Compare commits

..

771 Commits

Author SHA1 Message Date
Steve Sakoman
f16cffd030 build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: 7af6b75221d5703ba5bf43c7cd9f1e7a2e0ed20b)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:48:55 -07:00
Steve Sakoman
517a1206e0 poky.conf: bump version for 5.0.13
(From meta-yocto rev: 3ff7ca786732390cd56ae92ff4a43aba46a1bf2e)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:46:28 -07:00
Steve Sakoman
2eb674803a oeqa/sdk/cases/buildcpio.py: use gnu mirror instead of main server
ftp.gnu.org is the main server of the GNU project, however download speed
can vary greatly based on one's location.

Using ftpmirror.gnu.org should redirect the request to the closest up-to-date mirror,
which should result sometimes in significantly faster download speed, depending
on one's location. This should also distribute the traffic more across the mirrors.

This information was sourced from https://www.gnu.org/prep/ftp.html

(From OE-Core rev: b0ce480eca6397fab71082ed202c3cf9dd02456f)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Steve Sakoman
6e74167ad4 selftest/cases/meta_ide.py: use use gnu mirror instead of main server
ftp.gnu.org is the main server of the GNU project, however download speed
can vary greatly based on one's location.

Using ftpmirror.gnu.org should redirect the request to the closest up-to-date mirror,
which should result sometimes in significantly faster download speed, depending
on one's location. This should also distribute the traffic more across the mirrors.

This information was sourced from https://www.gnu.org/prep/ftp.html

(From OE-Core rev: aa7ff5a115f55c092f8ca5badad63734c8f4f5b7)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Gyorgy Sarvari
697d7cc740 conf/bitbake.conf: use gnu mirror instead of main server
ftp.gnu.org is the main server of the GNU project, however download speed
can vary greatly based on one's location.

Using ftpmirror.gnu.org should redirect the request to the closest up-to-date mirror,
which should result sometimes in significantly faster download speed, depending
on one's location. This should also distribute the traffic more across the mirrors.

This information was sourced from https://www.gnu.org/prep/ftp.html .

(From OE-Core rev: ef14bcae0f3f27acdd4e591fac69515aa912f194)

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit d8c6f01d7467e018aa0ed27a87850d9e4434a47a)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
2f0df0334a openssl: upgrade 3.2.4 -> 3.2.6
3.2.6 has fixed 3.2.5 regression which broke python3 ptests so we can
upgrade now. We can also drop CVE-2025-27587 patch which was taken
instead of 3.2.5 upgrade under:
https://github.com/openssl/openssl/pull/28198

Release information:
https://github.com/openssl/openssl/blob/openssl-3.0/NEWS.md#major-changes-between-openssl-3017-and-openssl-3018-30-sep-2025

OpenSSL 3.2.6 is a security patch release. The most severe CVE fixed in this release is Moderate.
This release incorporates the following bug fixes and mitigations:
* Fix Out-of-bounds read & write in RFC 3211 KEK Unwrap. (CVE-2025-9230)
* Fix Timing side-channel in SM2 algorithm on 64 bit ARM. (CVE-2025-9231)
* Fix Out-of-bounds read in HTTP client no_proxy handling. (CVE-2025-9232)

Release information:
https://github.com/openssl/openssl/blob/openssl-3.2/NEWS.md#major-changes-between-openssl-324-and-openssl-325-1-jul-2025

OpenSSL 3.2.5 is a bug fix release.
This release incorporates the following bug fixes and mitigations:
* Miscellaneous minor bug fixes.

(From OE-Core rev: ef6bbf39c10ff7bd8ad36d5d2f59ddd0756e0141)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Aleksandar Nikolic
9dafc77bd8 scripts/install-buildtools: Update to 5.0.12
Update to the 5.0.12 release of the 5.0 series for buildtools

(From OE-Core rev: 2f69dceeebbb67ce06ceda8782a60a71a0ed7f22)

Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Archana Polampalli
e085cf0d53 go: fix CVE-2025-47906
If the PATH environment variable contains paths which are executables
(rather than just directories), passing certain strings to LookPath
("", ".", and ".."), can result in the binaries listed in the PATH
 being unexpectedly returned.

(From OE-Core rev: ed6df1883225ec08e637a0d7a15a6a5da4665d8d)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
8c8680d4c0 ffmpeg: ignore 8 CVEs fixed in 6.1.1 and 6.1.3 releases
Following are mentioned in commit upgrading the recipe to 6.1.3:
* CVE-2023-49502 CVE-2023-50007 CVE-2023-50008 CVE-2024-31578 CVE-2024-31582

Following are fixed via mentioned commits already in 6.1.1:
* CVE-2023-50009: 162b4c60c8
* CVE-2023-50010: e809c23786
* CVE-2024-31585: 3061bf668f

(From OE-Core rev: 8286570b3baf275ff48c45ca0864348a8d3faa01)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
ac57f3b9d2 tiff: ignore 5 CVEs
These CVEs are for tools which were removed in v4.6.0 via [1] and
re-introduced again in v4.7.0 via [2].

[1] eab89a627f
[2] 9ab54a8580

(From OE-Core rev: faf1e12ae0f9de56402830460315e5be0d13f4a5)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Ross Burton
aca68169cc pulseaudio: ignore CVE-2024-11586
As per the linked ticket, this issue is related to an Ubuntu-specific
patch that we don't have.

(From OE-Core rev: dc81fdc6bdf8ab39b7f2fd994d50256430c36558)

(From OE-Core rev: 72e63e44a0c6ad5a408c4dc59a24288c36463439)

(From OE-Core rev: 4cdcb27238be40e815ce5a0b67ce419331079801)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
da7d29485c expat: follow-up for CVE-2024-8176
Expat release 2.7.3 implemented a follow-up for this CVE.
References:
* https://github.com/libexpat/libexpat/blob/R_2_7_3/expat/Changes
* https://security-tracker.debian.org/tracker/CVE-2024-8176
* https://github.com/libexpat/libexpat/pull/1059

(From OE-Core rev: 5bbb9ee52674f5aa6eed5d6cf3f515704092994d)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
9fb26deedd ghostscript: patch CVE-2025-59800
Pick commit mentioned in the NVD report.

(From OE-Core rev: a63bb2ccc8294c8a97f5957f1ca9f0a4880713ac)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
0db5ae637d ghostscript: patch CVE-2025-59799
Pick commit mentioned in the NVD report.

(From OE-Core rev: 2f1d5b9ad1af6d2b28e9e7b46aadd879a67b8fc6)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
7698e2910d ghostscript: patch CVE-2025-59798
Pick commit mentioned in the NVD report.

(From OE-Core rev: 4a2f47d9541d7a13da7a9ce16bd5088870c45ec4)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
8a80300d0f gstreamer1.0: ignore CVE-2025-2759
Copy statement from [1] that it is problem of installers (non-Linux).
Also [2] linked in NVD says "Fixed in 1.25.1 Gstreamer Installer".
Since Yocto builds from sources into our own packages, ignore it.

[1] https://security-tracker.debian.org/tracker/CVE-2025-2759
[2] https://www.zerodayinitiative.com/advisories/ZDI-25-268/

(From OE-Core rev: 99ee1df6bde2ffd4fa2ddea44c0a9b94d9d77bae)

(From OE-Core rev: 7937625a30f6046ba483a000497b15169659f5eb)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:58 -07:00
Peter Marko
bb7e27a5db gstreamer1.0: ignore CVEs fixed in plugins
All these CVEs were fixed in recent commits.

(From OE-Core rev: c5a68886247d4417de4ecaa8460e25e84ab93b0d)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:57 -07:00
Hitendra Prajapati
09dadcefe3 grub2: mark CVE-2024-2312 as not applicable
This issue is specific to the peimage module that Ubuntu add, and is not
an upstream issue.

(From OE-Core rev: 8d2fe3f403e6435e1ffe122a6776381090752d8a)

(From OE-Core rev: d005eda88dad37f31bdc59e45e20b209f3771a26)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:57 -07:00
Peter Marko
a981860c32 busybox: patch CVE-2025-46394
Pick commit mentioning this CVE.
Additionally fix test broken by the CVE fix.

(From OE-Core rev: e348e10f35cc082ebfe22c890c5f64c4a06dcea3)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-13 12:42:57 -07:00
Adam Blank
fbc7beca68 ref-manual/variables.rst: fix the description of STAGING_DIR
There is no single "recipe-sysroots" directory, but rather many
"recipe-sysroot*" directories.

(From yocto-docs rev: 6f086fd3d9dbbb0c80f6c3e89b8df4fed422e79a)

Signed-off-by: Adam Blank <adam.blank.g@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f2d6e228409cb1dd1dbf339c405699ac6d3900be)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Antonin Godard
8e94da9219 ref-manual/structure: document the auto.conf file
Add documentation for auto.conf, which is used by external tools for
automatically setting variables.

(From yocto-docs rev: c16beccd7fa836a6bc77bb0a9d3274508bd3c6ff)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 134e54a75e0144c4629f702c6f43e92ed1f12dce)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Talel BELHAJ SALEM
a405b570b3 dev-manual/building.rst: add note about externalsrc variables absolute paths
(From yocto-docs rev: ab776a0348877d8dbf6c37823a65715fe30e34f6)

Signed-off-by: Talel BELHAJ SALEM <bhstalel@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 33166d70b6ad093bd95ffccafc0b07820682f656)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Adam Blank
ec2689b334 ref-manual/variables.rst: fix the description of KBUILD_DEFCONFIG
Remove some leftover confusing mention of KMACHINE.

(From yocto-docs rev: fd6f21b40b7fb58e7b465bbe97b8308f7a09313d)

Signed-off-by: Adam Blank <adam.blank.g@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 582ee9e0b4930aea03255542b3d3913df19af8b0)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Adam Blank
77c866901d kernel-dev/common.rst: fix the in-tree defconfig description
The description of the relation between KBUILD_DEFCONFIG and
SRC_URI is reversed. In fact it is the SRC_URI provided
defconfig which will be dropped by the kernel-yocto class
if both are provided.

(From yocto-docs rev: 3dc8212748d014f0b2cd1bb6777404bafe6d5a58)

Signed-off-by: Adam Blank <adam.blank.g@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit a808420655a0976ba08f013f468cf80f379b1d89)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Adrian Freihofer
ea119eaa46 expect: fix native build with GCC 15
This does not work for native builds:
  CFLAGS += "-std=gnu17"
The line from native.bbclass gets priority:
  CFLAGS = "${BUILD_CFLAGS}"

From bitbake-getvar -r expect-native CFLAGS
  ...
  append ...poky/meta/recipes-devtools/expect/expect_5.45.4.bb:44
     "-std=gnu17"
  set ...poky/meta/classes-recipe/native.bbclass:44
     "${BUILD_CFLAGS}"
  ...

(From OE-Core rev: 2696c50af9946f425ccaf7d0e7e0eb3fd87c36bb)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Khem Raj
ddda72f2bd expect: Fix build with GCC 15
Stick to C17 standard as GCC 15 switches to C23

(From OE-Core rev: a1ac756f2f55c4f27a95cb8b1e63ee2db06dd327)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Ross Burton
b95695a302 expect: cleanup do_install
Clean up the do_install append, and remove a long-standing unused
variable that appears to be intending to not install the scripts but
would have never actually done that as the relevant override since 2008
has been task-install.  As we've been installing the scripts, keep
instaling them.

(From OE-Core rev: 10a501b3bfe8f73ce2eb15673900df71e547b54d)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Ross Burton
e49d690cf1 expect: don't run aclocal in do_configure
expect has a hand-maintained aclocal.m4 so don't run aclocal, which has the
side effect of not deleting the aclocal.m4 file which pulls in macros.

The build works without this change more through luck and a combination
of behaviours than design.

(From OE-Core rev: 61dbfd66210b090ec8abfbf1f4688e5691299d68)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Ross Burton
357a4beab6 expect: update code for Tcl channel implementation
Tcl 8.4.0 changed the channel implementation, take a patch submitted
upstream to update the code for the new interface and remove the silencing
of the incompatible assignment error which was due to this issue.

(From OE-Core rev: 20cadf7b66f30e8a3b409b4a96eced614ac21013)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:46 -07:00
Adrian Freihofer
c8a81cd75f expect: Revert "expect-native: fix do_compile failure with gcc-14"
In the meantime there is a cleaner fix on the master branch and we also
need to back-port more patches to support gcc-15 as well.

This reverts commit 8bfdb53247 which is
not in the master branch as a preparation for cherry-picking the newer
fixes from there.

(From OE-Core rev: 4ea89ba363228aa5e16412f85644608f4c645d5f)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:45 -07:00
Vijay Anusuri
6a8b1708e0 gstreamer1.0-plugins-bad: Fix CVE-2025-3887
Upstream-Status: Backport from
5463f0e097
& bcaab36098

(From OE-Core rev: 7ef632c2a85e42c16b5509edec822705a236cafb)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:45 -07:00
Yogita Urade
2ce56bd707 tiff: fix CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where"
condition, triggered when the library processes a specially crafted TIFF
image file.[EOL][EOL]By providing an abnormally large image height value
in the file's metadata, an attacker can trick the library into writing
attacker-controlled color data to an arbitrary memory location. This
memory corruption can be exploited to cause a denial of service (application
crash) or to achieve arbitrary code execution with the permissions of the user.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-9900

Upstream patch:
3e0dcf0ec6

(From OE-Core rev: c1303b8eb4e85a031a175867361876a256bfb763)

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-10-09 12:16:45 -07:00
Antonin Godard
eae801c832 test-manual/yocto-project-compatible.rst: fix a typo
Fix a typo in yocto-project-compatible.rst.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 6b248c541580eadab663f605ce6310302d7a2dae)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit a84c234acfedfa714419006c743405e2f9acaedc)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Quentin Schulz
e9069b0404 contributor-guide: submit-changes: make "Crediting contributors" part of "Commit your changes"
There's no need to differentiate crediting contributors from committing
your changes, so let's simply make it the last step of "Commit your
changes" section.

This simply indents the text so it's now part of "Commit your changes"
list instead of the main list in the "Implement and commit changes"
section. Because of this reorganisation, the instruction to use "git
commit --amend" to add the contributors is moved to a note, and the
first few sentences are reworded to better match the wording of other
items in the "Commit your changes" list of instructions.

(From yocto-docs rev: 6ba61d7bc3e641b3d4194f2d99a276f3b29f82b8)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit eff4d14e28d323ebfdaeb0c5c805b5f1e2ad153d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Quentin Schulz
9baa7dfdfd contributor-guide: submit-changes: number instruction list in commit your changes
... so that it's clear that you need to read and follow each and every
instruction in this list.

(From yocto-docs rev: 6dfef402b2785675870d513f4afeed6b7e7a4df1)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c628a489f081925fabaabb5acac6752251150269)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Quentin Schulz
1b7cb8a80c contributor-guide: submit-changes: reword commit message instructions
This should hopefully make it clearer what is expected from the
contributor.

This follows my understanding of git-commit(1)[1] where the following is
a git commit message:

"""
git commit title

git commit description
"""

I'm putting the "Fixes [YOCTO" line in "body of the commit message" so
it's understood as being different from the git commit description so
that the note admonition allowing us to have an empty commit description
doesn't apply to the "Fixes [YOCTO" line.

[1] https://www.man7.org/linux/man-pages/man1/git-commit.1.html#DISCUSSION

(From yocto-docs rev: f0f9d40a04cba684a476caaa053b6f24ade9fb99)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit b84903a760350bd118c56ea9ce4e98039edf6e55)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Quentin Schulz
afd75083e9 contributor-guide: submit-changes: make the Cc tag follow kernel guidelines
The kernel docs specifies[1] a Cc: tag and not CC: tag, so let's align
with that.

[1] https://www.kernel.org/doc/html/latest/process/submitting-patches.html#when-to-use-acked-by-cc-and-co-developed-by

(From yocto-docs rev: 49934860119ccd0844b0c600ea6be0a776b11a12)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f800fef4e9e2c1d3584ac49be8324638d2923b17)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Quentin Schulz
42ad822f6b contributor-guide: submit-changes: align CC tag description
The other tag descriptions have the double colon outside of the
highlight, and start the sentence with a lowercase word, so let's align
the CC tag with those.

(From yocto-docs rev: 4dba30a040fd64e4e547bc485878b90e691c1373)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f116e93fb335e9d0f85891c4cb501bcf55b18ccf)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Quentin Schulz
4ae162f572 contributor-guide: submit-changes: clarify example with Yocto bug ID
The example could be understood as the content of the commit message
once the editor (git config core.editor) opens, where the first
line is the actual commit title and not the commit description.

This example would make the Fixes line the commit title, which is not
what we want.

In short, according to my understanding of git-commit(1):

The following is a git commit message:

"""
git commit title

git commit description
"""

Reported-by: Barne Carstensen <barne.carstensen@danfoss.com>
(From yocto-docs rev: 5244b934db878a5bdb73118f1629cf20e391faa7)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit a5862406bf3230befe9db9f2539bbbc86c02015d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Quentin Schulz
93eb8227dd contributor-guide: submit-changes: fix improper bold string
I don't know what was the initial intent but this doesn't seem right, so
let's remove the bold formatting.

Fixes: 4abe87cb20d3 ("contributor-guide: submit-changes: detail commit and patch creation")
Cc: Michael Opdenacker <michael.opdenacker@rootcommit.com>
(From yocto-docs rev: 80be07404bd8215b198f5fb0936e3786072559b6)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 6c499b3796a578a0fe4c319c9547b4321b0d41df)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Barne Carstensen
b55b77df5f test-manual: update runtime-testing Exporting Tests section
This has changed since commit ed4238487c81 ("testexport: Fix to work as
an image class") in OE-Core.

[Antonin Godard: mention oecore commit in commit body]

(From yocto-docs rev: fd16d625089eab377ad3061f6aa21f94c251deb9)

Signed-off-by: Barne Carstensen <barne.carstensen@danfoss.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 2caa8e581feaf3640bea68108f9a02583b17b21b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Divya Chellam
619804e1fc vim: upgrade 9.1.1652 -> 9.1.1683
Handles CVE-2025-9389

Changes between 9.1.1652 -> 9.1.1683
====================================
https://github.com/vim/vim/compare/v9.1.1652...v9.1.1683

(From OE-Core rev: 55e0c38dc28b73fa689446e2d5e564d235a24084)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Chris Laplante
b079439d07 util-linux: use ${B} instead of ${WORKDIR}/build, to fix building under devtool
This change already exists on master, but it was made as part of the
larger migration to ${UNPACKDIR} and is not cherry-pickable.

See: d73595df696 (recipes: Update WORKDIR references to UNPACKDIR)

(From OE-Core rev: 378f87f087651bacdb6efc6b98168bc6ba865070)

Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Nitin Wankhade
15078fe63f examples: genl: fix wrong attribute size
This example no longer works on more recent kernels:

genl-family-get
error: Invalid argument

dmesg says:
netlink: 'genl-family-get': attribute type 1 has an invalid length.

Fix this and also zero out the reserved field in the genl header,
while not validated yet for dumps this could change.

Upstream-Status: Backport [https://git.netfilter.org/libmnl/patch/?id=54dea548d796653534645c6e3c8577eaf7d77411]

Reported-by: Divyanshu Rathore <Divyanshu.Rathore@bmwtechworks.in>
(From OE-Core rev: bae5ecea1c40847ffc3760173192f85e28ed9d7b)

Signed-off-by: Florian Westphal <fw@strlen.de>
(cherry picked from commit 54dea548d796653534645c6e3c8577eaf7d77411)
Signed-off-by: Divyanshu Rathore <divyanshu.rathore@bmwtechworks.in>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
AshishKumar Mishra
2a912b5065 p11-kit: backport fix for handle USE_NLS from master
Disable NLS in the build when USE_NLS is off.

(From OE-Core rev: b94798ecd535956ef4565663710ea9a701ff21ed)

This change corresponds to upstream eeb3974472
from master .
Since the p11-kit version are different between master & scarthgap
applied the patch manually

(From OE-Core rev: 96602ea67463170c4cadf748525f5615ce9bbd91)

Signed-off-by: Philip Lorenz <philip.lorenz@bmw.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: AshishKumar Mishra <emailaddress.ashish@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Philip Lorenz
5ee0ccc856 shared-mime-info: Handle USE_NLS
Skip building of translations when NLS is disabled.

(From OE-Core rev: b58a3f4e9c78522423a94821b7ba7a35eb18f75a)

(From OE-Core rev: 49a9aebc0e9f668cf2896d0b522f8194bb4049ad)

Signed-off-by: Philip Lorenz <philip.lorenz@bmw.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: AshishKumar Mishra <emailaddress.ashish@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
AshishKumar Mishra
b418221cab systemd: backport fix for handle USE_NLS from master
Do not build translations when NLS is disabled.
(From OE-Core rev: 83795ef6c3fa12a863cd20b7ec1a2607606987b6)

This change corresponds to upstream d848b454e6
from master .
Since the systemd version are different between master & scarthgap
applied the patch manually

(From OE-Core rev: 780b902a0fd124420f00ee5e55f4fd362d2d8913)

Signed-off-by: Philip Lorenz <philip.lorenz@bmw.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: AshishKumar Mishra <emailaddress.ashish@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Martin Jansa
e753480a05 lib/oe/utils: use multiprocessing from bb
Fixes build with python-3.14

It was added to bitbake in 62be9113d98fccb347c6aa0a10d5c4ee2857f8b6
and oe-core now requires latest bitbake already, so we can use this.

[YOCTO #15858]

(From OE-Core rev: 92369c8acf0b4d6c2ced88abbda5f5defd276ba2)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Reviewed-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Martin Jansa
f82e18eee1 sanity.conf: Update minimum bitbake version to 2.8.1
Needed for multiprocessing module in bb used in the next commit.

It was added to bitbake in 62be9113d98fccb347c6aa0a10d5c4ee2857f8b6
which was backported to 2.8 branch and tagged as 2.8.1

(From OE-Core rev: 95888aa944847cf6dbfac501997a3e2980344b66)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Adrian Freihofer
f19d608f58 llvm: fix build with gcc-15
Pick 3 patches from meta-clang's scartsgap branch to fix build with
gcc-15. These patches are already in upstream llvm but not in
18.1.8 release.

Note: the patch 0039-Fix-build-with-GCC-15.patch from meta-clang
is not needed as it targets lldb which we do not build.

(From OE-Core rev: a2c5e1d6ec6c905bbf31f017a010b0496b39b211)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Adrian Freihofer
8cb12165ed llvm: update from 18.1.6 to 18.1.8
(From OE-Core rev: 3a171fde7d5cb0c2dfb6d1b11f08b061826284c2)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Yogita Urade
4543508143 curl: fix CVE-2025-9086
1, A cookie is set using the secure keyword for https://target
2, curl is redirected to or otherwise made to speak with http://target
(same hostname, but using clear text HTTP) using the same cookie set
3, The same cookie name is set - but with just a slash as path (path="/").
Since this site is not secure, the cookie should just be ignored.
4, A bug in the path comparison logic makes curl read outside a heap buffer boundary

The bug either causes a crash or it potentially makes the comparison come to
the wrong conclusion and lets the clear-text site override the contents of
the secure cookie, contrary to expectations and depending on the memory contents
immediately following the single-byte allocation that holds the path.

The presumed and correct behavior would be to plainly ignore the second set of
the cookie since it was already set as secure on a secure host so overriding
it on an insecure host should not be okay.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-9086

Upstream patch:
https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb6

(From OE-Core rev: b0cc7001a628deaa96d1aebb5ded52797898a0be)

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Ross Burton
829e065196 libxslt: apply patch for CVE-2025-7424
This patch is taken from the upstream bug, and is used by Apple in their
build of WebKit.

(From OE-Core rev: f59e07fd9f6c437e30431607763672fde42511ad)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Anil Dongare <adongare@cisco.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-30 08:01:59 -07:00
Haixiao Yan
e3ce89324d buildtools-tarball: fix unbound variable issues under 'set -u'
When Bash runs with 'set -u' (nounset), accessing an unset variable
directly (e.g. [ -z "$SSL_CERT_FILE" ]) causes a fatal "unbound variable"
error. As a result, the fallback logic to set SSL_CERT_FILE/SSL_CERT_DIR
is never triggered and the script aborts.

The current code assumes these variables may be unset or empty, but does
not guard against 'set -u'. This breaks builds in stricter shell
environments or when users explicitly enable 'set -u'.

Fix this by using parameter expansion with a default value, e.g.
"${SSL_CERT_FILE:-}", so that unset variables are treated as empty
strings. This preserves the intended logic (respect host env first, then
CAFILE/CAPATH, then buildtools defaults) and makes the script robust
under 'set -u'.

(From OE-Core rev: 4cf131ebd157b79226533b5a5074691dd0e1a4ab)

Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4d880c2eccd534133a2a4e6579d955605c0956ec)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-22 13:17:52 -07:00
Libo Chen
54578cd039 runqemu: fix special characters bug
Fix the bug in runqemu that happens when the file path contains
the specific words such as 'vmlinux', e.g. /home/frank/vmlinux.

runqemu - ERROR - wic doesn't need kernel

(From OE-Core rev: 0276bd0e8d5cefb6f98d685bc9faa0451780bef9)

Signed-off-by: Libo Chen <libo.chen.cn@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3c186fe7741adecb0887e36c8a9164a58fc16437)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-22 13:17:52 -07:00
Martin Jansa
d2c6c66c1e license.py: avoid deprecated ast.Str
* it's deprecated since python-3.12 and removed in 3.14 causing:

openembedded-core/meta/lib/oe/license.py', lineno: 176, function: visit
     0172:
     0173:        LicenseVisitor.__init__(self)
     0174:
     0175:    def visit(self, node):
 *** 0176:        if isinstance(node, ast.Str):
     0177:            lic = node.s
     0178:
     0179:            if license_ok(self._canonical_license(self._d, lic),
     0180:                    self._dont_want_licenses) == True:
Exception: AttributeError: module 'ast' has no attribute 'Str'

(From OE-Core rev: df9898f13c261eeac2cc343569c843bc7dcaf163)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-22 13:17:52 -07:00
Jinfeng Wang
838a12c621 systemtap: Fix task_work_cancel build
Backport a patch to fix:
 107 |         twork = task_work_cancel(task, func);
      |                                        ^~~~
      |                                        |
      |                                        task_work_func_t {aka void (*)(struct callback_head *)}
/work/rad/wrs/wrl-systemtap-demo/qemux86-64-std-23p17/build/tmp-glibc/work/x86_64-linux/systemtap-native/4.8-r0/recipe-sysroot-native/usr/share/systemtap/runtime/stp_task_work.c:107:40: note: expected 'struct callback_head *' but argument is of type 'task_work_func_t' {aka 'void (*)(struct callback_head *)'}
/work/rad/wrs/wrl-systemtap-demo/qemux86-64-std-23p17/build/tmp-glibc/work/x86_64-linux/systemtap-native/4.8-r0/recipe-sysroot-native/usr/share/systemtap/runtime/stp_task_work.c:13:26: error: incompatible types when assigning to type 'struct callback_head *' from type 'bool' {aka '_Bool'}
   13 | #define task_work_cancel (* (task_work_cancel_fn)kallsyms_task_work_cancel)
      |                          ^
/work/rad/wrs/wrl-systemtap-demo/qemux86-64-std-23p17/build/tmp-glibc/work/x86_64-linux/systemtap-native/4.8-r0/recipe-sysroot-native/usr/share/systemtap/runtime/stp_task_work.c:107:17: note: in expansion of macro 'task_work_cancel'
  107 |         twork = task_work_cancel(task, func);
      |                 ^~~~~~~~~~~~~~~~

(From OE-Core rev: 58509b54a464cd5b692ad4ef8dd333eb9c14abfa)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-22 13:17:52 -07:00
Vijay Anusuri
c0775e4999 cups: Fix for CVE-2025-58060 and CVE-2025-58364
Upstream-Status: Backport from
595d691075
& e58cba9d6f

(From OE-Core rev: 6f3b7e6efdf14d080b74a48d8cdc445255e9025f)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-22 13:17:52 -07:00
Vijay Anusuri
d4f27582ea cups: upgrade 2.4.10 -> 2.4.11
Removed CVE-2024-47175 patches which is fixed by upgrade
system-cups.slice added to FILES

Changelog
==========

v2.4.11

CUPS 2.4.11 brings several bug fixes regarding IPP response validation, processing PPD values, Web UI support (checkbox support, modifying printers) and others fixes.

Detailed list of changes is available in CHANGES.md

(From OE-Core rev: 117a401756a3cf26d1fc0a6694b0c42967e00fec)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-22 13:17:52 -07:00
Ross Burton
2eccfb8b45 grub2: fix CVE-2024-56738
Backport an algorithmic change to grub_crypto_memcmp() so that it
completes in constant time and thus isn't susceptible to side-channel
attacks.

(From OE-Core rev: 319210be147ec57518c237cb705857aeda9943e6)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 30a1cc225a2bd5d044bf608d863a67df3f9c03be)
Signed-off-by: Shubham Pushpkar <spushpka@cisco.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-22 13:17:52 -07:00
Divya Chellam
6b93199776 wpa-supplicant: fix CVE-2022-37660
In hostapd 2.10 and earlier, the PKEX code remains active even after a successful
PKEX association. An attacker that successfully bootstrapped public keys with
another entity using PKEX in the past, will be able to subvert a future bootstrapping
by passively observing public keys, re-using the encrypting element Qi and subtracting
it from the captured message M (X = M - Qi). This will result in the public ephemeral
key X; the only element required to subvert the PKEX association.

CVE-2022-37660-0001, CVE-2022-37660-0002, CVE-2022-37660-0003 and  CVE-2022-37660-0004
are dependent commits while CVE-2022-37660-0005 is actual CVE fix.

Reference:
https://security-tracker.debian.org/tracker/CVE-2022-37660

Upstream-patches:
https://git.w1.fi/cgit/hostap/commit/?id=9d3f347a2b14652e767d51142600206a32676b62
https://git.w1.fi/cgit/hostap/commit/?id=80213629981a21825e4688fde1b590e4c4d4bcea
https://git.w1.fi/cgit/hostap/commit/?id=bdcccbc2755dd1a75731496782e02b5435fb9534
https://git.w1.fi/cgit/hostap/commit/?id=d7be749335f2585658cf98c4f0e7d6cd5ac06865
https://git.w1.fi/cgit/hostap/commit/?id=15af83cf1846870873a011ed4d714732f01cd2e4

(From OE-Core rev: 91848ac13ec18f98469f7f8ed68c6153fea31607)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-22 13:17:52 -07:00
Lee Chee Yang
31b2c45764 migration-guides: add release notes for 5.0.12
(From yocto-docs rev: 79b37fe79fee03a46a4d791fd9f50e23d4e24797)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit e77139b5c616e6e5ad436eb91416fd804389425f)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-17 15:36:45 -07:00
Joao Marcos Costa
ef363542ca ref-manual/variables.rst: expand IMAGE_OVERHEAD_FACTOR glossary entry
There's a (second) overhead factor applied in images generated with Wic,
and this is already documented in the .wks reference. However, the
IMAGE_OVERHEAD_FACTOR entry does not mention it, and by looking at the
partition sizes (e.g. with parted) one may find it confusing that they
don't match with the expected rootfs size (e.g. in a scenario where the
extra space is "0" and IMAGE_OVERHEAD_FACTOR="1.0").

This second overhead is already documented, though:
https://docs.yoctoproject.org/ref-manual/kickstart.html#command-part-or-partition

Mention the '--overhead-factor' option in the glossary entry and add a
reference to the wks documentation.

(From yocto-docs rev: 18a0dcefd4e688d60e57e8531b0ac283764e4e89)

Signed-off-by: Joao Marcos Costa <joaomarcos.costa@bootlin.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit b9040e20b015e9b02683ec3014e4ade5eb59d41a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-17 15:36:45 -07:00
Antonin Godard
91a33194a4 dev-manual/security-subjects.rst: update mailing lists
Update mailing lists following changes by Michael Halstead
(https://lists.yoctoproject.org/g/yocto-security/message/1478).

Also fix formatting/spacing.

(From yocto-docs rev: c5c104ea79a42d630e33f4f002aeec0bb9cbb3b3)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 8066aa92a1acae6c99fbee92d24ee1feea65d974)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-17 15:36:45 -07:00
Jan Vermaete
4807896466 sdk: The main in the C example should return an int
see C17 (ISO/IEC 9899:2018)

(From yocto-docs rev: 260b386dd2184f9d32547e08d1ed578c45d86cc9)

Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1ebaed299f7ef80a49b68608f45bf25884900d13)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-17 15:36:45 -07:00
Lee Chee Yang
3ab5d2556b migration-guides: add release notes for 4.0.29
(From yocto-docs rev: 1c219c46556e59757073f3ca7b94f9ef14d2a8ba)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d3bbfed9cad4cda0960ee0623c728ea2a18e1b29)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-17 15:36:44 -07:00
Martin Jansa
3bb8b0dd37 bitbake: bitbake: Bump version to 2.8.1
To indicate compatibility with python 3.14

[YOCTO #15858]

(Bitbake rev: 1c9ec1ffde75809de34c10d3ec2b40d84d258cb4)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-17 15:36:44 -07:00
Joshua Watt
f00c4968ff bitbake: Use a "fork" multiprocessing context
Python 3.14 changes the default multiprocessing context from "fork" to
"forkserver"; however bitbake heavily relies on "fork" to efficiently
pass data to the child processes. As such, make "fork" context in the bb
namespace and use it in place of the normal multiprocessing module.

Note that multiprocessing contexts were added in Python 3.4, so this
should be safe to use even before Python 3.14

[YOCTO #15858]

(Bitbake rev: 15d7448e04aa78c827d2cef9eb1a62bd6e0dd119)

Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-17 15:36:44 -07:00
Kyungjik Min
6400741e0c pulseaudio: Add audio group explicitly
Since pulseaudio-server requires the audio group, we explicitly add it.

When use useradd-staticids or do not use the default group in
base-passwd, an error will occur because the audio group is not defined.

NOTE: pulseaudio: Performing useradd with [--root
TOPDIR/tmp/work/cortexa72-poky-linux/pulseaudio/17.0/recipe-sysroot
--home-dir /var/run/pulse --gid 998 --groups audio,pulse
--no-create-home --system --shell /bin/false --uid 998 pulse]
useradd: group 'audio' does not exist
ERROR: pulseaudio: useradd command did not succeed.

(From OE-Core rev: baa5e7ea5f37f54c2a00080798ad7fb4c0664f69)

Signed-off-by: Kyungjik Min <dpmin7@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-09 09:08:09 -07:00
Deepak Rathore
b078df11eb default-distrovars.inc: Fix CONNECTIVITY_CHECK_URIS redirect issue
The default CONNECTIVITY_CHECK_URIS uses "https://yoctoproject.org/connectivity.html"
which redirect to "https://www.yoctoproject.org/connectivity.html".

Some network configurations with proxies or restricted internet access
don't handle HTTP redirects properly during the sanity check phase,
causing build failures with:

ERROR:  OE-core's config sanity checker detected a potential misconfiguration.
Either fix the cause of this error or at your own risk disable the checker (see sanity.conf).
Following is the list of potential problems / advisories:

Fetcher failure for URL: 'https://yoctoproject.org/connectivity.html'. URL doesn't work.

Updated the default URL to use the final destination directly to avoid
redirect-related connectivity check failures.

Also updated SDK test cases in https.py to use the corrected URL for
consistency.

(From OE-Core rev: bd624ebbcf4e6d7a24c4ab232ca2e138b1ac3433)

Signed-off-by: Deepak Rathore <deeratho@cisco.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 60cdf960a3560f391babd559737f1afb31fb2c5c)
Signed-off-by: Deepak Rathore <deeratho@cisco.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-09 09:08:09 -07:00
Hongxu Jia
5c8ceb35b4 rpm: keep leading `/' from sed operation
For /usr/lib/rpm/macros, Yocto explicitly set OECMAKE_FIND_ROOT_PATH_MODE_PROGRAM
= "ONLY" [1][2] to search tools from CMAKE_FIND_ROOT_PATH [5] which locates in
native recipe sysroot or HOSTTOOLS_DIR. If found in native recipe sysroot or
HOSTTOOLS_DIR, the sed operation removed leading `/'

root@qemux86-64:~# vi /usr/lib/rpm/macros
...
%__xz                   usr/bin/xz
%__make                 usr/bin/make
%__zstd                 usr/bin/zstd
%__quilt                usr/bin/quilt
%__patch                usr/bin/patch
...

root@qemux86-64:~# rpm --eval "%{__xz} %{__make} %{__zstd} %{__quilt} %{__patch}"
usr/bin/xz usr/bin/make usr/bin/zstd usr/bin/quilt usr/bin/patch

This commit keeps leading `/' from sed operation, and similar reason for
/usr/lib/cmake/rpm/rpm-targets.cmake

After applying this commit:
root@qemux86-64:~# rpm --eval "%{__xz} %{__make} %{__zstd} %{__quilt} %{__patch}"
/usr/bin/xz /usr/bin/make /usr/bin/zstd /usr/bin/quilt /usr/bin/patch

[1] https://git.openembedded.org/openembedded-core/commit/?id=f4ea12f6635125ee793f4dd801c538c0186f9dc3
[2] https://cmake.org/cmake/help/latest/variable/CMAKE_FIND_ROOT_PATH_MODE_PROGRAM.html

(From OE-Core rev: cab720b5508411f9a63025e2765d4d46914a1404)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0d0773879ab9520c475c4a8c930b2e663de0e032)
Signed-off-by: Deepak Rathore <deeratho@cisco.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-09 09:08:09 -07:00
Stanislav Vovk
da9006ac51 libpam: fix CVE-2024-10963
Upstream-Status: Backport from 940747f88c

(From OE-Core rev: 2be498fd0872d7ccbf0e9b2eb0a1d4879823c968)

Signed-off-by: Stanislav Vovk <stanislav.vovk@est.tech>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-09 09:08:09 -07:00
Vrushti Dabhi
328b35d7e3 curl: update CVE_STATUS for CVE-2025-5025
This CVE applies only when curl is built with wolfSSL support.
Revised CVE_STATUS description to align with CVE details.

Reference: https://github.com/openembedded/openembedded-core/commit/93ae0758ef35

(From OE-Core rev: fddc4dcc89a9491abdf8f5d0ea4df9a6526b1538)

Signed-off-by: Vrushti Dabhi <vdabhi@cisco.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-09 09:08:09 -07:00
Peter Marko
9ce8f26d37 sudo: remove devtool FIXME comment
This comment should not have been merged.
It shows that the license did not change.

(From OE-Core rev: a19afb7db1b9995ce433f8bfeb5406c9fd1fdc19)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:57 -07:00
Jiaying Song
844ad4dc30 ruby-ptest : some ptest fixes
- Skip the test_rm_r_no_permissions test under the root user, as
  deletion always succeeds.
- Filter out tests under the -ext- directory in run-ptest. Due to the
  commit [1],the packaging of .so test files under the .ext directory
  was removed. As a result, adjust the test filtering rules to avoid
  test failures caused by missing files.
- Add installation of rdoc.rb and did_you_mean.rb files in
  do_install_ptest to ensure complete test dependencies.
- Add init.rb file to PTEST installation path.

(From OE-Core rev: fbbfbfd59fe74c6f742af29d32fae1327068b9ff)

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:57 -07:00
Khem Raj
285b5070bb cpio: Pin to use C17 std
Fixes build with GCC-15 which is defaulting to C23

For scarthgap also add it in BUILD_CFLAGS.

(From OE-Core rev: 874701c4fd96134e18f73eba4bd5c8b513ad251b)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Michael Halstead
ebbbada5b8 yocto-uninative: Update to 4.9 for glibc 2.42
(From OE-Core rev: 9f0cc5fe65f71cf1d28b7a34272f29db03dc6778)

Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Michael Halstead
438c0f8acb yocto-uninative: Update to 4.8 for GCC 15.1
(From OE-Core rev: 02b285fb0258587e9b78ee4b1b4b2eea0e0a4b3e)

Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Martin Jansa
225f4064f3 dbus-glib: fix build with gcc-15
(From OE-Core rev: 6c546567adc84667fc76d777b02fc78e9c472f51)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Martin Jansa
41e1323758 binutils: fix build with gcc-15
(From OE-Core rev: f7d791585632b7db5f80090c92b5389eacd60fab)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Martin Jansa
cb17b874de elfutils: fix build with gcc-15
(From OE-Core rev: ece06774fd1c261c333f61779579614e0b40b927)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Khem Raj
e2e54e0354 libtirpc: Fix build with gcc-15/C23
Update declarations to allow building with gcc-15 with C23 std
being default now.

Fixes:
error: conflicting types for 'xdr_opaque_auth

(From OE-Core rev: 65036ab0a519c14338fb26ac8162d159d965da2b)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Martin Jansa
765333686d rust-llvm: fix build with gcc-15
As in meta-clang for clang-native:
f915bbfc71

(From OE-Core rev: 818750db213dc2c0daac4757d078092be6de3fe6)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Martin Jansa
52ac1f3309 libgpg-error: fix build with gcc-15
Backport a fix for native build with gcc-15 on host

(From OE-Core rev: cef0a6c3245a2556614f7e009c2e00e1eb16e08e)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Martin Jansa
7de6526866 pkgconfig: fix build with gcc-15
* on hosts with gcc-15 or whenever glib PACKAGECONFIG isn't enabled
  and pkgconfig uses own old bundled glib

* fixes:
  http://errors.yoctoproject.org/Errors/Details/853015/
../../../git/glib/glib/goption.c:169:14: error: two or more data types in declaration specifiers
  169 |     gboolean bool;
      |              ^~~~
../../../git/glib/glib/goption.c:169:18: warning: declaration does not declare anything
  169 |     gboolean bool;
      |                  ^

(From OE-Core rev: 948e0170d83949e2d5a676afb81edc44f07c5ba4)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Khem Raj
6b639e1975 unifdef: Don't use C23 constexpr keyword
Fixes build with GCC-15

(From OE-Core rev: 3085783dd5585a85a3853858215689c362429c64)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Khem Raj
2a0bd475e8 gdbm: Use C11 standard
GCC15 is switching defaults to C23 and gdbm is not yet ready to
compile using C23 std.

For scarthgap also add it in BUILD_CFLAGS.

(From OE-Core rev: 97989d81c5e30434594beadd9449e907e98d3ceb)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Khem Raj
0fdc4f72f5 gmp: Fix build with older gcc versions
The fix to make this work with GCC15/C23 caused problems with older gcc versions.
Add a fix for that.

(From OE-Core rev: 237085506a454fb927389d681f30c8c995bc7b2b)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Khem Raj
f06f09415b gmp: Fix build with GCC15/C23
(From OE-Core rev: 5114bea0e9fe3cc15cb4f4d264a932d5b9897296)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Khem Raj
9bea9b7394 m4: Stick to C17 standard
GCC15 imposes C23 by default and 1.4.19 release has gnulib version which
can not be compiled without errors, while new release of m4 is in progress
we might use C17 until then and use GCC15 to compile it

For scarthgap also add it in BUILD_CFLAGS.

(From OE-Core rev: 94ec72b332dce71a2756560ddf738f864e3c853d)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Khem Raj
b63fff4544 unzip: Fix build with GCC-15
Add a patch to remove redundant declarations

(From OE-Core rev: b84d6ceb89277462d7069defaeb9ecfed9c30d56)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Martin Jansa
38b5ba89e6 git: fix build with gcc-15 on host
(From OE-Core rev: a534cf958f9c7d05af795def43ee5ba09fb34ca2)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Martin Jansa
c345127b52 cmake: fix build with gcc-15 on host
(From OE-Core rev: bdfccaa382c1669bff8788e09953c3a770243fab)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Peter Marko
96cf0503ed vim: upgrade 9.1.1198 -> 9.1.1652
Handles CVE-2025-53905, CVE-2025-53906, CVE-2025-55157, CVE-2025-55158.

Changes between 9.1.1198 -> 9.1.1652
====================================
https://github.com/vim/vim/compare/v9.1.1198...v9.1.1652

Refresh patches.

Disable newly introduced wayland support (in patch version 1485).
To this belongs also adding recursion in delete command for dir auto
which was newly failing as there is wayland directory inside now.
If someone is interested, this can be probably enabled, but without
additional work it results in compilation error due to function
redefinition conflicts.

(From OE-Core rev: e87d427d928234ef0441f9ce1fe8631fbe471094)

(From OE-Core rev: 052fd7e55d2c73f13f63267fbfb5e39fa504baa3)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Peter Marko
5368900445 libarchive: patch regression of patch for CVE-2025-5918
Picked commit per [1].

[1] https://security-tracker.debian.org/tracker/CVE-2025-5918

(From OE-Core rev: d2b8d2f7d579779a9effcff677960dbc576b1cc8)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Peter Marko
bf7f8a0202 dpkg: patch CVE-2025-6297
Pick commit per [1] from 1.22.x branch.

[1] https://nvd.nist.gov/vuln/detail/CVE-2025-6297

(From OE-Core rev: 859e5a47744a91b40d5d12c46ff4d8657ef5cf6e)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Peter Marko
3270b1284e glib-2.0: patch CVE-2025-6052
Pick commit per [1].
Also pick commits from [2] which is referencing this CVE as the original
fix was not complete.

[1] https://security-tracker.debian.org/tracker/CVE-2025-6052
[2] https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4681

(From OE-Core rev: 8e85effc1a79e78f34b0b17341dd223bb80b25e4)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Peter Marko
3a75849ff5 glib-2.0: patch CVE-2025-7039
Pick commit per [1].

[1] https://security-tracker.debian.org/tracker/CVE-2025-7039

(From OE-Core rev: 36402f219bc6fc03970e5277d449f2717199cf44)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Peter Marko
3f6144ca20 go-binary-native: ignore CVE-2025-0913
This was already done for all other go recipes.

(From OE-Core rev: 63dfdbf774dc24ea4e736a6d13d6aa8c72ebee4d)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Peter Marko
0ecde9a2a2 qemu: set status of CVE-2024-7730 to fixed
This was backported to v8.2.7 and also it is mentioned in commit
upgrading qemu in oe-core.

(From OE-Core rev: d05df779286288d1f8b69159ebcfc45a853bd23b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Khem Raj
8ade657e16 ncurses: Pin to C17 standard
Newer snapshots of ncurses have the fixes but they are many needed to get
C23 going. Until next release lets stick with C17 even while GCC 15 switches
to C23 defaults.

For scarthgap also add it in BUILD_CFLAGS.

(From OE-Core rev: 2ee706f58a96f30904ac3d292c0ac532739c91ea)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Praveen Kumar
766dfe5115 go: fix CVE-2025-47907
Cancelling a query (e.g. by cancelling the context passed to one of
the query methods) during a call to the Scan method of the returned
Rows can result in unexpected results if other queries are being made
in parallel. This can result in a race condition that may overwrite
the expected results with those of another query, causing the call to
Scan to return either unexpected results from the other query or an
error.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-47907

Upstream-patch:
8a924caaf3

(From OE-Core rev: 22d8ac9884208b8f9b2a69ec6a257c62e1f2f8d2)

Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Archana Polampalli
f584b357c3 ffmpeg: fix CVE-2025-1594
A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1.
This affects the function ff_aac_search_for_tns of the file libavcodec/aacenc_tns.c
of the component AAC Encoder. The manipulation leads to stack-based buffer overflow.
It is possible to initiate the attack remotely. The exploit has been disclosed to the
public and may be used.

(From OE-Core rev: c9a15206bae7f1e85dc3b8812eabb936a7e6d383)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Archana Polampalli
c1b0ad70b4 ffmpeg: upgrade 6.1.2 -> 6.1.3
Fixes:
CVE-2023-6604
CVE-2023-6602
CVE-2025-7700

Changelog:
https://github.com/FFmpeg/FFmpeg/blob/n6.1.3/Changelog

Removed the CVE patches which are already fixed with this upgrade

ref:
c104119c6b
7d79d0a43b
a4b6e37ad5
efedc1d1b6
dcf34f13f5
bed04417b4
b43a12363c
e2b20632b8
43f64690ad

(From OE-Core rev: 901304a22413030b9744006ae18b587146b71953)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Hitendra Prajapati
35cae2014a gstreamer1.0-plugins-base: fix CVE-2025-47807
Upstream-Status: Backport from 9e2238adc1

(From OE-Core rev: 19eca5d7373667dbacd02a2c1dd8c9de8101cd34)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Archana Polampalli
b4135ab254 go: fix CVE-2025-4674
The go command may execute unexpected commands when operating in untrusted VCS repositories.
This occurs when possibly dangerous VCS configuration is present in repositories.
This can happen when a repository was fetched via one VCS (e.g. Git), but contains metadata
for another VCS (e.g. Mercurial). Modules which are retrieved using the go command line,
i.e. via "go get", are not affected.

(From OE-Core rev: efdc4920571677c9051d4402eaa801672eeb24e3)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-09-01 08:30:56 -07:00
Steve Sakoman
ec220ae083 build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: 93c7489d843a0e46fe4fc685b356d0ae885300d7)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 06:04:30 -07:00
Steve Sakoman
1df3fcb4a5 poky.conf: bump version for 5.0.12
(From meta-yocto rev: 82602cda1a89644d1acbe230a81c93e3fb5031c8)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 06:01:57 -07:00
Martin Jansa
93c7e11457 bash: use -std=gnu17 also for native CFLAGS
* fixes builds on host with gcc-15:
  http://errors.yoctoproject.org/Errors/Details/853016/

../../bash-5.2.37/builtins/mkbuiltins.c:268:29: error: too many arguments to function ‘xmalloc’; expected 0, have 1
  268 |           error_directory = xmalloc (2 + strlen (argv[arg_index]));
      |                             ^~~~~~~  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~

(From OE-Core rev: 55c144bd17665f70cd15e36f3405f502a962f039)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:55 -07:00
Khem Raj
fb9746b787 bash: Stick to C17 std
GCC 15 defaults to C23 and bash is not yet ready for that
so keep using C17 like GCC 14 for now

(From OE-Core rev: adf63fe5f76cbd0fd93ce5fa23229a388211e992)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:55 -07:00
Martin Jansa
dcfcbb21c2 cairo: fix build with gcc-15 on host
* backports from 1.18.2 used since:
  https://git.openembedded.org/openembedded-core/commit/?id=070d79c8adec7e0a8862019cf61910a59b18613a

* fixes build on hosts with gcc-15 (e.g. ubuntu-25.10)

../cairo-1.18.0/test/pdiff/pdiff.h:22:13: error: ‘bool’ cannot be defined via ‘typedef’
   22 | typedef int bool;
      |             ^~~~
../cairo-1.18.0/test/pdiff/pdiff.h:22:13: note: ‘bool’ is a keyword with ‘-std=c23’ onwards
../cairo-1.18.0/test/pdiff/pdiff.h:22:1: warning: useless type name in empty declaration
   22 | typedef int bool;
      | ^~~~~~~

(From OE-Core rev: 6bd49cba1d7e12a6d8a4521a2097ff9f5ddc6368)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:55 -07:00
Khem Raj
f1647fba72 parted: Fix build with GCC 15
(From OE-Core rev: 67c47f0ed5ba852930e0815691ee7ec06dec1d0e)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:55 -07:00
Khem Raj
19dd05ccc9 e2fsprogs: Fix build failure with gcc 15
Backport a needed fix

(From OE-Core rev: f5a7d9aa471e05d7cdb3127eaec3dba1b15bf72d)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:55 -07:00
Daniel Turull
3318b5eb4d libxml2: ignore CVE-2025-8732
The code maintainer disputes the CVE as the issue can only be triggered with
untrusted SGML catalogs and it makes absolutely no sense to use untrusted
catalogs.

The issue triggers a crash if an invalid file is provided.
Source: https://gitlab.gnome.org/GNOME/libxml2/-/issues/958"

(From OE-Core rev: 348ce728af1cea4f909de5c3597801b5612719e4)

Signed-off-by: Daniel Turull <daniel.turull@ericsson.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:55 -07:00
Peter Marko
9c4fe6dac5 glib-2.0: ignore CVE-2025-4056
NVD report [1] says:
A flaw was found in GLib. A denial of service on **Windows platforms**
may occur if an application attempts to spawn a program using long
command lines.

The fix [3] (linked from [2]) also changes only files
glib/gspawn-win32-helper.c
glib/gspawn-win32.c

[1] https://nvd.nist.gov/vuln/detail/CVE-2025-4056
[2] https://gitlab.gnome.org/GNOME/glib/-/issues/3668
[3] https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4570

(From OE-Core rev: 5858567a9222d9fff6f0a282cf7c7bda4e19af57)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:55 -07:00
Daniel Turull
819f151bed xz: ignore CVE-2024-47611
According to the NVD entry, it is only applicable when built
for native Windows (MinGW-w64 or MSVC).

(From OE-Core rev: 04ce4704e603cd66f30ffc001541c6497d84050e)

Signed-off-by: Daniel Turull <daniel.turull@ericsson.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:54 -07:00
Peter Marko
40999c1bbd dropbear: patch CVE-2025-47203
Based on Debian patch for this CVE, pick the same commits as mentioned
in kirkstone for this CVE except those already included in 2022.83.

7f48e75892

(From OE-Core rev: 6d287785611c344aa0c97048c3bfc280b1787ff5)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:54 -07:00
Philip Lorenz
00ade479ef cve-check: Add missing call to exit_if_errors
check_cves may raise the cve_status_not_in_db QA check. Call
exit_if_errors to make sure that the task is marked as failed when the
check is categorized as an error.

cve_status_not_in_db was in the meantime dropped in OE-Core
452e605b55ad61c08f4af7089a5a9c576ca28f7d so this change is only required
on scarthgap.

(From OE-Core rev: b3d12589c26f4e86b153bbdcda774985e4e046bd)

Signed-off-by: Philip Lorenz <philip.lorenz@bmw.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 05:59:54 -07:00
Antonin Godard
4d2729b88c ref-manual/classes.rst: document the testexport class
This class has been in OE-Core for a while but never documented in the
reference manual. Add some description for it and link to the existing
documentation on it.

(From yocto-docs rev: dd665216fa578a1f2f268790d708c6a5d2912ecf)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 362a331255525fc853dab3af4ec905c417fabb0b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Antonin Godard
c030f0e492 ref-manual/variables.rst: document SPL_DTB_BINARY
This variable is part of uboot-sign but not documented.

(From yocto-docs rev: 999e81f17bf60e187e709368ede3965df19bee59)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 05eb461cb1da76ad9cbaf634da7f47447b3f6765)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Antonin Godard
729f2a3d19 ref-manual/variables.rst: document the FIT_CONF_PREFIX variable
Added by commit 7892ee3dc37d ("kernel-fitimage: allow overriding FIT
configuration prefix") in OE-Core, but never documented.

(From yocto-docs rev: 47a0181cc471667d78f7810aa1ef55027a761a82)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 860891492b96eb127af5e7bab6348fca12167c68)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Erik Lindsten
1a02f43617 overview-manual/yp-intro.rst: fix broken link to article
(From yocto-docs rev: 1f7bad17b9457c9e74273bceb962c53eb60fdfe3)

Signed-off-by: Erik Lindsten <erik@awto.se>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit b9680ad83ad3fc5e2b87594f7c62c057134d198b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Antonin Godard
0a71bd589c ref-manual/system-requirements.rst: update supported distributions
Update the distributions to match the list of workers on the
Autobuilder. This list was generated with the help of
yocto-autobuilder-helper/scripts/yocto-supported-distros.

Also:

- Sort the lists alphabetically.
- Decrease spacing between entries for readability.

(From yocto-docs rev: e99a9283e30ae2b844018d1ffb88560ab6877ab7)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Quentin Schulz
61545ac190 go-helloworld: fix license
The example repo doesn't seem to have ever been under MIT to begin with
but rather Apache-2.0. It was then changed to the license used by the
goland projectm that is BSD-3-Clause, 2 years ago in commit 00c7068f9d83
("all: update to Go license").

The license file exists in the sources, so use that one instead of
taking it from the OE-Core license directory.

License-Update: Incorrect license is now proper

(From OE-Core rev: fa45d6d5bec8fe503ff6b9166a3b4af31ea95369)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Nikhil R
95bbe19b02 cmake: Add PACKAGECONFIG option for debugger support
Starting from CMake version 2.27 support for interactive debugging of CMake
scripts and configurations was added. However, by default the `nativesdk-cmake`
is compiled with debugger support turned off.

This change adds debugger support for cmake

(From OE-Core rev: 8acfca456c3502f0d097ba01a2d08f83fb75ab60)

(From OE-Core rev: 776846eb8aa2f5f8c1ec8842cdbaff6b6bcdfa65)

Signed-off-by: Nikhil R <nikhilr5@kpit.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Martin Jansa
83fac1162d libpam: re-add missing libgen include
It was added by original commit for CVE-2025-6020-01.patch
475bd60c55 (diff-05f443e6acbe32a148a45648148739bf6f02f13acc5c20c6037bf933223d4d77)
but removed here in the rebase, causing:

../../../Linux-PAM-1.5.3/modules/pam_namespace/pam_namespace.c:326:11: error: call to undeclared function 'dirname'; ISO C99 and later do not support implicit function declarations [-Wimplicit-function-declaration]
  326 |         parent = dirname(buf);
      |                  ^
../../../Linux-PAM-1.5.3/modules/pam_namespace/pam_namespace.c:326:9: error: incompatible integer to pointer conversion assigning to 'char*' from 'int' [-Wint-conversion]
  326 |         parent = dirname(buf);
      |                ^ ~~~~~~~~~~~~

(From OE-Core rev: 6d88a28ac7b6ff61808eb46e5c85dabd17c77f2e)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Hitendra Prajapati
eb487bba3e gstreamer1.0-plugins-good: fix multiple CVEs
* CVE-2025-47183 - Upstream-Status: Backport from c4d0f4bbd9 && d76cae74da
* CVE-2025-47219 - Upstream-Status: Backport from b808039433

(From OE-Core rev: 3e82483c777d0a59a9d93e7c41f8fe88a9d75b22)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Hitendra Prajapati
1db6ffa609 gstreamer1.0-plugins-base: fix CVE-2025-47806
Upstream-Status: Backport from da4380c4df

(From OE-Core rev: fbe8dd2aa6160530b84d3a174f3f8fc14f9fbab5)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Hitendra Prajapati
ba10ae532a gstreamer1.0-plugins-base: fix CVE-2025-47808
Upstream-Status: Backport from 6b19f11751

(From OE-Core rev: 2611a16cad53d2bf0cda2946678e7d31e3ffa007)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Peter Marko
2cc9a0249b go: ignore CVE-2025-0913
This is problem on Windows platform only.

Per NVD report [1], CPE has "and" clause
Running on/with
 cpe:2.3microsoft:windows:-:*:*:*:*:*:*:*

Also linked patch [2] changes Windows files only (and tests).

[1] https://nvd.nist.gov/vuln/detail/CVE-2025-0913
[2] https://go-review.googlesource.com/c/go/+/672396

(From OE-Core rev: ec1c6ab989b298773e8df8a6a4532f88b93617ff)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Peter Marko
6d83b872af python3: patch CVE-2025-8194
Pick commit from 3.12 branch mentioned in NVD report.
https://nvd.nist.gov/vuln/detail/CVE-2025-8194

(From OE-Core rev: 34f1b4877a0601d2057453c159c76a54754f229a)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Zhang Peng
0263c3dfa4 avahi: fix CVE-2024-52615
CVE-2024-52615:
A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area
DNS queries. This issue simplifies attacks where malicious DNS responses are injected.

Reference:
[https://nvd.nist.gov/vuln/detail/CVE-2024-52615]
[https://github.com/avahi/avahi/security/advisories/GHSA-x6vp-f33h-h32g]

Upstream patches:
[4e2e1ea090]

(From OE-Core rev: ec22ec26b3f40ed5e0d84d60c29d8c315cf72e23)

Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-20 07:37:19 -07:00
Robert P. J. Day
6f7e929ea6 variables.rst: remove references to obsolete tar packaging
The tar packaging format was removed some time ago. Also, add some
minor grammatical tweaking.

(From yocto-docs rev: 0c154c1f431be918c4c9ce3047c12099925a9c53)

Signed-off-by: Robert P. J. Day <rpjday@crashcourse.ca>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 8e9fd1ca232f3c1e8be51cb881a68b4745ee548a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:07 -07:00
Marco Cavallini
1fd82d514f dev-manual/start.rst: added missing command in Optimize your VHDX file using DiskPart
After compact vsdisk you have to detach it before exiting
  otherwise the vdisk remains attached.

  DISKPART> select vdisk file="<path_to_VHDX_file>"
  DISKPART> attach vdisk readonly
  DISKPART> compact vdisk
  DISKPART> detach     <------------ new missing command
  DISKPART> exit

(From yocto-docs rev: a1dc91850e0353866dc9b461fce8c08724e49dae)

Signed-off-by: Marco Cavallini <m.cavallini@koansoftware.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1cc65ddf1a074f61fe5a63d222f3079b7fcb4c1e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:07 -07:00
Lee Chee Yang
7d110f9a94 migration-guides: add release notes for 5.0.11
(From yocto-docs rev: 736b0b06d8fb48cbf72386464df919745bcce90e)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit b5f6113cd95107132aac74b8f0e6e4895b7b0e90)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:07 -07:00
Fabio Berton
c82f7a0577 linux-libc-headers: Fix invalid conversion in cn_proc.h
Backport 'connector: Fix invalid conversion in cn_proc.h' commit to fix
error:
/
|/usr/include/linux/cn_proc.h: In function 'proc_cn_event
| valid_event(proc_cn_event)':
|/usr/include/linux/cn_proc.h:72:17: error: invalid conversion from
| 'unsigned int' to 'proc_cn_event' [-fpermissive]
|   72 |         ev_type &= PROC_EVENT_ALL;
|      |                 ^
|      |                 |
|      |                 unsigned int
\

Change is already merged in kernel branch linux-6.6.y [1].

1 - https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-6.6.y&id=06e785aeb9ea8a43d0a3967c1ba6e69d758e82d4

(From OE-Core rev: f023779af6c0e5c838bdacbd6d9765d1c6740575)

Signed-off-by: Fabio Berton <fbberton@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:07 -07:00
Aleksandar Nikolic
f6b4415273 scripts/install-buildtools: Update to 5.0.11
Update to the 5.0.11 release of the 5.0 series for buildtools

(From OE-Core rev: 3b3a672ae6c024096cc263a669b1131e3f653b79)

Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:07 -07:00
Peter Marko
d9b992de0d glibc: fix CVE-2025-8058
This is a single commit bump containing only CVE fix
$ git log --oneline cff1042cceec3502269947e96cf7023451af22f3..b027d5b145f1b2908f370bdb96dfe40180d0fcb6
b027d5b145 posix: Fix double-free after allocation failure in regcomp (bug 33185)

Test results didn't change except newly added test succeeding.
(tst-regcomp-bracket-free)

(From OE-Core rev: c2b63f171719e2b1c12ba049cbe776adf9e0244b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:07 -07:00
Peter Marko
2156b7931e libxml2: patch CVE-2025-6170
Pick commit referencing this CVE from 2.13 branch.

(From OE-Core rev: 061610dfca8a72b71e1baca3ad4aa2c9fb64449b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:07 -07:00
Peter Marko
664f26b3f0 ncurses: patch CVE-2025-6141
Pick relevant part of snapshot commit 20250329, see [1].

That has:
add a buffer-limit check in postprocess_termcap (report/testcase by
Yifan Zhang).

[1] https://invisible-island.net/ncurses/NEWS.html#index-t20250329

(From OE-Core rev: 79b080eb93918431c97edbbc80de5f70a2b09a4a)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Peter Marko
114eddfaef gnutls: patch CVE-2025-6395
Pick relevant commit from 3.8.10 release MR [1].

[1] https://gitlab.com/gnutls/gnutls/-/merge_requests/1979

(From OE-Core rev: 14fbbdc51f7d02bc10b8078c0ba1de17f1563d73)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Peter Marko
f569a0f2d9 gnutls: patch CVE-2025-32990
Pick relevant commit from 3.8.10 release MR [1].

[1] https://gitlab.com/gnutls/gnutls/-/merge_requests/1979

(From OE-Core rev: 823cdb5574c15a595dfeab413421304007899aa2)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Peter Marko
f5aab38227 gnutls: patch CVE-2025-32988
Pick relevant commit from 3.8.10 release MR [1].

[1] https://gitlab.com/gnutls/gnutls/-/merge_requests/1979

(From OE-Core rev: 2838dae57a1236d4f6eb97e32eb500892ba67184)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Peter Marko
bee76dfe7e gnutls: patch reject zero-length version in certificate request
Pick relevant commit from 3.8.10 release MR [1].
The MR contains referece to undiscoled issue, so any security relevant
patch should be picked.

Binary test file was added as separate file as binary diffs are not
supported.

[1] https://gitlab.com/gnutls/gnutls/-/merge_requests/1979

(From OE-Core rev: d1aaef9bbaa240c83cc7d485b55570449203da0b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Peter Marko
5de981dd1c gnutls: patch read buffer overrun in the "pre_shared_key" extension
Pick relevant commit from 3.8.10 release MR [1].
The ME contains referece to undiscoled issue, so any security relevant
patch should be picked.

Binary test file was added as separate file as binary diffs are not
supported.

[1] https://gitlab.com/gnutls/gnutls/-/merge_requests/1979

(From OE-Core rev: 8f825e7f4ca36d7ac62062e452cea256f3c058aa)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Peter Marko
e9a35f720c gnutls: patch CVE-2025-32989
Pick relevant commit from 3.8.10 release MR [1].

Binary test file was added as separate file as binary diffs are not
supported.

[1] https://gitlab.com/gnutls/gnutls/-/merge_requests/1979

(From OE-Core rev: 9d9ce14e2edceb211c3193cef88715d9c67fd3e0)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Richard Purdie
511d3e23f5 bitbake: utils: Optimise signal/sigmask performance
Running "time bitbake -pP idle" with a valid cache shows around 800,000
calls to enum creation from python's signal.py. We don't care about this
overhead and it adversely affects cache load time quite badly.

Try and use _signal directly, falling back to signal, which avoids
this overhead we don't need and makes cache loading much faster.

(Bitbake rev: 982645110a19ebb94d519926a4e14c8a2a205cfd)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit ee5fce67ce35b025c68aa61e2e758903269ee346)
Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Mark Hatle
bfb799ef2a bitbake: bitbake: runqueue: Verify mcdepends are valid
In order to avoid a potentially confusing backtrace, check that the mcdepend
is valid when we add it.

Add a test case to ensure invalid configurations are caught and trigger an
error.

[RP: Reworked test case to simplify and improve code]
(Bitbake rev: 9f6f049870e0ec829e171fe91ec8f7a092ddd2ab)

Signed-off-by: Mark Hatle <mark.hatle@amd.com>
Signed-off-by: Mark Hatle <mark.hatle@kernel.crashing.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-04 07:55:06 -07:00
Jinfeng Wang
e711b2f39a mtools: upgrade 4.0.48 -> 4.0.49
New version includes check for overlong file names, see [1].

[1] https://lists.gnu.org/archive/html/info-mtools/2025-06/msg00005.html

(From OE-Core rev: c374e6cfcdd2c8ba17d82ffcfdeb97d21144e2bf)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>

(From OE-Core rev: 044c2bceefcc12262cb2421e8f1da5f6c2ed9f72)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:53 -07:00
Wang Mingyu
f578ce2a73 mtools: upgrade 4.0.47 -> 4.0.48
clang_UNUSED.patch
disable-hardcoded-configs.patch
refreshed for 4.0.48

(From OE-Core rev: d2c56de7c9d403c3432213bc20e04c2ed5f1db16)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

(From OE-Core rev: 1d5aee7e67cd614073a15b47b832375428865260)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:53 -07:00
Richard Purdie
057c86df84 mtools: upgrade 4.0.46 -> 4.0.47
(From OE-Core rev: cf705382534d8f5af6880511221f701a733d84d7)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

(From OE-Core rev: 14ef270cc003646e6ca97ff3405507f2b9e92736)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:53 -07:00
Wang Mingyu
8721aab7af mtools: upgrade 4.0.45 -> 4.0.46
clang_UNUSED.patch
mtools-makeinfo.patch
refreshed for 4.0.46

Changelog:
=============
- iconv buffer overflow fixes
- removed references to mread and mwrite (obsolete subcommands
from mcopy)
- documented mdoctorfat, and addressed 2 bugs/oversights
- removed references to obsolete mread and mwrite
- portability fixes (dietlibc and MacOS X) & simplification

(From OE-Core rev: daab05bc863611c83223a383dd83ff2134cae6f8)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

(From OE-Core rev: f5a5b2372669d8be4ae3f19ed6892264ea3999d0)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:53 -07:00
Wang Mingyu
8b8f23e650 mtools: upgrade 4.0.44 -> 4.0.45
Changelog:
============
- Fixed iconv descriptor leak
- Fixed size of error message buffer

(From OE-Core rev: 77340d2bb1f31e305394df5d589fc0d3a0c5cd9a)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

(From OE-Core rev: cc1975888ffdc58655e80d3d14450cf68ee0f719)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:53 -07:00
Alexander Kanavin
93663dc300 mtools: upgrade 4.0.43 -> 4.0.44
(From OE-Core rev: b09b06ed6351685e5351f8bf80a88d2f42093ca4)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

(From OE-Core rev: dd8c333576d7ebb8abab3a62b3451439519a0caa)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:53 -07:00
Vijay Anusuri
0bc339e2fc xserver-xorg: upgrade 21.1.6 -> 21.1.18
xorg-server 21.1.17
This release contains the fixes for the issues reported in today's security
advisory: https://lists.x.org/archives/xorg/2025-June/062055.html

   * CVE-2025-49175
   * CVE-2025-49176
   * CVE-2025-49177
   * CVE-2025-49178
   * CVE-2025-49179
   * CVE-2025-49180

Additionally, this release includes a fix for CVE-2022-49737 which was
issued after the fix was merged back in 2022 and several other various fixes.

Ref: https://lists.x.org/archives/xorg-announce/2025-June/003609.html

xorg-server 21.1.18
This release contains an additional fix for CVE-2025-49176 from June 17
security advisory: https://lists.x.org/archives/xorg/2025-June/062055.html

Ref: https://lists.x.org/archives/xorg-announce/2025-June/003612.html

(From OE-Core rev: 2ab7c45631f78ac8f6d19889fa8526d062329992)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a59b385184fb3a548dc27310fd04d64351d8dfba)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:53 -07:00
Deepesh Varatharajan
3327031e2b glibc: stable 2.39 branch updates
$ git log --oneline 06a70769fd0b2e1f2a3085ad50ab620282bd77b3..cff1042cceec3502269947e96cf7023451af22f3
cff1042cce Fix error reporting (false negatives) in SGID tests
1924d341c0 support: Pick group in support_capture_subprogram_self_sgid if UID == 0

Testing Results:
             Before   After    Diff
PASS          5074     5082     +8
XPASS         4        4         0
FAIL          121      116      -5
XFAIL         16       16        0
UNSUPPORTED   157      154      -3

cff1042cce Fix error reporting (false negatives) in SGID tests
Improved SGID test handling by unifying error reporting and using secure temporary directories.
Replaced non-standard exit codes and fixed premature exits to avoid masking failures.
These changes reduced false negatives, increasing overall test pass rates

UNSUPPORTED tests changes
-UNSUPPORTED: stdlib/tst-secure-getenv
-UNSUPPORTED: elf/tst-env-setuid-static
-UNSUPPORTED: elf/tst-env-setuid-tunables

FAILed tests changes
-FAIL: malloc/tst-aligned-alloc-random-thread-cross-malloc-check
-FAIL: malloc/tst-aligned-alloc-random-thread-malloc-check
-FAIL: malloc/tst-dynarray
-FAIL: malloc/tst-dynarray-mem
-FAIL: resolv/tst-resolv-aliases

PASSed tests changes
+PASS: stdlib/tst-secure-getenv
+PASS: elf/tst-env-setuid-static
+PASS: elf/tst-env-setuid-tunables
+PASS: malloc/tst-aligned-alloc-random-thread-cross-malloc-check
+PASS: malloc/tst-aligned-alloc-random-thread-malloc-check
+PASS: malloc/tst-dynarray
+PASS: malloc/tst-dynarray-mem
+PASS: resolv/tst-resolv-aliases

(From OE-Core rev: c40b9c33061c4019ed7790ccb799bb3491998b3d)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:53 -07:00
Hitendra Prajapati
cf89d7b3bf libpam: fix CVE-2025-6020
Upstream-Status: Backport from 475bd60c55 && 592d84e126 && 976c200793

(From OE-Core rev: dd5bbac75b1d8f7ebd83d5c9945bd860e397ba07)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Peter Marko
99f48be958 openssl: patch CVE-2025-27587
Pick commits for Minerva fix between 3.2.4 and 3.2.5 release.

Update to 3.2.5 is blocked due to problem with python ptest errors, so
use patch instead of upgrade for now.

(From OE-Core rev: 57c04a32997c1b045121aff045f3ffaa7bb0b5f5)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Peter Marko
ed5a1a7443 openssl: CVE-2024-41996
As discussed in [1], this commit fixes CVE-2024-41996.
Although openssl project does not consider this a vulnerability, it got
CVE number assigned so it deserves attention.

[1] https://github.com/openssl/openssl/pull/25088

(From OE-Core rev: cb49b9e49b4561ccea4c231cac591af557b9749c)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Peter Marko
5f469434d3 orc: set CVE_PRODUCT
There are new CVEs reported for this recipe which are not for this
componene, but for a component with same name from apache.

sqlite> select vendor, product, id, count(*) from products where product like 'orc' group by vendor, product, id;
apache|orc|CVE-2018-8015|1
apache|orc|CVE-2025-47436|4
gstreamer|orc|CVE-2024-40897|1

(From OE-Core rev: f5e320c0ea57ce1813ed09da703fe2b33f4976e6)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Roland Kovacs
d5613f0d2e sqlite3: fix CVE-2025-6965
There exists a vulnerability in SQLite versions before 3.50.2 where the
number of aggregate terms could exceed the number of columns available.
This could lead to a memory corruption issue.

(From OE-Core rev: 52499a5ea3b4ba145914aca873844ab718953289)

Signed-off-by: Roland Kovacs <roland.kovacs@est.tech>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Deepesh Varatharajan
76f88baf01 binutils: Fix CVE-2025-7545
objcopy: Don't extend the output section size
Since the output section contents are copied from the input, don't
extend the output section size beyond the input section size.

Backport a patch from upstream to fix CVE-2025-7545
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=08c3cbe5926e4d355b5cb70bbec2b1eeb40c2944]

(From OE-Core rev: 128e40c39d8eafdd32fea71b902b38801afec202)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Yash Shinde
b162dfb492 binutils: Fix CVE-2025-7546
Report corrupted group section instead of trying to recover.

CVE: CVE-2025-7546
Upstream-Status: Backport [https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=41461010eb7c79fee7a9d5f6209accdaac66cc6b]
PR  33050 [https://sourceware.org/bugzilla/show_bug.cgi?id=33050]

(From OE-Core rev: 3a54f11b9462905e103e13161a77ef681f14dc92)

Signed-off-by: Yash Shinde <Yash.Shinde@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Roland Kovacs
6269788fef libxml2: fix CVE-2025-49795
A NULL pointer dereference vulnerability was found in libxml2 when processing
XPath XML expressions. This flaw allows an attacker to craft a malicious XML
input to libxml2, leading to a denial of service.

(From OE-Core rev: b144c3ef3ba1797d925ea44d9450a6ec0fe32047)

Signed-off-by: Roland Kovacs <roland.kovacs@est.tech>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Richard Purdie
0efe19beef bitbake: test/fetch: Switch u-boot based test to use our own mirror
The upstream servers are having issues so switch to our own shadow copy
of the repo.

(Bitbake rev: 86e7a58c0e9904c33b1b94dddc3d683c2da22d1a)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-29 07:59:52 -07:00
Joe Slater
792d18b4cb oe-debuginfod: add option for data storage
Storing the data files under $HOME can be unreliable if debuginfod
is used for several projects, especially if $HOME is shared
between machines.  We provide an option to save files under the
project directory.  The default behavior is unchanged.

(From OE-Core rev: e1e0cf82f559077e2a51447baf137086202c0c4a)

(From OE-Core rev: 24c0ab18045920bb5c1e965c0ea6d176fd6de234)

Signed-off-by: Joe Slater <joe.slater@windriver.com>
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:22 -07:00
Michal Seben
15a4d0cfb1 timedated: wait for jobs before SetNTP response
Backport a fix to address the dbus SetNTP response timing issue.
Fix is already available since systemd v256-rc1.

(From OE-Core rev: 4db0483cfd14e31c3e7cc87d538d73275fd51bbf)

Signed-off-by: Michal Seben <michal.seben@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:22 -07:00
Yi Zhao
f2a6317735 kea: set correct permissions for /var/run/kea
Set the permissions of /var/run/kea to 750 to fix kea server startup
error:

ERROR [kea-dhcp4.dhcp4/445.140718820303936] DHCP4_INIT_FAIL failed to
initialize Kea server: configuration error using file
'/etc/kea/kea-dhcp4.conf': 'socket-name' is invalid: socket
path:/var/run/kea does not exist or does not have permssions = 750

This permission check was introduced by commit[1] in kea 2.4.2.

[1] f7061c4e97

(From OE-Core rev: 5b709e2c165bf46f4f35e1783ab7ec54fabd2ec3)

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:22 -07:00
Deepesh Varatharajan
d06bc81271 binutils: stable 2.42 branch updates
Below commit on binutils-2.42 stable branch are updated.

x86: Check MODRM for call and jmp in binutils older than 2.45

Test Results:
                                 Before  After  Diff
No. of expected passes            302     302    0
No. of unexpected failures        2       2      0
No. of untested testcases         1       1      0
No. of unsupported tests          7       7      0

Testing was done and there were no regressions found

(From OE-Core rev: 412def8923a89f3c385eae25901bed0c07859029)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:22 -07:00
Praveen Kumar
a27ca8e3c0 sudo: upgrade 1.9.15p5 -> 1.9.17p1
Changelog:
===========
* Fixed CVE-2025-32462.  Sudo's -h (--host) option could be specified
   when running a command or editing a file.  This could enable a
   local privilege escalation attack if the sudoers file allows the
   user to run commands on a different host.

* Fixed CVE-2025-32463.  An attacker can leverage sudo's -R
  (--chroot) option to run arbitrary commands as root, even if
  they are not listed in the sudoers file.  The chroot support has
  been deprecated an will be removed entirely in a future release.

License-Update: Copyright updated to 2025

0001-sudo.conf.in-fix-conflict-with-multilib.patch refreshed for 1.9.17

(From OE-Core rev: b04af6db102c97f3d4338dbcfdcab927b5194a69)

Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:22 -07:00
Steve Sakoman
38f0ee2ec7 Revert "sudo: Fix CVE-2025-32462"
This CVE is fixed in the following version bump

This reverts commit d01f888a5ec43fdc8e7bd496ae9317c0fa28da9b.

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:22 -07:00
Vijay Anusuri
9302874dda git: Upgrade 2.44.3 -> 2.44.4
Addresses the security issues - CVE-2025-27613, CVE-2025-27614, CVE-2025-46334,
CVE-2025-46835, CVE-2025-48384, CVE-2025-48385, and CVE-2025-48386.

Release Notes:
https://github.com/git/git/blob/v2.44.4/Documentation/RelNotes/2.44.4.txt

(From OE-Core rev: 3a9fdcb2ea0dd2744f59a62f2722bfa276302324)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:22 -07:00
Archana Polampalli
c172c46096 gdk-pixbuf: fix CVE-2025-7345
A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function
(io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing
maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding,
allowing out-of-bounds reads from heap memory, potentially causing application crashes or
arbitrary code execution.

(From OE-Core rev: 78a52a7feb995b4ab4f4df6b16feaac60f6ad59b)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:21 -07:00
Peter Marko
83ba977250 iputils: patch CVE-2025-48964
Pick commit referencing this CVE.

(From OE-Core rev: a8193571c8cdba55f568d831a4546e0fed892be0)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:21 -07:00
Peter Marko
ef6f8d5f46 busybox: apply patch for CVE-2023-39810
Backport patch referencing this CVE.

Note that the hardening is not activated by default, it adds defconfig
option to enable it.
Since it introduces a breaking change, it shouldn't be enabled in LTS
release by default.
This patch makes busybox cpio equivalent in this release to what is
currently in master and in kirkstone.
Also note that gnu cpio also does not have this hardening, but the CVE
is created only against busybox.

(From OE-Core rev: 3f2b235526d135094408e3895c01bff7b5b938fb)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:21 -07:00
Peter Marko
ae35f06bb1 python3: update CVE product
There are two "new" CVEs reported for python3, their CPEs are:
* CVE-2020-1171: cpe:2.3🅰️microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
* CVE-2020-1192: cpe:2.3🅰️microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
These are for "Visual Studio Code Python extension".

Solve this by addding CVE vendor to python CVE product to avoid
confusion with Microsoft as vendor.

Examining CVE DB for historical python entries shows:
sqlite> select vendor, product, count(*) from products where product = 'python' or product = 'cpython'
   ...> or product like 'python%3' group by vendor, product;
microsoft|python|2
python|python|1054
python_software_foundation|python|2

Note that this already shows that cpython product is not used, so
CVE-2023-33595 mentioned in 62598e1138f21a16d8b1cdd1cfe902aeed854c5c
was updated.
But let's keep it for future in case new CVE starts with that again.

(From OE-Core rev: 72369cd66f78a371608c3fff205e0e96c248f2b3)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:21 -07:00
Hitendra Prajapati
6d2f2bd3f7 libxml2: fix CVE-2025-49794 & CVE-2025-49796
Upstream-Status: Backport from 71e1e8af5e

(From OE-Core rev: bb20ddc599314161f3bcd6d5479e81478ceaaa3a)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-21 09:07:21 -07:00
Steve Sakoman
ae2d52758f build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: 7a59dc5ee6edd9596e87c2fbcd1f2594c06b3d1b)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:17:11 -07:00
Steve Sakoman
e5c05018e0 poky.conf: bump version for 5.0.11
(From meta-yocto rev: 50e5c0d85d3775ac1294bdcd7f11deaa382c9d08)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:14:21 -07:00
Enrico Jörns
045c6b1669 conf.py: improve SearchEnglish to handle terms with dots
While search queries already handled words with hyphens correctly, they
did not do so for words with dots.

To fix this, we

- enhance the word tokenizer to treat both dots ('.') and hyphens ('-')
  as valid characters within words.
  (For robustness, explicitly exclude dots/hyphens at the start or end
  of a word from indexing.)
- adjust query processing to avoid splitting on dots in search input

This allows search queries to correctly match terms such as
'local.conf', 'site.conf', and similar ones now.

Fixes: [YOCTO #14534]

(From yocto-docs rev: 3f88cb85cca8f9128cfaab36882c4563457b03d9)

Signed-off-by: Enrico Jörns <ejo@pengutronix.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 80084a4cabdf7f61c7e93eda8ddbd5bc7d54e041)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Antonin Godard
395f818c91 overview-manual/concepts.rst: fix sayhello hardcoded bindir
Replace the hardcoded /usr/bin by ${bindir}, as it should be.

Reported-by: Thomas Perrot <thomas.perrot@bootlin.com>
(From yocto-docs rev: f06601fd09d6394fcc02134f24e337a9e6170584)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 576677eae6960dbc2d2ececeba0fde5bba7bb69f)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Lee Chee Yang
5d74429ce9 migration-guides: add release notes for 4.0.28
(From yocto-docs rev: 61968273cf13d8054bc3ffa934b368919409adba)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 6959193fddb039c34384fcc391195fdd7fd3dbb8)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Guocai He
7cd69bee25 minicom: correct the SRC_URI
In http://ftp.debian.org/debian/pool/main/m/minicom/, the
tarball of minicom_2.9.orig.tar.bz2 can not be found.
So the old SRC_URI should be updated.

(From OE-Core rev: 49fcec2041071d44289e03cac087de6b929d6153)

Signed-off-by: Guocai He <guocai.he.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Bruce Ashfield
37058c37c0 linux-yocto/6.6: update to v6.6.96
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    a5df3a702b2c Linux 6.6.96
    18d3f9b8e4b9 ARM: 9354/1: ptrace: Use bitfield helpers
    f9917821c527 firmware: arm_scmi: Ensure that the message-id supports fastchannel
    67a50f572178 firmware: arm_scmi: Add a common helper to check if a message is supported
    6f27bbf3de0d nvme: always punt polled uring_cmd end_io work to task_work
    cdfb20e4b34a spi: spi-cadence-quadspi: Fix pm runtime unbalance
    c46358d02759 Revert "ipv6: save dontfrag in cork"
    1583d908cc77 x86/tools: Drop duplicate unlikely() definition in insn_decoder_test.c
    ed1f395ea5c0 Kunit to check the longest symbol length
    5f4787834cb7 s390/entry: Fix last breaking event handling in case of stack corruption
    56aa7679c9f3 media: uvcvideo: Rollback non processed entities on error
    f165d04c41a3 kbuild: rpm-pkg: simplify installkernel %post
    cca5bb42b736 scripts: clean up IA-64 code
    b90dc5d67b68 ksmbd: remove unsafe_memcpy use in session setup
    107a48df3f94 ksmbd: Use unsafe_memcpy() for ntlm_negotiate
    8302adf60aba drm/amdgpu: switch job hw_fence to amdgpu_fence
    a5d7cc1647f9 drm/amdgpu: Add kicker device detection
    f640d011080d drm/i915/gem: Allow EXEC_CAPTURE on recoverable contexts on DG1
    a8ceffaeb780 drm/amdgpu: amdgpu_vram_mgr_new(): Clamp lpfn to total vram
    5148c7ea69e9 drm/amd/display: Add null pointer check for get_first_active_display()
    ede04b471596 drm/bridge: cdns-dsi: Wait for Clk and Data Lanes to be ready
    252e6e96f9b6 drm/bridge: cdns-dsi: Check return value when getting default PHY config
    c4ee1b31a540 drm/bridge: cdns-dsi: Fix connecting to next bridge
    f9b819c39d13 drm/bridge: cdns-dsi: Fix phy de-init and flag it so
    2565ff3ac3f5 drm/bridge: cdns-dsi: Fix the clock variable for mode_valid()
    76115eafad12 drm/amdkfd: Fix race in GWS queue scheduling
    7946a10f8da7 drm/msm/gpu: Fix crash when throttling GPU immediately during boot
    50e48e940329 drm/udl: Unregister device before cleaning up on disconnect
    5ff3636bcc32 drm/tegra: Fix a possible null pointer dereference
    23134a522758 drm/tegra: Assign plane type before registration
    9ec447c23753 drm/etnaviv: Protect the scheduler's pending list with its lock
    6d7b814c527c drm/cirrus-qemu: Fix pitch programming
    66f122e67261 drm/ast: Fix comment on modeset lock
    bf2c1643abc3 scsi: megaraid_sas: Fix invalid node index
    42cf4f016173 HID: wacom: fix kobject reference count leak
    f531651c394e HID: wacom: fix memory leak on sysfs attribute creation failure
    33acbeeb5ad6 HID: wacom: fix memory leak on kobject creation failure
    f0ffc8076d39 HID: lenovo: Restrict F7/9/11 mode to compact keyboards only
    8a89e9c27b77 net: libwx: fix the creation of page_pool
    9052c7bca391 btrfs: update superblock's device bytes_used when dropping chunk
    aeeae8feeaae btrfs: fix a race between renames and directory logging
    6ad80378f928 dm-raid: fix variable in journal device check
    e395e34b0652 Bluetooth: L2CAP: Fix L2CAP MTU negotiation
    f90d78d65ccc serial: imx: Restore original RXTL for console to fix data loss
    40f62f8cf854 dt-bindings: serial: 8250: Make clocks and clock-frequency exclusive
    f89c40520fa1 staging: rtl8723bs: Avoid memset() in aes_cipher() and aes_decipher()
    e5e6a5aa3915 EDAC/amd64: Fix size calculation for Non-Power-of-Two DIMMs
    c82c7041258d smb: client: fix potential deadlock when reconnecting channels
    ced8eff11a4f drm/bridge: ti-sn65dsi86: Add HPD for DisplayPort connector type
    1c9a8a84c5a8 drm/bridge: ti-sn65dsi86: make use of debugfs_init callback
    ee800ff711c9 drm/i915: fix build error some more
    0804d77fd6e6 net: selftests: fix TCP packet checksum
    5b63793da82a ALSA: hda/realtek: Fix built-in mic on ASUS VivoBook X507UAR
    cabed6ba92a9 atm: Release atm_dev_mutex after removing procfs in atm_dev_deregister().
    63528d60673a net: enetc: Correct endianness handling in _enetc_rd_reg64
    ad9c4941d32e libbpf: Fix possible use-after-free for externs
    c61e284d72d6 um: ubd: Add missing error check in start_io_thread()
    8f96a2ae16b5 vsock/uapi: fix linux/vm_sockets.h userspace compilation errors
    d58343f81354 af_unix: Don't set -ECONNRESET for consumed OOB skb.
    86136c670569 wifi: mac80211: fix beacon interval calculation overflow
    9b9a87f0bd18 libbpf: Fix null pointer dereference in btf_dump__free on allocation failure
    591f79625702 attach_recursive_mnt(): do not lock the covering tree when sliding something under it
    74fcb3852a2f ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3()
    3c709dce1699 atm: clip: prevent NULL deref in clip_push()
    64a99eff8dcf lib/group_cpus: fix NULL pointer dereference from group_cpus_evenly()
    88f3869649ed s390/pkey: Prevent overflow in size calculation for memdup_user()
    db33aa6c5c93 ASoC: amd: yc: Add DMI quirk for Lenovo IdeaPad Slim 5 15
    490a43d07f16 mm/damon/sysfs-schemes: free old damon_sysfs_scheme_filter->memcg_path on write
    c9036b6390af i2c: robotfuzz-osif: disable zero-length read messages
    4841060d2e7a i2c: tiny-usb: disable zero-length read messages
    fad0a2c16062 af_unix: Don't leave consecutive consumed OOB skbs.
    aabb458c33d9 af_unix: Don't call skb_get() for OOB skb.
    0919388ac44f af_unix: Define locking order for U_RECVQ_LOCK_EMBRYO in unix_collect_skb().
    fd3af69c14ed af_unix: Define locking order for U_LOCK_SECOND in unix_state_double_lock().
    b7904e2fccd0 af_unix: Define locking order for unix_table_double_lock().
    47847495a6ea platform/x86: ideapad-laptop: use usleep_range() for EC polling
    6e7af3d4f67f platform/x86: ideapad-laptop: move ACPI helpers from header to source file
    f8761b11f1c0 platform/x86: ideapad-laptop: move ymc_trigger_ec from lenovo-ymc
    d19ae7b033b2 platform/x86: ideapad-laptop: introduce a generic notification chain
    b6b5bcae7aa5 dummycon: Trigger redraw when switching consoles with deferred takeover
    8853bad7634f tty: vt: make consw::con_switch() return a bool
    e9ba8c528b8f tty: vt: sanitize arguments of consw::con_clear()
    0b10b5ab7d1d tty: vt: make init parameter of consw::con_init() a bool
    7bf946a284c3 PCI: apple: Set only available ports up
    b8704eef56c5 PCI: apple: Use helper function for_each_child_of_node_scoped()
    df1d7e879edd uio_hv_generic: Align ring size to system page
    ca0198894bf9 uio_hv_generic: Query the ringbuffer size for device
    ebba6cc0781c Drivers: hv: vmbus: Add utility function for querying ring size
    3bc5abf8e75a f2fs: don't over-report free space or inodes in statvfs
    9830ef1803a5 ASoC: codecs: wcd9335: Fix missing free of regulator supplies
    28b6ef1ab65d ASoC: codec: wcd9335: Convert to GPIO descriptors
    99d696842287 ASoC: codecs: wcd9335: Handle nicer probe deferral and simplify with dev_err_probe()
    0c40fa81f850 jfs: validate AG parameters in dbMount() to prevent crashes
    7747d3f9a506 fs/jfs: consolidate sanity checking in dbMount
    fc97a116dc49 btrfs: handle csum tree error with rescue=ibadroots correctly
    2cbeb47ea983 ovl: Check for NULL d_inode() in ovl_dentry_upper()
    d120737a6da7 scsi: ufs: core: Don't perform UFS clkscaling during host async scan
    acc1d4cc47f1 ceph: fix possible integer overflow in ceph_zero_objects()
    f3465bb32050 ALSA: usb-audio: Add a quirk for Lenovo Thinkpad Thunderbolt 3 dock
    789a3f63bd60 ALSA: hda: Add new pci id for AMD GPU display HD audio controller
    b8cd384c53ae ALSA: hda: Ignore unsol events for cards being shut down
    23fe269bfab3 usb: typec: mux: do not return on EOPNOTSUPP in {mux, switch}_set
    8851e4058701 usb: typec: displayport: Receive DP Status Update NAK request exit dp altmode
    00626325dba7 usb: cdc-wdm: avoid setting WDM_READ for ZLP-s
    433cb3e70dc9 usb: Add checks for snprintf() calls in usb_alloc_dev()
    0aaf810416c9 usb: common: usb-conn-gpio: use a unique name for usb connector device
    8e958d10dd0c tty: serial: uartlite: register uart driver in init
    a33f507f36d5 usb: potential integer overflow in usbg_make_tpg()
    a8d1b4f219e8 misc: tps6594-pfsm: Add NULL pointer check in tps6594_pfsm_probe()
    1063c586a35c iio: adc: ad_sigma_delta: Fix use of uninitialized status_pos
    41732f9febdc usb: dwc2: also exit clock_gating when stopping udc while suspended
    8217fa7d92f0 coresight: Only check bottom two claim bits
    8dbc01f09cad um: use proper care when taking mmap lock during segfault
    265ca1741075 um: Add cmpxchg8b_emu and checksum functions to asm-prototypes.h
    462215a2a3f4 iio: pressure: zpa2326: Use aligned_s64 for the timestamp
    c5734f9bab6f drm/scheduler: signal scheduled fence when kill job
    553f560e0a74 bcache: fix NULL pointer in cache_set_flush()
    9d578589e3ec amd/amdkfd: fix a kfd_process ref leak
    2fb2470bc683 md/md-bitmap: fix dm-raid max_write_behind setting
    aaef4f1f44b3 PCI: apple: Fix missing OF node reference in apple_pcie_setup_port
    969c9646f0d0 PCI: dwc: Make link training more robust by setting PORT_LOGIC_LINK_WIDTH to one lane
    7d942dbcd155 dmaengine: xilinx_dma: Set dma_device directions
    e0051a3daa8b dmaengine: idxd: Check availability of workqueue allocated by idxd wq driver before using
    c765f592adc7 rust: module: place cleanup_module() in .exit.text section
    efe5db9d98b1 ksmbd: provide zero as a unique ID to the Mac client
    f72093f270ea ksmbd: allow a filename to contain special characters on SMB3.1.1 posix extension
    ad804e3648d3 hwmon: (pmbus/max34440) Fix support for max34451
    2d8b3898caf5 NFSv4: xattr handlers should check for absent nfs filehandles
    9d90ab45d3d3 cxl/region: Add a dev_err() on missing target list entries
    96715eb1a120 fuse: fix race between concurrent setattrs from multiple nodes
    a13b2634dd66 leds: multicolor: Fix intensity setting while SW blinking
    c3616dfddf1d sunrpc: don't immediately retransmit on seqno miss
    f0ba7e6d06f2 mfd: max14577: Fix wakeup source leaks on device unbind
    35cda8619d97 mailbox: Not protect module_put with spin_lock_irqsave
    7d03b140af33 NFSv4.2: fix listxattr to return selinux security label
    cad6f283f6a6 NFSv4: Always set NLINK even if the server doesn't support it
    670c1c546cda cifs: Fix encoding of SMB1 Session Setup NTLMSSP Request in non-UNICODE mode
    0e7f0e6e14ba cifs: Fix cifs_query_path_info() for Windows NT servers
    4a6499ffc84c cifs: Correctly set SMB1 SessionKey field in Session Setup Request
    3f5b4c104b7d Linux 6.6.95
    218c3629fb8f cifs: Remove duplicate fattr->cf_dtype assignment from wsl_to_fattr() function
    6b4311f78a13 gpio: mlxbf3: only get IRQ for device instance 0
    f6071c3cfe3a perf evsel: Missed close() when probing hybrid core PMUs
    2a673aca82fe RISC-V: KVM: Don't treat SBI HFENCE calls as NOPs
    e20f0f44ec59 RISC-V: KVM: Fix the size parameter check in SBI SFENCE calls
    a77d0a14ed47 scsi: elx: efct: Fix memory leak in efct_hw_parse_filter()
    21da6d3561f3 arm64/ptrace: Fix stack-out-of-bounds read in regs_get_kernel_stack_nth()
    7c631e5cd38e perf/core: Fix WARN in perf_cgroup_switch()
    bddec730501b perf: Fix cgroup state vs ERROR
    2ee6044a6937 perf: Fix sample vs do_exit()
    4ca4f418b761 s390/pci: Fix __pcilg_mio_inuser() inline assembly
    d7094ad35104 platform/loongarch: laptop: Add backlight power control support
    7b47919aff63 smb: client: fix first command failure during re-negotiation
    cc77844d61f7 Revert "cpufreq: tegra186: Share policy per cluster"
    eb74c6f1b209 ARM: dts: am335x-bone-common: Increase MDIO reset deassert delay to 50ms
    94ec33e9600b ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
    2f38986e93d3 platform/x86: ideapad-laptop: add missing Ideapad Pro 5 fn keys
    e9a011fc6b04 serial: sh-sci: Increment the runtime usage counter for the earlycon device
    cfa7fa02078d net: make for_each_netdev_dump() a little more bug-proof
    b8ced2b9a23a smb: Log an error when close_all_cached_dirs fails
    aaaa689aa29d dt-bindings: i2c: nvidia,tegra20-i2c: Specify the required properties
    6377977485f7 EDAC/amd64: Correct number of UMCs for family 19h models 70h-7fh
    a5e3a1442688 net: atm: fix /proc/net/atm/lec handling
    dffd03422ae6 net: atm: add lec_mutex
    bde8833eb075 calipso: Fix null-ptr-deref in calipso_req_{set,del}attr().
    3162d8235c8c ublk: santizize the arguments from userspace when adding a device
    66bba1fd5bad net: lan743x: fix potential out-of-bounds write in lan743x_ptp_io_event_clock_get()
    7382b6f7d102 net: microchip: lan743x: Reduce PTP timeout on HW failure
    235aa081e2d9 tcp: fix passive TFO socket having invalid NAPI ID
    d3dfe821dfe0 tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer
    9d0ddfb574a2 tcp: fix tcp_packet_delayed() for tcp_is_non_sack_preventing_reopen() behavior
    3261c017a7c5 atm: atmtcp: Free invalid length skb in atmtcp_c_send().
    a06078164001 mpls: Use rcu_dereference_rtnl() in mpls_route_input_rcu().
    4e9ab5c48ad5 wifi: carl9170: do not ping device which has failed to load firmware
    43e3433a48c3 ptp: allow reading of currently dialed frequency to succeed on free-running clocks
    a8c669bbc831 ptp: fix breakage after ptp_vclock_in_use() rework
    aaef8e3a54b9 e1000e: set fixed clock frequency indication for Nahum 11 and Nahum 13
    f4c19a8e51ee net: ice: Perform accurate aRFS flow match
    8662ac79a634 aoe: clean device rq_list in aoedev_downdev()
    9311d6d1a54f pldmfw: Select CRC32 when PLDMFW is selected
    4c8f5b0483ac hwmon: (occ) fix unaligned accesses
    1312d9bf88be hwmon: (occ) Rework attribute registration for stack usage
    ff3dcf7f8184 drm/i915/pmu: Fix build error with GCOV and AutoFDO enabled
    af2f5f21599a drm/nouveau/bl: increase buffer size to avoid truncate warning
    b599b310380a ionic: Prevent driver/fw getting out of sync on devcmd(s)
    002aa3ed19f3 drm/msm/dsi/dsi_phy_10nm: Fix missing initial VCO rate
    77087a79779c drm/msm/disp: Correct porch timing for SDM845
    7e6980c225c1 smb: fix secondary channel creation issue with kerberos by populating hostname when adding channels
    599c489eea79 sunrpc: handle SVC_GARBAGE during svc auth processing as auth error
    5e5d2ad9765a erofs: remove unused trace event erofs_destroy_inode
    2536810df13f bpf: Fix L4 csum update on IPv6 in CHECKSUM_COMPLETE
    f6393e5cb913 net: Fix checksum update for ILA adj-transport
    3977946f61cd mm/huge_memory: fix dereferencing invalid pmd migration entry
    af6cfcd0efb7 mm/hugetlb: unshare page tables during VMA split, not before
    39c86833f973 iio: accel: fxls8962af: Fix temperature calculation
    3d849cc3dfd3 ALSA: hda/realtek: enable headset mic on Latitude 5420 Rugged
    f80e551050e4 ALSA: hda/intel: Add Thinkpad E15 to PM deny list
    d61975567d9d ALSA: usb-audio: Rename ALSA kcontrol PCM and PCM1 for the KTMicro sound card
    6562806f3200 arm64: Restrict pagetable teardown to avoid false warning
    66bde385a1d3 wifi: rtw89: pci: use DBI function for 8852AE/8852BE/8851BE
    eeacfbab9842 wifi: cfg80211: init wiphy_work before allocating rfkill fails
    6d60d822809b Input: sparcspkr - avoid unannotated fall-through
    3902205eadf3 atm: Revert atm_account_tx() if copy_from_iter_full() fails.
    c1a2081f0347 platform/x86/intel-uncore-freq: Fail module load when plat_info is NULL
    2753481c40af selinux: fix selinux_xfrm_alloc_user() to set correct ctx_len
    0902625a24ee ksmbd: fix null pointer dereference in destroy_previous_session
    2a03531c00b2 selftests/x86: Add a test to detect infinite SIGTRAP handler loop
    372b511e9345 udmabuf: use sgtable-based scatterlist wrappers
    bfa4d86e130a net: clear the dst when changing skb protocol
    0357da9149ea net_sched: sch_sfq: reject invalid perturb period
    bb9d4ffff6d8 scsi: s390: zfcp: Ensure synchronous unit_add
    8d60df50e62f scsi: storvsc: Increase the timeouts to storvsc_timeout
    a504536c2923 smb: improve directory cache reuse for readdir operations
    202d7e838967 cifs: do not disable interface polling on failure
    58021a32f25e cifs: serialize other channels when query server interfaces is pending
    b530c44e1f38 cifs: deal with the channel loading lag while picking channels
    cd42ddddd70a jffs2: check jffs2_prealloc_raw_node_refs() result in few other places
    3f46644a5131 jffs2: check that raw node were preallocated before writing summary
    b427d98d5521 LoongArch: Fix panic caused by NULL-PMD in huge_pte_offset()
    099cfcb98fb4 LoongArch: Avoid using $r0/$r1 as "mask" for csrxchg
    782baee5d917 platform/loongarch: laptop: Unregister generic_sub_drivers on exit
    3bce9e6be030 platform/loongarch: laptop: Get brightness setting from EC on probe
    1921781ec4a8 drivers/rapidio/rio_cm.c: prevent possible heap overwrite
    675d90ee874c io_uring: fix task leak issue in io_wq_create()
    3c3c7c66bdfa Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older
    af4ed5262d30 powerpc/eeh: Fix missing PE bridge reconfiguration during VFIO EEH recovery
    a7f3cfc1eb99 powerpc/vdso: Fix build of VDSO32 with pcrel
    dd95b3e00346 platform/x86: dell_rbu: Stop overwriting data buffer
    f3b840fb1508 platform/x86: dell_rbu: Fix list usage
    523e2f8a7f83 platform/x86/amd: pmc: Clear metrics table at start of cycle
    7d71ba5b0a01 fs/xattr.c: fix simple_xattr_list()
    897e6d88f0e3 Revert "bus: ti-sysc: Probe for l4_wkup and l4_cfg interconnect devices first"
    cdc1b9b47bc5 tee: Prevent size calculation wraparound on 32-bit kernels
    59b7304d0dff ARM: OMAP2+: Fix l4ls clk domain handling in STANDBY
    bca6fe52bd95 bus: fsl-mc: increase MC_CMD_COMPLETION_TIMEOUT_MS value
    c85311a73d74 watchdog: da9052_wdt: respect TWDMIN
    519ba75728ee fbcon: Make sure modelist not set on unregistered console
    8df53ee74cac wifi: ath12k: Pass correct values of center freq1 and center freq2 for 160 MHz
    2304e2b5e470 wifi: ath12k: fix incorrect CE addresses
    9db1bf90147c wifi: ath12k: fix link valid field initialization in the monitor Rx
    6bd0f2e71b15 wifi: ath11k: determine PM policy based on machine model
    42d0bfbe0296 octeontx2-pf: Add error log forcn10k_map_unmap_rq_policer()
    a37888a435b0 net: ethernet: cortina: Use TOE/TSO on all TCP
    38c4106cb4e9 bpf, sockmap: Fix data lost during EAGAIN retries
    bdb4da9e1921 f2fs: fix to set atomic write status more clear
    a3c32f17acbf usbnet: asix AX88772: leave the carrier control to phylink
    e036d648773c ice: fix check for existing switch rule
    8cde755f5616 i40e: fix MMIO write access to an invalid page in i40e_clear_hw
    52a16bafda0e sock: Correct error checking condition for (assign|release)_proto_idx()
    34c0a670556b scsi: lpfc: Use memcpy() for BIOS version
    79dc5e78d13d wifi: ath12k: fix failed to set mhi state error during reboot with hardware grouping
    5cf32cef3a38 pinctrl: mcp23s08: Reset all pins to input at probe
    f9397cf7bfb6 software node: Correct a OOB check in software_node_get_reference_args()
    03545901ec09 net: ethernet: ti: am65-cpsw: handle -EPROBE_DEFER
    c0d8c14d9bf2 vxlan: Do not treat dst cache initialization errors as fatal
    b4c83b37490d net: bridge: mcast: re-implement br_multicast_{enable, disable}_port functions
    cd97899361bc net: bridge: mcast: update multicast contex when vlan state is changed
    a0ab9e9148dd wifi: iwlwifi: Add missing MODULE_FIRMWARE for Qu-c0-jf-b0
    172d1e4a6804 wifi: mac80211: VLAN traffic in multicast path
    4fc2b3c0657b wifi: mac80211_hwsim: Prevent tsf from setting if beacon is disabled
    2077cef44d33 wifi: iwlwifi: pcie: make sure to lock rxq->read
    920fcc7adc73 iommu/amd: Ensure GA log notifier callbacks finish running before module unload
    32f25633f366 scsi: lpfc: Fix lpfc_check_sli_ndlp() handling for GEN_REQUEST64 commands
    c697dac96937 libbpf: Add identical pointer detection to btf_dedup_is_equiv()
    f11cfb48f2d2 clk: rockchip: rk3036: mark ddrphy as critical
    dfec43c50376 wifi: mac80211: do not offer a mesh path if forwarding is disabled
    efa7997ce846 wireless: purelifi: plfxlc: fix memory leak in plfxlc_usb_wreq_asyn()
    187829fb0c35 net: vertexcom: mse102x: Return code for mse102x_rx_pkt_spi
    84d34bd55d6a net: mlx4: add SOF_TIMESTAMPING_TX_SOFTWARE flag when getting ts info
    ae48bc0b8be8 pinctrl: armada-37xx: propagate error from armada_37xx_gpio_get()
    8a15a5438c58 pinctrl: armada-37xx: propagate error from armada_37xx_pmx_gpio_set_direction()
    02c966a8869b pinctrl: armada-37xx: propagate error from armada_37xx_gpio_get_direction()
    14a26f669206 pinctrl: armada-37xx: propagate error from armada_37xx_pmx_set_by_name()
    79f3e44df6e6 net: atlantic: generate software timestamp just before the doorbell
    9121c2ddd177 ipv4/route: Use this_cpu_inc() for stats on PREEMPT_RT
    62b62a2a6dc5 x86/sgx: Prevent attempts to reclaim poisoned pages
    c1025a54289b tcp: fix initial tp->rcvq_space.space value for passive TS enabled flows
    156b6bac7645 tcp: always seek for minimal rtt in tcp_rcv_rtt_update()
    969d61aa168c wifi: rtw89: leave idle mode when setting WEP encryption for AP mode
    f11520c6174c wifi: ath11k: Fix QMI memory reuse logic
    dcf7bb4397de wifi: ath12k: fix a possible dead lock caused by ab->base_lock
    7c4b6d8bd72d wifi: ath12k: fix macro definition HAL_RX_MSDU_PKT_LENGTH_GET
    6f79eb2e6816 net: dlink: add synchronization for stats update
    04fa1bef29d5 i2c: npcm: Add clock toggle recovery
    be5f6a65509c i2c: tegra: check msg length in SMBUS block read
    762325441e3a cpufreq: scmi: Skip SCMI devices that aren't used by the CPUs
    a620f66675e5 sctp: Do not wake readers in __sctp_write_space()
    a0b91fa813d4 wifi: mt76: mt7921: add 160 MHz AP for mt7922 device
    bf3dcb53ba32 wifi: mt76: mt76x2: Add support for LiteOn WN4516R,WN4519R
    2c1a2d863b24 emulex/benet: correct command version selection in be_cmd_get_stats()
    24900688ee47 wifi: mt76: mt7996: drop fragments with multicast or broadcast RA
    775fdb4042b2 i2c: designware: Invoke runtime suspend on quick slave re-registration
    7bf4461f1c97 bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem()
    61fc32485d64 f2fs: use vmalloc instead of kvmalloc in .init_{,de}compress_ctx
    92dbc2a2e2ec tipc: use kfree_sensitive() for aead cleanup
    088279ff18cd net: lan743x: Modify the EEPROM and OTP size for PCI1xxxx devices
    d2a25ca4134c net: macb: Check return value of dma_set_mask_and_coherent()
    c148af1f398b ACPI: battery: negate current when discharging
    6635356483b8 PM: runtime: fix denying of auto suspend in pm_suspend_timer_fn()
    6a7c583f56b9 gpiolib: of: Add polarity quirk for s5m8767
    5505ec191f77 ASoC: tegra210_ahub: Add check to of_device_get_match_data()
    cf961a38e450 ACPICA: utilities: Fix overflow check in vsnprintf()
    558ba4afdfe5 power: supply: bq27xxx: Retrieve again when busy
    1fee4324b566 ACPICA: fix acpi parse and parseext cache leaks
    8621fbeb4db9 ACPI: Add missing prototype for non CONFIG_SUSPEND/CONFIG_X86 case
    0ab90839bf6c ACPI: bus: Bail out if acpi_kobj registration fails
    7d346ca11a6e ASoC: tas2770: Power cycle amp on ISENSE/VSENSE change
    30e11a8cff73 ACPICA: Avoid sequence overread in call to strncmp()
    58cf7ba36b94 mmc: Add quirk to disable DDR50 tuning
    74f765e85d4b power: supply: collie: Fix wakeup source leaks on device unbind
    1c24a738971c clocksource: Fix the CPUs' choice in the watchdog per CPU verification
    28ecaebbed55 ASoC: amd: yc: Add quirk for Lenovo Yoga Pro 7 14ASP9
    755a8006b767 ACPICA: fix acpi operand cache leak in dswstate.c
    3175377e8ee1 iio: adc: ad7606_spi: fix reg write value mask
    f6a5b84f450b iio: imu: inv_icm42600: Fix temperature calculation
    fe684290418e mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race
    6a860536306e iio: accel: fxls8962af: Fix temperature scan element sign
    a9f6c1ad6c93 PCI: dw-rockchip: Fix PHY function call sequence in rockchip_pcie_phy_deinit()
    0b522796a80f PCI: Fix lock symmetry in pci_slot_unlock()
    7f6a2d378425 PCI: Add ACS quirk for Loongson PCIe
    9895f9d9b515 PCI: cadence-ep: Correct PBA offset in .set_msix() callback
    7ca06d696a2f uio_hv_generic: Use correct size for interrupt and monitor pages
    6f824cdd8209 Drivers: hv: Allocate interrupt and monitor pages aligned to system page boundary
    37166d63e42c smb: client: add NULL check in automount_fullpath
    39ff3774693f cifs: dns resolution is needed only for primary channel
    5713127da855 cifs: update dstaddr whenever channel iface is updated
    9d80e1d37e85 cifs: reset connections for all channels when reconnect requested
    3ee979709e16 remoteproc: core: Release rproc->clean_table after rproc_attach() fails
    9515d74c9d1a remoteproc: core: Cleanup acquired resources when rproc_handle_resources() fails in rproc_attach()
    a4df96e2e81c regulator: max14577: Add error check for max14577_read_reg()
    231f6a1de15b mips: Add -std= flag specified in KBUILD_CFLAGS to vdso CFLAGS
    dfa9ef978d9c staging: iio: ad5933: Correct settling cycles encoding per datasheet
    cc3cc41ed670 video: screen_info: Relocate framebuffers behind PCI bridges
    fa2118e9e233 KVM: s390: rename PROT_NONE to PROT_TYPE_DUMMY
    6bd2569d0b2f net: ch9200: fix uninitialised access during mii_nway_restart
    b1bf167f46dd phy: fsl-imx8mq-usb: fix phy_tx_vboost_level_from_property()
    83a692a9792a ftrace: Fix UAF when lookup kallsym after ftrace disabled
    6737c4551d2b mtd: rawnand: qcom: Fix read len for onfi param page
    df4918c0bb49 dm-verity: fix a memory leak if some arguments are specified multiple times
    61850a1b2673 dm-mirror: fix a tiny race condition
    fe0ff7d801fb KVM: VMX: Flush shadow VMCS on emergency reboot
    0d7a2ea4351b KVM: SVM: Clear current_vmcb during vCPU free for all *possible* CPUs
    7775ab2d53b3 mtd: nand: sunxi: Add randomizer configuration before randomizer enable
    e06a1dadc481 mtd: rawnand: sunxi: Add randomizer configuration in sunxi_nfc_hw_ecc_write_chunk
    d3abf0066b5e mm: fix ratelimit_pages update error in dirty_ratio_handler()
    23a707bbcbea RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction
    442e80dcf6fe watchdog: fix watchdog may detect false positive of softlockup
    5180561afff8 ipc: fix to protect IPCS lookups using RCU
    f24d42245239 clk: meson-g12a: add missing fclk_div2 to spicc
    ebb8060561d5 parisc: fix building with gcc-15
    2f4040a5855a vgacon: Add check for vc_origin address range in vgacon_scroll()
    7f27859721ae parisc/unaligned: Fix hex output to show 8 hex chars
    3ca78032a388 fbdev: Fix fb_set_var to prevent null-ptr-deref in fb_videomode_to_var
    e32a40db6796 EDAC/altera: Use correct write width with the INTTEST register
    0909b2b49c45 fbdev: Fix do_register_framebuffer to prevent null-ptr-deref in fb_videomode_to_var
    061a5dd66608 net: ftgmac100: select FIXED_PHY
    8c5713ce1ced net/sched: fix use-after-free in taprio_dev_notifier
    a8acc7080ad5 NFC: nci: uart: Set tty->disc_data only in success path
    d95d87841d2a hwmon: (ftsteutates) Fix TOCTOU race in fts_read()
    79ef8a6c4ec5 f2fs: fix to do sanity check on sit_bitmap_size
    a87cbcc909cc f2fs: prevent kernel warning due to negative i_nlink from corrupted image
    aaddc6c696bd f2fs: fix to do sanity check on ino and xnid
    0f7100e8d9f0 Input: gpio-keys - fix possible concurrent access in gpio_keys_irq_timer()
    17474a56acf7 Input: ims-pcu - check record size in ims_pcu_flash_firmware()
    cf6a4c4ac7b6 ext4: only dirty folios when data journaling regular files
    3e8a5163bcd3 ext4: ensure i_size is smaller than maxbytes
    68cea04f1fb2 ext4: factor out ext4_get_maxbytes()
    223091c9897c ext4: fix calculation of credits for extent tree modification
    26e09d18599d ext4: inline: fix len overflow in ext4_prepare_inline_data
    55995f172598 bus: fsl-mc: fix GET/SET_TAILDROP command ids
    1e474b5fab51 bus: fsl-mc: do not add a device-link for the UAPI used DPMCP device
    8edfed4439b1 ata: pata_via: Force PIO for ATAPI devices on VT6415/VT6330
    48f35a32947b cgroup,freezer: fix incomplete freezing when attaching tasks
    96707ff5818f ceph: set superblock s_magic for IMA fsmagic matching
    636391e8c98c can: tcan4x5x: fix power regulator retrieval during probe
    d5d4be47e06c bus: mhi: host: Fix conflict between power_up and SYSERR
    44b9620e82bb bus: mhi: ep: Update read pointer only after buffer is written
    838d63de34a9 ARM: omap: pmic-cpcap: do not mess around without CPCAP or OMAP4
    c592d3ceca1a ARM: 9447/1: arm/memremap: fix arch_memremap_can_ram_remap()
    12cffd5bd1da arm64/mm: Close theoretical race where stale TLB entry remains valid
    a31dce9b561d media: uvcvideo: Fix deferred probing error
    c51c0a0be239 media: uvcvideo: Send control events for partial succeeds
    d314f99b6f19 media: uvcvideo: Return the number of processed controls
    ec26be7d6355 media: imx-jpeg: Cleanup after an allocation error
    20a6db0ef356 media: imx-jpeg: Reset slot data pointers when freed
    683a1db6800e media: imx-jpeg: Move mxc_jpeg_free_slot_data() ahead
    350d4af0493a media: imx-jpeg: Drop the first error frames
    f6b1b0f8ba0b media: vivid: Change the siize of the composing
    9824e1732a16 media: vidtv: Terminating the subsequent process of initialization failure
    17cb043ea133 media: videobuf2: use sgtable-based scatterlist wrappers
    36318ff3d6bf media: venus: Fix probe error handling
    ae7b143e05b3 media: v4l2-dev: fix error handling in __video_register_device()
    dfb2add0baa7 media: omap3isp: use sgtable-based scatterlist wrappers
    ac3a8e37cb8e media: mediatek: vcodec: Correct vsi_core framebuffer size
    025a943c49c7 media: gspca: Add error handling for stv06xx_read_sensor()
    ec5c328606ba media: davinci: vpif: Fix memory leak in probe error path
    04354c529c82 media: cxusb: no longer judge rbuf when the write fails
    4425db511b9d media: ccs-pll: Check for too high VT PLL multiplier in dual PLL case
    1e4b3f166795 media: ccs-pll: Correct the upper limit of maximum op_pre_pll_clk_div
    b9e314231ffc media: ccs-pll: Start OP pre-PLL multiplier search from correct value
    ae2fe6606511 media: ccs-pll: Start VT pre-PLL multiplier search from correct value
    eb7a4ea0a18c media: i2c: ds90ub913: Fix returned fmt from .set_fmt()
    ecaf904a55c1 media: nxp: imx8-isi: better handle the m2m usage_count
    585acb354977 media: ov5675: suppress probe deferral errors
    ce4a5a34a2bf media: ov8856: suppress probe deferral errors
    aaf516bb732c wifi: rtlwifi: disable ASPM for RTL8723BE with subsystem ID 11ad:1723
    d4356ce8f826 wifi: rtw88: usb: Reduce control message timeout to 500 ms
    2e7c64d7a92c jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata()
    1eeecd9be9fe wifi: ath12k: fix ring-buffer corruption
    14f5549ad163 fs/nfs/read: fix double-unlock bug in nfs_return_empty_folio()
    5ee9a07b456d SUNRPC: Prevent hang on NFS mount with xprtsec=[m]tls
    5060e1a5fef1 nfsd: Initialize ssc before laundromat_work to prevent NULL dereference
    e7e943ddd1c6 nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request
    f08689fe3153 wifi: ath11k: fix ring-buffer corruption
    68b29235778b wifi: ath11k: fix rx completion meta data corruption
    0e4dc150423b wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback()
    782b3aff6763 net/mlx5: Add error handling in mlx5_query_nic_vport_node_guid()
    477e4319c371 net/mlx5_core: Add error handling inmlx5_query_nic_vport_qkey_viol_cntr()
    278a92b87463 regulator: max20086: Change enable gpio to optional
    420f6942f109 regulator: max20086: Fix MAX200086 chip id
    bf70b3c3df5f powerpc/pseries/msi: Avoid reading PCI device registers in reduced power states
    0257c26bbca5 io_uring/kbuf: account ring io_buffer_list memory
    a8b5ef355477 io_uring: account drain memory to cgroup
    abf80985f4d6 ASoC: meson: meson-card-utils: use of_property_present() for DT parsing
    3895a7590e6e ASoC: qcom: sdm845: Add error handling in sdm845_slim_snd_hw_params()
    40aefac870c1 gfs2: move msleep to sleepable context
    f5b9144715da crypto: marvell/cesa - Do not chain submitted requests
    0df5e4c7de27 configfs: Do not override creating attribute file failure in populate_attrs()

