restrict SO_REUSEPORT to inet sockets
143378075904 RDMA/rtrs: Ensure 'ib_sge list' is accessible
91a1adab5669 net: mv643xx_eth: fix an OF node reference leak
36c95bbd4eb1 eth: bcmsysport: fix call balance of priv->clk handling routines
d27088892b40 ALSA: usb-audio: US16x08: Initialize array before use
c8187a378380 net: llc: reset skb->transport_header
277f00b0c2dc netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext
215c687344d5 drm/i915/dg1: Fix power gate sequence.
769e36c2119a netrom: check buffer length before accessing it
9d3895967729 net: fix memory leak in tcp_conn_request()
4261fc54ca77 net: stmmac: restructure the error path of stmmac_probe_config_dt()
f0da70367048 net: stmmac: don't create a MDIO bus if unnecessary
860279ff72fe net: stmmac: platform: provide devm_stmmac_probe_config_dt()
a68ec6380f2f RDMA/hns: Fix missing flush CQE for DWQE
06e2d3ec7a7d RDMA/hns: Fix warning storm caused by invalid input in IO path
3146512f40bb RDMA/hns: Fix mapping error of zero-hop WQE buffer
bc509159a223 RDMA/hns: Remove redundant 'bt_level' for hem_list_alloc_item()
5e7c02730cce RDMA/hns: Remove redundant 'attr_mask' in modify_qp_init_to_init()
a03b9689e4e5 drm/bridge: adv7511_audio: Update Audio InfoFrame properly
33df6f747501 RDMA/bnxt_re: Fix the locking while accessing the QP table
802be99bc7bb RDMA/bnxt_re: Fix max_qp_wrs reported
6da018852c42 RDMA/bnxt_re: Fix reporting hw_ver in query_device
faf879baed95 RDMA/bnxt_re: Add check for path mtu in modify_qp
2e4a9a22b7f9 RDMA/mlx5: Enforce same type port association for multiport RoCE
590bd0f9148f xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic
62756ca746e2 usb: xhci: Limit Stop Endpoint retries
28fcf6c7a1ef xhci: retry Stop Endpoint on buggy NEC controllers
8f4871abf04f thunderbolt: Add support for Intel Panther Lake-M/P
6cf75f685667 thunderbolt: Add support for Intel Lunar Lake
c4c06c199410 thunderbolt: Add Intel Barlow Ridge PCI ID
6c03ec8a0791 thunderbolt: Add support for Intel Meteor Lake
c5c059d6bb77 thunderbolt: Add support for Intel Raptor Lake
3bcdc9039a6e tracing: Have process_string() also allow arrays
f70e4b9ec69d selinux: ignore unknown extended permissions
0a2d26bf27c9 x86/hyperv: Fix hv tsc page based sched_clock for hibernation
87bd909a7014 net: dsa: improve shutdown sequence
5ade4382de16 nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net
214d92f0a465 btrfs: avoid monopolizing a core when activating a swap file
c3703d9340ca power: supply: gpio-charger: Fix set charge current limits
f60172b44731 tracing: Prevent bad count for tracing_cpumask_write
c5a28af78555 tracing: Constify string literal data member in struct trace_event_call
2107ab40629a ksmbd: fix racy issue from session lookup and expire
2461ffdc7725 lib: stackinit: hide never-taken branch from compiler
002668bfd416 drm/dp_mst: Verify request type in the corresponding down message reply
3bc0d0831777 arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs
082e68b9a714 arm64: mm: Rename asid2idx() to ctxid2asid()
1aea5c9470be ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write
6bd1bf0e8c42 ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
70e7166612f4 drm/dp_mst: Fix MST sideband message body length check
24fec234d2ba bpf: Check validity of link->type in bpf_link_show_fdinfo()
edcc68974580 MIPS: Probe toolchain support of -msym32
5728a1d6247d vmalloc: fix accounting with i915
6dea8e3de599 virtio-blk: don't keep queue frozen during system suspend
a47235354ac4 scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error
0d591e92c076 scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time
7efc3fa902ce platform/x86: asus-nb-wmi: Ignore unknown event 0xCF
b09527799946 regmap: Use correct format specifier for logging range errors
7574cf3c8bf1 ALSA: hda/conexant: fix Z60MR100 startup pop issue
3c654998a3e8 scsi: megaraid_sas: Fix for a potential deadlock
ce697618e34f scsi: qla1280: Fix hw revision numbering for ISP1020/1040
08a78ff9bf29 watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04
325c0e27668d tracing/kprobe: Make trace_kprobe's module callback called after jump_label update
3d825a241e65 mtd: rawnand: fix double free in atmel_pmecc_create_user()
8d364597de9c dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset
7c99b3c60cac dmaengine: dw: Select only supported masters for ACPI devices
3e9968660c26 dmaengine: mv_xor: fix child node refcount handling in early exit
e0c101361c1e phy: core: Fix that API devm_phy_destroy() fails to destroy the phy
6bf2aba838b2 phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider
3a22224a443b phy: core: Fix that API devm_phy_put() fails to release the phy
5d1a41420ed4 phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup()
9d2916bb1276 phy: core: Fix an OF node refcount leakage in _of_phy_get()
4f8a50745358 mtd: rawnand: arasan: Fix missing de-registration of NAND
326d7fb3e4f1 mtd: rawnand: arasan: Fix double assertion of chip-select
4b13d0d186df mtd: diskonchip: Cast an operand to prevent potential overflow
804d55e92b7a nfsd: restore callback functionality for NFSv4.0