(From OE-Core rev: 7365af988da35e67e4463a0fd802b93a47d05a77)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Bruce Ashfield
2fb7e02924 linux-yocto/6.6: update to v6.6.94
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    6282921b6825 Linux 6.6.94
    d0e22b854ac6 drm/meson: Use 1000ULL when operating with mode->clock
    65e20c5d99d1 net: usb: aqc111: debug info before sanitation
    0fcfc93576bc regulator: dt-bindings: mt6357: Drop fixed compatible requirement
    1380f68517a7 calipso: unlock rcu before returning -EAFNOSUPPORT
    2cfcbe1554c1 x86/iopl: Cure TIF_IO_BITMAP inconsistencies
    8884c41bae39 xen/arm: call uaccess_ttbr0_enable for dm_op hypercall
    b0e35d563917 usb: typec: tcpm/tcpci_maxim: Fix bounds check in process_rx()
    3c7e52cfa86d usb: Flush altsetting 0 endpoints before reinitializating them after reset.
    c40b5e0aad1f usb: cdnsp: Fix issue with detecting USB 3.2 speed
    81dc3db4c3ac usb: cdnsp: Fix issue with detecting command completion event
    6e3af836805e VMCI: fix race between vmci_host_setup_notify and vmci_ctx_unset_notify
    97f5b57eca7d usb: usbtmc: Fix read_stb function and get_stb ioctl
    b0630d18451a kbuild: Disable -Wdefault-const-init-unsafe
    2c72fe18cc5f posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()
    99bc5248a479 Revert "io_uring: ensure deferred completions are posted for multishot"
    029d39ae7ecf io_uring/rw: fix wrong NOWAIT check in io_rw_init_file()
    62d5d980b513 io_uring/rw: allow pollable non-blocking attempts for !FMODE_NOWAIT
    90e11232a62b io_uring: add io_file_can_poll() helper
    4fa7831cf0ac HID: usbhid: Eliminate recurrent out-of-bounds bug in usbhid_parse()
    dd4b8e05f2a2 ALSA: usb-audio: Add implicit feedback quirk for RODE AI-1
    37a75cd83dde tools/resolve_btfids: Fix build when cross compiling kernel with clang.
    c9a2e81583d9 block: Fix bvec_set_folio() for very large folios
    9e263d94593b bio: Fix bio_first_folio() for SPARSEMEM without VMEMMAP
    51c695986fa1 perf: Ensure bpf_perf_link path is properly serialized
    efcd52ba648b nvmet-fcloop: access fcpreq only when holding reqlock
    84ead78a3cf8 fs/filesystems: Fix potential unsigned integer underflow in fs_name()
    0383b25488a5 net_sched: ets: fix a race in ets_qdisc_change()
    057f7a61b04b net_sched: tbf: fix a race in tbf_change()
    2a71924ca4af net_sched: red: fix a race in __red_change()
    46c15c9d0f65 net_sched: prio: fix a race in prio_tune()
    77a72d749701 net/mlx5e: Fix leak of Geneve TLV option object
    a810e484778d net/mlx5: Fix return value when searching for existing flow group
    5953ae44dfe5 net/mlx5: Fix ECVF vports unload on shutdown flow
    7fb33ed59867 net/mlx5: Ensure fw pages are always allocated on same NUMA
    3c40cfcbf18a Bluetooth: MGMT: Fix sparse errors
    c621211b3088 Bluetooth: hci_sync: Fix broadcast/PA when using an existing instance
    4bf299105706 Bluetooth: Fix NULL pointer deference on eir_get_service_data
    abb0605ca009 net/mdiobus: Fix potential out-of-bounds clause 45 read/write access
    bab6bca0834c net/mdiobus: Fix potential out-of-bounds read/write access
    7bafe26d7314 macsec: MACsec SCI assignment for ES = 0
    ff55c85a923e net: Fix TOCTOU issue in sk_is_readable()
    c6dad167aade ACPI: CPPC: Fix NULL pointer dereference when nosmp is used
    987c3b8859d6 i40e: retry VFLR handling if there is ongoing VF reset
    dd184939f41e i40e: return false from i40e_reset_vf if reset is in progress
    dc5fc562f1c4 drm/meson: fix more rounding issues with 59.94Hz modes
    81331229971a drm/meson: use vclk_freq instead of pixel_freq in debug print
    e9a5fe781748 drm/meson: fix debug log statement when setting the HDMI clocks
    1f8d03fb90ed drm/meson: use unsigned long long / Hz for frequency types
    d2fc85c90b41 powerpc/vas: Return -EINVAL if the offset is non-zero in mmap()
    8635e325b85d powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap
    b4e9bab6011b net_sched: sch_sfq: fix a potential crash on gso_skb handling
    d4cbcf274c51 scsi: iscsi: Fix incorrect error path labels for flashnode operations
    581b7c3d8025 pinctrl: qcom: pinctrl-qcm2290: Add missing pins
    de2adfaa9514 regulator: max20086: Fix refcount leak in max20086_parse_regulators_dt()
    6e329771144c wifi: ath11k: validate ath11k_crypto_mode on top of ath11k_core_qmi_firmware_ready
    e8e405757004 wifi: ath11k: don't wait when there is no vdev started
    a0ec9e39cbf7 wifi: ath11k: don't use static variables in ath11k_debugfs_fw_stats_process()
    e57c74d76076 wifi: ath11k: avoid burning CPU in ath11k_debugfs_fw_stats_request()
    452f55761513 wifi: ath11k: convert timeouts to secs_to_jiffies()
    d66fd9591ff4 wifi: ath11k: fix soc_dp_stats debugfs file permission
    748da2fc1c3c ath10k: snoc: fix unbalanced IRQ enable in crash recovery
    259119595227 ptp: remove ptp->n_vclocks check logic in ptp_vclock_in_use()
    bdd56875c692 Bluetooth: MGMT: Protect mgmt_pending list with its own lock
    5e64376da212 Bluetooth: MGMT: Remove unused mgmt_pending_find_data
    9f66b6531c2b Bluetooth: MGMT: Fix UAF on mgmt_remove_adv_monitor_complete
    6edb171845ed Bluetooth: hci_core: fix list_for_each_entry_rcu usage
    21f071261f94 scsi: core: ufs: Fix a hang in the error handler
    44ab21d74f61 serial: sh-sci: Clean sci_ports[0] after at earlycon exit
    9d50955bf215 serial: sh-sci: Move runtime PM enable to sci_probe_single()
    f8f07ea23116 serial: sh-sci: Check if TX data was written to device in .tx_empty()
    6b60251cab3f arm64: dts: ti: k3-j721e-sk: Add DT nodes for power regulators
    9333ced86ca7 arm64: dts: ti: k3-j721e-sk: Add support for multiple CAN instances
    b18568bae6c7 arm64: dts: ti: k3-j721e-sk: Model CSI2RX connector mux
    1e3db0a98cbd arm64: dts: ti: k3-am65-main: Add missing taps to sdhci0
    869aafe49c6b arm64: dts: ti: k3-am65-main: Fix sdhci node properties
    c789d2c138ca kasan: use unchecked __memset internally
    91d14d9961b7 Input: synaptics-rmi - fix crash with unsupported versions of F34
    73b8f31337fb pmdomain: core: Fix error checking in genpd_dev_pm_attach_by_id()
    4f091ad0862b do_change_type(): refuse to operate on unmounted/not ours mounts
    3d1ea8e048ac fix propagation graph breakage by MOVE_MOUNT_SET_GROUP move_mount(2)
    3b699b94727a path_overmount(): avoid false negatives
    3aed255ae4a3 ASoC: ti: omap-hdmi: Re-add dai_link->platform to fix card init
    cc03c899e6d9 ASoC: Intel: avs: Verify content returned by parse_int_array()
    ea739a5492bd ASoC: Intel: avs: Fix deadlock when the failing IPC is SET_D0IX
    9836cc310ec1 ASoC: codecs: hda: Fix RPM usage count underflow
    0fd2ae401720 scsi: ufs: qcom: Prevent calling phy_exit() before phy_init()
    d2507aeea45b seg6: Fix validation of nexthop addresses
    8c9e9cd39877 wireguard: device: enable threaded NAPI
    a21a4937726f net: dsa: b53: allow RGMII for bcm63xx RGMII ports
    02c03865d26a net: dsa: b53: do not enable RGMII delay on bcm63xx
    1c7a023b0cc9 netfilter: nf_nat: also check reverse tuple to obtain clashing entry
    39bab2d3517b netfilter: nf_set_pipapo_avx2: fix initial map fill
    7f6265fce3bd gve: add missing NULL check for gve_alloc_pending_packet() in TX DQO
    9c49728b61e1 PM: sleep: Fix power.is_suspended cleanup for direct-complete devices
    c07c61ef703a vmxnet3: correctly report gso type for UDP tunnels
    cc89f457d913 net: wwan: t7xx: Fix napi rx poll issue
    85eef1748c02 net: fix udp gso skb_segment after pull from frag_list
    b263088ee8ab net: stmmac: make sure that ptp_rate is not 0 before configuring timestamping
    2e02edb66427 net: dsa: tag_brcm: legacy: fix pskb_may_pull length
    18e648163016 ice: fix rebuilding the Tx scheduler tree for large queue counts
    d78e538b65e4 ice: create new Tx scheduler nodes for new queues only
    1d3c5d0dec67 ice: fix Tx scheduler error handling in XDP callback
    55dd7225217c Bluetooth: L2CAP: Fix not responding with L2CAP_CR_LE_ENCRYPTION
    59d5f3134b5c spi: bcm63xx-hsspi: fix shared reset
    29abb7fc8244 spi: bcm63xx-spi: fix shared reset
    d88839739701 net: lan966x: Make sure to insert the vlan tags also in host mode
    1b2e54f447af net/mlx4_en: Prevent potential integer overflow calculating Hz
    2e3d96ad9549 driver: net: ethernet: mtk_star_emac: fix suspend/resume issue
    acab7ca5ff19 net: tipc: fix refcount warning in tipc_aead_encrypt
    633a80216a44 gve: Fix RX_BUFFERS_POSTED stat to report per-queue fill_cnt
    6ee70ca1fded net: stmmac: platform: guarantee uniqueness of bus_id
    7a8e87568575 vt: remove VT_RESIZE and VT_RESIZEX from vt_compat_ioctl()
    b3b4efa2e623 coresight: prevent deactivate active config while enabling the config
    e69e2cfd8b38 fpga: fix potential null pointer deref in fpga_mgr_test_img_load_sgt()
    32b3f3382d6c counter: interrupt-cnt: Protect enable/disable OPs with mutex
    72166de0a1a5 MIPS: Loongson64: Add missing '#interrupt-cells' for loongson64c_ls7a
    ec20928ecb1c iio: adc: ad7124: Fix 3dB filter frequency reading
    ca0012a63261 iio: filter: admv8818: Support frequencies >= 2^32
    786cdbd4da1b iio: filter: admv8818: fix range calculation
    61b3b2d62888 iio: filter: admv8818: fix integer overflow
    31fa7dd09a25 iio: filter: admv8818: fix band 4, state 15
    f2829faa3fd5 thunderbolt: Fix a logic error in wake on connect
    a6c7c365734c serial: Fix potential null-ptr-deref in mlb_usio_probe()
    db96a4fd8614 usb: renesas_usbhs: Reorder clock handling and power management in probe
    63df0a22dabc rtc: loongson: Add missing alarm notifications for ACPI RTC events
    56035627865e PCI/DPC: Initialize aer_err_info before using it
    b79e10050d9d dmaengine: ti: Add NULL check in udma_probe()
    127dfb4f1c5a phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug
    248f52ad6e82 PCI: apple: Use gpiod_set_value_cansleep in probe flow
    004316d2de7e PCI: cadence: Fix runtime atomic count underflow
    92d879eff459 PCI: Print the actual delay time in pci_bridge_wait_for_secondary_bus()
    2e6d9128fe9b rtc: sh: assign correct interrupts with DT
    848d78e3625f cifs: Fix validation of SMB1 query reparse point response
    c050dc2669c2 nfs: ignore SB_RDONLY when remounting nfs
    c9d9a8995f69 nfs: clear SB_RDONLY before getting superblock
    7101de239633 perf trace: Always print return value for syscalls returning a pid
    494395071e85 perf record: Fix incorrect --user-regs comments
    5ec729bc5b03 perf tests switch-tracking: Fix timestamp comparison
    a20bbd91622f mfd: stmpe-spi: Correct the name used in MODULE_DEVICE_TABLE
    611efa317b70 mfd: exynos-lpass: Avoid calling exynos_lpass_disable() twice in exynos_lpass_remove()
    85322ddd449a rpmsg: qcom_smd: Fix uninitialized return variable in __qcom_smd_send()
    3b726bc12624 remoteproc: k3-r5: Drop check performed in k3_r5_rproc_{mbox_callback/kick}
    f1a3c8ceb21d remoteproc: qcom_wcnss_iris: Add missing put_device() on error in probe
    41581d392c81 perf scripts python: exported-sql-viewer.py: Fix pattern matching with Python 3
    53385a400af6 perf intel-pt: Fix PEBS-via-PT data_src
    1737865a12f8 perf trace: Fix leaks of 'struct thread' in set_filter_loop_pids()
    84126960357d dm-flakey: make corrupting read bios work
    1aef0e1083bb dm-flakey: error all IOs when num_features is absent
    4e9e45746b86 hwmon: (asus-ec-sensors) check sensor index in read_string()
    a0d9d9b5a463 mtd: nand: ecc-mxic: Fix use of uninitialized variable ret
    fde314445332 backlight: pm8941: Add NULL check in wled_configure()
    06f41679d35e dm: free table mempools if not used in __bind
    679d40ca030a dm: don't change md if dm_table_set_restrictions() fails
    e431cc956d67 perf ui browser hists: Set actions->thread before calling do_zoom_thread()
    34e124dc2189 perf build: Warn when libdebuginfod devel files are not available
    655d3c6f8ce7 randstruct: gcc-plugin: Fix attribute addition
    c64a16344c52 randstruct: gcc-plugin: Remove bogus void member
    ab91647acdf4 fbdev: core: fbcvt: avoid division by 0 in fb_cvt_hperiod()
    8312b1f776f7 soc: aspeed: Add NULL check in aspeed_lpc_enable_snoop()
    b828083b3d7d soc: aspeed: lpc: Fix impossible judgment condition
    fc5a7a966466 ARM: aspeed: Don't select SRAM
    e774ce479f62 arm64: dts: mt6359: Rename RTC node to match binding expectations
    5b91fc48dcbb arm64: dts: renesas: white-hawk-ard-audio: Fix TPU0 groups
    0d5dd35f7a73 arm64: dts: rockchip: disable unrouted USB controllers and PHY on RK3399 Puma with Haikou
    867dd8a356a1 arm64: defconfig: mediatek: enable PHY drivers
    978991404adc ARM: dts: qcom: apq8064 merge hw splinlock into corresponding syscon device
    9337a54bc620 ARM: dts: qcom: apq8064: add missing clocks to the timer node
    4ca90f54bc65 dt-bindings: vendor-prefixes: Add Liontron name
    4b23c46eb2d8 bus: fsl-mc: fix double-free on mc_dev
    8b8e2966477e nilfs2: do not propagate ENOENT error from nilfs_btree_propagate()
    9ab3008bf984 nilfs2: add pointer check for nilfs_direct_propagate()
    681a35b1dcf1 ocfs2: fix possible memory leak in ocfs2_finish_quota_recovery
    4f99357dadbf Squashfs: check return result of sb_min_blocksize
    2d4ad56428ed arm64: dts: ti: k3-j721e-common-proc-board: Enable OSPI1 on J721E
    38caeda97b5d arm64: tegra: Drop remaining serial clock-names and reset-names
    1aaffafdd44b arm64: dts: rockchip: Update eMMC for NanoPi R5 series
    850fd99f22fc arm64: dts: qcom: sda660-ifc6560: Fix dt-validate warning
    ac25c30462a5 arm64: dts: qcom: sdm660-lavender: Add missing USB phy supply
    6145c491d649 arm64: dts: mt6359: Add missing 'compatible' property to regulators node
    018324818ad5 arm64: dts: mediatek: mt6357: Drop regulator-fixed compatibles
    d6d756d3ea21 arm64: dts: imx8mn-beacon: Set SAI5 MCLK direction to output for HDMI audio
    2eb09d84a00a arm64: dts: imx8mm-beacon: Set SAI5 MCLK direction to output for HDMI audio
    7a276effd506 arm64: dts: imx8mp-beacon: Fix RTC capacitive load
    75b985ef1e64 arm64: dts: imx8mn-beacon: Fix RTC capacitive load
    986c6c52d4aa arm64: dts: imx8mm-beacon: Fix RTC capacitive load
    c8658f43df4f arm64: dts: qcom: sdm660-xiaomi-lavender: Add missing SD card detect GPIO
    62f142f9b863 arm64: dts: mediatek: mt8195: Reparent vdec1/2 and venc1 power domains
    8af84ebd27fc ARM: dts: at91: at91sam9263: fix NAND chip selects
    e6ef5b282e33 ARM: dts: at91: usb_a9263: fix GPIO for Dataflash chip select
    3c9472989031 arm64: dts: qcom: sc8280xp-x13s: Drop duplicate DMIC supplies
    b1253f7c65d1 arm64: dts: qcom: sm8250: Fix CPU7 opp table
    ac0df85cc591 arm64: dts: qcom: sm8350: Reenable crypto & cryptobam
    072b6f8e39ce arm64: dts: qcom: sdm845-starqltechn: remove excess reserved gpios
    618060fc563b arm64: dts: qcom: sdm845-starqltechn: refactor node order
    2bf235c5dddf arm64: dts: qcom: sdm845-starqltechn: fix usb regulator mistake
    8218e21030bd arm64: dts: qcom: sdm845-starqltechn: remove wifi
    c4f2f90ebbad f2fs: fix to correct check conditions in f2fs_cross_rename
    67b800b6d772 f2fs: use d_inode(dentry) cleanup dentry->d_inode
    857b4d2bbeb4 net: phy: mscc: Stop clearing the the UDPv4 checksum for L2 frames
    8ebcd311b486 net: openvswitch: Fix the dead loop of MPLS parse
    946bfdfcb76a calipso: Don't call calipso functions for AF_INET sk.
    5df8db01d6a4 octeontx2-pf: QOS: Refactor TC_HTB_LEAF_DEL_LAST callback
    0b40aeaf83ca net: phy: mscc: Fix memory leak when using one step timestamping
    6486f11ccef4 net: lan743x: rename lan743x_reset_phy to lan743x_hw_reset_phy
    4744a5d71d2a net: phy: fix up const issues in to_mdio_device() and to_phy_device()
    363fdf277742 net: phy: clear phydev->devlink when the link is deleted
    6f639c25bfad bpf: Avoid __bpf_prog_ret0_warn when jit fails
    8d5bc5ec6c94 net: lan966x: Fix 1-step timestamping over ipv4 or ipv6
    ac7897c01240 RDMA/cma: Fix hang when cma_netevent_callback fails to queue_work
    60790d287c1a net: usb: aqc111: fix error handling of usbnet read calls
    333262e5dd8c RISC-V: KVM: lock the correct mp_state during reset
    68b69b50dfba netfilter: nft_tunnel: fix geneve_opt dump
    4c6fa65ab2ae bpf, sockmap: Avoid using sk_socket after free when sending
    9c73afd7f1c9 Bluetooth: MGMT: iterate over mesh commands in mgmt_mesh_foreach()
    801677040bb2 vfio/type1: Fix error unwind in migration dirty bitmap allocation
    cf008d9a08a7 netfilter: nf_tables: nft_fib_ipv6: fix VRF ipv4/ipv6 result discrepancy
    1e8b2048f9e9 wifi: mt76: mt7996: fix RX buffer size of MCU event
    800f7e73a679 wifi: mt76: mt7996: set EHT max ampdu length capability
    e9f9cef1877a wifi: mt76: mt7915: Fix null-ptr-deref in mt7915_mmio_wed_init()
    6c81f1c7812c kernfs: Relax constraint in draining guard
    713b9bfa939d scsi: ufs: mcq: Delete ufshcd_release_scsi_cmd() in ufshcd_mcq_abort()
    5482ef9875ea wifi: ath9k_htc: Abort software beacon handling if disabled
    b5ef128926cd hisi_acc_vfio_pci: bugfix live migration function without VF device driver
    5be5cd86d1e9 hisi_acc_vfio_pci: add eq and aeq interruption restore
    f0423873e7ae hisi_acc_vfio_pci: fix XQE dma address error
    99dbad1b01d3 wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event
    4b1cf1f040a0 iommu: remove duplicate selection of DMAR_TABLE
    74e18211c2c8 wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds
    f61b8fecec96 s390/bpf: Store backchain even for leaf progs
    fbd4d6293b53 clk: qcom: gcc-msm8939: Fix mclk0 & mclk1 for 24 MHz
    6d8f39875a10 bpf: Fix WARN() in get_bpf_raw_tp_regs
    eb435bc4c74a pinctrl: at91: Fix possible out-of-boundary access
    b44672c17ca0 libbpf: Use proper errno value in nlattr
    07680e38b78d ktls, sockmap: Fix missing uncharge operation
    94ade4147a09 tracing: Fix error handling in event_trigger_parse()
    ae015964d7ff tracing: Rename event_trigger_alloc() to trigger_data_alloc()
    3f7724fcc193 efi/libstub: Describe missing 'out' parameter in efi_load_initrd
    3c1adc2f8c73 clk: bcm: rpi: Add NULL check in raspberrypi_clk_register()
    012fd5987309 clk: qcom: gpucc-sm6350: Add *_wait_val values for GDSCs
    7c95e4a31fc4 clk: qcom: gcc-sm6350: Add *_wait_val values for GDSCs
    f2692b21774d clk: qcom: dispcc-sm6350: Add *_wait_val values for GDSCs
    a1383eb9d6c4 clk: qcom: camcc-sm6350: Add *_wait_val values for GDSCs
    ac7ab38c271b tracing: Move histogram trigger variables from stack to per CPU structure
    c60f57a49619 bpf: Fix uninitialized values in BPF_{CORE,PROBE}_READ
    7c4c84cdcc19 RDMA/mlx5: Fix error flow upon firmware failure for RQ destruction
    5e4519d8cdd8 netfilter: nft_quota: match correctly when the quota just depleted
    585c9ed565c5 netfilter: bridge: Move specific fragmented packet to slow_path instead of dropping it
    50bbbd25597d bpf: Allow XDP dev-bound programs to perform XDP_REDIRECT into maps
    1066c5a7d083 libbpf: Use proper errno value in linker
    1c005c53cf8e f2fs: fix to detect gcing page in f2fs_is_cp_guaranteed()
    43cec280496a f2fs: clean up w/ fscrypt_is_bounce_page()
    4b88a4dfbea0 bonding: assign random address if device address is same as bond
    8fa998b842f2 iommu: Protect against overflow in iommu_pgsize()
    cb4b9369463e Use thread-safe function pointer in libbpf_print
    79669facfe92 libbpf: Remove sample_period init in perf_buffer
    624b4cf6c49c scsi: hisi_sas: Call I_T_nexus after soft reset for SATA disk
    5edd80d4b9c8 RDMA/hns: Include hnae3.h in hns_roce_hw_v2.h
    be049199dec9 wifi: ath12k: fix node corruption in ar->arvifs list
    c9c9107ffa0e wifi: ath12k: Add MSDU length validation for TKIP MIC error
    f76f399004c6 wifi: rtw88: do not ignore hardware read error during DPK
    7b63e52a8bab wifi: rtw88: sdio: call rtw_sdio_indicate_tx_status unconditionally
    446fcc230d9f wifi: rtw88: sdio: map mgmt frames to queue TX_DESC_QSEL_MGMT
    6aa81fc0d67a xfrm: Use xdo.dev instead of xdo.real_dev
    18eb7b5f1e51 libbpf: Fix buffer overflow in bpf_object__init_prog
    0e9c13ed852e net: ncsi: Fix GCPS 64-bit member variables
    a39cc43efc1b f2fs: fix to do sanity check on sbi->total_valid_block_count
    a93db61dfa92 wifi: ath12k: Fix WMI tag for EHT rate in peer assoc
    db1d15a26f21 bpf, sockmap: Fix panic when calling skb_linearize
    34837ae8cded bpf, sockmap: fix duplicated data transmission
    2e36a81d388e bpf: fix ktls panic with sockmap
    7c969106a8ba selftests/bpf: Fix bpf_nf selftest failure
    b524baecb01b IB/cm: use rwlock for MAD agent lock
    f50ba7e7b607 wifi: ath11k: fix node corruption in ar->arvifs list
    3d6e3849b691 xen/x86: fix initial memory balloon target
    7810600b06cb drm/mediatek: mtk_drm_drv: Unbind secondary mmsys components on err
    a2502fd0fa9f drm/mediatek: Fix kobject put for component sub-drivers
    8126855798b0 drm/mediatek: mtk_drm_drv: Fix kobject put for mtk_mutex device ptr
    77511c2d2d1c perf/amlogic: Replace smp_processor_id() with raw_smp_processor_id() in meson_ddr_pmu_create()
    ee96502062ec scsi: qedf: Use designated initializer for struct qed_fcoe_cb_ops
    e500dff1e4e5 arm64/fpsimd: Do not discard modified SVE state
    99d4011a0a32 firmware: SDEI: Allow sdei initialization without ACPI_APEI_GHES
    3215e000eff6 drm/tegra: rgb: Fix the unbound reference count
    01f73e104288 drm/vkms: Adjust vkms_state->active_planes allocation type
    4715d2959d3b drm: rcar-du: Fix memory leak in rcar_du_vsps_init()
    5e99bcff7cb5 selftests/seccomp: fix syscall_restart test for arm compat
    cf08a1cba004 arm64: Support ARM64_VA_BITS=52 when setting ARCH_MMAP_RND_BITS_MAX
    0052f10c25e4 firmware: psci: Fix refcount leak in psci_dt_init
    569829f8fde0 m68k: mac: Fix macintosh_config for Mac II
    428d865fec68 watchdog: exar: Shorten identity name to fit correctly
    701340a25b1a fs/ntfs3: handle hdr_first_de() return value
    94be75619e8c drm/bridge: lt9611uxc: Fix an error handling path in lt9611uxc_probe()
    2f6e645ce64e arm64/fpsimd: Fix merging of FPSIMD state during signal return
    43be952e8854 arm64/fpsimd: Discard stale CPU state when handling SME traps
    8bf6491dab8c arm64/fpsimd: Avoid RES0 bits in the SME trap handler
    0d271c53009a media: rkvdec: Fix frame size enumeration
    cdf7e1ff99ab drm/amd/pp: Fix potential NULL pointer dereference in atomctrl_initialize_mc_reg_table
    079cc1fa46e0 drm/vc4: tests: Use return instead of assert
    83cc36371af8 drm/vmwgfx: Add seqno waiter for sync_files
    8b263e8ab2d3 ASoC: apple: mca: Constrain channels according to TDM mask
    42f7dd4bf5e0 spi: sh-msiof: Fix maximum DMA transfer size
    5174ac310ae7 ACPI: OSI: Stop advertising support for "3.0 _SCP Extensions"
    fca08cfadd45 PM: sleep: Print PM debug messages during hibernation
    aa7b90057bc3 x86/mtrr: Check if fixed-range MTRRs exist in mtrr_save_fixed_ranges()
    2b5459380613 PM: wakeup: Delete space in the end of string shown by pm_show_wakelocks()
    5b71469d77fd ASoC: SOF: ipc4-pcm: Adjust pipeline_list->pipelines allocation type
    d46af758f63d power: reset: at91-reset: Optimize at91_reset()
    c6c142267952 spi: tegra210-quad: modify chip select (CS) deactivation
    41de2c9e30b7 spi: tegra210-quad: remove redundant error handling code
    04034d43e9b6 spi: tegra210-quad: Fix X1_X2_X4 encoding and support x4 transfers
    3ff2422442de EDAC/{skx_common,i10nm}: Fix the loss of saved RRL for HBM pseudo channel 0
    3f5d06590009 EDAC/skx_common: Fix general protection fault
    4191b7669e00 ASoC: tas2764: Enable main IRQs
    8b94e19adae3 ACPICA: exserial: don't forget to handle FFixedHW opregions for reading
    f6941e72d352 kunit: Fix wrong parameter to kunit_deactivate_static_stub()
    5810e9d402c4 crypto: sun8i-ce - move fallback ahash_request to the end of the struct
    04a39a3c7d37 crypto: xts - Only add ecb if it is not already there
    ba2af6855c4d crypto: lrw - Only add ecb if it is not already there
    ec91ab135cf0 rcu/cpu_stall_cputime: fix the hardirq count for x86 architecture
    402fd6a6fe57 btrfs: scrub: fix a wrong error type when metadata bytenr mismatches
    7cfb9086b6d3 btrfs: scrub: update device stats when an error is detected
    3cf4d9cae435 crypto: marvell/cesa - Avoid empty transfer descriptor
    5e9666ac8b94 crypto: marvell/cesa - Handle zero-length skcipher requests
    62af7780054f x86/cpu: Sanitize CPUID(0x80000000) output
    ce167ff4cd17 x86/microcode/AMD: Do not return error when microcode update is not necessary
    4fb22310892c powerpc/crash: Fix non-smp kexec preparation
    fdc39b3ad8a7 powerpc: do not build ppc_save_regs.o always
    cb1e26f53e59 crypto: sun8i-ss - do not use sg_dma_len before calling DMA functions
    c62b79c1c513 crypto: sun8i-ce-cipher - fix error handling in sun8i_ce_cipher_prepare()
    6ce08b3ba52c perf/core: Fix broken throttling when max_samples_per_tick=1
    eec0dd17db02 gfs2: gfs2_create_inode error handling fix
    76c7b1407a7a crypto: sun8i-ce-hash - fix error handling in sun8i_ce_hash_run()
    5dea6398f2dd x86/idle: Remove MFENCEs for X86_BUG_CLFLUSH_MONITOR in mwait_idle_with_hints() and prefer_mwait_c1_over_halt()
    cc5cd8a1719e tools/x86/kcpuid: Fix error handling
    e9019e2214fa Revert "drm/amd/display: more liberal vmin/vmax update for freesync"
    9f837b359d1c dt-bindings: phy: imx8mq-usb: fix fsl,phy-tx-vboost-level-microvolt property
    68c504243737 dt-bindings: usb: cypress,hx3: Add support for all variants
    5a057f261539 thunderbolt: Do not double dequeue a configuration request
    259e4d6e10cd usb: usbtmc: Fix timeout value in get_stb
    3258d7ff8ebf serial: jsm: fix NPE during jsm_uart_port_init
    e2e38c5211b1 Bluetooth: hci_qca: move the SoC type check to the right place
    b63f23fb0ad2 usb: typec: ucsi: fix Clang -Wsign-conversion warning
    5ec1200da929 USB: serial: pl2303: add new chip PL2303GC-Q20 and PL2303GT-2AB
    ff835ab115f0 usb: storage: Ignore UAS driver for SanDisk 3.2 Gen2 storage device
    73c50fa3ff02 usb: quirks: Add NO_LPM quirk for SanDisk Extreme 55AE
    32a5f643ce54 rtc: Fix offset calculation for .start_secs < 0
    b836d94be852 rtc: Make rtc_time64_to_tm() support dates before 1970
    dbd568a30597 acpi-cpufreq: Fix nominal_freq units to KHz in get_max_boost_ratio()
    39ed85ae485d pinctrl: armada-37xx: set GPIO output value before setting direction
    8f0f45a31215 pinctrl: armada-37xx: use correct OUTPUT_VAL register for GPIOs > 31
    4afa9d57ed5e tracing: Fix compilation warning on arm32

(From OE-Core rev: e92b90ade0b0c3bbb4e2a9d29c7b85e32a161279)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Bruce Ashfield
25cc9eae17 linux-yocto/6.6: update to v6.6.93
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    c2603c511feb4 Linux 6.6.93
    c78abb646ff82 ksmbd: use list_first_entry_or_null for opinfo_get_list()
    106451492d74c net: ethernet: ti: am65-cpsw: Lower random mac address error print to info
    513b27dbd126b platform/x86: thinkpad_acpi: Ignore battery threshold change event notification
    871e44494f5d5 platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys
    af7243148f2eb NFS: Avoid flushing data while holding directory locks in nfs_rename()
    f83097445b7ec nvme-pci: add NVME_QUIRK_NO_DEEPEST_PS quirk for SOLIDIGM P44 Pro
    e99de95033051 spi: spi-sun4i: fix early activation
    b8435b76971dc phy: starfive: jh7110-usb: Fix USB 2.0 host occasional detection failure
    eae121397e278 drm/amd/display: fix link_set_dpms_off multi-display MST corner case
    4728d56dc56f0 um: let 'make clean' properly clean underlying SUBARCH as well
    af288d8e14058 platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS
    764f8cd8aadcd nfs: don't share pNFS DS connections between net namespaces
    98f7c351a11a1 HID: quirks: Add ADATA XPG alpha wireless mouse support
    46a6ce4812555 dmaengine: idxd: cdev: Fix uninitialized use of sva in idxd_cdev_open
    cdb61a705f5f3 coredump: hand a pidfd to the usermode coredump helper
    1846a7b92b863 coredump: fix error handling for replace_fd()
    0ec1e98bf5366 perf/arm-cmn: Initialise cmn->cpu earlier
    10778e2f49a2c perf/arm-cmn: Fix REQ2/SNP2 mixup
    295f7c579b07b net_sched: hfsc: Address reentrant enqueue adding class to eltree twice
    ee1209b9f57ba arm64: dts: ti: k3-am68-sk: Fix regulator hierarchy
    cf27046208bd8 arm64: dts: qcom: sm8550: Add missing properties for cryptobam
    feadf31790331 arm64: dts: qcom: sm8450: Add missing properties for cryptobam
    5dd982ff67d1e arm64: dts: qcom: sm8350: Fix typo in pil_camera_mem node
    abf3ffaeef603 arm64: dts: qcom: ipq9574: Add missing properties for cryptobam
    ea61eda1f4b45 af_unix: Fix uninit-value in __unix_walk_scc()
    ed14f8ae9bcf7 af_unix: Fix garbage collection of embryos carrying OOB with SCM_RIGHTS
    c0c8d419dade9 af_unix: Add dead flag to struct scm_fp_list.
    a288920ff9dab af_unix: Don't access successor in unix_del_edges() during GC.
    3600729b7fc05 af_unix: Try not to hold unix_gc_lock during accept().
    7b1ffbd3b22e7 af_unix: Remove lock dance in unix_peek_fds().
    de7921631ff32 af_unix: Replace garbage collection algorithm.
    2c2d0c662d842 af_unix: Detect dead SCC.
    324005012f65e af_unix: Assign a unique index to SCC.
    d23802221f675 af_unix: Avoid Tarjan's algorithm if unnecessary.
    cdaa3499a8519 af_unix: Skip GC if no cycle exists.
    e0e23fc499920 af_unix: Save O(n) setup of Tarjan's algo.
    27a07364cefdf af_unix: Fix up unix_edge.successor for embryo socket.
    36f924e4bf4e7 af_unix: Save listener for embryo socket.
    3ee9b24bd6f70 af_unix: Detect Strongly Connected Components.
    856aacbe2c520 af_unix: Iterate all vertices by DFS.
    494accabb56e2 af_unix: Bulk update unix_tot_inflight/unix_inflight when queuing skb.
    d2d9f382e2db6 af_unix: Link struct unix_edge when queuing skb.
    4fc7df1c6da14 af_unix: Allocate struct unix_edge for each inflight AF_UNIX fd.
    9e98ba0c73529 af_unix: Allocate struct unix_vertex for each inflight AF_UNIX fd.
    8eb55b667a0e2 af_unix: Remove CONFIG_UNIX_SCM.
    c0d56c028d90f af_unix: Remove io_uring code for GC.
    36f1f6ac53889 af_unix: Replace BUG_ON() with WARN_ON_ONCE().
    acc97866c1eae af_unix: Try to run GC async.
    328840c93bd6a af_unix: Run GC on only one CPU.
    4be073d59068e af_unix: Return struct unix_sock from unix_get_socket().
    c7b1bd52a031a btrfs: check folio mapping after unlock in relocate_one_folio()
    63815bef47ec2 hrtimers: Force migrate away hrtimers queued after CPUHP_AP_HRTIMERS_DYING
    5a9c0d5cbd02d can: kvaser_pciefd: Force IRQ edge in case of nested IRQ
    f968f28cd14bb drm/gem: Internally test import_attach for imported objects
    10aecdc1c30c7 x86/mm/init: Handle the special case of device private pages in add_pages(), to not increase max_pfn and trigger dma_addressing_limited() bounce buffers bounce buffers
    367b8b91de2a0 i3c: master: svc: Fix implicit fallthrough in svc_i3c_master_ibi_work()
    1f9170737480d pinctrl: tegra: Fix off by one in tegra_pinctrl_get_group()
    4a5e6e798ec77 watchdog: aspeed: fix 64-bit division
    a9e4ee7f12886 serial: sh-sci: Save and restore more registers
    517f928cc0c13 pds_core: Prevent possible adminq overflow/stuck condition
    77192e9cfe1b3 highmem: add folio_test_partial_kmap()
    bc133e43cb565 x86/boot: Compile boot code with -std=gnu11 too
    5cdce62dd929a spi: spi-fsl-dspi: Reset SR flags before sending a new message
    7cf42e5f406a5 spi: spi-fsl-dspi: Halt the module after a new message transfer
    9df00bd4769a0 spi: spi-fsl-dspi: restrict register range for regmap access
    0e7efc9acbb56 ksmbd: fix stream write failure
    fa68d5c14a70d Revert "arm64: dts: allwinner: h6: Use RSB for AXP805 PMIC connection"
    f391043332e38 mm/page_alloc.c: avoid infinite retries caused by cpuset race
    363fd868d7a71 memcg: always call cond_resched() after fn()
    f33001a7c1e8f Input: xpad - add more controllers
    ed7d24b0c375f Revert "drm/amd: Keep display off while going into S4"
    bee465c0c464b smb: client: Reset all search buffer pointers when releasing buffer
    17d096c485b89 arm64: dts: marvell: uDPU: define pinctrl state for alarm LEDs
    73cadde98f67f smb: client: Fix use-after-free in cifs_fill_dirent
    7227fc0692d53 drm/edid: fixed the bug that hdr metadata was not reset
    7093887a11fe4 thermal: intel: x86_pkg_temp_thermal: Fix bogus trip temperature
    f86465626917d platform/x86: dell-wmi-sysman: Avoid buffer overflow in current_password_store()
    dde5400dad7e7 can: kvaser_pciefd: Continue parsing DMA buf after dropped RX
    4cfe30f681a3d llc: fix data loss when reading from a socket in llc_ui_recvmsg()
    6764329675f94 ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14ASP10
    74d90875f3d43 ALSA: pcm: Fix race of buffer access at PCM OSS layer
    b5bada85c181f ASoC: SOF: ipc4-pcm: Delay reporting is only supported for playback direction
    1beb8c26b1fb1 ASoc: SOF: topology: connect DAI to a single DAI link
    e8be784d30b44 ASoC: SOF: ipc4-control: Use SOF_CTRL_CMD_BINARY as numid for bytes_ext
    1f912f8484e9c can: bcm: add missing rcu read protection for procfs content
    76c84c3728178 can: bcm: add locking for bcm_op runtime updates
    e80f4f9c64b0f can: slcan: allow reception of short error messages
    584a729615fa9 padata: do not leak refcount in reorder_work
    134daaba93193 crypto: algif_hash - fix double free in hash_accept
    0c605de7edd68 clk: s2mps11: initialise clk_hw_onecell_data::num before accessing ::hws[] in probe()
    35016086ae593 octeontx2-af: Fix APR entry mapping based on APR_LMT_CFG
    cc797adde644d octeontx2-af: Set LMT_ENA bit for APR table entries
    b19fc1d0be3c3 net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done
    a3d24e4a835cb octeontx2-pf: Add AF_XDP non-zero copy support
    93c276942e75d sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()
    c844ace5b88d0 io_uring: fix overflow resched cqe reordering
    dbcd0909a1e2c net: lan743x: Restore SGMII CTRL register on resume
    0b4cde7284869 net: dwmac-sun8i: Use parsed internal PHY address instead of 1
    52b2e5579266f pinctrl: qcom: switch to devm_register_sys_off_handler()
    78b70388ca0ec pinctrl: qcom/msm: Convert to platform remove callback returning void
    df941e11772b3 ice: Fix LACP bonds without SRIOV environment
    c8a1a805e6d27 ice: fix vf->num_mac count with port representors
    fa942824b9f4a bridge: netfilter: Fix forwarding of fragmented packets
    feb6bde1a3241 Bluetooth: btusb: use skb_pull to avoid unsafe access in QCA dump handling
    c331a616a0b10 Bluetooth: L2CAP: Fix not checking l2cap_chan security level
    2b82d8e483bf0 dmaengine: fsl-edma: Fix return code for unhandled interrupts
    55f3c97fcba84 dmaengine: idxd: Fix ->poll() return value
    dcdc1aca6880d xfrm: Sanitize marks before insert
    a1fad2da94f00 clk: sunxi-ng: d1: Add missing divider for MMC mod clocks
    c2b52d947c3dd remoteproc: qcom_wcnss: Fix on platforms without fallback regulators
    5ff1a234fa4ee kernel/fork: only call untrack_pfn_clear() on VMAs duplicated for fork()
    1b388afe88163 dmaengine: idxd: Fix allowing write() from different address spaces
    05298c30b7d9f dmaengine: idxd: add wq driver name support for accel-config user tool
    b58a295d10065 espintcp: remove encap socket caching to avoid reference leak
    3cf3d4f11254e soundwire: bus: Fix race on the creation of the IRQ domain
    d8ece4ced3b05 __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock
    e6d703b693b4c xenbus: Allow PVH dom0 a non-local xenstore
    85d12487d90ab wifi: iwlwifi: add support for Killer on MTL
    4e3401aa6e447 tools: ynl-gen: validate 0 len strings from kernel
    50d0de59f66cb btrfs: avoid NULL pointer dereference if no valid csum tree
    7a97f961a568a btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref
    225cc549ed23f cifs: Fix changing times and read-only attr over SMB1 smb_set_file_info() function
    fc460c12cd1e9 cifs: Fix and improve cifs_query_path_info() and cifs_query_file_info()
    b72952c8c3668 io_uring/fdinfo: annotate racy sq/cq head/tail reads
    3a982ada411b8 nvmet-tcp: don't restore null sk_state_change
    a7a2315d8d0dc nvme-pci: add quirks for WDC Blue SN550 15b7:5009
    0a3f5efd1c545 nvme-pci: add quirks for device 126f:1001
    1c0d7792cfc71 ALSA: hda/realtek: Add quirk for HP Spectre x360 15-df1xxx
    dbb47cbdbe2ad ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013
    4c017ff3d73dd ASoC: cs42l43: Disable headphone clamps during type detection
    0ab50f622f202 pinctrl: meson: define the pull up/down resistor value as 60 kOhm
    534794c719231 book3s64/radix: Fix compile errors when CONFIG_ARCH_WANT_OPTIMIZE_DAX_VMEMMAP=n
    442a247361f8b ASoC: imx-card: Adjust over allocation of memory in imx_card_parse_of()
    fe4a7145f048c drm: Add valid clones check
    1c58b332bc435 drm/panel-edp: Add Starry 116KHD024006
    e585f4f44a102 drm/atomic: clarify the rules around drm_atomic_state->allow_modeset
    5d4951bad74bf drm: bridge: adv7511: fill stream capabilities
    a7e7cf538939d wifi: ath12k: Fix end offset bit definition in monitor ring descriptor
    2dbcaddcf8eab wifi: ath9k: return by of_get_mac_address
    a21971b4be60f accel/qaic: Mask out SR-IOV PCI resources
    fbdf410d3bd2e wifi: ath12k: fix ath12k_hal_tx_cmd_ext_desc_setup() info1 override
    b658e144a0922 regulator: ad5398: Add device tree support
    df76df11fd8be spi: zynqmp-gqspi: Always acknowledge interrupts
    ccf4a818d8c31 wifi: rtw89: add wiphy_lock() to work that isn't held wiphy_lock() yet
    5e479af4999b0 wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate
    ee71c34d4f415 wifi: rtl8xxxu: retry firmware download on error
    419988f4d0efb perf/amd/ibs: Fix ->config to sample period calculation for OP PMU
    0cb6a1292aaef perf/amd/ibs: Fix perf_ibs_op.cnt_mask for CurCnt
    9610a67963506 firmware: arm_scmi: Relax duplicate name constraint across protocol ids
    38d906f1c54b9 bpftool: Fix readlink usage in get_fd_type
    0e8eb91a4950f drm/ast: Find VBIOS mode from regular display size
    e190ed2c12e77 ASoC: rt722-sdca: Add some missing readable registers
    48c78cf634dba ASoC: codecs: pcm3168a: Allow for 24-bit in provider mode
    123ac614e5b34 arm64: zynqmp: add clock-output-names property in clock nodes
    23b0b86ad1db2 HID: usbkbd: Fix the bit shift number for LED_KANA
    c317b0694a6eb wifi: ath12k: Avoid napi_sync() before napi_enable()
    32bcf54138acf scsi: st: Restore some drive settings after reset
    1960bb56a9c83 scsi: lpfc: Free phba irq in lpfc_sli4_enable_msi() when pci_irq_vector() fails
    3dfeee957aaf3 scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine
    c34ab75adde53 net/mana: fix warning in the writer of client oob
    1d10624a42437 ice: count combined queues using Rx/Tx count
    948664b92e571 perf: Avoid the read if the count is already updated
    f47d605c5e2a6 rcu: fix header guard for rcu_all_qs()
    9abec90c85b22 rcu: handle unstable rdp in rcu_read_unlock_strict()
    4a36d93a01758 rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y
    cae56998162cc ice: treat dyn_allowed only as suggestion
    9ed3c1b11d7ef bridge: mdb: Allow replace of a host-joined group
    961ee132104b0 r8169: don't scan PHY addresses > 0
    2cb57a887a435 ipv4: ip_gre: Fix set but not used warning in ipgre_err() if IPv4-only
    13cba3f837903 vxlan: Annotate FDB data races
    090c0ba179eaf net/mlx5e: Avoid WARN_ON when configuring MQPRIO with HTB offload enabled
    f312bd5cf2067 media: qcom: camss: csid: Only add TPG v4l2 ctrl if TPG hardware is available
    6fed5e23d2a92 f2fs: introduce f2fs_base_attr for global sysfs entries
    9af429febfedf hwmon: (xgene-hwmon) use appropriate type for the latency value
    70e7df6f69073 clk: qcom: camcc-sm8250: Use clk_rcg2_shared_ops for some RCGs
    ba02bb3a01328 wifi: rtw88: Fix __rtw_download_firmware() for RTL8814AU
    0b660a7f296b5 wifi: rtw88: Fix download_firmware_validate() for RTL8814AU
    23fe8aa8cc1a8 ext4: remove writable userspace mappings before truncating page cache
    73e7c65b21274 ext4: don't write back data before punch hole in nojournal mode
    3648ddabcdc25 leds: trigger: netdev: Configure LED blink interval for HW offload
    7ef54a11c199d pstore: Change kmsg_bytes storage size to u32
    09c3a82664d8f r8152: add vendor/device ID pair for Dell Alienware AW1022z
    cc1d408e7c9e2 ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure().
    22ee8dabec1a2 arch/powerpc/perf: Check the instruction type before creating sample with perf_mem_data_src
    fa5d374f6bacb powerpc/pseries/iommu: memory notifier incorrectly adds TCEs for pmemory
    6758d09763f62 net: fec: Refactor MAC reset to function
    2caf52c072059 wifi: mac80211: remove misplaced drv_mgd_complete_tx() call
    bb1f9d63127e8 wifi: mac80211: don't unconditionally call drv_mgd_complete_tx()
    9ef9ecabc6b55 drm/v3d: Add clock handling
    76016797e7f96 net/mlx5e: reduce the max log mpwrq sz for ECPF and reps
    dce57841d93de net/mlx5e: reduce rep rxq depth to 256 for ECPF
    9411c965e4e6a net/mlx5e: set the tx_queue_len for pfifo_fast
    c31e839649547 net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB
    353cd6804ea85 scsi: target: spc: Fix loop traversal in spc_rsoc_get_descr()
    991970293ff8a drm/amd/display/dm: drop hw_support check in amdgpu_dm_i2c_xfer()
    26b6548dc7417 drm/amdgpu: enlarge the VBIOS binary size limit
    de67e80ab48f1 drm/amd/display: Increase block_sequence array size
    16c26a6404454 drm/amd/display: Initial psr_version with correct setting
    c59c96b850ea6 drm/amd/display: Update CR AUX RD interval interpretation
    af2d36316a193 drm/amdgpu: reset psp->cmd to NULL after releasing the buffer
    6881a3a58852f drm/amd/display: Don't try AUX transactions on disconnected link
    ab83ed96f7587 drm/amdgpu: Set snoop bit for SDMA for MI series
    929cda8e4b75d soundwire: amd: change the soundwire wake enable/disable sequence
    6a7b7e98fec0a phy: core: don't require set_mode() callback for phy_get_mode() to work
    3bf3eae909914 serial: sh-sci: Update the suspend/resume support
    e9bed533ec803 sched: Reduce the default slice to avoid tasks getting an extra tick
    5024d8e58a080 x86/traps: Cleanup and robustify decode_bug()
    cc50c7c1a9898 clk: qcom: clk-alpha-pll: Do not use random stack value for recalc rate
    fba6e5d44fb8d clk: qcom: ipq5018: allow it to be bulid on arm32
    d655dbd82b555 net/mlx4_core: Avoid impossible mlx4_db_alloc() order value
    f8a9f45f75ab3 media: v4l: Memset argument to 0 before calling get_mbus_config pad op
    0b9d2468c3d88 media: i2c: imx219: Correct the minimum vblanking value
    868c3d8cfcff6 kunit: tool: Use qboot on QEMU x86_64
    3d6d13540f776 smack: Revert "smackfs: Added check catlen"
    e30f31434e9c3 smack: recognize ipv4 CIPSO w/o categories
    de4332d7a5f6f pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map
    b3d2a8809ef07 ASoC: soc-dai: check return value at snd_soc_dai_set_tdm_slot()
    35160eda61e74 ASoC: tas2764: Power up/down amp on mute ops
    c1045e770256c ASoC: tas2764: Mark SW_RESET as volatile
    7ac84ee5eec85 ASoC: tas2764: Add reg defaults for TAS2764_INT_CLK_CFG
    9dcce3f40d54d ASoC: ops: Enforce platform maximum on initial value
    3da8088afd13a firmware: arm_ffa: Reject higher major version as incompatible
    3ec539f1e9195 net/mlx5: Apply rate-limiting to high temperature warning
    69f453ccb9e47 net/mlx5: Modify LSB bitmask in temperature event to include only the first bit
    a9b2bb8a4f25b media: test-drivers: vivid: don't call schedule in loop
    ddddd806ba7de vxlan: Join / leave MC group after remote changes
    d97c38275d12c ACPI: HED: Always initialize before evged
    0d398ed850df9 PCI: Fix old_size lower bound in calculate_iosize() too
    d8afc25580735 eth: mlx4: don't try to complete XDP frames in netpoll
    242272c953e3b bpf: don't do clean_live_states when state->loop_entry->branches > 0
    00e59d1495fba can: c_can: Use of_property_present() to test existence of DT property
    ef7ee9b815345 pmdomain: imx: gpcv2: use proper helper for property detection
    7c5e73608302a RDMA/core: Fix best page size finding when it can cross SG entries
    c504c11b94d6e serial: mctrl_gpio: split disable_ms into sync and no_sync APIs
    df8970a270add drm/amd/display: Add support for disconnected eDP streams
    671fea645a71b i3c: master: svc: Flush FIFO before sending Dynamic Address Assignment(DAA)
    398351dcdb631 EDAC/ie31200: work around false positive build warning
    c81c2ee1c3b05 net: pktgen: fix access outside of user given buffer in pktgen_thread_write()
    35434d1c93c73 wifi: rtw89: fw: propagate error code from rtw89_h2c_tx()
    5ce1f780a3bce wifi: rtw88: Fix rtw_desc_to_mcsrate() to handle MCS16-31
    1b1daafd2e974 wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU
    a95813193ab78 wifi: rtw88: Fix rtw_init_vht_cap() for RTL8814AU
    f38a1b35c8f4e scsi: mpt3sas: Send a diag reset if target reset fails
    06abee685cc97 clocksource: mips-gic-timer: Enable counter when CPUs start
    2e1b3650f5691 MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core
    ba41e4e627db5 genirq/msi: Store the IOMMU IOVA directly in msi_desc instead of iommu_cookie
    2ed497f369b2e MIPS: Use arch specific syscall name match function
    b2ea189a958a6 crypto: skcipher - Zap type in crypto_alloc_sync_skcipher
    3a0c8429ab1e4 crypto: ahash - Set default reqsize from ahash_alg
    b1d1b09698e99 x86/kaslr: Reduce KASLR entropy on most x86 systems
    b0556ba85a0f3 net/mlx5: Change POOL_NEXT_SIZE define value and make it global
    52aa28f7b1708 dm: fix unconditional IO throttle caused by REQ_PREFLUSH
    ecd205a5241df libbpf: Fix out-of-bound read
    e17a6ba07929b media: tc358746: improve calculation of the D-PHY timing registers
    ca9f3ab612c62 media: adv7180: Disable test-pattern control on adv7180
    3cd2aa93674ee cpuidle: menu: Avoid discarding useful information
    48fd80f7d7b48 vdpa/mlx5: Fix mlx5_vdpa_get_config() endianness on big-endian machines
    f5121d5ba7ce4 vhost-scsi: Return queue full for page alloc failures during copy
    de4469a90075b x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus()
    01768d1564650 ASoC: mediatek: mt8188: Add reference for dmic clocks
    6dadc66f6cf3e ASoC: mediatek: mt8188: Treat DMIC_GAINx_CUR as non-volatile
    ec6f764ab7009 drm/amd/display: handle max_downscale_src_width fail check
    7472e0da47716 x86/build: Fix broken copy command in genimage.sh when making isoimage
    f32344bf957b4 Octeontx2-af: RPM: Register driver with PCI subsys IDs
    3314310b3f3e6 soc: ti: k3-socinfo: Do not use syscon helper to build regmap
    f4e35b2c5f5cc wifi: ath12k: Improve BSS discovery with hidden SSID in 6 GHz band
    fed3038a80bbc bonding: report duplicate MAC address in all situations
    7819a7dcf0412 net: xgene-v2: remove incorrect ACPI_PTR annotation
    7b8fe48cc86b6 net: ethernet: mtk_ppe_offload: Allow QinQ, double ETH_P_8021Q only
    ff01e0d0a61e4 leds: pwm-multicolor: Add check for fwnode_property_read_u32
    2059e6ea11c0d drm/amdkfd: KFD release_work possible circular locking
    0759d154654a8 selftests/net: have `gro.sh -t` return a correct exit code
    b3c8449484848 net/mlx5: Avoid report two health errors on same syndrome
    e2de76c34a8a9 firmware: arm_ffa: Set dma_mask for ffa devices
    a1a5e783d7cab PCI: brcmstb: Add a softdep to MIP MSI-X driver
    1f27e708e36ea PCI: brcmstb: Expand inbound window size up to 64GB
    f6dfaf5905ad6 wifi: ath12k: Report proper tx completion status to mac80211
    c7c729d7a85a9 soc: apple: rtkit: Implement OSLog buffers properly
    78b6b2fe17a2e soc: apple: rtkit: Use high prio work queue
    1ae981c91dc26 perf: arm_pmuv3: Call kvm_vcpu_pmu_resync_el0() before enabling counters
    372ed2171031d fpga: altera-cvp: Increase credit timeout
    7b851d6a02da0 drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence
    d8e57904dc269 ARM: at91: pm: fix at91_suspend_finish for ZQ calibration
    a9dd5d748c87d hwmon: (gpio-fan) Add missing mutex locks
    7adb96687ce88 x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2
    ca16d144d1f0a clk: imx8mp: inform CCF of maximum frequency of clocks
    032f3bf6471cd media: uvcvideo: Handle uvc menu translation inside uvc_get_le_value
    faa24692f7041 media: uvcvideo: Add sanity check to uvc_ioctl_xu_ctrl_map
    9459abd770107 drm/rockchip: vop2: Add uv swap for cluster window
    9778a91827272 ipv4: fib: Move fib_valid_key_len() to rtm_to_fib_config().
    2be4a7d53261b ALSA: hda/realtek: Enable PC beep passthrough for HP EliteBook 855 G7
    30ae895966221 perf/hw_breakpoint: Return EOPNOTSUPP for unsupported breakpoint type
    2a9a7d2f19cca net: pktgen: fix mpls maximum labels list parsing
    cf81dae86bf6b net: ethernet: ti: cpsw_new: populate netdev of_node
    2cbe6d551b4a9 pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned"
    5c9eca180a423 media: cx231xx: set device_caps for 417
    a7b8f0addf84f drm/amd/display: Skip checking FRL_MODE bit for PCON BW determination
    3af9db78423c5 drm/amdgpu: Do not program AGP BAR regs under SRIOV in gfxhub_v1_0.c
    fef1e1487dea8 remoteproc: qcom_wcnss: Handle platforms with only single power domain
    c5b23df98a925 net: phylink: use pl->link_interface in phylink_expects_phy()
    b27be76f35010 drm/gem: Test for imported GEM buffers with helper
    121f0335d91e4 orangefs: Do not truncate file size
    3986ef4a9b6a0 dm cache: prevent BUG_ON by blocking retries on failed device resumes
    d5f8c8ec1e783 media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe()
    74eea50b7afa1 ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114
    da74e11cedd1e ieee802154: ca8210: Use proper setters and getters for bitwise types
    c0acbeac2b287 rtc: ds1307: stop disabling alarms on probe
    fb69189023279 tcp: bring back NUMA dispersion in inet_ehash_locks_alloc()
    8c1a16d612ef7 ALSA: seq: Improve data consistency at polling
    7b1bb4d40dab8 powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7
    d0e3e19564f03 arm64: tegra: Resize aperture for the IGX PCIe C5 slot
    988770bf312cf arm64: tegra: p2597: Fix gpio for vdd-1v8-dis regulator
    ab13c8a5f777b drm/amdkfd: Set per-process flags only once cik/vi
    0acdc4d6e679b crypto: lzo - Fix compression buffer overrun
    ab4545a2540b7 watchdog: aspeed: Update bootstatus handling
    ac64f0e893ff3 cpufreq: tegra186: Share policy per cluster
    3123b3d445d16 iommu/amd/pgtbl_v2: Improve error handling
    8c305588bab71 ASoC: qcom: sm8250: explicitly set format in sm8250_be_hw_params_fixup()
    5b518c452ff58 auxdisplay: charlcd: Partially revert "Move hwidth and bwidth to struct hd44780_common"
    769d1bccd1cac gfs2: Check for empty queue in run_queue
    2e37d331c00c0 drm/amd/display: Fix incorrect DPCD configs while Replay/PSR switch
    1da3dc73724bb drm/amd/display: calculate the remain segments for all pipes
    4c2a348875646 drm/amd/display: remove minimum Dispclk and apply oem panel timing.
    8ebf2709fe4dc ipv6: save dontfrag in cork
    2b790fe67ed48 wifi: iwlwifi: fix debug actions order
    386a1a0d558d7 printk: Check CON_SUSPEND when unblanking a console
    8a7f2e84f85ad hwmon: (dell-smm) Increment the number of fans
    def5f5bc83ee7 usb: xhci: Don't change the status of stalled TDs on failed Stop EP
    903c4a0c2aff4 mmc: sdhci: Disable SD card clock before changing parameters
    5ae75245939c6 mmc: dw_mmc: add exynos7870 DW MMC support
    110f701e60f98 arm64/mm: Check PUD_TYPE_TABLE in pud_bad()
    89947eea8ff91 netfilter: conntrack: Bound nf_conntrack sysctl writes
    da36c3ad7c177 timer_list: Don't use %pK through printk()
    6df3855868eb8 posix-timers: Add cond_resched() to posix_timer_add() search loop
    1bef1811651bc RDMA/uverbs: Propagate errors from rdma_lookup_get_uobject()
    ba841627308a3 ext4: do not convert the unwritten extents if data writeback fails
    d7f3c874ea707 ext4: reject the 'data_err=abort' option in nojournal mode
    baf667f23f609 ASoC: sun4i-codec: support hp-det-gpios property
    f8d946034765a drm/amdgpu: Update SRIOV video codec caps
    2e290e9cf6a17 mfd: tps65219: Remove TPS65219_REG_TI_DEV_ID check
    aa97ea576a3f2 pinctrl-tegra: Restore SFSEL bit when freeing pins
    0fb6c439d265f xen: Add support for XenServer 6.1 platform device
    3ecfb92c019f2 net/smc: use the correct ndev to find pnetid by pnetid table
    ba8354a613a57 dm: restrict dm device size to 2^63-512 bytes
    44a82d2495e36 crypto: octeontx2 - suppress auth failure screaming due to negative tests
    3edb08b6c21ef kbuild: fix argument parsing in scripts/config
    bc8023ef3b114 bpf: Allow pre-ordering for bpf cgroup progs
    aed5bd3a84e87 ASoC: mediatek: mt6359: Add stub for mt6359_accdet_enable_jack_detect
    bf9cfc7fbe742 thunderbolt: Do not add non-active NVM if NVM upgrade is disabled for retimer
    4beb1e55f6b08 objtool: Fix error handling inconsistencies in check()
    72d9ccdcfce24 rtc: rv3032: fix EERD location
    a7b7bc510e9ea tcp: reorganize tcp_in_ack_event() and tcp_count_delivered()
    ed88717950ba9 jbd2: do not try to recover wiped journal
    5741b9d7bb873 bpf: Return prog btf_id without capable check
    743bb753255d3 vfio/pci: Handle INTx IRQ_NOTCONNECTED
    9f51fa1971239 scsi: st: ERASE does not change tape location
    01195aa1d694b scsi: st: Tighten the page format heuristics with MODE SELECT
    3011cdc5cb46c hypfs_create_cpu_files(): add missing check for hypfs_mkdir() failure
    4eda8a85d4d01 ext4: reorder capability check last
    57a2882cd4f35 um: Update min_low_pfn to match changes in uml_reserved
    7638182277867 um: Store full CSGSFS and SS register from mcontext
    61225b3395c21 dlm: make tcp still work in multi-link env
    0541822045ae0 i3c: master: svc: Fix missing STOP for master request
    398c541ed0495 drm/amd/display: Guard against setting dispclk low for dcn31x
    3192d59fb7b78 btrfs: send: return -ENAMETOOLONG when attempting a path that is too long
    a7f1c5fb7dd90 btrfs: get zone unusable bytes while holding lock at btrfs_reclaim_bgs_work()
    4dc7dcb919f36 btrfs: fix non-empty delayed iputs list on unmount due to async workers
    de635f9bba32e btrfs: run btrfs_error_commit_super() early
    1a012fd4eb9d0 btrfs: avoid linker error in btrfs_find_create_tree_block()
    4e74f91a6f70a btrfs: make btrfs_discard_workfn() block_group ref explicit
    a4666a812792d i2c: pxa: fix call balance of i2c->clk handling routines
    4fc8e3fb8efa8 i2c: qup: Vote for interconnect bandwidth to DRAM
    bffd5f2815c52 x86/mm: Check return value from memblock_phys_alloc_range()
    7124a9b6824e1 x86/stackprotector/64: Only export __ref_stack_chk_guard on CONFIG_SMP
    1752ceaa72d37 wifi: mt76: mt7996: revise TXS size
    d9776ce1733c7 wifi: mt76: only mark tx-status-failed frames as ACKed on mt76x0/2
    17e3ab067dfb6 mmc: host: Wait for Vdd to settle on card power off
    ea3d95e05e97e libnvdimm/labels: Fix divide error in nd_label_data_init()
    f29eb4c63bf4e ext4: on a remount, only log the ro or r/w state when it has changed
    44acbc14ea28d PCI: vmd: Disable MSI remapping bypass under Xen
    aa59ccacf8f33 pNFS/flexfiles: Report ENETDOWN as a connection error
    ec59dfbc1ba2f tools/build: Don't pass test log files to linker
    e4510552c297c PCI: dwc: ep: Ensure proper iteration over outbound map windows
    a74286d17e751 objtool: Properly disable uaccess validation
    454a770aea9fd lockdep: Fix wait context check on softirq for PREEMPT_RT
    0c2aa72f4f352 dql: Fix dql->limit value when reset.
    3854f4e98ef22 thermal/drivers/qoriq: Power down TMU on system suspend
    4a120221661fc spi-rockchip: Fix register out of bounds access
    4a8ebc45f2021 SUNRPC: rpcbind should never reset the port to the value '0'
    3ef02a05c86b4 SUNRPC: rpc_clnt_set_transport() must not change the autobind setting
    6b8beb8104d73 NFSv4: Treat ENETUNREACH errors as fatal for state recovery
    ee68e068cf92f cifs: Fix establishing NetBIOS session for SMB2+ connection
    89bcd83f67d22 cifs: add validation check for the fields in smb_aces
    88bf6295f065a fbdev: core: tileblit: Implement missing margin clearing for tileblit
    1714afc14dbe6 fbcon: Use correct erase colour for clearing in fbcon
    7f370b7e6fa03 fbdev: fsl-diu-fb: add missing device_remove_file()
    bbf3bb6ddea47 riscv: Allow NOMMU kernels to access all of RAM
    09096ead92f39 mailbox: use error ret code of of_parse_phandle_with_args()
    5641f6b3a4cd5 mailbox: pcc: Use acpi_os_ioremap() instead of ioremap()
    7d5b227875fb7 ACPI: PNP: Add Intel OC Watchdog IDs to non-PNP device list
    c1ab9f008ed40 tracing: Mark binary printing functions with __printf() attribute
    50702e7b47ed7 arm64: Add support for HIP09 Spectre-BHB mitigation
    e0b05cd9ece6e SUNRPC: Don't allow waiting for exiting tasks
    c72826efbb5eb NFS: Don't allow waiting for exiting tasks
    a81dd69f859b6 NFSv4: Check for delegation validity in nfs_start_delegation_return_locked()
    2371143e41735 fuse: Return EPERM rather than ENOSYS from link()
    209a4da04a27d smb: client: Store original IO parameters and prevent zero IO sizes
    5194597b9cde7 cifs: Fix negotiate retry functionality
    d50f7ce2fc32a cifs: Fix querying and creating MF symlinks over SMB1
    18066188eb90c cifs: Add fallback for SMB2 CREATE without FILE_READ_ATTRIBUTES
    f08641cd2152d s390/vfio-ap: Fix no AP queue sharing allowed message written to kernel log
    a6f24a41ef527 kconfig: merge_config: use an empty file as initfile
    adbb39eca39d1 samples/bpf: Fix compilation failure for samples/bpf on LoongArch Fedora
    38aa3cf1545f3 bpf: fix possible endless loop in BPF map iteration
    f5f169cd90769 selftests/bpf: Mitigate sockmap_ktls disconnect_after_delete failure
    f7292fbb41840 drm/amdgpu: Allow P2P access through XGMI
    722a6972defd8 ima: process_measurement() needlessly takes inode_lock() on MAY_READ
    91ba964a752bb net: enetc: refactor bulk flipping of RX buffers to separate function
    c36f5f659ad9c scsi: mpi3mr: Add level check to control event logging
    ca85c2d0db5f8 vhost-scsi: protect vq->log_used with vq->mutex
    20fb292ab5d5d cgroup: Fix compilation issue due to cgroup_mutex not being exported
    c15dc980ffc5a dma-mapping: avoid potential unused data compilation warning
    2cab5ea2f5ab6 intel_th: avoid using deprecated page->mapping, index fields
    b49b5132e4c73 virtio_ring: Fix data race by tagging event_triggered as racy for KCSAN
    42d15918da268 scsi: ufs: Introduce quirk to extend PA_HIBERN8TIME for UFS devices
    fe8421e853ef2 scsi: target: iscsi: Fix timeout on deleted connection
    beb6382add07a nvmem: qfprom: switch to 4-byte aligned reads
    35d77c8d887e1 nvmem: core: update raw_len if the bit reading is required
    497f19cacb3f8 nvmem: core: verify cell's raw_len
    04c81ac33a607 nvmem: rockchip-otp: add rk3576 variant data
    266e5f4813808 nvmem: rockchip-otp: Move read-offset into variant-data
    b3145041e990a cpufreq: Add SM8650 to cpufreq-dt-platdev blocklist
    1efbe2c7a0f44 phy: renesas: rcar-gen3-usb2: Assert PLL reset on PHY power off
    cf60d19721bc4 phy: renesas: rcar-gen3-usb2: Lock around hardware registers and driver data
    e992f2581b794 phy: renesas: rcar-gen3-usb2: Move IRQ request in probe
    eb4fdee1d6303 phy: renesas: rcar-gen3-usb2: Add support to initialize the bus
    e668cbeb9590a i2c: designware: Fix an error handling path in i2c_dw_pci_probe()
    ad40588df1820 i2c: designware: Use temporary variable for struct device
    0ef9396a7da7a i2c: designware: Remove ->disable() callback
    33378973d843b i2c: designware: Uniform initialization flow for polling mode
    d1954e7aa1313 gpio: pca953x: fix IRQ storm on system wake up
    58e34598436f8 gpio: pca953x: Simplify code with cleanup helpers
    475d6ebc91a24 gpio: pca953x: Split pca953x_restore_context() and pca953x_save_context()

(From OE-Core rev: ab51811f918bcf5a72133c5e855949e0c347d093)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Yogita Urade
23e57638ef python3-urllib3: fix CVE-2025-50181
urllib3 is a user-friendly HTTP client library for Python. Prior to
2.5.0, it is possible to disable redirects for all requests by
instantiating a PoolManager and specifying retries in a way that
disable redirects. By default, requests and botocore users are not
affected. An application attempting to mitigate SSRF or open redirect
vulnerabilities by disabling redirects at the PoolManager level will
remain vulnerable. This issue has been patched in version 2.5.0.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-50181

Upstream patch:
f05b132912

(From OE-Core rev: cf10eafb333daf8acfd3b8bfcb42c1fe6c26a8a5)

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Vijay Anusuri
55a6c02c35 sudo: Fix CVE-2025-32462
Upstream-Status: Backport from d530367828

(From OE-Core rev: d01f888a5ec43fdc8e7bd496ae9317c0fa28da9b)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Changqing Li
60f859e4be libsoup: fix CVE-2025-4945
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/448

(From OE-Core rev: 6455484a26edc69be806c1356314c018d1940294)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Changqing Li
7ec28bad4d libsoup-2.4: fix CVE-2025-4945
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/448

(From OE-Core rev: 92039926b164fae418eed988f6fa172c3554b9e7)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Changqing Li
e9cf2ef270 libsoup-2.4: refresh CVE-2025-4969.patch
refresh CVE-2025-4969.patch to fix the following build failure for
libsoup-2.4-native on fedora40/41:

../libsoup-2.74.3/tests/multipart-test.c:578:63: error: passing argument 2 of ‘soup_multipart_new_from_message’ from incompatible pointer type [-Wincompatible-pointer-types]
  578 |         multipart = soup_multipart_new_from_message (headers, bytes);
      |                                                               ^~~~~
      |                                                               |
      |                                                               GBytes * {aka struct _GBytes *}

(From OE-Core rev: aaeea20b5c0f0c5a9d6554dd5e9693a9432cfa54)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Changqing Li
851774c757 icu: fix CVE-2025-5222
CVE-2025-5222:
A stack buffer overflow was found in Internationl components for unicode
(ICU ). While running the genrb binary, the 'subtag' struct overflowed
at the SRBRoot::addTag function. This issue may lead to memory
corruption and local arbitrary code execution.

Refer:
https://nvd.nist.gov/vuln/detail/CVE-2025-5222
https://unicode-org.atlassian.net/browse/ICU-22957
2c667e31cf

(From OE-Core rev: a35ff17a0985389842c89e35f264f1d9f2b6bbae)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Virendra Thakur
36526677db curl: set conditional CVE_STATUS for CVE-2025-5025
If openssl packageconfig is enabled, set CVE_STATUS as not-applicable.
This CVE is applicable only when curl built with wolfSSL support.

Reference: https://curl.se/docs/CVE-2025-5025.html

(From OE-Core rev: 8f50b0761fc4d49fae8d174956052e3ff9024a5e)

Signed-off-by: Virendra Thakur <virendra.thakur@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Hitendra Prajapati
71e9cf4cd9 libxml2: fix CVE-2025-6021
Upstream-Status: Backport from acbbeef9f5

(From OE-Core rev: 8777f1b344c7f66a7ef4291bb59af2a5fb466b6a)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-11 08:11:53 -07:00
Archana Polampalli
0717b8bbc0 xwayland: fix CVE-2025-49180
A flaw was found in the RandR extension, where the RRChangeProviderProperty function
does not properly validate input. This issue leads to an integer overflow when
computing the total size to allocate.

(From OE-Core rev: 15881f41f8c00c5f0a68628c2d49ca1aa1999c2e)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Archana Polampalli
b4ccec2a44 xwayland: fix CVE-2025-49179
A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients
function does not check for an integer overflow when computing request length,
which allows a client to bypass length checks.

(From OE-Core rev: de28bff9b54b2725d8c06c4760e0ed2b59d3fa61)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Archana Polampalli
65e08ee344 xwayland: fix CVE-2025-49178
A flaw was found in the X server's request handling. Non-zero 'bytes to ignore'
in a client's request can cause the server to skip processing another client's
request, potentially leading to a denial of service.

(From OE-Core rev: 4c6df8320497c2ebf09902a62b6a3f3b061be917)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Archana Polampalli
4bf6e39294 xwayland: fix CVE-2025-49177
A flaw was found in the XFIXES extension. The XFixesSetClientDisconnectMode handler
does not validate the request length, allowing a client to read unintended memory
from previous requests

(From OE-Core rev: 0b2afd59ce8c35083c1cb3596a2f7d4eaa7bd1c8)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Archana Polampalli
0d8b19752d xwayland: fix CVE-2025-49176
A flaw was found in the Big Requests extension. The request length is multiplied
by 4 before checking against the maximum allowed size, potentially causing an
integer overflow and bypassing the size check.

(From OE-Core rev: 0a2c5179e1f08ccd0fcaccb6f95c892ebafac8a8)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Archana Polampalli
a1db9c900f xwayland: fix CVE-2025-49175
A flaw was found in the X Rendering extension's handling of animated cursors.
If a client provides no cursors, the server assumes at least one is present,
leading to an out-of-bounds read and potential crash.

(From OE-Core rev: fec7644b70452794fabfb7d967e2124918215440)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Divya Chellam
37be814fb2 libarchive: fix CVE-2025-5918
A vulnerability has been identified in the libarchive library. This flaw can be triggered whe
n file streams are piped into bsdtar, potentially allowing for reading past the end of the fi
le. This out-of-bounds read can lead to unintended consequences, including unpredictable prog
ram behavior, memory corruption, or a denial-of-service condition.

CVE-2025-5918-0001 is the dependent commit and CVE-2025-5918-0002 is the actual CVE fix.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-5918

Upstream-patches:
89b8c35ff4
dcbf1e0ede

(From OE-Core rev: 369c164a163b2c7f15ee5fc41130be9feaf7245e)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Divya Chellam
3c2bbf4a1c libarchive: fix CVE-2025-5917
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-
one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-
byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, lea
ding to unpredictable program behavior, crashes, or in specific circumstances, could be lever
aged as a building block for more sophisticated exploitation.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-5917

Upstream-patch:
7c02cde37a

(From OE-Core rev: 2b6832b05bab414df1da7c74a0c6a5e5a9d75b29)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Divya Chellam
0bccc5ec85 libarchive: fix CVE-2025-5916
A vulnerability has been identified in the libarchive library. This flaw
involves an integer overflow that can be triggered when processing a Web
Archive (WARC) file that claims to have more than INT64_MAX - 4 content
bytes. An attacker could craft a malicious WARC archive to induce this
overflow, potentially leading to unpredictable program behavior, memory
corruption, or a denial-of-service condition within applications that
process such archives using libarchive.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-5916

Upstream-patch:
ef09372952

(From OE-Core rev: 9c74d3a096fed68d173f8711b373a42f158d6cc7)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Divya Chellam
0f2564b7c0 libarchive: fix CVE-2025-5915
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap b
uffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer
-Schieber (LZSS) window. This means the library may attempt to read beyond the allocated memo
ry buffer, which can result in unpredictable program behavior, crashes (denial of service), o
r the disclosure of sensitive information from adjacent memory regions.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-5915

Upstream-patches:
a612bf62f8

(From OE-Core rev: 99fdc86ad57db4d8829a33033918cf78419977af)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Divya Chellam
28f102461a libarchive: fix CVE-2025-5914
A vulnerability has been identified in the libarchive library, specifically within the archiv
e_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultim
ately lead to a double-free condition. Exploiting a double-free vulnerability can result in m
emory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service
condition.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-5914

Upstream-patch:
09685126fc

(From OE-Core rev: b7d8249bda296620a5bbf592f4cdf566b4537563)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-09 08:43:32 -07:00
Dixit Parmar
7bb9c2255b ref-manual: document KERNEL_SPLIT_MODULES variable
This variable controls the kernel module spliting.

[YOCTO #15771]

(From yocto-docs rev: 80b3bb27e4efa73b982f4bfeccca4deedf78c0d7)

Signed-off-by: Dixit Parmar <dixitparmar19@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 198179d9c6231b5934d4fb6ede716d1dcb1442bb)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Guocai He
21c19ed0f8 tcf-agent: correct the SRC_URI
The SRC_URI is changed to git://gitlab.eclipse.org/eclipse/tcf/tcf.agent.git

(From OE-Core rev: 175cd54fd57266d7dea07121861a4f15be00a882)

Signed-off-by: Guocai He <guocai.he.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Ryan Eatmon
79782ae231 uboot: Allow for customizing installed/deployed file names
Backport from master:
https://git.openembedded.org/openembedded-core/commit/?id=debc691853e2954bd325bad395b8829939afaa08

When assembling all of the various filenames that are installed/deployed
from u-boot, we have been including the PV and PR in the filenames.  This
change introduces a single variable to replace these two in the
filenames.

This change should not be disruptive since the default value for the new
UBOOT_VERSION variable is "${PV}-${PR}".

In one case (UBOOT_EXTLINUX_SYMLINK [1]), PR was used without PV, this
patch assumes this was a mistake and corrects it as PR would not be of
much use alone.

[1] https://git.openembedded.org/openembedded-core/commit/?h=master-next&id=33df3a65f3e8e136811da715d0cc247ce66ae0ea

(From OE-Core rev: 58ad450e84db35d5b38dab65edbbc33bc6fef750)

Signed-off-by: Ryan Eatmon <reatmon@ti.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Daniel Turull
2366605a35 spdx: add option to include only compiled sources
When SPDX_INCLUDE_COMPILED_SOURCES is enabled, only include the
source code files that are used during compilation.

It uses debugsource information generated during do_package.

This enables an external tool to use the SPDX information to disregard
vulnerabilities that are not compiled.

As example, when used with the default config with linux-yocto, the spdx size is
reduced from 156MB to 61MB.

Tested with bitbake world on oe-core.

(From OE-Core rev: c6a2f1fca76fae4c3ea471a0c63d0b453beea968)
Adapted to existing files for create-spdx-2.2

CC: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
CC: Joshua Watt <JPEWhacker@gmail.com>
(From OE-Core rev: a2866934e58fb377a73e87576c8594988a63ad1b)

Signed-off-by: Daniel Turull <daniel.turull@ericsson.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Daniel Turull
5b7a6dec85 package: export debugsources in PKGDESTWORK as json
The source information used during packaging can be use from other tasks to
have more detailed information on the files used during the compilation and
improve SPDX accuracy.

Source files used during compilation are store as compressed zstd json in
pkgdata/debugsources/$PN-debugsources.json.zstd
Format:
{ binary1: [src1, src2, ...], binary2: [src1, src2, ...] }

I checked the sstate size, and it slightly increases using core-image-full-cmdline:
without patch: 2456792 KB sstate-cache/
with patch:    2460028 KB sstate-cache/
(4236 KB or 0.17%)

(From OE-Core rev: c507dcb8a8780a42bfe68b1ebaff0909b4236e6b)
Adaptations to match spdx in scarthgap: change BP to PF

CC: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
CC: Richard Purdie <richard.purdie@linuxfoundation.org>
(From OE-Core rev: cba53212f5debf897752453364b9756a05c197de)

Signed-off-by: Daniel Turull <daniel.turull@ericsson.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Preeti Sachan
20d3851718 ltp: backport patch to fix compilation error for x86_64
When the input compiler enables AVX, stack realignment requirements
causes gcc to fail to omit %rbp use, due to which the test fails to
clobber %rbp in inline asm.  Disable AVX to build the test on x86_64 so
that the test continues working.

Fix compilation with gcc v13.4+. Cherry picked from oe-core, master branch.

(From OE-Core rev: 54d6fa7bc9f4ae6bdb98862488e8d09200d3bc14)

Signed-off-by: Preeti Sachan <preeti.sachan@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Roland Kovacs
ebbddcdb70 gnupg: update 2.4.5 -> 2.4.8
This release includes fix for CVE-2025-30258.
Support for --enable-gpg-is-gpg2 config option has been partially removed in
version 2.4.6.

Changelog:
 https://dev.gnupg.org/T7428

CVE: CVE-2025-30258

(From OE-Core rev: 41ef33ebf3e1a922aa44da8d75b240163d7954b1)

Signed-off-by: Roland Kovacs <roland.kovacs@est.tech>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Victor Giraud
fee92f72e1 busybox: fix CVE-2022-48174
shell: avoid segfault on ${0::0/0~09J}. Closes 15216
CVE: CVE-2022-48174

Upstream-Status: Backport [https://git.launchpad.net/ubuntu/+source/busybox/commit/?id=ca2afcbf42017d998ce3d6726f5ff5072a3fa853]

(From OE-Core rev: a81aff7d810800ce3265422cddde26d11366d514)

Signed-off-by: Victor Giraud <vgiraud.opensource@witekio.com>
Signed-off-by: Bruno Vernay <bruno.vernay@se.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Praveen Kumar
b4562b5fca go: fix CVE-2025-4673
Proxy-Authorization and Proxy-Authenticate headers persisted on
cross-origin redirects potentially leaking sensitive information.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-4673

Upstream-patch:
b897e97c36

(From OE-Core rev: 72279bbc1ff2d85563c5245195435f078c5d1a68)

Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
Moritz Haase
b8f8125f05 cmake: Correctly handle cost data of tests with arbitrary chars in name
ctest automatically optimizes the order of (parallel) test execution based on
historic test case runtime via the COST property (see [0]), which can have a
significant impact on overall test run times. Sadly this feature is broken in
CMake < 4.0.0 for test cases that have spaces in their name (see [1]).

This commit is a backport of f24178f3 (which itself backports the upstream fix).
The patch was adapted slightly to apply cleanly to the older CMake version in
scarthgap. As repeated test runs are expected to mainly take place inside the
SDK, the patch is only applied to 'nativesdk' builds.

[0]: https://cmake.org/cmake/help/latest/prop_test/COST.html
[1]: https://gitlab.kitware.com/cmake/cmake/-/issues/26594

Reported-By: John Drouhard <john@drouhard.dev>
(From OE-Core rev: cfa97a50e06fb0fcc7cbc0ada54ce7ad5ba29ebe)

Signed-off-by: Moritz Haase <Moritz.Haase@bmw.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-25 08:35:10 -07:00
Peter Marko
31bf71ccc5 glibc: stable 2.39 branch updates
$ git log --oneline 3463100f2d47f2897a24ba8023a5c7aaf2d26550..06a70769fd0b2e1f2a3085ad50ab620282bd77b3
06a70769fd ppc64le: Revert "powerpc: Optimized strcmp for power10" (CVE-2025-5702)
3875045da5 ppc64le: Revert "powerpc : Add optimized memchr for POWER10" (Bug 33059)
c6240a11f7 ppc64le: Revert "powerpc: Fix performance issues of strcmp power10" (CVE-2025-5702)
2caef2827f elf: Fix subprocess status handling for tst-dlopen-sgid (bug 32987)
9e25c0f445 x86_64: Fix typo in ifunc-impl-list.c.
ca99d55315 elf: Test case for bug 32976 (CVE-2025-4802)
71ddb11ccd support: Add support_record_failure_barrier
abdeb4b520 support: Use const char * argument in support_capture_subprogram_self_sgid
147bed0a71 elf: Keep using minimal malloc after early DTV resize (bug 32412)
4e5ee49a43 sysdeps/unix/sysv/linux/x86_64/Makefile: Add the end marker
37b30b6a68 sysdeps/x86_64/Makefile (tests): Add the end marker
9fe51d34bb sort-makefile-lines.py: Allow '_' in name and "^# name"
14ec225d85 libio: Correctly link tst-popen-fork against libpthread
1dcfb9479d libio: Fix a deadlock after fork in popen
e31ac9a639 libio: Sort test variables in Makefile
68f3f1a1d0 Linux: Switch back to assembly syscall wrapper for prctl (bug 29770)
d33d10642f nptl: PTHREAD_COND_INITIALIZER compatibility with pre-2.41 versions (bug 32786)
b1eb369aee nptl: Use all of g1_start and g_signals
ac5da3c0e4 nptl: rename __condvar_quiesce_and_switch_g1
2fdc0afd07 nptl: Fix indentation
582c99b2c0 nptl: Use a single loop in pthread_cond_wait instaed of a nested loop
fc2a25417d nptl: Remove g_refs from condition variables
6f5ba03968 nptl: Remove unnecessary quadruple check in pthread_cond_wait
d0da34ad30 nptl: Remove unnecessary catch-all-wake in condvar group switch
ea13a35e37 nptl: Update comments and indentation for new condvar implementation
2451ef5c4a pthreads NPTL: lost wakeup fix 2

test results:
            Before After  Diff
FAIL           207   207     0
PASS          4912  4915    +3
UNSUPPORTED    230   230     0
XFAIL           16    16     0
XPASS            4     4     0

(From OE-Core rev: c94b6686a1edcaa1bea1ff5e716df96da8e36b7c)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-25 08:35:09 -07:00
Chen Qi
e1d6f5bef4 coreutils: fix CVE-2025-5278
Backport patch to fix CVE-2025-5278.

(From OE-Core rev: 7af711c0a31359b57903503ab37bad53aad89c22)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-25 08:35:09 -07:00
Peter Marko
e8a99c83b3 go: set status of CVE-2024-3566
NVD ([1]) tracks this as:
cpe:2.3🅰️golang:go:*:*:*:*:*:*:*:*
Running on/with
  cpe:2.3microsoft:windows:-:*:*:*:*:*:*:*

Yocto cve-check ignores the "Running on/with", so it needs to be ignored
explicitly.

[1] https://nvd.nist.gov/vuln/detail/CVE-2024-3566

(From OE-Core rev: b8841097eaf7545abf56eb52a122e113b54ba2a7)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-25 08:35:09 -07:00
Robert P. J. Day
7500a08bd1 bsp-guide: update all of section 1.8.2 to reflect current beaglebone conf file
(From yocto-docs rev: 731bb4a7d58f16e7920b4798409a4db1b57a0344)

Signed-off-by: "Robert P. J. Day" <rpjday@crashcourse.ca>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 5fc7794e9ae326eead16552726d74ea801fe535b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Robert P. J. Day
0f32f501fa bsp-guide: update lonely "4.12" kernel reference to "6.12"
To accompany earlier updating of kernel version, update this lonely
reference to be consistent.

(From yocto-docs rev: 0493f6e0ff9f52ec74adde584a04a121f5ad76aa)

Signed-off-by: "Robert P. J. Day" <rpjday@crashcourse.ca>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit e26c2018cd663de91ee08e0cba55eda1a4c30210)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Robert P. J. Day
9acc51fef1 bsp guide: update kernel version example to 6.12
Change the sample kernel version being used from 4.4 to a more modern
6.12.

(From yocto-docs rev: 13235b2c604ccff8737bfb9ee2add626e0ea0503)

Signed-off-by: "Robert P. J. Day" <rpjday@crashcourse.ca>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1bad12b6ccfe1c0d26918926176a0c743568de26)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Robert P. J. Day
051830ab7d overview-manual: small number of pedantic cleanups
In Sections 4.3.1 and 4.3.2 of the Overview Manual, a bit of tidying
including:

  - provide full list of packaging options
  - add monospaced rendering where appropriate
  - fix broken "ref"
  - make capitalization consistent

(From yocto-docs rev: 7abe7dde0cbb34a56af30452104355688775ef2b)

Signed-off-by: "Robert P. J. Day" <rpjday@crashcourse.ca>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1cf769e3c8a8442cd05449dc97e91ad482d635f3)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Quentin Schulz
a3fb537a47 ref-manual: classes: nativesdk: move note to appropriate section
The nativesdk- prefix to the recipe filename should only be used when
using the inherit method as the BBCLASSEXTEND method will do some magic
when generating the "implicit" name of the recipe.

This matches the instructions for the native class.

(From yocto-docs rev: c44d05d11833de4645d72fb8f987123e693494f4)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 15fe239e1e62b9add737aa732dd7f5e9948ee03d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Quentin Schulz
7f3f70747b ref-manual: classes: reword to clarify that native/nativesdk options are exclusive
We explain how to create a native (nativesdk) recipe in two different
ways via a bullet list but reading quickly the instructions may mislead
one into doing both options whereas they are incompatible.

This rewords both the nativesdk and native sections so that the second
bullet point starts with an Or and explicit that this applies to target
recipes.

(From yocto-docs rev: 70194ee42c946e1a2122ac143612e334fcbc5241)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 6d0d338a5f2686ddeee5eed7b6e05f3db800d33a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Lee Chee Yang
2ffcd8a9b7 migration-guide: add release notes for 5.0.10
(From yocto-docs rev: 32344c65b167cc19431902eba628bb321690a166)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 5bc4c98987ff809294541657b20d2e44f70e1d2c)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Savvas Etairidis
7beb2f3a69 systemd: Rename systemd_v255.21 to systemd_255.21
The recipe was accidentally renamed with a 'v'
prefix in 29e623b2ad00555788412fa520fbb9ffec794cbb.

(From OE-Core rev: db02a4cc542d0e7e563ec46c91bf9a7313a71d02)

Signed-off-by: Savvas Etairidis <setairidis@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Poonam Jadhav
39f1520cd7 libpng: Add ptest
Install libpng test-suite to run it as a ptest.
As the test-suite takes more than 30 seconds to run,
add libpng-ptest to PTESTS_SLOW in ptest-packagelists.inc

(From OE-Core rev: 1b52b7ebe5f8fb490088622181cdb95e6b7f5a29)

Signed-off-by: Poonam Jadhav <poonam.jadhav@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Sandeep Gundlupet Raju
6e7a9ff2e1 tune-cortexr52: Remove aarch64 for ARM Cortex-R52
Remove aarch64 for ARM Cortex-R52 processor as it supports only 32-bit
ISA but not 64-bit ISA. Also update ARMPKGARCH for cortexr52hf.

(From OE-Core rev: 8ee21ec40e9f25ee97ec077b93751fea14b66e32)

Signed-off-by: Sandeep Gundlupet Raju <sandeep.gundlupet-raju@amd.com>
Signed-off-by: Sandeep Gundlupet Raju <grsandeep85@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Deepesh Varatharajan
3f2cf790b2 gcc: Upgrade to GCC 13.4
This is a bugfix release in GCC13 release series
100+ bugfixes

https://gcc.gnu.org/bugzilla/buglist.cgi?bug_status=RESOLVED&resolution=FIXED&target_milestone=13.4

Dropped the following patches:

0028-gcc-Fix-c-tweak-for-Wrange-loop-construct.patch
179dc0f0fe

gcc.git-ab884fffe3fc82a710bea66ad651720d71c938b8.patch
5ceea2ac10

                                 #GCC 13.3      #GCC 13.4       #Diff

No. of expected passes            148863         149440          +577
No. of unexpected failures        14             14              0
No. of expected failures          1415           1414            -1
No. of unresolved testcases       25384          25660           +276
No. of unsupported tests          2692           2689            -3

(From OE-Core rev: 7af83314fea5948937403b5d59ba5df6fecdd81a)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Aleksandar Nikolic
f2648ee380 scripts/install-buildtools: Update to 5.0.10
Update to the 5.0.10 release of the 5.0.10 series for buildtools

(From OE-Core rev: 6c3344ba51a42252e347db2f6013c49d35413ea0)

Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Jiaying Song
dbc06dd7b1 python3-requests: upgrade 2.32.3 -> 2.32.4
Changelog:
https://requests.readthedocs.io/en/latest/community/updates/#release-history

(From OE-Core rev: 0f0a06ccef45792f65b823ecc0ef10525d94084f)

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Colin Pinnell McAllister
ab1c25d1f5 ffmpeg: fix CVE-2025-1373
CVE-2025-1373 does not appear to affect ffmpeg 5.0.3. The CVE has been
marked as "fixed-version".

(From OE-Core rev: 0ffe159d9a4ee434b4c995e1ca9a85b01e0a5d05)

Signed-off-by: Colin Pinnell McAllister <colin.mcallister@garmin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Peter Marko
a34f20b224 net-tools: patch CVE-2025-46836
Backport patch for this CVE and also patch for its regression.

(From OE-Core rev: 352525443b1844cdfd28355dfc1444046bbb76e8)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-20 08:38:12 -07:00
Peter Marko
10fba0085d testimage: get real os-release file
/etc/os-release is a symlink to /usr/lib.
Symlink is retrieved as a dead link which points to nowhere if also the
original file is not accompanying it.
Fetch the real file in addition to this link.

Alternative could be to use "tar -h" (supported also by busybox tar),
however that could lose some important information if links are relevant
for failure analysis.

(From OE-Core rev: ed43f9ccb3c08845259e24440912631afd780d12)

(From OE-Core rev: f7ee6db8ca5dc72b7a468531e31403b60e6a0020)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:01 -07:00
Andrew Fernandes
6dfacf4cd3 gtk+: add missing libdrm dependency
Fixes [YOCTO #15513]

When built without the wayland feature, gtk4 does not
build due to a missing explicit dependency on libdrm.

(From OE-Core rev: 46c7f1a8d6b39256479abd8a7bb7be1ccf221267)

Signed-off-by: Andrew Fernandes <andrew@fernandes.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b32290d9bbcfccc9b85fa5acbeaee5d32d9a9091)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:01 -07:00
Peter Marko
c4f82e3fd5 python3: upgrade 3.12.9 -> 3.12.11
Drop upstreamed patch and refresh remaining patches.

* https://www.python.org/downloads/release/python-31210/

  Python 3.12.10 is the latest maintenance release of Python 3.12, and
  the last full maintenance release. Subsequent releases of 3.12 will be
  security-fixes only.

* https://www.python.org/downloads/release/python-31211/

  Security content in this release
  * gh-135034: [CVE 2024-12718] [CVE 2025-4138] [CVE 2025-4330]
    [CVE 2025-4435] [CVE 2025-4517] Fixes multiple issues that allowed
    tarfile extraction filters (filter="data" and filter="tar") to be
    bypassed using crafted symlinks and hard links.
  * gh-133767: Fix use-after-free in the “unicode-escape” decoder with a
    non-“strict” error handler.
  * gh-128840: Short-circuit the processing of long IPv6 addresses early
    in ipaddress to prevent excessive memory consumption and a minor
    denial-of-service.

gh-133767 got meawhile CVE-2025-4516 assigned.

(From OE-Core rev: 6cca08b2857efd5481e837ecd6bb295cb8a99ee1)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:01 -07:00
Vijay Anusuri
82e8f8c2e0 kea: upgrade 2.4.1 -> 2.4.2
Changelog
https://downloads.isc.org/isc/kea/2.4.2/Kea-2.4.2-ReleaseNotes.txt

License-Update: Update copyright year

Includes security fixes for CVE-2025-32801, CVE-2025-32802 and CVE-2025-32803

(From OE-Core rev: 2f3d2a2848472bdf87fbce00967bc780fc859e05)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:01 -07:00
Changqing Li
5e4f229917 libsoup: fix CVE-2025-2784
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/422

(From OE-Core rev: 504d92b01ac9a227e8e57b677f016fdfeccd5666)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:01 -07:00
Changqing Li
8d4c3eb106 libsoup-2.4: fix CVE-2025-2784
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/422

(From OE-Core rev: 9c014c1b96f4ebeb0f6f504b6c7c0d8063b6a6b7)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:01 -07:00
Changqing Li
47bb754e27 libsoup-2.4: fix CVE-2025-4476
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/440

(From OE-Core rev: ebb87904c97f4b27a023b2347622519c702d4d2d)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:01 -07:00
Changqing Li
859504c475 libsoup: fix CVE-2025-4948
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/449

(From OE-Core rev: 737d50288a37f51f17cf3fef0422e27dbd115cce)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:01 -07:00
Changqing Li
e21b122523 libsoup-2.4: fix CVE-2025-4948
Refer:
http://gitlab.gnome.org/GNOME/libsoup/-/issues/449

(From OE-Core rev: b4fb5cd0d3385989842ad5a84d34cf451679c59a)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:00 -07:00
Changqing Li
2f3419c598 libsoup: fix CVE-2025-46421
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/439

(From OE-Core rev: f1450eea34202a9cc46294e3d8244c829556c369)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:00 -07:00
Changqing Li
8944014e5c libsoup-2.4: fix CVE-2025-46421
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/439

(From OE-Core rev: 9e32f4fd761b591ea2f5ce26381135e9a8db94ce)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:00 -07:00
Changqing Li
e4ebf3effd libsoup: fix CVE-2025-32050
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/424

(From OE-Core rev: 563a34faae35e4587fe2740c26c4bc149555a5de)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:00 -07:00
Changqing Li
a7a45d58e0 libsoup-2.4: fix CVE-2025-32050
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/424

(From OE-Core rev: d16627901125854f5346711e96d635c704438705)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:00 -07:00
Changqing Li
ee5c55b631 libsoup: fix CVE-2025-32051
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/401

(From OE-Core rev: dd92cad39759b7ad105d8bcd42672847a273bccc)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:00 -07:00
Changqing Li
df0e54f6ab libsoup: fix CVE-2025-32052
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/425

(From OE-Core rev: 9a8a5072969a326e296d840296cb475fb3c0e2ff)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:00 -07:00
Changqing Li
d81430958e libsoup-2.4: fix CVE-2025-32052
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/425

(From OE-Core rev: f3890f25cc036fd184578d7b85e6410ee97dc3ad)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-13 08:58:00 -07:00
Quentin Schulz
a435aee807 docs: conf.py: silence SyntaxWarning on js_splitter_code
The js_splitter_code string contains backslashes that Python tries to
use as escape sequence but doesn't manage to, hence the following
SyntaxWarning message:

documentation/conf.py:188: SyntaxWarning: invalid escape sequence '\p'
  .split(/[^\p{Letter}\p{Number}_\p{Emoji_Presentation}-]+/gu)

Considering that we want this to be sent verbatim to the JS, let's make
this a raw string instead.

Fixes: d4a98ee19e0c ("conf.py: tweak SearchEnglish to be hyphen-friendly")
(From yocto-docs rev: 6f424ed4ce749a135be3145a2e9d04030fdbda39)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c1056672ef45b197136eb8815728d426337a5901)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Quentin Schulz
82a7962461 docs: README: specify how to contribute instead of pointing at another file
This repository is partially included in another repository: poky.

However its README isn't making it, so documentation/README pointing at
the README at the root of the git repository would lead the contributor
nowhere.

Instead, let's include the appropriate information directly in
documentation/README which does make it to the poky git repo.

(From yocto-docs rev: 01f1595d87dfb759071198d64c9a62fb00a48545)

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 0298318cea2947e65754eab97255164e64a862de)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Carlos Sánchez de La Lama
d802c98044 ref-manual: clarify KCONFIG_MODE default behaviour
KCONFIG_MODE defaults to 'allnoconfig' when not set, regardless of whether
KBUILD_DEFCONFIG points to an in-tree or a meta-layer defconfig.

(From yocto-docs rev: c9bceea147c807b942ce6bcf085a31d9388ecc79)

Signed-off-by: Carlos Sánchez de La Lama <csanchezdll@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f374b9c426f6c10710e011a4ad660231ee26efb8)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Robert P. J. Day
6341ca8dfc Clean up explanation of minimum required version numbers
Some simple rendering and grammar fixes.

(From yocto-docs rev: 649a440c4f4ed9f2020622c10603489e7b9b27b6)

Signed-off-by: "Robert P. J. Day" <rpjday@crashcourse.ca>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 9a9624bfc4c523a6edf6f3f0c336e663cc939e75)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Lee Chee Yang
c3e2edd4dd migration-guides: add release notes for 4.0.27
(From yocto-docs rev: 223504ea6dca3fde55b14d95832bc3935229225c)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c4748f5079e5193f82afc1b754816edd40ce9254)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Richard Purdie
eadd7c6cfb brief-yoctoprojectqs/ref-manual: Switch to new CDN
The project is switching the way handle our CDN provision of sstate objects,
update the URL accordingly.

(cherry picked from commit 406e8a8e30404c0538f5aa46f211540bae2b206b)

(From yocto-docs rev: bede97cfde51823e262e300aa346902d23530490)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Guðni Már Gilbert
417cecf76b systemd: upgrade 255.18 -> 255.21
The update includes 79 commits. Full list of changes can be found on
Github [1]

All patches were refreshed with devtool.

[1] https://github.com/systemd/systemd-stable/compare/v255.18...v255.21

(From OE-Core rev: 29e623b2ad00555788412fa520fbb9ffec794cbb)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Divya Chellam
8422c6f52f screen: fix CVE-2025-46804
A minor information leak when running Screen with setuid-root
privileges allosw unprivileged users to deduce information
about a path that would otherwise not be available.

Affected are older Screen versions, as well as version 5.0.0.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-46804

Upstream-patch:
https://cgit.git.savannah.gnu.org/cgit/screen.git/commit/?id=e0eef5aac453fa98a2664416a56c50ad1d00cb30

(From OE-Core rev: a313af8ca347797214669406ee86f5239997f7e3)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Divya Chellam
fa0fef4a3d screen: fix CVE-2025-46802
For a short time they PTY is set to mode 666, allowing any user on the
system to connect to the screen session.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-46802

Upstream-patch:
https://cgit.git.savannah.gnu.org/cgit/screen.git/commit/?id=049b26b22e197ba3be9c46e5c193032e01a4724a

(From OE-Core rev: b17e091eb4681b69c5a050d3fa0f9289f524e205)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Deepesh Varatharajan
33fc46afb7 binutils: Fix CVE-2025-5244
PR32858 ld segfault on fuzzed object
We missed one place where it is necessary to check for empty groups.

Backport a patch from upstream to fix CVE-2025-5244
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=d1458933830456e54223d9fc61f0d9b3a19256f5]

(From OE-Core rev: 31fc180f606c5bb141c9c6dd85a7b1d876e1d692)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Deepesh Varatharajan
da4536b978 binutils: Fix CVE-2025-5245
PR32829, SEGV on objdump function debug_type_samep
u.kenum is always non-NULL, see debug_make_enum_type.

Backport a patch from upstream to fix CVE-2025-5245
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=6c3458a8b7ee7d39f070c7b2350851cb2110c65a]

(From OE-Core rev: 8202e66670327b02ec3de18b5af4a8b09abdc50d)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Vijay Anusuri
6ba8b8a487 python3-setuptools: Fix CVE-2025-47273
Upstream-Status: Backport from
d8390feaa9
& 250a6d1797

(From OE-Core rev: 9769cd99c32faf7d95a7cab07b8550b438ccaf0c)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Changqing Li
bf752e4e25 libsoup: fix CVE-2025-32053
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/426

(From OE-Core rev: 7ce73ed9b7125d02abcf8ec34c80270c2e340d55)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Changqing Li
ad1d671be0 libsoup-2.4: fix CVE-2025-32053
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/426

(From OE-Core rev: d6fba14b2e98928bbf2736494e571389892da6b4)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Changqing Li
dd4312d080 libsoup-2.4: fix do_compile failure
Remove test code for fixing do_compile failure:
../libsoup-2.74.3/tests/auth-test.c:1554:39: error: unknown type name 'SoupServerMessage'; did you mean 'SoupServerClass'?
 1554 |                                       SoupServerMessage *msg,
      |

(From OE-Core rev: f14a6c98e4cbf4ee2a243387b018e29beab3b56a)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Changqing Li
24f024f042 libsoup-2.4: fix CVE-2025-32907
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/428

(From OE-Core rev: de53b2272919b97719e2b7f704154283caebc59f)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Changqing Li
33fc8121c9 libsoup: fix CVE-2025-32907
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/429

(From OE-Core rev: a729b18103081acf17420cf91ec202e86cc6be0d)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Changqing Li
c04a6271a4 libsoup: fix CVE-2025-32908
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/429

(From OE-Core rev: ff7440fddf5ada072f60cc25f3670cbb74f58167)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Richard Purdie
320b76cc47 bitbake: ast: Change deferred inherits to happen per recipe
Currently deferred inherits get processed once for all class extensions
as a minor speed optimisation. Unfortunately this limits our options for
being able to report deferred classes to our code.

There are two challenges with using our deferred classes in OE at present.
One is that PACKAGECONFIG values don't work well with class overrides like
class-native if there are deferred classes based on PACKAGECONFIG, such
as python support. The second is that toolchain selection is proving
problematic to implement due to interactions between the toolchain deferred
inherit, the class extensions and class overrides being very late.

By changing deferred inherits to be recipe extension specific, we open
the way to generate events and "peek" at where things will end up,
allowing the class overrides to be set earlier.

The class extension code is updated to use a deferred inherit for the
class extension inheriting so that it is still inherited last.

(Bitbake rev: 139f61fe9eec221745184a14b3618d2dfa650b91)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Etienne Cordonnier
4bca6762e5 bitbake: gcp.py: remove slow calls to gsutil stat
The changes of 1ab1d36c0af6fc58a974106b61ff4d37da6cb229 added calls to "gsutil stat" to avoid unhandled exceptions, however:
- in the case of checkstatus() this is redundant with the call to self.gcp_client.bucket(ud.host).blob(path).exists() which already returns True/False
 and does not throw an exception in case the file does not exist.
- Also the call to gsutil stat is much slower than using the python client to call exists() so we should not replace the call to exists() with a call to gsutil stat.
- I think the intent of calling check_network_access in checkstatus() was to error-out in case the error is disabled. We can rather change the string "gsutil stat" to something else to make the code more readable.
- add a try/except block in download() instead of the extra call to gsutil

[RP: Tweak to avoid import until needed so google module isn't required for everyone]
(Bitbake rev: 59df5390381792aba4f3f5185000adf5109267fb)

Signed-off-by: Etienne Cordonnier <ecordonnier@snap.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-11 08:17:34 -07:00
Richard Purdie
9b0e95db58 local.conf.sample: Switch to new CDN
The project is switching the way handle our CDN provision of sstate objects,
update the URL accordingly.

(From meta-yocto rev: 7633f51d53f535728fe035fa866416d2e5ba6a9c)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e5b8e76ba8232860943406e1c53e71b3d2790f17)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Richard Purdie
67c7b78bd0 sstatetests: Switch to new CDN
The project is switching the way handle our CDN provision of sstate objects,
update the URL accordingly.

(From OE-Core rev: d1b64f190c1686f081f5ba2c4f2b320048f6a514)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit fea96974f1ee6ae6dceb39e3ca8157797d81586c)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
NeilBrown
1c91f65601 nfs-utils: don't use signals to shut down nfs server.
Since Linux v2.4 it has been possible to stop all NFS server by running

   rpc.nfsd 0

i.e.  by requesting that zero threads be running.  This is preferred as
it doesn't risk killing some other process which happens to be called
"nfsd".

Since Linux v6.6 - and other stable kernels to which

  Commit: 390390240145 ("nfsd: don't allow nfsd threads to be
  signalled.")

has been backported - sending a signal no longer works to stop nfs server
threads.

This patch changes the nfsserver script to use "rpc.nfsd 0" to stop
server threads.

(From OE-Core rev: 01fca40ba44070891518d4126a34d7c9c0939f6d)

Signed-off-by: NeilBrown <neil@brown.name>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 7b09ad289a36)
Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Wang Mingyu
ac4b721298 ghostscript: upgrade 10.05.0 -> 10.05.1
(From OE-Core rev: 1d9be1505462822a2b75a1136a27d25b262b1feb)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit cc9ba7005fb155f4d5f2be9b23c12d14362a306b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Bruce Ashfield
8151ec8269 linux-yocto/6.6: update to v6.6.92
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    ffaf6178137b Linux 6.6.92
    35559ebcdc89 drm/amdgpu: fix pm notifier handling
    c1d42a239be5 phy: tegra: xusb: remove a stray unlock
    3cfec712a439 btrfs: don't BUG_ON() when 0 reference count at btrfs_lookup_extent_info()
    b3598f53211b sctp: add mutual exclusion in proc_sctp_do_udp_port()
    93df6da64b00 hwpoison, memory_hotplug: lock folio before unmap hwpoisoned folio
    7bcd29181bab memblock: Accept allocated memory before use in memblock_double_array()
    6133444518b7 LoongArch: Explicitly specify code model in Makefile
    f521c2a0c0c4 bpf, arm64: Fix address emission with tag-based KASAN enabled
    d9664e6ff040 bpf, arm64: Fix trampoline for BPF_TRAMP_F_CALL_ORIG
    bfc26aa3ab4c mm/migrate: correct nr_failed in migrate_pages_sync()
    62798e3291f5 selftests/mm: compaction_test: support platform with huge mount of memory
    962ce9028ca6 usb: typec: ucsi: displayport: Fix deadlock
    a0a736d9857c Bluetooth: btnxpuart: Fix kernel panic during FW release
    98fdd2f612e9 mm/page_alloc: fix race condition in unaccepted memory handling
    e24073cd8f16 x86/its: Fix build error for its_static_thunk()
    d530dd65f6f3 dmaengine: idxd: Refactor remove call with idxd_cleanup() helper
    a6cce316327c dmaengine: idxd: fix memory leak in error handling path of idxd_pci_probe
    6e94a2c3e4c1 dmaengine: idxd: fix memory leak in error handling path of idxd_alloc
    d2d05fd0fc95 dmaengine: idxd: Add missing idxd cleanup to fix memory leak in remove call
    32ec46adf1a6 dmaengine: idxd: Add missing cleanups in cleanup internals
    404aad9b0c6f dmaengine: idxd: Add missing cleanup for early error out in idxd_setup_internals
    6ab9526e32ac dmaengine: idxd: fix memory leak in error handling path of idxd_setup_groups
    9ba964b17fca dmaengine: idxd: fix memory leak in error handling path of idxd_setup_engines
    47846211998a dmaengine: idxd: fix memory leak in error handling path of idxd_setup_wqs
    1c9e4ed01117 dmaengine: ti: k3-udma: Use cap_mask directly from dma_device structure instead of a local copy
    d87f1cddc592 dmaengine: ti: k3-udma: Add missing locking
    5340d0e84d5c net: qede: Initialize qede_ll_ops with designated initializer
    5e700b06b970 wifi: mt76: disable napi on driver removal
    55018ca1cc7a spi: tegra114: Use value to check for invalid delays
    d8843fb1a253 smb: client: fix memory leak during error handling for POSIX mkdir
    c682a193447a scsi: sd_zbc: block: Respect bio vector limits for REPORT ZONES buffer
    a1546ec7e049 phy: renesas: rcar-gen3-usb2: Set timing registers only once
    99fc6f1c371e phy: renesas: rcar-gen3-usb2: Fix role detection on unbind/bind
    2b169aa46f97 phy: Fix error handling in tegra_xusb_port_init
    ba25131b3c1c phy: tegra: xusb: Use a bitmask for UTMI pad power state tracking
    b1627af84e1e tracing: samples: Initialize trace_array_printk() with the correct function
    9d1216bf4910 ftrace: Fix preemption accounting for stacktrace filter command
    fa75d941b104 ftrace: Fix preemption accounting for stacktrace trigger command
    6d2d37520545 Drivers: hv: vmbus: Remove vmbus_sendpacket_pagebuffer()
    c0f3f0c88f16 Drivers: hv: Allow vmbus_sendpacket_mpb_desc() to create multiple ranges
    115c7890476e hv_netvsc: Remove rmsg_pgcnt
    307963a3abf8 hv_netvsc: Preserve contiguous PFN grouping in the page buffer array
    da5d5bc3ad3d hv_netvsc: Use vmbus_sendpacket_mpb_desc() to send VMBus messages
    c9d2b9a80d06 dma-buf: insert memory barrier before updating num_fences
    fc8fa09d40de ALSA: usb-audio: Add sample rate quirk for Microdia JP001 USB Camera
    46b33b97252d ALSA: usb-audio: Add sample rate quirk for Audioengine D1
    2759938c4a37 ALSA: es1968: Add error handling for snd_pcm_hw_constraint_pow2()
    124522cc6b61 ACPI: PPTT: Fix processor subtable walk
    6456c818dc53 drm/amd/display: Avoid flooding unnecessary info messages
    43b35d404f6d drm/amd/display: Correct the reply value when AUX write incomplete
    34439d470ba0 LoongArch: uprobes: Remove redundant code about resume_era
    840663825ef6 LoongArch: uprobes: Remove user_{en,dis}able_single_step()
    ad1e441016e0 LoongArch: Fix MAX_REG_OFFSET calculation
    e89bd983f3cd LoongArch: Save and restore CSR.CNTC for hibernation
    f4c0a7999fb5 LoongArch: Prevent cond_resched() occurring within kernel-fpu
    7722fba9f3bf udf: Make sure i_lenExtents is uptodate on inode eviction
    a0302cb13918 dmaengine: Revert "dmaengine: dmatest: Fix dmatest waiting less when interrupted"
    e1b755c0d876 NFSv4/pnfs: Reset the layout state after a layoutreturn
    c1dd9ccc0f0c tsnep: fix timestamping with a stacked DSA driver
    0980e62ab822 tsnep: Inline small fragments within TX descriptor
    406d05da2683 net/tls: fix kernel panic when alloc_page failed
    f1ecccb5cdda mlxsw: spectrum_router: Fix use-after-free when deleting GRE net devices
    fde33ab3c052 wifi: mac80211: Set n_channels after allocating struct cfg80211_scan_request
    72ee7af61570 octeontx2-af: Fix CGX Receive counters
    398989c7800e net: ethernet: mtk_eth_soc: fix typo for declaration MT7988 ESW capability
    03c42d35c329 octeontx2-pf: macsec: Fix incorrect max transmit size in TX secy
    7bddac8603d4 regulator: max20086: fix invalid memory access
    9c2d0899c680 qlcnic: fix memory leak in qlcnic_sriov_channel_cfg_cmd()
    b48a47e137ce net/mlx5e: Disable MACsec offload for uplink representor profile
    4a7d4031fab5 ALSA: sh: SND_AICA should depend on SH_DMA_API
    c70c021be025 nvme-pci: acquire cq_poll_lock in nvme_poll_irqdisable
    64638f3103d0 nvme-pci: make nvme_pci_npages_prp() __always_inline
    cbe3f0445181 net: dsa: sja1105: discard incoming frames in BR_STATE_LISTENING
    1d60c0781c1b net: cadence: macb: Fix a possible deadlock in macb_halt_tx.
    4e132f56bc64 ALSA: ump: Fix a typo of snd_ump_stream_msg_device_info
    8a8dc7fd1e3b ALSA: seq: Fix delivery of UMP events to group ports
    e4d8a517324c net: mctp: Ensure keys maintain only one ref to corresponding dev
    acab78ae12c7 net: mctp: Don't access ifa_index when missing
    2d45eeb7d5d7 mctp: no longer rely on net->dev_index_head[]
    7777ca11a40b tools/net/ynl: ethtool: fix crash when Hardware Clock info is missing
    95a9e08ea5bb tools: ynl: ethtool.py: Output timestamping statistics from tsinfo-get operation
    a7d6e0ac0a88 net_sched: Flush gso_skb list too during ->change()
    31492b8386e5 Bluetooth: MGMT: Fix MGMT_OP_ADD_DEVICE invalid device flags
    b8084e8135af spi: loopback-test: Do not split 1024-byte hexdumps
    a6879a076b98 nfs: handle failure of nfs_get_lock_context in unlock path
    ad6caaf29bc2 HID: uclogic: Add NULL check in uclogic_input_configured()
    4715f16b1e43 HID: thrustmaster: fix memory leak in thrustmaster_interrupts()
    ee4c5a2a3859 RDMA/rxe: Fix slab-use-after-free Read in rxe_queue_cleanup bug
    99173e6f28e4 iio: chemical: sps30: use aligned_s64 for timestamp
    02023c289903 iio: adc: ad7768-1: Fix insufficient alignment of timestamp.
    41ade94ad443 Revert "drm/amd: Stop evicting resources on APUs in suspend"
    c1a4d21a1547 drm/amd: Add Suspend/Hibernate notification callback support
    d59f45595102 drm/amdgpu: trigger flr_work if reading pf2vf data failed
    9a6d2e19448e drm/amdgpu: Fix the runtime resume failure issue
    95db39dbaa8c drm/amd: Stop evicting resources on APUs in suspend
    220192d5141a iio: adc: ad7266: Fix potential timestamp alignment issue.
    ec24e62a1dd3 KVM: SVM: Forcibly leave SMM mode on SHUTDOWN interception
    635b3cc639b8 KVM: SVM: Update SEV-ES shutdown intercepts with more metadata
    2402a3ef9e8c firmware: arm_scmi: Fix timeout checks on polling path
    b38812942556 firmware: arm_scmi: Track basic SCMI communication debug metrics
    0b175f7c4fe9 firmware: arm_scmi: Add support for debug metrics at the interface
    844b899f7899 firmware: arm_scmi: Add message dump traces for bad and unexpected replies
    6bddbdbeb748 firmware: arm_scmi: Add helper to trace bad messages
    7ea1913daafc tpm: tis: Double the timeout B to 4s
    70417bada46d tracing: probes: Fix a possible race in trace_probe_log APIs
    4e63b6907d07 cgroup/cpuset: Extend kthread_is_per_cpu() check to all PF_NO_SETAFFINITY tasks
    44a4c0dba8c3 platform/x86: asus-wmi: Fix wlan_ctrl_by_user detection
    6b92eee6b96d platform/x86/amd/pmc: Declare quirk_spurious_8042 for MECHREVO Wujie 14XA (GX4HRXL)
    bfe0dd3b7329 binfmt_elf: Move brk for static PIE even if ASLR disabled
    622b7267d787 binfmt_elf: Honor PT_LOAD alignment for static PIE
    d9c175875610 binfmt_elf: Calculate total_size earlier
    d3642f29f549 selftests/exec: Build both static and non-static load_address tests
    7435fa1c530d binfmt_elf: Leave a gap between .bss and brk
    0d6a2bada5d9 selftests/exec: load_address: conform test to TAP format output
    fe7eb1f32a85 binfmt_elf: elf_bss no longer used by load_elf_binary()
    c6df4c71ae1c binfmt_elf: Support segments with 0 filesz and misaligned starts
    11689bb0f7a6 fs/xattr.c: fix simple_xattr_list to always include security.* xattrs
    6a5b2ed82152 ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
    ceb5fadbf450 Revert "v6.6 -stable -rt merge fixup"
    1c2962a164ff v6.6 -stable -rt merge fixup
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 25a471e34f0959212b9168e5b9b09987c7fa7f0a)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Bruce Ashfield
4c11eb19ac linux-yocto/6.6: update to v6.6.91
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    615b9e10e337 Linux 6.6.91
    772934d9062a x86/its: FineIBT-paranoid vs ITS
    9f69fe3888f6 x86/its: Fix build errors when CONFIG_MODULES=n
    3b2234cd50a9 x86/its: Use dynamic thunks for indirect branches
    6699bf27a471 x86/ibt: Keep IBT disabled during alternative patching
    9e7364c32c6c x86/its: Align RETs in BHB clear sequence to avoid thunking
    ba1d70362658 x86/its: Add support for RSB stuffing mitigation
    61bed1ddb212 x86/its: Add "vmexit" option to skip mitigation on some CPUs
    f7ef7f6ccf2b x86/its: Enable Indirect Target Selection mitigation
    4754e29f43c6 x86/its: Add support for ITS-safe return thunk
    c5a5d8075231 x86/its: Add support for ITS-safe indirect thunk
    195579752c23 x86/its: Enumerate Indirect Target Selection (ITS) bug
    c6c1319d19fc Documentation: x86/bugs/its: Add ITS documentation
    a42e9162314f x86/speculation: Remove the extra #ifdef around CALL_NOSPEC
    0a90b50ebf24 x86/speculation: Add a conditional CS prefix to CALL_NOSPEC
    2eecf5cf21cb x86/speculation: Simplify and make CALL_NOSPEC consistent
    a8a8826bf655 x86/bhi: Do not set BHI_DIS_S in 32-bit mode
    a0ff7f679b5d x86/bpf: Add IBHF call at end of classic BPF
    1afebfeaf1eb x86/bpf: Call branch history clearing sequence on exit
    ca8a5626ca0c arm64: proton-pack: Add new CPUs 'k' values for branch mitigation
    80251f62028f arm64: bpf: Only mitigate cBPF programs loaded by unprivileged users
    42a20cf51011 arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs
    73591041a551 arm64: proton-pack: Expose whether the branchy loop k value
    854da0ed0671 arm64: proton-pack: Expose whether the platform is mitigated by firmware
    054fc98d691a arm64: insn: Add support for encoding DSB
    746e7d285dcb io_uring: ensure deferred completions are posted for multishot
    51f1389b5fe1 io_uring: always arm linked timeouts prior to issue
    00f0dd1a0166 do_umount(): add missing barrier before refcount checks in sync case
    eba09f42393a nvme: unblock ctrl state transition for firmware update
    f5a7d616a547 drm/panel: simple: Update timings for AUO G101EVN010
    1c0620213f37 MIPS: Fix MAX_REG_OFFSET
    66c4ec15e329 iio: adc: dln2: Use aligned_s64 for timestamp
    8b5273051b61 iio: accel: adxl355: Make timestamp 64-bit aligned using aligned_s64
    9519771908fc types: Complement the aligned types with signed 64-bit one
    85d430aef40a iio: temp: maxim-thermocouple: Fix potential lack of DMA safe buffer.
    2b58e7c1e4b2 iio: accel: adxl367: fix setting odr for activity time update
    37a55b692d42 usb: usbtmc: Fix erroneous generic_read ioctl return
    1991ed796d9a usb: usbtmc: Fix erroneous wait_srq ioctl return
    e96be8bd53ab usb: usbtmc: Fix erroneous get_stb ioctl error returns
    e2fef620e5e0 USB: usbtmc: use interruptible sleep in usbtmc_read
    14f298c52188 usb: typec: ucsi: displayport: Fix NULL pointer access
    c9d8b0932e2b usb: typec: tcpm: delay SNK_TRY_WAIT_DEBOUNCE to SRC_TRYWAIT transition
    2d44ee69e6f5 usb: host: tegra: Prevent host controller crash when OTG port is used
    9b09b99a9510 usb: gadget: Use get_status callback to set remote wakeup capability
    0b32d03e79c1 usb: gadget: tegra-xudc: ACK ST_RC after clearing CTRL_RUN
    dffa51cf2d3f usb: gadget: f_ecm: Add get_status callback
    1981926eb34a usb: cdnsp: fix L1 resume issue for RTL_REVISION_NEW_LPM version
    d84603122591 usb: cdnsp: Fix issue with resuming from L1
    8c133a08524a ocfs2: stop quota recovery before disabling quotas
    cc335d4f4e4f ocfs2: implement handshaking with ocfs2 recovery thread
    c7441aa8d078 ocfs2: switch osb->disable_recovery to enum
    cbd5108119d7 x86/microcode: Consolidate the loader enablement checking
    faa9059631d3 module: ensure that kobject_put() is safe for module type kobjects
    7e1c7748404b clocksource/i8253: Use raw_spinlock_irqsave() in clockevent_i8253_disable()
    cbfaf46b88a4 xenbus: Use kref to track req lifetime
    ffa14d4dc779 xen: swiotlb: Use swiotlb bouncing if kmalloc allocation demands it
    2ed98e89ebc2 smb: client: Avoid race in open_cached_dir with lease breaks
    671c05434d91 usb: uhci-platform: Make the clock really optional
    03f108a718a7 drm/amdgpu/hdp6: use memcfg register to post the write for HDP flush
    1824e914e291 drm/amdgpu/hdp5: use memcfg register to post the write for HDP flush
    7133ff3bedf3 drm/amdgpu/hdp5.2: use memcfg register to post the write for HDP flush
    05340a423c92 drm/amdgpu/hdp4: use memcfg register to post the write for HDP flush
    f647ce6d9b5d drm/amd/display: Copy AUX read reply data whenever length > 0
    79d982ae2f61 drm/amd/display: Fix wrong handling for AUX_DEFER case
    89850f11bb7c drm/amd/display: Remove incorrect checking in dmub aux handler
    cee6856fbf1c drm/amd/display: Fix the checking condition in dmub aux handling
    c8a91debb020 drm/amd/display: more liberal vmin/vmax update for freesync
    12125f7d9c15 drm/v3d: Add job to pending list if the reset was skipped
    9ce662851380 iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_tagged_fifo
    da33c4167b9c iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo
    3413b87a9e17 iio: adis16201: Correct inclinometer channel resolution
    7748b1b27fbf iio: adc: rockchip: Fix clock initialization sequence
    badda05d6b99 iio: adc: ad7606: fix serial register access
    b229fa0d093c drm/amd/display: Shift DMUB AUX reply command if necessary
    d41072906abe x86/mm: Eliminate window where TLB flushes may be inadvertently skipped
    0f2b18c07604 staging: axis-fifo: Correct handling of tx_fifo_depth for size validation
    f4d6b9f413cb staging: axis-fifo: Remove hardware resets for user errors
    90db122533d2 staging: iio: adc: ad7816: Correct conditional logic for store mode
    f7adc4943853 Input: synaptics - enable InterTouch on TUXEDO InfinityBook Pro 14 v5
    85961bb7e494 Input: synaptics - enable SMBus for HP Elitebook 850 G1
    cbd085c424db Input: synaptics - enable InterTouch on Dell Precision M3800
    82b02402eee1 Input: synaptics - enable InterTouch on Dynabook Portege X30L-G
    c321045f088c Input: synaptics - enable InterTouch on Dynabook Portege X30-D
    2d9d6a4cd3be Input: xpad - fix two controller table values
    56b4e8b62124 Input: xpad - add support for 8BitDo Ultimate 2 Wireless Controller
    cbc82e7db16d Input: xpad - fix Share button on Xbox One controllers
    90fa6015ff83 Input: mtk-pmic-keys - fix possible null pointer dereference
    f72f0172079c Input: cyttsp5 - fix power control issue on wakeup
    dadbe33fee36 Input: cyttsp5 - ensure minimum reset pulse width
    ce4e826dbfe7 net: dsa: b53: fix learning on VLAN unaware bridges
    b1c9c58d09ed net: dsa: b53: always rejoin default untagged VLAN on bridge leave
    ca071649e291 net: dsa: b53: fix VLAN ID for untagged vlan on bridge leave
    a143c39add81 net: dsa: b53: fix flushing old pvid VLAN on pvid change
    aa00a30a28c7 net: dsa: b53: fix clearing PVID of a port
    0121c19ebd53 net: dsa: b53: allow leaky reserved multicast
    355b0526336c bpf: Scrub packet on bpf_redirect_peer
    a3dfec485401 netfilter: ipset: fix region locking in hash types
    adbc8cc11629 ipvs: fix uninit-value for saddr in do_output_route4
    42b7a7c962b2 can: gw: fix RCU/BH usage in cgw_create_job()
    3455e6394fef can: mcp251xfd: fix TDC setting for low data bit rates
    68f29bb97a0e net: ethernet: mtk_eth_soc: reset all TX queues on DMA free
    370635397b62 netdevice: add netdev_tx_reset_subqueue() shorthand
    fa1fe9f3ddb9 gre: Fix again IPv6 link-local address generation.
    31ff70ad3948 sch_htb: make htb_deactivate() idempotent
    af9e2d4732a5 ksmbd: fix memory leak in parse_lease_state()
    0236742bd959 openvswitch: Fix unsafe attribute parsing in output_userspace()
    fec1f9e9a650 ksmbd: Fix UAF in __close_file_table_ids
    04c8a38c6034 ksmbd: prevent out-of-bounds stream writes by validating *pos
    6ee551672c8c ksmbd: prevent rename with empty string
    3482037d0f66 can: mcp251xfd: mcp251xfd_remove(): fix order of unregistration calls
    73dde269a1a4 wifi: cfg80211: fix out-of-bounds access during multi-link element defragmentation
    d2520dc79c2a can: mcan: m_can_class_unregister(): fix order of unregistration calls
    0efe9965680b arm64: dts: imx8mm-verdin: Link reg_usdhc2_vqmmc to usdhc2
    38433aa31b43 dm: add missing unlock on in dm_keyslot_evict()
    9c2dd8954dad Linux 6.6.90
    ed3248a40374 dm: fix copying after src array boundaries
    fe465003bb63 xhci: fix possible null pointer dereference at secondary interrupter removal
    3efb29f6a78d usb: xhci: Check for xhci->interrupters being allocated in xhci_mem_clearup()
    bbc66abcd297 drm/amd/display: Fix slab-use-after-free in hdcp
    97a918755a4c drm/amd/display: Add scoped mutexes for amdgpu_dm_dhcp
    4306dbd7676e iommu/arm-smmu-v3: Fix iommu_device_probe bug due to duplicated stream ids
    3dc33f145a8a iommu/arm-smmu-v3: Use the new rb tree helpers
    8f2451ebaf5b drivers: base: handle module_kobject creation
    ace531f2fea1 kernel: globalize lookup_or_create_module_kobject()
    0ecbb45e30ab kernel: param: rename locate_module_kobject
    baa3ebbad80f xhci: Limit time spent with xHC interrupts disabled during bus resume
    ebb7195dac40 xhci: support setting interrupt moderation IMOD for secondary interrupters
    cc64775afb27 usb: xhci: check if 'requested segments' exceeds ERST capacity
    3733697cb7dd xhci: Add helper to set an interrupters interrupt moderation interval
    bcd191d7bab2 xhci: add support to allocate several interrupters
    ff0a51339a3b xhci: split free interrupter into separate remove and free parts
    3f6e8ad65b1e xhci: Clean up stale comment on ERST_SIZE macro
    f377434945f5 xhci: Use more than one Event Ring segment
    6299fb6190fe xhci: Set DESI bits in ERDP register correctly
    5e8c311318fa Revert "drm/meson: vclk: fix calculation of 59.94 fractional rates"
    f129d8aea8b1 arm64: dts: st: Use 128kB size for aliased GIC400 register access on stm32mp25 SoCs
    ce2fa5bc0158 arm64: dts: st: Adjust interrupt-controller for stm32mp25 SoCs
    fabe73032383 ARM: dts: opos6ul: add ksz8081 phy properties
    f68f93c9d043 firmware: arm_ffa: Skip Rx buffer ownership release if not acquired
    2fbf6c9695ad firmware: arm_scmi: Balance device refcount when destroying devices
    e762ec4c7b34 sch_ets: make est_qlen_notify() idempotent
    36269156033f sch_qfq: make qfq_qlen_notify() idempotent
    9030a91235ae sch_hfsc: make hfsc_qlen_notify() idempotent
    077e355dae44 sch_drr: make drr_qlen_notify() idempotent
    bbbf5e0f8707 sch_htb: make htb_qlen_notify() idempotent
    b9ded1fb298b riscv: Pass patch_text() the length in bytes
    85484bc61138 ASoC: soc-core: Stop using of_property_read_bool() for non-boolean properties
    54583776e416 ASoC: Use of_property_read_bool()
    29ea1abc7d4f net: vertexcom: mse102x: Fix RX error handling
    6ac8ec92f53f net: vertexcom: mse102x: Add range check for CMD_RTS
    04d9c3407986 net: vertexcom: mse102x: Fix LEN_MASK
    e1301580bf0b net: vertexcom: mse102x: Fix possible stuck of SPI interrupt
    cb5922f74b40 net: hns3: defer calling ptp_clock_register()
    accb5a8ef129 net: hns3: fixed debugfs tm_qset size
    c1b1d3b0d8e4 net: hns3: fix an interrupt residual problem
    67d587bfa349 net: hns3: store rx VLAN tag offload state for VF
    7e1ca1bed3f6 octeon_ep: Fix host hang issue during device reboot
    0e32cbcbc4cb net: fec: ERR007885 Workaround for conventional TX
    dae1ce27ceae net: lan743x: Fix memleak issue when GSO enabled
    ec00ea56450e nvme-tcp: fix premature queue removal and I/O failover
    252a5a67adc7 bnxt_en: Fix ethtool -d byte order for 32-bit values
    4d69864915a3 bnxt_en: Fix out-of-bound memcpy() during ethtool -w
    3facfd720055 bnxt_en: Fix coredump logic to free allocated buffer
    e0272844995a net: ipv6: fix UDPv6 GSO segmentation with NAT
    8acf08b1e4ec net: dsa: felix: fix broken taprio gate states after clock jump
    cb625f783f70 net: ethernet: mtk_eth_soc: fix SER panic with 4GB+ RAM
    683ad6d7f489 igc: fix lock order in igc_ptp_reset
    2399d1a75033 net: mdio: mux-meson-gxl: set reversed bit when using internal phy
    1bbbdfc247f4 net: dlink: Correct endianness handling of led_mode
    012a413b28e1 nvme-pci: fix queue unquiesce check on slot_reset
    ce4f77bef276 ALSA: ump: Fix buffer overflow at UMP SysEx message conversion
    eae60cfe25d0 ice: Check VF VSI Pointer Value in ice_vc_add_fdir_fltr()
    a43783119e01 net_sched: qfq: Fix double list add in class with netem as child qdisc
    72c3da7e6ceb net_sched: ets: Fix double list add in class with netem as child qdisc
    6082a87af4c5 net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc
    db205b92dfe0 net_sched: drr: Fix double list add in class with netem as child qdisc
    9b467c5bcdb4 pds_core: remove write-after-free of client_id
    0861fccd43b8 pds_core: specify auxiliary_device to be created
    da23d7edb215 pds_core: make pdsc_auxbus_dev_del() void
    452fa190dd2e pds_core: delete VF dev on reset
    5e51c0b51b25 pds_core: check health in devcmd wait
    5ba9380f79f2 net: ethernet: mtk-star-emac: rearm interrupts in rx_poll only when advised
    7cb10f17bddc net: ethernet: mtk-star-emac: fix spinlock recursion issues on rx/tx poll
    a74777bb1827 net: mscc: ocelot: delete PVID VLAN when readding it as non-PVID
    dc7ffe02adda net: mscc: ocelot: treat 802.1ad tagged traffic as 802.1Q-untagged
    8c7bfb6198a7 Bluetooth: L2CAP: copy RX timestamp to new fragments
    8dde02229b3c net: Rename mono_delivery_time to tstamp_type for scalabilty
    2e8d44ebaa7b Bluetooth: btusb: avoid NULL pointer dereference in skb_dequeue()
    dd20a33a0db0 net/mlx5: E-switch, Fix error handling for enabling roce
    bab395c89127 net/mlx5: E-Switch, Initialize MAC Address for Default GID
    3576e9a80b6c vxlan: vnifilter: Fix unlocked deletion of default FDB entry
    029f11349ec9 powerpc/boot: Fix dash warning
    36a9a2647810 wifi: plfxlc: Remove erroneous assert in plfxlc_mac_release
    c5a5de348c05 drm/i915/pxp: fix undefined reference to `intel_pxp_gsccs_is_ready_for_sessions'
    27a1efe21f9e powerpc/boot: Check for ld-option support
    9a8d4d7072d4 book3s64/radix : Align section vmemmap start address to PAGE_SIZE
    8890eeae5c82 ASoC: soc-pcm: Fix hw_params() and DAPM widget sequence
    a6dbcf69d4c4 iommu: Handle race with default domain setup
    a1723e9c53fe KVM: x86: Load DR6 with guest value only before entering .vcpu_run() loop
    46acbfbcc0e2 PCI: imx6: Skip controller_id generation logic for i.MX7D
    28cfd94980bb Revert "PCI: imx6: Skip controller_id generation logic for i.MX7D"
    47e24c86cb20 selftests/bpf: extend changes_pkt_data with cases w/o subprograms
    3a467d938da2 bpf: fix null dereference when computing changes_pkt_data of prog w/o subprogs
    b7c0d2d4ef13 selftests/bpf: validate that tail call invalidates packet pointers
    f1692ee23dca bpf: consider that tail calls invalidate packet pointers
    70234fbfa266 selftests/bpf: freplace tests for tracking of changes_packet_data
    7197fc4acdf2 bpf: check changes_pkt_data property for extension programs
    85a30a46396a selftests/bpf: test for changing packet data from global functions
    79751e9227a5 bpf: track changes_pkt_data property for global functions
    3d496a1eaaec bpf: refactor bpf_helper_changes_pkt_data to use helper number
    f0b56f1d2fcc bpf: add find_containing_subprog() utility function
    056ebbddb8fa tracing: Fix oob write in trace_seq_to_buffer()
    25687fd19633 cpufreq: Fix setting policy limits when frequency tables are used
    cbd54987db25 cpufreq: Avoid using inconsistent policy->min and policy->max
    e76948644ec7 smb: client: fix zero length for mkdir POSIX create context
    b44746356223 ksmbd: fix use-after-free in kerberos authentication
    a45445b6093d platform/x86/intel-uncore-freq: Fix missing uncore sysfs during CPU hotplug
    3a868a7f8da4 platform/x86/amd: pmc: Require at least 2.5 seconds between HW sleep cycles
    f39493cf7023 iommu/vt-d: Apply quirk_iommu_igfx for 8086:0044 (QM57/QS57)
    13d67528e1ae iommu/amd: Fix potential buffer overflow in parse_ivrs_acpihid
    64e95bb37916 dm: always update the array size in realloc_argv on success
    ecc7f159d17e dm-integrity: fix a warning on invalid table line
    c8c83052283b dm-bufio: don't schedule in atomic context
    08424a0922fb wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage()
    8daa71c694b3 tracing: Do not take trace_event_sem in print_event_fields()
    75fda0e59168 spi: tegra114: Don't fail set_cs_timing when delays are zero
    3aa4aff158ea mmc: renesas_sdhi: Fix error handling in renesas_sdhi_probe
    4d1a2d136356 mm/memblock: repeat setting reserved region nid if array is doubled
    c0fabecd6510 mm/memblock: pass size instead of end to memblock_set_node()
    dfbaecf7e38f irqchip/qcom-mpm: Prevent crash when trying to handle non-wake GPIOs
    e51dd7126693 amd-xgbe: Fix to ensure dependent features are toggled with RX checksum offload
    34b6fa11431a perf/x86/intel: KVM: Mask PEBS_ENABLE loaded for guest with vCPU's value.
    6a098c51d18e parisc: Fix double SIGFPE crash
    3821cae9bd5a arm64: errata: Add missing sentinels to Spectre-BHB MIDR arrays
    ddf4e7f0f509 i2c: imx-lpi2c: Fix clock count when probe defers
    78cf306f7214 EDAC/altera: Set DDR and SDMMC interrupt mask before registration
    726641633413 EDAC/altera: Test the correct error reg offset
    126f5c6e0cb8 drm/nouveau: Fix WARN_ON in nouveau_fence_context_kill()
    94808275aa6c drm/fdinfo: Protect against driver unbind
    b364ee98aca9 btrfs: fix COW handling in run_delalloc_nocow()
    3ac18e0a94c1 ALSA: usb-audio: Add second USB ID for Jabra Evolve 65 headset
    f73ecbfa78ce ALSA: usb-audio: Add retry on -EPROTO from usb_set_interface()
    fd1aeef3e9c7 Revert "rndis_host: Flag RNDIS modems as WWAN devices"
    6a5b2ed82152 ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
    ceb5fadbf450 Revert "v6.6 -stable -rt merge fixup"
    1c2962a164ff v6.6 -stable -rt merge fixup
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: f6a1bfbf070c357eab8f148ac99812718ec91cf1)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Bruce Ashfield
7731f673c3 linux-yocto/6.6: update to v6.6.89
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    71e4ec9b2abc Linux 6.6.89
    20bab4eb1c7c objtool: Silence more KCOV warnings, part 2
    014a761be083 objtool: Ignore end-of-section jumps for KCOV/GCOV
    26084aa1a143 nvme: fixup scan failure for non-ANA multipath controllers
    17d41d0f3a26 MIPS: cm: Fix warning if MIPS_CM is disabled
    eee19a803731 net: dsa: mv88e6xxx: enable STU methods for 6320 family
    cd17c8638d21 net: dsa: mv88e6xxx: enable .port_set_policy() for 6320 family
    13685484072a net: dsa: mv88e6xxx: enable PVT for 6321 switch
    bfbd730e100b net: dsa: mv88e6xxx: fix atu_move_port_mask for 6341 family
    551667f99bcf ext4: goto right label 'out_mmap_sem' in ext4_setattr()
    ffe79cc6c71d comedi: jr3_pci: Fix synchronous deletion of timer
    c4312c4d244a vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp
    abe56be73eb1 driver core: fix potential NULL pointer dereference in dev_uevent()
    a55111066205 driver core: introduce device_set_driver() helper
    d29c2d53357f Revert "drivers: core: synchronize really_probe() and dev_uevent()"
    0fd13033d4e7 x86/pvh: Call C code via the kernel virtual mapping
    2b4479eb462e spi: spi-imx: Add check for spi_imx_setupxfer()
    459098685edf md/raid1: Add check for missing source disk in process_checks()
    41866aa93d2e x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores
    aa0cf04b6959 ubsan: Fix panic from test_ubsan_out_of_bounds
    96ae4c19ed71 spi: tegra210-quad: add rate limiting and simplify timeout error message
    0134e326abc3 spi: tegra210-quad: use WARN_ON_ONCE instead of WARN_ON for timeouts
    6c2e136ffd05 loop: aio inherit the ioprio of original request
    f0209397ed2c riscv: Provide all alternative macros all the time
    ce7e04d26a35 iomap: skip unnecessary ifs_block_is_uptodate check
    bb7878cca969 x86/i8253: Call clockevent_i8253_disable() with interrupts disabled
    a862d24e1fc3 scsi: pm80xx: Set phy_attached to zero when device is gone
    4cdb02e9f963 scsi: ufs: exynos: Ensure pre_link() executes before exynos_ufs_phy_init()
    fa99f1886e0a scsi: hisi_sas: Fix I/O errors caused by hardware port ID changes
    a8550ac19d46 ext4: make block validity check resistent to sb bh corruption
    ea92c93887f5 cifs: Fix querying of WSL CHR and BLK reparse points over SMB1
    dc18c5b1301a timekeeping: Add a lockdep override in tick_freeze()
    e5208da73954 cifs: Fix encoding of SMB1 Session Setup Kerberos Request in non-UNICODE mode
    f444c139e820 nvmet-fc: put ref when assoc->del_work is already scheduled
    e45e8f0dd324 nvmet-fc: take tgtport reference only once
    0cad1849e903 x86/bugs: Don't fill RSB on context switch with eIBRS
    b73c62b1ca43 x86/bugs: Don't fill RSB on VMEXIT with eIBRS+retpoline
    19160ed5e5fa x86/bugs: Use SBPB in write_ibpb() if applicable
    84b52a6cd012 selftests/mincore: Allow read-ahead pages to reach the end of the file
    4978a798a38d gpiolib: of: Move Atmel HSMCI quirk up out of the regulator comment
    18082da6ce0e objtool: Stop UNRET validation on UD2
    0cf5fd802452 nvme: multipath: fix return value of nvme_available_path
    60ed102378a3 nvme: re-read ANA log page after ns scan completes
    4c97ba1b0b98 ACPI PPTT: Fix coding mistakes in a couple of sizeof() calls
    fcf524eaff20 ACPI: EC: Set ec_no_wakeup for Lenovo Go S
    fe063491e90d nvme: requeue namespace scan on missed AENs
    892fcde9941d xen: Change xen-acpi-processor dom0 dependency
    1fe9b92eede3 perf/core: Fix WARN_ON(!ctx) in __free_event() for partial init
    eee189ccd46b selftests: ublk: fix test_stripe_04
    b2ff4e9c599b udmabuf: fix a buf size overflow issue during udmabuf creation
    6234a3c72784 KVM: s390: Don't use %pK through debug printing
    1b2c45697f43 KVM: s390: Don't use %pK through tracepoints
    b205d02726b3 sched/isolation: Make CONFIG_CPU_ISOLATION depend on CONFIG_SMP
    c5d4d103005d io_uring: always do atomic put from iowq
    7e9b836182c1 rtc: pcf85063: do a SW reset if POR failed
    a68768e280b7 9p/net: fix improper handling of bogus negative read/write replies
    04ebabdbe99d ntb_hw_amd: Add NTB PCI ID for new gen CPU
    27f6ee168c00 ntb: reduce stack usage in idt_scan_mws
    5d53e88d8370 qibfs: fix _another_ leak
    db437e985469 objtool, lkdtm: Obfuscate the do_nothing() pointer
    11c16b644934 objtool, regulator: rk808: Remove potential undefined behavior in rk806_set_mode_dcdc()
    547695db502c objtool, ASoC: codecs: wcd934x: Remove potential undefined behavior in wcd934x_slim_irq_handler()
    4ab980b5c309 objtool, panic: Disable SMAP in __stack_chk_fail()
    97f70d27bee2 objtool: Silence more KCOV warnings
    d5ada7bf3dc8 thunderbolt: Scan retimers after device router has been enumerated
    e59fc484d424 usb: host: xhci-plat: mvebu: use ->quirks instead of ->init_quirk() func
    cfa7984f6935 usb: gadget: aspeed: Add NULL pointer check in ast_vhub_init_dev()
    8b26eb1d8bb2 usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running
    2c6a11eaec65 dmaengine: dmatest: Fix dmatest waiting less when interrupted
    5be9407b41ea sound/virtio: Fix cancel_sync warnings on uninitialized work_structs
    a7f9991e4e3c usb: dwc3: gadget: Avoid using reserved endpoints on Intel Merrifield
    e5aabc76d101 usb: dwc3: gadget: Refactor loop to avoid NULL endpoints
    db56636beb3e fs/ntfs3: Fix WARNING in ntfs_extend_initialized_size
    46a150788e16 usb: host: max3421-hcd: Add missing spi_device_id table
    1a0a2d8c6d77 mailbox: pcc: Always clear the platform ack interrupt first
    a6e3026e0ad6 mailbox: pcc: Fix the possible race in updation of chan_in_use flag
    10cf3135c6dc bpf: Reject attaching fexit/fmod_ret to __noreturn functions
    4ed42d1a4a5b bpf: Only fails the busy counter check in bpf_cgrp_storage_get if it creates storage
    c487fcc632e7 bpf: bpftool: Setting error code in do_loader()
    7f30987294b7 s390/tty: Fix a potential memory leak bug
    28e5a867aa54 s390/sclp: Add check for get_zeroed_page()
    96eab3c96a24 parisc: PDT: Fix missing prototype warning
    51ae5b7aa96c clk: check for disabled clock-provider in of_clk_get_hw_from_clkspec()
    b5a528a34e1f bpf: Fix deadlock between rcu_tasks_trace and event_mutex.
    1b66a5920b7f crypto: null - Use spin lock instead of mutex
    d999b11302c4 crypto: ccp - Add support for PCI device 0x1134
    02f53b8f2ffc MIPS: cm: Detect CM quirks from device tree
    979ba0d694ea pinctrl: renesas: rza2: Fix potential NULL pointer dereference
    9c97886f8085 USB: wdm: add annotation
    4b0369c53088 USB: wdm: wdm_wwan_port_tx_complete mutex in atomic context
    54f7f8978af1 USB: wdm: close race between wdm_open and wdm_wwan_port_stop
    8312053acc99 USB: wdm: handle IO errors in wdm_wwan_port_start
    e455bf315eee USB: VLI disk crashes if LPM is used
    097d3c27f871 usb: quirks: Add delay init quirk for SanDisk 3.2Gen1 Flash Drive
    57beab8ea4ff usb: quirks: add DELAY_INIT quirk for Silicon Motion Flash Drive
    127b6aba32d8 usb: dwc3: xilinx: Prevent spike in reset signal
    c4d80e41cb42 usb: dwc3: gadget: check that event count does not exceed event buffer length
    6a91a198cd30 USB: OHCI: Add quirk for LS7A OHCI controller (rev 0x02)
    23d4bb3b0698 usb: chipidea: ci_hdrc_imx: implement usb_phy_init() error handling
    15120673da69 usb: chipidea: ci_hdrc_imx: fix call balance of regulator routines
    121e9f80ea54 usb: chipidea: ci_hdrc_imx: fix usbmisc handling
    48a62deb857f usb: cdns3: Fix deadlock when using NCM gadget
    142273a49f2c usb: xhci: Fix invalid pointer dereference in Etron workaround
    01eeddf93a8a USB: serial: simple: add OWON HDS200 series oscilloscope support
    51d4b23ae5e6 USB: serial: option: add Sierra Wireless EM9291
    c6dc3b71bd4b USB: serial: ftdi_sio: add support for Abacus Electrics Optical Probe
    3b377f805e97 serial: sifive: lock port in startup()/shutdown() callbacks
    c2af265beab7 serial: msm: Configure correct working mode before starting earlycon
    5d5e8a880c48 misc: microchip: pci1xxxx: Fix incorrect IRQ status handling during ack
    62957f58ab3a misc: microchip: pci1xxxx: Fix Kernel panic during IRQ handler registration
    5f253cc40e8d char: misc: register chrdev region with all possible minors
    3481fd96d801 KVM: x86: Reset IRTE to host control if *new* route isn't postable
    9514202882a0 KVM: x86: Explicitly treat routing entry type changes as changes
    ac0fe095ac21 mei: me: add panther lake H DID
    164bc7e26d89 scsi: Improve CDL control
    4c2de359b1a2 USB: storage: quirk for ADATA Portable HDD CH94
    ff733a91a06b ata: libata-scsi: Fix ata_msense_control_ata_feature()
    f0a1b054871f ata: libata-scsi: Fix ata_mselect_control_ata_feature() return type
    f92d5d7134d1 ata: libata-scsi: Improve CDL control
    96838eb1836f mcb: fix a double free bug in chameleon_parse_gdd()
    406ca74adea0 cxl/core/regs.c: Skip Memory Space Enable check for RCD and RCH Ports
    ff826d60d9a8 KVM: SVM: Allocate IR data using atomic allocation
    b675b4c863f1 io_uring: fix 'sync' handling of io_fallback_tw()
    20a3f73dd424 LoongArch: Remove a bogus reference to ZONE_DMA
    2ca9380b1271 LoongArch: Return NULL from huge_pte_offset() for invalid PMD
    2f2803e4b5e4 irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode()
    3d36fae38312 drm/amd/display: Force full update in gpu reset
    253827297c4d drm/amd/display: Fix gpu reset in multidisplay config
    689d5be94faa net: phy: microchip: force IRQ polling mode for lan88xx
    a7b8358eb403 net: selftests: initialize TCP header and skb payload with zero
    cefd8a2e2de4 xen-netfront: handle NULL returned by xdp_convert_buff_to_frame()
    284db2f35b39 crypto: atmel-sha204a - Set hwrng quality to lowest possible
    ad787442af7b virtio_console: fix missing byte order handling for cols and rows
    b74fb07153dc LoongArch: Make do_xyz() exception handlers more robust
    eaa0849818eb LoongArch: Make regs_irqs_disabled() more clear
    5767f4ac6428 LoongArch: Select ARCH_USE_MEMTEST
    cd5970e001f7 perf/x86: Fix non-sampling (counting) events on certain x86 platforms
    9e0d94a29222 splice: remove duplicate noinline from pipe_clear_nowait
    415f3481ca76 iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE
    1d7c4b2b0bbf pds_core: make wait_context part of q_info
    c918ce100d17 pds_core: Remove unnecessary check in pds_client_adminq_cmd()
    cdd784c96fe2 pds_core: handle unsupported PDS_CORE_CMD_FW_CONTROL result
    49083dc3cbb3 net: dsa: mt7530: sync driver-specific behavior of MT7531 variants
    76c4c22c2437 net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too
    3aa852e36050 net_sched: hfsc: Fix a UAF vulnerability in class handling
    4f435c1f4c48 fix a couple of races in MNT_TREE_BENEATH handling by do_move_mount()
    e9f67da07753 net: ethernet: mtk_eth_soc: net: revise NETSYSv3 hardware configuration
    dd6cb0a8575b tipc: fix NULL pointer dereference in tipc_mon_reinit_self()
    618541a6cc15 net: phy: leds: fix memory leak
    d5093d6486d7 net: lwtunnel: disable BHs when required
    4d6919dd7c69 scsi: core: Clear flags for scsi_cmnd that did not complete
    4a1b61f91078 btrfs: avoid page_lockend underflow in btrfs_punch_hole_lock_range()
    1845e03ea787 cpufreq: cppc: Fix invalid return value in .get() callback
    d6979fabe812 scsi: ufs: mcq: Add NULL check in ufshcd_mcq_abort()
    19e0eaa62e88 cpufreq: scpi: Fix null-ptr-deref in scpi_cpufreq_get_rate()
    ea834c90aa7c cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate()
    1053dcf8a504 cpufreq: apple-soc: Fix null-ptr-deref in apple_soc_cpufreq_get_rate()
    92d55d705183 dma/contiguous: avoid warning about unused size_bytes
    f55e7f8abbd3 ceph: Fix incorrect flush end position calculation
    d70c078c26c0 cpufreq/sched: Explicitly synchronize limits_changed flag handling
    ada8d7fa0ad4 sched/cpufreq: Rework schedutil governor performance estimation
    7fc781ca938f sched/topology: Consolidate and clean up access to a CPU's max compute capacity
    485104cd6353 scsi: ufs: qcom: fix dev reference leaked through of_qcom_ice_get
    bd2a352a0d72 PCI: Fix reference leak in pci_register_host_bridge()
    81435b85b2eb of: resolver: Fix device node refcount leakage in of_resolve_phandles()
    f549a4d2e029 of: resolver: Simplify of_resolve_phandles() using __free()
    9549391bb64b clk: renesas: r9a07g043: Fix HP clock source for RZ/Five
    3b6f9b555d5b clk: renesas: r9a07g04[34]: Fix typo for sel_shdi variable
    d56be1857909 clk: renesas: r9a07g04[34]: Use SEL_SDHI1_STS status configuration for SD1 mux
    a15ff92d5f06 clk: renesas: rzg2l: Refactor SD mux driver
    1b9daac2383e clk: renesas: rzg2l: Remove CPG_SDHI_DSEL from generic header
    2e1162149b39 clk: renesas: rzg2l: Add struct clk_hw_data
    aa487374d7f6 clk: renesas: rzg2l: Use u32 for flag and mux_flags
    e56acd53a91a arm64: tegra: Remove the Orin NX/Nano suspend key
    6f21dfc4fadb iio: adc: ad7768-1: Fix conversion result sign
    28aadcb759cf iio: adc: ad7768-1: Move setting of val a bit later to avoid unnecessary return value check
    8df02691d09e ASoC: q6apm-dai: make use of q6apm_get_hw_pointer
    175cb0c28aea ASoC: qcom: Fix trivial code style issues
    9f5d3022d8ca ASoC: qcom: lpass: Make asoc_qcom_lpass_cpu_platform_remove() return void
    0addfbfd605b ASoC: q6apm-dai: schedule all available frames to avoid dsp under-runs
    860c028415d9 ASoC: qcom: q6apm-dai: drop unused 'q6apm_dai_rtd' fields
    9973c8192e07 net: dsa: mv88e6xxx: fix VTU methods for 6320 family
    70d2b16cdd12 net: dsa: mv88e6xxx: fix internal PHYs for 6320 family
    83c12c052cf5 auxdisplay: hd44780: Fix an API misuse in hd44780.c
    ab239a12fdb2 auxdisplay: hd44780: Convert to platform remove callback returning void
    880b1c98d1b4 mmc: sdhci-msm: fix dev reference leaked through of_qcom_ice_get
    d4f5f29c26a1 soc: qcom: ice: introduce devm_of_qcom_ice_get
    a505075730d2 media: vimc: skip .s_stream() for stopped entities
    a64a102e01eb media: subdev: Add v4l2_subdev_is_streaming()
    2b3dc697a465 media: subdev: Improve v4l2_subdev_enable/disable_streams_fallback
    beeeea11ee2a media: subdev: Fix use of sd->enabled_streams in call_s_stream()
    4d11fac941d8 tracing: Verify event formats that have "%*p.."
    e13358c4884d tracing: Add __print_dynamic_array() helper
    896e30f76840 tracing: Add __string_len() example
    5724654a084f x86/mce: use is_copy_from_user() to determine copy-from-user context
    415620362062 x86/extable: Remove unused fixup type EX_TYPE_COPY
    247395cbec42 module: sign with sha512 instead of sha1 by default
    6a5b2ed82152 ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
    ceb5fadbf450 Revert "v6.6 -stable -rt merge fixup"
    1c2962a164ff v6.6 -stable -rt merge fixup
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 85e4fc3931465b18f53db6078a71d46b9f63869f)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Bruce Ashfield
613f1b0e7a linux-yocto/6.6: update to v6.6.88
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    23ec0b405729 Linux 6.6.88
    e7144dae6bba ALSA: hda/realtek: Fix built-in mic on another ASUS VivoBook model
    03af77aa9c03 drm/tests: Build KMS helpers when DRM_KUNIT_TEST_HELPERS is enabled
    b6b77ca4c980 btrfs: fix the length of reserved qgroup to free
    81faa5bfba73 MIPS: ds1287: Match ds1287_set_base_clock() function types
    1dab036557e6 MIPS: cevt-ds1287: Add missing ds1287.h include
    9cac3ed9ca51 MIPS: dec: Declare which_prom() as static
    2eb70f54ad86 sign-file,extract-cert: use pkcs11 provider for OPENSSL MAJOR >= 3
    f8dafdafddcf sign-file,extract-cert: avoid using deprecated ERR_get_error_line()
    1e2d849efc32 sign-file,extract-cert: move common SSL helper functions to a header
    202bca49b7f9 xdp: Reset bpf_redirect_info before running a xdp's BPF prog.
    0a721f240a68 nvmet-fc: Remove unused functions
    efde4462b321 landlock: Add the errata interface
    c84632096722 drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links
    31ff06b4a8a8 wifi: rtw89: pci: disable PCIE wake bit when PCIE deinit
    48128f54f572 wifi: rtw89: pci: add pre_deinit to be called after probe complete
    84464db2ec2a btrfs: fix qgroup reserve leaks in cow_file_range
    e8336d3c9ab7 usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control()
    0e66fd8e5a2e usb: typec: fix potential array underflow in ucsi_ccg_sync_control()
    37491e1dbb50 LoongArch: Eliminate superfluous get_numa_distances_cnt()
    1f1feff02e9d powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()
    427036030f4d nvme-rdma: unquiesce admin_q before destroy it
    6f8d51051d80 x86/split_lock: Fix the delayed detection logic
    29f040d4efb0 x86/tdx: Fix arch_safe_halt() execution for TDX VMs
    e5f0581ecb2a x86/xen: fix memblock_reserve() usage on PVH
    fa1103f21b7a x86/xen: move xen_reserve_extra_memory()
    dafbcfb8ffe6 efi/libstub: Bump up EFI_MMAP_NR_SLACK_SLOTS to 32
    4f687721a981 Fix mmu notifiers for range-based invalidates
    da210d4f884f misc: pci_endpoint_test: Fix 'irq_type' to convey the correct type
    9d8d2899c5b9 misc: pci_endpoint_test: Fix displaying 'irq_type' after 'request_irq' error
    5a4b71812132 misc: pci_endpoint_test: Avoid issue of interrupts remaining after request_irq error
    11a2f91f1844 selftests: mptcp: add mptcp_lib_wait_local_port_listen
    392dfed4af72 mptcp: sockopt: fix getting freebind & transparent
    d69a23d8e925 md: fix mddev uaf while iterating all_mddevs list
    9b1f50da6054 kbuild: Add '-fno-builtin-wcslen'
    8c8d0e800044 cpufreq: Reference count policy in cpufreq_update_limits()
    7e2449ee6693 io_uring/net: fix accept multishot handling
    3184297d6ff0 drm/i915/gvt: fix unterminated-string-initialization warning
    3309feab2b26 drm/sti: remove duplicate object names
    31e94c798957 drm/nouveau: prime: fix ttm_bo_delayed_delete oops
    ae73db71a2a1 drm/amdgpu/dma_buf: fix page_link check
    068091b79648 drm/amd/pm/powerplay/hwmgr/vega20_thermal: Prevent division by zero
    c3ff73e3bddf drm/amd/pm/swsmu/smu13/smu_v13_0: Prevent division by zero
    b0742a709be7 drm/amd/pm/powerplay/hwmgr/smu7_thermal: Prevent division by zero
    de2cba068c9c drm/amd/pm/smu11: Prevent division by zero
    587de3ca7875 drm/amd/pm/powerplay: Prevent division by zero
    509617407411 drm/amd/pm: Prevent division by zero
    d189b32f9dd8 drm/amd: Handle being compiled without SI or CIK support better
    42c2525bc0a8 drm/msm/a6xx: Fix stale rpmh votes from GPU
    31330248abad drm/repaper: fix integer overflows in repeat functions
    0df68b586020 perf/x86/intel/uncore: Fix the scale of IIO free running counters on SPR
    9686a16c35ef perf/x86/intel/uncore: Fix the scale of IIO free running counters on ICX
    aea923afeae4 perf/x86/intel/uncore: Fix the scale of IIO free running counters on SNR
    196a4eecb87b perf/x86/intel: Allow to update user space GPRs from PEBS records
    c2b169fc7a12 RDMA/cma: Fix workqueue crash in cma_netevent_work_handler
    064dc7a70cec scsi: ufs: exynos: Ensure consistent phy reference counts
    92d8a4e6217e scsi: megaraid_sas: Block zero-length ATA VPD inquiry
    bbb6b149c339 x86/boot/sev: Avoid shared GHCB page for early memory acceptance
    5e036349bb01 x86/cpu/amd: Fix workaround for erratum 1054
    971ba6a64c53 x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches
    f6ec52710dc5 virtiofs: add filesystem context source name check
    89baf6bbe6b6 tracing: Fix filter string testing
    596cbe632068 string: Add load_unaligned_zeropad() code path to sized_strscpy()
    d5421baa0e15 smb3 client: fix open hardlink on deferred close file error
    607723b13a0c selftests/mm: generate a temporary mountpoint for cgroup filesystem
    e0e1b00208ec riscv: Avoid fortify warning in syscall_get_arguments()
    8dbf06048023 Revert "smb: client: fix TCP timers deadlock after rmmod"
    fd8973b625b6 Revert "smb: client: Fix netns refcount imbalance causing leaks and use-after-free"
    b7ce8db49028 ksmbd: fix the warning from __kernel_write_iter
    160935d81f2c ksmbd: Prevent integer overflow in calculation of deadtime
    296cb5457cc6 ksmbd: fix use-after-free in smb_break_all_levII_oplock()
    1db2451de23e ksmbd: Fix dangling pointer in krb_authenticate
    0874b629f653 ovl: don't allow datadir only
    23385f567b03 mm: fix apply_to_existing_page_range()
    c3b3987bae52 mm: fix filemap_get_folios_contig returning batches of identical folios
    006b67ac6131 mm/gup: fix wrongly calculated returned value in fault_in_safe_writeable()
    2912683a104e loop: LOOP_SET_FD: send uevents for partitions
    f8530400f21c loop: properly send KOBJ_CHANGED uevent for disk device
    952e7a7e317f isofs: Prevent the use of too small fid
    e89bf1311d44 i2c: cros-ec-tunnel: defer probe if parent EC is not present
    9f77aa584a65 hfs/hfsplus: fix slab-out-of-bounds in hfs_bnode_read_key
    8a53d36ba10b crypto: caam/qi - Fix drv_ctx refcount bug
    78b1126ca42b btrfs: correctly escape subvol in btrfs_show_options()
    ab46314a4e90 Bluetooth: vhci: Avoid needless snprintf() calls
    600a099bec16 Bluetooth: l2cap: Process valid commands in too long frame
    0a6c0fc1f83f ftrace: fix incorrect hash size in register_ftrace_direct()
    42203e004d8e i2c: atr: Fix wrong include
    7d192e27a431 nfsd: decrease sc_count directly if fail to queue dl_recall
    b699aeb91b10 nfs: add missing selections of CONFIG_CRC32
    e446b60a2be1 asus-laptop: Fix an uninitialized variable
    a12c14577882 ASoC: qcom: Fix sc7280 lpass potential buffer overflow
    bf39a185a626 ASoC: codecs:lpass-wsa-macro: Fix logic of enabling vi channels
    444139d6c43b ASoC: codecs:lpass-wsa-macro: Fix vi feedback rate
    3d6102ae330a Revert "PCI: Avoid reset when disabled via sysfs"
    411b7005f4e8 writeback: fix false warning in inode_to_wb()
    404faab1dd6b cpufreq/sched: Fix the usage of CPUFREQ_NEED_UPDATE_LIMITS
    d217f7a82291 riscv: KGDB: Remove ".option norvc/.option rvc" for kgdb_compiled_break
    ba433e6c1002 riscv: KGDB: Do not inline arch_kgdb_breakpoint()
    ec95d0dfc672 kunit: qemu_configs: SH: Respect kunit cmdline
    d7c65ecad959 riscv: Properly export reserved regions in /proc/iomem
    a2874f0dff63 net: ethernet: mtk_eth_soc: revise QDMA packet scheduler settings
    d853feb79d7e net: ethernet: mtk_eth_soc: correct the max weight of the queue limit for 100Mbps
    7891619d21f0 net: ti: icss-iep: Fix possible NULL pointer dereference for perout request
    8b9808b1f64e net: ti: icss-iep: Add phase offset configuration for perout signal
    d64a7166fd12 net: ti: icss-iep: Add pwidth configuration for perout signal
    06ec3c18810f ptp: ocp: fix start time alignment in ptp_ocp_signal_set
    c7ee467f29a8 net: dsa: avoid refcount warnings when ds->ops->tag_8021q_vlan_del() fails
    fb12b460ec46 net: dsa: free routing table on probe failure
    86c6613a69bc net: dsa: clean up FDB, MDB, VLAN entries on unbind
    afae90873014 net: dsa: mv88e6xxx: fix -ENOENT when deleting VLANs and MST is unsupported
    bbb80f004f7a net: dsa: mv88e6xxx: avoid unregistering devlink regions which were never registered
    0f0284285ad3 net: bridge: switchdev: do not notify new brentries as changed
    c9dbc7ec442f net: b53: enable BPDU reception for management port
    2315cfaf4782 netlink: specs: rt-link: adjust mctp attribute naming
    2f6e52cab1d4 netlink: specs: rt-link: add an attr layer around alt-ifname
    08aa59c0be76 cxgb4: fix memory leak in cxgb4_init_ethtool_filters() error path
    e729dd9602e3 ata: libata-sata: Save all fields from sense data descriptor
    94d5809c7fa8 net: ethernet: ti: am65-cpsw: fix port_np reference counting
    422b7b9d1362 net: ethernet: ti: am65-cpsw-nuss: rename phy_node -> port_np
    7c2b66a31c7a net: ngbe: fix memory leak in ngbe_probe() error path
    824a7c2df512 net: openvswitch: fix nested key length validation in the set() action
    549cbbd14bbe block: fix resource leak in blk_register_queue() error path
    a8a3b61ce140 net: mctp: Set SOCK_RCU_FREE
    9027e0735670 pds_core: fix memory leak in pdsc_debugfs_add_qcq()
    86dc3a05fa70 test suite: use %zu to print size_t
    b45b7a0bb88f igc: add lock preventing multiple simultaneous PTM transactions
    d8dde48a1ca6 igc: cleanup PTP module if probe fails
    bcb2d6bfa5e2 igc: handle the IGC_PTP_ENABLED flag correctly
    5262d34f5e40 igc: move ktime snapshot into PTM retry loop
    b1f3e69dc984 igc: increase wait time before retrying PTM
    16194ca3f3b4 igc: fix PTM cycle trigger logic
    6f1ac9b5a9ce Revert "wifi: mac80211: Update skb's control block key in ieee80211_tx_dequeue()"
    9e3114958d87 Bluetooth: l2cap: Check encryption key size on incoming connection
    3db6605043b5 Bluetooth: btrtl: Prevent potential NULL dereference
    fd1621f38fbe Bluetooth: hci_event: Fix sending MGMT_EV_DEVICE_FOUND for invalid address
    ae470d06320d RDMA/core: Silence oversized kvmalloc() warning
    d1d6fa08b1ef ASoC: cs42l43: Reset clamp override on jack removal
    efeddd8acecf RDMA/hns: Fix wrong maximum DMA segment size
    344baf8c1fb1 RDMA/usnic: Fix passing zero to PTR_ERR in usnic_ib_pci_probe()
    4f7b6029ae8e ovl: remove unused forward declaration
    aaa93b884610 ASoC: Intel: avs: Fix null-ptr-deref in avs_component_probe()
    4a655ba2830a ASoC: dwc: always enable/disable i2s irqs
    0b5390aeaa85 md/md-bitmap: fix stats collection for external bitmaps
    f10aa9bc94de md/raid10: fix missing discard IO accounting
    b0348f33940f scsi: iscsi: Fix missing scsi_host_put() in error path
    4a43fd367106 wifi: wl1251: fix memory leak in wl1251_tx_work
    c74b84544dee wifi: mac80211: Purge vif txq in ieee80211_do_stop()
    7fa75affe2a9 wifi: mac80211: Update skb's control block key in ieee80211_tx_dequeue()
    7ca513631fa6 wifi: at76c50x: fix use after free access in at76_disconnect
    a70ea9296419 scsi: hisi_sas: Enable force phy when SATA disk directly connected
    58eb29dba712 HSI: ssi_protocol: Fix use after free vulnerability in ssi_protocol Driver Due to Race Condition
    02e1bcdfdf76 Bluetooth: hci_uart: Fix another race during initialization
    fa43166f2e8b media: mediatek: vcodec: mark vdec_vp9_slice_map_counts_eob_coef noinline
    5029c8f2d7ea x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions()
    bf56f45b167e iommufd: Fail replace if device has not been attached
    e5eadb652014 ACPI: platform-profile: Fix CFI violation when accessing sysfs files
    8d25a8e275bb x86/paravirt: Move halt paravirt calls under CONFIG_PARAVIRT
    4117975672c4 arm64: errata: Add newer ARM cores to the spectre_bhb_loop_affected() lists
    d784cb189035 selftests: mptcp: fix incorrect fd checks in main_loop
    970688e64df9 selftests: mptcp: close fd_in before returning in main_loop
    0d527afa7698 pinctrl: qcom: Clear latched interrupt status when changing IRQ type
    d11839156653 phy: freescale: imx8m-pcie: assert phy reset and perst in power off
    6176fa57dd30 PCI: Fix reference leak in pci_alloc_child_bus()
    1fea7726276e PCI: brcmstb: Fix missing of_node_put() in brcm_pcie_probe()
    468773325ec1 of/irq: Fix device node refcount leakages in of_irq_init()
    b48732849dbb of/irq: Fix device node refcount leakage in API irq_of_parse_and_map()
    eac3d34101ab of/irq: Fix device node refcount leakages in of_irq_count()
    37ff581ddfea of/irq: Fix device node refcount leakage in API of_irq_parse_raw()
    77e3fd880376 of/irq: Fix device node refcount leakage in API of_irq_parse_one()
    6ea67933af7c ntb: use 64-bit arithmetic for the MSI doorbell mask
    8a3df0aa1087 KVM: x86: Acquire SRCU in KVM_GET_MP_STATE to protect guest memory accesses
    8cb249d56e63 KVM: x86: Explicitly zero-initialize on-stack CPUID unions
    504464fd01dc gve: handle overflow when reporting TX consumed descriptors
    bbc702d73f71 gpio: zynq: Fix wakeup source leaks on device unbind
    4009ad6c7695 gpio: tegra186: fix resource handling in ACPI probe path
    5d336ac215e5 ftrace: Add cond_resched() to ftrace_graph_set_hash()
    2eec9e2eb6e3 dt-bindings: coresight: qcom,coresight-tpdm: Fix too many 'reg'
    39cf18f8ec42 dt-bindings: coresight: qcom,coresight-tpda: Fix too many 'reg'
    f46260c3dd44 dm-verity: fix prefetch-vs-suspend race
    7958b71d8baa dm-integrity: set ti->error on memory allocation failure
    841ca9e9224c dm-ebs: fix prefetch-vs-suspend race
    5baddc08066a crypto: ccp - Fix check for the primary ASP device
    ecc44297ac4c clk: qcom: gdsc: Set retain_ff before moving to HW CTRL
    fe25487f2dd1 clk: qcom: gdsc: Capture pm_genpd_add_subdomain result code
    1be6fe9527b1 clk: qcom: gdsc: Release pm subdomains in reverse add order
    541c1a5554ee clk: qcom: clk-branch: Fix invert halt status bit check for votable clocks
    5569a2c55780 cifs: Ensure that all non-client-specific reparse points are processed by the server
    b350dab6d4f4 cifs: fix integer overflow in match_server()
    864ba5c651b0 cifs: avoid NULL pointer dereference in dbg call
    f75eb9acf9df thermal/drivers/rockchip: Add missing rk3328 mapping entry
    233b9cef917c tracing: Do not add length to print format in synthetic events
    8d4750f06359 x86/xen: fix balloon target initialization for PVH dom0
    c6fefcb71d24 sctp: detect and prevent references to a freed transport in sendmsg
    b5681a8b997e mm/hugetlb: move hugetlb_sysctl_init() to the __init section
    94b3a19cedb3 mm/hwpoison: do not send SIGBUS to processes with recovered clean pages
    0b83b941d387 mm/userfaultfd: fix release hang over concurrent GUP
    376183178f42 mm: add missing release barrier on PGDAT_RECLAIM_LOCKED unlock
    e351ffc48b5e mm/mremap: correctly handle partial mremap() of VMA starting at 0
    f4bc11b3c55f mm: fix lazy mmu docs and usage
    402769cde5eb mm: make page_mapped_in_vma() hugetlb walk aware
    e09661ac0b84 mm/rmap: reject hugetlb folios in folio_make_device_exclusive()
    70ec7d13bbd4 sparc/mm: avoid calling arch_enter/leave_lazy_mmu() in set_ptes
    b266dd4d2256 sparc/mm: disable preemption in lazy mmu mode
    e02c44b6ecfd iommufd: Fix uninitialized rc in iommufd_access_rw()
    e921fce3a295 btrfs: zoned: fix zone finishing with missing devices
    fa55f2a31ba2 btrfs: zoned: fix zone activation with missing devices
    897ad7f70dd7 btrfs: fix non-empty delayed iputs list on unmount due to compressed write workers
    1c82f5a393d8 backlight: led_bl: Hold led_access lock when calling led_sysfs_disable()
    c8fa7ffc1c23 arm64: dts: mediatek: mt8173: Fix disp-pwm compatible string
    8db1206d834b arm64: mm: Correct the update of max_pfn
    bfbbef7f1d38 mtd: rawnand: Add status chack in r852_ready()
    7772621041ee mtd: inftlcore: Add error check for inftl_read_oob()
    29b21145721a mptcp: only inc MPJoinAckHMacFailure for HMAC failures
    7f9ae060ed64 mptcp: fix NULL pointer in can_accept_new_subflow
    8ddd124f8a9e lib: scatterlist: fix sg_split_phys to preserve original scatterlist offsets
    8385532d4dd4 locking/lockdep: Decrease nr_unused_locks if lock unused in zap_class()
    388ba8781616 mailbox: tegra-hsp: Define dimensioning masks in SoC data
    ea07760676bb mfd: ene-kb3930: Fix a potential NULL pointer dereference
    b20ec02fcb34 leds: rgb: leds-qcom-lpg: Fix calculation of best period Hi-Res PWMs
    5d97ee4d8d61 leds: rgb: leds-qcom-lpg: Fix pwm resolution max for Hi-Res PWMs
    c88f7328bb0f jbd2: remove wrong sb->s_sequence check
    6871a676aa53 i3c: Add NULL pointer check in i3c_master_queue_ibi()
    c3250bdf5da9 i3c: master: svc: Use readsb helper for reading MDB
    b00b040abfbb smb311 client: fix missing tcon check when mounting with linux/posix extensions
    5f80fd2ff8bf soc: samsung: exynos-chipid: Add NULL pointer check in exynos_chipid_probe()
    1404dff1e11b tpm: do not start chip while suspended
    a64d8972f00f udf: Fix inode_getblk() return value
    a5434db74bf2 vdpa/mlx5: Fix oversized null mkey longer than 32bit
    a5464ac3eeff f2fs: fix to avoid atomicity corruption of atomic file
    2eeb1085bf7b ext4: fix off-by-one error in do_split
    5f084993c90d bus: mhi: host: Fix race between unprepare and queue_buf
    7e439ff5efab ASoC: qdsp6: q6asm-dai: fix q6asm_dai_compr_set_params error path
    7ed8f978a894 ASoC: qdsp6: q6apm-dai: fix capture pipeline overruns.
    b860a99800bc ASoC: qdsp6: q6apm-dai: set 10 ms period and buffer alignment.
    176e7c9a0f62 ASoC: q6apm: add q6apm_get_hw_pointer helper
    35c4a652d833 io_uring/kbuf: reject zero sized provided buffers
    21b0c54546d6 wifi: mac80211: fix integer overflow in hwmp_route_info_get()
    f86e2d083753 wifi: mt76: Add check for devm_kstrdup()
    f304da692876 clocksource/drivers/stm32-lptimer: Use wakeup capable instead of init wakeup
    ce6cabc080c1 mtd: Replace kcalloc() with devm_kcalloc()
    64baf646846e net: dsa: mv88e6xxx: workaround RGMII transmit delay erratum for 6320 family
    7a083ad29fd4 mtd: Add check for devm_kcalloc()
    92b68442790f mptcp: sockopt: fix getting IPV6_V6ONLY
    8a19d34f1e0a media: i2c: imx219: Rectify runtime PM handling in probe and remove
    05b07e52a0d0 media: venus: hfi_parser: refactor hfi packet parsing logic
    d4d88ece4ba9 media: venus: hfi_parser: add check to avoid out of bound access
    28bdf7b9140a media: i2c: ov7251: Introduce 1 ms delay between regulators and en GPIO
    f249c05416ea media: i2c: ov7251: Set enable GPIO low in probe
    86c20c4ebc91 media: i2c: ccs: Set the device's runtime PM status correctly in probe
    2f282e88c2aa media: i2c: ccs: Set the device's runtime PM status correctly in remove
    c3d68e38aa04 media: v4l2-dv-timings: prevent possible overflow in v4l2_detect_gtf()
    571a1873da47 media: platform: stm32: Add check for clk_enable()
    bedb5a7b9783 media: visl: Fix ERANGE error when setting enum controls
    3eaf580cbaa3 media: streamzap: prevent processing IR data on URB failure
    3fcff11317b2 tpm, tpm_tis: Fix timeout handling when waiting for TPM status
    9bd51723ab51 mtd: rawnand: brcmnand: fix PM resume warning
    b8e772e2d8b3 spi: cadence-qspi: Fix probe on AM62A LP SK
    5085e02362b9 KVM: arm64: Tear down vGIC on failed vCPU creation
    db8a657980e7 arm64: errata: Add KRYO 2XX/3XX/4XX silver cores to Spectre BHB safe list
    3ca6b0c9171b arm64: errata: Assume that unknown CPUs _are_ vulnerable to Spectre BHB
    1577657f5efc arm64: errata: Add QCOM_KRYO_4XX_GOLD to the spectre_bhb_k24_list
    892d24d7e355 arm64: cputype: Add MIDR_CORTEX_A76AE
    9da005f88418 xenfs/xensyms: respect hypervisor's "next" indication
    192b87608c2c media: siano: Fix error handling in smsdvb_module_init()
    3e7fc0606e71 media: vim2m: print device name after registering device
    40084302f639 media: venus: hfi: add check to handle incorrect queue size
    5af611c70fb8 media: venus: hfi: add a check to handle OOB in sfr region
    259dafed1879 media: i2c: adv748x: Fix test pattern selection mask
    8895a7af8452 media: mtk-vcodec: venc: avoid -Wenum-compare-conditional warning
    fd7bb97ede48 media: mediatek: vcodec: Fix a resource leak related to the scp device in FW initialization
    39cb5a29cd60 dt-bindings: media: st,stmipid02: correct lane-polarities maxItems
    480faed292f2 ext4: don't treat fhandle lookup of ea_inode as FS corruption
    d5cba7730d76 bpf: support SKF_NET_OFF and SKF_LL_OFF on skb frags
    0e1816d8c277 pwm: fsl-ftm: Handle clk_get_rate() returning 0
    d837f37cd4d9 pwm: rcar: Improve register calculation
    8ddbec73ea25 pwm: mediatek: Prevent divide-by-zero in pwm_mediatek_config()
    a0171967abdd tpm, tpm_tis: Workaround failed command reception on Infineon devices
    16fae241f49a ktest: Fix Test Failures Due to Missing LOG_FILE Directories
    14345d5d7db7 tracing: probe-events: Add comments about entry data storing code
    fda15c5b96b8 fbdev: omapfb: Add 'plane' value check
    3ab9cd2d2e9a drm/amdgpu: grab an additional reference on the gang fence v2
    13e5148f70e8 PCI: vmd: Make vmd_dev::cfg_lock a raw_spinlock_t type
    f8693e1bae9c drm/amdgpu: handle amdgpu_cgs_create_device() errors in amd_powerplay_create()
    988705e558f0 drm/mediatek: mtk_dpi: Explicitly manage TVD clock in power on/off
    50967df6e4d2 drm/mediatek: mtk_dpi: Move the input_2p_en bit to platform data
    a36f8d544522 drm/amdkfd: debugfs hang_hws skip GPU with MES
    864d739fbc72 drm/amdkfd: Fix pqm_destroy_queue race with GPU reset
    89af6b39f028 drm/amdkfd: Fix mode1 reset crash issue
    06a1db4cb7ac drm/amdkfd: clamp queue size to minimum
    61d1a8296eeb drivers: base: devres: Allow to release group on device release
    100cf2fa0140 drm/bridge: panel: forbid initializing a panel with unknown connector type
    1e27e6050c8c drm: panel-orientation-quirks: Add quirk for OneXPlayer Mini (Intel)
    49ef9e47e72b drm: panel-orientation-quirks: Add new quirk for GPD Win 2
    118f95e3ff6c drm: panel-orientation-quirks: Add quirk for AYA NEO Slide
    14dc15279512 drm: panel-orientation-quirks: Add quirks for AYA NEO Flip DS and KB
    bfea2e6f0305 drm: panel-orientation-quirks: Add support for AYANEO 2S
    d74554965cac drm/amd/display: add workaround flag to link to force FFE preset
    2528ccb0f2fc drm/amd/display: Update Cursor request mode to the beginning prefetch always
    f5b168c309a7 drm: allow encoder mode_set even when connectors change for crtc
    fb95ab35d0e1 Bluetooth: qca: simplify WCN399x NVM loading
    806464634e7f Bluetooth: hci_uart: fix race during initialization
    e711501970a0 tracing: fix return value in __ftrace_event_enable_disable for TRACE_REG_UNREGISTER
    d537859e56bc net: vlan: don't propagate flags on open
    efd75512e38a wifi: mt76: mt76x2u: add TP-Link TL-WDN6200 ID to device table
    e4d1ca0a84a6 scsi: st: Fix array overflow in st_setup()
    06f20cd706d7 cdc_ether|r8152: ThinkPad Hybrid USB-C/A Dock quirk
    362a90cecd36 ext4: ignore xattrs past end
    b7cc9e3adfee Revert "f2fs: rebuild nat_bits during umount"
    1dbece9c2fbc ext4: protect ext4_release_dquot against freezing
    1263713795d0 ahci: add PCI ID for Marvell 88SE9215 SATA Controller
    8b5e5aac44fe f2fs: fix to avoid out-of-bounds access in f2fs_truncate_inode_blocks()
    7f1d986da5c6 wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi
    da3ba4a44e96 net: sfp: add quirk for 2.5G OEM BX SFP
    7568e5e4486d ata: libata-eh: Do not use ATAPI DMA for a device limited to PIO mode
    cc0bc4cb62ce jfs: add sanity check for agwidth in dbMount
    b3c4884b987e jfs: Prevent copying of nlink with value 0 from disk inode
    7ccf3b352745 fs/jfs: Prevent integer overflow in AG size calculation
    a14b2592a7a7 fs/jfs: cast inactags to s64 to prevent potential overflow
    067347e00a3a jfs: Fix uninit-value access of imap allocated in the diMount() function
    95f17738b86f page_pool: avoid infinite loop to schedule delayed worker
    809bf3a7d05d net: usb: asix_devices: add FiberGecko DeviceID
    4ae2e891552e scsi: target: spc: Fix RSOC parameter data header size
    4fc5c17538cb f2fs: don't retry IO for corrupted data scenario
    2c512f2eadab wifi: ath12k: Fix invalid entry fetch in ath12k_dp_mon_srng_process
    b3e04472a87b ASoC: amd: yc: update quirk data for new Lenovo model
    01529e60ae14 ASoC: amd: Add DMI quirk for ACP6X mic support
    63f516088870 ALSA: usb-audio: Fix CME quirk for UF series keyboards
    0932950d3a3f mmc: dw_mmc: add a quirk for accessing 64-bit FIFOs in two halves
    035c6e60074f media: uvcvideo: Add quirk for Actions UVC05
    bd095d3a9dff ASoC: fsl_audmix: register card device depends on 'dais' property
    1d91458b126e ALSA: hda: intel: Add Lenovo IdeaPad Z570 to probe denylist
    fb44392bd5a4 ALSA: hda: intel: Fix Optimus when GPU has no sound
    be706a48bb78 HID: pidff: Fix null pointer dereference in pidff_find_fields
    4d5bcca217ae HID: pidff: Add PERIODIC_SINE_ONLY quirk
    c1fde337b317 HID: Add hid-universal-pidff driver and supported device ids
    fd6055c1a103 HID: pidff: Add FIX_WHEEL_DIRECTION quirk
    123e94f66d2a HID: pidff: Add hid_pidff_init_with_quirks and export as GPL symbol
    b2f378891cb2 HID: pidff: Add PERMISSIVE_CONTROL quirk
    1830b4166f01 HID: pidff: Add MISSING_PBO quirk and its detection
    bf284760372b HID: pidff: Add MISSING_DELAY quirk and its detection
    a08ee3c7eeca HID: pidff: Do not send effect envelope if it's empty
    520e0371d1dc HID: pidff: Convert infinite length from Linux API to PID standard
    4a29465fbe60 ASoC: SOF: topology: Use krealloc_array() to replace krealloc()
    1e5b04f08e52 zstd: Increase DYNAMIC_BMI2 GCC version cutoff from 4.8 to 11.0 to work around compiler segfault
    af71db7de067 xen/mcelog: Add __nonstring annotations for unterminated strings
    150d1cbdf781 arm64: cputype: Add QCOM_CPU_PART_KRYO_3XX_GOLD
    f14d29b89186 perf: arm_pmu: Don't disable counter in armpmu_add()
    c7dec3461275 x86/cpu: Don't clear X86_FEATURE_LAHF_LM flag in init_amd_k8() on AMD when running in a virtual machine
    8449fd2a1433 x86/ia32: Leave NULL selector values 0~3 unchanged
    d0f4b75a8f96 x86/mm: Clear _PAGE_DIRTY for kernel mappings when we clear _PAGE_RW
    942a4b97fc77 pm: cpupower: bench: Prevent NULL dereference on malloc failure
    4ec80a68733f umount: Allow superblock owners to force umount
    323960a187a9 fs: consistently deref the files table with rcu_dereference_raw()
    6abd09bed43b iommu/mediatek: Fix NULL pointer deference in mtk_iommu_device_group
    90cdd7e5a484 nft_set_pipapo: fix incorrect avx2 match of 5th field octet
    fbaffe8bccf1 net: ppp: Add bound checking for skb data on ppp_sync_txmung
    6509e2e17d32 ipv6: Align behavior across nexthops during path selection
    d2718324f9e3 net_sched: sch_sfq: move the limit validation
    00d44fe29e75 net_sched: sch_sfq: use a temporary work area for validating configuration
    a8008b975890 nvmet-fcloop: swap list_add_tail arguments
    9f5ef4a5eaa6 drm/i915/huc: Fix fence not released on early probe errors
    44984339d38e ata: sata_sx4: Add error handling in pdc20621_i2c_read()
    c17ef974bfcf net: libwx: handle page_pool_dev_alloc_pages error
    9649d08010ff drm/tests: probe-helper: Fix drm_display_mode memory leak
    718a892e2def drm/tests: modes: Fix drm_display_mode memory leak
    cea2c8ace75c drm/tests: cmdline: Fix drm_display_mode memory leak
    742a084c6a9e drm/tests: helpers: Create kunit helper to destroy a drm_display_mode
    0c6550ab45c3 drm/tests: helpers: Fix compiler warning
    85926abafad5 drm/tests: helpers: Add helper for drm_display_mode_from_cea_vic()
    60f481fdf1e7 drm/tests: Add helper to create mock crtc
    af1dccab386f drm/tests: Add helper to create mock plane
    a31fd0eaf75e drm/tests: helpers: Add atomic helpers
    eceb15bbf6ed drm/tests: modeset: Fix drm_display_mode memory leak
    c5ed0eaddcbd net: ethtool: Don't call .cleanup_data when prepare_data fails
    8b158a0d19ed tc: Ensure we have enough buffer space when sending filter netlink notifications
    28f2cd143b5b net/sched: cls_api: conditional notification of events
    aa258dbf4598 rtnl: add helper to check if a notification is needed
    abd07987f7fe rtnl: add helper to check if rtnl group has listeners
    af4e364fb1c3 octeontx2-pf: qos: fix VF root node parent queue index
    2bcad8fefcec net: tls: explicitly disallow disconnect
    2f9761a94bae codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()
    09c2dcda2c55 tipc: fix memory leak in tipc_link_xmit
    ae7e9d29a3c3 objtool: Fix INSN_CONTEXT_SWITCH handling in validate_unret()
    5b09bf6243b0 ata: pata_pxa: Fix potential NULL pointer dereference in pxa_ata_probe()
    4d4bf6d6b147 drm/i915: Disable RPG during live selftest
    303d76047514 drm/i915/dg2: wait for HuC load completion before running selftests
    8b2148daa73b drm/i915/xelpg: Extend driver code of Xe_LPG to Xe_LPG+
    18520ecc3cfa drm/i915/mocs: use to_gt() instead of direct &i915->gt
    58c1e8c569bd selftests/futex: futex_waitv wouldblock test should fail
    6a5b2ed82152 ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
    ceb5fadbf450 Revert "v6.6 -stable -rt merge fixup"
    1c2962a164ff v6.6 -stable -rt merge fixup
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: d71c6367029c6c758068daa6ef01044c49d9095c)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Bruce Ashfield
09f41bde8e linux-yocto/6.6: update to v6.6.87
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