e2373eea347e bpf: Check negative offsets in __bpf_skb_min_len()
323bab15ff7c tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection
38150bb4e3be tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress()
c3ab56e1b434 mm/vmstat: fix a W=1 clang compiler warning
53106510736e media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg
c72057c4865c drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update
dccf5138ad56 epoll: Add synchronous wakeup support for ep_poll_callback
888dd1909559 ceph: validate snapdirname option length when mounting
38a2a383a019 of: Fix refcount leakage for OF node returned by __of_get_dma_parent()
a579b0b6a82f of: Fix error path in of_parse_phandle_with_args_map()
0227594be815 udmabuf: also check for F_SEAL_FUTURE_WRITE
912188316a8c nilfs2: prevent use of deleted inode
a793e5c35722 of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one()
abc874634c16 NFS/pnfs: Fix a live lock between recalled layouts and layoutget
85d7635d54d7 tracing: Add "%s" check in test_event_printk()
6cacfb59a7cc tracing: Add missing helper functions in event pointer dereference check
3a41815771c4 tracing: Fix test_event_printk() to process entire print argument
0840d360a890 KVM: x86: Play nice with protected guests in complete_hypercall_exit()
042253c57be9 Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet
0bef13423bb4 btrfs: tree-checker: reject inline extent items with 0 ref count
6aa65cda937f zram: refuse to use zero sized block device as backing device
2d3cde3aeb73 sh: clk: Fix clk_enable() to return 0 on NULL clk
5049a45bc23b hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers
de4fa408d68b hwmon: (tmp513) Fix Current Register value interpretation
447d1430aa6c hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers
b382e808e342 hwmon: (tmp513) Use SI constants from units.h
e9668ba824c1 hwmon: (tmp513) Simplify with dev_err_probe()
9a2cf6d4a616 hwmon: (tmp513) Don't use "proxy" headers
e7c7b48a0fc5 drm/modes: Avoid divide by zero harder in drm_mode_vrefresh()
d4ca3bf078cb USB: serial: option: add Telit FE910C04 rmnet compositions
adeae07da972 USB: serial: option: add MediaTek T7XX compositions
cf4df6f3f539 USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready
6ccb85602c14 USB: serial: option: add MeiG Smart SLM770A
7e25a9031004 USB: serial: option: add TCL IK512 MBIM & ECM
68578224365a efivarfs: Fix error on non-existent file
f2c15056b312 i2c: riic: Always round-up when calculating bus period
16e1c1156674 chelsio/chtls: prevent potential integer overflow on 32bit
f4780fedeb65 mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk
9d120788418d net: mdiobus: fix an OF node reference leak
c4f20ad100da netfilter: ipset: Fix for recursive locking warning
24b6b9d6b21b net: ethernet: bgmac-platform: fix an OF node reference leak
f9bad9428723 net: hinic: Fix cleanup in create_rxqs/txqs()
48cc5df7757b ionic: use ee->offset when returning sprom data
87847938f570 ionic: Fix netdev notifier unregister on failure
b3a6daaf7cfb netdevsim: prevent bad user input in nsim_dev_health_break_write()
6b80924af621 net/smc: check return value of sock_recvmsg when draining clc data
a36364d8d4fa net/smc: check smcd_v2_ext_offset when receiving proposal msg
f10635268a0a net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg
0b86e31b6bbb net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll
27d6adbb3ec4 erofs: fix incorrect symlink detection in fast symlink
7e5fc0da0b76 i2c: pnx: Fix timeout in wait functions
cff037a22793 usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled
676cec3ad096 MIPS: Loongson64: DTS: Fix msi node for ls7a
848257f4f9ef PCI: Add ACS quirk for Broadcom BCM5760X NIC
c3119c7bab90 PCI: vmd: Create domain symlink before pci_bus_add_devices()
82f635733337 ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP
6eb9609c8bf0 usb: cdns3: Add quirk flag to enable suspend residency
a19c6a484417 ALSA: usb: Fix UBSAN warning in parse_audio_unit()
02052d22de91 PCI/AER: Disable AER service on suspend
c1a1393f7844 PCI: Use preserve_config in place of pci_flags
33db36b3c53d net: sched: fix ordering of qlen adjustment
b5d500042eb3 usb: hcd-pci: remove the action of faking interrupt request
6f0605db50e2 clk: imx: Add check for kcalloc
5b837b9e1543 bpf: Fix the indention issue in grow_stack_state()
42b62697634d cifs: Fix the calling of smb_version_operations::calc_smb_size()
b14acf729e9d f2fs: Add inline to f2fs_build_fault_attr() stub
7c317bec311f f2fs: check validation of fault attrs in f2fs_build_fault_attr()
81c12119c23f bpf: Fix accesses to uninit stack slots [ Upstream commit 6b4a64bafd107e521c01eec3453ce94a3fb38529 ]
c4fa05422d87 smb: client: fix potential OOB in smb2_dump_detail()
299ef3b5b00b of: module: add buffer overflow check in of_modalias()
b8086c3c1548 reiserfs: Avoid touching renamed directory if parent does not change
ea091017ef62 ipv6: Fix data races around sk->sk_prot.
ff8710da80ee ipv6: annotate some data-races around sk->sk_prot
e8c2eafaaa6a tcp: Fix data races around icsk->icsk_af_ops.