:ddddddddddddddddddddddddddddddddddddddddddddd
bbbbbbbbbbbb  bbbbbbbbbb
    814637ca257f Linux 6.6.87
    47ee832819f4 tracing: Do not use PERF enums when perf is not defined
    661f09d39a59 NFSD: Skip sending CB_RECALL_ANY when the backchannel isn't up
    9a81cde8c7ce nfsd: put dl_stid if fail to queue dl_recall
    15483afb930f media: streamzap: fix race between device disconnection and urb callback
    753a620a7f8e exec: fix the racy usage of fs_struct->in_exec
    72a3b5c3d16e jfs: add index corruption check to DT_GETPAGE()
    a8c31808925b jfs: fix slab-out-of-bounds read in ea_get()
    52a5509ab19a ext4: fix OOB read when checking dotdot dir
    d12a6016281a ext4: don't over-report free space or inodes in statvfs
    617a4b0084a5 arm64: Don't call NULL in do_compat_alignment_fixup()
    77029c613fac tracing/osnoise: Fix possible recursive locking for cpus_read_lock()
    fad52c9ae5bd tracing: Fix synth event printk format for str fields
    fc128e85cfc4 tracing: Ensure module defining synth event cannot be unloaded while tracing
    099ef3385800 tracing: Fix use-after-free in print_graph_function_flags during tracer switching
    0e36a3e080d6 ksmbd: validate zero num_subauth before sub_auth is accessed
    3980770cb147 ksmbd: fix session use-after-free in multichannel connection
    a8a8ae303a83 ksmbd: fix use-after-free in ksmbd_sessions_deregister()
    60b7207893a8 ksmbd: add bounds check for create lease context
    8d4848c45943 ksmbd: add bounds check for durable handle context
    68d64f7329a5 mmc: sdhci-omap: Disable MMC_CAP_AGGRESSIVE_PM for eMMC/SD
    d8d7b50586ec mmc: sdhci-pxav3: set NEED_RSP_BUSY capability
    261f51775ef5 mmc: omap: Fix memory leak in mmc_omap_new_slot
    90bcdefe220a ACPI: resource: Skip IRQ override on ASUS Vivobook 14 X1404VAP
    c90402d2a226 acpi: nfit: fix narrowing conversion in acpi_nfit_ctl
    7085895c59e4 x86/mm: Fix flush_tlb_range() when used for zapping normal PMDs
    e329d137b076 x86/tsc: Always save/restore TSC sched_clock() on suspend/resume
    67e4ca7ddc67 btrfs: handle errors from btrfs_dec_ref() properly
    99ddb9c58511 kunit/overflow: Fix UB in overflow_allocation_test
    e7f6922c8a5b perf/x86/intel: Avoid disable PMU if !cpuc->enabled in sample read
    79159fbd13f6 perf/x86/intel: Apply static call for drain_pebs
    2e6df032a0b6 ntb_perf: Delete duplicate dmaengine_unmap_put() call in perf_copy_chunk()
    3820d20d51fd platform/x86: ISST: Correct command storage data length
    b1a673850c58 ACPI: x86: Extend Lenovo Yoga Tab 3 quirk with skip GPIO event-handlers
    763f4d638f71 x86/microcode/AMD: Fix __apply_microcode_amd()'s return value
    10edc4cecad4 x86/hyperv: Fix check of return value from snp_set_vmsa()
    7cf8fe2b2bcc LoongArch: BPF: Use move_addr() for BPF_PSEUDO_FUNC
    7df2696256a0 LoongArch: BPF: Don't override subprog's return value
    b3ffad2f02db LoongArch: BPF: Fix off-by-one error in build_prologue()
    279ec25c2df4 LoongArch: Increase ARCH_DMA_MINALIGN up to 16
    acacd48a37b5 usbnet:fix NPE during rx_complete
    032c5407a608 drm/amd/display: Check link_index before accessing dc->links[]
    41a2c7abc339 tracing: Correct the refcount if the hist/hist_debug file fails to open
    d24e5e631849 tracing/hist: Support POLLPRI event for poll on histogram
    13edaf997904 tracing/hist: Add poll(POLLIN) support on hist file
    77b7dbd3420e tracing: Switch trace_events_hist.c code over to use guard()
    f568fbe8c603 tracing: Allow creating instances with specified system events
    1913adb58b84 perf/core: Fix child_total_time_enabled accounting bug at task exit
    40316f29b043 drm/amdgpu/gfx11: fix num_mec
    1e458c292f4c net: ibmveth: make veth_pool_store stop hanging
    ececf8eff6c2 arcnet: Add NULL check in com20020pci_probe()
    fa2f9fc35f56 ipv6: Do not consider link down nexthops in path selection
    21f678f672dc ipv6: Start path selection from the first nexthop
    5a2976cc4d9c net: fix geneve_opt length integer overflow
    0ae509b075b2 net: dsa: mv88e6xxx: propperly shutdown PPU re-enable timer on destroy
    fbab7bbf7204 ipv6: fix omitted netlink attributes when using RTEXT_FILTER_SKIP_STATS
    28d88ee1e1cc netfilter: nft_tunnel: fix geneve_opt type confusion addition
    ccc331fd5bca net: decrease cached dst counters in dst_release
    858695324644 tunnels: Accept PACKET_HOST in skb_tunnel_check_pmtu().
    b0a1055e0a9e vsock: avoid timeout during connect() if the socket is closing
    aeef6456692c udp: Fix memory accounting leak.
    5b0ae1723a7d net: mvpp2: Prevent parser TCAM memory corruption
    864ca690ff13 net_sched: skbprio: Remove overly strict queue assertions
    1927d0bcd5b8 netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets
    6134d1ea1e14 netfilter: nf_tables: don't unregister hook when table is dormant
    073b04796c07 netfilter: nft_set_hash: GC reaps elements with conncount for dynamic sets only
    aff1860507ea e1000e: change k1 configuration on MTP and later platforms
    e283a5bf4337 ASoC: imx-card: Add NULL check in imx_card_probe()
    8db65e4432b2 riscv: Fix hugetlb retrieval of number of ptes in case of !present pte
    992678427eff ASoC: codecs: rt5665: Fix some error handling paths in rt5665_probe()
    a59594c370cd x86/uaccess: Improve performance by aligning writes to 8 bytes in copy_user_generic(), on non-FSRM/ERMS CPUs
    f7a53d32cc60 RISC-V: errata: Use medany for relocatable builds
    b52e13bfd69c ALSA: hda/realtek: Fix built-in mic breakage on ASUS VivoBook X515JA
    c37616f1521d firmware: cs_dsp: Ensure cs_dsp_load[_coeff]() returns 0 on success
    830169a5ceeb ntb: intel: Fix using link status DB's
    c61a3f2df162 ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans
    2174fa133dcc riscv: ftrace: Add parentheses in macro definitions of make_call_t0 and make_call_ra
    239ea3c34673 spufs: fix a leak in spufs_create_context()
    324f280806aa spufs: fix gang directory lifetimes
    90d1b276d1b1 spufs: fix a leak on spufs_new_file() failure
    6e75137ac8de hwmon: (nct6775-core) Fix out of bounds access for NCT679{8,9}
    aaf534ad0720 memory: omap-gpmc: drop no compatible check
    68adc6f17a36 can: statistics: use atomic access in hot path
    2a435a8cb891 ALSA: hda/realtek: Add mute LED quirk for HP Pavilion x360 14-dy1xxx
    05413508bc35 drm/amd: Keep display off while going into S4
    5272e986ea96 nvme-pci: fix stuck reset on concurrent DPC and HP
    d276f4050067 x86/sgx: Warn explicitly if X86_FEATURE_SGX_LC is not enabled
    83fa62a06e40 x86/hyperv: Fix output argument to hypercall that changes page visibility
    e7d8c5703238 locking/semaphore: Use wake_q to wake up processes outside lock critical section
    e87b8f209cb2 wifi: mac80211: flush the station before moving it to UN-AUTHORIZED state
    c0863207c012 x86/hyperv/vtl: Stop kernel from probing VTL0 low memory
    0ada80483275 sched/deadline: Use online cpus for validating runtime
    264f9a797c18 ALSA: hda/realtek: Add support for ASUS Zenbook UM3406KA Laptops using CS35L41 HDA
    b9fa3901b612 ALSA: hda/realtek: Add support for ASUS ROG Strix G614 Laptops using CS35L41 HDA
    4c8865331899 HID: i2c-hid: improve i2c_hid_get_report error message
    64f974466183 platform/x86/intel/vsec: Add Diamond Rapids support
    84d6da6738ba platform/x86: intel-hid: fix volume buttons on Microsoft Surface Go 4 tablet
    fa19b53716f9 cifs: fix incorrect validation for num_aces field of smb_acl
    68ee6f71a2a9 perf/core: Fix perf_pmu_register() vs. perf_init_event()
    11e2ae4fe025 ALSA: hda: Fix speakers on ASUS EXPERTBOOK P5405CSA 1.0
    fc424138592a ALSA: hda/realtek: Fix Asus Z13 2025 audio
    54fd5a5b7583 affs: don't write overlarge OFS data block size fields
    9fcab9c72142 affs: generate OFS sequence numbers starting at 1
    ec7315e68d88 wifi: brcmfmac: keep power during suspend if board requires it
    d9189555fbe5 nvme-pci: skip CMB blocks incompatible with PCI P2P DMA
    a74dad107e52 nvme-pci: clean up CMBMSC when registering CMB fails
    9ca8c6f6a227 nvme-tcp: fix possible UAF in nvme_tcp_poll
    60856e6cdb3e wifi: iwlwifi: mvm: use the right version of the rate API
    aadb8a9a90c0 wifi: iwlwifi: fw: allocate chained SG tables for dump
    a3160e7f6d90 rcu-tasks: Always inline rcu_irq_work_resched()
    0a0813d1277e context_tracking: Always inline ct_{nmi,irq}_{enter,exit}()
    698243234d63 sched/smt: Always inline sched_smt_active()
    7ae00d2903ee objtool: Fix verbose disassembly if CROSS_COMPILE isn't set
    08796bd2389a octeontx2-af: Free NIX_AF_INT_VEC_GEN irq
    aa042c453227 octeontx2-af: Fix mbox INTR handler when num VFs > 64
    f9b61f837eb7 ACPI: processor: idle: Return an error if both P_LVL{2,3} idle states are invalid
    d32f20470c9e LoongArch: Rework the arch_kgdb_breakpoint() implementation
    37319d6d8540 LoongArch: Fix help text of CMDLINE_EXTEND in Kconfig
    8f77c286d5e0 objtool: Fix segfault in ignore_unreachable_insn()
    de37b82be68d ring-buffer: Fix bytes_dropped calculation issue
    17e3c520aeef net/mlx5e: SHAMPO, Make reserved size independent of page size
    4790bcb269e5 ksmbd: fix r_count dec/increment mismatch
    a32086cc6444 ksmbd: fix multichannel connection failure
    1de7fec4d301 ksmbd: use aead_request_free to match aead_request_alloc
    8857aadaecef rndis_host: Flag RNDIS modems as WWAN devices
    15f150771e0e rtnetlink: Allocate vfinfo size for VF GUIDs when supported
    af089264d108 exfat: fix the infinite loop in exfat_find_last_cluster()
    c6b6b8dcef4a smb: client: Fix netns refcount imbalance causing leaks and use-after-free
    d7ca0969bf87 NFS: Shut down the nfs_client only after all the superblocks
    75b42dfe8765 objtool, media: dib8000: Prevent divide-by-zero in dib8000_set_dds()
    f2dc3c3b1b85 perf tools: annotate asm_pure_loop.S
    e6fe7f82f3b9 fs/procfs: fix the comment above proc_pid_wchan()
    0a3bf3bc3444 tty: n_tty: use uint for space returned by tty_write_room()
    357c1a3deb1f staging: rtl8723bs: select CONFIG_CRYPTO_LIB_AES
    769a0f187ba2 perf python: Check if there is space to copy all the event
    88f5dd0002f4 perf python: Don't keep a raw_data pointer to consumed ring buffer space
    6bc0c3e7582c perf python: Decrement the refcount of just created event on failure
    b8e2e2cfa319 perf python: Fixup description of sample.id event member
    9c764db1794e i3c: master: svc: Fix missing the IBI rules
    4ee8160c47e0 um: hostfs: avoid issues on inode number reuse by host
    c9a6cf3fe680 um: remove copy_from_kernel_nofault_allowed
    5e06e6412a73 selftests/mm/cow: fix the incorrect error handling
    db75d49a4107 fuse: fix dax truncate/punch_hole fault path
    4e2a03d766f1 NFSv4: Don't trigger uneccessary scans for return-on-close delegations
    d03ce46090f6 arch/powerpc: drop GENERIC_PTDUMP from mpc885_ads_defconfig
    3d012ba4404a ocfs2: validate l_tree_depth to avoid out-of-bounds access
    8c69e83028bf kexec: initialize ELF lowest address to ULONG_MAX
    4159cb408f8c kernel/events/uprobes: handle device-exclusive entries correctly in __replace_page()
    fa55abb99de9 perf units: Fix insufficient array space
    8a832ed0f6d6 perf evlist: Add success path to evlist__create_syswide_maps
    1f562f8efa72 iio: adc: ad7124: Fix comparison of channel configs
    a2ae5afa0837 iio: adc: ad4130: Fix comparison of channel setups
    cb7687e37735 dmaengine: fsl-edma: cleanup chan after dma_async_device_unregister
    f6d44b1aa46d fs/ntfs3: Prevent integer overflow in hdr_first_de()
    0dfe700fbd35 fs/ntfs3: Fix a couple integer overflows on 32bit systems
    0566a11d5e65 usb: xhci: correct debug message page size calculation
    fe2ada4ed436 perf bench: Fix perf bench syscall loop count
    31ebc5701a82 perf arm-spe: Fix load-store operation checking
    d3f0bad2c43e iio: accel: msa311: Fix failure to release runtime pm if direct mode claim fails.
    2d8c171e6212 iio: accel: mma8452: Ensure error return on failure to matching oversampling ratio
    1287c788f33b ucsi_ccg: Don't show failed to get FW build information error
    d2b1ee18c1d3 perf pmu: Don't double count common sysfs and json events
    a8b3879b2e3b coresight-etm4x: add isb() before reading the TRCSTATR
    2b34bdc42df0 vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint
    01592ce19138 coresight: catu: Fix number of pages while using 64k pages
    b302c4d3f42a soundwire: slave: fix an OF node reference leak in soundwire slave device
    98fa452d0cf2 isofs: fix KMSAN uninit-value bug in do_isofs_readdir()
    6258b8ac583b perf stat: Fix find_stat for mixed legacy/non-legacy events
    a7bae9f76636 clk: qcom: mmcc-sdm660: fix stuck video_subcore0 clock
    f2176ab4b30f pinctrl: intel: Fix wrong bypass assignment in intel_pinctrl_probe_pwm()
    75f095daf623 crypto: hisilicon/sec2 - fix for aead auth key length
    b6fc1fdd3e71 x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment
    966fdfc45373 leds: Fix LED_OFF brightness race
    d6f517e8d866 mfd: sm501: Switch to BIT() to mitigate integer overflows
    7d8e0ac233d7 pinctrl: renesas: rzv2m: Fix missing of_node_put() call
    7c51a6964b45 RDMA/mlx5: Fix mlx5_poll_one() cur_qp update flow
    c4db297e8896 crypto: nx - Fix uninitialised hv_nxc on error
    a278a4164bde power: supply: max77693: Fix wrong conversion of charge input threshold value
    02586692acdb x86/entry: Fix ORC unwinder for PUSH_REGS with save_ret=1
    3d39022704e0 clk: amlogic: g12a: fix mmc A peripheral clock
    c6f63ae9b51b clk: clk-imx8mp-audiomix: fix dsp/ocram_a clock parents
    48e5f4fdadd7 selftests/bpf: Select NUMA_NO_NODE to create map
    7061afacc89d clk: amlogic: gxbb: drop non existing 32k clock parent
    b36254e8f865 clk: amlogic: g12b: fix cluster A parent data
    4dc225623804 pinctrl: tegra: Set SFIO mode to Mux Register
    5fa3bfd3d025 IB/mad: Check available slots before posting receive WRs
    1b2641d16167 remoteproc: qcom_q6v5_mss: Handle platforms with one power domain
    667a628ab67d RDMA/erdma: Prevent use-after-free in erdma_accept_newconn()
    68438629de34 RDMA/mlx5: Fix calculation of total invalidated pages
    0cf80f924aec RDMA/core: Don't expose hw_counters outside of init net namespace
    02527e62d7ee clk: rockchip: rk3328: fix wrong clk_ref_usb3otg parent
    622d52c99a91 pinctrl: renesas: rzg2l: Fix missing of_node_put() call
    182ae87e1435 pinctrl: renesas: rza2: Fix missing of_node_put() call
    77461377d3be lib: 842: Improve error handling in sw842_compress()
    43681d603ff0 bpf: Use preempt_count() directly in bpf_send_signal_common()
    8e3e21129cfe remoteproc: qcom_q6v5_pas: Use resource with CX PD for MSM8226
    b32da6cf9d4e RDMA/mana_ib: Ensure variable err is initialized
    db6f0b88d772 clk: qcom: gcc-msm8953: fix stuck venus0_core0 clock
    4d29a6dcb51e clk: samsung: Fix UBSAN panic in samsung_clk_init()
    b07398e8a5da x86/mm/pat: Fix VM_PAT handling when fork() fails in copy_page_range()
    22280deb312f selftests/bpf: Fix string read in strncmp benchmark
    b55c47027511 libbpf: Fix hypothetical STT_SECTION extern NULL deref case
    5db897802c39 remoteproc: qcom_q6v5_pas: Make single-PD handling more robust
    ba1a885c9012 of: property: Increase NR_FWNODE_REFERENCE_ARGS
    7c6bb82a6f3d remoteproc: core: Clear table_sz when rproc_shutdown
    8594bbffc266 crypto: hisilicon/sec2 - fix for sec spec check
    0aafd0ec5101 crypto: hisilicon/sec2 - fix for aead authsize alignment
    2ff09de2c8ff clk: amlogic: gxbb: drop incorrect flag on 32k clock
    ce88afbc0934 fbdev: sm501fb: Add some geometry checks.
    6ed70f3dc68f mdacon: rework dependency list
    88ebc63d6a67 fbdev: au1100fb: Move a variable assignment behind a null pointer check
    f6c1a08e9163 PCI: pciehp: Don't enable HPIE when resuming in poll mode
    cbcb02cc0e2f PCI: histb: Fix an error handling path in histb_pcie_probe()
    b3a93a2407ad drm/amd/display: avoid NPD when ASIC does not support DMUB
    390304035b32 drm/mediatek: dsi: fix error codes in mtk_dsi_host_transfer()
    13ec849fd2ea drm/mediatek: dp: drm_err => dev_err in HPD path to avoid NULL ptr
    48b5e31bc354 PCI: xilinx-cpm: Fix IRQ domain leak in error path of probe
    745783303c41 PCI: Remove stray put_device() in pci_register_host_bridge()
    d5563f120575 drm/amd/display: fix type mismatch in CalculateDynamicMetadataParameters()
    431f51068a0c PCI: Avoid reset when disabled via sysfs
    0aad0d291690 PCI/portdrv: Only disable pciehp interrupts early when needed
    eeeac24b42e6 PCI: brcmstb: Fix potential premature regulator disabling
    eedd05483493 PCI: brcmstb: Fix error path after a call to regulator_bulk_get()
    8b2853fd6ef8 PCI: brcmstb: Use internal register to change link capability
    17a37367d032 PCI: cadence-ep: Fix the driver to send MSG TLP for INTx without data payload
    0f88894aa628 drm/amdkfd: Fix Circular Locking Dependency in 'svm_range_cpu_invalidate_pagetables'
    a984e6108c9c drm/msm/dsi: Set PHY usescase (and mode) before registering DSI host
    7570e5693092 drm/msm/dsi: Use existing per-interface slice count in DSC timing
    45e03341d2b1 drm/msm/dpu: don't use active in atomic_check()
    8b930ddc2044 PCI/ASPM: Fix link state exit during switch upstream function removal
    9c44e29cfd76 drm/mediatek: mtk_hdmi: Fix typo for aud_sampe_size member
    34c1720a3830 drm/mediatek: mtk_hdmi: Unregister audio platform device on failure
    347641b02fbe PCI: Use downstream bridges for distributing resources
    561fc0c5cf41 drm/vkms: Fix use after free and double free on init error
    e2b310717382 drm: xlnx: zynqmp: Fix max dma segment size
    d360c02cdedb drm/bridge: it6505: fix HDCP V match check is not performed correctly
    c3b8e7c6809a drm/dp_mst: Fix drm RAD print
    8830a2a324c4 drm/bridge: ti-sn65dsi86: Fix multiple instances
    1b5f3dc474cb ASoC: ti: j721e-evm: Fix clock configuration for ti,j7200-cpb-audio compatible
    a589f15d4014 ALSA: hda/realtek: Always honor no_shutup_pins
    f8e2e91bae08 dt-bindings: vendor-prefixes: add GOcontroll
    ba65e56f717a HID: remove superfluous (and wrong) Makefile entry for CONFIG_INTEL_ISH_FIRMWARE_DOWNLOADER
    20bbf66ab4e2 ASoC: cs35l41: check the return value from spi_setup()
    756945c13fbb platform/x86: dell-ddv: Fix temperature calculation
    693b38ee7c2f media: platform: allgro-dvt: unregister v4l2_device on the error path
    57e257d9744c media: verisilicon: HEVC: Initialize start_bit field
    63a0b0d052b3 x86/fpu/xstate: Fix inconsistencies in guest FPU xfeatures
    4c94efdc5140 x86/traps: Make exc_double_fault() consistently noreturn
    36aee8100e8b perf/ring_buffer: Allow the EPOLLRDNORM flag for poll
    477b6882f18b lockdep: Don't disable interrupts on RT in disable_irq_nosync_lockdep.*()
    01c5ab292477 PM: sleep: Fix handling devices with direct_complete set on errors
    ac2eb7378319 thermal: int340x: Add NULL check for adev
    12c5e76acf55 EDAC/ie31200: Fix the error path order of ie31200_init()
    9ca0c34ac1f5 EDAC/ie31200: Fix the DIMM size mask for several SoCs
    a26d5a100ae0 EDAC/ie31200: Fix the size of EDAC_MC_LAYER_CHIP_SELECT layer
    06ca76e7e353 selinux: Chain up tool resolving errors in install_policy.sh
    b9ad6385ca4d RISC-V: KVM: Disable the kernel perf counter during configure
    3c64a5bacb6b PM: sleep: Adjust check before setting power.must_resume
    913b739cd2bf lockdep/mm: Fix might_fault() lockdep check of current->mm->mmap_lock
    71fc439af51a x86/sev: Add missing RIP_REL_REF() invocations during sme_enable()
    7c376f91f2e1 x86/platform: Only allow CONFIG_EISA for 32-bit
    2541b0d1ced5 x86/fpu: Avoid copying dynamic FP state from init_task in arch_dup_task_struct()
    b58c6545db04 x86/fpu: Fix guest FPU state buffer allocation size
    f2d51d45a507 EDAC/{skx_common,i10nm}: Fix some missing error reports on Emerald Rapids
    62173b2fc2ed cpufreq: governor: Fix negative 'idle_time' handling in dbs_update()
    f7a1e1c2d6de smack: dont compile ipv6 code unless ipv6 is configured
    e4b3585ad908 cpufreq: scpi: compare kHz instead of Hz
    b8db5776f042 x86/mm/pat: cpa-test: fix length for CPA_ARRAY test
    6dafa2776418 watch_queue: fix pipe accounting mismatch
    6a5b2ed82152 ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
    ceb5fadbf450 Revert "v6.6 -stable -rt merge fixup"
    1c2962a164ff v6.6 -stable -rt merge fixup
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 4f4f2674e3b12759ef9e7fe7eef05a064cc3ee6f)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Bruce Ashfield
a5187e6267 linux-yocto/6.6: update to v6.6.86
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    3fa1ea3ede18 Linux 6.6.86
    72a68d2bede3 usb: gadget: uvc: Fix ERR_PTR dereference in uvc_v4l2.c
    367a281315ec serial: 8250_dma: terminate correct DMA in tx_dma_flush()
    6186fb2cd363 memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
    2beb999f73b4 net: usb: usbnet: restore usb%d name exception for local mac addresses
    3007115c2e40 net: usb: qmi_wwan: add Telit Cinterion FE990B composition
    ad43b150e109 net: usb: qmi_wwan: add Telit Cinterion FN990B composition
    5ec93d77200e tty: serial: fsl_lpuart: disable transmitter before changing RS485 related registers
    fe14cfba6c16 tty: serial: 8250: Add Brainboxes XC devices
    be28a3dabdca tty: serial: 8250: Add some more device IDs
    52eed361c250 counter: microchip-tcb-capture: Fix undefined counter channel state on probe
    fa15592e9d92 counter: stm32-lptimer-cnt: fix error handling when enabling
    835807f54fad ALSA: hda/realtek: Support mute LED on HP Laptop 15s-du3xxx
    525104157385 netfilter: socket: Lookup orig tuple for IPv6 SNAT
    f16a097047e3 scsi: ufs: qcom: Only free platform MSIs when ESI is enabled
    3918b2016d28 reset: starfive: jh71x0: Fix accessing the empty member on JH7110 SoC
    790d30578faa mm/page_alloc: fix memory accept before watermarks gets initialized
    404d85a71d5a drm/amd/display: Don't write DP_MSTM_CTRL after LT
    5f57a96e92c6 drm/dp_mst: Add a helper to queue a topology probe
    93ccb0fb3606 drm/dp_mst: Factor out function to queue a topology probe work
    b9264aa24f62 drm/amd/display: Check denominator crb_pipes before used
    ad0410346cc4 ARM: Remove address checking for MMUless devices
    1809cabfe0e9 ARM: 9351/1: fault: Add "cut here" line for prefetch aborts
    fe17c8aaa90f ARM: 9350/1: fault: Implement copy_from_kernel_nofault_allowed()
    9da6b6340dbc atm: Fix NULL pointer dereference
    f99afc594a2b HID: hid-plantronics: Add mic mute mapping and generalize quirks
    8ecdc85b5cab ALSA: usb-audio: Add quirk for Plantronics headsets to fix control names
    6a5b2ed82152 ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
    ceb5fadbf450 Revert "v6.6 -stable -rt merge fixup"
    1c2962a164ff v6.6 -stable -rt merge fixup
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 28f489e042107855e7567e34f101e36b1bf9aaf1)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Bruce Ashfield
6a56962e84 linux-yocto/6.6: fix beaglebone ethernet
Integrating the following commit(s) to linux-yocto/6.6:

1/1 [
    Author: Colin Foster
    Email: colin.foster@in-advantage.com
    Subject: ARM: dts: am335x-bone-common: Increase MDIO reset deassert time
    Date: Fri, 31 May 2024 13:38:17 -0500

    Prior to commit df16c1c51d81 ("net: phy: mdio_device: Reset device only
    when necessary") MDIO reset deasserts were performed twice during boot.
    Now that the second deassert is no longer performed, device probe
    failures happen due to the change in timing with the following error
    message:

    SMSC LAN8710/LAN8720: probe of 4a101000.mdio:00 failed with error -5

    Restore the original effective timing, which resolves the probe
    failures.

    Signed-off-by: Colin Foster <colin.foster@in-advantage.com>
    Link: https://lore.kernel.org/r/20240531183817.2698445-1-colin.foster@in-advantage.com
    Signed-off-by: Kevin Hilman <khilman@baylibre.com>
]

(From OE-Core rev: c315a5739b373a33e24e3b84db3fbb4bec9b9353)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Bruce Ashfield
dfc1ab0595 linux-yocto/6.6: update to v6.6.85
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    d57a7c616960 Linux 6.6.85
    fa81cb19f5b7 netfilter: nft_counter: Use u64_stats_t for statistic.
    35afffaddbe8 wifi: iwlwifi: mvm: ensure offloading TID queue exists
    fd82d29c4cfb wifi: iwlwifi: support BIOS override for 5G9 in CA also in LARI version 8
    7f306c651fea bnxt_en: Fix receive ring space parameters when XDP is active
    9dff3e36ea89 btrfs: make sure that WRITTEN is set on all metadata blocks
    690597da35d9 Revert "sched/core: Reduce cost of sched_move_task when config autogroup"
    04cd1dc3df7f arm64: dts: rockchip: fix u2phy1_host status for NanoPi R4S
    7d5669629422 KVM: arm64: Eagerly switch ZCR_EL{1,2}
    93074abedecb KVM: arm64: Mark some header functions as inline
    2afe039450a0 KVM: arm64: Refactor exit handlers
    30253b3eb685 KVM: arm64: Remove VHE host restore of CPACR_EL1.SMEN
    88adb7a00754 KVM: arm64: Remove VHE host restore of CPACR_EL1.ZEN
    73f64c676a6b KVM: arm64: Remove host FPSIMD saving for non-protected KVM
    806d5c1e1d2e KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state
    20c6561c4918 KVM: arm64: Calculate cptr_el2 traps on activating traps
    b44a37824878 mptcp: Fix data stream corruption in the address announcement
    d0f87370622a ksmbd: fix incorrect validation for num_aces field of smb_acl
    5e0f5166e2dc drm/amd/display: Use HW lock mgr for PSR1 when only one eDP
    7803ca385941 drm/amd/display: should support dmub hw lock on Replay
    28780816ca29 drm/amdgpu: Fix JPEG video caps max size for navi1x and raven
    e66a1a616fa6 drm/amdgpu: Fix MPEG2, MPEG4 and VC1 video caps max size
    c76bd3c99293 drm/sched: Fix fence reference count leak
    3ce08215cad5 drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse()
    f2bbfd50e95b soc: qcom: pdr: Fix the potential deadlock
    6e38b4a4b382 batman-adv: Ignore own maximum aggregation size during RX
    b7b4be1fa432 xsk: fix an integer overflow in xp_create_and_assign_umem()
    19f4e715f665 efi/libstub: Avoid physical address 0x0 when doing random allocation
    0baa10cf97b5 ARM: shmobile: smp: Enforce shmobile_smp_* alignment
    d6274b9472d5 ARM: dts: imx6qdl-apalis: Fix poweroff on Apalis iMX6
    63b53198aff2 proc: fix UAF in proc_get_inode()
    29124ae980e2 mm/migrate: fix shmem xarray update during migration
    9efb6b502104 mm: fix error handling in __filemap_get_folio() with FGP_NOWAIT
    f42c361843fa mmc: atmel-mci: Add missing clk_disable_unprepare()
    6d2f8c59747a mmc: sdhci-brcmstb: add cqhci suspend/resume to PM ops
    db59b24b3858 arm64: dts: rockchip: fix pinmux of UART0 for PX30 Ringneck on Haikou
    3db71cf02250 arm64: dts: freescale: imx8mm-verdin-dahlia: add Microphone Jack to sound card
    62b5b2eca3e5 arm64: dts: freescale: imx8mp-verdin-dahlia: add Microphone Jack to sound card
    4b2a170c2586 accel/qaic: Fix integer overflow in qaic_validate_req()
    998b1aae22dc regulator: check that dummy regulator has been probed before using it
    e26f24ca4fb9 regulator: dummy: force synchronous probing
    f793c0fdaaf1 riscv: dts: starfive: Fix a typo in StarFive JH7110 pin function definitions
    7cd375d46afc drm/v3d: Don't run jobs that have errors flagged in its fence
    c8eebc9d5b9c can: flexcan: disable transceiver during system PM
    6f5481d4ed39 can: flexcan: only change CAN state when link up in system PM
    cc29775a8a72 can: ucan: fix out of bound read in strscpy() source
    e5e6bd8e0de5 can: rcar_canfd: Fix page entries in the AFL list
    b202afc54e94 i2c: omap: fix IRQ storms
    f0372a4cf285 Revert "gre: Fix IPv6 link-local address generation."
    ae2ec5a51fa0 net/neighbor: add missing policy for NDTPA_QUEUE_LENBYTES
    e4f6de68deba net: lwtunnel: fix recursion loops
    9566f6ee13b1 net: atm: fix use after free in lec_send()
    a235ec29c945 ipv6: Set errno after ip_fib_metrics_init() in ip6_route_info_create().
    119dcafe3679 ipv6: Fix memleak of nhc_pcpu_rth_output in fib_check_nh_v6_gw().
    1e842b459008 ARM: davinci: da850: fix selecting ARCH_DAVINCI_DA8XX
    3d123ec74d81 accel/qaic: Fix possible data corruption in BOs > 2G
    59b683594ff3 Bluetooth: hci_event: Fix connection regression between LE and non-LE adapters
    ecd06ad0823a Bluetooth: Fix error code in chan_alloc_skb_cb()
    9524af58447d RDMA/hns: Fix wrong value of max_sge_rd
    0edfba91b773 RDMA/hns: Fix a missing rollback in error path of hns_roce_create_qp_common()
    5df88c383715 RDMA/hns: Fix unmatched condition in error path of alloc_user_qp_db()
    975355faba56 RDMA/hns: Fix soft lockup during bt pages loop
    dba5577d8e33 RDMA/bnxt_re: Avoid clearing VLAN_ID mask in modify qp path
    1e8d0765da64 ARM: dts: bcm2711: Don't mark timer regs unconfigured
    e68954ecf8b8 ARM: OMAP1: select CONFIG_GENERIC_IRQ_CHIP
    0e6aa61b54a8 RDMA/mlx5: Handle errors returned from mlx5r_ib_rate()
    6a788e32f64e RDMA/bnxt_re: Add missing paranthesis in map_qp_id_to_tbl_indx
    25be7f9bde2d arm64: dts: rockchip: Remove undocumented sdmmc property from lubancat-1
    61820187b3ef ARM: dts: bcm2711: PL011 UARTs are actually r1p5
    1b7b036685c3 soc: imx8m: Unregister cpufreq and soc dev in cleanup path
    4a58a332eedd soc: imx8m: Use devm_* to simplify probe failure handling
    d1fb2e767e1c soc: imx8m: Remove global soc_uid
    8e1704e5b205 xfrm_output: Force software GSO only in tunnel mode
    bfb9b9404a53 xfrm: fix tunnel mode TX datapath in packet offload mode
    e432cb123d89 arm64: dts: freescale: tqma8mpql: Fix vqmmc-supply
    555f05de6f46 firmware: imx-scu: fix OF node leak in .probe()
    ceb5fadbf450 Revert "v6.6 -stable -rt merge fixup"
    1c2962a164ff v6.6 -stable -rt merge fixup
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 09ebb505598f383d9ec6550a39e77c4ed1dab202)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Ashish Sharma
f8d52ece40 screen: patch CVE-2025-46805
Upstream-Status: Backport [import from ubuntu https://git.launchpad.net/ubuntu/+source/screen/patch/?id=aa9f51f996a22470b8461d2b6a32e62c7ec30ed5
Upstream commit https://git.savannah.gnu.org/cgit/screen.git/commit/?id=161f85b98b7e1d5e4893aeed20f4cdb5e3dfaaa4]

(From OE-Core rev: 69dd9b16fbd18a1a960887ee9479a2e731b5a184)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Hitendra Prajapati
d56536a618 libsoup-2.4: Fix CVE-2025-4969
Upstream-Status: Backport from 07b94e27af

(From OE-Core rev: 565ce534e6061913978c7e42dac6b2ff34169b85)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Hitendra Prajapati
edc0010d0d libsoup-3.4.4: Fix CVE-2025-4969
Upstream-Status: Backport from 07b94e27af

(From OE-Core rev: 9716cdacb4378e0274246c39c5fb808e4d86b4ce)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Richard Purdie
fde1131108 bitbake: fetch2: Avoid deprecation warning
>From re on python 3.13 onwards: "Passing count and flags as positional arguments is deprecated.
In future Python versions they will be keyword-only parameters."

Avoid the warning.

(Bitbake rev: 65b744bec9756ee2f43adbfa33c14899638e2b9f)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Richard Purdie
706ea47eaf bitbake: toaster/tests/buildtest: Switch to new CDN
The project is switching the way handle our CDN provision of sstate objects,
update the URL accordingly.

(Bitbake rev: aef3536b6e4cdbff6d3a171e183811509370b9f9)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3372524cb961d95993b27fe4a8d794cdb7255e09)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-05 08:41:15 -07:00
Steve Sakoman
ac257900c3 build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: d5342ffc570d47a723b18297d75bd2f63c2088db)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:22:19 -07:00
Steve Sakoman
1c462cc39e poky.conf: bump version for 5.0.10
(From meta-yocto rev: 70e3095506c9d8f37dc8963158d4c7d146852dea)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:19:04 -07:00
Rogerio Guerra Borin
339fe2fe1c u-boot: ensure keys are generated before assembling U-Boot FIT image
Add the task dependency:

do_uboot_assemble_fitimage -> virtual/kernel:do_kernel_generate_rsa_keys

to ensure the kernel FIT image signing keys are available when creating
the U-Boot DTB. This is done only if the signing of the kernel FIT image
is enabled (UBOOT_SIGN_ENABLE="1").

The lack of the dependency causes build errors when executing a build
with no kernel FIT keys initially present in the keys directory. In such
cases one would see an output like this in the Bitbake logs:

Log data follows:
| DEBUG: Executing shell function do_uboot_assemble_fitimage
| Couldn't open RSA private key: '/workdir/build/keys/fit/dev.key': No such file or directory
| Failed to sign 'signature' signature node in 'conf-1' conf node
| FIT description: Kernel Image image with one or more FDT blobs
| ...

This issue was introduced by commit 259bfa86f384 where the dependency
between U-Boot and the kernel was removed (for good reasons). Before
that commit the dependency was set via DEPENDS so that, in terms of
tasks, one had:

u-boot:do_configure -> virtual/kernel:do_populate_sysroot

and the chain leading to the key generation was:

virtual/kernel:do_populate_sysroot -> virtual/kernel:do_install
virtual/kernel:do_install -> virtual/kernel:do_assemble_fitimage
virtual/kernel:do_assemble_fitimage -> virtual/kernel:do_kernel_generate_rsa_keys

With the removal of the first dependency, no more guarantees exist that
the keys would be present when assembling the U-Boot FIT image. That's
the situation we are solving with the present commit.

(From OE-Core rev: 036f20156b3c7d0a8b912e90aa29a9b986106d5a)

Fixes: d7bd9c627661 ("u-boot: kernel-fitimage: Fix dependency loop if UBOOT_SIGN_ENABLE and UBOOT_ENV enabled")
(From OE-Core rev: 56431a98ac661eaa42803e83a9ede6eae0b72b67)

Signed-off-by: Rogerio Guerra Borin <rogerio.borin@toradex.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Virendra Thakur
09edf92b0d util-linux: Add fix to isolate test fstab entries using CUSTOM_FSTAB
During ptest execution, util-linux adds mount entries in /etc/fstab
and runs `mount -a`, which mounts all available entries from
/etc/fstab. This can cause unintended mounts that are unrelated to
the test, leading to incorrect test behavior.

To avoid this, upstream util-linux introduced a mechanism using
CUSTOM_FSTAB,which isolates test-specific fstab entries. Only entries
listed in CUSTOM_FSTAB are mounted during test execution, ensuring
tests do not interfere with or depend on the system's /etc/fstab.

This commit backports below upstream changes to use CUSTOM_FSTAB.
ed3d33faff
b1580bd760
6aa8d17b6b

(From OE-Core rev: e7420db0d77611140149ccfefefc8becfad4f34b)

Signed-off-by: Virendra Thakur <virendra.thakur@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Divyanshu Rathore
51ae2b0ed0 ffmpeg: upgrade 6.1.1 -> 6.1.2
ffmpeg_6.1.2 is the newest available stable release for 6.1.
It introduces quite a few bug and CVE fixes, which should help all.

CVEs that are fixed in the upgrade:
CVE-2024-32230
CVE-2024-35366
CVE-2024-36613
CVE-2024-36616
CVE-2024-36617
CVE-2024-36619
CVE-2024-7055

During upgrade it was noticed that the CVE scan doesn't pick up the CVEs as unpatched
(CVE-2025-0518, CVE-2025-22919, CVE-2025-22921, CVE-2025-25473,
CVE-2024-36618, CVE-2024-35369, CVE-2024-35368, CVE-2024-35367,
CVE-2024-35365, CVE-2024-28661, CVE-2023-50007, CVE-2023-49528,
CVE-2023-49501), due to improper versioning in NVD,
they are affecting 6.1.2 and hence we are leaving the patches in.

check the changelog mention below for information about fixes.
changelog: https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n6.1.2

This upgrade fixes CVE's hence remove those patches.
Refresh vulkan_av1_stable_API.patch as per new codebase.

(From OE-Core rev: 57e25585abf34677451c68d581374245e5b4b418)

Signed-off-by: Divyanshu Rathore <divyanshurathore2022@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Harish Sadineni
4d40c0f355 binutils: set CVE_STATUS for CVE-2025-1180
CVE-2025-1180 is fixed with patch from CVE-2025-1176.
More details about CVE is here: https://nvd.nist.gov/vuln/detail/CVE-2025-1179

(From OE-Core rev: 9c63f1c73426532a94f01fbbe26c9f52a3c4fdf7)

Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Ashish Sharma
474ee8d5de libsoup: patch CVE-2025-4476
Upstream-Status: Backport [e64c221f9c]

(From OE-Core rev: 91231813d04680f93a08cb29540073bb4749e22f)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Divya Chellam
7ad1d26688 ruby: fix CVE-2025-27221
In the URI gem before 1.0.3 for Ruby, the URI handling methods
(URI.join, URI#merge, URI#+) have an inadvertent leakage of
authentication credentials because userinfo is retained even
after changing the host.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-27221

Upstream-patches:
3675494839
2789182478

(From OE-Core rev: 421d7011269f4750f5942b815d68f77fa4559d69)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Harish Sadineni
186e2b2b05 binutils: Fix CVE-2025-1179
CVE-2025-1179-pre.patch is dependency patch for CVE-2025-1179.patch

Upstream-Status: Submitted [https://sourceware.org/pipermail/binutils/2025-May/141322.html &&
https://sourceware.org/pipermail/binutils/2025-May/141321.html]
CVE: CVE-2025-1179

cherry picked from upstream commit:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=67e30b15212adc1502b898a1ca224fdf65dc110d
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=1d68a49ac5d71b648304f69af978fce0f4413800

(From OE-Core rev: 8f54548f784ef60eaf7fb6b3f539d48b0f7192a3)

Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Vijay Anusuri
53ab80ae8f libsoup-2.4: Fix CVE-2025-32914
import patch from debian to fix
 CVE-2025-32914

Upstream-Status: Backport [import from debian https://salsa.debian.org/gnome-team/libsoup/-/tree/debian/bullseye/debian/patches?ref_type=heads
Upstream commit 5bfcf81575]

Reference:
https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/450
https://security-tracker.debian.org/tracker/CVE-2025-32914

(From OE-Core rev: 8eba970123aca651cbce13e52d43ddaddd76a7cc)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Vijay Anusuri
a6c55c0bd7 libsoup-2.4: Fix CVE-2025-32912
Upstream-Status: Backport from
cd077513f2
& 910ebdcd3d

(From OE-Core rev: c45c8ad64aafd1f8a447f4fce6a2e7c0f22ef5f0)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Vijay Anusuri
a0e298a849 libsoup-2.4: Fix CVE-2025-32911 & CVE-2025-32913
Upstream-Status: Backport from
7b4ef0e004
& f4a761fb66

(From OE-Core rev: 7bdeb2217253a86c941edb7c4c28ba57d855c606)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Vijay Anusuri
cca757c461 libsoup-2.4: Fix CVE-2025-32910
import patch from debian to fix
 CVE-2025-32910

Upstream-Status: Backport [import from debian https://salsa.debian.org/gnome-team/libsoup/-/tree/debian/bullseye/debian/patches?ref_type=heads
Upstream commit e40df6d48a
&
405a8a3459
&
ea16eeacb0]

Reference:
https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/417
https://security-tracker.debian.org/tracker/CVE-2025-32910

(From OE-Core rev: 0fc936f23e6f70021acf4e711ef49d3a5cc966fe)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-06-02 07:12:34 -07:00
Alper Ak
a817e2016f ref-manual/variables.rst: document INHIBIT_UPDATERCD_BBCLASS
Fix [YOCTO #15753]

(From yocto-docs rev: 3996388e337377bedc113d072a51fe9d68dd40c6)

Signed-off-by: Alper Ak <alperyasinak1@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 5f5a406d4acdfcbf655ac014d0d2807056f95291)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Etienne Cordonnier
e71727aa85 ref-manual/variables.rst: document SSTATE_SKIP_CREATION
(From yocto-docs rev: 40045299491087d3f7d269b696ae48d513dae435)

Signed-off-by: Etienne Cordonnier <ecordonnier@snap.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 3982720668aafa18c9ed27304d09f896740b1653)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Alper Ak
8b9911c2eb ref-manual/variables.rst: document INHIBIT_DEFAULT_RUST_DEPS
Fix [YOCTO #15755]

(From yocto-docs rev: 2eb345ffa74d58d209a6a8deb27b228c37628034)

Signed-off-by: Alper Ak <alperyasinak1@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit fd143a04bab38f6aeec23ec229657b16fcaecdf1)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Enrico Jörns
d5d8a11fc9 conf.py: tweak SearchEnglish to be hyphen-friendly
This modifies the default indexer split() and js splitQuery()
methods to support searching for words with hyphens.

While this might not be an ideal, rock solid, and fully future-proof
solution, it allows at least to search for strings inlcuding hyphens,
such as 'bitbake-layers', 'send-error-report', or 'oe-core'.

Below is a bit more detailed explanation of the two modifications done:

1) The default split regex in the sphinx-doc SearchLanguage base class
   is:

   | _word_re = re.compile(r'\w+')

   which we simply extend to include hyphens '-'.

   This will result in a searchindex.js that contains words with hyphens,
   too.

2) The 'searchtool.js' code notes for its splitQuery() implementation:

   | /**
   |  * Default splitQuery function. Can be overridden in ``sphinx.search`` with a
   |  * custom function per language.
   |  *
   |  * The regular expression works by splitting the string on consecutive characters
   |  * that are not Unicode letters, numbers, underscores, or emoji characters.
   |  * This is the same as ``\W+`` in Python, preserving the surrogate pair area.
   |  */
   | if (typeof splitQuery === "undefined") {
   |   var splitQuery = (query) => query
   |       .split(/[^\p{Letter}\p{Number}_\p{Emoji_Presentation}]+/gu)
   |       .filter(term => term)  // remove remaining empty strings
   | }

   The hook for this is documented in the sphinx-docs 'SearchLanguage'
   base class.

   |    .. attribute:: js_splitter_code
   |
   |       Return splitter function of JavaScript version.  The function should be
   |       named as ``splitQuery``.  And it should take a string and return list of
   |       strings.
   |
   |       .. versionadded:: 3.0

   We use this to define a simplified splitQuery() function with a split
   argument that splits on empty spaces only.

We extend SearchEnglish (which extends SearchLanguage) here to retain
the stemmer code and stopwords for English.

[YOCTO #14534]

(From yocto-docs rev: ce18901b1059746069a0dea8893ba4a357772b51)

Signed-off-by: Enrico Jörns <ejo@pengutronix.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d4a98ee19e0cbd6be96923dc72faee143a6b294b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Christos Gavros
e159b7c251 ref-manual/variables.rst: document the INITRAMFS_MAXSIZE variable
This variable specifies the maximum allowed size
of the initramfs image in Kbytes.
Fixes [YOCTO #15797]

CC: Yoann Congal <yoann.congal@smile.fr>
CC: Randy MacLeod <randy.macleod@windriver.com>
CC: Antonin Godard <antonin.godard@bootlin.com>
(From yocto-docs rev: 123d1ec8e532751ac416c21e3eaa92fd904e2171)

Signed-off-by: Christos Gavros <gavrosc@yahoo.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 07bcdddaf71c76cdec186cf0ddd97a47eec54972)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Christos Gavros
f5f2c66470 ref-manual/variables.rst: document the IMAGE_ROOTFS_MAXSIZE variable
This variable specifies the maximum allowed size
of the generated image in kilobytes.

CC: Yoann Congal <yoann.congal@smile.fr>
CC: Randy MacLeod <randy.macleod@windriver.com>
CC: Antonin Godard <antonin.godard@bootlin.com>
CC: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: d45174d03e1ccd422b9210e3ba1f648d2f6b5173)

Signed-off-by: Christos Gavros <gavrosc@yahoo.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f3ddc92081363aa7ef7d4fc2c3b918f32f7bda05)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Trevor Woerner
a2f2212436 sphinx-lint: unbalanced inline literal markup
Fix as many instances of unbalanced-inline-literals-delimiters as reported by
'make sphinx-lint' as possible. Sphinx and/or its linter seem to get tripped
up randomly when references contain links to heading which contain literals
enclosed in double-back-tics, and not all of them can be "fixed" to pass both
building and linting.

(From yocto-docs rev: 0ba5429953dfa0cdc983ed13ddd06351116031c7)

Signed-off-by: Trevor Woerner <twoerner@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Trevor Woerner
3d3c34d4c4 sphinx-lint: missing space after literal
Fix all instances of missing-space-after-literal as reported by 'make
sphinx-lint'.

(From yocto-docs rev: b562ea5563adc744703b10e0c9a530ed7476d51a)

Signed-off-by: Trevor Woerner <twoerner@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Trevor Woerner
539ee0aa4f sphinx-lint: trailing whitespace
Fix all instances of trailing-whitespace as reported by 'make sphinx-lint'.

(From yocto-docs rev: d754df8f2084ad45305cfd9c1cf35da727240aa4)

Signed-off-by: Trevor Woerner <twoerner@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Nguyen Dat Tho
e8c615a169 libatomic-ops: Update GITHUB_BASE_URI
libatomic-ops moves to new repo https://github.com/ivmai/libatomic_ops
according to topic: https://github.com/bdwgc/libatomic_ops/issues/66

(From OE-Core rev: 29d920f4c2249df7a69f00100924b4525e03c0d9)

Signed-off-by: Nguyen Dat Tho <tho3.nguyen@lge.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Vyacheslav Yurkov
65828b60db systemd: Password agents shouldn't be optional
If extra-utils package is not included in the image, you'll always
see a warning that password agent is missing whenever you start/stop a
service:

Failed to execute /usr/bin/systemd-tty-ask-password-agent: No such file or directory

(From OE-Core rev: 180455ee76a3819933f45ddd6ce9a5610b3ba947)

Signed-off-by: Vyacheslav Yurkov <uvv.mail@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Sunil Dora
163530690f binutils: Fix CVE-2025-1153
PR 32603 [https://sourceware.org/bugzilla/show_bug.cgi?id=32603]

Upstream-Status: Backport [https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=0b7f992b78fe0984fc7d84cc748d0794e4a400e3
&& https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=31e9e2e8d1090da0c1da97a70005d8841fff8ddd
&& https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=fe459e33c676883b5f28cc96c00e242973d906a9]

(From OE-Core rev: c8cb463ccee514935fe14544173c85001d66e60b)

Signed-off-by: Sunil Dora <sunilkumar.dora@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Ashish Sharma
79babbe58a libsoup-2.4: Fix CVE-2025-46420
Upstream-Status: Backport [c9083869ec]

(From OE-Core rev: 7c963f68cb8dfdea3e1664078037303ea3f29e65)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Praveen Kumar
4ff1ba9c72 glib-2.0: fix CVE-2025-4373
A flaw was found in GLib, which is vulnerable to an integer overflow
in the g_string_insert_unichar() function. When the position at which
to insert the character is large, the position will overflow, leading
to a buffer underwrite.

References:
https://nvd.nist.gov/vuln/detail/CVE-2025-4373
https://security-tracker.debian.org/tracker/CVE-2025-4373

Upstream-patches:
cc647f9e46
4d435bb480

(From OE-Core rev: 02e2f5211962394ec3d66882daab240cb465ef85)

Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Praveen Kumar
f80b122315 connman :fix CVE-2025-32366
In ConnMan through 1.44, parse_rr in dnsproxy.c has a memcpy length
that depends on an RR RDLENGTH value, i.e., *rdlen=ntohs(rr->rdlen)
and memcpy(response+offset,*end,*rdlen) without a check for whether
the sum of *end and *rdlen exceeds max. Consequently, *rdlen may be
larger than the amount of remaining packet data in the current state
of parsing. Values of stack memory locations may be sent over the
network in a response.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-32366

Upstream-patch:
https://git.kernel.org/pub/scm/network/connman/connman.git/commit/?id=8d3be0285f1d4667bfe85dba555c663eb3d704b4

(From OE-Core rev: 02e046149b1cc5eca5188eec7b4e1a9970b97faf)

Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Vijay Anusuri
ac204a6bf9 openssh: Fix for CVE-2025-32728
Upstream-Status: Backport
[fc86875e6a]

(From OE-Core rev: 6565ae2b01d6eb1e3a83ed387a5e3b765f85b8cf)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-27 09:38:57 -07:00
Trevor Woerner
fa7dd6d5da ref-manual/variables.rst: document WIC_CREATE_EXTRA_ARGS
Fixes [YOCTO #15509]

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 38706f0e743447da9a39a6369620fa039ab6df3b)

Signed-off-by: Trevor Woerner <twoerner@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f1cdecb6da91dbfac59359c83038cb4a4c36ad0a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Trevor Woerner
941f3a9527 contributor-guide/submit-changes: encourage patch version changelogs
Add a section after the 'git format-patch' information encouraging developers
to add patch version changelogs to their patch updates.

(From yocto-docs rev: 78fd3b3f1ec797dfe3648509a1945241b50640d5)

Signed-off-by: Trevor Woerner <twoerner@gmail.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 2e3a37c4607b296956993e557d1786c4876e5722)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Lee Chee Yang
8f02cfd627 migration-guides: add release notes for 5.0.9
(From yocto-docs rev: 5b91bfc02ad35fa7b391e39b9559c65dca808d1e)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 0d070439259d72f66a71c148f6c7926f6f233b6d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Enrico Jörns
9ca35cf808 ref-manual/variables.rst: update ROOT_HOME documentation
* Since scarthgap [1], the default will be overridden when using
  'systemd' as INIT_MANAGER. Reflect this in the documentation.
* The distro configuration is probably the better place for
  customization, thus at least mention this together with the
  local.conf.
* While at it, drop the probably redundant description on how to
  override weak default variables.
  The example on how to set "/root" is still given indirectly, anyway.

[1] ebafe463 ("systemd: upgrade to 255.1")

(From yocto-docs rev: f1f92f0a5a881c45ffecf9cf9bd070c992aff35a)

Signed-off-by: Enrico Jörns <ejo@pengutronix.de>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 50e92009d309fc4ae406174feb8f6578142748cc)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Adrian Freihofer
cd1cf85730 ref-manual: kernel-fitimage.bbclass does not use SPL_SIGN_KEYNAME
The kernel-fitimage.bbclass uses the UBOOT_* variables. The SPL_*
variables are handled by uboot-sign.bbclass.

(From yocto-docs rev: 0d4cda12f2c3f89f64043c30cc0830dfa632e76e)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 8ceffee908a039deb1021361faa7637e83ef26f3)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Lee Chee Yang
7cf9a3dde0 migration-guides: add release notes for 4.0.26
(From yocto-docs rev: 4bbf915547adcd667247df22a1ff2e7e5f223c3e)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 656dc03101705bba718517b7017f71ce00541b72)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Antonin Godard
4b89b04ff0 ref-manual/release-process: update releases.svg
- Add the future "Whinlatter" (5.3) and "Wrynose" (6.0) releases.
- Make the "Walnascar" release a current release.
- Update the month in Current.

(From yocto-docs rev: 0c08c88aad0a2acf04d2da0f2935f29bc6a6eb99)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit adb8573b54626e033921a9f4e3db259312b79207)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Antonin Godard
a07ff0dcdc test-manual/intro: remove Buildbot version used
The version has changed now (3.10.12 as of writing). Avoid having to
maintain this information by removing the version info from the intro.
Also fix a typo ("uses now uses") and give a link to yocto-autobuilder2.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: a7000370ca9c1c623cd9272738f1a252e6556951)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1ed64dbdf4a60b000305cdc2c67dc24f4bc97ef7)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Antonin Godard
1f2eca0a8e dev-manual/sbom.rst: fix wrong build outputs
This document was written with SPDX 3.0 in mind (create-spdx-3.0 class)
on OE-Core's master, but Scarthgap only supports SPDX 2.2
(create-spdx-2.2).

The create-spdx-2.2 class only generate a tar.zst output, so remove the
other outputs listed here.

Also, ancillary outputs are not only deployed in tmp/deploy/spdx/MACHINE
but tmp/deploy/spdx in general.

(From yocto-docs rev: deedc7395f565e9820d914de9ffc3b14f8b143eb)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
rajmohan r
2a501e4f1b glibc-y2038-tests: remove glibc-y2038-tests_2.39.bb recipe
This recipe takes longer time >20min when bitbake for package
write stage. When cross-verified for longer time duration, found
that do_check() stage taking 20min while other stages completes
before 6min.

This recipe gives only below two test binaries in the packages to
test (ptest: glibc-y2038-tests):
     io/ftwtest
     io/ftwtest-time64

The above test binaries are already included for testing in recipe
glibc-testsuite_2.39.bb.

It is by now well established that glibc itself works as it should,
that all affected 32 bit targets are configured to use 64 bit time_t,
and that any lingering y2038 issues are in components other than the c
library, and usually come from C programming mistakes (e.g. storing
timestamps in long). So this recipe seems to be redundant and
can be removed.

Review comments for fixing above longer time duration ended up in
removing this recipe as a proposal is below
https://lists.openembedded.org/g/openembedded-core/topic/112188476#msg214636

Removed lines having reference to glibc-y2038-tests in the files.

For master branch requested for integration and below is the link
https://lists.openembedded.org/g/openembedded-core/message/215655

(From OE-Core rev: b214cc84a922f7a3fb7ebbc501189ce25e8bd2bd)

Signed-off-by: rajmohan r <semc.2042@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Niko Mauno
848da2f632 cve-check.bbclass: Fix symlink handling also for text files
While backporting commit 7543e4e24a ("cve-check.bbclass: Mitigate
symlink related error") I failed to address the fact that in Scarthgap
this bbclass still generates also the text CVE file, in addition to the
JSON file.

In order to avoid the error that occurred with JSON files from
occurring now with CVE files:

  ERROR: core-image-base-1.0-r0 do_image_complete: Recipe core-image-base is trying to install files into a shared area when those files already exist. The files and the manifests listing them are:
    /home/poky/build/tmp/deploy/images/qemux86-64/.cve
      (matched in manifest-qemux86_64-core-image-minimal.image_complete)
  Please adjust the recipes so only one recipe provides a given file.

update the symlink handling for the text file variant too.

(From OE-Core rev: 81e702c85c62782dbedd5ca2a5e6569e6339dd60)

Signed-off-by: Niko Mauno <niko.mauno@vaisala.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Alon Bar-Lev
8940ebb70a module.bbclass: add KBUILD_EXTRA_SYMBOLS to install
Symbols are used during install as well, adding KBUILD_EXTRA_SYMBOLS enables
successful installation.

    | DEBUG: Executing shell function do_install
    | NOTE: make -j 22 KERNEL_SRC=xxx/kernel-source -C xxx/drivers
    KDIR=xxx/kernel-source DEPMOD=echo
    MODLIB=xxx/image/lib/modules/6.6.75-yocto-standard-00189-g530c419bc9db
    INSTALL_FW_PATH=xxx/image/lib/firmware CC=aarch64-poky-linux-gcc
    -fuse-ld=bfd -fcanon-prefix-map  LD=aarch64-poky-linux-ld.bfd
    OBJCOPY=aarch64-poky-linux-objcopy  STRIP=aarch64-poky-linux-strip
    O=xxx/kernel-build-artifacts modules_install
    | make: Entering directory 'xxx/drivers'
    | make -C xxx/kernel-source M=xxx/drivers modules
    | make[1]: Entering directory 'xxx/kernel-source'
    | make[2]: Entering directory 'xxx/kernel-build-artifacts'
    |   MODPOST xxx/drivers/Module.symvers
    | ERROR: modpost: "xxx" [xxx/xxx.ko] undefined!

(From OE-Core rev: e8b90907f9c12808ac7137779f16edb62763e1c3)

Signed-off-by: Alon Bar-Lev <alon.barlev@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0ef80eeda967a9e04ff91c3583aabbc35c9868e8)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Aleksandar Nikolic
264f11fd98 scripts/install-buildtools: Update to 5.0.9
Update to the 5.0.9 release of the 5.0 series for buildtools

(From OE-Core rev: 653b2ce8e7b19f668f337cab8726674f595a8dbe)

Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:49 -07:00
Yi Zhao
57560c118d iputils: Security fix for CVE-2025-47268
CVE-2025-47268
ping in iputils through 20240905 allows a denial of service (application
error or incorrect data collection) via a crafted ICMP Echo Reply
packet, because of a signed 64-bit integer overflow in timestamp
multiplication.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-47268

Patch from:
070cfacd73

(From OE-Core rev: 6b0dd564249754ab8ec20ce69b137466e051501e)

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-19 08:32:48 -07:00
Haixiao Yan
fa7bc4c1a8 glibc: Add single-threaded fast path to rand()
Backport a patch [1] to improve performance of rand() and __random()[2]
by adding a single-threaded fast path.

[1] https://sourceware.org/git/?p=glibc.git;a=commit;h=be0cfd848d9ad7378800d6302bc11467cf2b514f
[2] https://sourceware.org/bugzilla/show_bug.cgi?id=32777
(From OE-Core rev: 68ee8d16fa5419acba9111d3aca285be92bd93d3)

Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-14 09:08:58 -07:00
Vijay Anusuri
c418c7ec51 libsoup: Fix CVE-2025-32914
Upstream-Status: Backport
[5bfcf81575]

(From OE-Core rev: 6dd125b619974c8102b3050900781c22c2db4b10)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-14 09:08:58 -07:00
Praveen Kumar
86ea2699ac connman :fix CVE-2025-32743
In ConnMan through 1.44, the lookup string in ns_resolv in dnsproxy.c
can be NULL or an empty string when the TC (Truncated) bit is set in
a DNS response. This allows attackers to cause a denial of service
(application crash) or possibly execute arbitrary code, because those
lookup values lead to incorrect length calculations and incorrect
memcpy operations.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-32743

Upstream-patch:
https://git.kernel.org/pub/scm/network/connman/connman.git/commit/?id=d90b911f6760959bdf1393c39fe8d1118315490f

(From OE-Core rev: 9558ec2091964556b47b0909c5d243aee5bafb6f)

Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-14 09:08:57 -07:00
Vijay Anusuri
e4df627b22 libsoup-2.4: Fix CVE-2025-32909
Upstream-Status: Backport from https://gitlab.gnome.org/GNOME/libsoup/-/comm
it/ba4c3a6f988beff59e45801ab36067293d24ce92

(From OE-Core rev: 90359036300731b6c26b646afbf3d66127b72fa2)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-14 09:08:57 -07:00
Vijay Anusuri
adc945c074 libsoup-2.4: Fix CVE-2025-32906
Upstream-Status: Backport from
1f509f31b6
& af5b9a4a39

(From OE-Core rev: 6e373ec360151b212ae6eedc4c663fb9e760ae75)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-14 09:08:57 -07:00
Vijay Anusuri
929989c6c3 libsoup-2.4: Fix CVE-2024-52532
Upstream-Status: Backport from 6adc0e3eb7
&
29b96fab25
& 4c9e75c667

(From OE-Core rev: dfde13ecffad3426846bd4b366d1e0cdb77b1be0)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-14 09:08:57 -07:00
Vijay Anusuri
e2e65311f8 libsoup-2.4: Fix CVE-2024-52531
import patch from ubuntu to fix
 CVE-2024-52531

Upstream-Status: Backport [import from ubuntu https://git.launchpad.net/ubuntu/+source/libsoup2.4/tree/debian/patches?h=ubuntu/jammy-security
Upstream commit
a35222dd0b
&
825fda3425]

Reference:
https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/407/
https://ubuntu.com/security/CVE-2024-52531

(From OE-Core rev: c7ab8b45b1f533ca1b27b07c30f44b7b64a3cfde)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-14 09:08:57 -07:00
Vijay Anusuri
ecdb5e1785 libsoup-2.4: Fix CVE-2024-52530
Upstream-Status: Backport from
04df03bc09

(From OE-Core rev: ef1bff79d6b84eacccff2a3f8a5c3b8ed92fe0c4)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-14 09:08:57 -07:00
Jeroen Hofstee
488cf4238a bluez5: backport a patch to fix btmgmt -i
Without this patch btmgmt will always use hci0 in
non interactive mode.

(From OE-Core rev: 45c50169fa7e34349acf3e24fc19e573cbab4e65)

Signed-off-by: Jeroen Hofstee <jhofstee@victronenergy.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-08 13:37:30 -07:00
Jeroen Hofstee
b19f30b8a0 bluez5: make media control a PACKAGECONFIG option
When not building with the default PACKAGECONFIG options, the build can fail
with:

undefined reference to `media_player_controller_create'
undefined reference to `media_player_set_status'

Otherwise. So disable it when not set and enable it by default.

The packageconfig option is the same as in Styhead.
ebbdb7cf5c (diff-9d9284f6f27a81c75dffffd6d601b40c8266ae12e678d0a49c46bdb8356a0e91R52)

(From OE-Core rev: 82448a6c8b720cefc200513daa41115961b43e8f)

Signed-off-by: Jeroen Hofstee <jhofstee@victronenergy.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-08 13:37:30 -07:00
Deepesh Varatharajan
679db8c1a3 binutils: stable 2.42 branch updates
Below commit on binutils-2.42 stable branch is updated.

6558f9f5f0c s390: Add support for z17 as CPU name

Testing was done and there were no regressions found

(From OE-Core rev: 08d6ca500e6dd571f5882f82f6ad804bd2eec8c8)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-08 13:37:30 -07:00
Deepesh Varatharajan
5ede912795 glibc: stable 2.39 branch updates
3463100f2d x86: Detect Intel Diamond Rapids
e09436c2cb x86: Handle unknown Intel processor with default tuning
7620d98186 x86: Add ARL/PTL/CWF model detection support
765ff3d0d4 x86: Optimize xstate size calculation
65ae73be01 x86: Use `Avoid_Non_Temporal_Memset` to control non-temporal path
2be36448c4 x86: Tunables may incorrectly set Prefer_PMINUB_for_stringop (bug 32047)
bde201e92c x86: Disable non-temporal memset on Skylake Server
38a7632f2d x86: Fix value for `x86_memset_non_temporal_threshold` when it is undesirable
cc59fa5dbc x86: Enable non-temporal memset tunable for AMD
0da58e8be0 x86: Add seperate non-temporal tunable for memset
837a36c371 x86: Link tst-gnu2-tls2-x86-noxsave{,c,xsavec} with libpthread
87ab0c7f7f x86: Use separate variable for TLSDESC XSAVE/XSAVEC state size (bug 32810)
60cd7123a6 x86: Skip XSAVE state size reset if ISA level requires XSAVE
4cf3f9df54 x86_64: Add atanh with FMA
01ed435e2e x86_64: Add sinh with FMA
0edcc77fe7 x86_64: Add tanh with FMA
7ecf0d3bde x86-64: Exclude FMA4 IFUNC functions for -mapxf
e1fe22368e nptl: clear the whole rseq area before registration
dd8c0c3bbd math: Improve layout of exp/exp10 data
a1b09e59e2 AArch64: Use prefer_sve_ifuncs for SVE memset
d0e2133470 AArch64: Add SVE memset
0cc12d9c47 math: Improve layout of expf data
0cd10047bf AArch64: Remove zva_128 from memset
dd1e63ab58 AArch64: Optimize memset
65a96a6f2b AArch64: Improve generic strlen
4073e4ee2c AArch64: Improve codegen for SVE logs
78abd3ef6e AArch64: Improve codegen in SVE tans
a10183b633 AArch64: Improve codegen of AdvSIMD atan(2)(f)
dcd1229e5b AArch64: Improve codegen of AdvSIMD logf function family
72156cb90b AArch64: Improve codegen in AdvSIMD logs
5e354bf4e2 AArch64: Simplify rounding-multiply pattern in several AdvSIMD routines
80df456112 aarch64: Avoid redundant MOVs in AdvSIMD F32 logs
d591876303 aarch64: Fix AdvSIMD libmvec routines for big-endian
f6d48470ae assert: Add test for CVE-2025-0395

Testresults:
Before update	|After update	 |Difference
PASS: 5068	|PASS: 5072	 |PASS: +4
FAIL: 120	|FAIL: 120	 |FAIL: 0
XPASS: 4	|XPASS: 4	 |XPASS: 0
XFAIL: 16	|XFAIL: 16	 |XFAIL: 0
UNSUPPORTED: 157|UNSUPPORTED: 157|UNSUPPORTED: 0

(From OE-Core rev: f14c2e6a6ba72673a0e30cde48ec1d5573be3e01)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-08 13:37:30 -07:00
Peter Marko
5d362ec2d7 sqlite3: mark CVE-2025-29087 as patched
Description of CVE-2025-29087 and CVE-2025-3277 are very similar.
There is no lonk from NVD, but [1] and [2] from Debian mark these two
CVEs as duplicates with the same link for patch.

[1] https://security-tracker.debian.org/tracker/CVE-2025-29087
[2] https://security-tracker.debian.org/tracker/CVE-2025-3277

(From OE-Core rev: 3f951941c758b6982a3cd30d085460756b7fefd9)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-08 13:37:29 -07:00
Soumya Sambu
38a5779745 elfutils: Fix CVE-2025-1371
A vulnerability has been found in GNU elfutils 0.192 and classified as problematic.
This vulnerability affects the function handle_dynamic_symtab of the file readelf.c
of the component eu-read. The manipulation leads to null pointer dereference.
Attacking locally is a requirement. The exploit has been disclosed to the public and
may be used. The patch is identified as b38e562a4c907e08171c76b8b2def8464d5a104a. It
is recommended to apply a patch to fix this issue.

References:
https://nvd.nist.gov/vuln/detail/CVE-2025-1371
https://ubuntu.com/security/CVE-2025-1371

Upstream patch:
https://sourceware.org/cgit/elfutils/commit/?id=b38e562a4c907e08171c76b8b2def8464d5a104a

(From OE-Core rev: 11c44bde4f3d9e63506ece2f9b27114914aacc4b)

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-08 13:37:29 -07:00
Ashish Sharma
2e1dd3c3d6 libsoup: patch CVE-2025-46420
Upstream-Status: Backport [c9083869ec]

(From OE-Core rev: 0e4a77c928e2eb0e8b012f2bba13b2ef3929cb34)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-08 13:37:29 -07:00
Peter Marko
9c63e0c964 Revert "cve-update-nvd2-native: Tweak to work better with NFS DL_DIR"
This reverts commit 7adaec468d.

It does not seem to fix the issue it was supposed to fix.
Additionally it breaks code which decides in full/partial update,
because it manipulates timestamp that code is relying on.

(From OE-Core rev: 00dd4901e364d16d96cfab864823a9cfdd336eeb)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit ebc65fdddd7ce51f0f1008baa30d0ae7918ae0bb)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:12 -07:00
Changqing Li
18206fc2db buildtools-tarball: Make buildtools respects host CA certificates
To adapt user network enviroment, buildtools should first try to use
the user configured envs like SSL_CERT_FILE/CURL_CA_BUNDLE/..., if these
envs is not set, then use the auto-detected ca file and ca path, and
finally use the CA certificates in buildtools.

nativesdk-openssl set OPENSSLDIR as "/not/builtin", need set SSL_CERT_FILE/SSL_CERT_DIR to work

nativesdk-curl don't set default ca file, need
SSL_CERT_FILE/SSL_CERT_DIR or CURL_CA_BUNDLE/CURL_CA_PATH to work

nativesdk-git actually use libcurl, and GIT_SSL_CAPATH/GIT_SSL_CAINFO
also works

nativesdk-python3-requests will use cacert.pem under python module certifi by
default, need to set REQUESTS_CA_BUNDLE

(From OE-Core rev: 0653b96bac6d0800dc5154557706a323418808be)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:12 -07:00
Changqing Li
397d432a62 buildtools-tarball: add envvars into BB_ENV_PASSTHROUGH_ADDITIONS
Here is one testcase:
For recipe tensorflow-lite-host-tools_2.18.0.bb, refer [1],
do_configure[network] = "1"
and it will git clone some repos in CMakeLists.txt

When buildtools is used and nativesdk-git is installed into sdk,
do_configure failed with error:
[1/9] Performing download step (git clone) for 'protobuf-populate'
Cloning into 'protobuf'...
fatal: unable to access 'https://github.com/protocolbuffers/protobuf/': error setting certificate file: /usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-wrlinuxsdk-linux/etc/ssl/certs/ca-certificates.crt

Fix by adding GIT_SSL_CAINFO in BB_ENV_PASSTHROUGH_ADDITIONS, so that
user can export GIT_SSL_CAINFO=${GIT_SSL_CAINFO} in their
do_configure:prepend() to fix above do_configure failure

CURL_CA_BUNDLE and REQUESTS_CA_BUNDLE is similar envvars, so all add
into BB_ENV_PASSTHROUGH_ADDITIONS

[1] https://github.com/nxp-imx/meta-imx/blob/styhead-6.12.3-1.0.0/meta-imx-ml/recipes-libraries/tensorflow-lite/tensorflow-lite-host-tools_2.18.0.bb

(From OE-Core rev: 27f018d8e8ace97d0b1cdfb8782a2a7a0a319816)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:12 -07:00
Changqing Li
2e0b9e9a86 buildtools-tarball: move setting of envvars to respective envfile
* make git,curl,python3-requests align with openssl, move the setting of
  envvars into respective envfile
* for environment.d-openssl.sh, also check if ca-certificates.crt exist
  before export envvars

(From OE-Core rev: 5f4fd544d3df7365224599c9efdce4e545f51d5e)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:12 -07:00
Changqing Li
f587cfcb8a initscripts: add function log_success_msg/log_failure_msg/log_warning_msg
* add function log_success_msg/log_failure_msg/log_warning_msg, some
packages still use these functions, like mariadb, refer [1], without
these function, with sysV init manager, mariadb will report error:

root@qemux86-64:~# /etc/init.d/mysqld status
/etc/init.d/mysqld: line 383: log_success_msg: command not found

* remove RCONFLICTS with lsbinitscripts, LSB support already remove in
  [2]

[1] https://github.com/MariaDB/server/blob/main/support-files/mysql.server.sh#L104
[2] https://git.openembedded.org/openembedded-core/commit/?id=fb064356af615d67d85b65942103bf943d84d290
[3] https://refspecs.linuxbase.org/LSB_4.0.0/LSB-Core-generic/LSB-Core-generic/iniscrptfunc.html

(From OE-Core rev: 90cf409ba74c4bb398199667ea2819759a720373)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:12 -07:00
Priyal Doshi
1feef3d75d tzdata/tzcode-native: upgrade 2025a -> 2025b
(From OE-Core rev: 0d93972dc2d67853b7ddb0d9e55522930fb51df2)

Signed-off-by: Priyal Doshi <pdoshi@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b1ff8b45da27b533477cf6d9ace7a47f7f3a28b1)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:12 -07:00
Archana Polampalli
c8b84eb224 perl: upgrade 5.38.2 -> 5.38.4
update include fix for CVE-2024-56406

https://perldoc.perl.org/5.38.4/perl5384delta

(From OE-Core rev: a9edffbd3c129966d4028505940ae6286273f399)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:12 -07:00
Archana Polampalli
c27fc7a119 perlcross: 1.6 -> 1.6.2
https://github.com/arsv/perl-cross/releases/tag/1.6.2

Provide support for Perl 5.38.4

(From OE-Core rev: 53dc46381ee3c8b04e507707d96f048b8a31e709)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:11 -07:00
Alexander Kanavin
71e6d76122 perlcross: update 1.5.2 -> 1.6
(From OE-Core rev: dee97a3d3127eeba77bc6be05dea25f89aa734e5)

(From OE-Core rev: e78d04202b7e73b22d8434b148c52bc4bd539f81)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:11 -07:00
Soumya Sambu
378e5c8dc2 git: Upgrade 2.44.1 -> 2.44.3
Addresses the security issues - CVE-2024-50349 and CVE-2024-52006

Release Notes:
https://github.com/git/git/blob/v2.44.3/Documentation/RelNotes/2.44.3.txt

(From OE-Core rev: f4f7a3af706bd6923362633a56423526a5264c6c)

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:11 -07:00
Peter Marko
985894f4af glib-2.0: patch CVE-2025-3360
Backport commits from [1] fixing [2] for 2.82.x.

[1] https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4499
[2] https://gitlab.gnome.org/GNOME/glib/-/issues/3647

(From OE-Core rev: 2047764e0126ee6273d9c340235ddc2e3cdfea2f)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:11 -07:00
Peter Marko
0396fbd2d9 libxml2: patch CVE-2025-32415
Pick commit from 2.13 branch as 2.12 branch is unmaintained now.

(From OE-Core rev: 2335d4f0d1826647eaee224c469331980fc84ed2)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:11 -07:00
Peter Marko
02c6da2ecf libxml2: patch CVE-2025-32414
Pick commit which has been backported to 2.12 release branch.

(From OE-Core rev: 187052ce4ddd43b46b8335cc955a63ca19ee6994)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:11 -07:00
Peter Marko
f9ef163a43 ppp: patch CVE-2024-58250
Backport patch to remove vulnerable component.

This is a breaking change, but there will be no other fix for this CVE
as upstream did the deletion without providing a fix first.
If someone really needs this feature, which the commit message describes
as deprecated, bbappend with patch removal is possible.

License-Update: passprompt plugin removed

(From OE-Core rev: 5350ef531ded14f0b4c32c211aaf993354be1ec9)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:11 -07:00
Shubham Kulkarni
46aa1e0eba libpam: Update fix for CVE-2024-10041
Initially, PAM community fixed CVE-2024-10041 in the version v1.6.0 via commit b3020da.
But not all cases were covered with this fix and issues were reported after the release.
In the v1.6.1 release, PAM community fixed these issues via commit b7b9636.
Backport this commit b7b9636, which
Fixes: b3020da ("pam_unix/passverify: always run the helper to obtain shadow password file entries")

Backport from b7b9636208

(From OE-Core rev: 78a04ce17e7d828c0cf8cae2164882683d46275e)

Signed-off-by: Shubham Kulkarni <skulkarni@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-02 08:20:11 -07:00
Antonin Godard
c162696dae Fix dead links that use the DISTRO macro
After introducing the DISTRO_LATEST_TAG and DISTRO_REL_LATEST_TAG
macros, use them in links that currently use DISTRO/DISTRO_REL_TAG. When
building for the tip of a branch, this will replace the current A.B.999
in links to the latest existing tag.

The links were found across the documentation by running 'grep -r
"http.*5\.2\.999"' inside the _build/html output after building the
docs.

[YOCTO #14802]

(From yocto-docs rev: d1f3616b373334a5aa75ad7874f05ee4b0e6591f)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 29be069ebbf2c55d72fc51d99ed5a558af37c05e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
2323e6e07a poky.yaml: introduce DISTRO_LATEST_TAG
Introduce the DISTRO_LATEST_TAG macro, which should always point to the
latest existing tag in the documentation, unlike DISTRO which may point
to A.B.999 to represent the tip of a branch.

This variable is needed to fix dead links in the documentation that
currently use the DISTRO macro.

Also, make DISTRO_REL_TAG use the DISTRO macro directly, to avoid
repetition, and add a DISTRO_REL_LATEST_TAG macro that has the same role
as DISTRO_LATEST_TAG but with "yocto-" prepended to it.

In set_versions.py, run the "git describe --abbrev=0 --tags
--match='yocto-*'" command to get the latest existing tag on the
currently checked out commit. Fallback to ourversion in case we didn't
find any.

(From yocto-docs rev: 4195f52117b8132b46dd562acaf40e6e4480be33)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit a85b0e500c94921f77fa7b7dbb877e4945f96d1e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Andrew Kreimer
c9de4c568e manuals: remove repeated word
The word "modern" appears twice, remove the extra one.

(From yocto-docs rev: 6d2715b74d43c39fcee3ad7631d93b5396ce84bf)

Signed-off-by: Andrew Kreimer <algonell@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
911317c777 ref-manual/variables.rst: improve the PKGV documentation
It may be confusing for users that source control information is not
present in the BitBake environment. Document it as a warning block.

(From yocto-docs rev: 990b3708d7131ccfb4e435e8a53e987195de3e06)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
084ebc4980 ref-manual/variables.rst: HOST_CC_ARCH: fix wrong SDK reference
When building for nativesdk recipes, HOST_CC_ARCH equals SDK_CC_ARCH,
not BUILDSDK_CC_ARCH which doesn't exist.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: ba030d9d65702889b089bd3c9cb6a719a7e0a413)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 08fc3446cb13b5bd8781874d2d996899ce12b082)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
d271e51d30 ref-manual/variables.rst: document HOST_*_ARCH variables
These variables control the flags for the assembler, compiler and
linker, but depend on the context.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 1520ba47f66c6d51f710005cdd4f4b880eccd5b0)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f8eb33569a5e8cadc036855e2d95eee77e627cb4)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
65fcbaa89a ref-manual/variables.rst: document missing SDK_*_ARCH variables
These variables control the flags for the assembler, compiler and linker
when building for nativesdk recipes.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 95f4aabe48a6e06f8391e032c6a7038bf0e10332)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c08f6d3c8aee86264c069b7c30850cb02de76076)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
7dbc9bff22 ref-manual/variables.rst: add missing documentation for BUILD_* variables
These toolchain variables are used in a native context. Some of the
BUILD_* variables missed documentation. Also, some of the base commands
were also not there so document them.

Some of existing BUILD_* variable documentation were missing the note
about their usage in a native context, so add it too so that all BUILD_*
variables are documented the same way.

[YOCTO #15719]

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: e692a7553ccf7496288f2eb7df71766cb5261eb4)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 87103afa1cb6690e9aaa87ca1f23e45eaaa359ac)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
05b8139395 ref-manual/variables.rst: add manpage links for toolchain variables
Use the :manpage: role to provide links to common toolchain utilities.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: adfb1a4a768f53a0404b65297f7fa9ed12b77088)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 7023e5f176efde05a6798476712c8a4e006a6b0d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
5d81e92acd documentation/conf.py: define a manpage url
By defining the manpages_url we can use the :manpage: role in the
documentation for providing links to manpages. See:
https://www.sphinx-doc.org/en/master/usage/configuration.html#confval-manpages_url

Replace existing manpages links to use this role.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 73faf4a4fdd3d536e8af92b49bf067746cd9fa05)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 4e63cd74cd1a330ea5e96bb04243a90f607b2857)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
cb1da2f825 ref-manual/variables.rst: document autotools class related variables
Document the AUTOTOOLS_SCRIPT_PATH and the CONFIGURE_SCRIPT variables.

(From yocto-docs rev: b63d665549e14e1a468ffbf07c8494a491833770)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Antonin Godard
f8946ec779 ref-manual/variables.rst: WATCHDOG_TIMEOUT: fix recipe name
This variable affects the watchdog-config recipe, not the watchdog
recipe.

(From yocto-docs rev: b3676b26b02e6e3861dd1d7dcf05dfcf6836bcd5)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d3350c38910c47c76ed17f24579120013589ca1f)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Lee Chee Yang
8e65482664 migration-guides: add release notes for 5.0.8
(From yocto-docs rev: 0fad3824f060805c9c3e974c8db830bb03520d20)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 7494df521ed9c70e877dbdef1adfe38ad717682f)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Guðni Már Gilbert
3c9b461dd0 bluez5: add missing tools to noinst-tools package
This change will prevent these tools from being installed if the image doesn't install bluez5-noinst-tools package.

BlueZ 5.66: tools/mesh-tester
BlueZ 5.66: tools/ioctl-tester
BlueZ 5.65: tools/iso-tester
BlueZ 5.56: tools/btpclientctl
BlueZ 5.51: tools/bcmfw
BlueZ 5.49: tools/rtlfw
BlueZ 5.47: tools/btconfig (not a new tool, but it was moved from bin_PROGRAMS to noinst_PROGRAMS)

(From OE-Core rev: 87cadf62ba0d6b0fc3dc0151a5d320919b7eb1ab)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Soumya Sambu
2e0aa8a92d python3-jinja2: upgrade 3.1.4 -> 3.1.6
Includes fix for - CVE-2024-56326, CVE-2025-27516, CVE-2024-56201

Changelog:
https://github.com/pallets/jinja/blob/3.1.6/CHANGES.rst
https://github.com/pallets/jinja/blob/3.1.5/CHANGES.rst

(From OE-Core rev: a935ef8f205c9510ebc5539c133960bc72504902)

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Guðni Már Gilbert
5df928793c systemd: upgrade 255.17 -> 255.18
The update includes 82 commits. Full list of changes can be found on Github [1]

All patches were refreshed with devtool.

[1] systemd/systemd-stable@v255.17...v255.18

(From OE-Core rev: 121e1fb42c4c909115bc550585b2ebcb3a13e0a5)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Igor Opaniuk
8b22b1239b wic: bootimg-efi: Support + symbol in filenames
Allow the '+' symbol as a valid character in filenames listed in the
IMAGE_EFI_BOOT_FILES variable.

The '+' symbol might be used to support boot counting for boot entries,
as described in the UAPI Boot Loader Specification [1]:

The boot counting data is stored in the name of the boot loader entry.
A boot loader entry file name may contain a plus (+) followed by a
number. This may optionally be followed by a minus (-)
followed by a second number. The dot (.) and file name suffix
(conf or efi) must immediately follow.
Boot counting is enabled for entries which match this pattern.

Example:
IMAGE_EFI_BOOT_FILES:append = " entry.conf;loader/entries/entry+3.conf"

[1] https://uapi-group.org/specifications/specs/boot_loader_specification/#boot-counting
(From OE-Core rev: 081fa0ebb33dbbfd0f6e8239690261c0a9dcdb2c)

Signed-off-by: Igor Opaniuk <igor.opaniuk@foundries.io>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3f25822281eb9423ff86105eaebb0bed48663648)
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Yogita Urade
26b25ba673 curl: fix CVE-2025-0167
When asked to use a `.netrc` file for credentials *and* to
follow HTTP redirects, curl could leak the password used
for the first host to the followed-to host under certain
circumstances.

This flaw only manifests itself if the netrc file has a
`default` entry that omits both login and password. A
rare circumstance.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-0167

Upstream patch:
https://github.com/curl/curl/commit/0e120c5b925e8ca75d5319e

(From OE-Core rev: b74dba43f2d6896245232373f2a9fdf07086a237)

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Yogita Urade
2e67952192 curl: fix CVE-2024-11053
When asked to both use a `.netrc` file for credentials and to
follow HTTP redirects, curl could leak the password used for
the first host to the followed-to host under certain circumstances.

This flaw only manifests itself if the netrc file has an entry
that matches the redirect target hostname but the entry either
omits just the password or omits both login and password.

CVE-2024-11053-0001 is the dependent commit, CVE-2024-11053-0002 is
actual CVE fix and the actual fix caused a regression that was fixed
by CVE-2024-11053-0003.

Reference:
https://curl.se/docs/CVE-2024-11053.html
https://git.launchpad.net/ubuntu/+source/curl/commit/?h=applied/ubuntu/noble-devel&id=9ea469c352a313104f750dea93e78df8d868c435

Upstream patches:
9bee39bfed
https://github.com/curl/curl/commit/e9b9bbac22c26cf67316fa8e6c6b9e831af3194
9fce2c55d4

(From OE-Core rev: 084d8ca3b47b47333edba87f6aa427a12ee574f2)

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Peter Marko
f8ca40f3d1 sqlite3: patch CVE-2025-29088
Pick commit [1] mentioned in [2].

[1] 56d2fd008b
[2] https://nvd.nist.gov/vuln/detail/CVE-2025-29088

(From OE-Core rev: 6a65833a53487571b1ed0831dcc0b1fb04946557)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Peter Marko
72bb9edc9a sqlite3: patch CVE-2025-3277
Pick commit [1] mentioned in [2].

[1] https://sqlite.org/src/info/498e3f1cf57f164f
[2] https://nvd.nist.gov/vuln/detail/CVE-2025-3277

(From OE-Core rev: 2f800295919ac337f038e1678f4c0abb2a6e7f95)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Ashish Sharma
f261fbc7a6 binutils: patch CVE-2025-1182
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=b425859021d17adf62f06fb904797cf8642986ad]

(From OE-Core rev: d27416eb05643afcd80435dd7ed27d6cd3d85650)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:53 -07:00
Vijay Anusuri
92701ca3e3 libsoup: Fix CVE-2025-32906
Upstream-Status: Backport from
1f509f31b6
& af5b9a4a39

(From OE-Core rev: c3ba6b665a907b8f8340aedcbf51bef79f1048b8)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:52 -07:00
Vijay Anusuri
83671ce4eb libsoup: Fix CVE-2025-32912
Upstream-Status: Backport from
cd077513f2
& 910ebdcd3d

(From OE-Core rev: f18f762edd7ffa02ead1f382856066d2157015ed)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:52 -07:00
Vijay Anusuri
9927baf245 libsoup: Fix CVE-2025-32911 & CVE-2025-32913
Upstream-Status: Backport from
7b4ef0e004
& f4a761fb66

(From OE-Core rev: c1bf4fca316c67b9ce1134c7e5bdc9c0ac9ab878)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:52 -07:00
Vijay Anusuri
ef68583826 libsoup: Fix CVE-2025-32909
Upstream-Status: Backport from https://gitlab.gnome.org/GNOME/libsoup/-/comm
it/ba4c3a6f988beff59e45801ab36067293d24ce92

(From OE-Core rev: 9eba43f18664a20d7f5dc8942eb39cfbd83c066e)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:52 -07:00
Vijay Anusuri
1ec178a3cb libsoup: Fix CVE-2025-32910
Upstream-Status: Backport from
e40df6d48a
&
405a8a3459
& ea16eeacb0

(From OE-Core rev: c9c6c8c5be4df8cb2c44f1e6fe0954c9ee666e5a)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-28 08:18:52 -07:00
Steve Sakoman
bab0f9f62a build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: 04038ecd1edd6592b826665a2b787387bb7074fa)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-19 14:45:35 -07:00
Steve Sakoman
0ce88bc347 poky.conf: bump version for 5.0.9
(From meta-yocto rev: 7f1be5a930554ea5036d2c806aa752ae0b2de826)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-19 14:42:10 -07:00
Vishwas Udupa
48cd4ee393 openssl: rewrite ptest installation
Rewrite (again) the openssl test suite installation.

Depend on and reuse already installed libraries and modules instead of
installing them twice.

Be more selective when installing from the build tree so we don't install
intermediate .c .d .o files.

This further reduces the size of openssl-dbg from ~120MB to ~18MB.

(From OE-Core rev: 8baa0ce7eae65026cb3a784adaf3a4fc724ce9c9)

Upstream-Status: Backport[https://git.yoctoproject.org/poky/commit/?id=76212866402edb947f745f837e3c3b98b3056e58]

(From OE-Core rev: b3cd05f123625c4c301fee925cdbb9641bc73412)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 7621286640)
Signed-off-by: Vishwas Udupa <quic_vudupa@quicinc.com>

Change-Id: Ifc0e3a019c2abe5142d0f1e359ae5aa33dae1608
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-19 14:42:10 -07:00
Peter Marko
06d60d3877 libarchive: upgrade 3.7.4 -> 3.7.9
These is update with only bug and security releases.
On top of previous CVE patches, also CVE-2024-48615 is handled.
Also many security fixes without CVE assigment are included.

Note that upgrade to 3.7.5 on master required fix of test in
python3-libarchive-c, however that recipe does not yet have ptest in
scarthgap and the fix was in test only, not in productive code, so it is
not necessary in scarthgap.

Also remove CVE_STATUS which was obsolete already before this upgrade.

(From OE-Core rev: f20516a3ed8a39d7e4deddf11dd2acd871894048)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-19 14:42:10 -07:00
Ashish Sharma
9ef34c9ce9 binutils: patch CVE-2025-1181
Import patches from ubuntu:

Upstream-Status: Backport [ https://git.launchpad.net/ubuntu/+source/binutils/plain/debian/patches/CVE-2025-1181-pre.patch?h=applied/ubuntu/noble-security&id=d6b5bf57cf048c42e4bcd3a4ab32116d0b809774 &&
https://git.launchpad.net/ubuntu/+source/binutils/plain/debian/patches/CVE-2025-1181.patch?h=applied/ubuntu/noble-security&id=d6b5bf57cf048c42e4bcd3a4ab32116d0b809774

Upstream commit: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=931494c9a89558acb36a03a340c01726545eef24 ]

(From OE-Core rev: abb575f6ac1f5badae2825f1cb6152379a6658ee)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-19 14:42:10 -07:00
Ashish Sharma
757102953a binutils: patch CVE-2025-1178 & CVE-2024-57360
Backport Fixes for:

*CVE-2025-1178 - Upstream-Status: Backport from [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=75086e9de1707281172cc77f178e7949a4414ed0]

*CVE-2024-57360 - Upstream-Status: Backport from  [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=5f8987d3999edb26e757115fe87be55787d510b9]

(From OE-Core rev: 15a7f68ce14f635acf9b988fc1958ee625de4e11)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-19 14:42:10 -07:00
Ashish Sharma
d13450d713 binutils: Fix CVE-2025-1176
Upstream-Status: Backport [import from ubuntu https://git.launchpad.net/ubuntu/+source/binutils/plain/debian/patches/CVE-2025-1176.patch?h=applied/ubuntu/jammy-security
Upstream commit https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=f9978defb6fab0bd8583942d97c112b0932ac814]

(From OE-Core rev: 8d02a680b415f3145f4a4ef71842f336d8e3513b)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-19 14:42:10 -07:00
Changqing Li
dcf9e34e51 patch.py: set commituser and commitemail for addNote
When PATCHTOOL is set to 'git', and user don't setup
user.name and user.email for git, do_patch fail with
the following error, fix by passing -c options.
CmdError("git notes --ref refs/notes/devtool append -m 'original patch: 0001-PATCH-increase-to-cpp17-version.patch' HEAD", 0, 'stdout:
stderr: Author identity unknown
*** Please tell me who you are.
Run
  git config --global user.email "you@example.com"
  git config --global user.name "Your Name"

(From OE-Core rev: 9de38ac99c2b19f549c00ea5277faf621c6f4e65)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-16 06:41:24 -07:00
Archana Polampalli
0b1e8f405c ghostscript: upgrade 10.04.0 -> 10.05.0
This upgrade addresses CVEs:
CVE-2025-27835 CVE-2025-27832
CVE-2025-27831 CVE-2025-27836
CVE-2025-27830 CVE-2025-27833
CVE-2025-27833 CVE-2025-27834

Changelog:
https://ghostscript.readthedocs.io/en/gs10.05.0/News.html

(From OE-Core rev: 2c851f74fa72c30d447d59d450eb9bc036404f55)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-16 06:41:24 -07:00
Hitendra Prajapati
5cf979eb70 go: fix CVE-2025-22871
Upstream-Status: Backport from 15e01a2e43

(From OE-Core rev: b343da566856ad17b5dc03d42d9241bcb44cad1b)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-16 06:41:24 -07:00
Peter Marko
1c7d2139ec xz: patch CVE-2025-31115
Cherry-pick commits from [1] linked from [2] from branch v5.4

[1] https://tukaani.org/xz/xz-cve-2025-31115.patch
[2] https://tukaani.org/xz/threaded-decoder-early-free.html

(From OE-Core rev: 952ea12f08a4e42f787a21fb98adaf4b17d0aee1)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-16 06:41:24 -07:00
Peter Marko
5e34528a09 xz: upgrade 5.4.6 -> 5.4.7
License-Update: homepage update in [1]

[1] c5c091332c

(From OE-Core rev: e6565ca37da4821f8e3924fe6bc6a6f4eeedd9a9)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-16 06:41:24 -07:00
Peter Marko
ef7ca876cd cve-update-nvd2-native: add workaround for json5 style list
NVD responses changed to an invalid json between:
* April 5, 2025 at 3:03:44 AM GMT+2
* April 5, 2025 at 4:19:48 AM GMT+2

The last response is since then in format
{
  "resultsPerPage": 625,
  "startIndex": 288000,
  "totalResults": 288625,
  "format": "NVD_CVE",
  "version": "2.0",
  "timestamp": "2025-04-07T07:17:17.534",
  "vulnerabilities": [
    {...},
    ...
    {...},
  ]
}

Json does not allow trailing , in responses, that is json5 format.
So cve-update-nvd2-native do_Fetch task fails with log backtrace ending:

...
File: '/builds/ccp/meta-siemens/projects/ccp/../../poky/meta/recipes-core/meta/cve-update-nvd2-native.bb', lineno: 234, function: update_db_file
     0230:            if raw_data is None:
     0231:                # We haven't managed to download data
     0232:                return False
     0233:
 *** 0234:            data = json.loads(raw_data)
     0235:
     0236:            index = data["startIndex"]
     0237:            total = data["totalResults"]
     0238:            per_page = data["resultsPerPage"]
...
File: '/usr/lib/python3.11/json/decoder.py', lineno: 355, function: raw_decode
     0351:        """
     0352:        try:
     0353:            obj, end = self.scan_once(s, idx)
     0354:        except StopIteration as err:
 *** 0355:            raise JSONDecodeError("Expecting value", s, err.value) from None
     0356:        return obj, end
Exception: json.decoder.JSONDecodeError: Expecting value: line 1 column 1442633 (char 1442632)
...

There was no announcement about json format of API v2.0 by nvd.
Also this happens only if whole database is queried (database update is
fine, even when multiple pages as queried).
And lastly it's only the cve list, all other lists inside are fine.
So this looks like a bug in NVD 2.0 introduced with some update.

Patch this with simple character deletion for now and let's monitor the
situation and possibly switch to json5 in the future.
Note that there is no native json5 support in python, we'd have to use
one of external libraries for it.

(From OE-Core rev: 4358fdfdd7a8908df98f7c4def2c8c1a6efb7256)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6e526327f5c9e739ac7981e4a43a4ce53a908945)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-16 06:41:24 -07:00
Archana Polampalli
60feedab22 go: fix CVE-2025-22870
Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID
as a hostname component. For example, when the NO_PROXY environment variable
is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly
match and not be proxied.

(From OE-Core rev: 88e79f915137edc5a37a110abdc79f5800404e45)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-16 06:41:24 -07:00
Peter Marko
92c44bc788 ofono: patch CVE-2024-7537
Pick commit
https://web.git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=e6d8d526d5077c0b6ab459efeb6b882c28e0fdeb

(From OE-Core rev: 54ce53f7c2daf4f9d536e4e1f721035064c57b30)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-16 06:41:24 -07:00
Martin Jansa
78626a6f18 mc: set ac_cv_path_ZIP to avoid buildpaths QA issues
* in builds with zip in HOSTTOOLS mc fails with:
  ERROR: mc-4.8.31-r0 do_package_qa: QA Issue: File /usr/libexec/mc/extfs.d/uzip in package mc-helpers-perl contains reference to TMPDIR [buildpaths]
  and it's because of the path to zip:
  mc/4.8.31/package $ grep -R styhead .
  ./usr/libexec/mc/extfs.d/uzip:my $app_zip = "TMPDIR/hosttools/zip";

* don't use /usr/bin/env as in other cases, because app_zip is then used e.g. with:
  my $cmd_addlink = "$app_zip -g -y";

(From OE-Core rev: 4003b5faa1e5acfa025e1d0df4e021e06cf8724c)

Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-07 06:34:44 -07:00
Michael Halstead
32656e13ad yocto-uninative: Update to 4.7 for glibc 2.41
(From OE-Core rev: 7626067432743657e9c536ca16a2dac513ba4929)

Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-07 06:34:44 -07:00
Virendra Thakur
dc767c786b rust-cross-canadian: Set CVE_STATUS ignore for CVE-2024-43402
This CVE was created because fix for CVE-2024-24576 was incomplete.
Ignore the new CVE in the same way as the old one.

See https://nvd.nist.gov/vuln/detail/CVE-2024-43402

As per NVD, this CVE only affects to Windows platform

Reference: https://git.yoctoproject.org/meta-lts-mixins/commit/?h=scarthgap/rust&id=13f045acf6388d1e320fd4c0f3ca19ca7a75ef44

(From OE-Core rev: ef2ba1f04f6f21530dc4efe5c4f61cbb0c76c032)

Signed-off-by: Virendra Thakur <virendra.thakur@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-07 06:34:44 -07:00
Peter Marko
24d8cf6f9f freetype: follow-up patch for CVE-2025-27363
Per [1] there are two patches needed - [2] which is already included in
3.13.1 and [3] which is only in 2.13.3.
Backport the second patch.

[1] https://gitlab.freedesktop.org/freetype/freetype/-/issues/1322
[2] ef63669652
[3] 73720c7c99

(From OE-Core rev: 41f855ea5a2018d08e0e9457d710032e96fe669b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-07 06:34:44 -07:00
Peter Marko
5ceb4646d2 expat: patch CVE-2024-8176
Backport https://github.com/libexpat/libexpat/pull/973
Patch created by:
git diff 2fc36833334340ff7ddca374d86daa8744c1dfa3..99529768b4a722f46c69b04b874c1d45b3eb819c

Additional backport (containing changes in tests only) was needed to
apply it cleanly.

Additional backport https://github.com/libexpat/libexpat/pull/989
which has fixed regression of the first fix.
Patch created by:
git diff 91ca72e913af94ed44ef2a80a9dd542be3e5766c..308c31ed647f2c6aebe33ca3a4fa9e1436f461e2

(From OE-Core rev: 3ece58813faaf4e5f66c7b52f736e84615ccfef6)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-07 06:34:44 -07:00
Peter Marko
2af52d4819 cve-update-nvd2-native: handle missing vulnStatus
There is a new CVE which is missing vulnStatus field:
https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-2682

This leads to:
File: '<snip>/poky/meta/recipes-core/meta/cve-update-nvd2-native.bb', lineno: 336, function: update_db
     0332:
     0333:    accessVector = None
     0334:    vectorString = None
     0335:    cveId = elt['cve']['id']
 *** 0336:    if elt['cve']['vulnStatus'] ==  "Rejected":
     0337:        c = conn.cursor()
     0338:        c.execute("delete from PRODUCTS where ID = ?;", [cveId])
     0339:        c.execute("delete from NVD where ID = ?;", [cveId])
     0340:        c.close()
Exception: KeyError: 'vulnStatus'

(From OE-Core rev: 2f242f2a269bb18aab703f685e27f9c3ba761db8)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:43 -07:00
Stefan Mueller-Klieser
fe7c269b02 kernel-arch: add macro-prefix-map in KERNEL_CC
When building external modules, macros can include absolute names of
kernel headers. The macro-prefix-map for the STAGING_KERNEL_DIR is
currently missing. Add it in the same way as its done in bitbake.conf.

This fixes reproducible builds and following build error:
ERROR: cryptodev-module-1.14-r0 do_package_qa: QA Issue: File <..>
cryptodev.ko <..> contains reference to TMPDIR [buildpaths]

(From OE-Core rev: a741e11751bfb8f52be58cf51abeddca4559e5e9)

(From OE-Core rev: 58eb15cdc2dd95bf5eb0bed2a0f1c43bf29cf273)

Signed-off-by: Stefan Müller-Klieser <s.mueller-klieser@phytec.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Alexander Sverdlin <alexander.sverdlin@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:43 -07:00
Bruce Ashfield
98299d81f2 linux-yocto/6.6: update to v6.6.84
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    4b6a8fa777d2 Linux 6.6.84
    a561c6a034c9 netfilter: nf_tables: allow clone callbacks to sleep
    f6de68e154ef netfilter: nf_tables: bail out if stateful expression provides no .clone
    7fa2e2960fff netfilter: nf_tables: use timestamp to check for set element timeout
    50b22a98c184 rust: lockdep: Remove support for dynamically allocated LockClassKeys
    812080b01dac nvme-tcp: Fix a C2HTermReq error message
    62485737050d HID: apple: disable Fn key handling on the Omoton KB066
    a09e085ba84b nvme-fc: rely on state transitions to handle connectivity loss
    efc30877bd4b Bluetooth: L2CAP: Fix corrupted list in hci_chan_del
    fb0800cbea02 smb: client: Fix match_session bug preventing session reuse
    7dc9abfa00ab smb3: add support for IAKerb
    643607a53f07 stmmac: loongson: Pass correct arg to PCI function
    6653927733e1 i2c: sis630: Fix an error handling path in sis630_probe()
    9e3bef10e480 i2c: ali15x3: Fix an error handling path in ali15x3_probe()
    beb68cfcb3ff i2c: ali1535: Fix an error handling path in ali1535_probe()
    10cbae84fed8 cifs: Throw -EOPNOTSUPP error on unsupported reparse point type from parse_reparse_point()
    474c08712d5f cifs: Validate content of WSL reparse point buffers
    6c13fcb7cf59 cifs: Fix integer overflow while processing closetimeo mount option
    d5fff81c4375 cifs: Fix integer overflow while processing actimeo mount option
    9e438d0410a4 cifs: Fix integer overflow while processing acdirmax mount option
    0252c33cc943 cifs: Fix integer overflow while processing acregmax mount option
    d3f9fdc298b8 scripts: generate_rust_analyzer: add missing macros deps
    a70259447d80 ASoC: codecs: wm0010: Fix error handling path in wm0010_spi_probe()
    69a900480941 ASoC: rt722-sdca: add missing readable registers
    2592a628743e rust: init: add missing newline to pr_info! calls
    f69b8f42893e ASoC: cs42l43: Fix maximum ADC Volume
    b05b5627f0f1 drm/gma500: Add NULL check for pci_gfx_root in mid_get_vbt_data()
    5da54be46960 rust: error: add missing newline to pr_warn! calls
    544055329560 ASoC: ops: Consistently treat platform_max as control value
    86d97d49f198 mm: split critical region in remap_file_pages() and invoke LSMs in between
    b2fe954a4ddc lib/buildid: Handle memfd_secret() files in build_id_parse()
    aa4d9b54f11c rust: init: fix `Zeroable` implementation for `Option<NonNull<T>>` and `Option<KBox<T>>`
    b78467d3ba1c rust: Disallow BTF generation with Rust + LTO
    d026392e3f87 smb: client: fix regression with guest option
    2bff992a5505 qlcnic: fix memory leak issues in qlcnic_sriov_common.c
    7b2c29b7ea29 arm64: mm: Populate vmemmap at the page level if not section aligned
    818330f756f3 dm-flakey: Fix memory corruption in optional corrupt_bio_byte feature
    cfae6a5dad50 ASoC: amd: yc: Support mic on another Lenovo ThinkPad E16 Gen 2 model
    4f6c0f75293a clk: samsung: update PLL locktime for PLL142XX used on FSD platform
    09aeab680331 ksmbd: prevent connection release during oplock break notification
    fb776765bfc2 ksmbd: fix use-after-free in ksmbd_free_work_struct
    378b361e2e30 drm/amd/display: Fix slab-use-after-free on hdcp_work
    a8f77e1658d7 drm/amd/display: Assign normalized_pix_clk when color depth = 14
    8e91a6167889 drm/amd/display: Restore correct backlight brightness after a GPU reset
    8082ca0dd244 drm/amd/display: Disable unneeded hpd interrupts during dm_init
    b5c283501581 drm/dp_mst: Fix locking when skipping CSN before topology probing
    b3ddebaece2c drm/atomic: Filter out redundant DPMS calls
    6736975ee30d drm/i915/cdclk: Do cdclk post plane programming later
    e686349cc19e x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes
    ab0f6e770d39 USB: serial: option: match on interface class for Telit FN990B
    61e540094fae USB: serial: option: fix Telit Cinterion FE990A name
    e1bfbf0f18ab USB: serial: option: add Telit Cinterion FE990B compositions
    528ac204851e USB: serial: ftdi_sio: add support for Altera USB Blaster 3
    392e9b29769a Input: i8042 - swap old quirk combination with new quirk for more devices
    e7c95c01064b Input: i8042 - swap old quirk combination with new quirk for several devices
    e690d0c52cde Input: i8042 - add required quirks for missing old boardnames
    105a21163750 Input: i8042 - swap old quirk combination with new quirk for NHxxRZQ
    d639d5531ad7 Input: xpad - rename QH controller to Legion Go S
    0c4484cdcbb8 Input: xpad - add support for TECNO Pocket Go
    dc9839dcc232 Input: xpad - add support for ZOTAC Gaming Zone
    8cf88f390e74 Input: xpad - add multiple supported devices
    5184e44bef75 Input: xpad - add 8BitDo SN30 Pro, Hyperkin X91 and Gamesir G7 SE controllers
    0b5b6512f674 Input: iqs7222 - preserve system status register
    cbd68fca8878 Input: ads7846 - fix gpiod allocation
    78aefac7efdf io_uring: fix error pbuf checking
    1fdb9c9eb2ad io_uring: use unpin_user_pages() where appropriate
    46b1b3d81a7e io_uring/kbuf: use vm_insert_pages() for mmap'ed pbuf ring
    af8f27ef1a00 io_uring/kbuf: vmap pinned buffer ring
    6168ec87bf12 io_uring: unify io_pin_pages()
    719e745ee31c io_uring: use vmap() for ring mapping
    b89f95b94cf7 io_uring: fix corner case forgetting to vunmap
    a0b21f2aca04 io_uring: don't attempt to mmap larger than what the user asks for
    2905c4fe7e52 io_uring: get rid of remap_pfn_range() for mapping rings/sqes
    b6690a4172a3 mm: add nommu variant of vm_insert_pages()
    0446d868190b block: fix 'kmem_cache of name 'bio-108' already exists'
    474cebf2978d net: Handle napi_schedule() calls from non-interrupt
    deb9982c4d55 drm/nouveau: Do not override forced connector status
    47f427220796 mptcp: safety check before fallback
    bb41ef31906e x86/irq: Define trace events conditionally
    cdf7658ea205 perf/x86/intel: Use better start period for frequency mode
    791eaeaa0935 drm/vkms: Round fixp2int conversion in lerp_u16
    fcfb7ea1f4c6 fuse: don't truncate cached, mutated symlink
    08ee4f873bd0 ASoC: tas2764: Set the SDOUT polarity correctly
    6c703ceaf6a6 ASoC: tas2764: Fix power control mask
    8f677fb436ef ASoC: tas2770: Fix volume scale
    f33c09085519 nvme: only allow entering LIVE from CONNECTING state
    6df3939d9301 sctp: Fix undefined behavior in left shift operation
    d3ca799203e5 cifs: Treat unhandled directory name surrogate reparse points as mount directory nodes
    492be1cd9e55 apple-nvme: Release power domains when probe fails
    bf78e63235c4 nvmet-rdma: recheck queue state is LIVE in state lock in recv done
    e9764289d765 nvme-tcp: add basic support for the C2HTermReq PDU
    aca3cdc3a673 nvme-pci: quirk Acer FA100 for non-uniqueue identifiers
    570f4d6e94ad io-wq: backoff when retrying worker creation
    f3288ffd33ea net: wwan: mhi_wwan_mbim: Silence sequence number glitch errors
    f623c04f7a63 ASoC: SOF: amd: Handle IPC replies before FW_BOOT_COMPLETE
    a4859a07c383 ASoC: SOF: Intel: hda: add softdep pre to snd-hda-codec-hdmi module
    7e97147479ff ASoC: arizona/madera: use fsleep() in up/down DAPM event delays.
    544f38b43fe8 ASoC: rsnd: adjust convert rate limitation
    7fe470e618aa ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime()
    fa51c913402f ASoC: rsnd: indicate unsupported clock rate
    aa2e8245052a ALSA: hda/realtek: Limit mic boost on Positivo ARN50
    9f303c35f9e8 ASoC: simple-card-utils.c: add missing dlc->of_node
    dfbaf8a6ae62 selftests/bpf: Fix invalid flag of recv()
    c96cce853542 Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd
    45a5d06e7e69 Xen/swiotlb: mark xen_swiotlb_fixup() __init
    f225a79bd23b thermal/cpufreq_cooling: Remove structure member documentation
    051a7980f77e s390/cio: Fix CHPID "configure" attribute caching
    194dc8c7ac0e platform/x86: thinkpad_acpi: Support for V9 DYTC platform profiles
    7f417bd96a1b platform/x86: thinkpad_acpi: Fix invalid fan speed on ThinkPad X120e
    265c03699e9b sched: Clarify wake_up_q()'s write to task->wake_q.next
    5b1c48532f71 objtool: Ignore dangling jump table entries
    be2051f81bf3 HID: apple: fix up the F6 key on the Omoton KB066 keyboard
    68eddb06f0ed HID: hid-apple: Apple Magic Keyboard a3203 USB-C support
    945166034600 HID: topre: Fix n-key rollover on Realforce R3S TKL boards
    490eb24d6602 usb: phy: generic: Use proper helper for property detection
    7a7ada33879a HID: ignore non-functional sensor in HP 5MP Camera
    2a11cee9a9e2 HID: intel-ish-hid: Send clock sync message immediately after reset
    cc4c96f1fdc3 HID: intel-ish-hid: fix the length of MNG_SYNC_FW_CLOCK in doorbell
    5d01a4ec46a4 vboxsf: fix building with GCC 15
    52df961953e8 alpha/elf: Fix misc/setarch test of util-linux by removing 32bit support
    dd33c1a3859f smb: client: fix noisy when tree connecting to DFS interlink targets
    1b9cd0404e32 ACPI: resource: IRQ override for Eluktronics MECH-17
    ea371d1cdefb scsi: qla1280: Fix kernel oops when debug level > 2
    caa383226495 scsi: ufs: core: Fix error return with query response
    e9d4044f4b12 scsi: core: Use GFP_NOIO to avoid circular locking dependency
    c79ac6a812a9 platform/x86/intel: pmc: fix ltr decode in pmc_core_ltr_show()
    6c8b1efdc487 sched/debug: Provide slice length for fair tasks
    2d1eef248107 iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic()
    a470f80ef3a9 powercap: call put_device() on an error path in powercap_register_control_type()
    a625ad9b5b1b hrtimers: Mark is_migration_base() with __always_inline
    fa5bfdd93fa9 nvme-fc: do not ignore connectivity loss during connecting
    aef373bb9ab5 nvme-fc: go straight to connecting state when initializing
    885b7279819e net/mlx5e: Prevent bridge link show failure for non-eswitch-allowed devices
    bd7e3a428007 net/mlx5: Bridge, fix the crash caused by LAG state check
    4e79d865f019 net/mlx5: Lag, Check shared fdb before creating MultiPort E-Switch
    4b1a0ee6164c net: openvswitch: remove misbehaving actions length check
    ecc19a9380e1 gre: Fix IPv6 link-local address generation.
    181b68fa55ac netfilter: nft_exthdr: fix offset with ipv4_find_option()
    78533c4a29ac net_sched: Prevent creation of classes with TC_H_ROOT
    1bd2a8bb1ccb ipvs: prevent integer overflow in do_ip_vs_get_ctl()
    fda50302a137 netfilter: nf_conncount: Fully initialize struct nf_conncount_tuple in insert_tree()
    6e4edd9e2deb bonding: fix incorrect MAC address setting to receive NS messages
    1f7d051814e7 net: switchdev: Convert blocking notification chain to a raw one
    ee086c8e775f eth: bnxt: do not update checksum in bnxt_xdp_build_skb()
    637105ef0d46 net/mlx5: handle errors in mlx5_chains_create_table()
    466ae740f88c Drivers: hv: vmbus: Don't release fb_mmio resource in vmbus_free_mmio()
    ad27b4a51495 drm/hyperv: Fix address space leak when Hyper-V DRM device is removed
    9d1966bdaf76 netpoll: hold rcu read lock in __netpoll_send_skb()
    6c5bb3f7acb7 net: mctp i2c: Copy headers if cloned
    78f83ea6b81a net: dsa: mv88e6xxx: Verify after ATU Load ops
    20b667285306 net/mlx5: Fill out devlink dev info only for PFs
    5e8ce74fb041 Revert "Bluetooth: hci_core: Fix sleeping function called from invalid context"
    7e8cd2bc09b0 Bluetooth: hci_event: Fix enabling passive scanning
    75d262ad3c36 wifi: cfg80211: cancel wiphy_work before freeing wiphy
    0f0a152957d6 sched: address a potential NULL pointer dereference in the GRED scheduler.
    0a9f0cfd2ae8 netfilter: nf_conncount: garbage collection is not skipped when jiffies wrap around
    5d30d256661f ice: fix memory leak in aRFS after reset
    29bde9751cb7 netfilter: nft_ct: Use __refcount_inc() for per-CPU nft_ct_pcpu_template.
    21e65f1fef64 pinctrl: bcm281xx: Fix incorrect regmap max_registers value
    c198157ae158 fbdev: hyperv_fb: iounmap() the correct memory when removing a device
    372df1f2057c tcp: fix forever orphan socket caused by tcp_abort
    abadaa355730 tcp: fix races in tcp_abort()
    f9543375d9b1 bpf: Use raw_spinlock_t in ringbuf
    472173544e74 hrtimer: Use and report correct timerslack values for realtime tasks
    c7ee791e5385 zram: fix NULL pointer in comp_algorithm_show()
    6e0447fa7d87 sched/isolation: Prevent boot crash when the boot CPU is nohz_full
    de47f33dde89 clockevents/drivers/i8253: Fix stop sequence for timer 0
    ceb5fadbf450 Revert "v6.6 -stable -rt merge fixup"
    1c2962a164ff v6.6 -stable -rt merge fixup
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: e36ac493ace6cdb9aee6cff8c0121ee98cfbc4bd)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:43 -07:00
Bruce Ashfield
0a47b798e5 linux-yocto/6.6: update to v6.6.83
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    1c2962a164ff v6.6 -stable -rt merge fixup
    594a1dd5138a Linux 6.6.83
    d5285e088b50 kbuild: userprogs: use correct lld when linking through clang
    79a955ea4a2e pfifo_tail_enqueue: Drop new packet when sch->limit == 0
    f9825c3f507d spi-mxs: Fix chipselect glitch
    aa6ef9ceab9c x86/boot: Sanitize boot params before parsing command line
    c59843e87791 x86/boot: Rename conflicting 'boot_params' pointer to 'boot_params_ptr'
    5b6eac63d157 ima: Reset IMA_NONACTION_RULE_FLAGS after post_setattr
    bb4425498707 x86/mm: Don't disable PCID when INVLPG has been fixed by microcode
    eff00c5e29ab uprobes: Fix race in uprobe_free_utask
    53402e17b1a7 drm/i915/dsi: Use TRANS_DDI_FUNC_CTL's own port width macro
    03f1b76fcdbc Revert "KVM: PPC: e500: Mark "struct page" dirty in kvmppc_e500_shadow_map()"
    e4c6eff5a3b5 Revert "KVM: PPC: e500: Mark "struct page" pfn accessed before dropping mmu_lock"
    36f688adf413 Revert "KVM: PPC: e500: Use __kvm_faultin_pfn() to handle page faults"
    9e4b27250fcd Revert "KVM: e500: always restore irqs"
    52fffb4a1f86 riscv: Fix enabling cbo.zero when running in M-mode
    76c9f76d4ad1 ALSA: hda: realtek: fix incorrect IS_REACHABLE() usage
    128962f5ab56 kbuild: hdrcheck: fix cross build with clang
    62112e7f5cbd arm64: hugetlb: Fix huge_ptep_get_and_clear() for non-present ptes
    c04035ce803e mm: hugetlb: Add huge page size param to huge_ptep_get_and_clear()
    11f0e95d6300 iio: adc: at91-sama5d2_adc: fix sama7g5 realbits value
    12012d432478 iio: dac: ad3552r: clear reset status flag
    82d94af45644 iio: filter: admv8818: Force initialization of SDO
    d7e5031fe3f1 drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmd_ioctl
    47aa0f5c6370 eeprom: digsy_mtc: Make GPIO lookup table match the device
    1f9eb7078bc6 bus: mhi: host: pci_generic: Use pci_try_reset_function() to avoid deadlock
    faac8e894014 slimbus: messaging: Free transaction ID in delayed interrupt scenario
    e49700a7d6d4 drivers: core: fix device leak in __fw_devlink_relax_cycles()
    d43b3f646686 char: misc: deallocate static minor in error path
    a5e10461dec0 intel_th: pci: Add Panther Lake-P/U support
    d66d16c32a5a intel_th: pci: Add Panther Lake-H support
    9d3c428e3eb4 intel_th: pci: Add Arrow Lake support
    693958465a6d mei: me: add panther lake P DID
    d7b339bbc887 cdx: Fix possible UAF error in driver_override_show()
    4f1ca393ea56 KVM: x86: Explicitly zero EAX and EBX when PERFMON_V2 isn't supported by KVM
    33bf2b75c1e9 KVM: SVM: Suppress DEBUGCTL.BTF on AMD
    978df364a3e0 KVM: SVM: Drop DEBUGCTL[5:2] from guest's effective value
    c401b1b4b835 usb: xhci: Enable the TRB overfetch quirk on VIA VL805
    af091756c4c7 xhci: pci: Fix indentation in the PCI device ID definitions
    2c271df31868 usb: gadget: Check bmAttributes only if configuration is valid
    0af020298b06 usb: gadget: Fix setting self-powered state on suspend
    b7768bba6a69 usb: gadget: Set self-powered based on MaxPower and bmAttributes
    68f7ef440a15 usb: typec: tcpci_rt1711h: Unmask alert interrupts to fix functionality
    8233c63fca35 usb: typec: ucsi: increase timeout for PPM reset operations
    656a99b581f5 usb: dwc3: gadget: Prevent irq storm when TH re-executes
    13f9b888ad0c usb: dwc3: Set SUSPENDENABLE soon after phy init
    a0475a885d69 usb: atm: cxacru: fix a flaw in existing endpoint checks
    0f6850613fe3 usb: gadget: u_ether: Set is_suspend flag if remote wakeup fails
    d50f5c0cd949 usb: renesas_usbhs: Flush the notify_hotplug_work
    46fba7be161b usb: typec: ucsi: Fix NULL pointer access
    7f0441af6ca5 usb: quirks: Add DELAY_INIT and NO_LPM for Prolific Mass Storage Card Reader
    7817af8b0b8e usb: hub: lack of clearing xHC resources
    ef0820290494 usb: renesas_usbhs: Use devm_usb_get_phy()
    d72f4475717e usb: renesas_usbhs: Call clk_put()
    3cae0b7e9639 Revert "drivers/card_reader/rtsx_usb: Restore interrupt based detection"
    897b7b76f021 gpio: rcar: Fix missing of_node_put() call
    9ff13800d6a8 net: ipv6: fix missing dst ref drop in ila lwtunnel
    925933d2cc63 net: ipv6: fix dst ref loop in ila lwtunnel
    88afbcb450c2 net: dsa: mt7530: Fix traffic flooding for MMIO devices
    9cc7f0018609 sched/fair: Fix potential memory corruption in child_cfs_rq_on_list
    c6292a2ac392 ublk: set_params: properly check if parameters can be applied
    04ab4df09de8 net-timestamp: support TCP GSO case for a few missing flags
    747de766f804 exfat: fix soft lockup in exfat_clear_bitmap
    470537263443 x86/sgx: Fix size overflows in sgx_encl_create()
    356144259980 vlan: enforce underlying device type
    1eacd47636a9 ppp: Fix KMSAN uninit-value warning with bpf
    65dcc3af0215 net: ipa: Enable checksum for IPA_ENDPOINT_AP_MODEM_{RX,TX} for v4.7
    5dc8312162de net: ipa: Fix QSB data for v4.7
    b9a3f30b30f3 net: ipa: Fix v4.7 resource group names
    026714ec7546 HID: hid-steam: Fix use-after-free when detaching device
    2c04e507f3a5 net: hns3: make sure ptp clock is unregister and freed if hclge_ptp_get_cycle returns an error
    41d731e79203 be2net: fix sleeping while atomic bugs in be_ndo_bridge_getlink
    4f5cc62f9a81 drm/sched: Fix preprocessor guard
    b1e17ebd82b9 hwmon: fix a NULL vs IS_ERR_OR_NULL() check in xgene_hwmon_probe()
    416e8b4c20c6 llc: do not use skb_get() before dev_queue_xmit()
    8c48c26f5f6d ALSA: usx2y: validate nrpacks module parameter on probe
    2efd6cc2c772 tracing: probe-events: Remove unused MAX_ARG_BUF_LEN macro
    c3dafdf77b97 hwmon: (ad7314) Validate leading zero bits and return error
    b5cc1496a090 hwmon: (ntc_thermistor) Fix the ncpXXxh103 sensor table
    395c28f3c0c4 hwmon: (pmbus) Initialise page count in pmbus_identify()
    7c823e4c30d6 perf/core: Fix pmus_lock vs. pmus_srcu ordering
    90d302619ee7 caif_virtio: fix wrong pointer check in cfv_probe()
    01a83237644d net: gso: fix ownership in __udp_gso_segment
    84cce23da477 nvmet-tcp: Fix a possible sporadic response drops in weakly ordered arch
    127c8905ea8e bluetooth: btusb: Initialize .owner field of force_poll_sync_fops
    560f4d129934 HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove()
    d0ef5f19b69d HID: google: fix unused variable warning under !CONFIG_ACPI
    b02f8d5a71c8 wifi: iwlwifi: limit printed string from FW file
    5c18fae5808d mm: don't skip arch_sync_kernel_mappings() in error paths
    b56b6cfdc7a7 mm/page_alloc: fix uninitialized variable
    f4e39e0ffbaf block: fix conversion of GPT partition name to 7-bit
    ab0727d6e219 NFS: fix nfs_release_folio() to not deadlock via kcompactd writeback
    272abd47f7d2 s390/traps: Fix test_monitor_call() inline assembly
    18519478b9a0 dma: kmsan: export kmsan_handle_dma() for modules
    2537f01d57f0 rapidio: fix an API misues when rio_add_net() fails
    e6411c3b9512 rapidio: add check for rio_add_net() in rio_scan_alloc_net()
    ebebbb0eded2 wifi: nl80211: reject cooked mode if it is set along with other flags
    35ef07112b61 wifi: cfg80211: regulatory: improve invalid hints checking
    bdb1805c248e Bluetooth: Add check for mgmt_alloc_skb() in mgmt_device_connected()
    c5845c73cbac Bluetooth: Add check for mgmt_alloc_skb() in mgmt_remote_name()
    f3fcdb2de9fd mptcp: fix 'scheduling while atomic' in mptcp_pm_nl_append_new_local_addr
    bd8dd64611ca x86/cpu: Properly parse CPUID leaf 0x2 TLB descriptor 0x63
    672bc566cfe6 x86/cpu: Validate CPUID leaf 0x2 EDX output
    db79249be184 x86/cacheinfo: Validate CPUID leaf 0x2 EDX output
    8d1fcb467e6f platform/x86: thinkpad_acpi: Add battery quirk for ThinkPad X131e
    c9dbc5c774ad drm/radeon: Fix rs400_gpu_init for ATI mobility radeon Xpress 200M
    3b3c2be58d52 drm/amd/display: Fix null check for pipe_ctx->plane_state in resource_build_scaling_params
    c144d1995873 hwmon: (peci/dimmtemp) Do not provide fake thresholds data
    8e507b3798c6 ALSA: hda/realtek: update ALC222 depop optimize
    0b60d5b2f81f ALSA: hda/realtek - add supported Mic Mute LED for Lenovo platform
    3f63e8fe7b56 ALSA: hda: intel: Add Dell ALC3271 to power_save denylist
    5e1b3bf72710 ALSA: seq: Avoid module auto-load handling at event delivery
    d99dc8f7ea01 gpio: aggregator: protect driver attr handlers against module unload
    c10365031f16 gpio: rcar: Use raw_spinlock to protect register access
    8994f0ce8259 ksmbd: fix bug on trap in smb2_lock
    8573571060ca ksmbd: fix use-after-free in smb2_lock
    c1569dbbe2d4 ksmbd: fix out-of-bounds in parse_sec_desc()
    76861630b29e ksmbd: fix type confusion via race condition when using ipc_msg_send_request
    fc69e2c3219d HID: appleir: Fix potential NULL dereference at raw event handle
    8a998a80335e LoongArch: Set max_pfn with the PFN of the last page
    abf16e748aaa LoongArch: Use polling play_dead() when resuming from hibernation
    7929d3623303 LoongArch: Convert unreachable() to BUG()
    35415b915a81 tracing: tprobe-events: Fix a memory leak when tprobe with $retval
    a9704893eec8 Revert "of: reserved-memory: Fix using wrong number of cells to get property 'alignment'"
    2d62d8f3fcf8 x86/microcode/AMD: Add some forgotten models to the SHA check
    dd8aad26c5e4 riscv: signal: fix signal_minsigstksz
    1b0a08a4fd6a RISC-V: Enable cbo.zero in usermode
    19c9976b8123 riscv: cacheinfo: Use of_property_present() for non-boolean properties
    80aec5a85510 riscv: Prevent a bad reference count on CPU nodes
    ebccacb0b599 riscv: cacheinfo: initialize cacheinfo's level and type from ACPI PPTT
    e1f99e0bae58 riscv: cacheinfo: remove the useless input parameter (node) of ci_leaf_init()
    017df7c71477 NFS: O_DIRECT writes must check and adjust the file length
    6e954923b72e x86/speculation: Add __update_spec_ctrl() helper
    174853183929 net: enetc: VFs do not support HWTSTAMP_TX_ONESTEP_SYNC
    f22f7ba83f00 net: enetc: Replace ifdef with IS_ENABLED
    54e0f2d2d340 net: enetc: Remove setting of RX software timestamp
    2a3f4e270dcf drm/amdgpu: disable BAR resize on Dell G5 SE
    c18438959b1d drm/amdgpu: Check extended configuration space register when system uses large bar
    4d2a7df718c3 ibmvnic: Inspect header requirements before using scrq direct
    6511585ed6e2 ibmvnic: Perform tx CSO during send scrq direct
    2c55d671849a smb: client: fix chmod(2) regression with ATTR_READONLY
    75cc3357a331 arm64: dts: rockchip: add rs485 support on uart5 of px30-ringneck-haikou
    9afdcba9489f drm/i915/ddi: Fix HDMI port width programming in DDI_BUF_CTL
    dbae718671de drm/i915/xe2lpd: Move D2D enable/disable
    ea3f0b362dfe efi: Don't map the entire mokvar table to determine its size
    8f43ba5ee498 x86/amd_nb: Use rdmsr_safe() in amd_get_mmconfig_range()
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 38034511b7d854f168d9dc297881d9b6fc33f921)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:43 -07:00
Bruce Ashfield
95670e76ff linux-yocto/6.6: update to v6.6.82
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    1998f703f4d7 Linux 6.6.82
    c92bd953243b x86/boot/32: Temporarily map initrd for microcode loading
    d4c860bb425d x86/microcode: Provide CONFIG_MICROCODE_INITRD32
    258f72d0acb5 x86/boot/32: Restructure mk_early_pgtbl_32()
    fa23256c09f0 x86/boot/32: De-uglify the 2/3 level paging difference in mk_early_pgtbl_32()
    5b10ecbadbaa x86/boot: Use __pa_nodebug() in mk_early_pgtbl_32()
    5fd09dda0ae0 x86/boot/32: Disable stackprotector and tracing for mk_early_pgtbl_32()
    640fad833ddc Linux 6.6.81
    57479e37d3f6 scsi: ufs: core: Cancel RTC work during ufshcd_remove()
    6e34b9d7caa5 scsi: ufs: core: Start the RTC update work later
    9aa1f0da237d scsi: ufs: core: Fix another deadlock during RTC update
    98a44622be2f x86/microcode/AMD: Fix a -Wsometimes-uninitialized clang false positive
    a4921b76bc94 scsi: ufs: core: Fix deadlock during RTC update
    bef830144feb x86/microcode/AMD: Load only SHA256-checksummed patches
    12412835e296 x86/microcode/AMD: Add get_patch_level()
    5e253de2e514 x86/microcode/AMD: Get rid of the _load_microcode_amd() forward declaration
    8a76fed3e5d1 x86/microcode/AMD: Merge early_apply_microcode() into its single callsite
    be5a41a9b5e4 x86/microcode/AMD: Have __apply_microcode_amd() return bool
    1f4caaf02c7c x86/microcode/AMD: Make __verify_patch_size() return bool
    5b330c18c1e4 x86/microcode/AMD: Return bool from find_blobs_in_containers()
    60675acfbc07 x86/microcode/AMD: Flush patch buffer mapping after application
    d31d50b35d35 x86/microcode/intel: Remove unnecessary cache writeback and invalidation
    9b86a44ea2c2 x86/microcode/AMD: Split load_microcode_amd()
    e7b2ccfed0d0 x86/microcode/AMD: Pay attention to the stepping dynamically
    0433b8e9f4a2 x86/microcode/AMD: Use the family,model,stepping encoded in the patch ID
    dbdf088ff85c x86/microcode/intel: Set new revision only after a successful update
    73aba0a0df21 x86/microcode: Rework early revisions reporting
    fba6e6fcabf3 x86/microcode: Prepare for minimal revision check
    287a86b4a4cb x86/microcode: Handle "offline" CPUs correctly
    8390133d68ac x86/apic: Provide apic_force_nmi_on_cpu()
    f2be90992d52 x86/microcode: Protect against instrumentation
    52b5dd846ff2 x86/microcode: Rendezvous and load in NMI
    9c31ea5b1be5 x86/microcode: Replace the all-in-one rendevous handler
    058370ffef99 x86/microcode: Provide new control functions
    08631b02ad07 x86/microcode: Add per CPU control field
    05baf15d045f x86/microcode: Add per CPU result state
    738aa6b98613 x86/microcode: Sanitize __wait_for_cpus()
    346bc32a465d x86/microcode: Clarify the late load logic
    7412a65d9562 x86/microcode: Handle "nosmt" correctly
    bb9646a9e45c x86/microcode: Clean up mc_cpu_down_prep()
    32096e8c3dac x86/microcode: Get rid of the schedule work indirection
    b42122933da3 x86/microcode: Mop up early loading leftovers
    021ab466701c x86/microcode/amd: Use cached microcode for AP load
    628478b1e42c x86/microcode/amd: Cache builtin/initrd microcode early
    b1bcf0d973ae x86/microcode/amd: Cache builtin microcode too
    465e490c986d x86/microcode/amd: Use correct per CPU ucode_cpu_info
    5481c4a48cbb x86/microcode: Remove pointless apply() invocation
    433f975e60fa x86/microcode/intel: Rework intel_find_matching_signature()
    15fd553a54f5 x86/microcode/intel: Reuse intel_cpu_collect_info()
    198ea646360d x86/microcode/intel: Rework intel_cpu_collect_info()
    149e3e4ad2eb x86/microcode/intel: Unify microcode apply() functions
    b6365c7c6cac x86/microcode/intel: Switch to kvmalloc()
    abbe616adec4 x86/microcode/intel: Save the microcode only after a successful late-load
    1dcf3264c173 x86/microcode/intel: Simplify early loading
    53d07dfbac0d x86/microcode/intel: Cleanup code further
    1092852de036 x86/microcode/intel: Simplify and rename generic_load_microcode()
    cc049de7c9a2 x86/microcode/intel: Simplify scan_microcode()
    67f9ed54896a x86/microcode/intel: Rip out mixed stepping support for Intel CPUs
    4a148d0054f3 x86/microcode/32: Move early loading after paging enable
    bcc87e2e0163 arm64: dts: rockchip: Disable DMA for uart5 on px30-ringneck
    3b7d2d1b42d2 intel_idle: Handle older CPUs, which stop the TSC in deeper C states, correctly
    9921e266029c gve: set xdp redirect target only when it is available
    c52d6aaf8ee8 amdgpu/pm/legacy: fix suspend/resume issues
    39854d382125 rtla/timerlat_top: Set OSNOISE_WORKLOAD for kernel threads
    129b81f6912f rtla/timerlat_hist: Set OSNOISE_WORKLOAD for kernel threads
    7ec6b4bd2900 Revert "rtla/timerlat_hist: Set OSNOISE_WORKLOAD for kernel threads"
    736b206d4e06 Revert "rtla/timerlat_top: Set OSNOISE_WORKLOAD for kernel threads"
    687322acb1eb riscv: signal: fix signal frame size
    06316f435b0f riscv/futex: sign extend compare value in atomic cmpxchg
    d82826201ffe rseq/selftests: Fix riscv rseq_offset_deref_addv inline asm
    32fb5ec825f6 scsi: ufs: core: bsg: Fix crash when arpmb command fails
    68786ab0935c sched/core: Prevent rescheduling when interrupts are disabled
    1d26aaa86124 rcuref: Plug slowpath race in rcuref_put()
    3df2bf42a03c vmlinux.lds: Ensure that const vars with relocations are mapped R/O
    3d7e7ef8fa1a mptcp: reset when MPTCP opts are dropped after join
    a05da2be18aa mptcp: always handle address removal under msk socket lock
    4bddfde8b692 phy: exynos5-usbdrd: fix MPLL_MULTIPLIER and SSC_REFCLKSEL masks in refclk
    9e728c1149f8 phy: tegra: xusb: reset VBUS & ID OVERRIDE
    12733d6e442a net: enetc: fix the off-by-one issue in enetc_map_tx_tso_buffs()
    093d1753b857 net: enetc: correct the xdp_tx statistics
    3e89f019d8cb net: enetc: update UDP checksum when updating originTimestamp field
    5642c3aa1690 net: enetc: keep track of correct Tx BD count in enetc_map_tx_tso_buffs()
    9561b0550c49 net: enetc: fix the off-by-one issue in enetc_map_tx_buffs()
    a2ee5e55b50a usbnet: gl620a: fix endpoint checking in genelink_bind()
    3035581db280 i2c: ls2x: Fix frequency division register access
    1b267e1b87d5 i2c: npcm: disable interrupt enable bit before devm_request_irq
    739f35f027ae drm/amd/display: Fix HPD after gpu reset
    574b3cf0412e drm/amd/display: Disable PSR-SU on eDP panels
    01d516530474 perf/core: Fix low freq setting via IOC_PERIOD
    dc972fd125e7 perf/x86: Fix low freqency setting issue
    f390c2eea571 perf/core: Add RCU read lock protection to perf_iterate_ctx()
    0bd89017e4e1 ALSA: hda/realtek: Fix microphone regression on ASUS N705UD
    e9839cf12e9f ALSA: usb-audio: Re-add sample rate quirk for Pioneer DJM-900NXS2
    f58a3f8e284d ftrace: Avoid potential division by zero in function_stat_show()
    43b254d46c74 tracing: Fix bad hist from corrupting named_triggers list
    2e06f42e88fc riscv: KVM: Fix SBI TIME error generation
    f9dd51830d30 riscv: KVM: Fix SBI IPI error generation
    9111be8870e1 riscv: KVM: Fix hart suspend status check
    c1a524d7f762 RISCV: KVM: Introduce mp_state_lock to avoid lock inversion
    57b243058dc2 phy: rockchip: naneng-combphy: compatible reset with old DT
    788f6b5474a7 x86/CPU: Fix warm boot hang regression on AMD SC1100 SoC systems
    685da33c81d0 io_uring/net: save msg_control for compat
    0b6f19714588 uprobes: Reject the shared zeropage in uprobe_write_opcode()
    f0c3971405ce perf/core: Order the PMU list to fix warning about unordered pmu_ctx_list
    973421d5862b net: ti: icss-iep: Reject perout generation request
    8a299cc110a3 net: ti: icss-iep: Remove spinlock-based synchronization
    73b769252d69 net: ipv6: fix dst ref loop on input in rpl lwt
    25d8e065c797 net: ipv6: rpl_iptunnel: mitigate 2-realloc issue
    c441f9281d7a net: ipv6: fix dst ref loop on input in seg6 lwt
    ab9de9c48316 net: ipv6: seg6_iptunnel: mitigate 2-realloc issue
    665d91b0e465 include: net: add static inline dst_dev_overhead() to dst.h
    0df388df81fb net/mlx5: IRQ, Fix null string in debug print
    e79a4da90926 net: mvpp2: cls: Fixed Non IP flow, with vlan tag flow defination.
    28e5a2d14340 net: Clear old fragment checksum value in napi_reuse_skb
    e8352f7e1e81 tcp: Defer ts_recent changes until req is owned
    3c01102bec95 ice: Fix deinitializing VF in error path
    52a98adcc48e ice: add E830 HW VF mailbox message limit support
    88f7ac6c4fce ice: Add E830 device IDs, MAC type and registers
    ab82f7a80b64 ALSA: hda/realtek: Fix wrong mic setup for ASUS VivoBook 15
    b0738e182e75 ALSA: hda/realtek: Add quirks for ASUS ROG 2023 models
    26c8641769f0 firmware: cs_dsp: Remove async regmap writes
    abdbedfe8974 ipvs: Always clear ipvs_property flag in skb_scrub_packet()
    53cdb4c36830 ASoC: es8328: fix route from DAC to output
    5d7d7e5b6cf9 net: cadence: macb: Synchronize stats calculations
    4ec48f812804 ipvlan: ensure network headers are in skb linear part
    cc6c6b7a2fe9 ipvlan: Prepare ipvlan_process_v4_outbound() to future .flowi4_tos conversion.
    661c63cb34cf ipv4: Convert ip_route_input() to dscp_t.
    7dde0ade0d66 ipv4: Convert icmp_route_lookup() to dscp_t.
    ed8f499f87ce ipvlan: Unmask upper DSCP bits in ipvlan_process_v4_outbound()
    35c4d95749f5 ipv4: icmp: Unmask upper DSCP bits in icmp_route_lookup()
    6631345c8fb2 ipv4: icmp: Pass full DS field to ip_route_input()
    21b28f97e621 net/ipv4: add tracepoint for icmp_send
    5f303538c393 net: set the minimum for net_hotdata.netdev_budget_usecs
    799556c2f976 net: loopback: Avoid sending IP packets without an Ethernet header
    51dc41111089 afs: Fix the server_list to unuse a displaced server rather than putting it
    0b2bf6fb5353 afs: Make it possible to find the volumes that are using a server
    2c8de882158d rxrpc: rxperf: Fix missing decoding of terminal magic cookie
    fbe5582ad767 Bluetooth: L2CAP: Fix L2CAP_ECRED_CONN_RSP response
    790e85fc3223 ALSA: usb-audio: Avoid dropping MIDI events at closing multiple ports
    df7d2f8bcb15 sunrpc: suppress warnings for unused procfs functions
    b0c5a8977e2c RDMA/mlx5: Fix bind QP error cleanup flow
    06518de45eba scsi: core: Clear driver private data when retrying request
    876fe386df5d RDMA/mlx5: Fix AH static rate parsing
    b993c450f94d IB/core: Add support for XDR link speed
    fc238db6bffa SUNRPC: Handle -ETIMEDOUT return from tlshd
    c688d2d8b0d8 SUNRPC: Prevent looping due to rpc_signal_task() races
    93200181c56e SUNRPC: convert RPC_TASK_* constants to enum
    64455c8051c3 ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up
    abc1d60a0205 scsi: ufs: core: Fix ufshcd_is_ufs_dev_busy() and ufshcd_eh_timed_out()
    3f82f8ae0d20 scsi: ufs: core: Prepare to introduce a new clock_gating lock
    21641160fb31 scsi: ufs: core: Introduce ufshcd_has_pending_tasks()
    06701a545e9a scsi: ufs: core: Add UFS RTC support
    372b9333e078 scsi: ufs: core: Add ufshcd_is_ufs_dev_busy()
    44247323d75c RDMA/mana_ib: Allocate PAGE aligned doorbell index
    8f16e0b94ab5 IB/mlx5: Set and get correct qp_num for a DCT QP
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 6c80848cd9ee79d7e92bcdbe9cbbc55b47645ac9)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:43 -07:00
Bruce Ashfield
91afd92a3d linux-yocto/6.6: update to v6.6.80
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    568e253c3e3b Linux 6.6.80
    60ba9b8a5b76 x86/cpu/kvm: SRSO: Fix possible missing IBPB on VM-Exit
    7891ac3b0a5c nilfs2: handle errors that nilfs_prepare_chunk() may return
    35dcb8a3a70e nilfs2: eliminate staggered calls to kunmap in nilfs_rename
    944a4f8f0b07 nilfs2: move page release outside of nilfs_delete_entry and nilfs_set_link
    ad75c8ef506c perf/x86/intel: Fix ARCH_PERFMON_NUM_COUNTER_LEAF
    be2778b6ddbd arm64: dts: rockchip: change eth phy mode to rgmii-id for orangepi r1 plus lts
    8fab939c5d62 md: Fix md_seq_ops() regressions
    4b79bee3e3c0 md: fix missing flush of sync_work
    d6fe973c8873 net/mlx5e: Don't call cleanup on profile rollback failure
    59bdc12fe980 ftrace: Do not add duplicate entries in subops manager ops
    ac35a1db0327 ftrace: Correct preemption accounting for function tracing.
    ae2661f0793b EDAC/qcom: Correct interrupt enable register configuration
    9e5d99a4cf2e smb: client: Add check for next_buffer in receive_encrypted_standard()
    8380ebc6f91b mtd: rawnand: cadence: fix incorrect device in dma_unmap_single
    ad9393467fbd mtd: rawnand: cadence: use dma_map_resource for sdma address
    fcae111830a4 mtd: rawnand: cadence: fix error code in cadence_nand_init()
    91f0e576f937 mm,madvise,hugetlb: check for 0-length range after end address adjustment
    28d23f1351b2 acct: block access to kernel internal filesystems
    5c928e14a2cc acct: perform last write from workqueue
    f69d2cd84600 ASoC: SOF: pcm: Clear the susbstream pointer to NULL on close
    868f6223d2b1 ALSA: hda/conexant: Add quirk for HP ProBook 450 G4 mute LED
    edcb866a93bb ALSA: hda: Add error check for snd_ctl_rename_id() in snd_hda_create_dig_out_ctls()
    afa500d47165 ASoC: fsl_micfil: Enable default case in micfil_set_quality()
    2b3878baf909 ASoC: SOF: stream-ipc: Check for cstream nullity in sof_ipc_msg_data()
    29ccb1e4040d nfp: bpf: Add check for nfp_app_ctrl_msg_alloc()
    95b93d542c75 lib/iov_iter: fix import_iovec_ubuf iovec management
    4f31247ecb37 soc: loongson: loongson2_guts: Add check for devm_kstrdup()
    0efa6c42f81c drop_monitor: fix incorrect initialization order
    d61cc1a435e6 tee: optee: Fix supplicant wait loop
    b9826e3b26ec io_uring: prevent opcode speculation
    f16a74c5f247 drm/i915/dp: Fix error handling during 128b/132b link training
    7cdb066a28f7 drm/i915: Make sure all planes in use by the joiner have their crtc included
    9546aaf0cbd7 drm/msm/dpu: Disable dither in phys encoder cleanup
    80824cef1759 arm64: dts: mediatek: mt8183: Disable DSI display output by default
    fbb770b97e18 drm/nouveau/pmu: Fix gp10b firmware guard
    586f0114875a bpf: skip non exist keys in generic_map_lookup_batch
    d3acd2a4c852 nvme/ioctl: add missing space in err message
    3b4d899d823c drm/msm: Avoid rounding up to one jiffy
    668ee1a95298 nouveau/svm: fix missing folio unlock + put after make_device_exclusive_range()
    ab438396837a power: supply: da9150-fg: fix potential overflow
    6ecb9fa14eec bpf: Fix deadlock when freeing cgroup storage
    eab50afcf715 bpf: Disable non stream socket for strparser
    05a571ee23c0 bpf: Fix wrong copied_seq calculation
    a26f95b6e317 strparser: Add read_sock callback
    29cfda62ab4d bpf: avoid holding freeze_mutex during mmap operation
    fc01ba097319 bpf: unify VM_WRITE vs VM_MAYWRITE use in BPF map mmaping logic
    d56d8a23d951 bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type()
    2b99b2c4621d drm/msm/gem: prevent integer overflow in msm_ioctl_gem_submit()
    c620a776d776 drm/msm/gem: Demote userspace errors to DRM_UT_DRIVER
    f8d9cc332161 drm/tidss: Fix race condition while handling interrupt registers
    ed14b2afe18c drm/tidss: Add simple K2G manual reset
    f1d5e6a5e468 tcp: drop secpath at the same time as we currently drop dst
    820cb874cfa5 net: axienet: Set mac_managed_pm
    24e0ede914a3 arp: switch to dev_getbyhwaddr() in arp_req_set_public()
    026b2a1b6a6f net: Add non-RCU dev_getbyhwaddr() helper
    ef3d41c51eb3 flow_dissector: Fix port range key handling in BPF conversion
    dfc61b8bd1df flow_dissector: Fix handling of mixed port and port-range keys
    87db59995eb1 geneve: Suppress list corruption splat in geneve_destroy_tunnels().
    9d03e7e37187 gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl().
    4907686790b0 tcp: adjust rcvq_space after updating scaling ratio
    61004a518920 vsock/bpf: Warn on socket without transport
    cc9a7832ede5 sockmap, vsock: For connectible sockets allow only connected
    093b0e5c9059 ibmvnic: Don't reference skb after sending to VIOS
    da8c1f9d8c96 ibmvnic: Add stat for tx direct vs tx batched
    4b1555f9f9fb ibmvnic: Introduce send sub-crq direct
    b43a1ad2b262 ibmvnic: Return error code on TX scrq flush fail
    940d15254d22 s390/ism: add release function for struct device
    48e348ff3e18 ALSA: seq: Drop UMP events when no UMP-conversion is set
    de4b679aa3b4 net/sched: cls_api: fix error handling causing NULL dereference
    a0675917bed1 ALSA: hda/cirrus: Correct the full scale volume set logic
    3ce92ca990cf geneve: Fix use-after-free in geneve_find_dev().
    2d542f13d263 powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC
    5c83016dfc3d ALSA: hda/realtek: Fixup ALC225 depop procedure
    044ce3bd2441 powerpc/64s: Rewrite __real_pte() and __rpte_to_hidx() as static inline
    a2726229aed7 powerpc/64s/mm: Move __real_pte stubs into hash-4k.h
    9dd4ff502813 ASoC: rockchip: i2s-tdm: fix shift config for SND_SOC_DAIFMT_DSP_[AB]
    deeee3adb2c0 USB: gadget: f_midi: f_midi_complete to call queue_work
    859cb45aefa6 usb: gadget: core: flush gadget workqueue after device removal
    e79e6f2490b3 USB: gadget: core: create sysfs link between udc and gadget
    2c49e894389a nvmem: imx-ocotp-ele: fix MAC address byte order
    a0ee898a5024 nvmem: Move and rename ->fixup_cell_info()
    276dae17ad97 nvmem: Simplify the ->add_cells() hook
    39dfc17a38f7 nvmem: Create a header for internal sharing
    4dbaa738c583 media: uvcvideo: Remove dangling pointers
    08384382e1db media: uvcvideo: Only save async fh if success
    bd747c0a1a0d media: uvcvideo: Refactor iterators
    a5128b5f2905 soc: mediatek: mtk-devapc: Fix leaking IO map on driver remove
    feea30e0754d soc/mediatek: mtk-devapc: Convert to platform remove callback returning void
    3cce694e7e19 arm64: dts: qcom: sm8550: Fix ADSP memory base and length
    5d285b468ed6 arm64: dts: qcom: sm8550: add missing qcom,non-secure-domain property
    5369d3b31f2f arm64: dts: qcom: sm8550: Add dma-coherent property
    5a8f1613a18a arm64: dts: qcom: sm8450: Fix ADSP memory base and length
    e96ddc4f0040 arm64: dts: qcom: sm8450: add missing qcom,non-secure-domain property
    3cfce644d8a7 scsi: core: Do not retry I/Os during depopulation
    7f818ac0ac7f scsi: core: Handle depopulation and restoration in progress
    b11052c8c4f2 firmware: qcom: scm: Fix missing read barrier in qcom_scm_is_available()
    67f04c52e5f9 ASoC: renesas: rz-ssi: Add a check for negative sample_space
    a2cbcd70133d Input: synaptics - fix crash when enabling pass-through port
    c02d630398e4 Input: serio - define serio_pause_rx guard to pause and resume serio ports
    ab8b6bf2bf61 Bluetooth: qca: Fix poor RF performance for WCN6855
    ae2d111c09dc Bluetooth: qca: Update firmware-name to support board specific nvm
    e68d2b880ea9 Bluetooth: qca: Support downloading board id specific NVM for WCN7850
    5d8ba57800a7 cpufreq: fix using cpufreq-dt as module
    a9b868213e7d cpufreq: dt-platdev: add missing MODULE_DESCRIPTION() macro
    972486d37169 memcg: fix soft lockup in the OOM process
    0a657f6e7f3d mm: update mark_victim tracepoints fields
    52848a095b55 md/md-bitmap: Synchronize bitmap_get_stats() with bitmap lifetime
    754fffa651d2 md/md-bitmap: add 'sync_size' into struct md_bitmap_stats
    023d5bc95086 md/md-cluster: fix spares warnings for __le64
    ba9e0f057844 md/md-bitmap: replace md_bitmap_status() with a new helper md_bitmap_get_stats()
    87ebc90e8423 md: simplify md_seq_ops
    452f50807917 md: factor out a helper from mddev_put()
    13231893fb7a md: use separate work_struct for md_start_sync()
    4534162e0916 xfs: don't over-report free space or inodes in statvfs
    1603b0b65731 xfs: report realtime block quota limits on realtime directories
    b887d2fe4a2b xfs: Check for delayed allocations before setting extsize
    067ee59f11bd xfs: streamline xfs_filestream_pick_ag
    1fe5c2aa3903 xfs: Reduce unnecessary searches when searching for the best extents
    c904df659911 xfs: update the pag for the last AG at recovery time
    7a2c24661db6 xfs: don't use __GFP_RETRY_MAYFAIL in xfs_initialize_perag
    5a9f8279988b xfs: error out when a superblock buffer update reduces the agcount
    a9c1ebae75fc xfs: update the file system geometry after recoverying superblock buffers
    bb305f888d6c xfs: pass the exact range to initialize to xfs_initialize_perag
    5a9e3dbb0bf2 xfs: Remove empty declartion in header file
    b5d917a63987 xfs: Use try_cmpxchg() in xlog_cil_insert_pcp_aggregate()
    9716ff882426 xfs: support lowmode allocations in xfs_bmap_exact_minlen_extent_alloc
    a8a80b75b443 xfs: call xfs_bmap_exact_minlen_extent_alloc from xfs_bmap_btalloc
    479e112ddf30 xfs: don't ifdef around the exact minlen allocations
    41e7f8ffee95 xfs: fold xfs_bmap_alloc_userdata into xfs_bmapi_allocate
    f37a5f0e916c xfs: distinguish extra split from real ENOSPC from xfs_attr_node_try_addname
    512a91114295 xfs: distinguish extra split from real ENOSPC from xfs_attr3_leaf_split
    702e1ac48f17 xfs: return bool from xfs_attr3_leaf_add
    3d58507d6c7a xfs: merge xfs_attr_leaf_try_add into xfs_attr_leaf_addname
    7b5b119191bf xfs: don't free cowblocks from under dirty pagecache on unshare
    f56db9ce3cd6 xfs: skip background cowblock trims on inodes open for write
    3e2f7c20510d xfs: fix a typo
    a6790b50bfa0 xfs: fix a sloppy memory handling bug in xfs_iroot_realloc
    629e6a35dd53 xfs: validate inumber in xfs_iget
    ed6282de3d04 xfs: assert a valid limit in xfs_rtfind_forw
    14cc006ed668 arm64: mte: Do not allow PROT_MTE on MAP_HUGETLB user mappings
    c0249d3a0c3c Linux 6.6.79
    50a0821c8203 Revert "vfio/platform: check the bounds of read/write syscalls"
    c02c52036e6d x86/i8253: Disable PIT timer 0 when not in use
    f3b8e9d3414b vsock: Orphan socket after transport release
    3f4354016612 vsock: Keep the binding until socket destruction
    146a185f6c05 io_uring/kbuf: reallocate buf lists on upgrade
    4c8f958a07ff HID: hid-steam: Don't use cancel_delayed_work_sync in IRQ context
    fd0d07cb8b47 alpha: replace hardcoded stack offsets with autogenerated ones
    933b08c0edfa mm: gup: fix infinite loop within __get_longterm_locked
    cad0406ad780 arm64: Filter out SVE hwcaps when FEAT_SVE isn't implemented
    96156eb57726 md/md-bitmap: move bitmap_{start, end}write to md upper layer
    b29e6400be51 md/raid5: implement pers->bitmap_sector()
    14bc83e97fbd md: add a new callback pers->bitmap_sector()
    3e41ab9aef12 md/md-bitmap: remove the last parameter for bimtap_ops->endwrite()
    3b666dad3828 md/md-bitmap: factor behind write counters out from bitmap_{start/end}write()
    03877cb32666 md/raid5: recheck if reshape has finished with device_lock held
    f6b49d4617ad selftests: rtnetlink: update netdevsim ipsec output format
    30472935f708 netdevsim: print human readable IP address
    39a580cd1539 drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags
    16ce8fd94da8 drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer
    ff5d9e3705a3 x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0
    eb0e0eca0eab drm/v3d: Stop active perfmon if it is being destroyed
    d7fa812845f6 drm/rcar-du: dsi: Fix PHY lock bit check
    e85e8d48bf6d drm/tidss: Clear the interrupt status for interrupts being disabled
    f99429229916 drm/tidss: Fix issue in irq handling causing irq-flood issue
    1b91c597b021 ipv6: mcast: add RCU protection to mld_newpack()
    81b25a07ebf5 ipv6: mcast: extend RCU protection in igmp6_send()
    ae38982f5216 ndisc: extend RCU protection in ndisc_send_skb()
    8ec57509c36c openvswitch: use RCU protection in ovs_vport_cmd_fill_info()
    e9f4dee534eb arp: use RCU protection in arp_xmit()
    1cbb2aa90cd3 neighbour: use RCU protection in __neigh_notify()
    62091d80e155 neighbour: delete redundant judgment statements
    9e0ec817eb41 ndisc: use RCU protection in ndisc_alloc_skb()
    e1147961b214 HID: hid-steam: Move hidraw input (un)registering to work
    d6187df36586 HID: hid-steam: Make sure rumble work is canceled on removal
    4b996b618294 HID: hid-steam: Add Deck IMU support
    9f82ed6e4197 HID: hid-steam: Fix cleanup in probe()
    0c38fefe773f HID: hid-steam: remove pointless error message
    c68606bdfce3 HID: hid-steam: Add gamepad-only mode switched to by holding options
    622ee123a0d1 HID: hid-steam: Update list of identifiers from SDL
    9544708c64bc HID: hid-steam: Clean up locking
    463b37836e40 HID: hid-steam: Disable watchdog instead of using a heartbeat
    747035cde16f HID: hid-steam: Avoid overwriting smoothing parameter
    463a45592fa5 ipv6: icmp: convert to dev_net_rcu()
    4176a68b0db8 ipv6: use RCU protection in ip6_default_advmss()
    e99e146bf948 flow_dissector: use RCU protection to fetch dev_net()
    338f6418869f ipv4: icmp: convert to dev_net_rcu()
    9b1766d1ff5f ipv4: use RCU protection in __ip_rt_update_pmtu()
    3bed2abab4a6 net: ipv4: Cache pmtu for all packet paths if multipath enabled
    91d93fb59765 ipv4: use RCU protection in inet_select_addr()
    1f778d7a8ba2 ipv4: use RCU protection in rt_is_expired()
    30a26bffd759 ipv4: use RCU protection in ipv4_default_advmss()
    81f369b67006 net: add dev_net_rcu() helper
    4cfecb7fc742 net: treat possible_net_t net pointer as an RCU one and add read_pnet_rcu()
    afd983f102f8 ipv4: add RCU protection to ip4_dst_hoplimit()
    8783ceeee797 clocksource: Use migrate_disable() to avoid calling get_random_u32() in atomic context
    0cc5bb930079 clocksource: Use pr_info() for "Checking clocksource synchronization" message
    29775681433c btrfs: fix hole expansion when writing at an offset beyond EOF
    7511887fcae7 mlxsw: Add return value check for mlxsw_sp_port_get_stats_raw()
    d73d4c9588fc igc: Set buffer type for empty frames in igc_init_empty_frame
    79cf42024050 mmc: mtk-sd: Fix register settings for hs400(es) mode
    c1cf034d8de7 arm64: Handle .ARM.attributes section in linker scripts
    c727f338ab3a regmap-irq: Add missing kfree()
    9722e5b90725 regulator: qcom_smd: Add l2, l5 sub-node to mp5496 regulator
    92527100be38 partitions: mac: fix handling of bogus partition table
    bc7fe1a879fc gpio: stmpe: Check return value of stmpe_reg_read in stmpe_gpio_irq_sync_unlock
    98fde755d661 gpiolib: acpi: Add a quirk for Acer Nitro ANV14
    0f4573f8fe00 alpha: align stack for page fault and user unaligned trap handlers
    5e00346deb7b serial: 8250: Fix fifo underflow on flush
    ccdca0a0ff44 serial: port: Always update ->iotype in __uart_read_properties()
    357c267e5d30 serial: port: Assign ->iotype correctly when ->iobase is set
    a00e607102eb cgroup: fix race between fork and cgroup.kill
    b5bfb235f7e1 efi: Avoid cold plugged memory for placing the kernel
    16467ffd3d20 kbuild: userprogs: fix bitsize and target detection on clang
    f8bef3f067b6 wifi: ath12k: fix handling of 6 GHz rules
    147495d02a7f alpha: make stack 16-byte aligned (most cases)
    1590667a6075 can: etas_es58x: fix potential NULL pointer dereference on udev->serial
    2a6ea31d597d can: j1939: j1939_sk_send_loop(): fix unable to send messages with data length zero
    bb4fbd870cd9 can: c_can: fix unbalanced runtime PM disable in error path
    e505b83b9ee6 can: ctucanfd: handle skb allocation failure
    0947a24193c8 USB: serial: option: drop MeiG Smart defines
    ced6965f55e1 USB: serial: option: fix Telit Cinterion FN990A name
    5a3544d8ba22 USB: serial: option: add Telit Cinterion FN990B compositions
    4e6bd3620aa9 USB: serial: option: add MeiG Smart SLM828
    db89b3bebd08 usb: cdc-acm: Fix handling of oversized fragments
    6abb510251e7 usb: cdc-acm: Check control transfer buffer size before access
    1a3c2c4dce8a USB: cdc-acm: Fill in Renesas R-Car D3 USB Download mode quirk
    e905a0fca7bf USB: hub: Ignore non-compliant devices with too many configs or interfaces
    6ae6dee9f005 usb: gadget: f_midi: fix MIDI Streaming descriptor lengths
    8b6efb4d389e USB: Add USB_QUIRK_NO_LPM quirk for sony xperia xz1 smartphone
    483cfd0f58fd USB: quirks: add USB_QUIRK_NO_LPM quirk for Teclast dist
    54a5e0156ea7 usb: core: fix pipe creation for get_bMaxPacketSize0
    add6d8a137cb USB: pci-quirks: Fix HCCPARAMS register error for LS7A EHCI
    da1b45064fb2 usb: dwc2: gadget: remove of_node reference upon udc_stop
    e3470d4c5c7b usb: gadget: udc: renesas_usb3: Fix compiler warning
    5d6749bb1b1b usb: roles: set switch registered flag early on
    2f71a89d63d7 usb: dwc3: Fix timeout issue during controller enter/exit from halt state
    3aba54561999 usb: gadget: f_midi: Fixing wMaxPacketSize exceeded issue during MIDI bind retries
    1dde83a88392 perf/x86/intel: Ensure LBRs are disabled when a CPU is starting
    d680a1e20222 KVM: nSVM: Enter guest mode before initializing nested NPT MMU
    874ff13c73c4 KVM: x86: Reject Hyper-V's SEND_IPI hypercalls if local APIC isn't in-kernel
    e43a8b9c4d70 drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table()
    a7aa23172858 batman-adv: Drop unmanaged ELP metric worker
    96405e2c499e batman-adv: Ignore neighbor throughput metrics in error case
    072b27873219 batman-adv: fix panic during interface removal
    ec4180dc87b1 ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet 5V
    2b84a231910c orangefs: fix a oob in orangefs_debug_write
    a04fe3bfc71e x86/mm/tlb: Only trim the mm_cpumask once a second
    a3bcd891e113 ACPI: x86: Add skip i2c clients quirk for Vexia EDU ATLA 10 tablet 5V
    3d9f63e2ac52 selftests: gpio: gpio-sim: Fix missing chip disablements
    207efb2f4ee5 Grab mm lock before grabbing pt lock
    19b3ca651b4b NFS: Fix potential buffer overflowin nfs_sysfs_link_rpc_client()
    2a0696363da4 vfio/pci: Enable iowrite64 and ioread64 for vfio pci
    5ed11d00737d rtla/timerlat_top: Abort event processing on second signal
    a20341b7a167 rtla/timerlat_hist: Abort event processing on second signal
    5f782d4741bf scsi: ufs: bsg: Set bsg_queue to NULL after removal
    ac7ed282a0f1 PCI: switchtec: Add Microchip PCI100X device IDs
    d8fd38b901ef PCI/DPC: Quirk PIO log size for Intel Raptor Lake-P
    2c5601b99d79 media: vidtv: Fix a null-ptr-deref in vidtv_mux_stop_thread
    06ffcc72121e media: uvcvideo: Add Kurokesu C1 PRO camera
    ec5fa3282465 media: uvcvideo: Add new quirk definition for the Sonix Technology Co. 292a camera
    a7e1b1388d41 media: uvcvideo: Implement dual stream quirk to fix loss of usb packets
    95d0d793b678 media: i2c: ds90ub953: Add error handling for i2c reads/writes
    75ba1588c559 media: i2c: ds90ub913: Add error handling to ub913_hw_init()
    db84810d9996 media: cxd2841er: fix 64-bit division on gcc-9
    3a4f623bb6f2 soc/tegra: fuse: Update Tegra234 nvmem keepout list
    fb6a5edb6092 fbdev: omap: use threaded IRQ for LCD DMA
    edc64c0f686d RDMA/efa: Reset device on probe failure
    627218d4ac85 tools: fix annoying "mkdir -p ..." logs when building tools in parallel
    4d9b2b62e113 gpiolib: Fix crash on error in gpiochip_get_ngpios()
    99ca540851ee block: cleanup and fix batch completion adding conditions
    5a32765ac724 x86/xen: allow larger contiguous memory regions in PV guests
    461d9e8acaa4 xen/swiotlb: relax alignment requirements
    3f40a7ff39d9 drm/amdgpu: bail out when failed to load fw in psp_init_cap_microcode()
    7159b7e13743 gpio: bcm-kona: Add missing newline to dev_err format string
    0d091da7f9da gpio: bcm-kona: Make sure GPIO bits are unlocked when requesting IRQ
    88a78a7bdbaf gpio: bcm-kona: Fix GPIO lock/unlock for banks above bank 0
    b1da0f6264a3 drm/i915/selftests: avoid using uninitialized context
    b25ba45fcfdb cgroup: Remove steal time from usage_usec
    ab90894f33c1 arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array
    d071a91fa614 team: better TEAM_OPTION_TYPE_STRING validation
    964a8895704a LoongArch: csum: Fix OoB access in IP checksum code for negative lengths
    1dfcc04e3cb4 LoongArch: Fix idle VS timer enqueue
    a303649b99b6 vxlan: check vxlan_vnigroup_init() return value
    c40cb5c03e37 vrf: use RCU protection in l3mdev_l3_out()
    35b3f615fbd4 ndisc: ndisc_send_redirect() must use dev_get_by_index_rcu()
    94a0de224ed5 ax25: Fix refcount leak caused by setting SO_BINDTODEVICE sockopt
    966328191b4c spi: sn-f-ospi: Fix division by zero
    f3ce05283f6c HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints()
    62f8bf06262b HID: multitouch: Add NULL check in mt_input_configured
    c5d46ae55a51 pinctrl: cy8c95x0: Respect IRQ trigger settings from firmware
    23ad7797c74c NFSD: fix hang in nfsd4_shutdown_callback
    55d947315fb5 nfsd: clear acl_access/acl_default after releasing them
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: f9eb23de00c7d3b5d542c5a321769a778ac73a2c)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:43 -07:00
Bruce Ashfield
8f3c94e38c linux-yocto/6.6: update to v6.6.78
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    4407146cf3fc Linux 6.6.78
    e8ad068c6ab8 KVM: x86: Re-split x2APIC ICR into ICR+ICR2 for AMD (x2AVIC)
    4fc0f9eadda8 KVM: x86: Make x2APIC ID 100% readonly
    8ea0e7b3d7b8 tty: xilinx_uartps: split sysrq handling
    d113f9723f2b x86/mm/ident_map: Use gbpages only where full GB page should be mapped.
    690c7fa03ebb selftests: mptcp: join: fix AF_INET6 variable
    a77201459464 mptcp: prevent excessive coalescing on receive
    de3b8d41d254 mptcp: pm: only set fullmesh for subflow endp
    785408bbafcf cachefiles: Fix NULL pointer dereference in object->file
    893b28374aba btrfs: avoid monopolizing a core when activating a swap file
    b4e355e70e12 Revert "btrfs: avoid monopolizing a core when activating a swap file"
    94459962b862 ocfs2: check dir i_size in ocfs2_find_entry
    2cc0f0e1b976 net/ncsi: use dev_set_mac_address() for Get MC MAC Address handling
    b85a15619899 spi: atmel-qspi: Memory barriers after memory-mapped I/O
    34e7a2360c1c spi: atmel-quadspi: Create `atmel_qspi_ops` to support newer SoC families
    96c40135d8a8 MIPS: ftrace: Declare ftrace_get_parent_ra_addr() as static
    ec8aa93c30f4 rtc: zynqmp: Fix optional clock name property
    81846070cba1 ptp: Ensure info->enable callback is always set
    0228e5a6672d pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails
    52ad6195bdb9 rtla/timerlat_top: Stop timerlat tracer on signal
    094809f6aff4 rtla/timerlat_hist: Stop timerlat tracer on signal
    5a9eb34972cb rtla: Add trace_instance_stop
    41955b6c2681 rtla/timerlat_top: Set OSNOISE_WORKLOAD for kernel threads
    83b74901bdc9 rtla/timerlat_hist: Set OSNOISE_WORKLOAD for kernel threads
    d5eae440f718 rtla/osnoise: Distinguish missing workload option
    ee8c4c39a8f9 tracing/osnoise: Fix resetting of tracepoints
    d86c6f80972e scripts/gdb: fix aarch64 userspace detection in get_current_task
    82aa8d362a2a maple_tree: simplify split calculation
    78a73c6fe0d8 net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset
    ab9f2ec09f17 net/ncsi: wait for the last response to Deselect Package before configuring channel
    c0464bad0e85 misc: fastrpc: Fix copy buffer page size
    e563ccd6be3c misc: fastrpc: Fix registered buffer page address
    24bcf8f6f9c0 misc: fastrpc: Deregister device nodes properly in error scenarios
    3df72111c39f misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors
    5d19ca5d2591 mtd: onenand: Fix uninitialized retlen in do_otp_read()
    221e874ea5bf irqchip/apple-aic: Only handle PMC interrupt as FIQ when configured so
    069a8680af14 i3c: master: Fix missing 'ret' assignment in set_speed()
    172cdfc3a5ea NFC: nci: Add bounds checking in nci_hci_create_pipe()
    88f4311d1d5e mailbox: tegra-hsp: Clear mailbox before using message
    f2bd0f1ab478 nilfs2: fix possible int overflows in nilfs_fiemap()
    b6833b38984d ocfs2: handle a symlink read error correctly
    e763392da6b1 ocfs2: fix incorrect CPU endianness conversion causing mount failure
    e5d289c972eb pnfs/flexfiles: retry getting layout segment for reads
    7a9b86bd2261 selftests: mptcp: connect: -f: no reconnect
    03844b190811 vfio/platform: check the bounds of read/write syscalls
    644636ee7eb2 io_uring/rw: commit provided buffer state on async
    a94592ec30ff io_uring: fix io_req_prep_async with provided buffers
    130675a21942 io_uring/net: don't retry connect operation on EPOLLERR
    b86f1d51731e io_uring: fix multishots with selected buffers
    a9206d8a512e nvmem: imx-ocotp-ele: set word length to 1
    bb2b7ba5faaa nvmem: imx-ocotp-ele: fix reading from non zero offset
    cb091f37cc1c nvmem: imx-ocotp-ele: simplify read beyond device check
    0ba8ea28918b nvmem: core: improve range check for nvmem_cell_write()
    12f428f59748 nvmem: qcom-spmi-sdam: Set size in struct nvmem_config
    e914b2f795b6 crypto: qce - unregister previously registered algos in error path
    37b71cec0bda crypto: qce - fix goto jump in error path
    d5e6e3000309 ata: libata-sff: Ensure that we cannot write outside the allocated buffer
    19b22dadd487 mm: kmemleak: fix upper boundary check for physical address objects
    aed5248fe9e1 media: uvcvideo: Remove redundant NULL assignment
    5448ac02e9c0 media: uvcvideo: Support partial control reads
    53107a8f17df media: uvcvideo: Fix event flags in uvc_ctrl_send_events
    0b5e0445bc83 media: uvcvideo: Fix crash during unbind if gpio unit is in use
    1eb8e73eb4a3 media: i2c: ds90ub960: Fix logging SP & EQ status only for UB9702
    c3c9300062b6 media: i2c: ds90ub960: Fix UB9702 VC map
    45e2ad4e1253 media: i2c: ds90ub960: Fix use of non-existing registers on UB9702
    474d7baf91d3 media: i2c: ds90ub9x3: Fix extra fwnode_handle_put()
    68b645edc412 media: ccs: Fix cleanup order in ccs_probe()
    08cb112ca61b media: ccs: Fix CCS static data parsing for large block sizes
    747c04b1aac9 media: ov5640: fix get_light_freq on auto
    25abffee5ceb media: imx296: Add standby delay during probe
    3e4a43a965a8 media: mc: fix endpoint iteration
    4ab7185ad5a6 media: mmp: Bring back registration of the device
    88792f3992cb soc: qcom: smem_state: fix missing of_node_put in error path
    56eefe1f2fb7 soc: mediatek: mtk-devapc: Fix leaking IO map on error paths
    8eb80b9c9bdf iio: light: as73211: fix channel handling in only-color triggered buffer
    1d447317022e media: ccs: Clean up parsed CCS static data on parse failure
    7753ef5ba2a6 kfence: skip __GFP_THISNODE allocations on NUMA systems
    0796fa13788c rv: Reset per-task monitors also for idle tasks
    50365a6304a5 tpm: Change to kvalloc() in eventlog/acpi.c
    df6c8203f2cb ACPI: PRM: Remove unnecessary strict handler address checks
    970e92cac159 xfs: Add error handling for xfs_reflink_cancel_cow_range
    1af7697727d0 xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end
    3a525fcaa1bb pwm: microchip-core: fix incorrect comparison with max period
    705f566f91ca arm64: tegra: Disable Tegra234 sce-fabric node
    b8cf1649c31d arm64: tegra: Fix typo in Tegra234 dce-fabric compatible
    73142af4e3bf crypto: qce - fix priority to be less than ARMv8 CE
    cb8612851892 arm64: dts: qcom: sm8550: correct MDSS interconnects
    a0f741013a78 arm64: dts: qcom: sm8550: Fix MPSS memory length
    27145756466f arm64: dts: qcom: sm8550: Fix CDSP memory length
    b57466d4638c arm64: dts: qcom: sm8450: Fix MPSS memory length
    29e2abea06fa arm64: dts: qcom: sm8450: Fix CDSP memory length
    e7f3016bd6f5 arm64: dts: qcom: sm8350: Fix MPSS memory length
    62692dd301ee arm64: dts: qcom: sm8350: Fix CDSP memory base and length
    18a384670b3f arm64: dts: qcom: sm8350: Fix ADSP memory base and length
    a77d7958c3ab arm64: dts: qcom: sm6375: Fix MPSS memory base and length
    91ed86aa8c8a arm64: dts: qcom: sm6375: Fix CDSP memory base and length
    7aa20f255751 arm64: dts: qcom: sm6375: Fix ADSP memory length
    4c3ada3f57ac arm64: dts: qcom: sm6350: Fix uart1 interconnect path
    f2d430edb3af arm64: dts: qcom: sm6350: Fix MPSS memory length
    601e6204cc02 arm64: dts: qcom: sm6350: Fix ADSP memory length
    d4a06764feda arm64: dts: qcom: sm6115: Fix ADSP memory base and length
    55c42a2df0b6 arm64: dts: qcom: sm6115: Fix CDSP memory length
    425d3f99fd5c arm64: dts: qcom: sm6115: Fix MPSS memory length
    5538b1b2eeb7 ARM: dts: ti/omap: gta04: fix pm issues caused by spi module
    1995976dc590 ARM: dts: dra7: Add bus_dma_limit for l4 cfg bus
    9a6550bbe419 ubi: Add a check for ubi_num
    e5fe2d01dd97 x86/boot: Use '-std=gnu11' to fix build with GCC 15
    6a42d6378387 rust: init: use explicit ABI to clean warning in future compilers
    3ae5615f48cd kbuild: Move -Wenum-enum-conversion to W=2
    7df68980e8b7 scsi: storvsc: Set correct data length for sending SCSI command without payload
    7f1e0af18198 scsi: ufs: qcom: Fix crypto key eviction
    217230bc8796 scsi: qla2xxx: Move FCE Trace buffer allocation to user control
    7bfa83ee25a6 scsi: st: Don't set pos_unknown just after device recognition
    42385f9c4c67 nvme-pci: Add TUXEDO IBP Gen9 to Samsung sleep quirk
    9db27ba3a127 nvme-pci: Add TUXEDO InfinityFlex to Samsung sleep quirk
    97bc165a0686 PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf()
    8852e056e297 PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1
    ce5bcb573279 arm64: tegra: Fix Tegra234 PCIe interrupt-map
    3cef733e15cd ALSA: hda: Fix headset detection failure due to unstable sort
    125c6cb70934 ALSA: hda/realtek: Enable headset mic on Positivo C6400
    a80f82d31ca6 Revert "media: uvcvideo: Require entities to have a non-zero unique ID"
    84671b0630cc block: don't revert iter for -EIOCBQUEUED
    0b0c4d1de598 mips/math-emu: fix emulation of the prefx instruction
    53be273d8def dm-crypt: track tag_offset in convert_context
    179a3e8740a3 dm-crypt: don't update io->sector after kcryptd_crypt_write_io_submit()
    4a3909268073 powerpc/pseries/eeh: Fix get PE state translation
    cfa6d9424c0e LoongArch: Extend the maximum number of watchpoints
    18f34beba652 MIPS: Loongson64: remove ROM Size unit in boardinfo
    92f59f8b45bf serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use
    3b49a756b70b serial: sh-sci: Drop __initdata macro for port_cfg
    47470acd719d soc: qcom: socinfo: Avoid out of bounds read of serial number
    1f4580e049cc ASoC: acp: Support microphone from Lenovo Go S
    d4bbd291c9fe usbnet: ipheth: document scope of NCM implementation
    22475242ddb7 usbnet: ipheth: fix DPE OoB read
    ed9866898e19 usbnet: ipheth: break up NCM header size computation
    e94fb338b523 usbnet: ipheth: refactor NCM datagram loop
    92f2a8094f1f usbnet: ipheth: check that DPE points past NCM header
    8fb062178e1c usbnet: ipheth: use static NDP16 location in URB
    18bf6f5cce31 usbnet: ipheth: fix possible overflow in DPE length check
    ae7045a20d32 usb: gadget: f_tcm: Don't prepare BOT write request twice
    d0d36fb2fea5 usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint
    9ec6b25b7c7a usb: gadget: f_tcm: Decrement command ref count on cleanup
    bbe8e62f31cd usb: gadget: f_tcm: Translate error to sense
    9875dc6ef9b5 wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916
    2955a92db595 wifi: rtw88: sdio: Fix disconnection after beacon loss
    7b279f966c3e wifi: mt76: mt7921u: Add VID/PID for TP-Link TXE50UH
    3877fc67bd3d wifi: brcmfmac: fix NULL pointer dereference in brcmf_txfinalize()
    5fb45870eba0 wifi: rtlwifi: rtl8821ae: Fix media status report
    8d02b61a0a6e HID: hid-sensor-hub: don't use stale platform-data on remove
    bcf0fb1a4600 of: reserved-memory: Fix using wrong number of cells to get property 'alignment'
    b9f177d535e8 of: Fix of_find_node_opts_by_path() handling of alias+path+options
    fe44f5f5887c of: Correct child specifier used as input of the 2nd nexus node
    0176c4af3f71 scsi: ufs: core: Fix the HIGH/LOW_TEMP Bit Definitions
    8da6b450a17f perf bench: Fix undefined behavior in cmpworker()
    b480d2b5dcc9 efi: libstub: Use '-std=gnu11' to fix build with GCC 15
    993121481b5a blk-cgroup: Fix class @block_class's subsystem refcount leakage
    fc60e9357f15 clk: mediatek: mt2701-mm: add missing dummy clk
    6f4868e6b288 clk: mediatek: mt2701-img: add missing dummy clk
    a1fa3dda6bf0 clk: mediatek: mt2701-bdp: add missing dummy clk
    20210b5c775d clk: mediatek: mt2701-aud: fix conversion to mtk_clk_simple_probe
    b6c5237ab7af clk: mediatek: mt2701-vdec: fix conversion to mtk_clk_simple_probe
    118c66164fbe clk: qcom: clk-rpmh: prevent integer overflow in recalc_rate
    ebe1322167c1 clk: qcom: gcc-mdm9607: Fix cmd_rcgr offset for blsp1_uart6 rcg
    3ad28517385e clk: qcom: dispcc-sm6350: Add missing parent_map for a clock
    08b77ed7cfaa clk: qcom: gcc-sm6350: Add missing parent_map for two clocks
    9b6c92663afe clk: qcom: gcc-sm8550: Do not turn off PCIe GDSCs during gdsc_disable()
    c242fd39dc20 clk: qcom: clk-alpha-pll: fix alpha mode configuration
    30f605e8b8de media: i2c: ds90ub960: Fix UB9702 refclk register access
    61ff966c6481 clk: sunxi-ng: a100: enable MMC clock reparenting
    aa91d5401614 Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection
    245d48c1ba3e Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc
    c48f7a360f3c drm/i915: Drop 64bpp YUV formats from ICL+ SDR planes
    065385499ccf drm/komeda: Add check for komeda_get_layer_fourcc_list()
    dc4a876538e6 drm/i915: Fix page cleanup on DMA remap failure
    cce94ba65bbd drm/i915/guc: Debug print LRC state entries only if the context is pinned
    dcc3f2c06d80 Revert "drm/amd/display: Use HW lock mgr for PSR1"
    f4c931e9d203 drm/amdkfd: only flush the validate MES contex
    12457cf8e004 drm/amd/pm: Mark MM activity as unsupported
    82f59d64e629 ksmbd: fix integer overflows on 32 bit systems
    fcd06731f59f KVM: s390: vsie: fix some corner-cases when grabbing vsie pages
    125da53b3c0c KVM: Explicitly verify target vCPU is online in kvm_get_vcpu()
    b7ced74c7e93 arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma
    f12f0457748c drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event()
    6f796f08856e KVM: arm64: timer: Always evaluate the need for a soft timer
    d17ca8f2dfcf binfmt_flat: Fix integer overflow bug on 32 bit systems
    553fbae0effd fs/proc: do_task_stat: Fix ESP not readable during coredump
    0be6beead8c4 m68k: vga: Fix I/O defines
    44d85a423b56 s390/futex: Fix FUTEX_OP_ANDN implementation
    3c0866372ab8 smb: client: change lease epoch type from unsigned int to __u16
    7a5f926b3737 smb: client: fix order of arguments of tracepoints
    fc962f508a03 drm/modeset: Handle tiled displays in pan_display_atomic.
    af5128c9ebd7 ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx
    1abeeb919910 leds: lp8860: Write full EEPROM, not only half of it
    96616a37a0f6 cpufreq: s3c64xx: Fix compilation warning
    7770b2211d63 rxrpc: Fix call state set to not include the SERVER_SECURING state
    d2f275112c3a net: sched: Fix truncation of offloaded action statistics
    e8390a47a343 tun: revert fix group permission check
    1f8e3f4a4b8b netem: Update sch->q.qlen before qdisc_tree_reduce_backlog()
    db4ae2879085 ACPI: property: Fix return value for nval == 0 in acpi_data_prop_read()
    b960062afa89 x86/xen: add FRAME_END to xen_hypercall_hvm()
    242f7584da3a x86/xen: fix xen_hypercall_hvm() to not clobber %rbx
    e0384efd45f6 net: rose: lock the socket in rose_bind()
    a86f51724a10 net: atlantic: fix warning during hot unplug
    2d1637afc4eb gpio: pca953x: Improve interrupt support
    f7627c81983c rxrpc: Fix the rxrpc_connection attend queue handling
    eaf4268850dd udp: gso: do not drop small packets when PMTU reduces
    66c96550fe24 tg3: Disable tg3 PCIe AER on system reboot
    858e1feac50d vmxnet3: Fix tx queue race condition with XDP
    14a28eb9bdac ice: Add check for devm_kzalloc()
    fcb2be1b3c2d net: bcmgenet: Correct overlaying of PHY and MAC Wake-on-LAN
    40a29e84995d nvme-fc: use ctrl state getter
    ac1728cf370b ice: put Rx buffers after being done with current frame
    e31e65661c54 gpu: drm_dp_cec: fix broken CEC adapter properties check
    5848c712c82a firmware: iscsi_ibft: fix ISCSI_IBFT Kconfig entry
    795786303295 nvme: handle connectivity loss in nvme_set_queue_count
    ba32f06e15c6 net/ncsi: fix locking in Get MAC Address handling
    67515088591e net/ncsi: Add NC-SI 1.2 Get MC MAC Address command
    b9d93eda1214 KVM: e500: always restore irqs
    ba3cf83f4a50 KVM: PPC: e500: Use __kvm_faultin_pfn() to handle page faults
    59e21c4613b0 KVM: PPC: e500: Mark "struct page" pfn accessed before dropping mmu_lock
    15d60c13b704 KVM: PPC: e500: Mark "struct page" dirty in kvmppc_e500_shadow_map()
    b8261bfaebbb platform/x86: acer-wmi: Ignore AC events
    530a91be13af Input: allocate keycode for phone linking
    a9e33a054cac ASoC: amd: Add ACPI dependency to fix build error
    79b8c7c93beb ASoC: soc-pcm: don't use soc_pcm_ret() on .prepare callback
    f9c7cc44758f platform/x86: int3472: Check for adev == NULL
    d9aa993ae5ba iommu/arm-smmu-v3: Clean up more on probe failure
    cae133ab8df3 iommu/arm-smmu-qcom: add sdm670 adreno iommu compatible
    e2612a5437a0 x86/kexec: Allocate PGD for x86_64 transition page tables separately
    decefd41316b selftests/net/ipsec: Fix Null pointer dereference in rtattr_pack()
    44b4b97439a5 tipc: re-order conditions in tipc_crypto_key_rcv()
    b4f6aa16663f mmc: sdhci-msm: Correctly set the load for the regulator
    2f0fd471cc03 net: wwan: iosm: Fix hibernation by re-binding the driver around it
    4ebbcb9bc794 Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor_sync
    c09a05b3a394 APEI: GHES: Have GHES honor the panic= setting
    1b00ccd73312 i2c: Force ELAN06FA touchpad I2C bus freq to 100KHz
    d32136e5ba2b wifi: iwlwifi: avoid memory leak
    c9480e9f2d10 wifi: brcmfmac: Check the return value of of_property_read_string_index()
    c2813471b663 net/mlx5: use do_aux_work for PHC overflow checks
    9955d4064d59 HID: Wacom: Add PCI Wacom device support
    8a68e1c374fa clk: qcom: Make GCC_8150 depend on QCOM_GDSC
    6aa0de131f53 mfd: lpc_ich: Add another Gemini Lake ISA bridge PCI device-id
    fe1c021eb03d tomoyo: don't emit warning in tomoyo_write_control()
    093286c33409 wifi: brcmsmac: add gain range check to wlc_phy_iqcal_gainparams_nphy()
    9211e3220738 mmc: core: Respect quirk_max_rate for non-UHS SDIO card
    0b41f8c84167 tun: fix group permission check
    19d452a94632 wifi: rtw89: add crystal_cap check to avoid setting as overflow value
    96fae5bd1589 safesetid: check size of policy writes
    4723df76ac9e drm/bridge: it6505: fix HDCP CTS KSV list wait timer
    a51b9affe5d6 drm/bridge: it6505: fix HDCP CTS compare V matching
    810b6f6aea59 drm/bridge: it6505: fix HDCP encryption when R0 ready
    3a4487883121 drm/bridge: it6505: fix HDCP Bstatus check
    3da5be16af92 drm/bridge: it6505: Change definition MAX_HDCP_DOWN_STREAM_COUNT
    df6fc38a37d4 drm/amd/display: Fix Mode Cutoff in DSC Passthrough to DP2.1 Monitor
    662c20e449dc drm/vc4: hdmi: use eld_mutex to protect access to connector->eld
    300c6efc95fb drm/sti: hdmi: use eld_mutex to protect access to connector->eld
    83e4ac9f87f1 drm/radeon: use eld_mutex to protect access to connector->eld
    0493070d7cee drm/exynos: hdmi: use eld_mutex to protect access to connector->eld
    ac7d01ab10f4 drm/amd/display: use eld_mutex to protect access to connector->eld
    d698cbfef632 drm/bridge: ite-it66121: use eld_mutex to protect access to connector->eld
    ad8870a64714 drm/bridge: anx7625: use eld_mutex to protect access to connector->eld
    f2196ad7c0b3 drm/connector: add mutex to protect ELD from concurrent access
    4acf6bab775d printk: Fix signed integer overflow when defining LOG_BUF_LEN_MAX
    f94036559312 drm/virtio: New fence for every plane update
    737ae6ddec9c x86/amd_nb: Restrict init function to AMD-based systems
    5fbad86fae1e lockdep: Fix upper limit for LOCKDEP_*_BITS configs
    7380819963f5 sched: Don't try to catch up excess steal time.
    3c884b6bd823 btrfs: convert BUG_ON in btrfs_reloc_cow_block() to proper error handling
    726d36347b0f btrfs: fix data race when accessing the inode's disk_i_size at btrfs_drop_extents()
    52c0b3cb6f03 s390/stackleak: Use exrl instead of ex in __stackleak_poison()
    dc5da273051e exec: fix up /proc/pid/comm in the execveat(AT_EMPTY_PATH) case
    4227ce0c5e3f arm64/mm: Ensure adequate HUGE_MAX_HSTATE
    8f5cff471039 btrfs: fix use-after-free when attempting to join an aborted transaction
    927b930f117b btrfs: fix assertion failure when splitting ordered extent after transaction abort
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: d0efefc0b58827bd1810f0bb3d41eb12da6f468b)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:43 -07:00
Bruce Ashfield
6b08410d0e linux-yocto/6.6: update to v6.6.77
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    c719455843a8 Linux 6.6.77
    c903f4959a59 Revert "hostfs: convert hostfs to use the new mount API"
    f55d1ee3a43c Revert "hostfs: fix string handling in __dentry_name()"
    dd942aca6445 Revert "hostfs: Add const qualifier to host_root in hostfs_fill_super()"
    fd5799f2ddd4 Revert "hostfs: fix the host directory parse when mounting."
    ef3ce4bf49dc Linux 6.6.76
    9b7f5ef4bace LoongArch: Change 8 to 14 for LOONGARCH_MAX_{BRP,WRP}
    cefbf9f892ce s390: Add '-std=gnu11' to decompressor and purgatory CFLAGS
    49b8241c5aaf btrfs: output the reason for open_ctree() failure
    1b2af918bb71 media: imx-jpeg: Fix potential error pointer dereference in detach_pm()
    dfde3d63afba staging: media: max96712: fix kernel oops when removing module
    16907219ad67 usb: gadget: f_tcm: Don't free command immediately
    cd3bbcb6b3a7 pps: Fix a use-after-free
    6c36dcd662ec media: uvcvideo: Fix double free in error path
    b32d60a852bb remoteproc: core: Fix ida_free call while not allocated
    0263fb2e7b7b mptcp: handle fastopen disconnect correctly
    7f6c72b8ef81 mptcp: consolidate suboption status
    6f10f641b489 usb: typec: tcpci: Prevent Sink disconnection before vPpsShutdown in SPR PPS
    76bae35d44f3 usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE
    876b1bf63b6f usb: dwc3: core: Defer the probe until USB power supply ready
    0962220d7a98 usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk()
    0e7fc92a0572 usb: gadget: f_tcm: Fix Get/SetInterface return value
    9e490b665ca3 drivers/card_reader/rtsx_usb: Restore interrupt based detection
    b649f0d5bc25 usb: xhci: Fix NULL pointer dereference on certain command aborts
    3c706829ceb6 net: usb: rtl8150: enable basic endpoint checking
    5e75091a93b9 ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro
    fe215b8dd76c ktest.pl: Check kernelrelease return in get_version
    bab3e9f342e0 selftests/rseq: Fix handling of glibc without rseq support
    82e491e08571 netfilter: nf_tables: reject mismatching sum of field_len with set key length
    cbfb30ae17d4 kbuild: switch from lz4c to lz4 for compression
    225b88642aef Revert "SUNRPC: Reduce thread wake-up rate when receiving large RPC messages"
    18edc1d03ca0 NFSD: Reset cb_seq_status after NFS4ERR_DELAY
    0bf2adad03e1 f2fs: Introduce linear search for dentries
    aa420dee3392 hexagon: Fix unbalanced spinlock in die()
    97517cba7671 hexagon: fix using plain integer as NULL pointer warning in cmpxchg
    29f5ee6c9774 kconfig: fix memory leak in sym_warn_unmet_dep()
    582e70f1eddf kconfig: WERROR unmet symbol dependency
    487852a55a48 kconfig: deduplicate code in conf_read_simple()
    94d9ee3b85d2 kconfig: remove unused code for S_DEF_AUTO in conf_read_simple()
    26341c1bb766 kconfig: require a space after '#' for valid input
    13dc6f1692e0 kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST
    089d1c188a5a cifs: Fix getting and setting SACLs over SMB1
    32cc06a68d3a cifs: Validate EAs for WSL reparse points
    563ba1701bc1 io_uring/uring_cmd: use cached cmd_op in io_uring_cmd_sock()
    730071ea1ea7 ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback
    b730c68ea282 RISC-V: Mark riscv_v_init() as __init
    be80de30b347 hostfs: fix the host directory parse when mounting.
    1fbe93dd7e6a hostfs: Add const qualifier to host_root in hostfs_fill_super()
    86ec56b25476 hostfs: fix string handling in __dentry_name()
    d073828fe0f5 hostfs: convert hostfs to use the new mount API
    4517f37bf54e genksyms: fix memory leak when the same symbol is read from *.symref file
    9dc841e89ae0 genksyms: fix memory leak when the same symbol is added from source
    62289ebb2554 net: hsr: fix fill_frame_info() regression vs VLAN packets
    f59acc3f9441 net: sh_eth: Fix missing rtnl lock in suspend/resume path
    b1bc4a35a04c net: xdp: Disallow attaching device-bound programs in generic mode
    b01e7ceb35dc tcp: correct handling of extreme memory squeeze
    5e6e723675e5 bgmac: reduce max frame size to support just MTU 1500
    77ad90dd18ae vsock: Allow retrying on connect() failure
    3924c153761c Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming
    d2cd915aea83 perf trace: Fix runtime error of index out of bounds
    6d3693d402a8 net: stmmac: Limit FIFO size by hardware capability
    80083bd4c214 net: stmmac: Limit the number of MTL queues to hardware capability
    2a6d1e1d022b ptp: Properly handle compat ioctls
    c411f9a5fdc9 net: davicom: fix UAF in dm9000_drv_remove
    a84d511165d6 vxlan: Fix uninit-value in vxlan_vnifilter_dump()
    b91034314ad2 net: netdevsim: try to close UDP port harness races
    51c128ba038c net: rose: fix timer races against user threads
    5385c1d1c08f iavf: allow changing VLAN state without calling PF
    02794e35ab0d PM: hibernate: Add error handling for syscore_suspend()
    b379b3162ff5 ipmr: do not call mr_mfc_uses_dev() for unres entries
    d063bec046a0 net: fec: implement TSO descriptor cleanup
    d5a17441bb38 gpio: mxc: remove dead code after switch to DT-only
    b5a8bc47aa0a net: hns3: fix oops when unload drivers paralleling
    c0f6111bb525 regulator: core: Add missing newline character
    40e25a3c0063 ubifs: skip dumping tnc tree when zroot is null
    20f0f55e6d68 rtc: loongson: clear TOY_MATCH0_REG in loongson_rtc_isr()
    9adefa7b9559 rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read
    c6e1b2cac24b xfrm: delete intermediate secpath entry in packet offload mode
    b0f47b08786d dmaengine: ti: edma: fix OF node reference leaks in edma_driver
    68a5e8b9125b xfrm: replay: Fix the update of replay_esn->oseq_hi for GSO
    9e0f793ee961 tools/bootconfig: Fix the wrong format specifier
    d49ab6857d98 LoongArch: Fix warnings during S3 suspend
    34c3ea55d1a7 NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE
    cedab4047828 NFSv4.2: fix COPY_NOTIFY xdr buf size calculation
    fe616b82bc46 serial: 8250: Adjust the timeout for FIFO mode
    f4b9bc823b0c driver core: class: Fix wild pointer dereferences in API class_dev_iter_next()
    91c9ec5a208d module: Extend the preempt disabled section in dereference_symbol_descriptor().
    8e1b9201c9a2 nilfs2: protect access to buffers with no active references
    61a8a1917a4b nilfs2: convert nilfs_lookup_dirty_data_buffers to use folio_create_empty_buffers
    724dc6daebb1 buffer: make folio_create_empty_buffers() return a buffer_head
    3e6e5acf4c7d ocfs2: mark dquot as inactive if failed to start trans while releasing dquot
    e5565240c648 scsi: ufs: bsg: Delete bsg_dev when setting up bsg fails
    495dcb00d4fe scsi: mpt3sas: Set ioc->manu_pg11.EEDPTagMode directly to 1
    c994716d3391 PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test
    48349476ae13 PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error
    2a12efc567a2 PCI: imx6: Skip controller_id generation logic for i.MX7D
    c64da8e0ad76 PCI: imx6: Simplify clock handling by using clk_bulk*() function
    2c54b9fca175 PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region()
    0d3f69add24e media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer
    aba54e4583f6 staging: media: imx: fix OF node leak in imx_media_add_of_subdevs()
    09ab93b4b6b2 watchdog: rti_wdt: Fix an OF node leak in rti_wdt_probe()
    7f6802ca6d13 media: nxp: imx8-isi: fix v4l2-compliance test errors
    4ca60562c0d2 mtd: hyperbus: hbmc-am654: fix an OF node reference leak
    3ec44b69e48f mtd: hyperbus: hbmc-am654: Convert to platform remove callback returning void
    2d95397b1792 mtd: rawnand: brcmnand: fix status read of brcmnand_waitfunc
    ada9f380e799 media: uvcvideo: Propagate buf->error to userspace
    6981619d56a6 media: camif-core: Add check for clk_enable()
    79bf1c4773ba media: mipi-csis: Add check for clk_enable()
    11c7649c9ec3 media: i2c: ov9282: Correct the exposure offset
    c4c35f6958de media: i2c: imx412: Add missing newline to prints
    0e4300717701 media: i2c: imx290: Register 0x3011 varies between imx327 and imx290
    88d08ca77266 media: marvell: Add check for clk_enable()
    c0f94441a1de PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy()
    dfccddd5874f media: lmedm04: Handle errors for lme2510_int_read
    eb06c7bbf172 media: rc: iguanair: handle timeouts
    e2d565d93d07 spi: omap2-mcspi: Correctly handle devm_clk_get_optional() errors
    38ac76fc06bc iommufd/iova_bitmap: Fix shift-out-of-bounds in iova_bitmap_offset_to_index()
    45e567800492 RDMA/rxe: Fix the warning "__rxe_cleanup+0x12c/0x170 [rdma_rxe]"
    07f8ce734df7 efi: sysfb_efi: fix W=1 warnings when EFI is not set
    c14c6d0a6aa4 of: reserved-memory: Do not make kmemleak ignore freed address
    6ea9e3895f8c RDMA/mlx5: Fix indirect mkey ODP page count
    60d2fb033a99 i3c: dw: Fix use-after-free in dw_i3c_master driver due to race condition
    c30508bb0b4b i3c: dw: Add hot-join support.
    e713ca2e6526 arm64: tegra: Fix DMA ID for SPI2
    35f444b3104a fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device()
    b2c5d45b05d2 ARM: dts: mediatek: mt7623: fix IR nodename
    fb6f0553f8dc arm64: dts: qcom: sm8250: Fix interrupt types of camss interrupts
    ad28a017b542 arm64: dts: qcom: sdm845: Fix interrupt types of camss interrupts
    c7e2f0ee4301 arm64: dts: mediatek: add per-SoC compatibles for keypad nodes
    64f51b68e296 dts: arm64: mediatek: mt8195: Remove MT8183 compatible for OVL
    30fb7a297f16 arm64: dts: qcom: sc8280xp: Fix up remoteproc register space sizes
    df5c93e0c0a0 arm64: dts: qcom: sm8150-microsoft-surface-duo: fix typos in da7280 properties
    e3ec2298c34e arm64: dts: qcom: sc7180: fix psci power domain node names
    1f11e59d464c arm64: dts: qcom: sc7180: change labels to lower-case
    78e69e507f89 arm64: dts: qcom: Add SM7125 device tree
    0789f1224758 arm64: dts: qcom: sc7180-trogdor-pompom: rename 5v-choke thermal zone
    0da37d987580 arm64: dts: qcom: sc7180-*: Remove thermal zone polling delays
    d92cbcfb10cf arm64: dts: qcom: sc7180-trogdor-quackingstick: add missing avee-supply
    4d1dccadf21b arm64: dts: qcom: sdm845-db845c-navigation-mezzanine: remove disabled ov7251 camera
    4fa6d6e521ed arm64: dts: qcom: sdm845-db845c-navigation-mezzanine: Convert mezzanine riser to dtso
    6c59ba194002 ARM: omap1: Fix up the Retu IRQ on Nokia 770
    e746da4b0cd6 RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error
    94526fbf58c4 arm64: dts: allwinner: a64: explicitly assign clock parent for TCON0
    a5e386065e5a arm64: dts: ti: k3-am62a: Remove duplicate GICR reg
    64100cdc3df3 arm64: dts: ti: k3-am62: Remove duplicate GICR reg
    b3b30a524c46 ARM: dts: microchip: sama5d27_wlsom1_ek: Add no-1-8-v property to sdmmc0 node
    7e16a59c7672 ARM: dts: microchip: sama5d27_wlsom1_ek: Remove mmc-ddr-3_3v property from sdmmc0 node
    6919d6d65c71 arm64: dts: qcom: sm8450: correct sleep clock frequency
    a3bc622b2046 arm64: dts: qcom: sm8350: correct sleep clock frequency
    c1574f607d83 arm64: dts: qcom: sm8250: correct sleep clock frequency
    4fed5d47fe8d arm64: dts: qcom: sm6375: correct sleep clock frequency
    78b611083305 arm64: dts: qcom: sm6125: correct sleep clock frequency
    dd951e7b04bc arm64: dts: qcom: sm4450: correct sleep clock frequency
    36cded5e139d arm64: dts: qcom: sdx75: correct sleep clock frequency
    4ba4d5c19ea9 arm64: dts: qcom: sc7280: correct sleep clock frequency
    c38070e3b8a3 arm64: dts: qcom: qrb4210-rb2: correct sleep clock frequency
    29bb336761ed arm64: dts: qcom: q[dr]u1000: correct sleep clock frequency
    a2e31fadc52e arm64: dts: qcom: qcs404: correct sleep clock frequency
    d68ef84ca10d arm64: dts: qcom: msm8994: correct sleep clock frequency
    b7c8c08640d1 arm64: dts: qcom: msm8939: correct sleep clock frequency
    db975f5e7cb2 arm64: dts: qcom: msm8916: correct sleep clock frequency
    f23f69f0f224 arm64: dts: qcom: sm7225-fairphone-fp4: Drop extra qcom,msm-id value
    7e466bb7f544 arm64: dts: qcom: msm8994: Describe USB interrupts
    585081791387 arm64: dts: qcom: msm8996: Fix up USB3 interrupts
    a0753f8993cf arm64: dts: qcom: sa8775p: Update sleep_clk frequency
    74f3061e0330 arm64: dts: qcom: move common parts for sa8775p-ride variants into a .dtsi
    823536e1128b arm64: dts: qcom: sa8775p-ride: enable pmm8654au_0_pon_resin
    9316d15e7d4e arm64: dts: qcom: sa8775p-ride: Describe sgmii_phy1 irq
    0aff49ed0d2a arm64: dts: qcom: sa8775p-ride: Describe sgmii_phy0 irq
    367e43d89b91 arm64: dts: qcom: msm8996-xiaomi-gemini: Fix LP5562 LED1 reg property
    d13b39e072f8 arm64: dts: mediatek: mt8183-kukui-jacuzzi: Drop pp3300_panel voltage settings
    c144423cb07e memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code()
    5607d1e7944f ARM: dts: stm32: Swap USART3 and UART8 alias on STM32MP15xx DHCOM SoM
    cac3340a2fe4 ARM: dts: stm32: Deduplicate serial aliases and chosen node for STM32MP15xx DHCOM SoM
    2fbfacbbf6ee arm64: dts: mediatek: mt8195: Remove suspend-breaking reset from pcie1
    eb9a5a953b64 RDMA/srp: Fix error handling in srp_add_port
    3013bcfc0c2b arm64: dts: mediatek: mt8183: willow: Support second source touchscreen
    90cc73be437c arm64: dts: mediatek: mt8183: kenzo: Support second source touchscreen
    3a01e2dc9f01 RDMA/rxe: Fix mismatched max_msg_sz
    5dfd5a88823c RDMA/rxe: Improve newline in printing messages
    a332e101fcbf arm: dts: socfpga: use reset-name "stmmaceth-ocp" instead of "ahb"
    c62ceade98a0 ARM: dts: aspeed: yosemite4: correct the compatible string for max31790
    4064a22702d3 ARM: dts: aspeed: yosemite4: Add required properties for IOE on fan boards
    b94b27e715cb ARM: dts: aspeed: yosemite4: correct the compatible string of adm1272
    4b14695a7bda arm64: dts: mediatek: mt8173-evb: Fix MT6397 PMIC sub-node names
    08f2d1bcc022 arm64: dts: mediatek: mt8173-elm: Fix MT6397 PMIC sub-node names
    2495b1f85dd9 arm64: dts: mediatek: mt8195-demo: Drop regulator-compatible property
    8fad7737a92e arm64: dts: mediatek: mt8195-cherry: Drop regulator-compatible property
    a4a7aea0c4fb arm64: dts: mediatek: mt8192-asurada: Drop regulator-compatible property
    32ddffac4201 arm64: dts: mediatek: mt8173-elm: Drop regulator-compatible property
    206d385b1237 arm64: dts: mediatek: mt8173-evb: Drop regulator-compatible property
    de8d88b68d0c rdma/cxgb4: Prevent potential integer overflow on 32bit
    47b3acbf31e0 RDMA/mlx4: Avoid false error about access to uninitialized gids array
    410b99a3d062 ARM: dts: stm32: Fix IPCC EXTI declaration on stm32mp151
    434b724ce471 arm64: dts: mediatek: mt8516: reserve 192 KiB for TF-A
    a17b2390322a arm64: dts: mediatek: mt8516: add i2c clock-div property
    8c9cda5a2074 arm64: dts: mediatek: mt8516: fix wdt irq type
    5a10685c816f arm64: dts: mediatek: mt8516: fix GICv2 range
    8bea7ece086b arm64: dts: mt8183: set DMIC one-wire mode on Damu
    ac8f8cc0b2b2 arm64: dts: mediatek: mt8186: Move wakeup to MTU3 to get working suspend
    4aa4a0045753 ARM: at91: pm: change BU Power Switch to automatic mode
    5908e04d7388 soc: atmel: fix device_node release in atmel_soc_device_init()
    7f298125b365 cifs: Use cifs_autodisable_serverino() for disabling CIFS_MOUNT_SERVER_INUM in readdir.c
    3f901c35e1a1 smb: client: fix oops due to unset link speed
    6f45ef616775 padata: avoid UAF for reorder_work
    b5981c994671 padata: add pd get/put refcnt helper
    bbccae982e9f padata: fix UAF in padata_reorder
    55f75ce472ae perf lock: Fix parse_lock_type which only retrieve one lock flag
    40f8b565d595 ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop
    670ef7b2900b bpf: tcp: Mark bpf_load_hdr_opt() arg2 as read-write
    eeef8e65041a bpf: Send signals asynchronously if !preemptible
    01220c10a7f4 pinctrl: amd: Take suspend type into consideration which pins are non-wake
    3872b4eec88a pinctrl: stm32: Add check for clk_enable()
    2e09336f352f perf report: Fix misleading help message about --demangle
    49bc44a51d72 ASoC: Intel: avs: Fix theoretical infinite loop
    5e6f12d554ae ASoC: Intel: avs: Do not readq() u32 registers
    b9db15cf2d69 ASoC: Intel: avs: Abstract IPC handling
    b5a41d42396e ASoC: Intel: avs: Prefix SKL/APL-specific members
    125066c32953 perf namespaces: Fixup the nsinfo__in_pidns() return type, its bool
    d43c2447032c perf namespaces: Introduce nsinfo__set_in_pidns()
    4318e26fe4f4 perf machine: Don't ignore _etext when not a text symbol
    8487f93db855 perf top: Don't complain about lack of vmlinux when not resolving some kernel samples
    e6e97a24de83 padata: fix sysfs store callback check
    19f17a762ebd ALSA: seq: Make dependency on UMP clearer
    7bd0bb51bd92 ALSA: seq: remove redundant 'tristate' for SND_SEQ_UMP_CLIENT
    78f2ac97823c crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto()
    cfb531141bda crypto: hisilicon/sec2 - fix for aead invalid authsize
    2309cf3f5e9d crypto: hisilicon/sec2 - fix for aead icv error
    a4cc472ea0d8 crypto: hisilicon/sec2 - optimize the error return process
    3392fa605d7c bpf: bpf_local_storage: Always use bpf_mem_alloc in PREEMPT_RT
    3c7f63d94087 ktest.pl: Remove unused declarations in run_bisect_test function
    1ee00cc23cc8 perf expr: Initialize is_test value in expr__ctx_new()
    dd95e117530e ASoC: renesas: rz-ssi: Use only the proper amount of dividers
    c7d067a47bf8 perf bpf: Fix two memory leakages when calling perf_env__insert_bpf_prog_info()
    bce9da3aca14 perf header: Fix one memory leakage in process_bpf_prog_info()
    4f2582dacad4 perf header: Fix one memory leakage in process_bpf_btf()
    3885a4d4a519 crypto: caam - use JobR's space to access page 0 regs
    e2a5487487bd selftests/bpf: Fix fill_link_info selftest on powerpc
    557065f0a493 ASoC: sun4i-spdif: Add clock multiplier settings
    ccb01198f01d libbpf: Fix segfault due to libelf functions not setting errno
    8d0c37831e28 tools/testing/selftests/bpf/test_tc_tunnel.sh: Fix wait for server bind
    3676e5741739 libbpf: don't adjust USDT semaphore address if .stapsdt.base addr is missing
    352daa50946c net/rose: prevent integer overflows in rose_setsockopt()
    617d7308bd38 tcp_cubic: fix incorrect HyStart round start detection
    88fd5db8c007 net: ethernet: ti: am65-cpsw: fix freeing IRQ in am65_cpsw_nuss_remove_tx_chns()
    e3c1a0e4ba0a netfilter: nft_flow_offload: update tcp state flags under lock
    d9aaae892d46 netfilter: nf_tables: fix set size with rbtree backend
    c80fcb6caa9b netfilter: nft_set_rbtree: prefer sync gc to async worker
    b7e81ae38643 netfilter: nft_set_rbtree: rename gc deactivate+erase function
    6f8277b97ad4 netfilter: nf_tables: de-constify set commit ops function argument
    7e2bd8c13b07 net: sched: Disallow replacing of child qdisc from one parent to another
    2f29127e94ae net: avoid race between device unregistration and ethnl ops
    f9ad8c928921 octeon_ep: remove firmware stats fetch in ndo_get_stats64
    cf7d4b9ca534 net/mlxfw: Drop hard coded max FW flash image size
    6ce38b5a6a49 net: let net.core.dev_weight always be non-zero
    627f67b6d099 selftests/landlock: Fix error message
    c7efca80bdec pwm: stm32: Add check for clk_enable()
    b8e33f0a3c86 clk: analogbits: Fix incorrect calculation of vco rate delta
    5960f4d87398 inet: ipmr: fix data-races
    1c73ffb62422 wifi: cfg80211: adjust allocation of colocated AP data
    1138cf80bbbf wifi: cfg80211: Handle specific BSSID in 6GHz scanning
    2c23036b53a0 selftests: harness: fix printing of mismatch values in __EXPECT()
    e75ae3db46b5 selftests: timers: clocksource-switch: Adapt progress to kselftest framework
    dc343336b7c0 cpufreq: ACPI: Fix max-frequency computation
    5f97a0b96e14 wifi: mt76: mt7996: fix ldpc setting
    7fd26afa1da9 wifi: mt76: mt7996: fix incorrect indexing of MIB FW event
    b9288a136a0a wifi: mt76: mt7996: fix HE Phy capability
    b20cda1df8ba wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU
    566b749f0d64 wifi: mt76: mt7996: add max mpdu len capability
    0d6961b57365 wifi: mt76: mt7996: fix register mapping
    59e4ebeb43f2 wifi: mt76: mt7915: fix register mapping
    1e474cbe5db6 wifi: mt76: mt7915: fix omac index assignment after hardware reset
    c71d2db21f15 wifi: mt76: mt7915: improve hardware restart reliability
    9d19f26ecf26 wifi: mt76: connac: move mt7615_mcu_del_wtbl_all to connac
    72eabd4c1986 wifi: mt76: mt7915: firmware restart on devices with a second pcie link
    7a249ebfc80e wifi: mt76: mt7996: fix rx filter setting for bfee functionality
    987e8224da66 wifi: mt76: mt7915: fix overflows seen when writing limit attributes
    b823e541dcc1 wifi: mt76: mt7921: fix using incorrect group cipher after disconnection.
    824813ea30a5 wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO
    39bb3d56f1c3 landlock: Handle weird files
    d433ccd98736 net/smc: fix data error when recvmsg with MSG_PEEK flag
    d0edcd0d18d7 clk: ralink: mtmips: remove duplicated 'xtal' clock for Ralink SoC RT3883
    cf21ef3d4308 wifi: mac80211: don't flush non-uploaded STAs
    43b67fb2fea3 wifi: mac80211: Fix common size calculation for ML element
    69226421a5bc wifi: mac80211: fix tid removal during mesh forwarding
    d36e48a4d81c wifi: mac80211: prohibit deactivating all links
    a4ba608bd427 wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC
    849fb90ccc3d wifi: wlcore: fix unbalanced pm_runtime calls
    9450b3c3c4ff samples/landlock: Fix possible NULL dereference in parse_path()
    e30d21ed451d mfd: syscon: Fix race in device_node_get_regmap()
    4bbe56ed428d mfd: syscon: Use scoped variables with memory allocators to simplify error paths
    b45fd493da18 mfd: syscon: Add of_syscon_register_regmap() API
    d6c5f73c31f0 mfd: syscon: Remove extern from function prototypes
    c2c3949cebef leds: cht-wcove: Use devm_led_classdev_register() to avoid memory leak
    68834217baaf HID: fix generic desktop D-Pad controls
    ae730deded66 HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check
    1efa37f8b548 clk: qcom: gcc-sdm845: Do not use shared clk_ops for QUPs
    eb47144d9111 wifi: ath12k: fix tx power, max reg power update to firmware
    2851acb600d6 ipmi: ssif_bmc: Fix new request loss when bmc ready for a response
    7ec98ebb38dc OPP: OF: Fix an OF node leak in _opp_add_static_v2()
    7705d8a7f2c2 ax25: rcu protect dev->ax25_ptr
    d54308079d05 regulator: of: Implement the unwind path of of_regulator_match()
    32d90424651b clk: sunxi-ng: a64: stop force-selecting PLL-MIPI as TCON0 parent
    e121a4f42b4d clk: sunxi-ng: a64: drop redundant CLK_PLL_VIDEO0_2X and CLK_PLL_MIPI
    11f5bdeff93e dt-bindings: clock: sunxi: Export PLL_VIDEO_2X and PLL_MIPI
    184a564e6000 team: prevent adding a device which is already a team device lower
    a32da24ef8cc clk: imx8mp: Fix clkout1/2 support
    3319bebda6df cpufreq: qcom: Implement clk_ops::determine_rate() for qcom_cpufreq* clocks
    f757327c4ce6 cpufreq: qcom: Fix qcom_cpufreq_hw_recalc_rate() to query LUT if LMh IRQ is not available
    b38f66273f89 gpio: pca953x: log an error when failing to get the reset GPIO
    f66aed661bf2 gpio: pca953x: Fully convert to device managed resources
    e657dc10c4d4 gpio: pca953x: Drop unused fields in struct pca953x_platform_data
    50bcea7af924 cpufreq: schedutil: Fix superfluous updates caused by need_freq_update
    0f06dd950d04 pwm: stm32-lp: Add check for clk_enable()
    280fb099c1dd inetpeer: do not get a refcount in inet_getpeer()
    e22c073471b5 inetpeer: update inetpeer timestamp in inet_getpeer()
    cb8449c34910 inetpeer: remove create argument of inet_getpeer()
    fdaa6b3c7e36 inetpeer: remove create argument of inet_getpeer_v[46]()
    d01e6a675950 leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata()
    7fd7fd629a33 dt-bindings: mfd: bd71815: Fix rsense and typos
    97294d480d4b cpupower: fix TSC MHz calculation
    45f1432e74d1 ACPI: fan: cleanup resources in the error path of .probe()
    19958067c4be wifi: brcmfmac: add missing header include for brcmf_dbg
    3afc51492ad9 regulator: dt-bindings: mt6315: Drop regulator-compatible property
    2d259ac7e0c5 HID: multitouch: fix support for Goodix PID 0x01e9
    c2fe1678e04d wifi: rtlwifi: pci: wait for firmware loading before releasing memory
    624cea89a086 wifi: rtlwifi: fix memory leaks and invalid access at probe error path
    c37901c0c8eb wifi: rtlwifi: destroy workqueue at rtl_deinit_core
    465d01ef6962 wifi: rtlwifi: remove unused check_buddy_priv
    43c47210dae3 dt-bindings: leds: class-multicolor: Fix path to color definitions
    1ffbe3a0b816 clk: fix an OF node reference leak in of_clk_get_parent_name()
    914ef7d1a702 of: remove internal arguments from of_property_for_each_u32()
    8b84c2cee295 clk: si5351: allow PLLs to be adjusted without reset
    2321288c4357 serial: sc16is7xx: use device_property APIs when configuring irda mode
    0523ac72a8d8 dt-bindings: mmc: controller: clarify the address-cells description
    9c6702260557 rxrpc: Fix handling of received connection abort
    6bb87d8823d4 spi: zynq-qspi: Add check for clk_enable()
    833e9a1c27b8 net_sched: sch_sfq: don't allow 1 packet limit
    58ae7465f0e7 net_sched: sch_sfq: handle bigger packets
    ab18d76f7852 net_sched: sch_sfq: annotate data-races around q->perturb_period
    e95f9c408ff8 wifi: wcn36xx: fix channel survey memory allocation size
    568460c3c935 wifi: rtlwifi: usb: fix workqueue leak when probe fails
    82a843e949f7 wifi: rtlwifi: fix init_sw_vars leak when probe fails
    20893ffe7a48 wifi: rtlwifi: wait for firmware loading before releasing memory
    d8a376b7b5f5 wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step
    b304e1f7edc5 wifi: rtlwifi: do not complete firmware loading needlessly
    f4b764d99183 wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855
    4c9caf86d04d ipmi: ipmb: Add check devm_kasprintf() returned value
    20412f04bce8 genirq: Make handle_enforce_irqctx() unconditionally available
    c9d24e47419b drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini()
    e576f132cb42 drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE
    41b72c3401a3 drm/msm: Check return value of of_dma_configure()
    d69ded4b4fd3 drm/msm/dpu: link DSPP_2/_3 blocks on SM8550
    d44b7452a58d drm/msm/dpu: link DSPP_2/_3 blocks on SM8350
    ab3077fe61b8 drm/msm/dpu: link DSPP_2/_3 blocks on SM8250
    4ec5e1495ffe drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X
    396c05f170da drm/msm/dpu: link DSPP_2/_3 blocks on SM8150
    84ff05c9bd57 OPP: fix dev_pm_opp_find_bw_*() when bandwidth table not initialized
    eb6ffa0192ba OPP: add index check to assert to avoid buffer overflow in _read_freq()
    753c018fce5a drm/amdgpu/vcn: reset fw_shared under SRIOV
    26862f0223ef drm/rockchip: vop2: include rockchip_drm_drv.h
    b7a2cc4952d1 drm/rockchip: move output interface related definition to rockchip_drm_drv.h
    b126c585fa3a drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8
    674bb131f70b drm/rockchip: vop2: Fix the windows switch between different layers
    66eeb05b7f7d drm/rockchip: vop2: set bg dly and prescan dly at vop2_post_config
    a56ec21a2972 drm/rockchip: vop2: Set YUV/RGB overlay mode
    0b12c1f8c557 drm/rockchip: vop2: Fix the mixer alpha setup for layer 0
    556178977bfe drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset
    6a30634a2e0f drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table
    d0c34936c3bb drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config()
    ed3d38834764 HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections
    f029961b2d47 drm/etnaviv: Fix page property being used for non writecombine buffers
    d453d03a5e71 drm/msm/dp: set safe_to_exit_level before printing it
    ccfdd3e19c79 x86/topology: Use x86_sched_itmt_flags for PKG domain unconditionally
    046cf2bacea6 x86/cpu: Enable SD_ASYM_PACKING for PKG domain on AMD
    cbef443cab0e sched/topology: Rename 'DIE' domain to 'PKG'
    32fe5c4c3e55 sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat
    c0dbecb204cf perf/core: Save raw sample data conditionally based on sample type
    c89b19e96281 afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call
    db996ed19901 nvme: fix bogus kzalloc() return check in nvme_init_effects_log()
    e1951c169377 select: Fix unbalanced user_access_end()
    a6cfeb1c2850 partitions: ldm: remove the initial kernel-doc notation
    525dc0f60469 nvme: Add error path for xa_store in nvme_init_effects
    136f70dc96b8 selftests/powerpc: Fix argument order to timer_sub()
    48ef61d25e79 nvme: Add error check for xa_store in nvme_get_effects_log
    df62fac30c06 pstore/blk: trivial typo fixes
    d208d2c52b65 nbd: don't allow reconnect after disconnect
    b1e537fa2307 block: retry call probe after request_module in blk_request_module
    5aa2d3a88726 fs: fix proc_handler for sysctl_nr_open
    a5e157074798 afs: Fix cleanup of immediately failed async calls
    7e8ea8e80a46 afs: Fix directory format encoding struct
    684ce13e3f1a afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY
    5ee9c048089f dlm: fix srcu_read_lock() return type to int
    905507850170 powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: de820279ecffd9102807c58701a09fbf52be0a65)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:42 -07:00
Vijay Anusuri
83284e1efa vim: Upgrade 9.1.1115 -> 9.1.1198
This includes CVE-fix for CVE-2025-27423 and CVE-2025-29768

Changes between 9.1.1115 -> 9.1.1198
====================================
https://github.com/vim/vim/compare/v9.1.1115...v9.1.1198

(From OE-Core rev: a6cf72f3a01d8e6ea310d6759d5b98813e3edaac)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 8e540bd287fd56e3a714f81395b59dd508a6d957)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:42 -07:00
Divya Chellam
ba85fa8c93 ruby: fix CVE-2025-27220
In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial
of Service (ReDoS) vulnerability exists in the Util#escapeElement method.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-27220

Upstream-patch:
cd1eb08076

(From OE-Core rev: 8c31f8e142894f103409ee10deccc22fdeea897c)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:42 -07:00
Madhu Marri
f82d945d50 qemu 8.2.7: ignore CVE-2023-1386
Upstream Repository: https://gitlab.com/qemu-project/qemu.git

Bug Details:  https://nvd.nist.gov/vuln/detail/CVE-2023-1386
Type: Security Advisory
CVE: CVE-2023-1386
Score: 3.3

Analysis:
- According to redhat[1] this CVE has closed as not a bug.