8d1bab770956 locking/rwsem: Disable preemption while trying for rwsem lock
7c82dac02886 block, loop: support partitions without scanning
45f504f301d4 bpftool: Fix pretty print dump for maps without BTF loaded
1f24338cb789 jbd2: Drop the merge conflicted hunk
e1d0e3c51bde tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
1abe841fe331 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
6224acfc1d56 tpm: Add flag to use default cancellation policy
1cd19d48fb90 tpm: tis_i2c: Fix sanity check interrupt enable mask
a883da132fa8 tpm: Add tpm_tis_i2c backend for tpm_tis_core
a742ac8a1c51 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer
ef495c5f45f2 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops
1f3be2e23aa6 gcc-plugins: Reorganize gimple includes for GCC 13
24615a3b932a ata: ahci: fix enum constants for gcc-13
5d6cb145541a net: stmmac: Enable mac_managed_pm phylink config
fd93aabb4287 tools/resolve_btfids: Use pkg-config to locate libelf
130f9da78406 tools/resolve_btfids: Build with host flags
00f2f1a782f9 tools/resolve_btfids: Support cross-building the kernel with clang
17776a4ba9c2 tools/resolve_btfids: Install libbpf headers when building
7c9808380d70 libbpf: Make libbpf_version.h non-auto-generated
37ae1ba791ac libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations
a2667e6d7314 drm/radeon: free iio for atombios when driver shutdown
f100c753aa1f powerpc: Fix reschedule bug in KUAP-unlocked user copy
da5513f30187 libbpf: Fix build warning on ref_ctr_off
4c5a089621a8 perf python: Account for multiple words in CC
1c5699ee85d4 fs: move S_ISGID stripping into the vfs_*() helpers
838f5d0701d8 fs: add mode_strip_sgid() helper
d97172683641 squashfs: provide backing_dev_info in order to disable read-ahead
ed037d7be40c irq_work: use kasan_record_aux_stack_noalloc() record callstack
1363bd7dbde3 ixgbevf: add disable link state
e5601ae2bd24 ixgbe: add improvement for MDD response functionality
caa57cd80575 ixgbe: add the ability for the PF to disable VF link state
16a77bfcc7df Check /dev/console using init_stat()
04574fd5579a tracing/arm: Have max stack tracer handle the case of return address after data
0e51e5717018 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
1e6b7da6ddba drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
493160901320 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
04224f725aa3 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered
6f6c2996a81c irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve
1fa94473423f irqchip/gic-v3-its: Give the percpu rdist struct its own flags field
6013d1ae5feb cert host tools: Stop complaining about deprecated OpenSSL functions
efe20512212b init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash
a40d2daf2795 pnmtologo: use relocatable file name
3b40d5b41155 of: configfs: remove unused variable overlay_lock
6c085baf1838 tools: use basename to identify file in gen-mach-types
2fca0fd71981 lib/build_OID_registry: fix reproducibility issues
0f586f4ee8ad vt/conmakehash: improve reproducibility
a75774679f28 OF: DT-Overlay configfs interface (v8)
d179c639b30b x86/boot: Wrap literal addresses in absolute_pointer()
856ec356cf91 ACPI: thermal: drop an always true check
7614af249993 xfs: Fix -Werror=dangling-pointer work-around for older GCC
41470215f97e xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o
44a445c1922d virtio-pci: Remove wrong address verification in vp_del_vqs()
77aa9e489eaf bpf: Disallow unprivileged bpf by default
ebfb1822e9f9 fs/aufs: fixup 5.15.36 fixups
4eba9348d3e2 Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal""
5df6d1b00f95 jbd2: fix use-after-free of transaction_t race
2d83e8196487 jbd2: refactor wait logic for transaction updates into a common function
07a63f760793 netfilter: conntrack: avoid useless indirection during conntrack destruction
4e7122625996 Revert "fbdev: Hot-unplug firmware fb devices on forced removal"
7ba4cb36fd4f rcu: Avoid alloc_pages() when recording stack
f78574dee71e kasan: test: silence intentional read overflow warnings
d313cb89b6b1 kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC
5e279d5647cc arm64: support page mapping percpu first chunk allocator
e5bf16752dca vmalloc: choose a better start address in vm_area_register_early()
660b3d21b46f kasan: test: bypass __alloc_size checks
00aa7573e53a kasan: test: add memcpy test that avoids out-of-bounds write
67becf0b1bd4 kasan: fix tag for large allocations when using CONFIG_SLAB
bedf1e033213 workqueue, kasan: avoid alloc_pages() when recording stack
7195b67ce69b kasan: generic: introduce kasan_record_aux_stack_noalloc()
bdff763f0e29 kasan: common: provide can_alloc in kasan_save_stack()
51423ebb36ad lib/stackdepot: introduce __stack_depot_save()
85373e66d847 lib/stackdepot: remove unused function argument
5b6cc9b251f3 lib/stackdepot: include gfp.h
c9f3902d8069 aufs: reduce overhead for "code present but disabled" use case.