Reference:
[1] https://bugzilla.redhat.com/show_bug.cgi?id=2223985

(From OE-Core rev: 6a5d9e3821246c39ec57fa483802e1bb74fca724)

Signed-off-by: Madhu Marri <madmarri@cisco.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:08:42 -07:00
Antonin Godard
9036bc090c overview-manual/concepts: remove PR from the build dir list
PR was removed by cc83e4548465 ("bitbake.conf: Drop PE and PR from
WORKDIR and STAMP") on OE-Core.

(From yocto-docs rev: 56db4fd81f6235428bef9e46a61c11ca0ba89733)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d7a1038ee7c8c463623f0996963f9e8f29d40555)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-26 08:48:51 -07:00
Denys Dmytriyenko
52bee5a085 nativesdk-libtool: sanitize the script, remove buildpaths
Use the same sed command to sanitize libtool script for target recipe
and nativesdk one. Otherwise fails with buildpaths QA error:

ERROR: nativesdk-libtool-2.5.0-r0 do_package_qa: QA Issue: File /usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-pokysdk-linux/usr/bin/libtool in package nativesdk-libtool contains reference to TMPDIR [buildpaths]

(From OE-Core rev: f08df9adf290fb6cbebff24df6bbbbe8e5ce95e0)

Upstream-Status: Backport[https://git.yoctoproject.org/poky/commit/?id=89e184da6c9d95a99fd34334df5ac6c5ae87f13a]

(From OE-Core rev: a720df7ad77af1f8b1c00a211c88537e5f23edbc)

Signed-off-by: Denys Dmytriyenko <denys@konsulko.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 89e184da6c)
Signed-off-by: Nikhil R <nikhilr5@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-26 08:48:51 -07:00
Denys Dmytriyenko
25a23bd2d5 gcc: unify cleanup of include-fixed, apply to cross-canadian
Since target and cross variants were already doing similar cleanup
of include-fixed headers, as those aren't used, unify the code and
also apply the same to cross-canadian variant.

Some of those header files get processed with a tool that leaves
absolute buildpaths inside the file's commented section, causing
QA errors. Since those aren't used, let's remove them.

This may be a temporary solution until the tool itself gets fixed
to not embed absolute buildpaths in the header files:
https://lists.openembedded.org/g/openembedded-core/topic/107268307

(From OE-Core rev: 621e0ac9308cc163fb767a27d63fff6570896b92)

Signed-off-by: Denys Dmytriyenko <denys@konsulko.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-26 08:48:51 -07:00
Makarios Christakis
157b779e76 icu: Adjust ICU_DATA_DIR path on big endian targets
On big-endian systems the preprocessor define ICU_DATA_DIR
is currently being set to a path ending with the ${PV} of
the recipe.

The PV version string has changed to a '-' separator
since oe-core commit cebe8439cdc656d53355506a31a3782312bf03c5
whereas the build system installs the data files into a
path ending with the dot-separated version of ICU.

This causes the ICU data file to not be detected at runtime,
consequently breaking any dependant applications.

We therefore substitute ${PV} with the dot-separated version
string of ICU, as returned from the icu_install_folder function,
on the ICU_DATA_DIR define on big-endian targets.

(From OE-Core rev: 345ebe7046eab4a0588aa33c595f48cfe90f899e)

Signed-off-by: Makarios Christakis <makchrbiz@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 28cdc0110def011e3d690da1d591076385267ef7)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-26 08:48:51 -07:00
Vijay Anusuri
985aeff01a libxslt: upgrade 1.1.39 -> 1.1.43
Include fixes for CVE-2024-24855 and CVE-2024-55549

Release Notes:
https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.43

Remove mem-debug option [1]

[1] c65a7c05f9

(From OE-Core rev: 7196f0a9a9f31c8692cd54877e6a34d10947b5c7)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-26 08:48:51 -07:00
Peter Marko
8cde060aa3 xserver-xorg: mark CVEs fixed in 21.1.16 as fixed
These are tracked as versionless redhat CVEs in NVD DB.

(From OE-Core rev: 84b1631bcbead1409ff44a1ed430244784c382be)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-26 08:48:51 -07:00
Steve Sakoman
dcb242eb19 Revert "gcc-cross-canadian.inc: Fix buildpaths error for pthread.h"
This patch is causing build failures where pthread.h does not exist:

sed: can't read
No such file or directory

This reverts commit d3c294ee0afe4d2eb46320945d41064ebfb5cbff.

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-20 07:36:10 -07:00
Sana Kazi
8f74fa4073 gcc-cross-canadian.inc: Fix buildpaths error for pthread.h
Replace the hardcoded path with /not/exist as used for other
options[--with-sysroot] to ensure pthread.h does not contain
hardocded references to TMPDIR:

ERROR: gcc-cross-canadian-x86-64-13.3.0-r0 do_package_qa: QA Issue:
File /usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-pokysdk-linux/
usr/lib/x86_64-poky-linux/gcc/x86_64-poky-linux/13.3.0/include-fixed/
pthread.h in package gcc-cross-canadian-x86-64 contains reference to
TMPDIR [buildpaths]

(From OE-Core rev: d3c294ee0afe4d2eb46320945d41064ebfb5cbff)

Signed-off-by: Sana Kazi <sanakazi720@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-19 07:25:56 -07:00
Oleksandr Hnatiuk
8f52a92dbb gcc: remove paths to sysroot from configargs.h and checksum-options for gcc-cross-canadian
Apply fixes from gcc-cross (84a78f46d594 and 0ead8cbdfb96) to gcc-cross-canadian.
This will improve (but not fix) reproducibility of gcc-cross-canadian.
Also move this code to functions to avoid code duplication.

[RP: Tweak patch to make the function parameters clear and fix quoting issues
ensuring the code exactly matches the original replacements with an additional
parameter.]

(From OE-Core rev: 350ff7d53f7506de2bc01f0efc569b8294b9afea)

(From OE-Core rev: b1aa13b9f656666458189d4dae0c25564abe2f25)

Signed-off-by: Oleksandr Hnatiuk <ohnatiuk@cisco.com>
Signed-off-by: Denys Dmytriyenko <denys@konsulko.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f1ad5be433)
Signed-off-by: Sana Kazi <sanakazi720@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-19 07:25:56 -07:00
Zhang Peng
6b6beab939 mpg123: upgrade 1.32.6 -> 1.32.10
Changelog:
==========
1.32.10
  - scripts/tag_lyrics.py: fix for python3
  - libout123: Use strtok_r() to avoid conflicts multithreaded contexts
  - libmpg123: Un-break DLL builds that need I/O functions defined in libmpg123.c
  - ports/cmake: More fixup to also produce .pc files with Libs.private.
1.32.9
  - libmpg123:
    -- enable 64 bit offset path for MSVCRT and avoid warnings about
       MS's game about POSIX API with and without underscores
    -- Increase the library patchlevel, as was forgotten on previous
      release.
1.32.8
  Update: The buffer overflow got assigned the CVE ID CVE-2024-10573.
  - libmpg123:
    -- Add sections to assembly to support PAC/BTI code
       for aarch64 (-mbranch-protection variants)
    -- Prevent premature application of header info into decoding structure,
       at worst having triggered out-of-bounds writes of decoded PCM data
  - out123: Show --quiet in --longhelp.
1.32.7
  - ports/cmake: Work around bug in CMake that does not detect FPU on Apple ARM CPUs.
  - Fix some laziness (func() to func(void)) for standards conformance.

(From OE-Core rev: a3db638932e76ac0972d7905072cc7ab3f2abb75)

Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-19 07:25:56 -07:00
Peter Marko
abc7c3eeab libarchive: patch CVE-2025-1632 and CVE-2025-25724
Pick commit referencing this MR which was merged to master.

(From OE-Core rev: a4ff82c789d50a3f411170636679ce46c8f84b25)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-19 07:25:56 -07:00
Changqing Li
d243dbc41b babeltrace2: extend to nativesdk
This allows anyone using the SDK to be able to analyze the logs
collected on target

(From OE-Core rev: b00b0d744a1768843386cfd529b73cc17c88bec9)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Changqing Li
1b87b3fefb babeltrace: extend to nativesdk
This allows anyone using the SDK to be able to analyze the logs
collected on target

(From OE-Core rev: b422b4d3c04fb04fddb22da82aa91c39f1b54b2a)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Vijay Anusuri
5615291af4 xserver-xorg: upgrade 21.1.15 -> 21.1.16
Includes security fix

  * CVE-2025-26594
  * CVE-2025-26595
  * CVE-2025-26596
  * CVE-2025-26597
  * CVE-2025-26598
  * CVE-2025-26599
  * CVE-2025-26600
  * CVE-2025-26601

Ref: https://lists.x.org/archives/xorg-announce/2025-February/003584.html
     https://lists.x.org/archives/xorg-announce/2025-February/003585.html

(From OE-Core rev: 60d1d54a1c23f007434a1f2c1940fd8ccabe656f)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b5491688a045e52b2a1a00d04b746ed6af456784)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Ross Burton
f0ba45e07d xserver-xf86-config: remove obsolete configuration files
For reasons we have explicit xorg.conf files for a number of the qemu
machines, but not all of them. These mainly disabled screen blanking
(which is now down with a separate fragment) but also explictly set the
device driver to fbdev which meant they didn't use the modesettings
driver as they should (with the virtio framebuffer from qemu).

This is the root cause of why the xserver 21.1.16 upgrade doesn't work
on a number of machines: the /sys probing changed and the fbdev driver
now refuses to use the PCI framebuffer device as there are better
drivers, but we've explictly told xorg to use the wrong driver.

For more details, see https://gitlab.freedesktop.org/xorg/xserver/-/issues/1798.

(From OE-Core rev: ccbb0f5491e13d61015872fba93417b91c3213a2)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 8c8039bf4c2d011e3d12c970ce45036b184902a9)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Ross Burton
e3e29d6cb7 xserver-xf86-config: add a configuration fragment to disable screen blanking
Add a configuration fragment that disables screen blanking, and add it
to all qemu machines.

(From OE-Core rev: bb16526a4a0c39b6c156edbf68c7377bfdfa0bd1)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 780a5ccaa51d5aed18200883a686387e70847e4b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Wang Mingyu
f388746046 xserver-xorg: upgrade 21.1.14 -> 21.1.15
(From OE-Core rev: 1fdd0a6824f34ce18c4adac8f0014935896b3e21)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit ba94110d70ebfb1b4798ecf05389f7ea602b1f55)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Divya Chellam
9714332c7b vim: Upgrade 9.1.1043 -> 9.1.1115
This includes CVE-fix for CVE-2025-26603 and CVE-2025-1215

Changes between 9.1.1043 -> 9.1.1115
====================================
https://github.com/vim/vim/compare/v9.1.1043...v9.1.1115

(From OE-Core rev: f390badfe5b3a1a8cc70051075a5e641ff5abf2c)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
700657a6e7 grub: patch CVE-2025-0678 and CVE-2025-1125
Cherry-pick patch mentioning these CVEs.

(From OE-Core rev: d96bf8ec82ed07c006167e15f7aa0d5e81440977)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
c5b4efb1b0 grub: patch CVE-2025-0677, CVE-2025-0684, CVE-2025-0685, CVE-2025-0686 and CVE-2025-0689
Cherry-pick patch mentioning these CVEs.

(From OE-Core rev: f25e1296b8265414061b0b8f12110c6ee22bc7be)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
6a280848be grub: patch CVE-2024-45778 and CVE-2024-45779
Cherry-pick patch mentioning these CVEs.

(From OE-Core rev: eb9811ef2a38f1dcd4074eef6f809fd63e98454f)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
e39736012b grub: patch CVE-2025-1118
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: 77abb78b5d4dd0e54b656170c03ac68b919b8784)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
f3aada6039 grub: patch CVE-2025-0690
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: d9fb00f71380ad39ea5b61e60c4f458371460862)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
5690f247a4 grub: patch CVE-2024-45777
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: 2ec4bcda16b92cabf7cf5cb7c68cbe45da269364)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
322d87b846 grub: patch CVE-2024-45776
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: e1e13086f38b021a8aabfe8d044b5755d62ee846)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
c7e339c0c7 grub: patch CVE-2025-0622
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: d9d99bd5baddcb0438e0c28ab6e302ee9fa0c327)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
0dedd305c7 grub: patch CVE-2024-45775
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: 4e01993bf71d3b8e2375ab43857b671738953507)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
bfc2c48c83 grub: patch CVE-2024-45774
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: f24f2dc0b7504508357cbe5d5f7a577639a6548e)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
a608a3df02 grub: patch CVE-2025-0624
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: 0c860bf1765b49a7540ae3cb206ce09cf25f30a7)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
fa7c2c327b grub: patch CVE-2024-45783
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: 70a15bc790025e3241274d3e92674928c41537b6)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
7ca876a09a grub: patch CVE-2024-45780
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: f3a14813ed012904e64fd9897ea4ddaf622059dd)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
678750a33b grub: patch CVE-2024-45782 and CVE-2024-56737
Cherry-pick patch mentioning these CVEs.

(From OE-Core rev: 61268080ba160a4965873ba5aad6ebbfd1ee2fe1)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
f475700be6 grup: patch CVE-2024-45781
Cherry-pick patch mentioning this CVE.

(From OE-Core rev: 120d8cc7b91654557a3101a5f8fda44fb703e5b2)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
8a84d05ced grub: backport strlcpy function
It is used to fix multiple CVEs.

(From OE-Core rev: c12baf254a37ff4921c2be0e4d3f626a91980d1a)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Peter Marko
42a576f335 grub: drop obsolete CVE statuses
CVE-2021-46705 was needed only with 2.06
CVE-2023-4692 and CVE-2023-4693 were fixed in NVD DB meanwhile

(From OE-Core rev: fab492f32a8630a353d307119dd4109dac81ad45)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Niko Mauno
7543e4e24a cve-check.bbclass: Mitigate symlink related error
According to Yocto reference manual, in description of the
IMAGE_LINK_NAME variable, it is said that

  It is possible to set this to "" to disable symlink creation,
  however, you also need to set :term:`IMAGE_NAME` to still have
  a reasonable value e.g.::

    IMAGE_LINK_NAME = ""
    IMAGE_NAME = "${IMAGE_BASENAME}${IMAGE_MACHINE_SUFFIX}${IMAGE_VERSION_SUFFIX}"

However, when using following additions in local.conf file:

  INHERIT += "cve-check"
  IMAGE_LINK_NAME = ""
  IMAGE_NAME = "${IMAGE_BASENAME}${IMAGE_MACHINE_SUFFIX}${IMAGE_VERSION_SUFFIX}"

the implicit symlink creation in cve_check_write_rootfs_manifest leads
to following build failure

  $ bitbake core-image-minimal core-image-base
  ...
  ERROR: core-image-base-1.0-r0 do_image_complete: Recipe core-image-base is trying to install files into a shared area when those files already exist. The files and the manifests listing them are:
    /home/poky/build/tmp/deploy/images/qemux86-64/.json
      (matched in manifest-qemux86_64-core-image-minimal.image_complete)
  Please adjust the recipes so only one recipe provides a given file.

Mitigate the issue by creating the symlink only in case IMAGE_LINK_NAME
has not been set to empty string.

(From OE-Core rev: 64bfec359bd909761ce0a6a716286d938ed162d1)

(From OE-Core rev: 35e210e3ebe21f1f4466760076b7140618af536e)

Signed-off-by: Niko Mauno <niko.mauno@vaisala.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:08 -07:00
Ross Burton
216fcf2458 puzzles: ignore three new CVEs for a different puzzles
As we just match on product by default, ignore three CVEs which are
for the "Puzzles" WordPress theme by ThemeREX (CPE themerex:puzzles).

(From OE-Core rev: 87326573c82ac1e8dc335319442236ef2341501e)

(From OE-Core rev: 9543945bb935e9a3e2bfbf731412188fc52ad2c9)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:07 -07:00
Ashish Sharma
1c48e482e2 ruby: Fix CVE-2025-27219
Upstream-Status: Backport from [9907b76dad]

(From OE-Core rev: 7e0a96b5c0b7a5ca593df83861086d0980ea72e9)

Signed-off-by: Ashish Sharma <asharma@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:07 -07:00
Archana Polampalli
3d975e8f01 openssh: fix CVE-2025-26465
A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled.
A machine-in-the-middle attack can be performed by a malicious machine impersonating
a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific
conditions when verifying the host key. For an attack to be considered successful,
the attacker needs to manage to exhaust the client's memory resource first, turning
the attack complexity high.

(From OE-Core rev: 60b5df194a5bea491489fdae2f32e33ffd21c9c7)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:07 -07:00
Richard Purdie
83fda1bb2e bitbake: event/utils: Avoid deadlock from lock_timeout() and recursive events
We've been seeing intermittent failures on Ubuntu 22.04 in oe-selftest which
were problematic to debug. The failure was inside lock_timeout and once that was
identified and the backtrace obtained, the problem becomes clearer:

  File "X/bitbake/lib/bb/server/process.py", line 466, in idle_thread_internal
    retval = function(self, data, False)
  File "X/bitbake/lib/bb/command.py", line 123, in runAsyncCommand
    self.cooker.updateCache()
  File "X/bitbake/lib/bb/cooker.py", line 1629, in updateCache
    self.parser = CookerParser(self, mcfilelist, total_masked)
  File "X/bitbake/lib/bb/cooker.py", line 2141, in __init__
    self.bb_caches = bb.cache.MulticonfigCache(self.cfgbuilder, self.cfghash, cooker.caches_array)
  File "X/bitbake/lib/bb/cache.py", line 772, in __init__
    loaded += c.prepare_cache(progress)
  File "X/bitbake/lib/bb/cache.py", line 435, in prepare_cache
    loaded = self.load_cachefile(progress)
  File "X/bitbake/lib/bb/cache.py", line 516, in load_cachefile
    progress(cachefile.tell() + previous_progress)
  File "X/bitbake/lib/bb/cache.py", line 751, in progress
    bb.event.fire(bb.event.CacheLoadProgress(current_progress, cachesize),
  File "X/bitbake/lib/bb/event.py", line 234, in fire
    fire_ui_handlers(event, d)
  File "X/bitbake/lib/bb/event.py", line 210, in fire_ui_handlers
    _ui_handlers[h].event.send(event)
  File "X/bitbake/lib/bb/cooker.py", line 117, in send
    str_event = codecs.encode(pickle.dumps(event), \'base64\').decode(\'utf-8\')
  File "/usr/lib/python3.10/asyncio/sslproto.py", line 320, in __del__
    _warn(f"unclosed transport {self!r}", ResourceWarning, source=self)
  File "/usr/lib/python3.10/warnings.py", line 109, in _showwarnmsg
    sw(msg.message, msg.category, msg.filename, msg.lineno,
  File "X/bitbake/lib/bb/main.py", line 113, in _showwarning
    warnlog.warning(s)
  File "/usr/lib/python3.10/logging/__init__.py", line 1489, in warning
    self._log(WARNING, msg, args, **kwargs)
  File "/usr/lib/python3.10/logging/__init__.py", line 1624, in _log
    self.handle(record)
  File "/usr/lib/python3.10/logging/__init__.py", line 1634, in handle
    self.callHandlers(record)
  File "/usr/lib/python3.10/logging/__init__.py", line 1696, in callHandlers
    hdlr.handle(record)
  File "/usr/lib/python3.10/logging/__init__.py", line 968, in handle
    self.emit(record)
  File "X/bitbake/lib/bb/event.py", line 778, in emit
    fire(record, None)
  File "X/bitbake/lib/bb/event.py", line 234, in fire
    fire_ui_handlers(event, d)
  File "X/bitbake/lib/bb/event.py", line 197, in fire_ui_handlers
    with bb.utils.lock_timeout(_thread_lock):
  File "/usr/lib/python3.10/contextlib.py", line 135, in __enter__
    return next(self.gen)
  File "X/bitbake/lib/bb/utils.py", line 1888, in lock_timeout
    bb.server.process.serverlog("Couldn\'t get the lock for 5 mins, timed out, exiting. %s" % traceback.format_stack())

or put in simpler terms, whilst sending an event(), an unrelated warning
message happens to be triggered from asyncio:

/usr/lib/python3.10/asyncio/sslproto.py:320: ResourceWarning: unclosed transport <asyncio.sslproto._SSLProtocolTransport object at 0x7f0e797d3100>

which triggers a second event() which can't be sent as we're already
in the critcal section and already hold the lock.

That warning is due to the version of asyncio used on Ubuntu 22.04 with
python 3.10 and that comined with timing issues explains why we don't
see it on other python versions or distros.

We can't handle the second event as the lock is there to serialise the
events. Instead, we queue the event and then process the queue later.

Add a new version of lock_timeout which allows us to handle the situation
more gracefully.

(Bitbake rev: 696c2c1ef095f8b11c7d2eff36fae50f58c62e5e)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 2c590ff1aff89d23b25ce808650f200013a1e6af)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:07 -07:00
Richard Purdie
7eea22a7cd bitbake: utils: Add signal blocking for lock_timeout
We never want to exit whilst holding these locks as it deadlocks all python
threads. Add signal blocking around the lock critical part so a signal
shouldn't cause such an exit.

(Bitbake rev: 5cc1dde1ffd9382b3a9e4cc182be067defba16a7)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a097755c671e2b530dea6200a94b39fa9dca246c)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:07 -07:00
Richard Purdie
7985134409 bitbake: utils: Tweak lock_timeout logic
We should really try and take the lock in the try/finally block so that
in some rare cases such as badly timed interrupt/signal, we always release
the lock.

(Bitbake rev: 5dbbca616a71047fc3573a2be49846d5c9cdd15a)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a9eb8bf7174b6962b5ba07192fe95b8c7112d9d2)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:07 -07:00
Richard Purdie
e9aa48f807 bitbake: utils: Print information about lock issue before exiting
(Bitbake rev: d41fad7fadde59dd63647bbbeb074604314bf310)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit cdf6c51a064f8f335c3262b7f102618996f1a229)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-15 06:40:07 -07:00
Steve Sakoman
dc4827b366 build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: cd2b6080a4c0f2ed2c9939ec0b87763aef595048)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-10 12:34:01 -07:00
Steve Sakoman
dc4fe2810d poky.conf: bump version for 5.0.8
(From meta-yocto rev: afa9ec665d1197d9289a86d30389be0cc037d739)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-10 12:32:02 -07:00
Steve Sakoman
abb2d98e55 poky.conf: add ubuntu2404 to SANITY_TESTED_DISTROS
(From meta-yocto rev: 74e211b936f8c2897d2b6e6b554cc419e352f267)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-10 12:32:02 -07:00
Vijay Anusuri
e9bddcfed4 libtasn1: upgrade 4.19.0 -> 4.20.0
* Noteworthy changes in release 4.20.0 (2025-02-01) [stable]
- The release tarball is now reproducible.
- We publish a minimal source-only tarball generated by 'git archive'.
- Update gnulib files and various build/maintenance fixes.
- Fix CVE-2024-12133: Potential DoS in handling of numerous SEQUENCE OF or SET
OF elements

License-Update: file COPYING.LESSER renamed to COPYING.LESSERv2 & Copyright year updated to 2025

(From OE-Core rev: fc5814dfa49c67157def00b323656f15e8bc457b)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-10 12:30:52 -07:00
Alessio Cascone
103af48c36 tzcode-native: Fix compiler setting from 2023d version
Starting from 2023d version, tzcode makefile does not use anymore "cc"
variable for C compiler, due to Makefile refactoring.
Replacing "cc" with "CC" fixes the issue.

(From OE-Core rev: c297d2cd8d28463adca5158c9895f1492754d569)

Signed-off-by: Alessio Cascone <alessio.cascone@vimar.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b3cdfca5ef84ed2054faef9abddef3aeed930e17)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-10 12:30:52 -07:00
Priyal Doshi
14a67aa5b4 tzdata/tzcode-native: upgrade 2024b -> 2025a
(From OE-Core rev: 34b0f99ffd9beab4d400b05f259fc26f3da0386b)

Signed-off-by: Priyal Doshi <pdoshi@mvista.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a15c4e6793c55c8084a61298ef3695e1db2f60cd)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-10 12:30:52 -07:00
Ross Burton
357eb84b2a ref-manual: remove OE_IMPORTS
oe-core no longer supports OE_IMPORTS[1], so remove the documentation.

[1] oe-core 1f56155e ("base: Switch to use addpylib directive and
    BB_GLOBAL_PYMODULES")

(From yocto-docs rev: 7d3cce5b962ca9f73b29affceb7ebc6710627739)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d03dad11974ada7a99b4406e2350b9f5f0acc746)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Ross Burton
84abedb894 ref-manual: don't refer to poky-lsb
This was removed in 2019, so swap it for poky-altcfg.

(From yocto-docs rev: f0348f44008b6f89ed1119497fe2dcd230691625)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 7f7f6570befdda280c174a5f9776b20f53f3ea0d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Ross Burton
88bcd3c2c1 Remove all mention of core-image-lsb
core-image-lsb was removed in 2019[1], so remove all of the  incredibly
obsolete references in the documentation.

[1] oe-core fb064356af615d67d85b65942103bf943d84d290

(From yocto-docs rev: 05029257d0c5f090d5c0a96c6244bfaf40615178)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 062445a49919eff117b5478c1fb18d125c1f895c)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Lee Chee Yang
d62bca9240 migration-guides: add release notes for 4.0.25
(From yocto-docs rev: 0bf41c5366c4ca7982336e433f69f88c7ea98fa6)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 4649514cdfae496f43711d6b830a0a835c3a1534)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Alexis Cellier
b5b0e1fc3d systemd: add libpcre2 as RRECOMMENDS if pcre2 is enabled
The libpcre2 is now dlopen'ed, so it is not automatically added to the
RDEPENDS anymore. Add it to the RRECOMMENDS list (and not RDEPENDS as
systemd tags the library as "suggested").

This issue is not on master, the systemd v257 recipe uses a tool that
systemd provides to get this kind of dependencies. But this cannot be
backported to scarthgap as systemd v255 does not have this tool yet.

Cc: Yoann Congal <yoann.congal@smile.fr>
(From OE-Core rev: 45fc7048c511c433ecc23840fe6fdd61f6366a47)

Signed-off-by: Alexis Cellier <alexis.cellier@smile.fr>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Deepesh Varatharajan
dc83c0c30a binutils: Fix CVE-2025-0840
PR32560 stack-buffer-overflow at objdump disassemble_bytes

Backport a patch from upstream to fix CVE-2025-0840
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=baac6c221e9d69335bf41366a1c7d87d8ab2f893]

(From OE-Core rev: 338a2a95eb9a99c8e56dfb1f6336497ddd654372)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Archana Polampalli
a18a302dba ffmpeg: Correct the CVE ID to fix CVE-2025-22919
A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows
attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.

(From OE-Core rev: bf0ad79c46d8a01aafc91620ddf415749aa8849a)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Archana Polampalli
a7888d9d2f ffmpeg: fix CVE-2025-0518
Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg allows
Read Sensitive Constants Within an Executable. This vulnerability is associated
with program files https://github.Com/FFmpeg/FFmpeg/blob/master/libavfilter/af_pan.C
This issue affects FFmpeg: 7.1.
Issue was fixed:  b5b6391d64
b5b6391d64
This issue was discovered by: Simcha Kosma

(From OE-Core rev: 75ad6e004de95ff6208820ccf2c0af01d9363749)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Archana Polampalli
6dfa4d7a28 ffmpeg: fix CVE-2025-22921
FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation
violation via the component /libavcodec/jpeg2000dec.c.

(From OE-Core rev: bc9cdf3701b937d40964903a3489898a69525d17)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Archana Polampalli
674351742d ffmpeg: fix CVE-2025-25471
FFmpeg git master before commit fd1772 was discovered to contain a NULL pointer
dereference via the component libavformat/mov.c.

(From OE-Core rev: a8331b11d5d7aa8f1997eaa189b74aaab7cc44da)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:57 -08:00
Archana Polampalli
287838f419 ffmpeg: fix CVE-2025-25473
FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer
dereference via the component libavformat/mov.c.

(From OE-Core rev: abc6b3180b87c665ff04204b7163d1f074d99747)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
1acf841038 xwayland: Fix CVE-2025-26601
Upstream-Status: Backport from
https://gitlab.freedesktop.org/xorg/xserver/-/commit/16a1242d &
https://gitlab.freedesktop.org/xorg/xserver/-/commit/f52cea2f &
https://gitlab.freedesktop.org/xorg/xserver/-/commit/8cbc90c8 & https://gitlab.freedesktop.org/xorg/xserver/-/commit/c2857989

(From OE-Core rev: 165032003e3f7fb5fde7322c5ad64c26f286228a)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
bf6991091c xwayland: Fix CVE-2025-26600
Upstream-Status: Backport from https://gitlab.freedesktop.org/xorg/xserver/-/commit/6e0f332b

(From OE-Core rev: f84fd297131deda3e13377f0b3555a71e67f1d74)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
9df0c884d6 xwayland: Fix CVE-2025-26599
Upstream-Status: Backport from
https://gitlab.freedesktop.org/xorg/xserver/-/commit/c1ff84be & https://gitlab.freedesktop.org/xorg/xserver/-/commit/b07192a8

(From OE-Core rev: aea55eb6eb5610ef6e7d37fadcbb7e760bf80d7d)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
a797ef3ea0 xwayland: Fix CVE-2025-26598
Upstream-Status: Backport from https://gitlab.freedesktop.org/xorg/xserver/-/commit/bba9df1a

(From OE-Core rev: b58fe3b82168502e29f500e42ca8d140934f5b1a)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
cfa84dcc1a xwayland: Fix CVE-2025-26597
Upstream-Status: Backport from https://gitlab.freedesktop.org/xorg/xserver/-/commit/0e4ed949

(From OE-Core rev: 6e19f26f4f152316badf3668b74cfc50d8d12528)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
2063d1265e xwayland: Fix CVE-2025-26596
Upstream-Status: Backport from https://gitlab.freedesktop.org/xorg/xserver/-/commit/80d69f01

(From OE-Core rev: ea9aac48ff4bc25e79b17c63b425a705c97f078d)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
612f458a2e xwayland: Fix CVE-2025-26595
Upstream-Status: Backport from https://gitlab.freedesktop.org/xorg/xserver/-/commit/11fcda87

(From OE-Core rev: f801e34c07472af8384e69da27271584ee6a8d1c)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
4c32156807 xwayland: Fix CVE-2025-26594
Upstream-Status: Backport from
https://gitlab.freedesktop.org/xorg/xserver/-/commit/01642f26 & https://gitlab.freedesktop.org/xorg/xserver/-/commit/b0a09ba6

(From OE-Core rev: f6af10075bc8bf7e8ffb9054500529608d3bb8ba)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
9329830cdb xwayland: Fix CVE-2024-9632
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-9632

Upstream patch:
ba1d14f8ef

(From OE-Core rev: 634a10db7da46688413d26f3fc9d5510f239b40b)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Poonam Jadhav
84089ba7a8 curl: ignore CVE-2025-0725
CVE-2025-0725 can only trigger for curl when using a runtime
zlib version 1.2.0.3 or older and scarthgap supports
zlib 1.3.1 version, hence ignore cve for scarthgap
https://curl.se/docs/CVE-2025-0725.html

(From OE-Core rev: 8c3b4a604b40260e7ca9575715dd8017e17d35c0)

Signed-off-by: Poonam Jadhav <poonam.jadhav@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Vijay Anusuri
d20a52f2fc openssh: Fix CVE-2025-26466
sshd(8) in OpenSSH versions 9.5p1 to 9.9p1
  (inclusive) is vulnerable to a memory/CPU denial-of-service related
  to the handling of SSH2_MSG_PING packets. This condition may be
  mitigated using the existing PerSourcePenalties feature.

Upstream-Status: Backport [6ce00f0c2e]

(From OE-Core rev: 7360f3998939e202f9611644a8bed0c3fe0c782a)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Chen Qi
3646348c98 bitbake: data_smart.py: clear expand_cache in _setvar_update_overridevars
At the end of this function, self.overrides is cleared, which means we'll
construct a new self.overrides after this call. And a new self.overrides
will give out different expand_cache, so the old expand_cache should also
be cleared to avoid any wrong value.

Currently, there's a problem revealed by recent recipe specific virtual
provider patch. If we enable multilib and set "OVERRIDES:prepend" in local.conf,
things don't work.

Here's the error message:

  ERROR: Nothing PROVIDES 'lib32-gcc-cross-x86_64'

Below are reproduce steps:
1. Add in local.conf the following lines:
   MACHINE ?= "qemux86-64"
   require conf/multilib.conf
   MULTILIBS ?= "multilib:lib32"
   DEFAULTTUNE:virtclass-multilib-lib32 ?= "core2-32"
   OVERRIDES:prepend = "some-override:"
   (Note that using :append and :remove also reproduces the issue.)
2. bitbake -n lib32-sysstat
   (bitbake -n core-image-minimal also reproduces the issue)

The expandWithRefs calls getVar, which fills expand_cache. So when setting
OVERRIDES:prepend, this will fill the expand_cache. When overridevars are updated,
if we don't clear expand_cache, we'll retrieve wrong values.

Previously, things happened to work because there's a call to expand
PREFERRED_PROVIDER_virtual/${TARGET_PREFIX}gcc, which in turn expands
TARGET_VENDOR. Now what we expand is PREFERRED_PROVIDER_ virtual/cross-cc,
so the problem is revealed.

(Bitbake rev: 7375d32e8c1af20c51abec4eb3b072b4ca58b239)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Chen Qi
133ac79e70 bitbake: data_smart.py: simple clean up
When var matches __setvar_regexp__, which has the value as below,
__setvar_regexp__ = re.compile(r'(?P<base>.*?)(?P<keyword>:append|:prepend|:remove)(:(?P<add>[^A-Z]*))?$')
the keyword will not be __doc__ or __module__ and var will always
contain ":".

(Bitbake rev: 9cac695951d0fd587063b250bfc8ef0f87acad18)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Chen Qi
d8d82a17ee bitbake: data_smart.py: remove unnecessary ? from __expand_var_regexp__
The non-greedy modifier suffix ? is not necessary here because } is
not in the character set [a-zA-Z0-9\-_+./~:].

(Bitbake rev: aae570b7f051fc5deee7a1712a02ed92498a4461)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Enrico Jörns
ed5b125698 bitbake: bitbake-diffsigs: fix handling when finding only a single sigfile
This fixes the following error when calling 'bitbake-dumpsig' or
'bitbake-diffsigs' when having only a single sigfile available:

| Traceback (most recent call last):
|   File "[..]/poky/bitbake/bin/bitbake-dumpsig", line 171, in <module>
|     files = find_siginfo_task(tinfoil, options.taskargs[0], options.taskargs[1])
|             ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|   File "[..]/poky/bitbake/bin/bitbake-dumpsig", line 83, in find_siginfo_task
|     sig2 = latestsigs[1]
|            ~~~~~~~~~~^^^
| IndexError: list index out of range

Handle this by adding (and returning) the path for the second sigfile
only if one is found. This way it will work for both diffsigs and
dumpsig use case.

The calling argparse code already deals with find_siginfo_task()
returning only a single file.
For 'bitbake-dumpsig' it will just dump the single sigfile, for
'bitbake-diffsigs' it will emit a proper error message again:

| ERROR: Only one matching sigdata file found for the specified task (systemd configure)

(cherry picked from commit 25057d33e9131f3214a06bbb316c916c744f8f03)

(Bitbake rev: 4e443aeab9096b41c9e5ba41cd21027ecaa20285)

Signed-off-by: Enrico Jörns <ejo@pengutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Patrick Vogelaar <patrick.vogelaar@belden.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-08 06:22:56 -08:00
Fabio Berton
7a06e2daa7 ccache.conf: Add include_file_ctime to sloppiness
When multiple recipes are built in parallel, Ccache sometimes refuses to
lookup some objects in cache, leading to undesired cache misses. The
root cause of this is an interaction between the way how bitbake
constructs a recipe sysroot and Ccache's `include_file_ctime` check.

Whenever bitbake creates a recipe's sysroot it hardlinks the files
provided by a recipes dependencies. Adding a hardlink to a file changes
it's ctime which in turn leads Ccache to believe that the file was
modified thus aborting the cache lookup.

To avoid this situation, add `include_file_ctime` to the list of checks
that should be ignored using the Ccache sloppiness configuration option
[1].

Example of a log entry that Ccache ignores a file:
/
|recipe-sysroot/usr/include/bits/pthread_stack_min.h had status change
|near or after invocation (ctime 1739822508.107677255, invocation time
|1739822507.970071107)
\

1 - https://ccache.dev/manual/4.10.2.html#config_sloppiness

(From OE-Core rev: c74a6d6afc52606825e583cae1162e13a5369498)

Signed-off-by: Fabio Berton <fabio.berton@criticaltechworks.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4899698297c7783e02aba5388e0469cc83bd2f70)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-05 06:03:47 -08:00
Moritz Haase
eaf460dba4 meta: Enable '-o pipefail' for the SDK installer
When testing a Yocto SDK installer on Alpine 3.21, we recently ended up with a
broken SDK. One of the commands the relocation script calls in a piped
multi-command chain failed (see [0]), but the installer did not realize that -
since it doesn't use 'set -o pipefail'. Thus, the error was never reported to
the user and the installer claimed to have set up the SDK correctly - which
wasn't the case.

Given that the SDK installer is a POSIX-compliant shell script and that the
'pipefail' option used to be missing from the standard, it's not surprising that
it isn't used. Thankfully however, in June of 2024, a new version of POSIX
(POSIX.1-2024) was released - and that one finally includes the 'pipefail'
option (see [1]). A number of shells already support it, so let's enable it if
available to make the SDK installer more robust.

The change has been tested locally using SDK installers for internal projects,
based on both Kirkstone and Scarthgap.

[0]: https://gitlab.alpinelinux.org/alpine/aports/-/issues/16797
[1]: https://pubs.opengroup.org/onlinepubs/9799919799.2024edition/utilities/V3_chap02.html#set

(From OE-Core rev: 1cb4b41c7faf77fcc347b1276d86d4288968c926)

(From OE-Core rev: 940159f060e9a851cc9ff5a9e1c590ed8de4b38e)

Signed-off-by: Moritz Haase <Moritz.Haase@bmw.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 10dce263f0)
Signed-off-by: Akash Hadke <akash.hadke27@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-05 06:03:47 -08:00
Marek Vasut
560f960295 u-boot: kernel-fitimage: Restore FIT_SIGN_INDIVIDUAL="1" behavior
OE FIT_SIGN_INDIVIDUAL is implemented in an unusual manner,
where the resulting signed fitImage contains both signed
images and signed configurations, possibly using different
keys. This kind of signing of images is redundant, but so is
the behavior of FIT_SIGN_INDIVIDUAL="1" and that is here to
stay.

Adjust the process of public key insertion into u-boot.dtb
such that if FIT_SIGN_INDIVIDUAL==1, the image signing key
is inserted into u-boot.dtb first, and in any case the
configuration signing key is inserted into u-boot.dtb last.

The verification of the keys inserted into u-boot.dtb against
unused.itb is performed only for FIT_SIGN_INDIVIDUAL!=1 due to
mkimage limitation, which does not allow mkimage -f auto-conf
to update the generated unused.itb, and instead rewrites it.

Fixes: 259bfa86f384 ("u-boot: kernel-fitimage: Fix dependency loop if UBOOT_SIGN_ENABLE and UBOOT_ENV enabled")
(From OE-Core rev: 699822a163a4efa32735f75d21fde4ffa195c0e0)

Signed-off-by: Marek Vasut <marex@denx.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0106e5efab99c8016836a2ab71e2327ce58a9a9d)
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-05 06:03:47 -08:00
Hitendra Prajapati
84492696d2 elfutils: Fix multiple CVEs
Backport fixes for:

* CVE-2025-1352 - Upstream-Status: Backport from https://sourceware.org/git/?p=elfutils.git;a=commit;h=2636426a091bd6c6f7f02e49ab20d4cdc6bfc753
* CVE-2025-1365 - Upstream-Status: Backport from https://sourceware.org/git/?p=elfutils.git;a=commit;h=5e5c0394d82c53e97750fe7b18023e6f84157b81
* CVE-2025-1372 - Upstream-Status: Backport from https://sourceware.org/git/?p=elfutils.git;a=commit;h=73db9d2021cab9e23fd734b0a76a612d52a6f1db

(From OE-Core rev: 938676089fb5da383b7daf6c5e6348079ecf5674)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-03-05 06:03:47 -08:00
Marta Rybczynska
f93188cb87 vulnerabilities/classes: remove references to cve-check text format
The text format has been removed, so also remove references and examples
using this format. Replace with examples with the JSON format.

(From yocto-docs rev: 3757ace0581e6279aa7c065b21cee56edfe985dd)

Signed-off-by: Marta Rybczynska <marta.rybczynska@ygreky.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit a52cd7bcadccc53e982f90d6e170d00798322597)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Weisser, Pascal
23a4190b56 ref-manual: Add missing variable IMAGE_ROOTFS_MAXSIZE
This patch adds the missing documentation of variable IMAGE_ROOTFS_MAXSIZE
to the reference manual.

(From yocto-docs rev: c3c18c5f3d8f1ac8781dbc3fdbfdb53c94095f62)

Signed-off-by:
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1dcc8cf7c49da449b324a7bd6bb22effe1d53d70)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Etienne Cordonnier
d38a096fde python3-setuptools-scm: respect GIT_CEILING_DIRECTORIES
Fixes https://bugzilla.yoctoproject.org/show_bug.cgi?id=15740

python3-setuptools-scm was ignoring GIT_CEILING_DIRECTORIES which is set by poky,
and it was thus finding a wrong value of "toplevel" in ./src/setuptools_scm/_file_finders/git.py
The code is supposed to generate the list of files contained in python3-setuptools-scm, but it was
instead running "git archive" on whatever git repository was above the build directory, because the
tarball containing the sources of python3-setuptools-scm does not contain a .git directory.

This is barely noticeable when building as a subdirectory of poky which is only 48MB, but this was
causing serious slowdowns of python3-setuptools-scm:do_compile when building
inside a big git repository with files tracked using git-lfs (50 minutes in my use-case).

Reported upstream as https://github.com/pypa/setuptools-scm/issues/1103

(From OE-Core rev: 4ebe72477484cf68165b6f736ce10373e97d0e6d)

(From OE-Core rev: 369eebad4f38c3641be73dbc0490c87636e0912d)

Signed-off-by: Etienne Cordonnier <ecordonnier@snap.com>
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Vijay Anusuri
4b22f235b6 bind: Upgrade 9.18.28 -> 9.18.33
Includes security fixes for CVE-2024-12705 CVE-2024-11187 and other bug
fixes

Release Notes:
https://downloads.isc.org/isc/bind9/9.18.33/doc/arm/html/notes.html#notes-for-bind-9-18-33
https://downloads.isc.org/isc/bind9/9.18.33/doc/arm/html/notes.html#notes-for-bind-9-18-32
https://downloads.isc.org/isc/bind9/9.18.33/doc/arm/html/notes.html#notes-for-bind-9-18-31
https://downloads.isc.org/isc/bind9/9.18.33/doc/arm/html/notes.html#notes-for-bind-9-18-30
https://downloads.isc.org/isc/bind9/9.18.33/doc/arm/html/notes.html#notes-for-bind-9-18-29

(From OE-Core rev: 37f07393c6977e7765ebfd948a017dab9be6a367)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Peter Marko
10948521ec libxml2: upgrade 2.12.9 -> 2.12.10
https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.10

Security
* [CVE-2025-24928] Fix stack-buffer-overflow in xmlSnprintfElements
* [CVE-2024-56171] Fix use-after-free after xmlSchemaItemListAdd
* pattern: Fix compilation of explicit child axis
Regressions
* parser: Fix detection of duplicate attributes
Bug fixes
* xpath: Fix parsing of non-ASCII names
Portability
* python: Declare init func with PyMODINIT_FUNC
* tests: Fix sanitizer version check on old Apple clang
Build
* autotools: Set AC_CONFIG_AUX_DIR
* cmake: Always build Python module as shared library
* cmake: Fix compatibility in package version file

(From OE-Core rev: 4540dd4bb71e00b7f8c1a3f5a9e10d482e0b2abd)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Hitendra Prajapati
dd272ac230 libcap: fix CVE-2025-1390
Upstream-Status: Backport from https://git.kernel.org/pub/scm/libs/libcap/libcap.git/commit/?id=1ad42b66c3567481cc5fa22fc1ba1556a316d878

(From OE-Core rev: b975db55f6e0d551e69c870620292b58425f9aab)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Hongxu Jia
c72b542224 u-boot: fix CVE-2024-57259
sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error
and resultant heap memory corruption for squashfs directory listing because the
path separator is not considered in a size calculation.

https://nvd.nist.gov/vuln/detail/CVE-2024-57259

(From OE-Core rev: 8fad176e6258a44d1ba1eed224cd27745b6a57cf)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Hongxu Jia
297607918a u-boot: fix CVE-2024-57258
Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1
occur for a crafted squashfs filesystem via sbrk, via request2size,
or because ptrdiff_t is mishandled on x86_64.

https://nvd.nist.gov/vuln/detail/CVE-2024-57258

(From OE-Core rev: 12e1d55ae2427b6aaca6a1f7d8f947f0d6bbd28d)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Hongxu Jia
8c190b0e8e u-boot: fix CVE-2024-57257
A stack consumption issue in sqfs_size in Das U-Boot before 2025.01-rc1
occurs via a crafted squashfs filesystem with deep symlink nesting.

https://nvd.nist.gov/vuln/detail/CVE-2024-57257

(From OE-Core rev: 890597539246c0f2b427d60965d5665cf7f4731c)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Hongxu Jia
35f98c1ff3 u-boot: fix CVE-2024-57256
An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1
occurs for zalloc (adding one to an le32 variable) via a crafted ext4
filesystem with an inode size of 0xffffffff, resulting in a malloc of
zero and resultant memory overwrite.

https://nvd.nist.gov/vuln/detail/CVE-2024-57256

(From OE-Core rev: 21e6ac6e53112b9dddc5a84f27be5851469b9c46)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Hongxu Jia
618c5fdb14 u-boot: fix CVE-2024-57255
An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1
occurs via a crafted squashfs filesystem with an inode size of 0xffffffff,
resulting in a malloc of zero and resultant memory overwrite.

https://nvd.nist.gov/vuln/detail/CVE-2024-57255

(From OE-Core rev: c3784c108f003c6663ca969585414e4a90f06606)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Hongxu Jia
ec0e90ce42 u-boot: fix CVE-2024-57254
An integer overflow in sqfs_inode_size in Das U-Boot before
2025.01-rc1 occurs in the symlink size calculation via a
crafted squashfs filesystem.

https://nvd.nist.gov/vuln/detail/CVE-2024-57254

(From OE-Core rev: eea9fee59bc7576bef94f0da466887e4daff0356)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-28 06:45:14 -08:00
Lee Chee Yang
2afaed1013 migration-guides: add release notes for 5.0.7
(From yocto-docs rev: fb677d4289bb00b7807f512a1e3b7c89d3e3d92e)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 9f1f9f1a3a2a541ed70df72d4fe391b5b7fd3733)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Antonin Godard
f899c284d4 Add favicon for the documentation html
Import the favicon from https://www.yoctoproject.org/, convert it to
16x16 (as per the Sphinx documentation) to make a 1291B image of the
Yocto logo.

(From yocto-docs rev: 14de49a1ec6d725764e2a968edd3386252e826fe)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit e3ee43e6d70685a2404aae2d60557a42879b0bb1)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Antonin Godard
6147489ce5 contributor-guide/submit-changes: add policy on AI generated code
Based on message by Richard Purdie on the yocto-docs list:
https://lists.yoctoproject.org/g/docs/message/6300

Re-formatted for the Yocto Project documentation syntax.

(From yocto-docs rev: da3aa5ba9387ca5bb7ddd75fe6f7962d0629ea90)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit a72dd13e6841b621c9e8f904dfaa440c186d2959)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Adrian Freihofer
2d52b83d11 sdk-manual: extensible.rst: update devtool ide-sdk
Replace
  devtool ide-sdk --debug-build-config
by
  devtool modify --debug-build

This change was introduced with commit
https://git.yoctoproject.org/poky/commit/?id=1f7eb26c947dde14698ae6e2ab88f0637027f4cb

(From yocto-docs rev: 04b8b94a2fa892c3580a2a506dc5b40d6a176a41)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Reviewed-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit e2b6a4c6c633e79d0e4975ba2e1a27a8c1b8c1c5)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Oleksandr Hnatiuk
5872b7ea08 icu: remove host references in nativesdk to fix reproducibility
Fix is only done for target. Use same code for nativesdk.

Backport from poky master: https://git.yoctoproject.org/poky/commit/?id=c63b8f28ac52047fad689b78d605aa792baf1ad8

(From OE-Core rev: dc6306883cc2c7d4d98d595442e5bf4037a160c5)

(From OE-Core rev: fc46705cc629a151f85717a57f7d789de8fd9b64)

Signed-off-by: Oleksiy Obitotskyy <oobitots@cisco.com>
Signed-off-by: Oleksandr Hnatiuk <ohnatiuk@cisco.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c63b8f28ac)
Signed-off-by: Bhabu Bindu <bindu.bhabu@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Johannes Schneider
656d4b9b42 ppp: Revert lock path to /var/lock
ppp version 2.5.0 fails to run properly if an expected /run/pppd/lock
directory does not exist, which is not usually created in a yocto
built OS.

Backport the patch from upstream version 2.5.1 that fixes the issue by
reverting back to /var/lock.

The related github issue upstream was:
"lock directory moved in ppp-2.5.0 #419" [1]

Link: https://github.com/ppp-project/ppp/issues/419
(From OE-Core rev: 0869eb50e39c567cc1d50db4eb287f02866196cf)

Signed-off-by: Johannes Schneider <johannes.schneider@leica-geosystems.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Aleksandar Nikolic
b7eed58100 scripts/install-buildtools: Update to 5.0.7
Update to the 5.0.7 release of the 5.0 series for buildtools.

(From OE-Core rev: 793d3203db41efa4df1d615db832a771015b7b50)

Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Divya Chellam
2fb5838cb1 vim: Upgrade 9.1.0764 -> 9.1.1043
This includes CVE-fix for CVE-2025-22134 and CVE-2025-24014

Changes between 9.1.0764 -> 9.1.1043
====================================
https://github.com/vim/vim/compare/v9.1.0764...v9.1.1043

(From OE-Core rev: 00b97ae6e1aa2c1cad2ff23e4eedab1d55af6f4f)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Peter Marko
f1b6ecb951 openssl: upgrade 3.2.3 -> 3.2.4
Release information:
https://github.com/openssl/openssl/blob/openssl-3.2/NEWS.md#major-changes-between-openssl-323-and-openssl-324-11-feb-2025

Handles CVE-2024-12797 in addition to already patched CVEs.

Refresh patches and remove CVE patches included in the new version.

(From OE-Core rev: b051c16980f67541866253f0d7eb2dc39847fb83)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:06 -08:00
Peter Marko
14da16b41c gnutls: patch CVE-2024-12243
Backport following patch to address this CVE:
4760bc6353

(From OE-Core rev: e5316a9019e6b9ad5a66b6070ea863705a26c633)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:05 -08:00
Peter Marko
a09597e192 subversion: ignore CVE-2024-45720
Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-45720

This CVE is relevant only for subversion running on Windows.

(From OE-Core rev: 6a22c704c5236c7b893135dca53cc5d2b6f78e03)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Reviewed-by: Sofiane Hamam <sofiane.hamam@smile.fr>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:05 -08:00
Joerg Schmidt
9877f433a6 bitbake: bblayers/query: Fix using "removeprefix" string method
The minimum Python version required for Yocto 5.0 is 3.8 which causes
failure in poky/bitbake/lib/bblayers/query.py when listing layers by
using command "bitbake-layers show-recipes -f --bare --mc MC" for the
given multiconfig MC.
The reason for that failure is the use of "removeprefix" string method
which got introduced in Python 3.9.
This patch replaces the "removeprefix" method with an equivalent
solution supported by Python 3.8.

(Bitbake rev: f6635b32ab553e812fe7c05998ef05834fccd0f3)

Signed-off-by: Joerg Schmidt <joerg.schmidt@garmin.com>
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-21 06:25:05 -08:00
Marek Vasut
ce9f4eaaae base-files: Drop /bin/sh dependency
Remove /bin/sh from bash RPROVIDES as this has a side-effect which
confuses rpm package manager when also busybox provides /bin/sh and
base-files depend on /bin/sh . The problem is broken down below.

First, bash depends on base-files and bash pkg_postinst must run
after base-files was installed, because it requires /etc/shells
provided by base-files to be in place.

Second, base-files depends on /bin/sh, which is provided by either
bash or busybox in this case. This is the actual problem here, if
bash is selected as /bin/sh provider, then there is cyclic dependency
between bash and base-files, and that confuses dnf which may install
the packages in the wrong order, bash first and base-files second .

To make this worse, if busybox is also /bin/sh provider, it can and
does happen that some systems pick busybox as the /bin/sh provider,
while others pick bash as the /bin/sh provider, and that cyclic
dependency does not always appear.

Attempt to break this dependency, remove pre-inst script from the
base-files recipe, which removes its dependency on /bin/sh and
allows it to be installed very early, and always before bash.

(From OE-Core rev: e71b64a9b22c7db316e92e78a4bce8b9f994a4ae)

(From OE-Core rev: 61880aac34ff408a8bc5060c6140bfd086b27524)

Signed-off-by: Marek Vasut <marex@denx.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Khem Raj
d59b8312e9 qemu: Do not define sched_attr with glibc >= 2.41
* backporting, because it's also needed also for qemu-native builds
  on hosts with glibc >= 2.41

(From OE-Core rev: d34b38ecc2571fae0d58a34db1358dff2505148d)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Peter Marko
1c0daf1e53 cmake: apply parallel build settings to ptest tasks
ptest compile and install tasks do not have parallel build settings for
cmake. On powerful build machines this can cause overload situations
and oomkills.
Observed when building qtgrpc with ptest generally enabled in distro.

Having this in ptest class is suboptimal, but creating ptest-cmake class
just for these two variables is probably overkill.

(From OE-Core rev: 3c311fbf0c2090268e9b83123d762b05b61b4074)

(From OE-Core rev: 234f64b64e61cff4a27d2533dfc13e0c2a4fc63b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Peter Marko
ccb6625fee go: upgrade 1.22.11 -> 1.22.12
Upgrade to latest 1.22.x release [1]:

$ git --no-pager log --oneline go1.22.11..go1.22.12
5817e65094 (tag: go1.22.12) [release-branch.go1.22] go1.22.12
0cc45e7ca6 [release-branch.go1.22] crypto/internal/fips140/nistec: make p256NegCond constant time on ppc64le
c3c6a50095 [release-branch.go1.22] cmd/go/internal/modfetch: do not trust server to send all tags in shallow fetch
e0a01acd04 [release-branch.go1.22] cmd/compile: fix write barrier coalescing

Fixes CVE-2025-22866

[1] https://github.com/golang/go/compare/go1.22.11...go1.22.12

(From OE-Core rev: 423ad5a67768738dac454b1e2aa27746f74511c5)

(From OE-Core rev: 9862cb44ad0f85eebbd9c7f6bcbf22df9cc10d0f)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Bruce Ashfield
2d8f3c31cc linux-yocto/6.6: update to v6.6.75
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    d51b7d37f14e Linux 6.6.75
    431fb709db43 drm/v3d: Assign job pointer to NULL before signaling the fence
    35b144b393db Input: xpad - add support for wooting two he (arm)
    7c477b26d39e Input: xpad - add support for Nacon Evol-X Xbox One Controller
    c009f1865582 Input: xpad - improve name of 8BitDo controller 2dc8:3106
    723aa536831c Input: xpad - add QH Electronics VID/PID
    7ea7e327a199 Input: xpad - add unofficial Xbox 360 wireless receiver clone
    dc8c9c171ef3 Input: atkbd - map F23 key to support default copilot shortcut
    80327feb234c Input: xpad - add support for Nacon Pro Compact
    cca07b29f7af ALSA: usb-audio: Add delay quirk for USB Audio Device
    3d8f4dc8c78f Revert "usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null"
    6377838560c0 USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb()
    088bde862f8d scsi: storvsc: Ratelimit warning logs to prevent VM denial of service
    e0500e4373cd ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find()
    6e35f560daeb ext4: fix access to uninitialised lock in fc replay path
    c981c32c38af vfio/platform: check the bounds of read/write syscalls
    7d6405c13b0d cachestat: fix page cache statistics permission checking
    854d0d361e45 Revert "HID: multitouch: Add support for lenovo Y9000P Touchpad"
    a99bacb35c14 block: fix integer overflow in BLKSECDISCARD
    f4168299e553 net: sched: fix ets qdisc OOB Indexing
    5ddcc9e92d54 smb: client: handle lack of EA support in smb2_query_path_info()
    850e696f3627 libfs: Use d_children list to iterate simple_offset directories
    0f03dd06e5d1 libfs: Replace simple_offset end-of-directory detection
    6b1de53b1a0a Revert "libfs: Add simple_offset_empty()"
    a01bb1c5cac9 libfs: Return ENOSPC when the directory offset range is exhausted
    2b6da3fa94cd shmem: Fix shmem_rename2()
    753828d6775e libfs: Add simple_offset_rename() API
    3e716f31ff8b libfs: Fix simple_offset_rename_exchange()
    307f68e49dda libfs: Add simple_offset_empty()
    fc90bbcc08da libfs: Define a minimum directory offset
    3bd97ebf7e4f libfs: Re-arrange locking in offset_iterate_dir()
    4dd57d1f0e98 gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag
    7998e7efd1d5 RDMA/bnxt_re: Avoid CPU lockups due fifo occupancy check loop
    52da02521ede ipv6: Fix soft lockups in fib6_select_path under high next hop churn
    cd9f7bf6cad8 cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value
    2364dc21ba5a ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf()
    509a928e815e ASoC: samsung: Add missing depends on I2C
    85af156e158c hwmon: (drivetemp) Set scsi command timeout to 10s
    2148a41dc8ff irqchip/sunxi-nmi: Add missing SKIP_WAKE flag
    b25bf1d7f5ff of/unittest: Add test that of_address_to_resource() fails on non-translatable address
    758abba3dd41 drm/amd/display: Use HW lock mgr for PSR1
    44c485f0fcb2 scsi: iscsi: Fix redundant response for ISCSI_UEVENT_GET_HOST_STATS request
    06bfc95f817b seccomp: Stub for !CONFIG_SECCOMP
    ed0d02b7e147 ASoC: samsung: Add missing selects for MFD_WM8994
    bb60f107c96b ASoC: wm8994: Add depends on MFD core
    0372f43ab704 Linux 6.6.74
    3f51f8c9d289 net: fix data-races around sk->sk_forward_alloc
    7d082fb20aa2 x86/xen: fix SLS mitigation in xen_hypercall_iret()
    80d39b50bdc0 nfsd: add list_head nf_gc to struct nfsd_file
    0b7b07cb5990 Revert "drm/amdgpu: rework resume handling for display (v2)"
    f47c834a9131 fs: relax assertions on failure to encode file handles
    f0c0ac84de17 ovl: support encoding fid from inode with no alias
    955a355e179f ovl: pass realinode to ovl_encode_real_fh() instead of realdentry
    ec3e32de2d8a ocfs2: fix deadlock in ocfs2_get_system_file_inode
    1364a29b71c7 block: fix uaf for flush rq while iterating tags
    08ac5fdb9c6d drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create'
    c39d275efbe9 iio: imu: inv_icm42600: fix spi burst write not supported
    bcb9678b1c4f Revert "PCI: Use preserve_config in place of pci_flags"
    0cc84b6636be drm/amdgpu: always sync the GFX pipe on ctx switch
    65622de7c440 drm/i915/fb: Relax clear color alignment to 64 bytes
    a5cbbea145b4 hrtimers: Handle CPU state correctly on hotplug
    6c84ff2e788f irqchip/gic-v3-its: Don't enable interrupts in its_irq_set_vcpu_affinity()
    61c684dbfeb0 irqchip/gic-v3: Handle CPU_PM_ENTER_FAILED correctly
    61ecbceae2ee irqchip: Plug a OF node reference leak in platform_irqchip_probe()
    926ad31b76b8 pmdomain: imx8mp-blk-ctrl: add missing loop break condition
    b0111650ee59 gpio: xilinx: Convert gpio_lock to raw spinlock
    a5a2ee8144c3 fs/proc: fix softlockup in __read_vmcore (part 2)
    09528bb1a412 filemap: avoid truncating 64-bit offset to 32 bits
    c5418187b977 nouveau/fence: handle cross device fences properly
    bc9c49341f97 vsock: prevent null-ptr-deref in vsock_*[has_data|has_space]
    8a15c81063b9 vsock: reset socket state when de-assigning the transport
    dd93823fdd0e vsock/virtio: cancel close work in the destructor
    d88b249e14bd vsock/virtio: discard packets if the transport changes
    58e586c30d0b vsock/bpf: return early if transport is not assigned
    a3a3c1aa5126 net: ethernet: xgbe: re-add aneg to supported features in PHY quirks
    75deec40a774 selftests: mptcp: avoid spurious errors on disconnect
    d09d17c104a9 mptcp: fix spurious wake-up on under memory pressure
    890507bc19b9 mptcp: be sure to send ack when mptcp-level window re-opens
    5cfe4b1d0cfb i2c: atr: Fix client detach
    571d3f6045cd zram: fix potential UAF of zram table
    4c8b783c9d16 ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA
    ee37f3a538fc x86/asm: Make serialize() always_inline
    002b2efb1130 nvmet: propagate npwg topology
    8c9c1a2b48bb RDMA/bnxt_re: Fix to export port num to ib_query_qp
    bd6a4b4aed75 poll_wait: add mb() to fix theoretical race between waitqueue_active() and .poll()
    91371922704c iomap: avoid avoid truncating 64-bit offset to 32 bits
    4aaa1003a3f4 ACPI: resource: acpi_dev_irq_override(): Check DMI match last
    8cc32fc86e47 selftests: tc-testing: reduce rshift value
    8df41b7fb46d scsi: ufs: core: Honor runtime/system PM levels if set by host controller drivers
    933689000dff cachefiles: Parse the "secctx" immediately
    3f81514078fc kheaders: Ignore silly-rename files
    62861a5d4dd6 fs: fix missing declaration of init_files
    c598398815ee hfs: Sanity check the root record
    2e41e98c4e79 mac802154: check local interfaces before deleting sdata list
    1ea680703385 smb: client: fix double free of TCP_Server_Info::hostname
    6152c2c612a7 i2c: rcar: fix NACK handling when being a target
    573f036ba219 i2c: mux: demux-pinctrl: check initial mux selection, too
    f3311576789e Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data"
    b9b63c9cc1e0 hwmon: (tmp513) Fix division of negative numbers
    3c8fe0931d9b soc: ti: pruss: Fix pruss APIs
    63195bae1cbf drm/v3d: Ensure job pointer is set to NULL after job completion
    5faf45beb701 drm/vmwgfx: Add new keep_resv BO param
    ff5b9e9be645 net/mlx5e: Always start IPsec sequence number from 1
    cdb3f2b62e2d net/mlx5e: Rely on reqid in IPsec tunnel mode
    87c4417a9021 net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel
    473bc285378f net/mlx5: Clear port select structure when fail to create
    ba8fdf7cff09 net/mlx5: Fix RDMA TX steering prio
    8a0097db0544 net: fec: handle page_pool_dev_alloc_pages error
    e8438cb84d0b net: xilinx: axienet: Fix IRQ coalescing packet count overflow
    325f2762fac7 nfp: bpf: prevent integer overflow in nfp_bpf_event_output()
    bb11f992f5a4 gtp: Destroy device along with udp socket's netns dismantle.
    d756c8ac3029 gtp: Use for_each_netdev_rcu() in gtp_genl_dump_pdp().
    3d1c0c5500f5 gtp: use exit_batch_rtnl() method
    1e222169f718 net: add exit_batch_rtnl() method
    7cde21f52042 pktgen: Avoid out-of-bounds access in get_imix_entries
    ea966b669878 openvswitch: fix lockup on tx to unregistering netdev with carrier
    b02e70be498b bpf: Fix bpf_sk_select_reuseport() memory leak
    c5af09473110 net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()
    3b4299ff7a25 Linux 6.6.73
    1795ca657119 Revert "ovl: do not encode lower fh with upper sb_writers held"
    d1c53de4463b Revert "ovl: pass realinode to ovl_encode_real_fh() instead of realdentry"
    950b604384fd Revert "ovl: support encoding fid from inode with no alias"
    c2e420511612 Linux 6.6.72
    ac7f5641e988 drm/mediatek: Only touch DISP_REG_OVL_PITCH_MSB if AFBC is supported
    08a2117e83e5 riscv: Fix text patching when IPI are used
    56b274473d6e mm: hugetlb: independent PMD page table shared count
    ec500230d39a mm/hugetlb: enforce that PMD PT sharing has split PMD PT locks
    5cfaddaa4bdb fs/Kconfig: make hugetlbfs a menuconfig
    1abe0a34aea6 pgtable: fix s390 ptdesc field comments
    1fd2a57dcb4d workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker
    6dc676743a7a workqueue: Update lock debugging code
    2717b5e55a9f workqueue: Add rcu lock check at the end of work item execution
    66e533f0b250 pmdomain: imx: gpcv2: fix an OF node reference leak in imx_gpcv2_probe()
    b1e6351c16b4 pmdomain: imx: gpcv2: Simplify with scoped for each OF child loop
    b613a038fdd7 arm64: dts: rockchip: add hevc power domain clock to rk3328
    be3eed59ac01 block, bfq: fix waker_bfqq UAF after bfq_split_bfqq()
    53e25b10a28e hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur
    a4b01371512e ARM: dts: imxrt1050: Fix clocks for mmc
    8efff2aa2d95 io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period
    03753bfacbc6 riscv: kprobes: Fix incorrect address calculation
    6a96af5f309d iio: adc: ad7124: Disable all channels at probe time
    91dd568e3ff9 iio: inkern: call iio_device_put() only on mapped devices
    09e067e3c83e iio: adc: at91: call input_free_device() on allocated iio_dev
    f110a6d71bd8 iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep()
    2df664d7b4f2 iio: gyro: fxas21002c: Fix missing data update in trigger handler
    455df95eb8f2 iio: adc: ti-ads8688: fix information leak in triggered buffer
    5a95fbbecec7 iio: adc: rockchip_saradc: fix information leak in triggered buffer
    cde312e257b5 iio: imu: kmx61: fix information leak in triggered buffer
    a15ea87d4337 iio: light: vcnl4035: fix information leak in triggered buffer
    74058395b2c6 iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer
    fefb88a4da96 iio: pressure: zpa2326: fix information leak in triggered buffer
    ea57f0bbe225 usb: gadget: configfs: Ignore trailing LF for user strings to cdev
    ea6a14987424 usb: gadget: f_fs: Remove WARN_ON in functionfs_bind
    88cdfe9f15d5 usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm()
    c1e7ced99da9 usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints
    dcd4de31bd01 usb: chipidea: ci_hdrc_imx: decrement device's refcount in .remove() and in the error path of .probe()
    43c204b22dd8 usb: gadget: midi2: Reverse-select at the right place
    953dea074bc5 usb: fix reference leak in usb_new_device()
    730016e0b963 USB: core: Disable LPM only for non-suspended ports
    77af0434807b USB: usblp: return error when setting unsupported protocol
    7c3f7c3caa35 usb: dwc3-am62: Disable autosuspend during remove
    0a3a87221418 x86/fpu: Ensure shadow stack is active before "getting" registers
    0c50f00cc299 usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null
    0231ecfb1f7a tty: serial: 8250: Fix another runtime PM usage counter underflow
    12f950a6a1c1 misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config
    25692750c025 misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling
    b02cf1d27e46 topology: Keep the cpumask unchanged when printing cpumap
    c995c81b2a30 usb: dwc3: gadget: fix writing NYET threshold
    05da04bbf3b9 USB: serial: cp210x: add Phoenix Contact UPS Device
    138655dd9ebe usb-storage: Add max sectors quirk for Nokia 208
    e5c87f33b514 staging: iio: ad9832: Correct phase range check
    4c04529c77d5 staging: iio: ad9834: Correct phase range check
    8166f38c8099 USB: serial: option: add Neoway N723-EA support
    2dcb6368adf5 USB: serial: option: add MeiG Smart SRM815
    12caa73a28f0 dm-verity FEC: Fix RS FEC repair for roots unaligned to block size (take 2)
    8dddc12d0324 f2fs: fix null-ptr-deref in f2fs_submit_page_bio()
    e3ed5a14aac7 io_uring/timeout: fix multishot updates
    3ce08bab0105 drm/amd/display: increase MAX_SURFACES to the value supported by hw
    fa6bc7263061 drm/amdkfd: fixed page fault when enable MES shader debugger
    55ee64816bd5 ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[]
    b239a3867d58 ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[]
    f48f060a4b36 riscv: Fix sleeping in invalid context in die()
    5fe671caedc2 smb: client: sync the root session and superblock context passwords before automounting
    d2512434f4cf thermal: of: fix OF node leak in of_thermal_zone_find()
    ae9ab63a268b drm/amd/display: Add check for granularity in dml ceil/floor helpers
    59d28c133e71 ksmbd: Implement new SMB3 POSIX type
    284a221f8fa5 sctp: sysctl: plpmtud_probe_interval: avoid using current->nsproxy
    55627918febd sctp: sysctl: udp_port: avoid using current->nsproxy
    7ec30c54f339 sctp: sysctl: auth_enable: avoid using current->nsproxy
    dc9d0e3cfd16 sctp: sysctl: rto_min/max: avoid using current->nsproxy
    ad673e514b27 sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy
    c0e394fd6b88 mptcp: sysctl: sched: avoid using current->nsproxy
    a57ce97c1978 dm-ebs: don't set the flag DM_TARGET_PASSES_INTEGRITY
    086136ad70c5 scsi: ufs: qcom: Power off the PHY if it was already powered on in ufs_qcom_power_up_sequence()
    6b305e98de0d dm thin: make get_first_thin use rcu-safe list first function
    a4a7ac3d2660 riscv: mm: Fix the out of bound issue of vmemmap address
    387f5b8ad3ff cpuidle: riscv-sbi: fix device node release in early exit of for_each_possible_cpu
    65b31b9d992c ksmbd: fix unexpectedly changed path in ksmbd_vfs_kern_path_locked
    5cc621085e2b platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it
    7673030efe0f afs: Fix the maximum cell name length
    271ae0edbfc9 ksmbd: fix a missing return value check bug
    5b195e6f8bde drm/mediatek: Add return value check when reading DPCD
    5352901f0bf1 drm/mediatek: Fix mode valid issue for dp
    9db527726634 drm/mediatek: Fix YCbCr422 color format issue for DP
    acefaa6993eb drm/mediatek: stop selecting foreign drivers
    7083b93e9755 drm/mediatek: Set private->all_drm_private[i]->drm to NULL if mtk_drm_bind returns err
    229cc1028437 net/mlx5: Fix variable not being completed when function returns
    235419f0956e net: stmmac: dwmac-tegra: Read iommu stream id from device tree
    27202e2e8721 sched: sch_cake: add bounds checks to host bulk flow fairness counts
    d5807dd1328b netfilter: conntrack: clamp maximum hashtable size to INT_MAX
    1e3f5638c96b netfilter: nf_tables: imbalance in flowtable binding
    281855205a7c iio: imu: inv_icm42600: fix timestamps after suspend if sensor is on
    e026530e20e7 x86/mm/numa: Use NUMA_NO_NODE when calling memblock_set_node()
    85e4923bcbcd memblock tests: fix implicit declaration of function 'numa_valid_node'
    b0b415f1a29d riscv: Fix early ftrace nop patching
    52a6d4f16e5b tcp: Annotate data-race around sk->sk_mark in tcp_v4_send_reset
    b455f050709a Bluetooth: btnxpuart: Fix driver sending truncated data
    327bd191bb44 Bluetooth: MGMT: Fix Add Device to responding before completing
    9ba06f078f33 Bluetooth: hci_sync: Fix not setting Random Address when required
    eff2cd6f53a5 eth: gve: use appropriate helper to set xdp_features
    ba9f7c16ec87 ipvlan: Fix use-after-free in ipvlan_get_iflink().
    7397fa36d676 tls: Fix tls_sw_sendmsg error handling
    a78e04e0236b igc: return early when failing to read EECD register
    30254c85b814 igc: field get conversion
    0677b13dd9b0 ice: fix incorrect PHY settings for 100 GB/s
    9d3884f303b0 cxgb4: Avoid removal of uninserted tid
    70163207b57b bnxt_en: Fix possible memory leak when hwrm_req_replace fails
    b7e540c52137 pds_core: limit loop over fw name list
    24b85a8b0310 btrfs: avoid NULL pointer dereference if no valid extent tree
    a8fbf80c4ff5 net: libwx: fix firmware mailbox abnormal return
    e54beb9aed2a net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute
    91f89fe177a4 tcp/dccp: allow a connection when sk_max_ack_backlog is zero
    b2c9204e21b5 tcp/dccp: complete lockless accesses to sk->sk_max_ack_backlog
    41d2e3be0f28 net: 802: LLC+SNAP OID:PID lookup on start of skb data
    45ae076dac49 ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe()
    6c37547a6eeb selftests/alsa: Fix circular dependency involving global-timer
    3d736856e245 ASoC: mediatek: disable buffer pre-allocation
    6754f5473dab ASoC: rt722: add delay time to wait for the calibration procedure
    14f030a807dd erofs: fix PSI memstall accounting
    1bf7e414cac3 erofs: handle overlapped pclusters out of crafted images properly
    a1a541fbfa7e ovl: support encoding fid from inode with no alias
    a3f8a2b13a27 ovl: pass realinode to ovl_encode_real_fh() instead of realdentry
    26423e18cd6f ovl: do not encode lower fh with upper sb_writers held
    1e92afe80197 exfat: fix the infinite loop in __exfat_free_cluster()
    dc1d7afceb98 exfat: fix the infinite loop in exfat_readdir()
    71f4123cf2c7 dm array: fix cursor index when skipping across block boundaries
    14f0e64c2f11 dm array: fix unreleased btree blocks on closing a faulty array cursor
    6002bec5354f dm array: fix releasing a faulty array block twice in dm_array_cursor_end
    a71e465f69be jbd2: flush filesystem device before updating tail sequence
    6b32ff20d16a jbd2: increase IO priority for writing revoke records
    fdebee5c5c2b memblock: use numa_valid_node() helper to check for invalid node ID
    4ddb7f966f3d memblock: make memblock_set_node() also warn about use of MAX_NUMNODES
    843e64492a7e Linux 6.6.71
    a6923798e471 x86/hyperv: Fix hv tsc page based sched_clock for hibernation
    b34e805539da Revert "x86, crash: wrap crash dumping code into crash related ifdefs"
    c8bc44c5f961 Revert "x86/hyperv: Fix hv tsc page based sched_clock for hibernation"
    1acb10106df3 Linux 6.6.70
    9722973ad038 scsi: hisi_sas: Remove redundant checks for automatic debugfs dump
    3de1b50f055d RDMA/bnxt_re: Fix max SGEs for the Work Request
    f61e663d78ff mptcp: don't always assume copied data in mptcp_cleanup_rbuf()
    27c843e76447 mptcp: fix recvbuffer adjust on sleeping rcvmsg
    53fe947f67c9 mptcp: fix TCP options overflow.
    1ff2302e8aea mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim()
    86d946f3f999 mm/kmemleak: fix sleeping function called from invalid context at print message
    424abdec35ec mm/readahead: fix large folio support in async readahead
    cbe9eb2c39d0 gve: guard XDP xmit NDO on existence of xdp queues
    771d66f2bd8c gve: guard XSK operations on the existence of queues
    9b071576f891 fs/proc/task_mmu: fix pagemap flags with PMD THP entries on 32bit
    1f49aaf55652 drm: adv7511: Fix use-after-free in adv7533_attach_dsi()
    79fcfc900abe dt-bindings: display: adi,adv7533: Drop single lane support
    7b977f8c26b6 drm: adv7511: Drop dsi single lane support
    271f031f4c31 net/sctp: Prevent autoclose integer overflow in sctp_association_init()
    b32c3b748d29 sky2: Add device ID 11ab:4373 for Marvell 88E8075
    8c6fd5803b98 pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking
    b92667f75574 RDMA/uverbs: Prevent integer overflow issue
    c9818b61d0a8 scripts/sorttable: fix orc_sort_cmp() to maintain symmetry and transitivity
    edc8ece96c11 kcov: mark in_softirq_really() as __always_inline
    2e3d203b1ade ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv
    d2392b79d8af ALSA: seq: oss: Fix races at processing SysEx messages
    7d1f59defa9e ALSA hda/realtek: Add quirk for Framework F111:000C
    396964d45ca5 ALSA: seq: Check UMP support for midi_version change
    199f04528737 Revert "bpf: support non-r10 register spill/fill to/from stack in precision tracking"
    bc6962f2dbaf modpost: fix the missed iteration for the max bit in do_input()
    f93e9ae0ba5e modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host
    36e1b6890f22 RDMA/bnxt_re: Fix the max WQE size for static WQE support
    c3b5a7d6a13b seq_buf: Make DECLARE_SEQ_BUF() usable
    f2b94ee08ec6 ARC: build: Try to guess GCC variant of cross compiler
    d8f3f7d30f65 irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base
    bef333418368 Bluetooth: hci_core: Fix sleeping function called from invalid context
    d8ecb248c199 net: usb: qmi_wwan: add Telit FE910C04 compositions
    c6b1d01e7a9c smb: client: destroy cfid_put_wq on module exit
    1d7ee876b8b9 ksmbd: set ATTR_CTIME flags when setting mtime
    2f75da8294bf ksmbd: retry iterate_dir in smb2_query_dir
    f53b37313ab6 bpf: fix potential error return
    73a30cb3e980 sound: usb: format: don't warn that raw DSD is unsupported
    325370be0676 sound: usb: enable DSD output for ddHiFi TC44C
    7523dd63ab22 ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model
    0d5e2d476000 ALSA: hda/ca0132: Use standard HD-audio quirk matching helpers
    35916b2f9650 btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount
    d0fafe701c6a drm/amdkfd: Correct the migration DMA map direction
    037ea0f28f9a wifi: mac80211: wake the queues in case of failure in resume
    86772872f9f5 wifi: mac80211: fix mbss changed flags corruption on 32 bit systems
    d6b130fabfe1 net: ti: icssg-prueth: Fix clearing of IEP_CMP_CFG registers during iep_init
    17e8fa894345 ila: serialize calls to nf_register_net_hooks()
    a693b87692b4 af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK
    7aa78d0d8546 af_packet: fix vlan_get_tci() vs MSG_PEEK
    23f2e7a13fa4 net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init()
    ad91a2dacbf8 net: restrict SO_REUSEPORT to inet sockets
    95ccf006bbc8 net: reenable NETIF_F_IPV6_CSUM offload for BIG TCP packets
    9eea3703c882 net: sfc: Correct key_len for efx_tc_ct_zone_ht_params
    b238f61cc394 RDMA/rtrs: Ensure 'ib_sge list' is accessible
    0cd3bde081cd net: wwan: t7xx: Fix FSM command timeout issue
    313474b10897 net: mv643xx_eth: fix an OF node reference leak
    d5ea3a4d02d8 eth: bcmsysport: fix call balance of priv->clk handling routines
    930f2f96734e ALSA: usb-audio: US16x08: Initialize array before use
    0c896816aa19 net: llc: reset skb->transport_header
    4f49349c1963 netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext
    c9b344ada5fd drm/i915/dg1: Fix power gate sequence.
    3e45dd1622a2 net/mlx5e: Skip restore TC rules for vport rep without loaded flag
    e66a99b9177b net/mlx5e: macsec: Maintain TX SA from encoding_sa
    43e589ab372f net/mlx5: DR, select MSIX vector 0 for completion queue creation
    f647d72245aa netrom: check buffer length before accessing it
    36eff8669b74 net: Fix netns for ip_tunnel_init_flow()
    7e9aa1a065dc ipv4: ip_tunnel: Unmask upper DSCP bits in ip_tunnel_xmit()
    3b1a7fb74ab1 ipv4: ip_tunnel: Unmask upper DSCP bits in ip_md_tunnel_xmit()
    ae0710c5cc74 ipv4: ip_tunnel: Unmask upper DSCP bits in ip_tunnel_bind_dev()
    77b1e00fe97e ip_tunnel: annotate data-races around t->parms.link
    2af69905180b net: fix memory leak in tcp_conn_request()
    c6870f86bde6 net: stmmac: restructure the error path of stmmac_probe_config_dt()
    6d01d9f66ae1 net: stmmac: don't create a MDIO bus if unnecessary
    48f63e4e64a5 RDMA/hns: Fix missing flush CQE for DWQE
    be4293e108e2 RDMA/hns: Fix warning storm caused by invalid input in IO path
    2746888be48c RDMA/hns: Fix mapping error of zero-hop WQE buffer
    2049fb6c8bd7 RDMA/hns: Remove unused parameters and variables
    363f502cbfc0 RDMA/hns: Refactor mtr find
    ca2a2cad4efb net: dsa: microchip: Fix LAN937X set_ageing_time function
    7583dd5928b6 net: dsa: microchip: Fix KSZ9477 set_ageing_time function
    fa7f96589f17 drm/bridge: adv7511_audio: Update Audio InfoFrame properly
    f28fa7625536 RDMA/bnxt_re: Fix the locking while accessing the QP table
    cd1547b49b2c RDMA/bnxt_re: Fix MSN table size for variable wqe mode
    2e719d89b9fa RDMA/bnxt_re: Add send queue size check for variable wqe
    3ae9ee7ff3b2 RDMA/bnxt_re: Disable use of reserved wqes
    bb46a484a0c6 RDMA/bnxt_re: Add support for Variable WQE in Genp7 adapters
    9fcfe972758b RDMA/bnxt_re: Fix max_qp_wrs reported
    38b49312da2d RDMA/bnxt_re: Fix reporting hw_ver in query_device
    14f66ac898c9 RDMA/bnxt_re: Add check for path mtu in modify_qp
    183a96174cab RDMA/bnxt_re: Fix the check for 9060 condition
    347654387bb1 nvme-pci: 512 byte aligned dma pool segment quirk
    a0ceed736c88 RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters
    a5092b138e1c RDMA/bnxt_re: Avoid initializing the software queue for user queues
    25e6e9da6926 RDMA/mlx5: Enforce same type port association for multiport RoCE
    5d1d7522cf82 RDMA/bnxt_re: Remove always true dattr validity check
    c91ae7c12d6f RDMA/bnxt_re: Allow MSN table capability check
    f452f397f9a6 tracing: Check "%s" dereference via the field and not the TP_printk format
    55841e8820b9 tracing: Fix trace_check_vprintf() when tp_printk is used
    680c07fabc2b tracing: Handle old buffer mappings for event strings and functions
    6920e362bc08 seq_buf: Introduce DECLARE_SEQ_BUF and seq_buf_str()
    cd27bbe89810 powerpc: Remove initialisation of readpos
    c46547b4686e tracing: Move readpos from seq_buf to trace_seq
    1ec141d8f51b net: mctp: handle skb cleanup on sock_queue failures
    c47ed91156da ceph: give up on paths longer than PATH_MAX
    a64e5295ebc4 tracing: Have process_string() also allow arrays
    de2a10e19226 mmc: sdhci-msm: fix crypto key eviction
    6228f13f1996 btrfs: fix use-after-free in btrfs_encoded_read_endio()
    c1dbd28a0795 selinux: ignore unknown extended permissions
    c2a7fc514637 f2fs: fix to wait dio completion
    23ea763880d6 platform/x86: mlx-platform: call pci_dev_put() to balance the refcount
    d4eb5b3c115d ALSA: ump: Shut up truncated string warning
    8b2e38f2a9b7 usb: xhci: Avoid queuing redundant Stop Endpoint commands
    8a2273e5c1be usb: typec: ucsi: glink: fix off-by-one in connector_status
    a47f0b03149a scsi: hisi_sas: Fix a deadlock issue related to automatic dump
    8c5ad189e90f cleanup: Remove address space of returned pointer
    55779f26eab9 crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes
    9457d783fb94 Bluetooth: btusb: mediatek: add callback function in btusb_disconnect
    3aab20eb1989 Bluetooth: btusb: add callback function in btusb suspend/resume
    9a466b8693b9 btrfs: fix use-after-free when COWing tree bock and tracing is enabled
    0d2cc60b44d0 btrfs: rename and export __btrfs_cow_block()
    151447859d6f x86/fred: Clear WFE in missing-ENDBRANCH #CPs
    9c268be377e7 x86/ptrace: Add FRED additional information to the pt_regs structure
    498bdedca58a x86/ptrace: Cleanup the definition of the pt_regs structure
    48417c3426cf ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A
    4252d023bae7 ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11
    f5a20424084f scsi: mpi3mr: Start controller indexing from 0
    d424303d8d18 scsi: mpi3mr: Use ida to manage mrioc ID
    8d891c866cf7 ALSA: ump: Update legacy substream names upon FB info update
    9617001adfc9 ALSA: ump: Indicate the inactive group in legacy substream names
    cf29cbf61cf2 ALSA: ump: Don't open legacy substream for an inactive group
    b5e175e18a39 ALSA: ump: Use guard() for locking
    b41d73055284 udf: Verify inode link counts before performing rename
    17b312c5d869 udf_rename(): only access the child content on cross-directory rename
    d33523b0beb5 watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler
    e145b77fb5c1 watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset
    7ea100fb50bb watchdog: rzg2l_wdt: Remove reset de-assert from probe
    b222816f9c43 of: address: Preserve the flags portion on 1:1 dma-ranges mapping
    443f803b332b of: address: Store number of bus flag cells rather than bool
    7a40a884f597 of: address: Remove duplicated functions
    6681113633dc x86/hyperv: Fix hv tsc page based sched_clock for hibernation
    e5b1574a8ca2 x86, crash: wrap crash dumping code into crash related ifdefs
    5422f4321640 thunderbolt: Don't display nvm_version unless upgrade supported
    5a23e3e9e245 thunderbolt: Add support for Intel Panther Lake-M/P
    888c554d3dfd thunderbolt: Add support for Intel Lunar Lake
    6cd8e621a689 xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic
    f1ece345ad2c usb: xhci: Limit Stop Endpoint retries
    61329b25dc1d xhci: retry Stop Endpoint on buggy NEC controllers
    43e3aa2f44d6 net: renesas: rswitch: fix possible early skb release
    3dd65ffa2df6 softirq: Allow raising SCHED_SOFTIRQ from SMP-call-function on RT kernel
    d6616dcd8721 net/mlx5: unique names for per device caches
    ddcc7d71be31 Revert "nvme: make keep-alive synchronous operation"
    801acf741c87 nvme: use helper nvme_ctrl_state in nvme_keep_alive_finish function
    2c276bef8273 usb: typec: ucsi: glink: be more precise on orientation-aware ports
    7723988b0127 usb: typec: ucsi: glink: set orientation aware if supported
    01059e0b5cc0 usb: typec: ucsi: add update_connector callback
    fd662c37a108 usb: typec: ucsi: glink: move GPIO reading into connector_status callback
    8dd7fc5e409b usb: typec: ucsi: add callback for connector status updates
    c47940e84398 iio: adc: ad7192: properly check spi_get_device_match_data()
    843b5d1602d6 iio: adc: ad7192: Convert from of specific to fwnode property handling
    f7d548a62f08 usb: chipidea: udc: limit usb request length to max 16KB
    7a2020e83b6a usb: chipidea: add CI_HDRC_HAS_SHORT_PKT_LIMIT flag
    c39df6d3af2d usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag
    c2556801583c fs/ntfs3: Fix warning in ni_fiemap
    48ebb93f933d fs/ntfs3: Implement fallocate for compressed files
    171c40531b04 remoteproc: qcom: pas: enable SAR2130P audio DSP support
    b506a0c41411 remoteproc: qcom: pas: Add support for SA8775p ADSP, CDSP and GPDSP
    25804f9b492b remoteproc: qcom: pas: Add sc7180 adsp
    3c9d3157f3cc mailbox: pcc: Check before sending MCTP PCC response ACK
    d8c0f38208a4 ACPI: PCC: Add PCC shared memory region command and status bitfields
    4460b5236818 i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros
    dcc02c9ebfe8 mailbox: pcc: Support shared interrupt for multiple subspaces
    605018764e21 mailbox: pcc: Add support for platform notification handling
    82461d89c849 clk: qcom: clk-alpha-pll: Add NSS HUAYRA ALPHA PLL support for ipq9574
    deff81f56dff clk: qcom: clk-alpha-pll: Add support for zonda ole pll configure
    7c8c50c9855a scsi: hisi_sas: Create all dump files during debugfs initialization
    044928679823 scsi: hisi_sas: Allocate DFX memory during dump trigger
    91e035e98fa1 scsi: hisi_sas: Directly call register snapshot instead of using workqueue
    4f4fe3db92bb Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925
    f8a67ffb96c9 Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925
    1e7b1a8e7b6e Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925
    e612c16ed0b7 Bluetooth: Add support ITTIM PE50-M75C
    ca4e69826d67 Bluetooth: hci_conn: Reduce hci_conn_drop() calls in two functions
    6e6a3479986a i2c: i801: Add support for Intel Panther Lake
    f38ca98b0721 i2c: i801: Add support for Intel Arrow Lake-H
    b35de9e01fc7 wifi: ath10k: avoid NULL pointer error during sdio remove
    358c36eae58d wifi: ath10k: Update Qualcomm Innovation Center, Inc. copyrights
    3ed6b2daa4e9 wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask()
    dc6094108573 wifi: mac80211: Add non-atomic station iterator
    4eceef729c84 wifi: ath12k: Optimize the mac80211 hw data access
    3d94c4b21966 wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb
    24b5898a8c73 wifi: mac80211: export ieee80211_purge_tx_queue() for drivers
    ed01e57a8169 media: uvcvideo: Force UVC version to 1.0a for 0408:4033
    9471b8f80526 media: uvcvideo: Force UVC version to 1.0a for 0408:4035
    8fa6f680b5aa cleanup: Adjust scoped_guard() macros to avoid potential warning
    873df38bdf42 cleanup: Add conditional guard support
    4b6beff3c073 crypto: ecdsa - Avoid signed integer overflow on signature decoding
    ec6488917941 crypto: ecdsa - Use ecc_digits_from_bytes to convert signature
    1afc7acbedb8 crypto: ecdsa - Rename keylen to bufsize where necessary
    e7fcd5d696c4 crypto: ecdsa - Convert byte arrays with key coordinates to digits
    93011887013d ext4: partial zero eof block on unaligned inode size extension
    fa42d5f1327f ext4: convert to new timestamp accessors
    1864d4712c4b memblock: allow zero threshold in validate_numa_converage()
    6fdc770506eb NUMA: optimize detection of memory with no node id assigned by firmware
    3adf89f17dbd sched: Initialize idle tasks only once
    106740e978c7 usb: dwc3: gadget: Add missing check for single port RAM in TxFIFO resizing logic
    39619c65ab4b smb: client: fix use-after-free of signing key
    d7cb986425ce smb: client: stop flooding dmesg in smb2_calc_signature()
    5f36890d650c fs/smb/client: implement chmod() for SMB3 POSIX Extensions
    d64429042fef smb/client: rename cifs_ace to smb_ace
    298e73ac323a smb/client: rename cifs_acl to smb_acl
    46c22d37f691 smb/client: rename cifs_sid to smb_sid
    386660bd303e smb/client: rename cifs_ntsd to smb_ntsd
    8322a66f9369 x86/mm: Carve out INVLPG inline asm for use by others
    bffaf4cb2810 docs: media: update location of the media patches
    e8b8c1ecbd2c drm/amd/display: Fix incorrect DSC recompute trigger
    3f9f631f9b91 drm/amd/display: Fix DSC-re-computing
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 989dc0cea1de8c971fb68494b647c6c194feaed2)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Peter Marko
c9c3355836 python3: upgrade 3.12.8 -> 3.12.9
Release notes:
https://docs.python.org/release/3.12.9/whatsnew/changelog.html#python-3-12-9

Solves CVE-2025-0938, CVE-2024-12254 and 3 other vulnerabilities without
CVE number assigment.

Add a patch to fix failure of a new test.

(From OE-Core rev: 685b2719ae9b44c238e63942efabe52e5df7d640)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Archana Polampalli
1430219d5e gstreamer1.0-rtsp-server: fix CVE-2024-44331
Incorrect Access Control in GStreamer RTSP server 1.25.0 in gst-rtsp-server/rtsp-media.c
allows remote attackers to cause a denial of service via a series of specially crafted
hexstream requests.

(From OE-Core rev: 3e7b7697ec32b0fa2808efcff4a6bd544261b3fe)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Archana Polampalli
f40fb67618 ffmpeg: fix CVE-2024-35369
In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module,
a potential security vulnerability exists due to insufficient validation
of certain parameters when parsing Speex codec extradata. This vulnerability
could lead to integer overflow conditions, potentially resulting in undefined
behavior or crashes during the decoding process.