b98d189df02c aufs: bugfix, umount passes NULL to ->parse_monolithic()
13b883cbbbd9 aufs standalone: cosmetic, missing copyright sentence
21f8b0d81898 aufs: 5.15.5-20220117 ---> 5.15.5-20220221
6199fd896645 aufs: tiny, headers after fs_context
8ddb40e31c29 aufs: fs_context 7/7, finally remount
69035f71c6fd aufs: fs_context 6/7, now mount
bc841b970697 aufs: fs_context 5/7, parse all other mount options
435188053da2 aufs: fs_context 4/7, parse xino options
9af1f1825cbd aufs: fs_context 3/7, parse the branch-management options
1c05eb767f8c aufs: fs_context 2/7, parse "br" mount option
a8488f603134 aufs: fs_context 1/7, skelton of the new shceme
8e32e0015564 aufs: pre fs_context, convert a static flag to a macro
f90cb4144aec aufs: pre fs_context, support the incomplete sb and sbinfo case
948762ef859c aufs: pre fs_context, convert the type of alloc_sbinfo()
77151a08776b aufs: 5.15.5-20211129 ---> 5.15.5-20220117
2539adbbbe1e aufs: 5.14-20211018 ---> 5.15.5-20211129
7d32b25193c4 aufs: for v5.15-rc1, sync_inode() is gone
66ec0c509225 aufs: for v5.15-rc1, new param 'rcu' for ->get_acl()
69709dc518cd aufs: for v5.15-rc1, no mand-lock anymore
ada8fe9543e5 aufs: 5.14-20210906 ---> 5.14-20211018
b77f7f3f394a Revert "aufs: adjust to v5.15 fs changes"
81bdce5b5876 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation
97c963889222 sched/isolation: really align nohz_full with rcu_nocbs
871f23ad3627 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards"
ffad0783dd5b ARM: config: multi v7: Regenerate defconifg
5c1e1a1ff2d3 ARM: config: multi v7: Add renamed symbols
badaf96564fe ARM: config: multi v7: Clean up enabled by default options
34996040fc9b ARM: config: multi v7: Drop unavailable options
7f685244afb3 powerpc/mm: Switch obsolete dssall to .long
20301aeb1a64 riscv: fix build with binutils 2.38
9df58d070506 powerpc/lib/sstep: fix 'ptesync' build error
720b61fc400b x86_64_defconfig: Fix warnings
02bf23d26bc4 arm64: defconfig: cleanup config options
05914e2c87e5 arm: defconfig: drop unused POWER_AVS option
ffb532fa19b9 aufs5: fix build against v5.15.3+
a4b3abf4d96d qemux86: add configuration symbol to select values
fee94ee09154 clear_warn_once: add a clear_warn_once= boot parameter
3d8762d900d9 clear_warn_once: bind a timer to written reset value
95faacac47e8 clear_warn_once: expand debugfs to include read support
de20c4240018 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
0e4aacead9c1 perf: x86-32: explicitly include <errno.h>
9ad92c11468e perf: mips64: Convert __u64 to unsigned long long
09e7efe3e68a perf: fix bench numa compilation
e79becc44fa6 perf: add SLANG_INC for slang.h
b1033b588681 perf: add sgidefs.h to for mips builds
cf9db484ac0b perf: change --root to --prefix for python install
7fd052c2c562 perf: add 'libperl not found' warning
27a437cdd469 perf: force include of <stdbool.h>
3b99d21bec2f fat: don't use obsolete random32 call in namei_vfat
a7e9293b506b FAT: Added FAT_NO_83NAME
6fd0e71d9e5c FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
c379b0d324ae FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
538be0fdb124 aufs: adjust to v5.15 fs changes
f45da75c8759 aufs5: core
047f57e07e01 aufs5: standalone
029fc15574c8 aufs5: mmap
610d0192ee94 aufs5: base
d4e428d0ec5f aufs5: kbuild
eb067eca251a yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
286af18d0875 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
24d59a4e26a6 yaffs2: v5.12+ build fixups (not runtime tested)
22c73536d5d7 yaffs: include blkdev.h
506b7251bfb8 yaffs: fix misplaced variable declaration
a0e26ff364dc yaffs2: v5.6 build fixups
b10b1b2d169e yaffs2: fix memory leak when /proc/yaffs is read
ad9adccbb214 yaffs: add strict check when call yaffs_internal_read_super
2e3c3aec8279 yaffs: repair yaffs_get_mtd_device
d662538516a7 yaffs: Fix build failure by handling inode i_version with proper atomic API
70a6113ee2c7 yaffs2: fix memory leak in mount/umount
3378e4a9e404 yaffs: Avoid setting any ACL releated xattr
ec2284edddef Yaffs:check oob size before auto selecting Yaffs1
c2a49874051c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
e9a5105a3e73 yaffs2: adjust to proper location of MS_RDONLY
608807406f13 yaffs2: import git revision b4ce1bb (jan, 2020)
89e660ece42c initramfs: allow an optional wrapper script around initramfs generation
b179dbc9aa10 iwlwifi: select MAC80211_LEDS conditionally
3fd5ca3673d0 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
d1f6edbf0188 arm64/perf: Fix wrong cast that may cause wrong truncation
d202fb2caf33 defconfigs: drop obselete options
9a27e3b5f4e7 arm64/perf: fix backtrace for AAPCS with FP enabled
e20d8cf019b4 linux-yocto: Handle /bin/awk issues
b6d2a3dbbd3a uvesafb: provide option to specify timeout for task completion
adb40f1e6a1a uvesafb: print error message when task timeout occurs
f280a1ed0962 compiler.h: Undef before redefining __attribute_const__
4352732f268c vmware: include jiffies.h
7954a677968d Resolve jiffies wrapping about arp
5f28a1035d95 nfs: Allow default io size to be configured.
0d7260ad7106 check console device file on fs when booting
900a12e37e0a mount_root: clarify error messages for when no rootfs found
7b878cbea726 menuconfig,mconf-cfg: Allow specification of ncurses location
6604fc1763b3 modpost: mask trivial warnings
0d294adb09cb kbuild: exclude meta directory from distclean processing
a097cdd95a9e powerpc: serialize image targets
5db6ec39a0a3 arm: serialize build targets
cbabca27905e crtsavres: fixups for 5.4+
7fc7656ed403 powerpc/ptrace: Disable array-bounds warning with gcc8
a5faac5a19a2 powerpc: Disable attribute-alias warnings from gcc8
186c54665b67 powerpc: add crtsavres.o to archprepare for kbuild
d1ea862964ca powerpc: kexec fix for powerpc64
2ac35b89a0f9 powerpc: Add unwind information for SPE registers of E500 core
2e1c348a28bb mips: vdso: fix 'jalr $t9' crash in vdso code
ec57870b303a mips: Kconfig: add QEMUMIPS64 option
6a81b3c08107 4kc cache tlb hazard: tlbp cache coherency
74e3b2a21e54 malta uhci quirks: make allowance for slow 4k(e)c
22e65b63d3b4 arm/Makefile: Fix systemtap
b7f1ab59f19e vexpress: Pass LOADADDR to Makefile
ce2800c73bf7 arm: ARM EABI socketcall
019d142fd956 ARM: LPAE: Invalidate the TLB for module addresses during translation fault
(From OE-Core rev: b39adc1b4d9e705b1801684020a0bc12217f6db8)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The HTTP client drops sensitive headers after following a cross-domain redirect.
For example, a request to a.com/ containing an Authorization header which is redirected to
b.com/ will not send that header to b.com. In the event that the client received a subsequent
same-domain redirect, however, the sensitive headers would be restored. For example, a chain
of redirects from a.com/, to b.com/1, and finally to b.com/2 would incorrectly send the
Authorization header to b.com/2.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-45336
Upstream-patch:
b72d56f98d
(From OE-Core rev: 63e84b64f055ad7c91de67194e6739c96fb95496)
Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
[ YOCTO #14747 ]
Adding a initramfs is a common task, and the way oe-core offers to do so
is by using the initramfs-framework recipe and companion modules. There
was already documentation on adding an initramfs but the documentation
was lacking details on this framework. Add it before the multiconfig
section because it is a bit more important IMO.
Reported-by: Alejandro <alejandro@enedino.org>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: b1a7dd6d34a291e2250e7169f4f9d93e61700a63)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit caedbca4eced4cf5bc74aaae64e4ad2887c2fc65)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
549d831579 stdlib: Test using setenv with updated environ [BZ #32588]
8b5d4be762 Fix underallocation of abort_msg_s struct (CVE-2025-0395)
525e5f13de stdlib: Simplify buffer management in canonicalize
5eae275400 realpath: Bring back GNU extension on ENOENT and EACCES [BZ #28996]
8a82a76a42 realpath: Do not copy result on failure (BZ #28815)
e369114462 misc: Add support for Linux uio.h RWF_NOAPPEND flag
3f1ab0ed66 nptl: Convert tst-setuid2 to test-driver
76adee6e0f support: Add xpthread_cond_signal wrapper
c3beedeb70 elf: Support recursive use of dynamic TLS in interposed malloc
f48d763ab8 elf: Avoid some free (NULL) calls in _dl_update_slotinfo
710057676d sysdeps/x86/Makefile: Split and sort tests
a4207d4e83 x86: Only align destination to 1x VEC_SIZE in memset 4x loop
889f99c149 elf: Fix slow tls access after dlopen [BZ #19924]
543efedcb3 x86: Check the lower byte of EAX of CPUID leaf 2 [BZ #30643]
41a3e51233 x86_64: Add log1p with FMA
0d1c70aa4c x86_64: Add expm1 with FMA
516180d399 x86_64: Add log2 with FMA
30384b91ad x86_64: Sort fpu/multiarch/Makefile
d626c31ce5 x86: Avoid integer truncation with large cache sizes (bug 32470)
7ea35e28b4 nptl: initialize cpu_id_start prior to rseq registration
47d70ca8d9 nptl: initialize rseq area prior to registration
(From OE-Core rev: a397c152abf4f3da1323594e79ebac844a2c9f45)
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
>From git 2.48 release notes:
"""
When "git fetch $remote" notices that refs/remotes/$remote/HEAD is
missing and discovers what branch the other side points with its
HEAD, refs/remotes/$remote/HEAD is updated to point to it.