(From OE-Core rev: c46bb37a76582ee7352f2bc027920e8ba76e5c15)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Archana Polampalli
8ad8857f14 ffmpeg: fix CVE-2024-36619
FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec
library which allows for an integer overflow when handling certain block types,
leading to a denial-of-service (DoS) condition.

(From OE-Core rev: 161711ba2ef14fa77fba4740b1933c68043c57c7)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Archana Polampalli
c4593e71a8 ffmpeg: fix CVE-2024-36618
FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library
which allows for an integer overflow, potentially resulting in a denial-of-service
(DoS) condition.

(From OE-Core rev: 21230d5dfe908533958712e06316a253e16b9d2e)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:54 -08:00
Archana Polampalli
25d16d3a0c ffmpeg: fix CVE-2024-36617
FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder.

(From OE-Core rev: 8057ba630477a7aeedf057b7e1ce25ab0c445665)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:53 -08:00
Archana Polampalli
8987080027 ffmpeg: fix CVE-2024-36616
An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1
allows attackers to cause a denial of service in the application via a crafted VQA file.

(From OE-Core rev: fe7df1727d8ea4868091236ddfff7ea862c1ada8)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:53 -08:00
Archana Polampalli
4b8e4e26f0 ffmpeg: fix CVE-2024-36613
FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library
allowing for an integer overflow, potentially resulting in a denial-of-service
(DoS) condition or other undefined behavior.

(From OE-Core rev: 5661bac10db7e20064c10660c47c361b7d2418ee)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:53 -08:00
Archana Polampalli
91c50c28c6 ffmpeg: fix CVE-2024-35365
FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_init.c
component of FFmpeg, specifically within the new_stream_audio function.

(From OE-Core rev: 051bc7afc01e72d5ef0fc14683689ab45e4eaab8)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-14 06:38:53 -08:00
Lee Chee Yang
b9a67c0ce5 migration-guides: add release notes for 4.0.24
(From yocto-docs rev: 0e9cc7e9ad5c8bbd7f12a192bff103c118d7f7bb)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1c848b4104ee0ba9b07cdb424bb829d14f9982d7)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Antonin Godard
b52f42dd3b ref-manual/faq: add q&a on systemd as default
Originally written by Richard Purdie, but formatted in rst syntax and
slight rephrasing.

Cc: Richard Purdie <richard.purdie@linuxfoundation.org>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 65235b647a855c0ffc8aa71e06b05b78d62ba773)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 110690bee14f7263a5a34145e91e4450ec3bf4e6)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Simon A. Eugster
f32902112e documentation: Fix typo in standards.md
(From yocto-docs rev: 103b6955a11d7ece345ac0169317b8a8b8e8a0d9)

Signed-off-by: "Simon A. Eugster" <simon.eu@gmail.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit e6745669cc26de8f61d5d1ccdd5a95b552eece97)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Alexander Kanavin
fda81f7c20 selftest/rust: correctly form the PATH environment variable
There were two issues here:

- the path to native python was not included, so the test
suite was running with host python, causing failures due to
host python being given native libraries:
https://autobuilder.yoctoproject.org/typhoon/#/builders/148/builds/1711/steps/12/logs/stdio
(rust recipe uses native python throughout)

- tmp/hosttools was listead ahead of native-sysroot/usr/bin

(From OE-Core rev: 72156282059aa5a013a386eb95f89dc38726326e)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit aec96b5aec8d6b4a5ae8a719ca05bb727a6197cb)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Ross Burton
48ac27c8dc oeqa/selftest/rust: skip on all MIPS platforms
As per "The rustc book"[1], mips*-unknown-linux-* are "tier 3" targets:

  Tier 3 targets are those which the Rust codebase has support for, but
  which the Rust project does not build or test automatically, so they
  may or may not work.

We already skip qemumips in this selftest, but we're now also seeing
failures with qemumips64 so refactor the test to skip all machines where
the architecture is mips or mips64.

[1] https://doc.rust-lang.org/nightly/rustc/platform-support.html

(From OE-Core rev: 681f5ea8d6a5050aebfb1f656da9ba679433e366)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 177e268811c04260923ac4b16fa047315304add0)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Harish Sadineni
bed811824b oeqa/sdk/context: fix for gtk3 test failure during do_testsdk
The do_testsdk for lib32-core-image-sato aborts with below error:
configure: error: Package requirements (gtk+-3.0) were not met:
No package 'gtk+-3.0' found
Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix.

This causes due to an absolute path name in 'sdk_env', which is now stripped to have only the environment name.

Backport from oe-core master: https://git.openembedded.org/openembedded-core/commit/?id=386e4132a9ced75599d92610cf5c0e8fe907c3b6

(From OE-Core rev: 83c3e40e2361d771a724062e38a1349b87059c75)

Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Harish Sadineni
fbaa6a601f rust: remove redundant cargo config file
YOCTO [#15061]
The rust target and linker are getting setting from the sdk environment and
so the config file is not needed. The redundant config file geneartion is removed.

Backport from oe-core master: https://git.openembedded.org/openembedded-core/commit/?id=d5f78816d2ad0f3e43ce883eef199d1683cfcbb4

(From OE-Core rev: 12fd08cf4009d0284ab951cc48a479dcbc74db42)

Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Harish Sadineni
c61736066e rust: fix for rust multilib sdk configuration
YOCTO [#15061]
The rust sdk installs both 'rust.sh' and 'cargo.sh' for lib32 and lib64 in the same location.
This causes below error while installing the lib32 & lib64 binaries:

Error: Transaction test error:
  file /usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-pokysdk-linux/environment-setup.d/cargo.sh
conflicts between attempted installs of rust-cross-canadian-arm-1.67.1-r0.x86_64_nativesdk and
 rust-cross-canadian-aarch64-1.67.1-r0.x86_64_nativesdk
  file /usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-pokysdk-linux/environment-setup.d/rust.sh
conflicts between attempted installs of rust-cross-canadian-arm-1.67.1-r0.x86_64_nativesdk and
rust-cross-canadian-aarch64-1.67.1-r0.x86_64_nativesdk
ERROR: Task (virtual:multilib:lib32:/media/build/poky/meta/recipes-sato/images/core-image-sato.bb:do_populate_sdk)
failed with exit code '1'

The change includes:
- Prepending '${RUST_TARGET_SYS}' to 'rust.sh' to differentiate between target systems.
- Moving the non-target-specific environment variables to 'nativesdk-cargo' and 'nativesdk-rust',
instead of being managed by the cross-canadian recipe.

Backport from oe-core master: https://git.openembedded.org/openembedded-core/commit/?id=40eb4bfe2f100ba5301046ca25110fcc55a640bb

(From OE-Core rev: 889cda30baccd43e5c82b38752b462aef4ce626c)

Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Pedro Ferreira
d1f9cbae40 rust-common.bbclass: soft assignment for RUSTLIB path
As a user i want to override `RUSTLIB` path on a bbclass, lets
call it `XYZ.bbclass`.

If a certain recipe inherits `cargo.bbclass` and `XYZ.bbclass` the
value of `RUSTLIB` is dependent on the order of the inherit.

If `cargo.bbclass` is inherit before `XYZ.bbclass` this will reflect
the desired value of `RUSTLIB`, on the oposite, if the `XYZ.bbclass`
is inherit before `cargo.bbclass` then the `RUSTLIB` defined on
`rust-common.bbclass` will prevail.

Changed definition of `RUSTLIB` to soft assignment to make it overridable.

(From OE-Core rev: b71da7dd831d768d829c74f6137152f2ca6141b0)

Signed-off-by: Pedro Silva Ferreira <Pedro.Silva.Ferreira@criticaltechworks.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
(cherry picked from commit 6eeb832f73ffb48f5f05dc47191f60e4599e640f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Alexander Kanavin
c7e8807ddd pkg-config-native: pick additional search paths from $EXTRA_NATIVE_PKGCONFIG_PATH
This was prompted by working on librsvg update: the new meson-driven
version wants to query values from .pc files residing in its own
build directory, and modifies PKG_CONFIG_PATH accordingly.

When using the pkg-config-native wrapper such modifications
have no effect, and we have to pass them in manually
from the recipe via EXTRA_NATIVE_PKGCONFIG_PATH variable.

This variable is already defined (with an empty value) and
appended to PKG_CONFIG_PATH export in the native class, so this
simply extends its use to the wrapper.

(Appending to PKG_CONFIG_PATH in the wrapper, instead of resetting it,
is not an option as that can lead to contamination with the cross values).

(From OE-Core rev: 2bc050146d47b14d890a1b0db2b55f9057a08b65)

(From OE-Core rev: 104737073bd553b9cf93db7ed9575fd50ba6c973)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Jiaying Song
6d1fef08e1 binutils: File name too long causing failure to open temporary head file in dlltool
During the execution of the command: i686-w64-mingw32-dlltool
--input-def $def_filepath --output-delaylib $filepath --dllname qemu.exe
An error occurred:
i686-w64-mingw32-dlltool: failed to open temporary head file: ..._w64_mingw32_nativesdk_qemu_8_2_2_build_plugins_libqemu_plugin_api_a_h.s

Due to the path length exceeding the Linux system's file name length
limit (NAME_MAX=255), the temporary file name generated by the
i686-w64-mingw32-dlltool command becomes too long to open. To address
this, a new temporary file name prefix is generated using tmp_prefix =
prefix_encode ("d", getpid()), ensuring that the file name does not
exceed the system's length limit.

Allow for "snnnnn.o" suffix when testing against NAME_MAX, and tidy
TMP_STUB handling by overwriting a prior nnnnn.o string rather than
copying the entire name.

(From OE-Core rev: 617df4ee1d6523ded43f156af8206dfca2c0c8ee)

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Esben Haabendal
e723021fbc files: overlayfs-create-dirs: Improve mount unit dependency
The RequiresMountsFor configuration option of systemd.unit (added in
systemd version 201) not only adds the Requires and After options for
the required mount unit, but it adds them for all mount units required
to access the specified path.

So this change is both a simplification, and an improvement.

Not only will all needed mount units be added to Requires and After, but
the overlay path does not have to be a mountpoint, but can be at any
directory level beneath a mountpoint.

(From OE-Core rev: e00920c55a44058e8d2b063bf865df11e59a6185)

Signed-off-by: Esben Haabendal <esben@geanix.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Ross Burton <ross.burton@arm.com>
(cherry picked from commit fa2422232a143b21aeea3728abca82100946dbc4)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Esben Haabendal
32dd056113 files: Amend overlayfs unit descriptions with path information
Having something like

Starting Overlayfs directories setup /home...
Starting Overlayfs directories setup /root...
Finished Overlayfs directories setup /home.
Finished Overlayfs directories setup /root.
Mounting Overlayfs mount unit /home...
Mounting Overlayfs mount unit /root...
Mounted Overlayfs mount unit /root.
Mounted Overlayfs mount unit /home.

is much more informative than

Starting Overlayfs directories setup...
Starting Overlayfs directories setup...
Finished Overlayfs directories setup.
Finished Overlayfs directories setup.
Mounting Overlayfs mount unit...
Mounting Overlayfs mount unit...
Mounted Overlayfs mount unit.
Mounted Overlayfs mount unit.

Especially as the number of overlayfs mount units increase.

(From OE-Core rev: 9eb6c41e1c5411193a19e73af81f628171b01407)

Signed-off-by: Esben Haabendal <esben@geanix.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 7308b4fc6f51bdf2b8f3b7899ff3758c5968e418)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Wang Mingyu
64c9bf6fe2 gnupg: upgrade 2.4.4 -> 2.4.5
Changelog:
==========
* gpg,gpgv: New option --assert-pubkey-algo.
* gpg: Emit status lines for errors in the compression layer.
* gpg: Fix invocation with --trusted-keys and --no-options.
* gpgsm: Allow for a longer salt in PKCS#12 files.
* gpgtar: Make --status-fd=2 work on Windows.
* scd: Support for the ACR-122U NFC reader.
* scd: Suport D-TRUST ECC cards.
* scd: Allow auto detaching of kernel drivers; can be disabled with
  the new compatibility-flag ccid-no-auto-detach.
* scd: Allow setting a PIN length of 6 also with a reset code for
  openpgp cards.
* agent: Allow GET_PASSPHRASE in restricted mode.
* dirmngr: Trust system's root CAs for checking CRL issuers.
* dirmngr: Fix regression in 2.4.4 in fetching keys via hkps.
* gpg-wks-client: Make option --mirror work properly w/o specifying
  domains.
* g13,gpg-wks-client: Allow command style options as in "g13 mount
  foo".
* Allow tilde expansion for the foo-program options.
* Make the getswdb.sh tool usable outside the GnuPG tree.

(From OE-Core rev: a596d0e3802486dce9eeee2a9cbfdc6372a182d5)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Peter Marko
b60e852b74 glibc: stable 2.39 branch updates
Solves CVE-2025-0395

git log:
662516aca8 stdlib: Test using setenv with updated environ [BZ #32588]
1432850ad8 malloc: obscure calloc use in tst-calloc
c1f7bfbe08 Hide all malloc functions from compiler [BZ #32366]
808a84a8b8 Fix underallocation of abort_msg_s struct (CVE-2025-0395)
994b129a35 x86/string: Fixup alignment of main loop in str{n}cmp-evex [BZ #32212]
61daaa7639 x86: Improve large memset perf with non-temporal stores [RHEL-29312]
2c8a7f14fa x86: Avoid integer truncation with large cache sizes (bug 32470)
2c882bf9c1 math: Exclude internal math symbols for tests [BZ #32414]
51da74a97e malloc: add indirection for malloc(-like) functions in tests [BZ #32366]
aa8768999e Pass -nostdlib -nostartfiles together with -r [BZ #31753]
350db28393 nptl: initialize cpu_id_start prior to rseq registration
9a0e174a39 nptl: initialize rseq area prior to registration

test results:
            Before After  Diff
FAIL           208   210    +2
PASS          4906  4905    -1
UNSUPPORTED    230   230     0
XFAIL           16    16     0
XPASS            4     4     0

failed test changes:
- nptl/tst-mutexpi8-static
- stdlib/tst-qsort4
+ malloc/tst-dynarray-fail-mem
+ malloc/tst-malloc_info
+ malloc/tst-malloc_info-malloc-check
+ malloc/tst-malloc_info-malloc-hugetlb2

(From OE-Core rev: 54181d6ca63a720dcebb241892e76e9cdd75260c)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Deepesh Varatharajan
bfc9fc4a48 binutils: stable 2.42 branch update
Below commits on binutils-2.42 stable branch are updated.
758a2290dbd PR32387 ppc64 TLS optimization bug with -fno-plt code
ed489bf1574 s390: Add arch15 Concurrent-Functions Facility insns
64e8e16a906 s390: Add arch15 instruction names

Tested on qemux86_64.
There were no additional PASS or FAIL after the update

(From OE-Core rev: 6ce232df15834cae44f3eda0f786132086afb76e)

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-12 06:25:37 -08:00
Antonin Godard
184adcbc32 dev-manual/building: document the initramfs-framework recipe
[ YOCTO #14747 ]

Adding a initramfs is a common task, and the way oe-core offers to do so
is by using the initramfs-framework recipe and companion modules. There
was already documentation on adding an initramfs but the documentation
was lacking details on this framework. Add it before the multiconfig
section because it is a bit more important IMO.

Reported-by: Alejandro <alejandro@enedino.org>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: e1aa69d00e20a5d3c948c430ed10eb01e7baa574)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit caedbca4eced4cf5bc74aaae64e4ad2887c2fc65)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Antonin Godard
3669699eb3 test-manual/ptest: link to common framework ptest classes
We document how to add ptest support for a recipe by inheriting the
ptest class. We may as well tell the user to inherit a ptest class for a
common framework which does most of the job for you.

Suggested-by: Quentin Schulz <quentin.schulz@cherry.de>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 96645900c93abb95419f81e1553d988f3f68dc6a)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 411b18e489a97ea4cde05613cdd4c86deb0cb8cb)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Adrian Freihofer
4237da0c36 sdk-manual: extensible.rst: devtool ide-sdk improve
The devtool ide-sdk section is reformulated to be independent of the
eSDK installer. In fact, ide-sdk does not even support the execution
of an installer-based setup.
This reformulation is also a preparation for moving the devtool
documentation to a dedicated devtool section which is independent from
the eSDK documentation.
It should be clarified that devtool ide-sdk starts the SDK directly
from the bitbake environment. It is therefore an alternative to
bitbake -c populate_sdk_ext and installing an SDK installer.

A warning is added that explains some workarounds for some nasty
behavior of VSCode when running it in a bitbake environment.

(From yocto-docs rev: 87b37eabd1db05d9cb3f689cf43f1e6f4d649a97)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Reviewed-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 287817f33688d61f7a71c056bfa5c645edb4fc4e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Adrian Freihofer
c1ee271d35 uboot-config: fix devtool modify with kernel-fitimage
How to reproduce:
- UBOOT_CONFIG must be used. With UBOOT_MACHINE it works fine.
  A simple example based on oe-core is to modify the
  beaglebone-yocto.conf file like this:
  -UBOOT_MACHINE = "am335x_evm_defconfig"
  +UBOOT_CONFIG = "foo"
  +UBOOT_CONFIG[foo] = "am335x_evm_defconfig"
- A build configuration which inherits the kernel-fitimage.bbclass is
  needed. For example:
  MACHINE = "beaglebone-yocto"
  KERNEL_IMAGETYPE = "Image"
  KERNEL_IMAGETYPES += " fitImage "
  KERNEL_CLASSES = " kernel-fitimage "

devtool modify linux-yocto
devtool build linux-yocto
...
| cp: cannot stat '.../linux-yocto-6.6.21+git/am335x_evm_defconfig/.config':
  No such file or directory
| WARNING: .../linux-yocto/6.6.21+git/temp/run.do_configure.2081673:172 exit 1
  from 'cp .../linux-yocto-6.6.21+git/am335x_evm_defconfig/.config
  .../build/workspace/sources/linux-yocto/.config.baseline'

The reason for this problem is that the uboot-config.bbclass sets the
variable KCONFIG_CONFIG_ROOTDIR to a path that makes sense for u-boot,
but not for other recipes. However, the kernel-fitimage.bbclasse, for
example, inherits the uboot-config.bbclass, which brings the
u-boot-specific path into the kernel build context.

This change removes the uboot-specific KCONFIG_CONFIG_ROOTDIR path from
recipes other than u-boot itself.

(From OE-Core rev: 37835788d0772568f3551532eacbf810a4a6e47b)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from b23581a22619c52724c8e078f29e871e2ee74259)
Signed-off-by: Leonard Anderweit <l.anderweit@phytec.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Adrian Freihofer
f997a192d6 devtool: ide-sdk remove the plugin from eSDK installer
The ide-sdk command bootstraps the SDK from the bitbake environment
before the IDE configuration is generated. In the case of the eSDK
installer, the bootstrapping is performed during the installation of
the eSDK installer. Running the ide-sdk plugin from an eSDK installer
based setup would require skipping the bootstrapping and probably taking
some other differences into account when generating the IDE
configurations.

This would be possible. But it will probably never be implemented, as
running devtool ide-sdk directly from the bitbake environment is much
more flexible.
Also, some of the recent improvements that have made it into the core
have the potential to make the eSDK installer obsolete at some point in
the future:
- bitbake-layers create-layers-setup replicates the layers
- bitbake-config-build replicates the build configuration
- The new sstate mirror features replicate the sstate
- bblock locks the sstate more flexible than the eSDK installer
- devtool ide-sdk bootstraps the SDK directly from the bitbake
  environment. The same environment-setup... file is provided with
  --mode=shared.
  The devtool modify based workflow is supported since always by devtool
  and also the default --mode of devtool ide-sdk.
These functions essentially cover what the eSDK installer does without
a need for the current implementation of the eSDK installer and the
populate_sdk_ext, which is hard to maintain and takes a lot of time to
build.
This means that instead of making the ide-sdk plugin compatible with the
eSDK installer, we should rather replace the current implementation of
the eSDK installer and populate_sdk_ext with an implementation that can
replicate a normal bitbake environment in a convenient way where the
ide-sdk plugin also just works without additional complexity.

(From OE-Core rev: f50306ea3e174b8db46b20b68a7ac4299a69f50d)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Adrian Freihofer
37b09dcab5 oe-selftest: devtool ide-sdk use modify debug-build
(From OE-Core rev: 1528d6aa060811402eaecb1a9fe16bfec0417c98)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Adrian Freihofer
04484c6dde devtool: ide-sdk recommend DEBUG_BUILD
The debug_build_config function was never called. Compiling with debug
optimized compiler flags was not working. Even with the
--debug-build-config flag set, the build configuration from the recipe
was used.

The devtool ide-sdk --debug-build-config approach didn't work very well
anyway. The problem is that changing the bbappend file doesn't work
while bitbake uses the bbappend file. As a workaround, it would be
possible to parse the recipe, get DEBUG_BUILD and the path to the append
file, exit tinfoil, change the bbappend file, reopen tinfoil and do what
ide-sdk is supposed to do. Such an implementation would be complicated
and slow.
Therefore, the code that was originally supposed to implement this is
removed from ide-sdk and the new --debug-build function of devtool
modify is used instead. Additionally, a hint should be given on how to
manually add DEBUG_BUILD = '1' to bbappend.

This is compatible with the VSCode Bitbake plug-in, which does not
support this parameter anyway.

(From OE-Core rev: 23795962683c792347a17854fb0521734497d4a8)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Adrian Freihofer
d104122e52 devtool: ide-sdk sort cmake preset
Sort the keys of the generated CMakeUserPreset.json file to make it
easier to search and compare.

(From OE-Core rev: b12dbde1ea30dd0fc1dd9352de948b8377c347fa)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Adrian Freihofer
8eb59ff517 devtool: modify support debug-builds
Add a new option --debug-builds to automatically add DEBUG_BUILD = “1”
to the bbappend file of this recipe. This is especially useful when
invoking devtool modify before invoking devtool ide-sdk to perform a
remote debugging session.

(From OE-Core rev: fa30d8dd71393e10aa678c6e938c23d486b336c6)

Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Marek Vasut
29d32063ac u-boot: kernel-fitimage: Fix dependency loop if UBOOT_SIGN_ENABLE and UBOOT_ENV enabled
In case both UBOOT_SIGN_ENABLE and UBOOT_ENV are enabled and
kernel-fitimage.bbclass is in use to generate signed kernel
fitImage, there is a circular dependency between uboot-sign
and kernel-fitimage bbclasses . The loop looks like this:

kernel-fitimage.bbclass:
- do_populate_sysroot depends on do_assemble_fitimage
  - do_assemble_fitimage depends on virtual/bootloader:do_populate_sysroot
    - virtual/bootloader:do_populate_sysroot depends on virtual/bootloader:do_install
      => The virtual/bootloader:do_install installs and the
         virtual/bootloader:do_populate_sysroot places into
         sysroot an U-Boot environment script embedded into
         kernel fitImage during do_assemble_fitimage run .

uboot-sign.bbclass:
- DEPENDS on KERNEL_PN, which is really virtual/kernel. More accurately
  - do_deploy depends on do_uboot_assemble_fitimage
  - do_install depends on do_uboot_assemble_fitimage
  - do_uboot_assemble_fitimage depends on virtual/kernel:do_populate_sysroot
    => do_install depends on virtual/kernel:do_populate_sysroot

=> virtual/bootloader:do_install depends on virtual/kernel:do_populate_sysroot
   virtual/kernel:do_populate_sysroot depends on virtual/bootloader:do_install

Attempt to resolve the loop. Pull fitimage configuration options into separate
new configuration file image-fitimage.conf so these configuration options can
be shared by both uboot-sign.bbclass and kernel-fitimage.bbclass, and make use
of mkimage -f auto-conf / mkimage -f auto option to insert /signature node key-*
subnode into U-Boot control DT without depending on the layout of kernel fitImage
itself. This is perfectly valid to do, because the U-Boot /signature node key-*
subnodes 'required' property can contain either of two values, 'conf' or 'image'
to authenticate either selected configuration or all of images when booting the
fitImage.

For details of the U-Boot fitImage signing process, see:
https://docs.u-boot.org/en/latest/usage/fit/signature.html
For details of mkimage -f auto-conf and -f auto, see:
https://manpages.debian.org/experimental/u-boot-tools/mkimage.1.en.html#EXAMPLES

(From OE-Core rev: 259bfa86f384206f0d0a96a5b84887186c5f689e)

Fixes: 5e12dc911d0c ("u-boot: Rework signing to remove interdependencies")
Reviewed-by: Adrian Freihofer <adrian.freihofer@siemens.com>
(From OE-Core rev: d7bd9c6276611c8c8de0c2a24947783eae5d932a)

Signed-off-by: Marek Vasut <marex@denx.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Peter Marko
0043e07c6c go: upgrade 1.22.10 -> 1.22.11
Upgrade to latest 1.22.x release [1]:

$ git --no-pager log --oneline go1.22.10..go1.22.11
f072884354 (tag: go1.22.11) [release-branch.go1.22] go1.22.11
b72d56f98d [release-branch.go1.22] net/http: persist header stripping across repeated redirects
19d2103415 [release-branch.go1.22] crypto/x509: properly check for IPv6 hosts in URIs
ae9996f965 [release-branch.go1.22] runtime: hold traceAcquire across casgstatus in injectglist
223260bc63 [release-branch.go1.22] crypto/tls: fix Config.Time in tests using expired certificates

Fixes CVE-2024-45336 and CVE-2024-45341

[1] https://github.com/golang/go/compare/go1.22.10...go1.22.11

(From OE-Core rev: 4589986602319f9ed61e381b333bb53b731eb8d8)

(From OE-Core rev: 35bf053cd41d53a764ef3a2de3e7cb1e6c81109f)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Peter Marko
b89ad86aaf go: upgrade 1.22.9 -> 1.22.10
Upgrade to latest 1.22.x release [1]:

$ git --no-pager log --oneline go1.22.9..go1.22.10
8f3f22eef8 (tag: go1.22.10) [release-branch.go1.22] go1.22.10
6d7a95abca [release-branch.go1.22] runtime: reserve 4kB for system stack on windows-386
6f05fa7a4f [release-branch.go1.22] syscall: mark SyscallN as noescape
3355db9690 [release-branch.go1.22] time: accept "+01" in TestLoadFixed on OpenBSD

[1] https://github.com/golang/go/compare/go1.22.9...go1.22.10

(From OE-Core rev: e357c93b39df938dc36195dbd779a58b2951b8e6)

(From OE-Core rev: 4d35279eed634f5e2b25c23dddbfb213c4943c30)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Peter Marko
d8de907e8e go: upgrade 1.22.8 -> 1.22.9
Upgrade to latest 1.22.x release [1]:

$ git --no-pager log --oneline go1.22.8..go1.22.9
8af39d30a4 (tag: go1.22.9) [release-branch.go1.22] go1.22.9
c19e5887f4 [release-branch.go1.22] cmd/cgo/internal/testcarchive: remove 1-minute timeout
e3fd4ba7f9 [release-branch.go1.22] cmd/link: generate Mach-O UUID when -B flag is specified
29252e4c5a [release-branch.go1.22] runtime: fix TestGdbAutotmpTypes on gdb version 15

[1] https://github.com/golang/go/compare/go1.22.8...go1.22.9

(From OE-Core rev: 4f2f202506bcefb4d6c46a11738e159e261a4a4b)

(From OE-Core rev: a424422df978e267f21938bb290f35035e658d0a)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Guðni Már Gilbert
2c4028b559 systemd: upgrade 255.13 -> 255.17
The update includes 156 commits. Full list of changes can be found on Github [1]

All patches were refreshed with devtool. One patch had to be manually
rebased to resolve a merge conflict introduced with 255.14 [2].

[1] https://github.com/systemd/systemd-stable/compare/v255.13...v255.17
[2] 0003-src-basic-missing.h-check-for-missing-strndupa.patch

(From OE-Core rev: 57ca5a2c912fcc4836f263ff2b98c9de2130f324)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Peter Marko
8cfec29457 openssl: patch CVE-2024-13176
Picked [1] per link in [2]

[1] 4b1cb94a73
[2] https://nvd.nist.gov/vuln/detail/CVE-2024-13176

(From OE-Core rev: 7f9bb49394185fea268397db4fc7d96afae53f28)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-02-03 06:13:13 -08:00
Steve Sakoman
7dad83c7e5 build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: 62cb12967391db709315820d48853ffa4c6b4740)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-26 14:08:20 -08:00
Alexander Kanavin
dd941e5746 rust: correctly link rust-snapshot into build/stage0
This does not seem to be used in regular builds, but is beneficial
in rust selftest, where it allows dropping a custom patch
that is unsuitable for upstream (and was rejected by them).

Also remove an obsolete comment that seems related to the code
but describes something that was resolved long time ago.

I have confirmed that the rust selftest continues to pass with just
this one commit on top of master (as the following changes do break
the selftest).

(From OE-Core rev: 9b23f995fbc1886c36f02b0c6e1ccaf2ee0f6daa)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bf5732e2b235ce06fa1f24fe8f0dbcbc068500e3)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-26 14:04:46 -08:00
Alexander Kanavin
04976a1e40 rust: use rust-snapshot binaries only in rust-native
Otherwise, use rust-native and cargo-native binaries as that allows
our native tweaks in them to be used for target/nativesdk rust -
same as for everything else written in rust.

In particular, this allows building target rust with
cargo-native that includes important reproducibility tweaks.

Unfortunately, this also breaks rust selftest, and that
is partially addressed by the following commit.

[YOCTO #15185]

(From OE-Core rev: d592bc02b0846411796c1d481c09833559d1d29f)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 8f2230cb51fe22ef4711a56fecfab4858c04e35b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-26 14:04:46 -08:00
Alexander Kanavin
e4de7259e4 rust: build the default set of tools
Setting it explicitly replaces rust's default choice which is rustdoc
(needed for example in selftests and otherwise expected to be present
in typical rust installations):

https://github.com/rust-lang/rust/blob/master/config.example.toml#L320

This addresses some of the rust selftest failures but not all. Help
is appreciate to restore the selftest.

Unfortunately, this also breaks rust reproducibility (or rather exposes
that it was never properly fixed, as explained here:
https://lists.openembedded.org/g/openembedded-core/message/199288
)

(From OE-Core rev: 4d739fe248d1023eb2c3c040fc4d33273dd16bc1)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 58eaf2ee6c0809bf0a0d3c1d177e62bda7241651)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-26 14:04:46 -08:00
Steve Sakoman
e3b771d7b6 Revert "rust: Add new varaible RUST_ENABLE_EXTRA_TOOLS"
This reverts commit 136a25567499191b23a4d000a06bf83a473224ca.

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-26 14:04:46 -08:00
Steve Sakoman
df5c19f5d1 build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: 3c31639dd53e32e57af64d50ad168f5c3911c299)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:26:18 -08:00
Steve Sakoman
4351b5cb4b poky.conf: bump version for 5.0.7
(From meta-yocto rev: 03c7935bcdb15fd903d26828085d49c00267b8d9)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:22:54 -08:00
Jiaying Song
fdfd852797 boost: fix do_fetch error
Change the SRC_URI to the correct value due to the following error:
WARNING: boost-native-1.84.0-r0 do_fetch: Checksum failure encountered with download of https://boostorg.jfrog.io/artifactory/main/release/1.84.0/source/boost_1_84_0.tar.bz2 - will attempt other sources if available

(From OE-Core rev: 7ecd0d5584b7692b58ac8039b4107c4e0836d553)

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Harish Sadineni
c10bc18cab rust-target-config: Fix TARGET_C_INT_WIDTH with correct size
[YOCTO #15600]

The TARGET_C_INT_WIDTH value was incorrectly set to 64 instead of 32.
It is updated for PPC, Mips, and riscv64 architectures.

Discussion links for solution:
 https://lists.openembedded.org/g/openembedded-core/message/207486
 https://lists.openembedded.org/g/openembedded-core/message/207496

(From OE-Core rev: 0e02d0feba8bd48a27c41db875dcd33d46e4dc0d)

Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b9df8cd8b29064d115dab3bfd1ea14f94a5c0238)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Archana Polampalli
6ba335b401 rsync: fix CVE-2024-12747
A flaw was found in rsync. This vulnerability arises from a race condition during
rsync's handling of symbolic links. Rsync's default behavior when encountering
symbolic links is to skip them. If an attacker replaced a regular file with a
symbolic link at the right time, it was possible to bypass the default behavior
and traverse symbolic links. Depending on the privileges of the rsync process,
an attacker could leak sensitive information, potentially leading to privilege escalation.

(From OE-Core rev: e85beb88add5e94567d7221e00cabfb3d5010be7)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Archana Polampalli
78e33c0f8b rsync: fix CVE-2024-12088
A flaw was found in rsync. When using the `--safe-links` option, rsync fails to
properly verify if a symbolic link destination contains another symbolic link within it.
This results in a path traversal vulnerability, which may lead to arbitrary file write
outside the desired directory.

(From OE-Core rev: dad4a83c011310872cce07fc4141e66a98439cb1)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Archana Polampalli
6158711198 rsync: fix CVE-2024-12087
A path traversal vulnerability exists in rsync. It stems from behavior enabled
by the `--inc-recursive` option, a default-enabled option for many client options
and can be enabled by the server even if not explicitly enabled by the client.
When using the `--inc-recursive` option, a lack of proper symlink verification
coupled with deduplication checks occurring on a per-file-list basis could allow
a server to write files outside of the client's intended destination directory.
A malicious server could write malicious files to arbitrary locations named after
valid directories/paths on the client.

(From OE-Core rev: c34cbef572e18c60bb7600fda370d6c46688c7b3)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Archana Polampalli
dfbd3aac89 rsync: fix CVE-2024-12086
A flaw was found in rsync. It could allow a server to enumerate the contents of an
arbitrary file from the client's machine. This issue occurs when files are being
copied from a client to a server. During this process, the rsync server will send
checksums of local data to the client to compare with in order to determine what
data needs to be sent to the server. By sending specially constructed checksum values
for arbitrary files, an attacker may be able to reconstruct the data of those files
byte-by-byte based on the responses from the client.

(From OE-Core rev: 19f4e7bd965c63f19cc756e6e2bf8f58d9e1dc8d)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Archana Polampalli
b8832293c5 rsync: fix CVE-2024-12085
A flaw was found in the rsync daemon which could be triggered when rsync compares
file checksums. This flaw allows an attacker to manipulate the checksum length
(s2length) to cause a comparison between a checksum and uninitialized memory and
leak one byte of uninitialized stack data at a time.

(From OE-Core rev: fb8439e856d5ea10d12180020a14442c3b101e56)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Archana Polampalli
29909c9cf6 rsync: fix CVE-2024-12084
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due
to improper handling of attacker-controlled checksum lengths (s2length) in the code.
When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write
out of bounds in the sum2 buffer.

(From OE-Core rev: ad0e13912b17ca19ffbd7ea6a366f7c968517fb2)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Richard Purdie
8e4a651917 bitbake: tests/fetch: Fix git shallow test failure with git >= 2.48
>From git 2.48 release notes:

"""
When "git fetch $remote" notices that refs/remotes/$remote/HEAD is
missing and discovers what branch the other side points with its
HEAD, refs/remotes/$remote/HEAD is updated to point to it.
"""

This means with git 2.48 onwards, there is a mystery "HEAD" revision
appearing in some of our shallow clone tests. We can avoid this by
using the same canonicalization as used for the reference revisions.

This resolves autobuilder failures on the Fedora 40 workers.

(Bitbake rev: aa0e540fc31a1c26839efd2c7785a751ce24ebfb)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c83444d1210740e27b1744d3aa7c5cad4e28db2f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-25 06:20:37 -08:00
Antonin Godard
2333d6a37f test-manual/reproducible-builds: fix reproducible links
We don't run reproducible-builds on specific distros anymore, but on a
distro at random depending on what is available on the Autobuilder. Fix
the link to this builder and remove distro specific ones.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: bb9e018adcc10c642f87d0b95432783b5eb8057b)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 8bd2bc3c00ca80f4c000a2a8d618a9f8ea3aa54b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Antonin Godard
e603b95d4f Update autobuilder URLs to valkyrie
We have moved to Valkyrie which is hosted on
https://autobuilder.yoctoproject.org/valkyrie. Update the URL in the
documentation.

Also, the YOCTO_AB_URL macro was used in a single location in the
documentation so replace it by the :yocto_ab: custom extlink and remove
the macro.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: b02e90b6eb32ce57a98e0e3720848e5cdfbb69d0)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 0b0ed55d909dd11cdc9b29b105473271627c025e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Lee Chee Yang
020d1ad995 migration-guides: add release notes for 5.0.6
(From yocto-docs rev: 5fda58d48fe0321ea3cdefd31c3c6b9702cd8f5d)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 6a22014cd1a7b147d352640088d3b8b724547ac6)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Chen Qi
9783baa9dd libgfortran: fix buildpath QA issue
The '-fdebug-prefix-map' options are used to map source files locations,
otherwise, DW_AT_comp_dir will contain buildpath.

The '-gno-record-gcc-switches' option is used to fix the buildpath introduced
by '-fintrinsic-modules-path' option, which is automatically added by fortran.
Here's some output from 'readelf --debug-dump libgfortran.so.5.0.0' when this
option is not added:
"""
<0><1a37d3>: Abbrev Number: 4 (DW_TAG_compile_unit)
   <1a37d4>   DW_AT_producer    : (indirect string, offset: 0xd653): GNU Fortran2008 14.2.0 -m64
                -march=core2 -mtune=core2 -msse3
                -mfpmath=sse -mshstk -g -O2 -O2 -fstack-protector-strong -fimplicit-none
                -fno-repack-arrays -fno-underscoring -fcf-protection=full
                -fallow-leading-underscore -fbuilding-libgfortran -fPIC
                -fintrinsic-modules-path /ala-lpggp72/qichen/Yocto/builds/build-poky/tmp/work/
                core2-64-poky-linux/libgfortran/14.2.0/recipe-sysroot-native/usr/bin/x86_64-poky-linux
                /../../lib/x86_64-poky-linux/gcc/x86_64-poky-linux/14.2.0/finclude
                -fpre-include=../../../../recipe-sysroot/usr/include/finclude/math-vector-fortran.h
"""

See https://gcc.gnu.org/pipermail/fortran/2024-October/061204.html for more
detailed information.

(From OE-Core rev: 660e00469f9c99fe733cc8b37f67438a96ff2e97)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Esben Haabendal
59fdc7d02f pulseaudio: fix webrtc audio depdency
Since pulseaudio v16.99.1, the library needed is webrtc-audio-processing-1.
This fixes

Run-time dependency webrtc-audio-processing-1 found: NO (tried pkgconfig and cmake)
Looking for a fallback subproject for the dependency webrtc-audio-processing-1

../pulseaudio-17.0/meson.build:730:15: ERROR: Automatic wrap-based subproject downloading is disabled

The library is available in meta-openembedded/meta-multimedia.

(cherry picked from commit 4661c49eb4f0ed89a3d027d9a003c40744baaf38)

(From OE-Core rev: e80c3ca36f08a259e13fd94f1c87a7f5bf485a8b)

Signed-off-by: Esben Haabendal <esben@geanix.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Esben Haabendal <esben@geanix.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Ross Burton
73d95d9dad classes/qemu: use tune to select QEMU_EXTRAOPTIONS, not package architecture
Using the package architecture to select the right qemu options to pass
to qemu-user is incorrect, and fails for recipes that set PACKAGE_ARCH
to MACHINE_ARCH (as the qemuppc workarounds suggest) because there are
not typically any options set for the machine name.

Solve this by using TUNE_PKGARCH instead: for the majority of recipes
this is the same value, but for machine-specific recipes it remains the
same instead of changing to the machine name.

This means we can remove the qemuppc workarounds, as they're obsolete.

Also update the gcc-testsuite recipe which uses the same pattern to use
TUNE_PKGARCH, and generalise the else codepath to avoid needing to
update the list of architectures.

[ YOCTO #15647 ]

(From OE-Core rev: 972ca555ff3aa41d32980477850c92915b6395ed)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 414b754a6cbb9cc354b1180efd5c3329568a2537)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Ross Burton
93c245a868 classes/nativesdk: also override TUNE_PKGARCH
The nativesdk class overrides PACKAGE_ARCH and unsets TUNE_FEATURES, but
as recipes might want to look at TUNE_PKGARCH too (for example, when
setting QEMU_EXTRAOPTIONS) we should also override that variable.

Otherwise, a nativesdk recipe will have the TUNE_PKGARCH of the target,
which leads to errors (eg passing mips arguments to an arm qemu).

(From OE-Core rev: 812cf123af5821c300c630cda35be8faed73b9d5)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 05322beb290e1db30bef49b4364f8a8e6e9f7408)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Catalin Popescu
a1cc89914c Revert "bluez5: remove configuration files from install task"
This reverts commit 49391fdcf71b32c5fd3c7b134c1d1c45cc1db388 which
introduced a bluetooth regression on systems with read-only rootfs.

When configuration files are missing, bluez tries to generate them which
fails on a read-only rootfs. As a result bluetooth service fails to
start and bluetooth is broken. Hence, configuration files need to be
installed in the rootfs in a way or another.

Bluez commit be0e79629 (build: ship all config files with --enable-datafiles,
2024-02-12) introduced configuration files installation in bluez version
5.73. However, scarthgap pulls in version 5.72, so it is responsible of the
installation of configuration files until bluez is upgraded. Scarthgap
commit 49391fdcf71b32c5fd3c7b134c1d1c45cc1db388 removed installation of
configuration files too early, hence the revert.

(From OE-Core rev: 54a7014a801ddbda2a7dfe1ab560a154064ad47e)

Signed-off-by: Catalin Popescu <catalin.popescu@leica-geosystems.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Alexis Lothoré
5aca7316ac oeqa/ssh: allow to retrieve raw, unformatted ouput
The ssh target is currently well tailored to easily retrieve textual output
from a command run on a remote target. It could also be used to retrieve
raw data from a command run onto a remote target (for example, to feed this
data directly to another program), but it currently suffers two minor
issues preventing such use case:
- stderr is piped to stdout, so any error log will be mixed in the program
  output
- the final output is decoded as utf-8 and stripped

Allow to return the raw, unmodified output by adding an optional "raw"
parameter. Keep it to False by default to preserve the current behavior.
When enabled, do not return a string but the raw output as bytes.

(From OE-Core rev: 8d05dc6e2284b7ed7c32a8215b9c8bf6f7dabf00)

(From OE-Core rev: d09187db648053a763036a5209efd584b352cf31)

Signed-off-by: Alexis Lothoré <alexis.lothore@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Aleksandar Nikolic
ce05216f7a scripts/install-buildtools: Update to 5.0.6
Update to the 5.0.6 release of the 5.0 series for buildtools.

(From OE-Core rev: 6c0372a67b410b8f7ba9b43ffd17efd2f3b439aa)

Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:39 -08:00
Peter Marko
d8e64cc274 ofono: patch CVE-2023-4235
Cherry-pick commit
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=02aa0f9bad3d9e47a152fc045d0f51874d901d7e

(From OE-Core rev: 5adbece7dcbb547ea44207fa1a9ddc7d56766b1b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Peter Marko
30506f0140 ofono: patch CVE-2023-4232
Cherry-pick commit
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=2ff2da7ac374a790f8b2a0216bcb4e3126498225

(From OE-Core rev: 476ef12ab91aada032ea0e6acc5a0044497ace25)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Peter Marko
87143c52d6 ofono: patch CVE-2024-7540, CVE-2024-7541, CVE-2024-7542
Cherry-pick commit
https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=29ff6334b492504ace101be748b256e6953d2c2f

(From OE-Core rev: 6f55cecbff1e5be7dda7484b8b04f7ccfbdceb1b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Peter Marko
4054d819eb socat: patch CVE-2024-54661
Picked upstream commit
https://repo.or.cz/socat.git/commitdiff/4ee1f31cf80019c5907876576d6dfd49368d660f

Since this was the only commit in 1.8.0.2 it also contained release
changes which were dropped.

(From OE-Core rev: efa7a5e5a8448ae52152ee8ebbf5c51d691a34d2)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Zhang Peng
0d1f714793 avahi: fix CVE-2024-52616
CVE-2024-52616:
A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs
randomly only once at startup, incrementing them sequentially after that. This
predictable behavior facilitates DNS spoofing attacks, allowing attackers to
guess transaction IDs.

Reference:
[https://nvd.nist.gov/vuln/detail/CVE-2024-52616]
[https://github.com/avahi/avahi/security/advisories/GHSA-r9j3-vjjh-p8vm]

Upstream patches:
[f8710bdc8b]

(From OE-Core rev: 28de3f131b17dc4165df927060ee51f0de3ada90)

Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Hitendra Prajapati
a65e0b9646 ofono: Fix multiple CVEs
Backport fixes for:

* CVE-2024-7539 - Upstream-Status: Backport from https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=389e2344f86319265fb72ae590b470716e038fdc
* CVE-2024-7543 - Upstream-Status: Backport from https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=90e60ada012de42964214d8155260f5749d0dcc7
* CVE-2024-7544 - Upstream-Status: Backport from https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=a240705a0d5d41eca6de4125ab2349ecde4c873a
* CVE-2024-7545 - Upstream-Status: Backport from https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=556e14548c38c2b96d85881542046ee7ed750bb5
* CVE-2024-7546 - Upstream-Status: Backport from https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=79ea6677669e50b0bb9c231765adb4f81c375f63
* CVE-2024-7547 - Upstream-Status: Backport from https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=305df050d02aea8532f7625d6642685aa530f9b0

(From OE-Core rev: d244d4d48615a7b08f1ab0231f074caa31790247)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Divya Chellam
b84adcd947 wget: fix CVE-2024-10524
Applications that use Wget to access a remote resource using
shorthand URLs and pass arbitrary user credentials in the URL
are vulnerable. In these cases attackers can enter crafted
credentials which will cause Wget to access an arbitrary host.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-10524

Upstream-patch:
https://git.savannah.gnu.org/cgit/wget.git/commit/?id=c419542d956a2607bbce5df64b9d378a8588d778

(From OE-Core rev: 425c3f55bd316a563597ff6ff95f8104848e2f10)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Chris Laplante
7aa8128bf1 bitbake: cooker: Make cooker 'skiplist' per-multiconfig/mc
Previously, the cooker skiplist was shared across multiconfigs
(including default ''). If you had a recipe that was incompatible with
several multiconfigs for different reasons, then the displayed reason
(i.e. the "ERROR: Nothing PROVIDES" and "* was skipped" messages) might
vary across invocations of bitbake. This was caused by the random order
in which recipes are parsed under different multiconfig contexts, with
each skip reason overwriting the previously assigned reason.

I hit this specificially when using COMPATIBLE_MACHINE, but
COMPATIBLE_HOST (or anything using bb.parse.SkipRecipe) would have done it too.

(Bitbake rev: 7dde14582bfd104c6da26e3f5ecf2ef37a1494ce)

Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Chris Laplante
c1ed07ecde bitbake: ui/knotty: respect NO_COLOR & check for tty; rename print_hyperlink => format_hyperlink
(Bitbake rev: 72a334d5d5763476d5421a902fabb303f3f84bd8)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Chris Laplante
50556a2878 bitbake: ui/knotty: print log paths for failed tasks in summary
When tasks fail, it's very frustrating to have to scroll up to find the
log path(s). Many of us have the muscle memory to navigate to the 'temp'
directories under tmp/work/, but new users do not.

This change enhances the final summary to include log paths (reported
via bb.build.TaskFailed events). Here's an example:

NOTE: Tasks Summary: Attempted 856 tasks of which 853 didn't need to be rerun and 3 failed.

Summary: 3 tasks failed:
  virtual:native:/home/chris/repos/poky/meta/recipes-core/ncurses/ncurses_6.5.bb:do_fetch
    log: /home/chris/repos/poky/build/tmp/work/x86_64-linux/ncurses-native/6.5/temp/log.do_fetch.1253462
  /home/chris/repos/poky/meta/recipes-core/ncurses/ncurses_6.5.bb:do_fetch
    log: /home/chris/repos/poky/build/tmp/work/core2-64-poky-linux/ncurses/6.5/temp/log.do_fetch.1253466
  virtual:nativesdk:/home/chris/repos/poky/meta/recipes-core/ncurses/ncurses_6.5.bb:do_fetch
    log: /home/chris/repos/poky/build/tmp/work/x86_64-nativesdk-pokysdk-linux/nativesdk-ncurses/6.5/temp/log.do_fetch.1253467
Summary: There were 3 WARNING messages.
Summary: There were 6 ERROR messages, returning a non-zero exit code.

Each log is rendered as a clickable hyperlink in the terminal. See
https://gist.github.com/egmontkob/eb114294efbcd5adb1944c9f3cb5feda

(Bitbake rev: 9c020cc314bfd0702bb1d457d94925c6e9613268)

Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:59:38 -08:00
Changqing Li
2240b92d62 systemd: enable create-log-dirs
By default, create-log-dirs  is enabled in systemd, and a link
/var/log/README will be created, point to {{DOC_DIR}}/README.logs, but,
for oe, there are two problems here, firstly, DOC_DIR is packaged in
another package systemd-doc, so /var/log/README is a dead link when
systemd-doc is not installed, secondly, even systemd-doc is installed,
when volatile log is used, DOC_DIR is a wrong relateive path, Refer [1].

So in commit [2], we disable create-log-dirs for above issue. with this
change, /var/log/journal is not created, and /run/log is used, this
makes systemd log always non persistent, refer [3][4]. if user need
persistent log, they need to disable volatile log, and also  change
journald.conf, make "Storage" to "persistent". This is a behavoir change.
Previously, to make systemd log persistent, user only need to disable
volatile log.

This commit reenable create-log-dirs to revert the behavior change, and
since README is not very userful, just remove it.

[ YOCTO #15678 ]

[1] https://github.com/systemd/systemd/blob/main/tmpfiles.d/legacy.conf.in#L16
[2] https://git.openembedded.org/openembedded-core/commit/?id=18d46e11d85da1f6feaba5a135931e43060024d6
[3] https://github.com/systemd/systemd/blob/main/src/journal/meson.build#L189
[4] https://www.freedesktop.org/software/systemd/man/journald.conf.html
[5] https://bugzilla.yoctoproject.org/show_bug.cgi?id=15678

(From OE-Core rev: 92eea72a25e553c698bee9e3f551a5880bd4631c)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f82d9c997ba8cc23b472d44a43489c597bf452af)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Hiago De Franco
9794a5ad9e bluez5: backport patch to fix address type when loading keys
With Linux kernel v6.6, due to commit 59b047bc9808 ("Bluetooth:
MGMT/SMP: Fix address type when using SMP over BREDR/LE"), an error
might occur when trying to automatically repair a bluetooth device, as
the key might store using a wrong/invalid address type. This happens
only with bluez5 version 5.72:

HCI Event: Link Key Request (0x17) plen 6 bdaddr 8C:98:6B:7A:BD:F0
HCI Command: Link Key Request Negative Reply (0x01|0x000c) plen 6 bdaddr 8C:98:6B:7A:BD:F0

This was already solved upstream, therefore backport the patch to fix
this issue.

(From OE-Core rev: d719d02f2f3ce8f54de0e10d89a8d389edb61fed)

Signed-off-by: Hiago De Franco <hiago.franco@toradex.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Robert Yang
54b2e90c01 groff: Fix race issues for parallel build
Fixed race issues for parallel build:
groff: error: couldn't exec soelim: Permission

And:
groff: error: couldn't exec grn: Permission denied

(From OE-Core rev: 44b625a820a22c99f4fa1d4ed6b6de98c5d75884)