"""
This means with git 2.48 onwards, there is a mystery "HEAD" revision
appearing in some of our shallow clone tests. We can avoid this by
using the same canonicalization as used for the reference revisions.
This resolves autobuilder failures on the Fedora 40 workers.
(Bitbake rev: e71f1ce53cf3b8320caa481ae62d1ce2900c4670)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c83444d1210740e27b1744d3aa7c5cad4e28db2f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
We don't run reproducible-builds on specific distros anymore, but on a
distro at random depending on what is available on the Autobuilder. Fix
the link to this builder and remove distro specific ones.
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: d574e625b2bb1b07a2e51cbf2e1f0a28ee596c7b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 8bd2bc3c00ca80f4c000a2a8d618a9f8ea3aa54b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
We have moved to Valkyrie which is hosted on
https://autobuilder.yoctoproject.org/valkyrie. Update the URL in the
documentation.
Also, the YOCTO_AB_URL macro was used in a single location in the
documentation so replace it by the :yocto_ab: custom extlink and remove
the macro.
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 66db484f51bc60e87d41bd5ad9d852e3ac44a1b2)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 0b0ed55d909dd11cdc9b29b105473271627c025e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Using the package architecture to select the right qemu options to pass
to qemu-user is incorrect, and fails for recipes that set PACKAGE_ARCH
to MACHINE_ARCH (as the qemuppc workarounds suggest) because there are
not typically any options set for the machine name.
Solve this by using TUNE_PKGARCH instead: for the majority of recipes
this is the same value, but for machine-specific recipes it remains the
same instead of changing to the machine name.
This means we can remove the qemuppc workarounds, as they're obsolete.
Also update the gcc-testsuite recipe which uses the same pattern to use
TUNE_PKGARCH, and generalise the else codepath to avoid needing to
update the list of architectures.
[ YOCTO #15647 ]
(From OE-Core rev: 077aab43f2c928eb8da71934405c62327010f552)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The nativesdk class overrides PACKAGE_ARCH and unsets TUNE_FEATURES, but
as recipes might want to look at TUNE_PKGARCH too (for example, when
setting QEMU_EXTRAOPTIONS) we should also override that variable.
Otherwise, a nativesdk recipe will have the TUNE_PKGARCH of the target,
which leads to errors (eg passing mips arguments to an arm qemu).
(From OE-Core rev: 38b4992329459f2200817a848e8888b9284b4917)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 05322beb290e1db30bef49b4364f8a8e6e9f7408)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Update to the 4.0.23 release of the 4.0 series for buildtools.
(From OE-Core rev: 2effc054b1484dd3c87652267bf590c17d2d6f76)
Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in rsync. This vulnerability arises from a race condition during
rsync's handling of symbolic links. Rsync's default behavior when encountering
symbolic links is to skip them. If an attacker replaced a regular file with a
symbolic link at the right time, it was possible to bypass the default behavior
and traverse symbolic links. Depending on the privileges of the rsync process,
an attacker could leak sensitive information, potentially leading to privilege escalation.
(From OE-Core rev: c0905ffb2f1aa3bc4c6187ff4860dcc8d3dbfb01)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in rsync. When using the `--safe-links` option, rsync fails to
properly verify if a symbolic link destination contains another symbolic link within it.
This results in a path traversal vulnerability, which may lead to arbitrary file write
outside the desired directory
(From OE-Core rev: 741200c41a19ef5b4876d9a80667dfde2e5f4a9d)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A path traversal vulnerability exists in rsync. It stems from behavior enabled
by the `--inc-recursive` option, a default-enabled option for many client options
and can be enabled by the server even if not explicitly enabled by the client.
When using the `--inc-recursive` option, a lack of proper symlink verification
coupled with deduplication checks occurring on a per-file-list basis could allow
a server to write files outside of the client's intended destination directory.
A malicious server could write malicious files to arbitrary locations named after
valid directories/paths on the client.
(From OE-Core rev: 12328df8dfcdc73ef70af299e9ebdc1d8ae73f37)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in rsync. It could allow a server to enumerate the contents of an
arbitrary file from the client's machine. This issue occurs when files are being
copied from a client to a server. During this process, the rsync server will send
checksums of local data to the client to compare with in order to determine what
data needs to be sent to the server. By sending specially constructed checksum values
for arbitrary files, an attacker may be able to reconstruct the data of those files
byte-by-byte based on the responses from the client.
(From OE-Core rev: b49c8f58c20d7deb354a86a34488cb798c49eba3)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the rsync daemon which could be triggered when rsync compares
file checksums. This flaw allows an attacker to manipulate the checksum length
(s2length) to cause a comparison between a checksum and uninitialized memory and
leak one byte of uninitialized stack data at a time.
(From OE-Core rev: 3fd8bea3e72573cca03cd3f6f4fc077cd2fd45a3)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due
to improper handling of attacker-controlled checksum lengths (s2length) in the code.
When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write
out of bounds in the sum2 buffer.
(From OE-Core rev: 17fac276e27af19b00b6263f22156a55bae6a5c9)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2024-37535:
GNOME VTE before 0.76.3 allows an attacker to cause a denial of service
(memory consumption) via a window resize escape sequence, a related
issue to CVE-2000-0476.
Reference:
[https://nvd.nist.gov/vuln/detail/CVE-2024-37535]
Upstream patches:
[036bc3ddcb]
[c313849c2e]
(From OE-Core rev: 132a5168b125d6f4fb9391d982bc64d73429ab8f)
Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
oFono SMS Decoder Stack-based Buffer Overflow Privilege Escalation
Vulnerability. This vulnerability allows local attackers to execute
arbitrary code on affected installations of oFono. An attacker must
first obtain the ability to execute code on the target modem in
order to exploit this vulnerability.
The specific flaw exists within the parsing of SMS PDUs. The issue
results from the lack of proper validation of the length of user-
supplied data prior to copying it to a stack-based buffer. An
attacker can leverage this vulnerability to execute code in the
context of the service account. Was ZDI-CAN-23460.
Reference:
https://security-tracker.debian.org/tracker/CVE-2024-7547
Upstream patch:
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=305df050d02aea8532f7625d6642685aa530f9b0
(From OE-Core rev: 8c32d91b64ae296d7832ddeb42983f4f3c237946)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation
Vulnerability. This vulnerability allows local attackers to execute
arbitrary code on affected installations of oFono. An attacker must
first obtain the ability to execute code on the target modem in
order to exploit this vulnerability.
The specific flaw exists within the parsing of STK command PDUs.
The issue results from the lack of proper validation of the length
of user-supplied data prior to copying it to a heap-based buffer.
An attacker can leverage this vulnerability to execute code in the
context of the service account. Was ZDI-CAN-23459.
Reference:
https://security-tracker.debian.org/tracker/CVE-2024-7546
Upstream patch:
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=79ea6677669e50b0bb9c231765adb4f81c375f63
(From OE-Core rev: 33b2a67b3134498e8c4845efddc7854b4d2315cd)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation
Vulnerability. This vulnerability allows local attackers to execute
arbitrary code on affected installations of oFono. An attacker must
first obtain the ability to execute code on the target modem in
order to exploit this vulnerability.
The specific flaw exists within the parsing of STK command PDUs.
The issue results from the lack of proper validation of the length
of user-supplied data prior to copying it to a heap-based buffer.
An attacker can leverage this vulnerability to execute code in the
context of the service account. Was ZDI-CAN-23458.
Reeference:
https://security-tracker.debian.org/tracker/CVE-2024-7545
Upstream patch:
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=556e14548c38c2b96d85881542046ee7ed750bb5
(From OE-Core rev: f062d2e4ad3d0a35a2dadda679632d5d213b8487)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation
Vulnerability. This vulnerability allows local attackers to execute
arbitrary code on affected installations of oFono. An attacker must
first obtain the ability to execute code on the target modem in
order to exploit this vulnerability.
The specific flaw exists within the parsing of STK command PDUs.
The issue results from the lack of proper validation of the length
of user-supplied data prior to copying it to a heap-based buffer.
An attacker can leverage this vulnerability to execute code in the
context of the service account. Was ZDI-CAN-23457.
Reference:
https://security-tracker.debian.org/tracker/CVE-2024-7544
Upstream patch:
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=a240705a0d5d41eca6de4125ab2349ecde4c873a
(From OE-Core rev: c4e7d6fad2ed96296bcea2b7d12b41e1354eafa8)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation
Vulnerability. This vulnerability allows local attackers to execute
arbitrary code on affected installations of oFono. An attacker must
first obtain the ability to execute code on the target modem in
order to exploit this vulnerability.
The specific flaw exists within the parsing of STK command PDUs.
The issue results from the lack of proper validation of the length
of user-supplied data prior to copying it to a heap-based buffer.
An attacker can leverage this vulnerability to execute code in the
context of the service account. Was ZDI-CAN-23456.
Reference:
https://security-tracker.debian.org/tracker/CVE-2024-7543
Upstream patch:
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=90e60ada012de42964214d8155260f5749d0dcc7
(From OE-Core rev: 31ba25646b78d60923b1d897a43e37ef6f9edd51)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
oFono CUSD Stack-based Buffer Overflow Code Execution Vulnerability.
This vulnerability allows local attackers to execute arbitrary code
on affected installations of oFono. An attacker must first obtain
the ability to execute code on the target modem in order to exploit
this vulnerability.
The specific flaw exists within the parsing of responses from AT+CUSD
commands. The issue results from the lack of proper validation of the
length of user-supplied data prior to copying it to a stack-based buffer.
An attacker can leverage this vulnerability to execute code in the
context of root. Was ZDI-CAN-23195.
Reference:
https://security-tracker.debian.org/tracker/CVE-2024-7539
Upstream Patch:
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=389e2344f86319265fb72ae590b470716e038fdc
(From OE-Core rev: b1626a0df6911172adafa85a99d36486eb7e2c62)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
These were fixed in previous commits.
(From OE-Core rev: 09f0b16877ab207cba91f13d036bc6f4cd6bdf70)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.9 has a ReDoS
vulnerability when it parses an XML that has many digits between &# and x...;
in a hex numeric character reference (&#x.... This does not happen with
Ruby 3.2 or later. Ruby 3.1 is the only affected maintained Ruby.
The REXML gem 3.3.9 or later include the patch to fix the vulnerability.
CVE-2024-49761-0009.patch is the CVE fix and rest are dependent commits.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-49761
Upstream-patch:
810d22852383ca5c4b0f51217dbcc67e4049f6a6fc6cad570b7712855547370666e314a579730f25ce59f2eb1a
(From OE-Core rev: 5b453400e9dd878b81b1447d14b3f518809de17e)
Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
@@ -62,37 +62,77 @@ found in ``build/tmp/deploy/cve``.
For example the CVE check report for the ``flex-native`` recipe looks like::
$ cat poky/build/tmp/deploy/cve/flex-native
LAYER: meta
PACKAGE NAME: flex-native
PACKAGE VERSION: 2.6.4
CVE: CVE-2016-6354
CVE STATUS: Patched
CVE SUMMARY: Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read.
CVSS v2 BASE SCORE: 7.5
CVSS v3 BASE SCORE: 9.8
VECTOR: NETWORK
MORE INFORMATION: https://nvd.nist.gov/vuln/detail/CVE-2016-6354
LAYER: meta
PACKAGE NAME: flex-native
PACKAGE VERSION: 2.6.4
CVE: CVE-2019-6293
CVE STATUS: Ignored
CVE SUMMARY: An issue was discovered in the function mark_beginning_as_normal in nfa.c in flex 2.6.4. There is a stack exhaustion problem caused by the mark_beginning_as_normal function making recursive calls to itself in certain scenarios involving lots of '*' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service.
CVSS v2 BASE SCORE: 4.3
CVSS v3 BASE SCORE: 5.5
VECTOR: NETWORK
MORE INFORMATION: https://nvd.nist.gov/vuln/detail/CVE-2019-6293
"summary": "flex.skl in Will Estes and John Millaway Fast Lexical Analyzer Generator (flex) before 2.5.33 does not allocate enough memory for grammars containing (1) REJECT statements or (2) trailing context rules, which causes flex to generate code that contains a buffer overflow that might allow context-dependent attackers to execute arbitrary code.",
"summary": "Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read.",
"summary": "An issue was discovered in the function mark_beginning_as_normal in nfa.c in flex 2.6.4. There is a stack exhaustion problem caused by the mark_beginning_as_normal function making recursive calls to itself in certain scenarios involving lots of '*' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service.",
"scorev2": "4.3",
"scorev3": "5.5",
"scorev4": "0.0",
"modified": "2024-11-21T04:46Z",
"vector": "NETWORK",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"detail": "upstream-wontfix",
"description": "there is stack exhaustion but no bug and it is building the parser, not running it, effectively similar to a compiler ICE. Upstream no plans to address this."
}
]
}
]
}
For images, a summary of all recipes included in the image and their CVEs is also
generated in textual and JSON formats. These ``.cve`` and ``.json`` reports can be found
generated in the JSON format. These ``.json`` reports can be found
in the ``tmp/deploy/images`` directory for each compiled image.
At build time CVE check will also throw warnings about ``Unpatched`` CVEs::
WARNING: flex-2.6.4-r0 do_cve_check: Found unpatched CVE (CVE-2019-6293), for more information check /poky/build/tmp/work/core2-64-poky-linux/flex/2.6.4-r0/temp/cve.log
WARNING: libarchive-3.5.1-r0 do_cve_check: Found unpatched CVE (CVE-2021-36976), for more information check /poky/build/tmp/work/core2-64-poky-linux/libarchive/3.5.1-r0/temp/cve.log
WARNING: qemu-native-9.2.0-r0 do_cve_check: Found unpatched CVE (CVE-2023-1386)
It is also possible to check the CVE status of individual packages as follows::
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#000000;fill-opacity:1;stroke:none"
bb.error("Malformed Upstream-Status in patch\n%s\nPlease correct according to %s :\n%s" % (fullpath, guidelines, match_kinda.group(0)))
msg = "Malformed Upstream-Status in patch\n%s\nPlease correct according to %s :\n%s" % (fullpath, guidelines, match_kinda.group(0))
oe.qa.handle_error(patchtype, msg, d)
else:
bb.error("Missing Upstream-Status in patch\n%s\nPlease add according to %s ." % (fullpath, guidelines))
msg = "Missing Upstream-Status in patch\n%s\nPlease add according to %s ." % (fullpath, guidelines)
oe.qa.handle_error(patchtype, msg, d)
oe.qa.exit_if_errors(d)
}
python do_qa_configure() {
@@ -1337,6 +1338,7 @@ python do_qa_unpack() {
bb.warn('%s: the directory %s (%s) pointed to by the S variable doesn\'t exist - please set S within the recipe to point to where the source has been unpacked to' % (d.getVar('PN'), d.getVar('S', False), s_dir))
Some files were not shown because too many files have changed in this diff
Show More
Reference in New Issue
Block a user
Blocking a user prevents them from interacting with repositories, such as opening or commenting on pull requests or issues. Learn more about blocking a user.