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
(cherry picked from commit b9ee7ea9ab05a1887c863dc9fccc65cb9e6850df)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
9049004910 linux-yocto/6.6: update to v6.6.69
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    a30cd70ab75a Linux 6.6.69
    ee18012c8015 block: avoid to reuse `hctx` not removed from cpuhp callback list
    937fcde0e971 ALSA: hda/realtek: Fix spelling mistake "Firelfy" -> "Firefly"
    ff4dff0bbe79 x86/cpu/intel: Drop stray FAM6 check with new Intel CPU model defines
    0098f6a62ac7 ALSA: sh: Fix wrong argument order for copy_from_iter()
    1ce362065899 btrfs: sysfs: fix direct super block member reads
    6e1a82259307 btrfs: avoid monopolizing a core when activating a swap file
    13eb3cae1d8e power: supply: gpio-charger: Fix set charge current limits
    c484dbafbae9 i2c: microchip-core: fix "ghost" detections
    e1cc0e256092 i2c: imx: add imx7d compatible string for applying erratum ERR007805
    b1f7476e07b9 PCI/MSI: Handle lack of irqdomain gracefully
    3f66c65f6525 i2c: microchip-core: actually use repeated sends
    80120bb4eef7 io_uring/sqpoll: fix sqpoll error handling races
    03041e474a6a tracing: Prevent bad count for tracing_cpumask_write
    dafa7332e7c0 tracing: Constify string literal data member in struct trace_event_call
    c1a26ea77f81 freezer, sched: Report frozen tasks as 'D' instead of 'R'
    60b57dc761d3 drm/amdkfd: pause autosuspend when creating pdd
    4312b60fa7ac drm/amdkfd: Use device based logging for errors
    9f7042ffc7f3 drm/amdkfd: drop struct kfd_cu_info
    798f21e8a655 drm/amdkfd: reduce stack size in kfd_topology_add_device()
    8406848671ce x86/cpu: Add Lunar Lake to list of CPUs with a broken MONITOR implementation
    fe48d03286b2 x86/cpu/intel: Switch to new Intel CPU model defines
    d7ac1856b6ec x86/cpu/vfm: Update arch/x86/include/asm/intel-family.h
    cb3491e875f6 x86/cpu/vfm: Add/initialize x86_vfm field to struct cpuinfo_x86
    f3a3192993da x86/cpu: Add model number for another Intel Arrow Lake mobile processor
    224d693c9203 x86/cpu: Add model number for Intel Clearwater Forest processor
    14172f8e9485 drm/amdgpu/hdp6.0: do a posting read when flushing HDP
    c9ad5cbf2495 drm/amdgpu/hdp5.0: do a posting read when flushing HDP
    f60770d660dc drm/amdgpu/hdp4.0: do a posting read when flushing HDP
    a9cb2cc5b8b5 drm/amd/amdgpu: allow use kiq to do hdp flush under sriov
    36a6e8aeae4a pmdomain: core: Add missing put_device()
    13ced1c4980e ALSA: hda/realtek: fix micmute LEDs don't work on HP Laptops
    31fc2ce99308 ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook X G1i
    2d2b19ed4169 sched/task_stack: fix object_is_on_stack() for KASAN tagged pointers
    1258986bbd17 MIPS: mipsregs: Set proper ISA level for virt extensions
    37ee3b66eb62 MIPS: Probe toolchain support of -msym32
    58bf93580fec blk-mq: move cpuhp callback registering out of q->sysfs_lock
    079fcc926b0b blk-mq: register cpuhp callback after hctx is added to xarray table
    12c0ddd6c551 virtio-blk: don't keep queue frozen during system suspend
    9735d40f5fde drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()
    5edf9f786a18 spi: omap2-mcspi: Fix the IS_ERR() bug for devm_clk_get_optional_enabled()
    3556af9a68af scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error
    cf4bea16bb6d scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time
    cecca8b42063 spi: intel: Add Panther Lake SPI controller support
    eb9b647a6834 platform/x86: asus-nb-wmi: Ignore unknown event 0xCF
    4eb54230b0ba LoongArch: BPF: Adjust the parameter of emit_jirl()
    5fc47124442d LoongArch: Fix reserving screen info memory for above-4G firmware
    5e448ea8df48 regmap: Use correct format specifier for logging range errors
    3ad1feaa0bd0 smb: server: Fix building with GCC 15
    7dbf2af85cd3 ALSA: sh: Use standard helper for buffer accesses
    39c860c96c64 ALSA: hda/conexant: fix Z60MR100 startup pop issue
    3dea3c59c4bd udf: Skip parent dir link count update if corrupted
    f50783148ec9 scsi: megaraid_sas: Fix for a potential deadlock
    fbd7deb459b2 scsi: qla1280: Fix hw revision numbering for ISP1020/1040
    ab9ae7e789ab watchdog: mediatek: Add support for MT6735 TOPRGU/WDT
    e64809e8754a watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04
    d4d67fa7158d tracing/kprobe: Make trace_kprobe's module callback called after jump_label update
    23681bc4b59f stddef: make __struct_group() UAPI C++-friendly
    b7f60ffdfd96 powerpc/pseries/vas: Add close() callback in vas_vm_ops struct
    dd45c8778273 mtd: rawnand: fix double free in atmel_pmecc_create_user()
    e658f1c133b8 dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset
    aa2381a1ea39 dmaengine: apple-admac: Avoid accessing registers in probe
    34d2c9c6de73 dmaengine: fsl-edma: implement the cleanup path of fsl_edma3_attach_pd()
    f2705359161f dmaengine: tegra: Return correct DMA status when paused
    8cf5aa06d074 dmaengine: dw: Select only supported masters for ACPI devices
    7f92f287b0fa dmaengine: mv_xor: fix child node refcount handling in early exit
    908806a2e789 phy: rockchip: naneng-combphy: fix phy reset
    96173874d6b8 phy: usb: Toggle the PHY power during init
    94dd7d0665ec phy: core: Fix that API devm_phy_destroy() fails to destroy the phy
    216b9f8335b5 phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider
    58068f8b7a55 phy: core: Fix that API devm_phy_put() fails to release the phy
    80a6eeb3a73a phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup()
    293b3748abab phy: core: Fix an OF node refcount leakage in _of_phy_get()
    826acec1a9f9 phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP
    36094da8b402 mtd: rawnand: arasan: Fix missing de-registration of NAND
    649ba9c1712b mtd: rawnand: arasan: Fix double assertion of chip-select
    3970d6b335fb mtd: diskonchip: Cast an operand to prevent potential overflow
    15c184b4e7cf nfsd: restore callback functionality for NFSv4.0
    488304065d0d nfsd: Revert "nfsd: release svc_expkey/svc_export with rcu_work"
    0326fbf69311 bpf: Check negative offsets in __bpf_skb_min_len()
    343a932a05f4 tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection
    9dbc7e0e5ce5 tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress()
    9ef08c3fe764 mm/vmstat: fix a W=1 clang compiler warning
    d41fa58fca6f ceph: allocate sparse_ext map only for sparse reads
    44e518abbb49 ceph: fix memory leak in ceph_direct_read_write()
    fb98248fc4a2 ceph: try to allocate a smaller extent map for sparse read
    1d6de21f0029 media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg
    3ee19fb278a6 Linux 6.6.68
    fd4d53318e96 dt-bindings: net: fec: add pps channel property
    c226b0f0d8b0 drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update
    194532af82a1 net: fec: make PPS channel configurable
    897bab2abdac net: fec: refactor PPS channel configuration
    4cba44122663 io_uring/rw: avoid punting to io-wq directly
    41928840172e io_uring/rw: treat -EOPNOTSUPP for IOCB_NOWAIT like -EAGAIN
    6c27fc6a783c io_uring/rw: split io_read() into a helper
    d9831a655e13 epoll: Add synchronous wakeup support for ep_poll_callback
    b3ab12531d0d ceph: fix memory leaks in __ceph_sync_read()
    a07c0908e368 ceph: improve error handling and short/overflow-read logic in __ceph_sync_read()
    f006f6eaea7b ceph: validate snapdirname option length when mounting
    7094f3b6df92 of: Fix refcount leakage for OF node returned by __of_get_dma_parent()
    a7e5dc8d5da1 of: Fix error path in of_parse_phandle_with_args_map()
    50c960e79921 udmabuf: also check for F_SEAL_FUTURE_WRITE
    284760b320a0 nilfs2: prevent use of deleted inode
    cfb608b4cf22 nilfs2: fix buffer head leaks in calls to truncate_inode_pages()
    fdfa42cefba4 of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one()
    dd3412f29899 of/irq: Fix interrupt-map cell length check in of_irq_parse_imap_parent()
    96c9ff350476 NFS/pnfs: Fix a live lock between recalled layouts and layoutget
    2ca94c8de360 io_uring: check if iowq is killed before queuing
    a73f0425f44b io_uring: Fix registered ring file refcount leak
    24047899f94e selftests/bpf: Use asm constraint "m" for LoongArch
    8b7dfdf3dbd7 selftests/memfd: run sysctl tests when PID namespace support is enabled
    2f6ad0b613cd tracing: Add "%s" check in test_event_printk()
    cc2c77b35186 tracing: Add missing helper functions in event pointer dereference check
    452e89f1588d tracing: Fix test_event_printk() to process entire print argument
    906807c734ed smb: client: fix TCP timers deadlock after rmmod
    3d2634ec0d1d KVM: x86: Play nice with protected guests in complete_hypercall_exit()
    89fcec5e466b Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet
    a41ee016b5df btrfs: tree-checker: reject inline extent items with 0 ref count
    90ae5b7a1c52 vmalloc: fix accounting with i915
    0b5b0b65561b zram: fix uninitialized ZRAM not releasing backing device
    aca0f94c25de zram: refuse to use zero sized block device as backing device
    da61286b6512 hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers
    7e3b14abe39a hwmon: (tmp513) Fix Current Register value interpretation
    c680302c5eeb hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers
    81a3738bed1a hwmon: (tmp513) Use SI constants from units.h
    d0823a2fe057 hwmon: (tmp513) Simplify with dev_err_probe()
    9d207df1282a hwmon: (tmp513) Don't use "proxy" headers
    da6b2c626ae7 drm/amdgpu: don't access invalid sched
    b91184b59437 i915/guc: Accumulate active runtime on gt reset
    7871b0d81a3b i915/guc: Ensure busyness counter increases motonically
    b5e8103c46aa i915/guc: Reset engine utilization buffer before registration
    5f46feefa5ef drm/panel: novatek-nt35950: fix return value check in nt35950_probe()
    b39de5a71bac drm/modes: Avoid divide by zero harder in drm_mode_vrefresh()
    d1b96495fa2a thunderbolt: Improve redrive mode handling
    cd8fb13924b3 USB: serial: option: add Telit FE910C04 rmnet compositions
    ec1ccad0c3b4 USB: serial: option: add MediaTek T7XX compositions
    996c88c81fec USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready
    eb748a5a8c59 USB: serial: option: add MeiG Smart SLM770A
    27921a57efaf USB: serial: option: add TCL IK512 MBIM & ECM
    637b6e17f11d hexagon: Disable constant extender optimization for LLVM prior to 19.1.0
    b72d1e64984e efivarfs: Fix error on non-existent file
    666c7b77d581 i2c: riic: Always round-up when calculating bus period
    0eba9c56d77c chelsio/chtls: prevent potential integer overflow on 32bit
    efe74dd58a72 net: tun: fix tun_napi_alloc_frags()
    65fac86c3d73 KVM: x86: Cache CPUID.0xD XSTATE offsets+sizes during module init
    3e84704feefe EDAC/amd64: Simplify ECC check on unified memory controllers
    2956429c7a4e mmc: mtk-sd: disable wakeup in .remove() and in the error path of .probe()
    4ca7a0c83100 mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk
    b15b92daf67c net: mdiobus: fix an OF node reference leak
    0e78c3eb72ec selftests: openvswitch: fix tcpdump execution
    576b58f39b0f netfilter: ipset: Fix for recursive locking warning
    592fc96af827 ipvs: Fix clamp() of ip_vs_conn_tab on small memory systems
    4dfa9a924008 net: ethernet: bgmac-platform: fix an OF node reference leak
    13fcc286811c net: hinic: Fix cleanup in create_rxqs/txqs()
    55a81dcf79bc ksmbd: fix broken transfers when exceeding max simultaneous operations
    8077d33fb8c8 ksmbd: count all requests in req_running counter
    ce2fade187dd net: renesas: rswitch: rework ts tags management
    6cd7cad950d9 ionic: use ee->offset when returning sprom data
    da5736f516a6 ionic: Fix netdev notifier unregister on failure
    470c5ecbac2f netdevsim: prevent bad user input in nsim_dev_health_break_write()
    2f3c62ffe881 net: mscc: ocelot: fix incorrect IFH SRC_PORT field in ocelot_ifh_set_basic()
    7a6927814b42 net/smc: check return value of sock_recvmsg when draining clc data
    935caf324b44 net/smc: check smcd_v2_ext_offset when receiving proposal msg
    295a92e3df32 net/smc: check v2_ext_offset/eid_cnt/ism_gid_cnt when receiving proposal msg
    91a7c27c1444 net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg
    2e0786b3006e net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll
    2627c3e86469 net/smc: protect link down work from execute after lgr freed
    06518a75de0a cxl/region: Fix region creation for greater than x2 switches
    fa299bfc1e0e cxl/pci: Fix potential bogus return value upon successful probing
    9557ed4dcd8f tools: hv: change permissions of NetworkManager configuration file
    e5d1ae2d4d0b xfs: reset rootdir extent size hint after growfsrt
    29fcb5fef608 xfs: take m_growlock when running growfsrt
    35bd108619c2 xfs: use XFS_BUF_DADDR_NULL for daddrs in getfsmap code
    9fadc53d793c xfs: Fix the owner setting issue for rmap query in xfs fsmap
    4a82db7a4b73 xfs: conditionally allow FS_XFLAG_REALTIME changes if S_DAX is set
    b2dcbd8a928c xfs: attr forks require attr, not attr2
    27336a327b40 xfs: remove unused parameter in macro XFS_DQUOT_LOGRES
    1bee32f33c0a xfs: fix file_path handling in tracepoints
    cb95cb2450e3 xfs: convert comma to semicolon
    ca96d83c9307 xfs: don't walk off the end of a directory data block
    fe962ab3c4f1 xfs: Fix xfs_prepare_shift() range for RT
    2e63ed9b0175 xfs: Fix xfs_flush_unmap_range() range for RT
    c070b8802159 xfs: create a new helper to return a file's allocation unit
    7531c9ab2e55 xfs: declare xfs_file.c symbols in xfs_file.h
    ff627196ddc1 xfs: use consistent uid/gid when grabbing dquots for inodes
    c08d03996cea xfs: verify buffer, inode, and dquot items every tx commit
    85d0947db262 xfs: fix the contact address for the sysfs ABI documentation
    e4ee7050712a i2c: pnx: Fix timeout in wait functions
    76b63579a904 p2sb: Do not scan and remove the P2SB device when it is unhidden
    3c469a528e39 p2sb: Move P2SB hide and unhide code to p2sb_scan_and_cache()
    8b64ae60f3f9 p2sb: Introduce the global flag p2sb_hidden_by_bios
    f8c9788636f5 p2sb: Factor out p2sb_read_from_cache()
    9194a9214b04 platform/x86: p2sb: Make p2sb_get_devfn() return void
    db3667c9bbfb net: stmmac: fix TSO DMA API usage causing oops
    43fb5b0974eb usb: cdns3: Add quirk flag to enable suspend residency
    c7cc4152c0f4 PCI/AER: Disable AER service on suspend
    3e221877dd92 PCI: Use preserve_config in place of pci_flags
    0d1d7e0c6439 ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C
    9a6a33eb6be3 ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP
    dbdee8456aa8 MIPS: Loongson64: DTS: Fix msi node for ls7a
    d10b8db9907e usb: cdns3-ti: Add workaround for Errata i2409
    25f760c9ecfd PCI: Add ACS quirk for Broadcom BCM5760X NIC
    db7d50a5d7c4 PCI: vmd: Create domain symlink before pci_bus_add_devices()
    4f3cb0f96a2a usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled
    97e13434b5da net: sched: fix ordering of qlen adjustment
    ab6cc4ef42d6 Linux 6.6.67
    e68cbbef3d6f x86/static-call: fix 32-bit build
    44a7b0419d35 ALSA: usb-audio: Fix a DMA to stack memory bug
    bcf0e2fda80c x86/xen: remove hypercall page
    bcca7e067909 x86/xen: use new hypercall functions instead of hypercall page
    31f29270c15b x86/xen: add central hypercall functions
    82c211ead1ec x86/xen: don't do PV iret hypercall through hypercall page
    cd95149561d5 x86/static-call: provide a way to do very early static-call updates
    8fb54fe2e709 objtool/x86: allow syscall instruction
    aac984c87ef8 x86: make get_cpu_vendor() accessible from Xen code
    fe9a8f5250ae xen/netfront: fix crash when removing device
    4a41bb9f2b40 net: rswitch: Avoid use-after-free in rswitch_poll()
    9f7a9f95dfb7 selftests/bpf: remove use of __xlated()
    ce444a00414a selftests/bpf: Add netlink helper library
    3a7d88f9814a tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe()
    bfe9446ea1d9 bpf: sync_linked_regs() must preserve subreg_def
    4e76efda1f0a KVM: arm64: Disable MPAM visibility by default and ignore VMM writes
    e2ccaf2d0eb5 kselftest/arm64: abi: fix SVCR detection
    4a542118457d blk-iocost: Avoid using clamp() on inuse in __propagate_weights()
    ee11eaa15132 net: dsa: microchip: KSZ9896 register regmap alignment to 32 bit boundaries
    f5fcb1ff9f46 net: renesas: rswitch: fix initial MPIC register setting
    ecdcaea0e405 Bluetooth: btmtk: avoid UAF in btmtk_process_coredump
    3bf09c685e1b Bluetooth: SCO: Add support for 16 bits transparent voice setting
    263b390a826f Bluetooth: iso: Fix recursive locking warning
    0108132d7d76 Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating
    11dc486ed5d4 Bluetooth: ISO: Reassociate a socket with an active BIS
    81c4b9529ed8 ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired
    c6c217c6e28a team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
    679b5884e61d bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
    3824c5fad18e net/sched: netem: account for backlog updates from child qdisc
    72dc88eca723 net: dsa: felix: fix stuck CPU-injected packets with short taprio windows
    27f0574253f6 netfilter: nf_tables: do not defer rule destruction via call_rcu
    8c2c8445cda8 netfilter: IDLETIMER: Fix for possible ABBA deadlock
    01b2c761503b net: renesas: rswitch: handle stop vs interrupt race
    bf8c6755f020 net: renesas: rswitch: avoid use-after-put for a device tree node
    78aa0aabb093 net: renesas: rswitch: fix leaked pointer on error path
    0c316b6e0aef net: renesas: rswitch: fix race window between tx start and complete
    af327c0f41d6 net: rswitch: Add jumbo frames handling for TX
    87388cbe9330 net: rswitch: Add a setting ext descriptor function
    0aeec4bb6a9f net: rswitch: Add unmap_addrs instead of dma address in each desc
    99ee2eb6e0fe net: rswitch: Use build_skb() for RX
    ad4bd2c039fb net: rswitch: Use unsigned int for desc related array index
    2a584b1443bd net: rswitch: Drop unused argument/return value
    f789f9d1af40 Documentation: PM: Clarify pm_runtime_resume_and_get() return value
    5b8ea6b89f92 ASoC: amd: yc: Fix the wrong return value
    d5a1ca7b5980 ALSA: control: Avoid WARN() for symlink errors
    131798aea9ae qca_spi: Make driver probing reliable
    ebaf832f1e22 qca_spi: Fix clock speed for multiple QCA7000
    3942f0b0d652 cxgb4: use port number to set mac addr
    ae5fab215f9c ACPI: resource: Fix memory resource type union access
    0d9344165273 net: sparx5: fix the maximum frame length register
    ad74e16b351d net: sparx5: fix FDMA performance issue
    f1d6afbe1ecd spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user()
    8e9b5e14e5b9 net: mscc: ocelot: perform error cleanup in ocelot_hwstamp_set()
    3b3277267d7b net: mscc: ocelot: be resilient to loss of PTP packets during transmission
    5f2c6930c689 net: mscc: ocelot: ocelot->ts_id_lock and ocelot_port->tx_skbs.lock are IRQ-safe
    7f42e62a6e9f net: mscc: ocelot: improve handling of TX timestamp for unknown skb
    d275b713496e net: mscc: ocelot: fix memory leak on ocelot_port_add_txtstamp_skb()
    b7a79e51297f net: defer final 'struct net' free in netns dismantle
    03e661b5e7aa net: lapb: increase LAPB_HEADER_LEN
    74f0a6912926 ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from kvm_arch_ptp_init()
    03528ff8de66 selftests: mlxsw: sharedbuffer: Ensure no extra packets are counted
    c9776bd1422e selftests: mlxsw: sharedbuffer: Remove duplicate test cases
    2be4018f4ce1 selftests: mlxsw: sharedbuffer: Remove h1 ingress test case
    bd7ddc5f921d wifi: cfg80211: sme: init n_channels before channels[] access
    325cf73a1b44 net/mlx5: DR, prevent potential error pointer dereference
    89ecda492d0a tipc: fix NULL deref in cleanup_bearer()
    4a9a7f9f745d batman-adv: Do not let TT changes list grows indefinitely
    fd0638fa60e6 batman-adv: Remove uninitialized data in full table TT response
    b2b6ecc29204 batman-adv: Do not send uninitialized TT changes
    86106974d0a8 amdgpu/uvd: get ring reference from rq scheduler
    e08dc2dc3c3f acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl
    567df47c3e45 wifi: mac80211: fix station NSS capability initialization order
    c32db61989af wifi: mac80211: clean up 'ret' in sta_link_apply_parameters()
    c07923459935 wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon
    f3412522f788 wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one
    a574145ef474 rtla/timerlat: Make timerlat_hist_cpu->*_count unsigned long long
    dbec5b420397 bpf, sockmap: Fix update element with same
    b015f19fedd2 bpf, sockmap: Fix race between element replace and close()
    c2b6b47662d5 bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog
    68d23ee1bdf1 bpf: Fix theoretical prog_array UAF in __uprobe_perf_func()
    c7e1962a3807 bpf: Check size for BTF-based ctx access of pointer members
    0f2dd866c6b1 xfs: only run precommits once per transaction object
    08b1325d67a1 xfs: fix scrub tracepoints when inode-rooted btrees are involved
    eef2e0da3185 xfs: return from xfs_symlink_verify early on V4 filesystems
    549f2fc321ea xfs: don't drop errno values when we fail to ficlone the entire range
    b4f3bf6fe918 xfs: update btree keys correctly when _insrec splits an inode root block
    e07f9c92bd12 drm/i915: Fix NULL pointer dereference in capture_engine
    1f7659950736 drm/i915: Fix memory leak by correcting cache object name in error handler
    c0484aa1adc3 usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode
    8ca07a3d18f3 usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer
    bd8ca5c5a04a usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe()
    1c766533deb3 usb: typec: anx7411: fix fwnode_handle reference leak
    e22e4df241f7 usb: ehci-hcd: fix call balance of clocks handling routines
    35acf6d7e889 usb: gadget: midi2: Fix interpretation of is_midi1 bits
    3184e07e1240 scsi: ufs: core: Update compl_time_stamp_local_clock after completing a cqe
    6c75336869c7 usb: dwc2: Fix HCD port connection race
    700f3afe5b76 usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature
    09883478938d usb: dwc2: Fix HCD resume
    a3840455f275 ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys()
    a867bf10364a usb: host: max3421-hcd: Correctly abort a USB request.
    6f796a6a396d riscv: Fix IPIs usage in kfence_protect_page()
    e6c338476c80 ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5
    5baa28569c92 blk-cgroup: Fix UAF in blkcg_unpin_online()
    aa9b1d0d6a5b riscv: Fix wrong usage of __pa() on a fixmap address
    7ac2535d8ee6 tcp: check space before adding MPTCP SYN options
    bc6d8cc2c563 splice: do not checksum AF_UNIX sockets
    450a844c045f ksmbd: fix racy issue from session lookup and expire
    0252305d2964 perf/x86/intel/ds: Unconditionally drain PEBS DS when changing PEBS_DATA_CFG
    f9f85df30118 bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 73c7ebc06e9599406c9bccc7431dce74c7a117bc)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3765ad18b68446727f2bbce6ab2e43a594dacdd9)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
838aede38e linux-yocto/6.6: update to v6.6.66
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    a66cdcdc9e44 Linux 6.6.66
    35163f642d91 i3c: master: svc: fix possible assignment of the same address to two devices
    43bbc5f8586e i3c: master: Remove i3c_dev_disable_ibi_locked(olddev) on device hotjoin
    1baed369508b serial: amba-pl011: fix build regression
    5eb15d2f4eb4 platform/x86: asus-wmi: Fix thermal profile initialization
    8bb7b689369e ALSA: usb-audio: Update UMP group attributes for GTB blocks, too
    fe330624b85f usb: dwc3: ep0: Don't reset resource alloc flag
    3706311ea095 net/smc: fix incorrect SMC-D link group matching logic
    7a89f5318252 ALSA: hda: Fix build error without CONFIG_SND_DEBUG
    2daba7d857e4 drm/amdgpu: rework resume handling for display (v2)
    aec3eecce11d ASoC: Intel: avs: Fix return status of avs_pcm_hw_constraints_init()
    3e26e24a301e ocfs2: Revert "ocfs2: fix the la space leak when unmounting an ocfs2 volume"
    7a670b420ef2 btrfs: add cancellation points to trim loops
    d11f14a7911e iio: invensense: fix multiple odr switch when FIFO is off
    ed968a1f1f66 xhci: dbc: Fix STALL transfer event handling
    1af5e8b1c9f3 mm/damon/vaddr: fix issue in damon_va_evenly_split_region()
    4358f241594b jffs2: Fix rtime decompressor
    6808a1812a34 jffs2: Prevent rtime decompress memory corruption
    0d5c7fcfa585 KVM: x86/mmu: Ensure that kvm_release_pfn_clean() takes exact pfn from kvm_faultin_pfn()
    67b5ed3b4d36 selftests/ftrace: adjust offset for kprobe syntax error test
    032b4122a92a vfio/mlx5: Align the page tracking max message size with the device capability
    7535956ffe5b Revert "unicode: Don't special case ignorable code points"
    1240225d838b x86: Fix build regression with CONFIG_KEXEC_JUMP enabled
    720792341f5e tracing/eprobe: Fix to release eprobe when failed to add dyn_event
    9d9bd3f7da8a clk: en7523: Initialize num before accessing hws in en7523_register_clocks()
    2a72d5cc83d6 btrfs: fix missing snapshot drew unlock when root is dead during swap activation
    b600d3040285 sched/deadline: Fix warning in migrate_enable for boosted tasks
    01ecd269755e sched/deadline: Move bandwidth accounting into {en,de}queue_dl_entity
    842010e3ca9e sched/deadline: Collect sched_dl_entity initialization
    24617f9ca8c8 sched: Unify more update_curr*()
    7f509457773e sched: Remove vruntime from trace_sched_stat_runtime()
    4db5988bb099 sched: Unify runtime accounting across classes
    654f3294c69e sched/headers: Move 'struct sched_param' out of uapi, to work around glibc/musl breakage
    b2f7d7507982 sched/fair: Rename check_preempt_curr() to wakeup_preempt()
    5787443f556e sched/fair: Rename check_preempt_wakeup() to check_preempt_wakeup_fair()
    b607a3886e61 sched/core: Prevent wakeup of ksoftirqd during idle load balance
    a2b004f5c93d sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU turning busy
    f163cf9c6ae9 sched/core: Remove the unnecessary need_resched() check in nohz_csd_func()
    a13b2b9b0b0b mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM
    cc424890b06b mempolicy: fix migrate_pages(2) syscall return nr_failed
    8f149bcc4d91 sched/numa: fix memory leak due to the overwritten vma->numab_state
    41f65469c33f sched/numa: Fix mm numa_scan_seq based unconditional scan
    42882b583095 io_uring/tctx: work around xa_store() allocation error issue
    c45cec53eeb4 setlocalversion: work around "git describe" performance
    2102ed90f789 smb: client: don't try following DFS links in cifs_tree_connect()
    b32ce4f9e3b7 serial: 8250_dw: Add Sophgo SG2044 quirk
    79f1a5b17bf5 rtc: cmos: avoid taking rtc_lock for extended period of time
    3fbde702748d misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle
    691284c2cd33 powerpc/prom_init: Fixup missing powermac #size-cells
    44eb450d8ed5 ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW
    8ef9ea1503d0 MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a
    cb6d7ffca4be drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3
    ddc2aa0f99e7 ASoC: amd: yc: fix internal mic on Redmi G 2022
    2c810ecfcc95 iio: light: ltr501: Add LTER0303 to the supported devices
    3fc7b49d24b1 usb: chipidea: udc: handle USB Error Interrupt if IOC not set
    57f7979aefdc fs/ntfs3: Fix case when unmarked clusters intersect with zone
    c5f89458a2ea LoongArch: Fix sleeping in atomic context for PREEMPT_RT
    ec1208b13c5e ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[]
    353bc143066d ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840
    295b50e95e90 f2fs: fix to shrink read extent node in batches
    76bdd3b1c256 f2fs: print message if fscorrupted was found in f2fs_new_node_page()
    ffe19e363c6f i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock
    29c80f54e362 PCI: Add ACS quirk for Wangxun FF5xxx NICs
    407476eb5f76 PCI: Add 'reset_subordinate' to reset hierarchy below bridge
    b824ea2af6e0 PCI: Detect and trust built-in Thunderbolt chips
    c37cc784af7e PCI: vmd: Set devices to D0 before enabling PM L1 Substates
    61ee910a0042 PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs
    70d65110986e PCI: qcom: Add support for IPQ9574
    a6dc4b4fda2e i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request
    880827a141e3 KMSAN: uninit-value in inode_go_dump (5)
    9669b28f81e0 f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode.
    562334170295 verification/dot2: Improve dot parser robustness
    7a135fd49c3e smb: client: memcpy() with surrounding object base address
    08ab71e0f618 nvdimm: rectify the illogical code within nd_dax_probe()
    9e4828b78e28 thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens
    03bf88b1e95d pinctrl: qcom: spmi-mpp: Add PM8937 compatible
    b377ef01a3d9 pinctrl: qcom-pmic-gpio: add support for PM8937
    338368f7fe2d scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset
    0e5642e73a63 scsi: st: Don't modify unknown block number in MTIOCGET
    f6d6fb563e4b leds: class: Protect brightness_show() with led_cdev->led_access mutex
    8d37cb1c8f1a clk: qcom: tcsrcc-sm8550: add SAR2130P support
    62bd597e1e87 clk: qcom: rpmh: add support for SAR2130P
    80864fe570d5 clk: qcom: rcg2: add clk_rcg2_shared_floor_ops
    c6c58505bfba scsi: lpfc: Call lpfc_sli4_queue_unset() in restart and rmmod paths
    5fe23c57abad bpf: put bpf_link's program when link is safe to be deallocated
    6ff9768a3144 scsi: ufs: core: Make DMA mask configuration more flexible
    2da32aed4a97 pinmux: Use sequential access to access desc->pinmux data
    50ddf4b0e1a4 scsi: hisi_sas: Add cond_resched() for no forced preemption model
    77c9ad0c425a rtla/timerlat: Make timerlat_top_cpu->*_count unsigned long long
    987abe82faa9 tools/rtla: fix collision with glibc sched_attr/sched_set_attr
    aceff9270e86 tracing: Use atomic64_inc_return() in trace_clock_counter()
    d62b8e0c3f36 tracing/ftrace: disable preemption in syscall probe
    1cbb632b515a pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU
    fdac3e251d9e netpoll: Use rcu_access_pointer() in __netpoll_setup
    843adffcbb4a net/neighbor: clear error in case strict check is not set
    ed8cf33dead6 rocker: fix link status detection in rocker_carrier_init()
    d7a6ff5dc803 ASoC: hdmi-codec: reorder channel allocation list
    d87c7db6213c Bluetooth: Set quirks for ATS2851
    ac22911f2eed Bluetooth: Support new quirks for ATS2851
    5af48b484ec0 Bluetooth: Add new quirks for ATS2851
    5e50d12cc6e9 Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet
    36af575822ef Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables
    916b577a2cef dsa: qca8k: Use nested lock to avoid splat
    10e8a2dec9ff bpf: Call free_htab_elem() after htab_unlock_bucket()
    07c020c6d14d wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw()
    3afd475d5af9 wifi: ipw2x00: libipw_rx_any(): fix bad alignment
    b9e52a96ec92 drm/amdgpu: set the right AMDGPU sg segment limitation
    83c45de6c6ce ALSA: usb-audio: Make mic volume workarounds globally applicable
    a8f7d6963768 virtio-net: fix overflow inside virtnet_rq_alloc
    4e3f73221deb drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov
    69df145daf15 fsl/fman: Validate cell-index value obtained from Device Tree
    3b5d21b56c37 jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
    e7d376f94f72 jfs: fix array-index-out-of-bounds in jfs_readdir
    c56245baf3fd jfs: fix shift-out-of-bounds in dbSplit
    fd993b2180b4 jfs: array-index-out-of-bounds fix in dtReadFirst
    c212d91070be dma-debug: fix a possible deadlock on radix_lock
    efb054752f2c drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr
    3295bd236450 netlink: specs: Add missing bitset attrs to ethtool spec
    ccc22ebf98df drm/amdgpu: Dereference the ATCS ACPI buffer
    9a1546e775f5 drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih
    87210234e5a2 drm/sched: memset() 'job' in drm_sched_job_init()
    d783451a49d4 net: stmmac: Programming sequence for VLAN packets with split header
    81f4a1e9b654 net: sfp: change quirks for Alcatel Lucent G-010S-P
    556ae6c91145 drm/panel: simple: Add Microchip AC69T88A LVDS Display panel
    ffe1766a3a55 fanotify: allow reporting errors on failure to open fd
    d7a6fb6442b1 wifi: ath5k: add PCI ID for Arcadyan devices
    87b969352d38 wifi: ath5k: add PCI ID for SX76X
    706b07b7b37f net: inet6: do not leave a dangling sk pointer in inet6_create()
    25447c6aaa72 net: inet: do not leave a dangling sk pointer in inet_create()
    b4982fbf1304 net: ieee802154: do not leave a dangling sk pointer in ieee802154_create()
    db207d19adba net: af_can: do not leave a dangling sk pointer in can_create()
    6021ccc2471b Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()
    8ad09ddc63ac Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()
    157f08db9412 af_packet: avoid erroring out after sock_init_data() in packet_create()
    b77109f18a8d net/sched: cbs: Fix integer overflow in cbs_set_port_rate()
    159c6df97655 net: ethernet: fs_enet: Use %pa to format resource_size_t
    6c591b8d0153 net: fec_mpc52xx_phy: Use %pa to format resource_size_t
    cf27f38254db samples/bpf: Fix a resource leak
    a52bc92fc47e r8169: don't apply UDP padding quirk on RTL8126A
    fba2b2d0b7cc ALSA: hda/conexant: Use the new codec SSID matching
    f4306ef142bc ALSA: hda: Use own quirk lookup helper
    45e43e721e26 drm/display: Fix building with GCC 15
    6fbdc3980b70 dlm: fix possible lkb_resource null dereference
    5059372280e2 drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check()
    1a0f54cb3fea wifi: rtw89: check return value of ieee80211_probereq_get() for RNR
    1159d74ed469 drm/mcde: Enable module autoloading
    0a59c2fe8d67 drm/bridge: it6505: Enable module autoloading
    189dc7030b72 drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK
    33126ee70c56 drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition
    290127c6452d drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model
    258b997e5119 drm/vc4: hvs: Set AXI panic modes for the HVS
    e0388a95736a drm/vc4: hdmi: Avoid log spam for audio start failure
    6e8348ec4215 HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support
    66ab53850ca1 selftests/resctrl: Protect against array overflow when reading strings
    70e2f30534bb regmap: maple: Provide lockdep (sub)class for maple tree's internal lock
    2129f6faa5df soc: imx8m: Probe the SoC driver as platform driver
    3379f506f059 mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED
    63ddf8a5ec8f mmc: core: Add SD card quirk for broken poweroff notification
    8910c0217d7e media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108
    31f9b4a22347 media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera
    f20f3416fe33 media: uvcvideo: RealSense D421 Depth module metadata
    115afb20fdff HID: add per device quirk to force bind to hid-generic
    5b1f34bf3617 spi: spi-fsl-lpspi: Adjust type of scldiv
    28ed7bc5eee0 perf/x86/amd: Warn only on new bits set
    5a4688dbf4ae ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID
    cfa076596dc4 hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list
    dca4e74a9185 kcsan: Turn report_filterlist_lock into a raw_spinlock
    e8483ae13100 kselftest/arm64: Don't leak pipe fds in pac.exec_sign_all()
    4c7baac247ce btrfs: do not clear read-only when adding sprout device
    a5d74fa24752 btrfs: avoid unnecessary device path update for the same device
    a5bc4e030f50 btrfs: don't take dev_replace rwsem on task already holding it
    a69752f1e5de s390/cpum_sf: Handle CPU hotplug remove during sampling
    7c27b25891b0 kselftest/arm64: Log fp-stress child startup errors to stdout
    61005057fd5c epoll: annotate racy check
    af3fde6112b2 x86/mm: Add _PAGE_NOPTISHADOW bit to avoid updating userspace page tables
    cb9945f292a8 kasan: make report_lock a raw spinlock
    625e3f5d13a7 lib: stackinit: hide never-taken branch from compiler
    03ba9477dcca ocfs2: update seq_file index in ocfs2_dlm_seq_next
    07f395d6197c mmc: core: Further prevent card detect during shutdown
    5d8525e5067a mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet
    f1a99d8645d8 regmap: detach regmap from dev on regmap_exit
    f8abd03f83d5 xsk: fix OOB map writes when deleting elements
    5ea568e71d0c dma-fence: Use kernel's sort for merging fences
    ce97e7891b5d dma-fence: Fix reference leak on fence merge failure path
    4e1cb04a68af dma-buf: fix dma_fence_array_signaled v4
    8e858930695d bpf: fix OOB devmap writes when deleting elements
    94666abe8163 x86/kexec: Restore GDT on return from ::preserve_context kexec
    70d6c1badec3 modpost: Add .irqentry.text to OTHER_SECTIONS
    e2153e479e93 drm/amdgpu/hdp5.2: do a posting read when flushing HDP
    d834d20d2e86 drm/dp_mst: Fix resetting msg rx state after topology removal
    396f697500c8 drm/dp_mst: Verify request type in the corresponding down message reply
    c58947a8d4a5 drm/dp_mst: Fix MST sideband message body length check
    23b5908b11b7 cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU
    cc05aa2c0117 bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again
    bd74bc9b3a8c smb3.1.1: fix posix mounts to older servers
    ccf435caa314 fs/smb/client: cifs_prime_dcache() for SMB3 POSIX reparse points
    136fca78a66d fs/smb/client: Implement new SMB3 POSIX type
    439224eb2f5b fs/smb/client: avoid querying SMB2_OP_QUERY_WSL_EA for SMB3 POSIX
    c3afea07477b nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()
    1e30b52edf17 scsi: ufs: core: Add missing post notify for power mode change
    0069928727c2 scsi: ufs: core: sysfs: Prevent div by zero
    38bd792fb676 scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt
    15369e774f27 scsi: qla2xxx: Fix use after free on unload
    dbd3f8f3ade1 scsi: qla2xxx: Supported speed displayed incorrectly for VPorts
    968bba7d1d04 scsi: qla2xxx: Fix NVMe and NPIV connect issue
    00e1503aaef7 scsi: qla2xxx: Fix abort in bsg timeout
    bafa26387438 ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG)
    00a4369b3a4b ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8
    2e50b49ba498 ALSA: usb-audio: add mixer mapping for Corsair HS80
    96035c0093db arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL
    8c36240460f9 arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs
    cdf81c4a8150 tracing: Fix cmp_entries_dup() to respect sort() comparison rules
    50d66c86262f can: mcp251xfd: mcp251xfd_get_tef_len(): work around erratum DS80000789E 6.
    1ac442f25c19 can: dev: can_set_termination(): allow sleeping GPIOs
    7015d9d4cc70 watchdog: rti: of: honor timeout-sec property
    164d3597d26d ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write
    27de4295522e ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
    7dfbf011a57b LoongArch: Add architecture specific huge_pte_clear()
    a7f0509556fa HID: wacom: fix when get product name maybe null pointer
    81ad32b87eb9 mm: page_alloc: move mlocked flag clearance into free_pages_prepare()
    67a102352bb2 x86/CPU/AMD: WARN when setting EFER.AUTOIBRS if and only if the WRMSR fails
    68570b5c89c5 bpf: Fix exact match conditions in trie_get_next_key()
    2e9ff3f4834c bpf: Handle in-place update for full LPM trie correctly
    c1ab31edd258 bpf: Remove unnecessary kfree(im_node) in lpm_trie_update_elem
    c5325e6e4b6d bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie
    67e972130bb6 iio: magnetometer: yas530: use signed integer type for clamp limits
    6d3f4c72019f scatterlist: fix incorrect func name in kernel-doc
    a84d507d3290 ocfs2: free inode when ocfs2_get_init_inode() fails
    6acd8e87b6e1 drm/v3d: Enable Performance Counters before clearing them
    88237f66b142 ASoC: mediatek: mt8188-mt6359: Remove hardcoded dmic codec
    602c3038a8a6 scsi: scsi_debug: Fix hrtimer support for ndelay
    59b30afa5786 scsi: sg: Fix slab-use-after-free read in sg_release()
    c169daf3cf39 bpf: Fix narrow scalar spill onto 64-bit spilled scalar slots
    9a420d6b4065 ASoC: SOF: ipc3-topology: fix resource leaks in sof_ipc3_widget_setup_comp_dai()
    77e01dfb4fb2 ASoC: SOF: ipc3-topology: Convert the topology pin index to ALH dai index
    f65d85bc1ffd spi: mpc52xx: Add cancel_work_sync before module remove
    37eef8c2e085 tools: Override makefile ARCH variable if defined, but empty
    8a2d8958585a ALSA: usb-audio: Notify xrun for low-latency mode
    06d43e40e2f9 ALSA: seq: ump: Fix seq port updates per FB info notify
    8ddb4126e6a4 ALSA: ump: Update substream name from assigned FB names
    d3e8e4d62c88 ALSA: seq: ump: Use automatic cleanup of kfree()
    206d56f41a15 tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg
    f2f6d999a934 drm/sti: Add __iomem for mixer_dbg_mxn's parameter
    6bc209dbacc5 bpftool: fix potential NULL pointer dereferencing in prog_dump()
    0fcda0c9cb15 xsk: always clear DMA mapping information when unmapping the pool
    d504dc20b768 bpf, vsock: Invoke proto::close on close()
    57c47d3cf1a6 bpf, vsock: Fix poll() missing a queue
    c3799292d639 scsi: ufs: core: Add ufshcd_send_bsg_uic_cmd() for UFS BSG
    12e24d8a005c scsi: ufs: core: Always initialize the UIC done completion
    d5be5ce82a7e drm/bridge: it6505: Fix inverted reset polarity
    485924554390 drm/bridge: it6505: update usleep_range for RC circuit charge time
    f454a3e98c30 i3c: master: Fix dynamic address leak when 'assigned-address' is present
    990da49bfcbf i3c: master: Extend address status bit to 4 and add I3C_ADDR_SLOT_EXT_DESIRED
    72863649acec i3c: master: Replace hard code 2 with macro I3C_ADDR_SLOT_STATUS_BITS
    ac0fed078bc9 i3c: master: svc: Modify enabled_events bit 7:0 to act as IBI enable counter
    07f4c0df0eb3 i3c: master: svc: use slow speed for first broadcast address
    5626d1addc2a i3c: master: support to adjust first broadcast address speed
    a68c391c6321 i3c: master: fix kernel-doc check warning
    8aa36f7e004b i3c: master: svc: add hot join support
    e7217d528ef5 i3c: master: add enable(disable) hot join in sys entry
    ed24ab98242f f2fs: fix to drop all discards after creating snapshot on lvm device
    f3ae93e738db driver core: fw_devlink: Stop trying to optimize cycle detection logic
    dce7a5c7bfa3 driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link
    5c764791fb7b driver core: fw_devlink: Improve logs for cycle detection
    faa6f8ce1b15 ntp: Remove invalid cast in time offset math
    91d2be8d4bf5 powerpc/vdso: Drop -mstack-protector-guard flags in 32-bit files with clang
    d68b0e67cff7 powerpc/vdso: Refactor CFLAGS for CVDSO build
    4a9485918a04 iommu/arm-smmu: Defer probe of clients after smmu device bound
    7360a0e798f4 zram: clear IDLE flag in mark_idle()
    9c251d1381ed zram: do not mark idle slots that cannot be idle
    b7c3fd65a3ea zram: split memory-tracking and ac-time tracking
    543d8315c289 mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting
    7e0ccc28fad1 mmc: mtk-sd: fix devm_clk_get_optional usage
    06b7f9295a42 mmc: mtk-sd: Fix error handle of probe function
    a8ece7488716 mmc: mtk-sd: use devm_mmc_alloc_host
    c6a3fa838e51 usb: dwc3: ep0: Don't clear ep0 DWC3_EP_TRANSFER_STARTED
    3df5497b9183 usb: dwc3: ep0: Don't reset resource alloc flag (including ep0)
    65b1f31111ee usb: dwc3: gadget: Rewrite endpoint allocation flow
    395d9b40431c soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure
    6885d8e7c1e3 soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version
    c73f53c7aaae soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version
    f865643723e9 soc: fsl: cpm1: qmc: Re-order probe() operations
    7ca6b9e73db2 soc: fsl: cpm1: qmc: Fix blank line and spaces
    850cee347212 soc/fsl: cpm: qmc: Convert to platform remove callback returning void
    2eb983f69079 serial: amba-pl011: Fix RX stall when DMA is used
    5aea1229e7ea serial: amba-pl011: Use port lock wrappers
    8d2ca6ac3711 gpio: grgpio: Add NULL check in grgpio_probe
    9cc1a6ce157d gpio: grgpio: use a helper variable to store the address of ofdev->dev
    fbc0a0c7718a xhci: Fix control transfer error on Etron xHCI host
    4a2422f67879 xhci: Don't issue Reset Device command to Etron xHCI host
    ec4e6d5944cd xhci: Combine two if statements for Etron xHCI host
    459cda7500ec xhci: remove XHCI_TRUST_TX_LENGTH quirk
    d55694547cd2 xhci: Allow RPM on the USB controller (1022:43f7) by default
    ea6b5d98fea4 KVM: arm64: Don't retire aborted MMIO instruction
    3fe534a02897 KVM: arm64: Change kvm_handle_mmio_return() return polarity
    3265aab0736f net: avoid potential UAF in default_operstate()
    4bd8ced2b9f6 net/mlx5e: Remove workaround to avoid syndrome for internal port
    97ce3a4ec55e geneve: do not assume mac header is set in geneve_xmit_skb()
    711525430d12 mlxsw: spectrum_acl_flex_keys: Use correct key block on Spectrum-4
    e5239f8671a1 mlxsw: spectrum_acl_flex_keys: Constify struct mlxsw_afk_element_inst
    5e7388444095 mlxsw: Mark high entropy key blocks
    64b67f77d993 mlxsw: Edit IPv6 key blocks to use one less block for multicast forwarding
    69f60dda481a mlxsw: spectrum_acl_flex_keys: Add 'ipv4_5b' flex key
    7598e65f990a mlxsw: Add 'ipv4_5' flex key
    e5242c5ff4c8 ethtool: Fix wrong mod state in case of verbose and no_mask bitset
    86c27603514c netfilter: nft_set_hash: skip duplicated elements pending gc run
    90bf312a6b6b netfilter: ipset: Hold module reference while requesting a module
    f6dc30c4698d net: sched: fix erspan_opt settings in cls_flower
    53c7314208c8 netfilter: nft_inner: incorrect percpu area handling under softirq
    f309733a8c9d igb: Fix potential invalid memory access in igb_init_module()
    0a4d8b1e3b28 ixgbe: downgrade logging of unsupported VF API version to debug
    2bf463e6c540 ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5
    4f63de0ef87b net/qed: allow old cards not supporting "num_images" to work
    673d606683ac net/smc: fix LGR and link use-after-free issue
    f0c37002210a net/smc: initialize close_work early to avoid warning
    f59b799e52f7 net/smc: refactoring initialization of smc sock
    21f6f41e82e5 net/smc: {at|de}tach sndbuf to peer DMB if supported
    fe7ef3a10c75 net/smc: add operations to merge sndbuf with peer DMB
    988b81020ad4 net/smc: mark optional smcd_ops and check for support when called
    7e5ef8eb0547 net/smc: compatible with 128-bits extended GID of virtual ISM device
    70cfb64c882c net/smc: define a reserved CHID range for virtual ISM devices
    dd0ab991caf1 net/smc: unify the structs of accept or confirm message for v1 and v2
    8ea4fc3fefa1 net/smc: introduce sub-functions for smc_clc_send_confirm_accept()
    612c04a92730 net/smc: rename some 'fce' to 'fce_v2x' for clarity
    d00d4470bf8c tipc: Fix use-after-free of kernel socket in cleanup_bearer().
    d3ec686a369f dccp: Fix memory leak in dccp_feat_change_recv
    f43d12fd0fa8 net/ipv6: release expired exception dst cached in socket
    797a4c1f5b63 ipv6: introduce dst_rt6_info() helper
    19a788bd40fd net-timestamp: make sk_tskey more predictable in error path
    4d5a573f64e8 platform/x86: asus-wmi: Ignore return value when writing thermal policy
    5a4f732e2a8f platform/x86: asus-wmi: Fix inconsistent use of thermal policies
    6051a4b17f9e platform/x86: asus-wmi: add support for vivobook fan profiles
    426d94815e12 can: j1939: j1939_session_new(): fix skb reference counting
    3c215663b3e2 net: hsr: avoid potential out-of-bound access in fill_frame_info()
    d381c2b0d77e net/sched: tbf: correct backlog statistic for GSO packets
    70966e5bafb7 ptp: Add error handling for adjfine callback in ptp_clock_adjtime
    66127f0d1ecf net: enetc: Do not configure preemptible TCs if SIs do not support
    ea8e9f84ea15 selftests: hid: fix typo and exit code
    2f9bec0a749e netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level
    a9bcc0b70d9b netfilter: x_tables: fix LED ID check in led_tg_check()
    124834133b32 ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init()
    39df17a12746 can: f81604: f81604_handle_can_bus_errors(): fix {rx,tx}_errors statistics
    c7f3a539b180 can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics
    0fef1604a436 can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics
    bbbc9e190b26 can: sja1000: sja1000_err(): fix {rx,tx}_errors statistics
    98b7477236be can: hi311x: hi3110_can_ist(): fix {rx,tx}_errors statistics
    bf92d477a9a3 can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics
    dce292ffb728 can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics
    112802200944 can: hi311x: hi3110_can_ist(): fix potential use-after-free
    8ac49d8fc936 can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL
    c146df8292c6 can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails
    1cdd3563e147 can: gs_usb: add usb endpoint address detection at driver probe step
    e2282706eb5c can: gs_usb: add VID/PID for Xylanta SAINT3 product family
    b8a0428f1eb2 watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart()
    d556b4ff5854 watchdog: apple: Actually flush writes after requesting watchdog restart
    babc8a52fe69 watchdog: xilinx_wwdt: Calculate max_hw_heartbeat_ms using clock frequency
    e417b3cb55a7 iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call
    943e0aeece93 Linux 6.6.65
    b47d9ffb2d1d openrisc: Use asm-generic's version of fix_to_virt() & virt_to_fix()
    52ab77109035 Revert "x86/pvh: Set phys_base when calling xen_prepare_pvh()"
    dd47f7175940 Revert "x86/pvh: Call C code via the kernel virtual mapping"
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: e3cde531755be78188afc56d2f5c234073dbf666)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 2db39e7791f8ed430ddfeec87ab2aa178090af45)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
cfd84b8c04 linux-yocto/6.6: update to v6.6.64
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    22a054ea1f08 Linux 6.6.64
    f3b82bb26f5b posix-timers: Target group sigqueue to current task only if not exiting
    8a799149ab45 drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7
    3990ef742c06 drm/amdgpu: fix usage slab after free
    70e6599a9e78 drm/amdkfd: Use the correct wptr size
    d50b5a7ac7f5 drm: xlnx: zynqmp_dpsub: fix hotplug detection
    65bea1cb0230 drm/etnaviv: flush shader L1 cache after user commandstream
    a3d970f106bb drm/mediatek: Fix child node refcount handling in early exit
    8ab73ac97c0f drm/sti: avoid potential dereference of error pointers
    997b64c3f4c1 drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check
    82a5312f874f drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check
    ac48ddf6b023 udmabuf: use vmf_insert_pfn and VM_PFNMAP for handling mmap
    cfaf83501a0c tpm: Lock TPM chip in tpm_pm_suspend() first
    135b4819f6fb btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc()
    c062bba16246 powerpc: Adjust adding stack protector flags to KBUILD_CLAGS for clang
    0760e47fa632 powerpc: Fix stack protector Kconfig test for clang
    1bdff8a19cd6 iio: gts: fix infinite loop for gain_to_scaletables()
    e5cac3272199 iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer
    98e1f03de842 iio: Fix fwnode_handle in __fwnode_iio_channel_get_by_name()
    8e5e63d6ca95 iio: accel: kx022a: Fix raw read format
    37dfc81266d3 nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur
    1cecfdbc6bfc nfsd: make sure exp active before svc_export_show
    2eb355346c5a PCI: rockchip-ep: Fix address translation unit programming
    8b404b08be92 PCI: of_property: Assign PCI instead of CPU bus address to dynamic PCI nodes
    6f433923d3b6 dm thin: Add missing destroy_work_on_stack()
    fad9d2a96600 dm: Fix typo in error message
    c5f4540ae66e ovl: properly handle large files in ovl_security_fileattr
    4a44bcb73a0b leds: flash: mt6360: Fix device_for_each_child_node() refcounting in error paths
    5294e8abd46c thermal: int3400: Fix reading of current_uuid for active policy
    6868deee4a6b fs/proc/kcore.c: Clear ret value in read_kcore_iter after successful iov_iter_zero
    b50b631d8fce PCI: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf()
    2bf49d724c9e PCI: keystone: Add link up check to ks_pcie_other_map_bus()
    344134ac9190 PCI: keystone: Set mode as Root Complex for "ti,keystone-pcie" compatible
    ce30d11b39e8 i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()
    0a0dc4834f66 i3c: master: svc: Fix pm_runtime_set_suspended() with runtime pm enabled
    cdcc26d714c9 scsi: ufs: exynos: Fix hibern8 notify callbacks
    6caff31c3d18 util_macros.h: fix/rework find_closest() macros
    308e0cc36dc4 ceph: extract entity name from device id
    33a213c04faf mm/slub: Avoid list corruption when removing a slab from the full list
    2c932d5c7aac ARM: 9431/1: mm: Pair atomic_set_release() with _read_acquire()
    ef21187c0672 ARM: 9430/1: entry: Do a dummy read from VMAP shadow
    1af22528fee8 s390/entry: Mark IRQ entries to fix stack depot warnings
    1359fd9eae29 ARM: 9429/1: ioremap: Sync PGDs for VMALLOC shadow
    7e3a8ea3d1ad ad7780: fix division by zero in ad7780_write_raw()
    8bca39b958f1 clk: qcom: gcc-qcs404: fix initial rate of GPLL3
    6aa39a78128a leds: lp55xx: Remove redundant test for invalid channel number
    3723d1c056d0 iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables
    9a8b989d8958 zram: clear IDLE flag after recompression
    f8cca70b0e57 vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event
    8a92dc4df89c ftrace: Fix regression with module command in stack_trace_filter
    6e290ee989dd maple_tree: refine mas_store_root() on storing NULL
    065bf5dd2163 ovl: Filter invalid inodes with missing lookup function
    b11813bc2f4e media: uvcvideo: Require entities to have a non-zero unique ID
    f83f6a6e1263 media: uvcvideo: Stop stream during unregister
    6712a28a4f92 media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal()
    2dbb2307e19d media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate()
    047178d650bc media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled
    3806bec2d470 media: amphion: Fix pm_runtime_set_suspended() with runtime pm enabled
    d173aee5709b efi/libstub: Free correct pointer on failure
    5262cbf40264 media: platform: exynos4-is: Fix an OF node reference leak in fimc_md_is_isp_available
    a2ed3b780f34 media: ts2020: fix null-ptr-deref in ts2020_probe()
    9ca2c2ad6ffa media: verisilicon: av1: Fix reference video buffer pointer assignment
    b7a830bbc25d media: imx-jpeg: Ensure power suppliers be suspended before detach them
    b59ab89bc83f media: i2c: tc358743: Fix crash in the probe error path when using polling
    76ef98f9131e arm64: dts: freescale: imx8mp-verdin: Fix SD regulator startup delay
    55aebcbcfc0a media: i2c: dw9768: Fix pm_runtime_set_suspended() with runtime pm enabled
    0ba08c21c6a9 media: mtk-jpeg: Fix null-ptr-deref during unload module
    68efeff2f7fc media: imx-jpeg: Set video drvdata before register video device
    988cc10ddbde media: amphion: Set video drvdata before register video device
    71a15258f3c9 arm64: dts: ti: k3-am62-verdin: Fix SD regulator startup delay
    7477b16f8031 arm64: dts: freescale: imx8mm-verdin: Fix SD regulator startup delay
    14635785805f arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer
    7897f1f8b785 md/md-bitmap: Add missing destroy_work_on_stack()
    4275ac274194 btrfs: ref-verify: fix use-after-free after invalid ref action
    757171d1369b btrfs: add a sanity check for btrfs root in btrfs_search_slot()
    99f3cd5a866d btrfs: don't loop for nowait writes when checking for cross references
    bcacb52a985f quota: flush quota_release_work upon quota writeback
    a2110964d536 xfs: remove unknown compat feature check in superblock write validation
    b8b84dcdf3ab sh: intc: Fix use-after-free bug in register_intc_controller()
    906cdbdd3b01 block, bfq: fix bfqq uaf in bfq_limit_depth()
    0ca87e506375 sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket
    931be6b73830 SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT
    3811172e8c98 sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport
    065902117a5b nfs: ignore SB_RDONLY when mounting nfs
    5fab8abc2c27 cifs: unlock on error in smb3_reconfigure()
    880a661e6764 cifs: during remount, make sure passwords are in sync
    fe44c5477284 modpost: remove incorrect code in do_eisa_entry()
    625e2357c8fc smb: Initialize cfid->tcon before performing network ops
    0dd7a8b948fd Rename .data.once to .data..once to fix resetting WARN*_ONCE
    eda52d5ae82d Rename .data.unlikely to .data..unlikely
    ab8c357dbf87 init/modpost: conditionally check section mismatch to __meminit*
    52197a7c14df modpost: squash ALL_{INIT,EXIT}_TEXT_SECTIONS to ALL_TEXT_SECTIONS
    17f4332ae695 modpost: use ALL_INIT_SECTIONS for the section check from DATA_SECTIONS
    db081efa9b80 modpost: disallow the combination of EXPORT_SYMBOL and __meminit*
    a169a023e064 modpost: remove EXIT_SECTIONS macro
    2462732f35f1 modpost: remove MEM_INIT_SECTIONS macro
    95da0b40fa8c modpost: disallow *driver to reference .meminit* sections
    db5647420fb2 modpost: remove ALL_EXIT_DATA_SECTIONS macro
    4151b8e1fca8 rtc: ab-eoz9: don't fail temperature reads on undervoltage notification
    24891e0ebca5 cifs: Fix parsing reparse point with native symlink in SMB1 non-UNICODE session
    430afd3edabf cifs: Fix parsing native symlinks relative to the export
    e061482601b4 smb: client: disable directory caching when dir_cache_timeout is zero
    03a0e2520350 perf/arm-cmn: Ensure port and device id bits are set properly
    9890e6f2ec92 perf/arm-smmuv3: Fix lockdep assert in ->event_init()
    2bb3ee1bf237 9p/xen: fix release of IRQ
    e978643c4c9c 9p/xen: fix init sequence
    5da567d3f737 block: return unsigned int from bdev_io_min
    1e20e4ff3a75 nvme/multipath: Fix RCU list traversal to use SRCU primitive
    f0679539fad9 nvme-multipath: avoid hang on inaccessible namespaces
    85b9f3e63e79 nvme-multipath: implement "queue-depth" iopolicy
    a7071e2bd0fc nvme-multipath: prepare for "queue-depth" iopolicy
    18db8ae7abb5 rtc: rzn1: fix BCD to rtc_time conversion errors
    011c3320e1fc jffs2: fix use of uninitialized variable
    01d3a2293d7e ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit
    612824dd0c94 ubi: fastmap: Fix duplicate slab cache names while attaching
    074b310f0591 ubifs: Correct the total block count by deducting journal reservation
    7e66d36871d1 ubi: fastmap: wl: Schedule fm_work if wear-leveling pool is empty
    dd4b1cbcc916 rtc: check if __rtc_read_time was successful in rtc_timer_do_work()
    a990130f6770 rtc: abx80x: Fix WDT bit position of the status register
    96fd3dfb1d14 rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq()
    229a30ed42bb NFSv4.0: Fix a use-after-free problem in the asynchronous open()
    e7b5a40b9b38 um: Always dump trace for specified task in show_stack
    d3ca120303a7 um: Fix the return value of elf_core_copy_task_fpregs
    a875c023155e um: Fix potential integer overflow during physmem setup
    acfaf37888e0 SUNRPC: make sure cache entry active before cache_show
    dde654cad08f NFSD: Prevent a potential integer overflow
    10209665b5bf ipc: fix memleak if msg_init_ns failed in create_ipc_ns
    27d6e7eff07f f2fs: fix to do sanity check on node blkaddr in truncate_node()
    f7f33bb2dbaf lib: string_helpers: silence snprintf() output truncation warning
    9e68fcffc764 ublk: fix error code for unsupported command
    1534f6f69393 usb: dwc3: gadget: Fix looping of queued SG entries
    bb6bf24fe03b usb: dwc3: gadget: Fix checking for number of TRBs left
    5906ee369367 usb: musb: Fix hardware lockup on first Rx endpoint request
    73934e535cff smb: During unmount, ensure all cached dir instances drop their dentry
    791f83305357 smb: prevent use-after-free due to open_cached_dir error paths
    31fabf70d583 smb: Don't leak cfid when reconnect races with open_cached_dir
    921d90907eb9 smb: client: handle max length for SMB symlinks
    83cb4fb72d64 smb3: request handle caching when caching directories
    edf5b298eb36 ALSA: hda/realtek: Apply quirk for Medion E15433
    0e37c70bff7c ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max
    76e3de272587 ALSA: hda/realtek: Set PCBeep to default value for ALC274
    c917f415c18a ALSA: hda/realtek: Update ALC225 depop procedure
    bc200027ee92 ALSA: pcm: Add sanity NULL check for the default mmap fault handler
    0357abf951c4 ALSA: ump: Fix evaluation of MIDI 1.0 FB info
    e9bf513718d0 media: v4l2-core: v4l2-dv-timings: check cvt/gtf result
    305c75f402e8 soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting()
    378ce4e08ca2 media: wl128x: Fix atomicity violation in fmc_send_cmd()
    c68dab166532 HID: wacom: Interpret tilt data from Intuos Pro BT as signed values
    68a69ed52a8b blk-mq: Make blk_mq_quiesce_tagset() hold the tag list mutex less long
    e95080fba190 block: fix ordering between checking BLK_MQ_S_STOPPED request adding
    679b1874eba7 block: fix ordering between checking QUEUE_FLAG_QUIESCED request adding
    fe0d9800ead6 block: fix missing dispatching request when queue is started or unquiesced
    ad654c5bfe3e arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled
    80f25003af22 ublk: fix ublk_ch_mmap() for 64K page size
    1681131bfa23 iio: gts: Fix uninitialized symbol 'ret'
    09faf32c682e sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
    8204dd589c4f um: vector: Do not use drvdata in release
    ad253966ee98 serial: 8250: omap: Move pm_runtime_get_sync
    63ff22d706bb serial: 8250_fintek: Add support for F81216E
    11af46904019 dt-bindings: serial: rs485: Fix rs485-rts-delay property
    cdbd5a1dcdc2 um: net: Do not use drvdata in release
    2d194d951895 um: ubd: Do not use drvdata in release
    5e1feafa7347 ubi: wl: Put source PEB into correct list if trying locking LEB failed
    de70a7e1f3d6 platform/chrome: cros_ec_typec: fix missing fwnode reference decrement
    46f8e2592681 smb: client: fix NULL ptr deref in crypto_aead_setkey()
    a96f9eb7add3 ksmbd: fix use-after-free in SMB request handling
    9665bbefab87 parisc/ftrace: Fix function graph tracing disablement
    185f065f458b cifs: support mounting with alternate password to allow password rotation
    4ca70a0630b0 cpufreq: mediatek-hw: Fix wrong return value in mtk_cpufreq_get_cpu_power()
    13dc02cae4e3 mtd: spi-nor: core: replace dummy buswidth from addr to data
    66f0fbc8ba18 spi: Fix acpi deferred irq probe
    856023ef032d netfilter: ipset: add missing range check in bitmap_ip_uadt
    5691e457251b gpio: exar: set value when external pull-up or pull-down is present
    d2543d75f81d Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit"
    671bf7530c08 serial: sh-sci: Clean sci_ports[0] after at earlycon exit
    32ffdd003f6f Revert "usb: gadget: composite: fix OS descriptors w_value logic"
    69c83ff5299c wifi: brcmfmac: release 'root' node in all execution paths
    81da9c085454 wifi: ath12k: fix crash when unbinding
    8f3551f67991 wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures
    223b546c6222 wifi: ath12k: fix warning when unbinding
    ebefd0c746a2 ARM: dts: omap36xx: declare 1GHz OPP as turbo again
    ae0ef0d756d2 usb: xhci: Fix TD invalidation under pending Set TR Dequeue
    5540869a3f75 Compiler Attributes: disable __counted_by for clang < 19.1.3
    19714c9e8885 Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}()
    0d53178a3d8b exfat: fix uninit-value in __exfat_get_dentry_set
    7451f7297e74 dt-bindings: iio: dac: ad3552r: fix maximum spi speed
    6a4645bc3b14 pinctrl: qcom: spmi: fix debugfs drive strength
    ee68555b979e tools/nolibc: s390: include std.h
    85cfe884668d locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass()
    958275235d40 tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler
    2a9b68f2dc68 apparmor: test: Fix memory leak for aa_unpack_strdup()
    9b07fb464eb6 comedi: Flush partial mappings in error case
    1b8868b818ec fsnotify: fix sending inotify event with unexpected filename
    e5d5c04aac71 PCI: Fix use-after-free of slot->bus on hot remove
    7484289822c5 KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device
    2a4ec241dbe7 KVM: arm64: vgic-its: Add a data length check in vgic_its_save_*
    dd2f9861f275 KVM: arm64: Get rid of userspace_irqchip_in_use
    718f1712e155 KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE
    130abaa1da82 KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status
    26cd7f91f27f KVM: arm64: vgic-v3: Sanitise guest writes to GICR_INVLPIR
    10c95568e7ac powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector
    d79f765b2eb8 KVM: x86/mmu: Skip the "try unsync" path iff the old SPTE was a leaf SPTE
    046fb04cbce9 crypto: x86/aegis128 - access 32-bit arguments as 32-bit
    e68ca7dafecb perf/x86/intel/pt: Fix buffer full but size is 0 case
    a7fc8dce17e6 ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata()
    30a2d503367b ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00
    9353cdf28d4c jfs: xattr: check invalid xattr size more strictly
    2bd7c6086641 ext4: fix FS_IOC_GETFSMAP handling
    786a552739bb ext4: supress data-race warnings in ext4_free_inodes_{count,set}()
    095694f58fe2 soc: qcom: socinfo: fix revision check in qcom_socinfo_probe()
    bdae089f4b95 ASoC: Intel: sst: Fix used of uninitialized ctx to log an error
    acf693decaa3 arm64: dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
    387a4dc33bb7 Revert "arm64: dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled"
    b8f8b81dabe5 ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices
    22d907bcd283 btrfs: do not BUG_ON() when freeing tree block after error
    b98777309756 f2fs: fix null reference error when checking end of zone
    475d99e611d5 perf/x86/intel: Hide Topdown metrics events if the feature is not enumerated
    e4f3bb7d53b9 dm-bufio: fix warnings about duplicate slab caches
    cd1e565a5b7f drm/amd/display: Add NULL pointer check for kzalloc
    d247af7c5dbf drm/amd/display: Check phantom_stream before it is used
    8c854138b593 drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func
    ebef6616219f drm/amd/display: Check null pointer before try to access it
    ec1be3c527b4 drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw
    205e3b96cc9a drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw
    f14fc623dd23 dm-cache: fix warnings about duplicate slab caches
    ecb4aaa658da closures: Change BUG_ON() to WARN_ON()
    3347581bf9ed usb: ehci-spear: fix call balance of sehci clk handling routines
    74cb86e1006c ALSA: usb-audio: Fix out of bounds reads when finding clock sources
    804b96f8d0a0 xen: Fix the issue of resource not being properly released in xenbus_dev_probe()
    7cd9f0a33e73 xfs: add bounds checking to xlog_recover_process_data
    6b42ded89ba8 nvme: fix metadata handling in nvme-passthrough
    232a138bd843 scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths
    d00df6700ad1 mailbox: mtk-cmdq: Move devm_mbox_controller_register() after devm_pm_runtime_enable()
    a90cb059969b f2fs: fix fiemap failure issue when page size is 16KB
    d7f0c4c95652 gfs2: Remove and replace gfs2_glock_queue_work
    6e92dd3ac246 gfs2: Don't set GLF_LOCK in gfs2_dispose_glock_lru
    22185892fc22 ASoC: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry
    2c9a5607ecba apparmor: fix 'Do simple duplicate message elimination'
    020002c76147 drm/amd/display: Fix null check for pipe_ctx->plane_state in hwss_setup_dpp
    756f30dc27ae drm/radeon: Fix spurious unplug event on radeon HDMI
    5e3a0f772d97 drm/radeon: change rdev->ddev to rdev_to_drm(rdev)
    28f6a86a2f66 drm/radeon: add helper rdev_to_drm(rdev)
    95070c084e20 ALSA: hda/realtek: Update ALC256 depop procedure
    789a72498d32 firmware_loader: Fix possible resource leak in fw_log_firmware_info()
    4a92e1030242 counter: ti-ecap-capture: Add check for clk_enable()
    5f7d46164af2 counter: stm32-timer-cnt: Add check for clk_enable()
    ed4c8fc2e71d misc: apds990x: Fix missing pm_runtime_disable()
    ce833757ba75 USB: chaoskey: Fix possible deadlock chaoskey_list_lock
    acfc4350dc2a USB: chaoskey: fail open after removal
    67970b0cc76b usb: yurex: make waiting on yurex_write interruptible
    7051f66d8158 usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read()
    8353a251accf iio: light: al3010: Fix an error handling path in al3010_probe()
    8e0e47f038bc ipmr: fix tables suspicious RCU usage
    bba7909b511b ip6mr: fix tables suspicious RCU usage
    65ed89cad1f5 tcp: Fix use-after-free of nreq in reqsk_timer_handler().
    265f1f22fddd rxrpc: Improve setsockopt() handling of malformed user input
    9a62ca28d3f8 llc: Improve setsockopt() handling of malformed user input
    5703fb1d85f6 Bluetooth: MGMT: Fix possible deadlocks
    95f7a972194a Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync
    65e3a909bdab bnxt_en: Unregister PTP during PCI shutdown and suspend
    85c37802d94f bnxt_en: Refactor bnxt_ptp_init()
    c48cfa53fe96 bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down
    fd7259c1bacc net: hsr: fix hsr_init_sk() vs network/transport headers.
    41535cb14342 spi: atmel-quadspi: Fix register name in verbose logging function
    fed89cfab189 octeontx2-af: Quiesce traffic before NIX block reset
    0bbba28d4b8c octeontx2-af: RPM: fix stale FCFEC counters
    f002f21c1227 octeontx2-af: RPM: fix stale RSFEC counters
    92ada6df6ce7 octeontx2-pf: Reset MAC stats during probe
    3eda3da855da octeontx2-af: RPM: Fix low network performance
    6030d66ac03a octeontx2-af: RPM: Fix mismatch in lmac type
    7501912e5a9f net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken
    93ccc94dd713 marvell: pxa168_eth: fix call balance of pep->clk handling routines
    6aa2ede634ad net: mdio-ipq4019: add missing error check
    836deb96383e net/ipv6: delete temporary address if mngtmpaddr is removed or unmanaged
    42251c2d1ef1 s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()
    f2a30e6fcd5a net: microchip: vcap: Add typegroup table terminators in kunit tests
    e3bb76fe2288 net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration
    d0f06266562b tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets
    bca2c418a597 net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device
    a422ebec863d net: usb: lan78xx: Fix double free issue with interrupt buffer allocation
    3ea084dfc5a8 power: supply: rt9471: Use IC status regfield to report real charger status
    8637f400b253 power: supply: rt9471: Fix wrong WDT function regfield declaration
    7f395c87a8fe power: supply: bq27xxx: Fix registers of bq27426
    348d7d07ef3b power: supply: core: Remove might_sleep() from power_supply_put()
    0c8d50501bc1 LoongArch: BPF: Sign-extend return values
    a639cea4de29 LoongArch: Fix build failure with GCC 15 (-std=gnu23)
    7ea2a3d40142 fs_parser: update mount_api doc to match function signature
    06f2fcf49854 vfio/pci: Properly hide first-in-list PCIe extended capability
    1f7b85e5ffd8 gpio: zevio: Add missed label initialisation
    c2d6226bef96 selftests/mount_setattr: Fix failures on 64K PAGE_SIZE kernels
    6c5ddc2b68f2 vdpa/mlx5: Fix suboptimal range on iotlb iteration
    40be5b4c0c15 hwmon: (tps23861) Fix reporting of negative temperatures
    1dfc79bfc544 NFSD: Fix nfsd4_shutdown_copy()
    1c9a99c89e45 svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()
    bd8524148dd8 nfsd: release svc_expkey/svc_export with rcu_work
    028417543535 NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir()
    eb51733ae5fc NFSD: Prevent NULL dereference in nfsd4_process_cb_update()
    242ee2b0ad9b PCI: endpoint: epf-mhi: Avoid NULL dereference if DT lacks 'mmio'
    2ffc58ec837e remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region
    ab897ca4d7bb rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length
    c437af60c4f1 remoteproc: qcom: pas: add minidump_id to SM8350 resources
    2f465476ff8b perf trace: Avoid garbage when not printing a syscall's arguments
    fad7be239512 perf trace: Do not lose last events in a race
    e3b4b95c2b8b perf trace: Fix tracing itself, creating feedback loops
    f38ab496c7c4 perf list: Fix topic and pmu_name argument order
    838dd342962c svcrdma: Address an integer overflow
    022c3fc12850 m68k: coldfire/device.c: only build FEC when HW macros are defined
    c178bcaccbfd m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x
    ad8cf4a18d99 perf trace: avoid garbage when not printing a trace event's arguments
    16784362b4bd f2fs: fix to avoid forcing direct write to use buffered IO on inline_data inode
    794fa8792d4e f2fs: fix race in concurrent f2fs_stop_gc_thread
    e466b89987d8 PCI: j721e: Deassert PERST# after a delay of PCIE_T_PVPERL_MS milliseconds
    9621a3d5a4e0 PCI: j721e: Add suspend and resume support
    bea0c0e4013b PCI: j721e: Use T_PERST_CLK_US macro
    0a289ca90225 PCI: j721e: Add reset GPIO to struct j721e_pcie
    762de2993b77 PCI: cadence: Set cdns_pcie_host_init() global
    4231df767001 PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup()
    5261d258e318 PCI: j721e: Add PCIe 4x lane selection support
    7c3bf691097c PCI: j721e: Add per platform maximum lane settings
    47203d68f52a PCI: Add T_PVPERL macro
    ed16873faf6a f2fs: fix to avoid use GC_AT when setting gc_mode as GC_URGENT_LOW or GC_URGENT_MID
    ecf4e6782b01 f2fs: fix to avoid potential deadlock in f2fs_record_stop_reason()
    67f4c6646011 f2fs: check curseg->inited before write_sum_page in change_curseg
    f3d586b7ab62 f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block
    aac3361f6d22 perf ftrace latency: Fix unit on histogram first entry when using --use-nsec
    b6b896c2fd44 PCI: cpqphp: Fix PCIBIOS_* return value confusion
    f974480cf399 PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads
    b7c4121a4390 rust: macros: fix documentation of the paste! macro
    cbc853c490c9 perf probe: Correct demangled symbols in C++ program
    2c6f6c3843df perf probe: Fix libdw memory leak
    f1b8bfe8d2f2 f2fs: fix to account dirty data in __get_secs_required()
    6b0ed65c94c2 f2fs: compress: fix inconsistent update of i_blocks in release_compress_blocks and reserve_compress_blocks
    9ac8d6636230 perf test attr: Add back missing topdown events
    0c4753453964 perf trace: Keep exited threads for summary
    380bc5a698b9 perf stat: Fix affinity memory leaks on error path
    035c6b7a13ac perf stat: Close cork_fd when create_perf_stat_counter() failed
    8e098baf6bc3 PCI: Fix reset_method_store() memory leak
    e30cab288c8d gfs2: Fix unlinked inode cleanup
    8264963475ca gfs2: Allow immediate GLF_VERIFY_DELETE work
    4389447f1b2a gfs2: Rename GLF_VERIFY_EVICT to GLF_VERIFY_DELETE
    39822f7f4963 gfs2: Replace gfs2_glock_queue_put with gfs2_glock_put_async
    67696fef78cf gfs2: Get rid of gfs2_glock_queue_put in signal_our_withdraw
    300b21886232 perf cs-etm: Don't flush when packet_queue fills up
    39e5f390c2c9 mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb()
    ebe0f8dc243e smb: cached directories can be more than root file handle
    f65f4ad87797 pinctrl: k210: Undef K210_PC_DEFAULT
    0dffdb2e70f1 arm64: dts: qcom: sc8180x: Add a SoC-specific compatible to cpufreq-hw
    118aa7cacaa5 clk: clk-axi-clkgen: make sure to enable the AXI bus clock
    abdf848ce528 dt-bindings: clock: axi-clkgen: include AXI clk
    fbb13732c6ff clk: ralink: mtmips: fix clocks probe order in oldest ralink SoCs
    f85a1d06afbc clk: ralink: mtmips: fix clock plan for Ralink SoC RT3883
    72ea9a7e9e26 clk: clk-apple-nco: Add NULL check in applnco_probe
    921fcf2971a1 RDMA/mlx5: Move events notifier registration to be after device registration
    b6334d2356fc IB/mlx5: Allocate resources just before first QP/SRQ is created
    3dd9df8e5f34 fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()
    1dd2d5630f0c powerpc/kexec: Fix return of uninitialized variable
    277ecc3d9797 powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static
    d2f3414036be KVM: PPC: Book3S HV: Avoid returning to nested hypervisor on pending doorbells
    e7d134bd28ee KVM: PPC: Book3S HV: Stop using vc->dpdes for nested KVM guests
    a6faea503ba4 dax: delete a stale directory pmem
    8e0de82ed18b ocfs2: fix uninitialized value in ocfs2_file_read_iter()
    ae5427f88f19 cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_power()
    4989d1ccf6f1 cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_cost()
    6b0d7d6e6883 RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg()
    451d57b22b4a RDMA/hns: Fix out-of-order issue of requester when setting FENCE
    837197f49c71 x86/tdx: Dynamically disable SEPT violations from causing #VEs
    44cb69dbec78 x86/tdx: Rename tdx_parse_tdinfo() to tdx_setup()
    d4e39b6f96fe x86/tdx: Introduce wrappers to read and write TD metadata
    d0f6d80dbc79 x86/tdx: Pass TDCALL/SEAMCALL input/output registers via a structure
    a79a114f60f1 x86/tdx: Rename __tdx_module_call() to __tdcall()
    40d3b219aeb7 x86/tdx: Make macros of TDCALLs consistent with the spec
    2765142c05a6 x86/tdx: Skip saving output regs when SEAMCALL fails with VMFailInvalid
    c72a9456fdc8 scsi: sg: Enable runtime power management
    10a6fc486ac4 scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()
    7c1832287b21 scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()
    ac3c9fb621de scsi: fusion: Remove unused variable 'rc'
    c28409f851ab scsi: bfa: Fix use-after-free in bfad_im_module_exit()
    d069227df10d fs/proc/kcore.c: fix coccinelle reported ERROR instances
    ed2571229155 mfd: rt5033: Fix missing regmap_del_irq_chip()
    ec3eb00526bf checkpatch: always parse orig_commit in fixes tag
    f6a2560e149e checkpatch: check for missing Fixes tags
    0ac9a7fbe907 iommu/vt-d: Fix checks and print in pgtable_walk()
    c801250a7714 iommu/vt-d: Fix checks and print in dmar_fault_dump_ptes()
    0bfed74e80cc clk: imx: imx8-acm: Fix return value check in clk_imx_acm_attach_pm_domains()
    e334c2fd518c clk: imx: clk-scu: fix clk enable state save and restore
    b92706bd0eb0 clk: imx: fracn-gppll: fix pll power up
    db62437bf2da clk: imx: fracn-gppll: correct PLL initialization flow
    791bf6190357 clk: imx: lpcg-scu: SW workaround for errata (e10858)
    cd2f9bc87711 RISC-V: KVM: Fix APLIC in_clrip and clripnum write emulation
    e435f311c55d RDMA/rxe: Set queue pair cur_qp_state when being queried
    a9b251599bd3 clk: renesas: rzg2l: Fix FOUTPOSTDIV clk
    4f2d22278e93 clk: sunxi-ng: d1: Fix PLL_AUDIO0 preset
    f37cc04fe893 RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey
    31978d5c5aef RDMA/rxe: Fix the qp flush warnings in req
    b4ba31e5aaff RDMA/hns: Fix cpu stuck caused by printings during reset
    8e20ac838be8 RDMA/hns: Use dev_* printings in hem code instead of ibdev_*
    44470c5eb88b RDMA/hns: Fix an AEQE overflow error caused by untimely update of eq_db_ci
    f05ef81db638 cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()
    e07570a8f2cf cpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()
    a246daa26b71 powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore
    8a06435959cc mtd: spi-nor: spansion: Use nor->addr_nbytes in octal DTR mode in RD_ANY_REG_OP
    9ea8d8bf9b62 powerpc/mm/fault: Fix kfence page fault reporting
    f1290871c8aa mtd: rawnand: atmel: Fix possible memory leak
    95b9fb67e493 mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE
    29664ae6c473 mtd: hyperbus: rpc-if: Convert to platform remove callback returning void
    c5c1d1ef7083 powerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init()
    92f7cc84c3db powerpc/fadump: Refactor and prepare fadump_cma_init for late init
    783df31532f9 cpufreq: loongson2: Unregister platform_driver on failure
    d4cc78bd6a25 mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices
    1b734ad0e336 mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device
    e1ef62e8d262 mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device
    d80635d7ebef mfd: da9052-spi: Change read-mask to write-mask
    7c8ac49aa18a mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race
    a7083f0ce5f8 powerpc/vdso: Flag VDSO64 entry points as functions
    40163b26c3de scsi: hisi_sas: Enable all PHYs that are not disabled by user during controller reset
    8b12c4e29ac2 pinctrl: zynqmp: drop excess struct member description
    840295a8ff9e trace/trace_event_perf: remove duplicate samples on the first tracepoint event
    3d02397ca30b clk: mediatek: drop two dead config options
    e2f15cb48ab7 cppc_cpufreq: Use desired perf if feedback ctrs are 0 or unchanged
    c4b6c1781f6c unicode: Fix utf8_load() error path
    da2bc8a0c8f3 bpf: fix recursive lock when verdict program return SK_PASS
    aeafba58c432 wireguard: selftests: load nf_conntrack if not present
    4802caac250b netpoll: Use rcu_access_pointer() in netpoll_poll_lock
    f466641debcb erofs: handle NONHEAD !delta[1] lclusters gracefully
    de5a44f351ca Bluetooth: fix use-after-free in device_for_each_child()
    b754e831a94f ALSA: 6fire: Release resources at card release
    4507a8b9b303 ALSA: caiaq: Use snd_card_free_when_closed() at disconnection
    2938dd264852 ALSA: us122l: Use snd_card_free_when_closed() at disconnection
    e07605d855c4 ALSA: usx2y: Use snd_card_free_when_closed() at disconnection
    440f6a15700e net: rfkill: gpio: Add check for clk_enable()
    89bf1b665ba9 bpf: Force uprobe bpf program to always return 0
    38e3d796f654 drm/amdkfd: Fix wrong usage of INIT_WORK()
    d1fb89f0024d selftests: net: really check for bg process completion
    43e25adc8026 ipv6: release nexthop on device removal
    70530a2f8120 net: use unrcu_pointer() helper
    bba7266d9dc4 sock_diag: allow concurrent operation in sock_diag_rcv_msg()
    161d4fc07133 sock_diag: allow concurrent operations
    37103a9d7f12 sock_diag: add module pointer to "struct sock_diag_handler"
    5ef3e03228e1 bpf, sockmap: Fix sk_msg_reset_curr
    98c7ea7d11f2 bpf, sockmap: Several fixes to bpf_msg_pop_data
    a53ad8ab116d bpf, sockmap: Several fixes to bpf_msg_push_data
    9df2dddc083a selftests/bpf: Add push/pop checking for msg_verify_data in test_sockmap
    862b395de02d selftests/bpf: Fix total_bytes in msg_loop_rx in test_sockmap
    a1820f63dd1e selftests/bpf: Fix SENDPAGE data logic in test_sockmap
    c8803b286d9d selftests/bpf: Add txmsg_pass to pull/push/pop in test_sockmap
    c88ae0a77c21 netlink: typographical error in nlmsg_type constants definition
    c65cff783752 netfilter: nf_tables: must hold rcu read lock while iterating object type list
    5199d4a4e018 netfilter: nf_tables: skip transaction if update object is not implemented
    981af60dd6a2 netfilter: nf_tables: must hold rcu read lock while iterating expression type list
    cd38d9cdf4bb netfilter: nf_tables: avoid false-positive lockdep splat on rule deletion
    6ee1c9849cc4 netfilter: nf_tables: Introduce nf_tables_getrule_single()
    1d0f811ec145 netfilter: nf_tables: Open-code audit log call in nf_tables_getrule()
    cf7b5e0bc199 drm: use ATOMIC64_INIT() for atomic64_t
    23c3f60082ac drm/vkms: Drop unnecessary call to drm_crtc_cleanup()
    41f0b320b6ea bpf, bpftool: Fix incorrect disasm pc
    b32f915fc659 drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk()
    1c079dace922 wifi: wfx: Fix error handling in wfx_core_init()
    a17b9afe58c4 drm: zynqmp_kms: Unplug DRM device before removal
    237f2dbfa005 drm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()
    ba0599332acc drm/etnaviv: hold GPU lock across perfmon sampling
    6b1c1297bcd5 drm/etnaviv: Request pages from DMA32 zone on addressing_limited
    a3d37915f133 drm/msm/gpu: Check the status of registration to PM QoS
    1021cc87206a drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq()
    d6a559c5642d bpf, arm64: Remove garbage frame for struct_ops trampoline
    c6120d95c729 drm/panfrost: Remove unused id_mask from struct panfrost_model
    b955ceba2c1e selftests/bpf: fix test_spin_lock_fail.c's global vars usage
    b99db02209ca octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c
    3ccbc7a51886 octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c
    c5a6c5af4346 octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c
    c4eae7bac880 octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c
    c0f64fd73b60 octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c
    52c63a6a27d3 octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c
    bfbd0b09aff0 drm/msm/dpu: drop LM_3 / LM_4 on MSM8998
    29fa82adec3c drm/msm/dpu: drop LM_3 / LM_4 on SDM845
    b9ebac16315e drm/msm/dpu: on SDM845 move DSPP_3 to LM_5 block
    0e5bcf5136f1 drm: fsl-dcu: enable PIXCLK on LS1021A
    c4698ef8c42e wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()
    557e07a7a487 selftests/bpf: Fix txmsg_redir of test_txmsg_pull in test_sockmap
    26f54adde839 selftests/bpf: Fix msg_verify_data in test_sockmap
    5981e6e1b50d drm/bridge: tc358767: Fix link properties discovery
    80afbcbdaf48 netdevsim: copy addresses for both in and out paths
    ef38a689f4e0 libbpf: never interpret subprogs in .text as entry programs
    452eb0e1589d ASoC: rt722-sdca: Remove logically deadcode in rt722-sdca.c
    36c79b9ff20a libbpf: fix sym_is_subprog() logic for weak global subprogs
    a8ec6447d76d drm/vc4: Match drm_dev_enter and exit calls in vc4_hvs_atomic_flush
    fff56eb08053 ice: consistently use q_idx in ice_vc_cfg_qs_msg()
    a340f9115301 ice: Support FCS/CRC strip disable for VF
    2edb61b5d3f0 virtchnl: Add CRC stripping capability
    fb5d7f68e676 wifi: ath11k: Fix CE offset address calculation for WCN6750 in SSR
    e05f60981951 bpf: Fix the xdp_adjust_tail sample prog issue
    44a21d9fbc2d libbpf: Fix output .symtab byte-order during linking
    d900a20e33d7 libbpf: Fix expected_attach_type set handling in program load callback
    65f9fe75cad1 drm/bridge: it6505: Drop EDID cache on bridge power off
    c2a04ba6f93d drm/bridge: anx7625: Drop EDID cache on bridge power off
    3340acafcce6 ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode
    537f327629be ASoC: fsl_micfil: fix regmap_write_bits usage
    53507b7c6363 dt-bindings: vendor-prefixes: Add NeoFidelity, Inc
    d73da0dd2853 wifi: ath12k: Skip Rx TID cleanup for self peer
    8325a50983c1 wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2
    9ef3985a9e02 wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1
    56541262079d drm/v3d: Address race-condition in MMU flush
    fda29dff5581 drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq()
    b509546bfa1f drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq()
    521d4b3f1dc1 wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq()
    dbdca51b054f wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq()
    088e10e74390 drm/omap: Fix locking in omap_gem_new_dmabuf()
    4da37fba2a6b drm/omap: Fix possible NULL dereference
    b6551479daf2 wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()
    9728b508b01a drm/vc4: hvs: Correct logic on stopping an HVS channel
    52c1716f65a5 drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs function
    8182b5ca19c6 drm/vc4: hvs: Fix dlist debug not resetting the next entry pointer
    c7d474974954 drm/vc4: hdmi: Avoid hang with debug registers when suspended
    40c77e93cfdd drm/vc4: hvs: Don't write gamma luts on 2711
    2ee46de426cc drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused
    6c8938e41b82 platform/x86: panasonic-laptop: Return errno correctly in show callback
    b03e713a400a HID: hyperv: streamline driver probe to avoid devres issues
    599929021528 arm64: dts: rockchip: correct analog audio name on Indiedroid Nova
    8066badaf746 media: atomisp: Add check for rgby_data memory allocation failure
    025067eeb945 firmware: arm_scpi: Check the DVFS OPP count returned by the firmware
    667b0527a3e7 selftests/resctrl: Protect against array overrun during iMC config parsing
    99ca7bddcade selftests/resctrl: Fix memory overflow due to unhandled wraparound
    feb6e4412537 selftests/resctrl: Refactor fill_buf functions
    315f9a1e1748 selftests/resctrl: Split fill_buf to allow tests finer-grained control
    367a0a92b968 arm64: dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed regulators
    1e1acb879e3c arm64: dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names
    7db9c3c15fb5 arm64: dts: mediatek: mt6358: fix dtbs_check error
    dbcba9b1108a arm64: dts: mediatek: Add ADC node on MT6357, MT6358, MT6359 PMICs
    a67ebf6dcc4a arm64: dts: renesas: hihope: Drop #sound-dai-cells
    3dea2312ab45 regmap: irq: Set lockdep class for hierarchical IRQ domains
    2c8cfd167100 spi: zynqmp-gqspi: Undo runtime PM changes at driver exit time​
    48e518e705e7 spi: tegra210-quad: Avoid shift-out-of-bounds
    872bfc20abea pmdomain: ti-sci: Add missing of_node_put() for args.np
    1103d3b5a502 of/fdt: add dt_phys arg to early_init_dt_scan and early_init_dt_verify
    be0a96cfa9c0 x86/of: Unconditionally call unflatten_and_copy_device_tree()
    ccf190dba640 um: Unconditionally call unflatten_device_tree()
    66b991a52ae6 arm64: dts: ti: k3-j721s2: Fix clock IDs for MCSPI instances
    a21e7623d782 arm64: dts: ti: k3-j721e: Fix clock IDs for MCSPI instances
    cae00563f173 arm64: dts: ti: k3-j7200: Fix clock ids for MCSPI instances
    ccdac40ce4d2 arm64: dts: ti: k3-j7200: Fix register map for main domain pmx
    4981b8a2d9fa arm64: dts: ti: k3-j7200: use ti,j7200-padconf compatible
    9810ceccd99b ARM: dts: cubieboard4: Fix DCDC5 regulator constraints
    0d9cee68a3f1 pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle
    15cbeb8ae3c0 arm64: dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns
    8e965120d845 arm64: dts: mt8183: cozmo: add i2c2's i2c-scl-internal-delay-ns
    8b833a02b454 arm64: dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns
    0f627e99cca6 arm64: dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns
    52c3eb1c8ce8 regulator: rk808: Restrict DVS GPIOs to the RK808 variant only
    9e67b054198f cgroup/bpf: only cgroup v2 can be attached by bpf programs
    92031d660152 Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline"
    2ef8dc16041b arm64: dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source trackpad
    78a8e85b5314 arm64: dts: mt8183: kukui: Fix the address of eeprom at i2c4
    699e5e70ad34 arm64: dts: mt8183: krane: Fix the address of eeprom at i2c4
    3164cc7cf77a media: i2c: ds90ub960: Fix missing return check on ub960_rxport_read call
    f8549e3f03c1 tpm: fix signed/unsigned bug when checking event logs
    ae0ad1626018 efi/libstub: fix efi_parse_options() ignoring the default command line
    b18f8d9e2827 openrisc: Implement fixmap to fix earlycon
    91884250825f mmc: mmc_spi: drop buggy snprintf()
    4e12b09f57c2 ARM: dts: microchip: sam9x60: Add missing property atmel,usart-mode
    653847d80fa9 arm64: dts: qcom: sm6350: Fix GPU frequencies missing on some speedbins
    c24e019ca12d soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()
    bfd19f48c45c soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq()
    b7394c6fba3a arm64: dts: mt8195: Fix dtbs_check error for infracfg_ao node
    0a3ba7c09ac8 arm64: dts: mt8195: Fix dtbs_check error for mutex node
    1dcb74ebda5c microblaze: Export xmb_manager functions
    882d7afaa4b8 drivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()
    d3a5e7ffbd41 spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq()
    ecbc50474769 clocksource/drivers/timer-ti-dm: Fix child node refcount handling
    3ba257d80ffa clocksource/drivers:sp804: Make user selectable
    45eec49fa2fa kcsan, seqlock: Fix incorrect assumption in read_seqbegin()
    5b12a7e70b0b kcsan, seqlock: Support seqcount_latch_t
    01b61f5cef36 time: Fix references to _msecs_to_jiffies() handling of values
    7723bfe6f903 time: Partially revert cleanup on msecs_to_jiffies() documentation
    8d91bdca2f97 x86/unwind/orc: Fix unwind for newly forked tasks
    cc08c2c8e98e thermal/lib: Fix memory leak on error in thermal_genl_auto()
    1b78ac7eb6c7 tools/lib/thermal: Make more generic the command encoding function
    5cecc5786506 rcuscale: Do a proper cleanup if kfree_scale_init() fails
    a40520a7a5e6 crypto: cavium - Fix an error handling path in cpt_ucode_load_fw()
    ae5253313e0e crypto: bcm - add error check in the ahash_hmac_init function
    5a0329563e25 crypto: caam - add error check to caam_rsa_set_priv_key_form
    1fa9635a5f67 ACPI: CPPC: Fix _CPC register setting issue
    685c10269c41 hwmon: (nct6775-core) Fix overflows seen when writing limit attributes
    4ffcf7893f4b hwmon: (pmbus/core) clear faults after setting smbalert mask
    714788c6a697 hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK
    967a0e619108 rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu
    f5fed8a850d0 doc: rcu: update printed dynticks counter bits
    605150b4c903 crypto: inside-secure - Fix the return value of safexcel_xcbcmac_cra_init()
    830cabb61113 EDAC/igen6: Avoid segmentation fault on module unload
    6a975fbab1d2 crypto: hisilicon/qm - disable same error report before resetting
    4b3c113af8d6 amd-pstate: Set min_perf to nominal_perf for active mode performance gov
    db74e48b49ad crypto: cavium - Fix the if condition to exit loop after timeout
    5edae7a9a356 crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY
    d9338b781fe9 EDAC/{skx_common,i10nm}: Fix incorrect far-memory error source indicator
    edf58d4bebc3 EDAC/skx_common: Differentiate memory error sources
    63a2d940c719 EDAC/fsl_ddr: Fix bad bit shift operations
    ac7dfac63970 thermal: core: Initialize thermal zones before registering them
    85a57cdc1b25 crypto: qat - remove faulty arbiter config reset
    ac6ebb9edcdb EDAC/bluefield: Fix potential integer overflow
    bba6cba4dab2 firmware: google: Unregister driver_info on failure
    05c9a7a53444 crypto: qat/qat_4xxx - fix off by one in uof_get_name()
    2a064b788dee crypto: qat - remove check after debugfs_create_dir()
    1f8e2f597b91 crypto: caam - Fix the pointer passed to caam_qi_shutdown()
    b2c36fa9ac8a virtio_blk: reverse request order in virtio_queue_rqs
    519899291235 nvme-pci: reverse request order in nvme_queue_rqs
    77035e4d27e1 ext4: fix race in buffer_head read fault injection
    cca059508975 ext4: remove array of buffer_heads from mext_page_mkuptodate()
    2266fe580adf ext4: pipeline buffer reads in mext_page_mkuptodate()
    fbd359a2ee20 ext4: remove calls to to set/clear the folio error flag
    21900e847812 hfsplus: don't query the device logical block size multiple times
    13ebba9e57a6 s390/syscalls: Avoid creation of arch/arch/ directory
    fad4262bd40d block: fix bio_split_rw_at to take zone_write_granularity into account
    539fabba965e netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING
    ae8c963906ed cachefiles: Fix missing pos updates in cachefiles_ondemand_fd_write_iter()
    01f605a4cd74 acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block()
    b46bc5b02ded arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG
    d4e05e954504 m68k: mvme147: Reinstate early console
    6395a5f9eb44 m68k: mvme16x: Add and use "mvme16x.h"
    d77659d3ffba m68k: mvme147: Fix SCSI controller IRQ numbers
    cee3bff51a35 nvme-pci: fix freeing of the HMB descriptor table
    1a423bbbeaf9 initramfs: avoid filename buffer overrun
    372042443be4 mips: asm: fix warning when disabling MIPS_FP_SUPPORT
    6c63de9b4d0e ext4: avoid remount errors with 'abort' mount option
    410896624db6 brd: defer automatic disk creation until module initialization succeeds
    83d123e27623 x86/pvh: Call C code via the kernel virtual mapping
    f662b4a69e1d x86/pvh: Set phys_base when calling xen_prepare_pvh()
    aa6e32c654fc s390/pageattr: Implement missing kernel_page_present()
    a1dc0428c05a s390/cio: Do not unregister the subchannel based on DNV
    9820f3548679 kselftest/arm64: mte: fix printf type warnings about longs
    b95a1cd26a28 kselftest/arm64: mte: fix printf type warnings about __u64
    0dd9a53bb9b2 arm64: probes: Disable kprobes/uprobes on MOPS instructions
    ecc2aeeaa08a bpf: support non-r10 register spill/fill to/from stack in precision tracking
    44b1bfb5bd97 mptcp: fix possible integer overflow in mptcp_reset_tout_timer
    68f75e6f08aa drm/amd/display: Add null check for pipe_ctx->plane_state in dcn20_program_pipe
    36ff963c133a platform/x86: x86-android-tablets: Unregister devices in reverse order
    f7d9a18572fc nvme: apple: fix device reference counting
    3820b0fac773 fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats
    c7e65cab54a8 drm/amd/display: Don't refer to dc_sink in is_dsc_need_re_compute
    c3a3b6d9a938 drm/amd/display: Check null-initialized variables
    e0f6ee75f504 fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name
    9f35cec5e4b9 drm/amd/display: Initialize denominators' default to 1
    f38b09ba6a33 drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func
    9d0f1e745e95 x86/stackprotector: Work around strict Clang TLS symbol requirements
    dc5ead0e8fc5 serial: sc16is7xx: fix invalid FIFO access with special register set
    a891938947f4 s390/pkey: Wipe copies of clear-key structures on failure
    d038693e08ad i2c: lpi2c: Avoid calling clk_get_rate during transfer
    561063997ae3 ipmr: Fix access to mfc_cache_list without lock held
    2abc2bd53e4c ARM: 9420/1: smp: Fix SMP for xip kernels
    344fb3c52923 ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry
    7ed79c551c09 LoongArch: Define a default value for VM_DATA_DEFAULT_FLAGS
    65b08af3c4a1 ASoC: audio-graph-card2: Purge absent supplies for device tree nodes
    fe8c40810a11 proc/softirqs: replace seq_printf with seq_put_decimal_ull_width
    82d0f099009e drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict
    0058f8ebfdb0 ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div()
    d525fc94249a ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate()
    1423de2c7ba1 ASoC: amd: yc: Support dmic on another model of Lenovo Thinkpad E14 Gen 6
    b07b441b79c2 platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed
    769aa742527c can: j1939: fix error in J1939 documentation.
    3e8cc9901073 tools/lib/thermal: Remove the thermal.h soft link when doing make clean
    bb64195b56ca ASoC: tas2781: Add new driver version for tas2563 & tas2781 qfn chip
    739aac7323f0 platform/x86: dell-wmi-base: Handle META key Lock/Unlock events
    32660e18f5ca platform/x86: dell-smbios-base: Extends support to Alienware products
    fd782cb8f9d3 regulator: rk808: Add apply_bit for BUCK3 on RK809
    cb5bf9377102 firmware: arm_scmi: Reject clear channel request on A2P
    3bb3fa542835 soc: qcom: Add check devm_kasprintf() returned value
    7c92e2b55677 net: usb: qmi_wwan: add Quectel RG650V
    363473736bb0 bpf: fix filed access without lock
    3e3bc9cf3fdf x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB
    1b15738a7d30 ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13
    9dc3380fb586 selftests/watchdog-test: Fix system accidentally reset after watchdog-test
    16009cc182ef usb: typec: use cleanup facility for 'altmodes_node'
    f083283f914b usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver
    24fa3e9443a4 mac80211: fix user-power when emulating chanctx
    675a1803efa1 wifi: iwlwifi: mvm: Use the sync timepoint API in suspend
    9b0f6adf28b4 ASoC: Intel: sst: Support LPE0F28 ACPI HID
    92cab36cf11a ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet
    6909df783e42 ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec
    98130b150916 ASoC: codecs: rt5640: Always disable IRQs from rt5640_cancel_work()
    28f152fc9553 wifi: radiotap: Avoid -Wflex-array-member-not-at-end warnings
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: dc44be98107d4a5fa74225ff2fdf9dabd067c22b)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f77ff46e2a31c7a5ced9ede51ad871e38084d33e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
9bd3d44e21 linux-yocto/6.6: update to v6.6.63
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    bff3e13adb72 Linux 6.6.63
    62aec1e92599 mm/damon/core: copy nr_accesses when splitting region
    6cba27abb669 mm/damon/core: handle zero schemes apply interval
    b0fb9543b119 mm/damon/core: check apply interval in damon_do_apply_schemes()
    bdc136e2b05f mm: resolve faulty mmap_region() error path behaviour
    04b7efa421dc mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling
    3a6d8d3f1998 mm: refactor map_deny_write_exec()
    a97fe6889b25 mm: unconditionally close VMAs on error
    cd3ed99fca8c mm: avoid unsafe VMA hook invocation when error arises on mmap hook
    172ffd26a5af leds: mlxreg: Use devm_mutex_init() for mutex initialization
    3a741b80b345 fs/9p: fix uninitialized values during inode evict
    f111de0f0103 drm/amd/pm: Vangogh: Fix kernel memory out of bounds write
    3bc4569a727d mptcp: pm: use _rcu variant under rcu_read_lock
    fc3c73284d2e mptcp: drop lookup_by_id in lookup_addr
    416001b0412f mptcp: hold pm lock when deleting entry
    ac56c5e80e1f mptcp: update local address flags when setting it
    aa2b28ddcc26 mptcp: add userspace_pm_lookup_addr_by_id helper
    762ca2d2e3c7 mptcp: define more local variables sk
    fb79d68a36e2 NFSD: Never decrement pending_async_copies on error
    421f1a2a1afb NFSD: Initialize struct nfsd4_copy earlier
    ae267989b7b7 NFSD: Limit the number of concurrent async COPY operations
    20a10c78ac3a NFSD: Async COPY result needs to return a write verifier
    74115b3e41c7 NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point
    db12e874e1a2 media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set
    efb258ec337f lib/buildid: Fix build ID parsing logic
    0c623f5692a0 staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation
    6dee8f99c690 staging: vchiq_arm: Get the rid off struct vchiq_2835_state
    6bfed8babc1a mm/damon/core: handle zero {aggregation,ops_update} intervals
    973739c94521 mm/damon/core: implement scheme-specific apply interval
    0a326fbc8f72 drm/amd/display: Adjust VSDB parser for replay feature
    5e91cd9a3417 drm/amd: Fix initialization mistake for NBIO 7.7.0
    16abd7ce81e4 nouveau: fw: sync dma after setup is called.
    8fc228ab5d38 pmdomain: imx93-blk-ctrl: correct remove path
    1a312ed8f9b2 drm/bridge: tc358768: Fix DSI command tx
    930f99a21e7f mmc: sunxi-mmc: Fix A100 compatible description
    56de724c58c0 Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
    32fc8cedcba6 LoongArch: Make KASAN work with 5-level page-tables
    4457bc909d1e LoongArch: Disable KASAN if PGDIR_SIZE is too large for cpu_vabits
    f04125eb9eb5 LoongArch: Fix early_numa_add_cpu() usage for FDT systems
    b0e476574004 nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
    672668e0208f ocfs2: fix UBSAN warning in ocfs2_verify_volume()
    037108f03ed4 ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10
    630adf4d66f7 ALSA: hda/realtek - Fixed Clevo platform headset Mic issue
    8bbf0ab631cd nommu: pass NULL argument to vma_iter_prealloc()
    59b49ca67cca nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
    d28b059ee477 KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN
    4b7522b0040f KVM: x86: Unconditionally set irr_pending when updating APICv state
    190b344caadc KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled
    8a84765c62cc ima: fix buffer overrun in ima_eventdigest_init_common
    c4d64534d4b1 vp_vdpa: fix id_table array not null terminated error
    15c49f91cfc8 vdpa/mlx5: Fix PA offset with unaligned starting iotlb map
    d372dd09cfbf vdpa: solidrun: Fix UB bug with devres
    64e67e869425 mm: revert "mm: shmem: fix data-race in shmem_getattr()"
    843dfc804af4 ocfs2: uncache inode which has failed entering the group
    d0f16cec7977 mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
    3414fc6a7888 x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y
    bcd602ae8c46 tools/mm: fix compile error
    4b9fb3aeb90e ARM: 9419/1: mm: Fix kernel memory mapping for xip kernels
    9ea6b70fecb9 bonding: add ns target multicast address to slave device
    c67ce71d5328 net: ti: icssg-prueth: Fix 1 PPS sync
    faf81a3d64b2 stmmac: dwmac-intel-plat: fix call balance of tx_clk handling routines
    a39058e0e554 net: stmmac: rename stmmac_pltfr_remove_no_dt to stmmac_pltfr_remove
    d54ebfe8d33f net: stmmac: dwmac-visconti: use devm_stmmac_probe_config_dt()
    e6eae391e3d9 net: stmmac: dwmac-intel-plat: use devm_stmmac_probe_config_dt()
    09621bd40205 net: Make copy_safe_from_sockptr() match documentation
    007bdd7878f9 net: stmmac: dwmac-mediatek: Fix inverted handling of mediatek,mac-wol
    4ae7a3c30c32 samples: pktgen: correct dev to DEV
    789f9963bd03 net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for hnodes.
    9fd5661af639 net/sched: cls_u32: replace int refcounts with proper refcounts
    a682b356eaf8 Bluetooth: btintel: Direct exception event to bluetooth stack
    fbc8cf85f6cc Bluetooth: hci_core: Fix calling mgmt_device_connected
    5b0888a87bce Revert "RDMA/core: Fix ENODEV error for iWARP test over vlan"
    897617a413e0 virtio/vsock: Fix accept_queue memory leak
    06dc488a5930 net/mlx5e: CT: Fix null-ptr-deref in add rule err flow
    2aa94921b072 net/mlx5e: clear xdp features on non-uplink representors
    93a14620b97c net/mlx5e: kTLS, Fix incorrect page refcounting
    094d1a2121ce net/mlx5: fs, lock FTE when checking if active
    ff825ab2f455 mptcp: cope racing subflow creation in mptcp_rcv_space_adjust
    a66805c9b22c mptcp: error out earlier on disconnect
    1e5305972969 drm/rockchip: vop: Fix a dereferenced before check warning
    fa8d2d141004 net: vertexcom: mse102x: Fix tx_bytes calculation
    ad975697211f sctp: fix possible UAF in sctp_v6_available()
    bbc769d2fa1b netlink: terminate outstanding dump on socket close
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: bf11ee2662b920271e9c8e4585f808616fb9c0e6)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f5136e72e011fc2b9ca67d7ecd1ac7603d235c7b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
1c34a4b9c3 linux-yocto/6.6: bsp/genericarm64: disable ARM64_SME
Integrating the following commit(s) to linux-yocto/.:

1/1 [
    Author: Ross Burton
    Email: ross.burton@arm.com
    Subject: bsp/genericarm64: disable ARM64_SME
    Date: Thu, 21 Nov 2024 15:53:35 +0000

    From upstream:

        arm64: Kconfig: Make SME depend on BROKEN for now

        commit 81235ae0c846e1fb46a2c6fe9283fe2b2b24f7dc upstream.

        Although support for SME was merged in v5.19, we've since uncovered a
        number of issues with the implementation, including issues which might
        corrupt the FPSIMD/SVE/SME state of arbitrary tasks. While there are
        patches to address some of these issues, ongoing review has highlighted
        additional functional problems, and more time is necessary to analyse
        and fix these.

        For now, mark SME as BROKEN in the hope that we can fix things properly
        in the near future. As SME is an OPTIONAL part of ARMv9.2+, and there is
        very little extant hardware, this should not adversely affect the vast
        majority of users.

    Signed-off-by: Ross Burton <ross.burton@arm.com>
    Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
]

(From OE-Core rev: 93000533d5ab0e808e020b05234dbb9a538d65dd)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 7ed7b6ad39bdab4e67acc7a5841b4519fd15a2dc)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
ba548333c3 linux-yocto/6.6: update to v6.6.62
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    c1036e4f14d0 Linux 6.6.62
    9da3636a4880 9p: fix slab cache name creation for real
    fc4951c3e335 mm/thp: fix deferred split unqueue naming and locking
    eb6b6d3e1f1e mm: refactor folio_undo_large_rmappable()
    0275e4021b0c mm: always initialise folio->_deferred_list
    e8769509d622 mm: support order-1 folios in the page cache
    2ad2067e9ffc mm/readahead: do not allow order-1 folio
    bc8990235fb5 mm: add page_rmappable_folio() wrapper
    71548fada7ee mm: krealloc: Fix MTE false alarm in __do_krealloc
    950ac86cff33 io_uring: fix possible deadlock in io_register_iowq_max_workers()
    d5092b0a1aaf bpf: Check validity of link->type in bpf_link_show_fdinfo()
    9dcf69612453 net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition
    f08621233573 ASoC: fsl_micfil: Add sample rate constraint
    f198c09fe2ca LoongArch: Use "Exception return address" to comment ERA
    4f885fa64983 ASoC: rt722-sdca: increase clk_stop_timeout to fix clock stop issue
    e01cac3d6284 RISCV: KVM: use raw_spinlock for critical section in imsic
    bff14c38ed51 HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard
    24e8cc49c03e HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad
    1cb5bfc5bfc6 fs: Fix uninitialized value issue in from_kuid and from_kgid
    ebf63d5c82e7 ASoC: amd: yc: Fix non-functional mic on ASUS E1404FA
    34ec7bcee3d8 ASoC: amd: yc: Add quirk for ASUS Vivobook S15 M3502RA
    77c523dfb053 bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6
    a078a480ff3f bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx
    6fbf6ff7549e vDPA/ifcvf: Fix pci_read_config_byte() return code handling
    5a526388d0ac nvme/host: Fix RCU list traversal to use SRCU primitive
    e8c714941811 smb: client: Fix use-after-free of network namespace.
    1a1bcca5c9ef nvme: make keep-alive synchronous operation
    e4f9fffbb1dc nvme-loop: flush off pending I/O while shutting down loop controller
    dd5d32f74fc1 net: phy: mdio-bcm-unimac: Add BCM6846 support
    bee372110e69 powerpc/powernv: Free name on error in opal_event_init()
    4c332037fcbb drm/amdkfd: Accounting pdd vram_usage for svm
    4a57f42e5ed4 nvme-multipath: defer partition scanning
    3406bfc813a9 RDMA/siw: Add sendpage_ok() check to disable MSG_SPLICE_PAGES
    c6db3a111e2d drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS
    87791a733a3b sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML
    839c22a2134a crypto: marvell/cesa - Disable hash algorithms
    83394e7d9421 crypto: api - Fix liveliness check in crypto_alg_tested
    d22f177935dd bpf: use kvzmalloc to allocate BPF verifier environment
    e04e64805802 nvme: disable CC.CRIME (NVME_CC_CRIME)
    8902a5223962 iommu/arm-smmu: Clarify MMU-500 CPRE workaround
    ded2b3b2bc50 HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad
    6e306b87c035 HID: multitouch: Add support for B2402FVA track point
    f49a9d86c4cd block: Fix elevator_get_default() checking for NULL q->tag_set
    975cb1d21215 nvme: tcp: avoid race between queue_lock lock and destroy
    4b3441089235 irqchip/ocelot: Fix trigger register address
    68ec5395bc24 selftests/bpf: Verify that sync_linked_regs preserves subreg_def
    0d6c0b3b6f3f 9p: Avoid creating multiple slab caches with the same name
    a63c78c3493c 9p: v9fs_fid_find: also lookup by inode if not found dentry
    f1ab3a1bcbbc Linux 6.6.61
    b110196fec44 vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans
    4bdc5a62c6e5 hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
    f7a08b2897da ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022
    1e8f31656ac1 ucounts: fix counter leak in inc_rlimit_get_ucounts()
    dd73c942eed7 ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove()
    c8fe8c223297 irqchip/gic-v3: Force propagation of the active state with a read-back
    4fea315a9fd8 USB: serial: option: add Quectel RG650V
    836eefa7c7e1 USB: serial: option: add Fibocom FG132 0x0112 composition
    4ffcb9d7891c USB: serial: qcserial: add support for Sierra Wireless EM86xx
    13d6ff3ca760 USB: serial: io_edgeport: fix use after free in debug printk
    69e19774f15e usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd()
    35925e2b7b40 usb: typec: qcom-pmic: init value of hdr_len/txbuf_len earlier
    4abc5ee334fe usb: dwc3: fix fault at system suspend if device was already runtime suspended
    8a30da5aa960 usb: musb: sunxi: Fix accessing an released usb phy
    4877d9b2a2eb signal: restore the override_rlimit logic
    5b548fd0d298 fs/proc: fix compile warning about variable 'vmcore_mmap_ops'
    ef59a49a4b0b i2c: designware: do not hold SCL low when I2C_DYNAMIC_TAR_UPDATE is not set
    a2746ab3bbc9 filemap: Fix bounds checking in filemap_read()
    575a562f7a3e media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format
    0186347f1605 Revert "selftests/bpf: Implement get_hw_ring_size function to retrieve current and max interface size"
    bb9982d77734 Revert "wifi: mac80211: fix RCU list iterations"
    6e62dab357ee riscv/purgatory: align riscv_kernel_entry
    f04be6d68f71 btrfs: reinitialize delayed ref list after deleting it from the list
    701fae8dce72 arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint
    22aaaa7a1a73 arm64: Kconfig: Make SME depend on BROKEN for now
    51d11ea0250d arm64/sve: Discard stale CPU state when handling SVE traps
    30db2a648550 mptcp: use sock_kfree_s instead of kfree
    1325e838089d net: vertexcom: mse102x: Fix possible double free of TX skb
    20f4eb96afe2 net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc()
    f749cb60a01f nfs: Fix KMSAN warning in decode_getfattr_attrs()
    203003c4ff18 posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
    e639fe493614 ALSA: usb-audio: Add quirk for HP 320 FHD Webcam
    edfae9d997c7 dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow
    036dd6e3d263 dm cache: fix potential out-of-bounds access on the first resume
    53421c3c0ee0 dm cache: optimize dirty bit checking with find_next_bit when resizing
    e57648ce325f dm cache: fix out-of-bounds access to the dirty bitset when resizing
    8cc12dab6353 dm cache: fix flushing uninitialized delayed_work on cache_ctr error
    11d5a3f8427a dm cache: correct the number of origin blocks to match the target length
    1df8231f4e99 thermal/drivers/qcom/lmh: Remove false lockdep backtrace
    a613a3924175 drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported
    3930715c1aef drm/amdgpu: Fix DPX valid mode check on GC 9.4.3
    e2574b57990d drm/amdgpu: Adjust debugfs register access permissions
    8906728f2fbd drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()
    5a8ae5fa576c drm/amdgpu: Adjust debugfs eviction and IB access permissions
    343fcd066c09 rpmsg: glink: Handle rejected intent request better
    767975d74952 pwm: imx-tpm: Use correct MODULO value for EPWM mode
    c6cdc08c25a8 ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp
    726c1568b914 ksmbd: Fix the missing xa_store error check
    1f993777275c ksmbd: check outstanding simultaneous SMB operations
    e923503a56b3 ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create
    5ba7258ff028 can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when switching CAN modes
    91017ba42df0 can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation
    89d8048df70c can: m_can: m_can_close(): don't call free_irq() for IRQ-less devices
    32adcb833ecc media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl()
    2d0f01aa602f media: v4l2-tpg: prevent the risk of a division by zero
    4264e26a34e3 media: pulse8-cec: fix data timestamp at pulse8_setup()
    83c152b55d88 media: cx24116: prevent overflows on SNR calculus
    784bc785a453 media: s5p-jpeg: prevent buffer overflows
    a244b82d0ae6 media: ar0521: don't overflow when checking PLL values
    bd24d8337159 ASoC: SOF: sof-client-probes-ipc4: Set param_size extension bits
    23bdbd1ef3e0 ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove
    d3304dbc2d5f thermal/of: support thermal zones w/o trips subnode
    5f2d0b607c70 tools/lib/thermal: Fix sampling handler context ptr
    57a9e9d71d77 ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init()
    a8ce18094f42 scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer
    b01f2230868b media: adv7604: prevent underflow condition when reporting colorspace
    492275748168 media: dvb_frontend: don't play tricks with underflow values
    1e461672616b media: dvbdev: prevent the risk of out of memory access
    c776231e3d0b media: stb0899_algo: initialize cfr before using it
    203d04968af0 Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown"
    1947143cb188 drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path
    996a7208dadb rxrpc: Fix missing locking causing hanging calls
    0012be71c55b net: arc: rockchip: fix emac mdio node support
    8ed7a4a39c3f net: arc: fix the device for dma_map_single/dma_unmap_single
    af0aa8aecbe8 virtio_net: Add hash_key_length check
    bfd05c68e4c6 netfilter: nf_tables: wait for rcu grace period on net_device removal
    825a80817cf1 netfilter: nf_tables: pass nft_chain to destroy function, not nft_ctx
    d122b259a717 netfilter: nf_tables: cleanup documentation
    b0a3c915529e net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case
    421cf80e7dee net: phy: ti: add PHY_RST_AFTER_CLK_EN flag
    719edd9f3372 net: hns3: fix kernel crash when uninstalling driver
    4b0599a66614 e1000e: Remove Meteor Lake SMBUS workarounds
    bf5f837d9fd2 i40e: fix race condition by adding filter's intermediate sync state
    6103d401b1cf ice: change q_index variable type to s16 to store -1 value
    f32fc3becfc7 can: c_can: fix {rx,tx}_errors statistics
    ef0edfbe9eee net: enetc: allocate vf_state during PF probes
    d3fb3cc83cf3 sctp: properly validate chunk size in sctp_sf_ootb()
    345267bf3643 dt-bindings: net: xlnx,axi-ethernet: Correct phy-mode property value
    d4c52c6a2bd5 net: enetc: set MAC address to the VF net_device
    9b7c0405af66 regulator: rtq2208: Fix uninitialized use of regulator_config
    3e79ad156bed security/keys: fix slab-out-of-bounds in key_task_permission
    6173b0bfcea3 nfs: avoid i_lock contention in nfs_clear_invalid_mapping
    351f03398ba8 NFSv3: only use NFS timeout for MOUNT when protocols are compatible
    d428de979bb2 sunrpc: handle -ENOTCONN in xs_tcp_setup_socket()
    7a3ed3f12529 platform/x86/amd/pmc: Detect when STB is not available
    9d9f5c75c0c7 HID: core: zero-initialize the report buffer
    24a7ac9d3d1b arm64: dts: rockchip: Correct GPIO polarity on brcm BT nodes
    95106521c1d8 ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin
    1a22d3723f48 ARM: dts: rockchip: Fix the spi controller on rk3036
    0f4e827100ad ARM: dts: rockchip: drop grf reference from rk3036 hdmi
    f3d09c233bea ARM: dts: rockchip: fix rk3036 acodec node
    6900713f93c8 arm64: dts: rockchip: remove orphaned pinctrl-names from pinephone pro
    15b17bbcea07 firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier()
    810615507942 arm64: dts: imx8mp: correct sdhc ipg clk
    5cfe9619ce8a arm64: dts: imx8-ss-vpu: Fix imx8qm VPU IRQs
    ad0a938050d3 arm64: dts: imx8qxp: Add VPU subsystem file
    f8181c545d0a arm64: dts: rockchip: remove num-slots property from rk3328-nanopi-r2s-plus
    e24351485d15 arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc
    d0beaf49abc7 arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion
    d09940e349f6 arm64: dts: rockchip: Remove undocumented supports-emmc property
    d0a08abbe182 arm64: dts: rockchip: Add DTS for FriendlyARM NanoPi R2S Plus
    87759aaaab5c arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards
    55907bdf4858 arm64: dts: rockchip: Fix bluetooth properties on rk3566 box demo
    54d80a600051 arm64: dts: rockchip: fix i2c2 pinctrl-names property on anbernic-rg353p/v
    08e793866570 arm64: dts: rockchip: Fix reset-gpios property on brcm BT nodes
    4d580a57ec23 arm64: dts: rockchip: Fix wakeup prop names on PineNote BT node
    f1da910ee9a2 arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328
    771bd4dde450 arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator
    27b69008d637 arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 511413f916279aa5b98efd07ef33a3b9b36b8223)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 83dc33ac568e1320e1f675eaaa5e3b75dae26733)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
2a348d27bb linux-yocto/6.6: update to v6.6.60
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    9b5aad3a7498c Linux 6.6.60
    cc082e50375a2 fs/ntfs3: Sequential field availability check in mi_enum_attr()
    10c20d79d59ca drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing
    e979a6a626abf ASoC: SOF: ipc4-control: Add support for ALSA enum control
    3facc0417d3d7 ASoC: SOF: ipc4-control: Add support for ALSA switch control
    f01d8fc623711 ASoC: SOF: ipc4-topology: Add definition for generic switch/enum control
    d54afaef6570c SUNRPC: Remove BUG_ON call sites
    27a58a19bd20a mtd: spi-nor: winbond: fix w25q128 regression
    3d544942c0010 mm: don't install PMD mappings when THPs are disabled by the hw/process/vma
    02ec4b3bba49e mm: huge_memory: add vma_thp_disabled() and thp_disabled_by_hw()
    fc621e7a043de wifi: iwlwifi: mvm: fix 6 GHz scan construction
    f2f1fa446676c nilfs2: fix kernel bug due to missing clearing of checked flag
    a53c2d847627b wifi: mac80211: fix NULL dereference at band check in starting tx ba session
    6a91a5816b289 io_uring: always lock __io_cqring_overflow_flush
    e3fb0e6afcc39 arm64: dts: imx8ulp: correct the flexspi compatible string
    1a49b96c51063 vmscan,migrate: fix page count imbalance on node stats when demoting pages
    003d2996964c0 io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
    70bbe8d0a9494 kasan: remove vmalloc_percpu test
    c60af16e1d6cc nvmet-auth: assign dh_key to NULL after kfree_sensitive
    4a39320977f9c ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
    b42adef85aca7 ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
    77ddc732416b0 xfs: fix finding a last resort AG in xfs_filestream_pick_ag
    8e886e44397ba mctp i2c: handle NULL header address
    88f97a4b5843c ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow
    c117a980185ee x86/traps: move kmsan check after instrumentation_begin
    86ee1845cbbf5 x86/traps: Enable UBSAN traps on x86
    b958948ae1cb3 mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
    4882a352b5df8 mei: use kvmalloc for read buffer
    cb8b81ad3e893 mptcp: init: protect sched with rcu_read_lock
    4f7ffa83fa79d iov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP
    ade91f6e9848b sched/numa: Fix the potential null pointer dereference in task_numa_work()
    8c9a1ec39c698 cxl/acpi: Ensure ports ready at cxl_acpi_probe() return
    a9ed67f39f888 cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
    d210bc87cc4fd riscv: Remove duplicated GET_RM
    6d84e1b2e5ac0 riscv: Remove unused GENERATING_ASM_OFFSETS
    a63ba17207c50 riscv: Use '%u' to format the output of 'cpu'
    909e71f28e961 riscv: efi: Set NX compat flag in PE/COFF header
    58e78589ade88 ALSA: hda/realtek: Limit internal Mic boost on Dell platform
    ceec8ad09135c Input: edt-ft5x06 - fix regmap leak when probe fails
    c19a0c171d37f riscv: vdso: Prevent the compiler from inserting calls to memset()
    e79c1f1c9100b spi: spi-fsl-dspi: Fix crash when not using GPIO chip select
    163e6323799bd phy: freescale: imx8m-pcie: Do CMN_RST just before PHY PLL lock check
    0d86cd70fc6a7 cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
    b3c301b859c4a block: fix sanity checks in blk_rq_map_user_bvec
    0fc87887dcb3a mmc: sdhci-pci-gli: GL9767: Fix low power mode in the SD Express process
    4159cd6ab5cfe mmc: sdhci-pci-gli: GL9767: Fix low power mode on the set clock function
    8e1b52c15c811 cxl/port: Fix use-after-free, permit out-of-order decoder shutdown
    8cd25f1fce6b8 thunderbolt: Honor TMU requirements in the domain when setting TMU mode
    9523a0268924a tools/mm: -Werror fixes in page-types/slabinfo
    edd1f90505068 mm: shmem: fix data-race in shmem_getattr()
    b6f95df4f7af6 RISC-V: ACPI: fix early_ioremap to early_memremap
    1246d86e7bbde nilfs2: fix potential deadlock with newly created symlinks
    1a797936d3468 iio: light: veml6030: fix microlux value calculation
    38d6e8be234d8 iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table()
    62c1189668312 iio: gts-helper: Fix memory leaks for the error path of iio_gts_build_avail_scale_table()
    3dc0eda2cd5c6 iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
    adfbc08b94e7d staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg()
    cedf0f1db8d5f wifi: iwlegacy: Clear stale interrupts before resuming device
    6c44abb2d4c32 wifi: cfg80211: clear wdev->cqm_config pointer on free
    5f5a939759c79 wifi: ath10k: Fix memory leak in management tx
    ee35c423042c9 wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
    0b9be24679358 Revert "selftests/mm: replace atomic_bool with pthread_barrier_t"
    1fe6799ee9b5f Revert "selftests/mm: fix deadlock for fork after pthread_create on ARM"
    fd28d95894609 Revert "driver core: Fix uevent_show() vs driver detach race"
    a762d0fc17df2 xhci: Use pm_runtime_get to prevent RPM on unsupported systems
    809dd30ee9011 xhci: Fix Link TRB DMA in command ring stopped completion event
    7e8066811a2c4 phy: qcom: qmp-usb-legacy: fix NULL-deref on runtime suspend
    370814e9d512b phy: qcom: qmp-usb: fix NULL-deref on runtime suspend
    e8180a4b1cf93 usb: typec: qcom-pmic-typec: use fwnode_handle_put() to release fwnodes
    558650b18f090 usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes()
    cd205590599a3 usb: phy: Fix API devm_usb_put_phy() can not release the phy
    53e0684f3093b usbip: tools: Fix detach_port() invalid port error path
    aa03c31a001ac ALSA: usb-audio: Add quirks for Dell WD19 dock
    b3b2431ed27f4 rcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb()
    7679283e61a8b rcu-tasks: Initialize data to eliminate RCU-tasks/do_exit() deadlocks
    dc5d4d4c12246 rcu-tasks: Add data to eliminate RCU-tasks/do_exit() deadlocks
    01a2b99ffcca8 rcu-tasks: Pull sampling of ->percpu_dequeue_lim out of loop
    7d85884576a3b USB: gadget: dummy-hcd: Fix "task hung" problem
    e028b82aba882 usb: gadget: dummy_hcd: execute hrtimer callback in softirq context
    365a13cf5baa6 usb: gadget: dummy_hcd: Set transfer interval to 1 microframe
    4a4cb56556124 usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler
    f6568620246d2 misc: sgi-gru: Don't disable preemption in GRU driver
    fe8cb9fac9793 NFS: remove revoked delegation from server's delegation list
    cc0ff7495e41b net: amd: mvme147: Fix probe banner message
    715db716a9f83 thermal: intel: int340x: processor: Add MMIO RAPL PL4 support
    56029f1bc3f1f thermal: intel: int340x: processor: Remove MMIO RAPL CPU hotplug support
    34c0344e7eac5 cifs: Fix creating native symlinks pointing to current or parent directory
    201430d21faab cifs: Improve creating native symlinks pointing to directory
    45eaaa13dd91d scsi: scsi_transport_fc: Allow setting rport state to current state
    550ef40fa6366 fs/ntfs3: Additional check in ntfs_file_release
    68b39c0765de7 fs/ntfs3: Fix general protection fault in run_is_mapped_full
    7a4ace681dbb6 fs/ntfs3: Additional check in ni_clear()
    34e3220efd666 fs/ntfs3: Fix possible deadlock in mi_read
    e91fbb21f248b fs/ntfs3: Add rough attr alloc_size check
    898c8795ec492 fs/ntfs3: Stale inode instead of bad
    84d363dbcfabc fs/ntfs3: Fix warning possible deadlock in ntfs_set_state
    5f21e3e60982c fs/ntfs3: Check if more than chunk-size bytes are written
    22cdf3be7d34f ntfs3: Add bounds checking to mi_enum_attr()
    3c73746c222a7 cxl/events: Fix Trace DRAM Event Record
    7013af5bbd281 smb: client: set correct device number on nfs reparse points
    bbc258dcdbfe5 smb: client: fix parsing of device numbers
    0eb2b767c42fa ACPI: CPPC: Make rmw_lock a raw_spin_lock
    790dc90b96481 afs: Fix missing subdir edit when renamed between parent dirs
    243d2506e7eb0 afs: Automatically generate trace tag enums
    a6fd78620f25a firmware: arm_sdei: Fix the input parameter of cpuhp_remove_state()
    2e4eb1866990e kasan: Fix Software Tag-Based KASAN with GCC
    4c3575787e988 iomap: turn iomap_want_unshare_iter into an inline function
    9bc18bb476e50 fsdax: dax_unshare_iter needs to copy entire blocks
    35adbe088888a fsdax: remove zeroing code from dax_unshare_iter
    451b0a27ca6a7 iomap: share iomap_unshare_iter predicate code with fsdax
    3c06d13ec80be iomap: don't bother unsharing delalloc extents
    61ada9422009e iomap: improve shared block detection in iomap_unshare_iter
    d4d5767c53581 bpf, test_run: Fix LIVE_FRAME frame update after a page has been recycled
    0ab3be58b45b9 netfilter: nft_payload: sanitize offset and length before calling skb_checksum()
    31384aa2ad05c mlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address
    598f95742fdc6 mlxsw: spectrum_ptp: Add missing verification before pushing Tx header
    c69bc67c1cb21 net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
    1f1764466c33a Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
    fef63832317d9 netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
    6a1f088f9807f netfilter: Fix use-after-free in get_info()
    ac5977001eee7 net: fix crash when config small gso_max_size/gso_ipv4_max_size
    90a6e0e1e151e bpf: Fix out-of-bounds write in trie_get_next_key()
    6a604877160fe netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write()
    e20459b5f658b bpf: Force checkpoint when jmp history is too long
    bef1f6beae90f selftests/bpf: Add bpf_percpu_obj_{new,drop}() macro in bpf_experimental.h
    597cf9748c347 net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT
    42097a9dcaee3 gtp: allow -1 to be specified as file description from userspace
    699b48fc31727 ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
    07c9c26e37542 net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
    bf6b2cd3c55de net: stmmac: dwmac4: Fix high address display by updating reg_space[] from register values
    9f5ae743dbe9a macsec: Fix use-after-free while sending the offloading packet
    b33b410597ebe ASoC: cs42l51: Fix some error handling paths in cs42l51_probe()
    fa078b39e3f1b wifi: iwlwifi: mvm: don't add default link in fw restart flow
    3eb986c64c6bf wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
    3b01b9985a543 wifi: iwlwifi: mvm: disconnect station vifs if recovery failed
    148f6af754781 RDMA/bnxt_re: synchronize the qp-handle table array
    16dbff3e8d195 RDMA/bnxt_re: Fix the usage of control path spin locks
    8636072c21e39 RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
    e9c62661a0697 RDMA/cxgb4: Dump vendor specific QP details
    0a59445e2cdf3 wifi: brcm80211: BRCM_TRACING should depend on TRACING
    9b5c89acc8e99 wifi: ath11k: Fix invalid ring usage in full monitor mode
    189f1bfc5c84e wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
    021693dad10a2 mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
    5db6e193c4ca0 wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
    9cfab1f3d425c spi: geni-qcom: Fix boot warning related to pm_runtime and devres
    fb384669cb8c2 cgroup: Fix potential overflow issue when checking max_depth
    73ca1c70b8b7f Input: xpad - add support for 8BitDo Ultimate 2C Wireless Controller
    403777d303399 Input: xpad - sort xpad_device by vendor and product ID
    eabe285e1c629 thermal: core: Free tzp copy along with the thermal zone
    3eb073abba327 thermal: core: Rework thermal zone availability check
    a95a9e3089d56 thermal: core: Make thermal_zone_device_unregister() return after freeing the zone
    18abb2787b536 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e5697 pnmtologo: sync with 6.6
    43ea1c5e6eb3c lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c85 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b86219 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e5039 bpftool: Query only cgroup-related attach types
    f71bb11887bae cpu/amd: inhibit SMP check for qemux86
    c31365597a17b powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b5 usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d1 kselftest: Add a ksft_perror() helper
    06644f0d7193d drm/tilcdc: Set preferred depth
    ff7ae7b323242 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0b arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701f x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c793 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6e qemux86: add configuration symbol to select values
    630c33229e6d5 sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6e clear_warn_once: add a clear_warn_once= boot parameter
    46934791b9026 clear_warn_once: bind a timer to written reset value
    cdee9e38ff324 clear_warn_once: expand debugfs to include read support
    82b562b818419 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b1 libbpf: Fix build warning on ref_ctr_off
    9e3e1fe209827 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65b perf: x86-32: explicitly include <errno.h>
    7b57ddd89565b perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7f perf: fix bench numa compilation
    98bc2815fade4 perf: add SLANG_INC for slang.h
    17209a70b9b39 perf: add sgidefs.h to for mips builds
    9cd4258d910af perf: change --root to --prefix for python install
    8110a4f266284 perf: add 'libperl not found' warning
    bc89d5e08f773 perf: force include of <stdbool.h>
    4f6c760cc876a fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b21 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab3786 FAT: Added FAT_NO_83NAME
    cef98d22b4edf FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1b FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084a aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf21 aufs6: fix magic.mk include path
    35266bc2dc81a aufs6: adapt to v6.6
    8edede4e98be1 aufs6: core
    712248233ebe1 aufs6: standalone
    3b71a8a848d8b aufs6: mmap
    3e2924871f371 aufs6: base
    7f4907a931016 aufs6: kbuild
    d2f7b03e4aa77 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa04 yaffs2: v6.5 fixups
    cc615704b5f54 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf913 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d34 yaffs2: replace bdevname call with sprintf
    395b01cdc39d1 yaffs2: convert read_page -> readfolio
    d98b07e43ba61 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe8 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f3 yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090b yaffs: include blkdev.h
    dbd44252cd592 yaffs: fix misplaced variable declaration
    c223a10b1ac08 yaffs2: v5.6 build fixups
    90f6007cfbf41 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea10 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6e yaffs: repair yaffs_get_mtd_device
    fb98f65a466a7 yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea27 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0b yaffs: Avoid setting any ACL releated xattr
    ff4130a9c3766 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67cd fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba90565 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4a yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8b initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4d pnmtologo: use relocatable file name
    664a6a0a484ba tools: use basename to identify file in gen-mach-types
    9de64bc0c1857 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295a vt/conmakehash: improve reproducibility
    a972323151bdd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc01984 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b197 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffcd defconfigs: drop obselete options
    00fe4152df313 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf1 linux-yocto: Handle /bin/awk issues
    3d55d299f23a7 uvesafb: provide option to specify timeout for task completion
    23c068c080bea uvesafb: print error message when task timeout occurs
    edbfc939266ec compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19ab vmware: include jiffies.h
    572d84d928c87 Resolve jiffies wrapping about arp
    fdcd47cac8435 nfs: Allow default io size to be configured.
    927d488010984 check console device file on fs when booting
    57cc27f821ddf mount_root: clarify error messages for when no rootfs found
    1b53d82a81528 mconf: fix output of cflags and libraries
    1811da09f42ca menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f3 modpost: mask trivial warnings
    6de6730394846 kbuild: exclude meta directory from distclean processing
    6decd32815f53 powerpc: serialize image targets
    f6b683b38318c arm: serialize build targets
    e798b09ebf572 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f86 x86_64_defconfig: Fix warnings
    68491e5f72b61 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce30048 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b18 powerpc: kexec fix for powerpc64
    da6871c62c371 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11de mips: make current_cpu_data preempt safe
    5e94a8247ce7f mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7f mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbdc 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5d malta uhci quirks: make allowance for slow 4k(e)c
    881948cd15176 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7a arm64: defconfig: cleanup config options
    f1727c537ba8d vexpress: Pass LOADADDR to Makefile
    4474c32dc24a4 arm: ARM EABI socketcall
    75e31a2b70fd3 ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 5993e3621377e77f031768fa53668f790c364847)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit d8c3c6dab1b4993c7f122dac86ca9c1a5640245e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
a2df1f6d57 linux-yocto/6.6: update to v6.6.59
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    bf3af7e92bda Linux 6.6.59
    7d9868180bd1 xfrm: validate new SA's prefixlen using SA family when sel.family is unset
    7a26cb660775 task_work: make TWA_NMI_CURRENT handling conditional on IRQ_WORK
    81507f633e79 tracing: probes: Fix to zero initialize a local variable
    042804a9fff1 RDMA/bnxt_re: Fix unconditional fence for newer adapters
    67819f10702b RDMA/bnxt_re: Avoid creating fence MR for newer adapters
    1aee34ed99e9 RDMA/bnxt_re: Fix the offset for GenP7 adapters for user applications
    38ca6fd426ea ACPI: PRM: Clean up guid type in struct prm_handler_info
    d1e55eeee056 platform/x86: dell-wmi: Ignore suspend notifications
    73cc3f905ca9 ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe()
    24f638125cc3 ata: libata: Set DID_TIME_OUT for commands that actually timed out
    ce4a70d9b916 net: phy: dp83822: Fix reset pin definitions
    4512c448f54c selinux: improve error checking in sel_write_load()
    c79e0a18e4b3 drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too
    62c85b9a0dd7 hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event
    c73bca72b84b xfrm: fix one more kernel-infoleak in algo dumping
    36bd0f386b7c LoongArch: Make KASAN usable for variable cpu_vabits
    8915ed160dbd LoongArch: Enable IRQ if do_ale() triggered in irq-enabled context
    cd2cef731170 LoongArch: Get correct cores_per_package for SMT systems
    5d10f6fb2cb7 ALSA: hda/realtek: Add subwoofer quirk for Acer Predator G9-593
    0d674f2e73b4 ALSA: hda/tas2781: select CRC32 instead of CRC32_SARWATE
    60a5ba560f29 x86/lam: Disable ADDRESS_MASKING in most cases
    599eee0e9817 KVM: arm64: Don't eagerly teardown the vgic on init error
    04ed2ba07ce7 KVM: arm64: Fix shift-out-of-bounds bug
    2c4adc9b192a KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
    f421a3b18aa7 openat2: explicitly return -E2BIG for (usize > PAGE_SIZE)
    743c78d455e7 nilfs2: fix kernel bug due to missing clearing of buffer delay flag
    a299d415dd37 ACPI: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue
    795b080d9aa1 ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context
    bdaab141edb6 ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[]
    975ede2a7bec drm/amd: Guard against bad data for ATIF ACPI method
    004ad1a2d684 btrfs: zoned: fix zone unusable accounting for freed reserved extent
    3521754614cf btrfs: fix passing 0 to ERR_PTR in btrfs_search_dir_index_item()
    2f2684c7903e cpufreq: CPPC: fix perf_to_khz/khz_to_perf conversion exception
    33e89c16cea0 cpufreq/cppc: Move and rename cppc_cpufreq_{perf_to_khz|khz_to_perf}()
    35dbac8c328d smb: client: Handle kstrdup failures for passwords
    66921a4d8e84 ALSA: hda/realtek: Update default depop procedure
    f965dc0f099a nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net
    5f0468f30c8f powercap: dtpm_devfreq: Fix error check against dev_pm_qos_add_request()
    4bdc21506f12 ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()
    8b339beb7cfe ASoC: fsl_micfil: Add a flag to distinguish with different volume control types
    f9ba85f823e7 ASoC: rsnd: Fix probe failure on HiHope boards due to endpoint parsing
    83a420e965f6 ASoC: max98388: Fix missing increment of variable slot_found
    6e4aed4acc1a ASoC: loongson: Fix component check failed on FDT systems
    f10cba3f761b ASoC: dt-bindings: davinci-mcasp: Fix interrupt properties
    5e3583b4c000 ASoC: dt-bindings: davinci-mcasp: Fix interrupts property
    773dc610ca64 net: dsa: mv88e6xxx: support 4000ps cycle counter period
    06b1c8091542 net: dsa: mv88e6xxx: read cycle counter period from hardware
    4dc655d86b54 net: dsa: mv88e6xxx: group cycle counter coefficients
    21db2f35fa97 bpf,perf: Fix perf_event_detach_bpf_prog error handling
    14bcb721d241 Bluetooth: ISO: Fix UAF on iso_sock_timeout
    d30803f6a972 Bluetooth: SCO: Fix UAF on sco_sock_timeout
    1ba33b327c3f posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()
    7d6d46b42980 r8169: avoid unsolicited interrupts
    5d282467245f net: sched: use RCU read-side critical section in taprio_dump()
    0d4c0d2844e4 net: sched: fix use-after-free in taprio_change()
    a5cf8670acbb net/sched: act_api: deny mismatched skip_sw/skip_hw flags for actions created by classifiers
    d123062a3fdc bpf: Remove MEM_UNINIT from skb/xdp MTU helpers
    48068ccaea95 bpf: Fix overloading of MEM_UNINIT's meaning
    8a33a047bd31 bpf: Add MEM_WRITE attribute
    d1100acab464 bpf: Simplify checking size of helper accesses
    7caee37c466a net: usb: usbnet: fix name regression
    a7bdb199784f net: fix races in netdev_tx_sent_queue()/dev_watchdog()
    10cb940429c2 net/sched: adjust device watchdog timer to detect stopped queue at right time
    69076f8435c1 net: wwan: fix global oob in wwan_rtnl_policy
    433742ba96ba netfilter: xtables: fix typo causing some targets not to load on IPv6
    5ed4334fc951 fsl/fman: Fix refcount handling of fman-related devices
    275bebf5be50 fsl/fman: Save device references taken in mac_probe()
    06b526846cc9 net: dsa: mv88e6xxx: Fix error when setting port policy on mv88e6393x
    c2d2dc4f88bb octeon_ep: Add SKB allocation failures handling in __octep_oq_process_rx()
    e71146ff378c octeon_ep: Implement helper for iterating packets in Rx queue
    64854b218703 net: plip: fix break; causing plip to never transmit
    641c1beed52b be2net: fix potential memory leak in be_xmit()
    6dc937a3086e net/sun3_82586: fix potential memory leak in sun3_82586_send_packet()
    f41bd93b3e05 netfilter: bpf: must hold reference on net namespace
    c1530660410c xfrm: respect ip protocols rules criteria when performing dst lookups
    ac1d820eaa30 xfrm: extract dst lookup parameters into a struct
    a14a075a14af tracing: Consider the NULL character when validating the event length
    6bc24db74fe4 tracing/probes: Fix MAX_TRACE_ARGS limit handling
    f475d8a0cca7 jfs: Fix sanity check in dbMount
    a94c197d4d74 LoongArch: Don't crash in stack_top() for tasks without vDSO
    3d75f500f64d platform/x86: dell-sysman: add support for alienware products
    6d52db315cfc cifs: Validate content of NFS reparse point buffer
    f47a40ee4cdb ASoC: qcom: sm8250: add qrb4210-rb2-sndcard compatible string
    1ac49babc952 udf: fix uninit-value use in udf_get_fileshortad
    493447dd8336 udf: refactor inode_bmap() to handle error
    5fc8da4d326d udf: refactor udf_next_aext() to handle error
    402c8862fe54 udf: refactor udf_current_aext() to handle error
    8c213cc21724 arm64: Force position-independent veneers
    85e70dcd1f85 ASoC: fsl_sai: Enable 'FIFO continue on error' FCONT bit
    935e5c5f93df ASoC: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values
    b3d4f2329312 ASoC: amd: yc: Add quirk for HP Dragonfly pro one
    9eb32bd23bbc drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA
    0d16f53c9111 exec: don't WARN for racy path_noexec check
    9e5f93788c9d uprobe: avoid out-of-bounds memory access of fetching args
    f0a7ea54f3dc uprobes: prevent mutex_lock() under rcu_read_lock()
    f5272c98a4a0 uprobes: prepare uprobe args buffer lazily
    1c7fa34863c7 uprobes: encapsulate preparation of uprobe args buffer
    91f62703146a tracing/probes: Support $argN in return probe (kprobe and fprobe)
    e96b42d22f66 tracing/probes: cleanup: Set trace_probe::nr_args at trace_probe_init
    5868fa7ebe66 tracing/fprobe-event: cleanup: Fix a wrong comment in fprobe event
    4fad73700867 usb: dwc3: core: Fix system suspend on TI AM62 platforms
    66e56efc45cb XHCI: Separate PORT and CAPs macros into dedicated file
    ecc8a9502b3c usb: gadget: f_uac2: fix return value for UAC2_ATTRIBUTE_STRING store
    0a2794e244d8 usb: gadget: f_uac2: fix non-newline-terminated function name
    3af6c7285413 usb: gadget: f_uac2: Replace snprintf() with the safer scnprintf() variant
    c691c2adeb75 xhci: dbc: honor usb transfer size boundaries.
    7cbcb40d4699 xhci: dbgtty: use kfifo from tty_port struct
    32bd1720ede6 xhci: dbgtty: remove kfifo_out() wrapper
    fe19d913d2c8 iio: adc: ti-lmp92064: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
    5f029be65dca mm: khugepaged: fix the arguments order in khugepaged_collapse_file trace point
    36249a0b212e khugepaged: remove hpage from collapse_file()
    03e36dba005e khugepaged: convert alloc_charge_hpage to alloc_charge_folio
    281a0312ce41 khugepaged: inline hpage_collapse_alloc_folio()
    c556c5580646 mm/khugepaged: use a folio more in collapse_file()
    4ba70817cfad mm: convert collapse_huge_page() to use a folio
    a1afee6c6f53 mm/khugepaged: convert alloc_charge_hpage() to use folios
    cf2bb1bf0306 cdrom: Avoid barrier_nospec() in cdrom_ioctl_media_changed()
    bb0f943675a9 bpf: Fix iter/task tid filtering
    4ed32cc0939b nvme-pci: fix race condition between reset and nvme_dev_disable()
    e2c03a2c838e nvme-pci: set doorbell config before unquiescing
    ed67a5b99e4d riscv, bpf: Make BPF_CMPXCHG fully ordered
    8a377818bcf8 bpf, vsock: Drop static vsock_bpf_prot initialization
    9dd9b16018cc vsock: Update msg_count on read_skb()
    66cd51de31c6 vsock: Update rx_bytes on read_skb()
    12c3e619d34a bpf, sockmap: SK_DROP on attempted redirects of unsupported af_vsock
    9f2ccb6f3888 net/mlx5: Unregister notifier on eswitch init failure
    d88564c79d1c net/mlx5: Fix command bitmask initialization
    5ec33b1fe86d net/mlx5: Check for invalid vector index on EQ creation
    59ba6cdadb9c vmxnet3: Fix packet corruption in vmxnet3_xdp_xmit_frame
    d10cd7bf574e Bluetooth: bnep: fix wild-memory-access in proto_unregister
    97bbdc5001db bpf: Fix link info netfilter flags to populate defrag flag
    9221ae88c205 s390: Initialize psw mask in perf_arch_fetch_caller_regs()
    1ded6b12499e usb: typec: altmode should keep reference to parent
    b209c3a0bc3a smb: client: fix OOBs when building SMB2_IOCTL request
    b1813c220b76 smb: client: fix possible double free in smb2_set_ea()
    b80e9bc85bd9 scsi: target: core: Fix null-ptr-deref in target_alloc_device()
    2fe1384cbb7c net: ravb: Only advertise Rx/Tx timestamps if hardware supports it
    e9638d3e62dc ravb: Remove setting of RX software timestamp
    b94e5375ec66 genetlink: hold RCU in genlmsg_mcast()
    f8f8afc101f2 net: dsa: mv88e6xxx: Fix the max_vid definition for the MV88E6361
    997ae8da14f1 tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink().
    7218de0778ae net: bcmasp: fix potential memory leak in bcmasp_xmit()
    1999a9e050c5 drm/msm/dpu: don't always program merge_3d block
    b18db3a4fa5f irqchip/renesas-rzg2l: Fix missing put_device
    39cb86f19199 irqchip/renesas-rzg2l: Add support for suspend to RAM
    0776b25d79d8 irqchip/renesas-rzg2l: Document structure members
    05cc5e67dda8 irqchip/renesas-rzg2l: Align struct member names to tabs
    4b70478b984a net: systemport: fix potential memory leak in bcm_sysport_xmit()
    08b8f206de4c bpf: Fix truncation bug in coerce_reg_to_size_sx()
    b01fbbf38584 net: xilinx: axienet: fix potential memory leak in axienet_start_xmit()
    0017189d6057 net/smc: Fix searching in list of known pnetids in smc_pnet_add_pnetid
    79571c4d2f65 net: ethernet: aeroflex: fix potential memory leak in greth_start_xmit_gbit()
    681ce79ab6fb netdevsim: use cond_resched() in nsim_dev_trap_report_work()
    268446b40bb1 macsec: don't increment counters for an unrelated SA
    65ca9f8ddc0d drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring
    a4bc03078eb3 octeontx2-af: Fix potential integer overflows on integer shifts
    e61fa0d66f22 net: stmmac: dwmac-tegra: Fix link bring-up sequence
    bc52115cc41a net: usb: usbnet: fix race in probe failure
    a17874a3a5ab net/smc: Fix memory leak when using percpu refs
    95e3da26819d firmware: arm_scmi: Queue in scmi layer for mailbox implementation
    d4e44b8a6a18 drm/msm: Allocate memory for disp snapshot with kvzalloc()
    f7ad91627348 drm/msm: Avoid NULL dereference in msm_disp_state_print_regs()
    33ece6c4f0c1 drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation
    9f2361089152 drm/msm/dsi: improve/fix dsc pclk calculation
    dd58a5f8b308 drm/msm/dpu: check for overflow in _dpu_crtc_setup_lm_bounds()
    adde6c68bf1a drm/msm/dpu: make sure phys resources are properly initialized
    1931dc14b537 accel/qaic: Fix the for loop used to walk SG table
    5032bf57ab5d RDMA/bnxt_re: Fix the GID table length
    bf39b3532143 RDMA/bnxt_re: Update the BAR offsets
    87cb3b0054e5 RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages
    d517cadae6c3 RDMA/bnxt_re: Return more meaningful error
    05c5fcc1869a RDMA/bnxt_re: Fix out of bound check
    903f8b01c587 RDMA/bnxt_re: Fix the max CQ WQEs for older adapters
    5fcf649e4334 RDMA/bnxt_re: Support new 5760X P7 devices
    1ee5ef316a77 ipv4: give an IPv4 dev to blackhole_netdev
    3a662cc5b5d5 RDMA/srpt: Make slab cache names unique
    af29c430a343 RDMA/irdma: Fix misspelling of "accept*"
    c29fd05329a9 RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP
    6d91d07913ae firmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup()
    8971fd61210d ALSA: hda/cs8409: Fix possible NULL dereference
    509c29d0d26f sched/core: Disable page allocation in task_tick_mm_cid()
    380681a29066 task_work: Add TWA_NMI_CURRENT as an additional notify mode.
    a3fe89d4f5bb selftests/bpf: Fix cross-compiling urandom_read
    923c5ded505c drm/vmwgfx: Handle possible ENOMEM in vmw_stdu_connector_atomic_check
    119249d146d5 iio: frequency: admv4420: fix missing select REMAP_SPI in Kconfig
    1b3090ca3265 iio: frequency: {admv4420,adrf6780}: format Kconfig entries
    3e212996d21f bpf: fix kfunc btf caching for modules
    b56328660be0 s390/pci: Handle PCI error codes other than 0x3a
    6617ae800cbb selftests/bpf: fix perf_event link info name_len assertion
    0ce20181976d selftests/bpf: Add cookies check for perf_event fill_link_info test
    e909258d41b2 selftests/bpf: Use bpf_link__destroy in fill_link_info tests
    e5c2b971db09 bpf: fix unpopulated name_len field in perf_event link info
    cfd63c3a4538 bpf: Add cookie to perf_event bpf_link_info records
    99bf10e92a3f bpf: Add missed value to kprobe perf link info
    f4381ccf1ed1 ARM: dts: bcm2837-rpi-cm3-io3: Fix HDMI hpd-gpio pin
    9e3d07e503ea x86/resctrl: Avoid overflow in MB settings in bw_validate()
    b7bf17f4f92f RDMA/core: Fix ENODEV error for iWARP test over vlan
    c71957271f2e RDMA/bnxt_re: Add a check for memory allocation
    7d10555a340a RDMA/bnxt_re: Fix incorrect AVID type in WQE structure
    73e04a6114e0 RDMA/bnxt_re: Fix a possible memory leak
    90ad4e2fe3a2 bpf: Fix memory leak in bpf_core_apply
    978d1f63fc6e lib/Kconfig.debug: fix grammar in RUST_BUILD_ASSERT_ALLOW
    8552150e5d80 cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems
    49454f09936a bpf: devmap: provide rxq after redirect
    0fca5ed4be8e bpf: Make sure internal and UAPI bpf_redirect flags don't overlap
    de1f0ab13915 iio: accel: bma400: Fix uninitialized variable field_value in tap event handling.
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 56fa329e447215d34fc6fe5770017d9f38a87fbb)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c7505c0387450c5467249828ec5c022f393b42a5)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
e05cd74ab9 linux-yocto/6.6: genericarm64.cfg: enable CONFIG_DMA_CMA
Integrating the following commit(s) to linux-yocto/.:

1/1 [
    Author: Mikko Rapeli
    Email: mikko.rapeli@linaro.org
    Subject: genericarm64.cfg: enable CONFIG_DMA_CMA
    Date: Thu, 24 Oct 2024 08:49:29 +0300

    It's needed for graphics on AMD KV260.

    Cc: Bill Mills <bill.mills@linaro.org>
    Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org>
    Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
]

(From OE-Core rev: 5754841cb19c4272fe3494b5d5e450ae9876fa48)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 87bbf8eaa48cfc8bca02d86bd089df61846d2ca4)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:45 -08:00
Bruce Ashfield
4d62b407c7 linux-yocto/6.6: update to v6.6.58
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    18916a684a8b Linux 6.6.58
    fd6e2af79a94 ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2
    9698088ac770 nilfs2: propagate directory read errors from nilfs_find_entry()
    87cb3f6e0c04 selftests: mptcp: remove duplicated variables
    ec0d0fcbd5d8 selftests: mptcp: join: test for prohibited MPC to port-based endp
    d46b96f0a489 selftests: mptcp: join: change capture/checksum as bool
    229dfdc36f31 tcp: fix mptcp DSS corruption due to large pmtu xmit
    647cd4494cc3 serial: qcom-geni: fix receiver enable
    61c8f746ed83 serial: qcom-geni: fix dma rx cancellation
    7176aee5a1b2 serial: qcom-geni: revert broken hibernation support
    90e3f819e6aa serial: qcom-geni: fix polled console initialisation
    6acd19ad3aaf irqchip/sifive-plic: Unmask interrupt in plic_irq_enable()
    01282ab5182f irqchip/gic-v4: Don't allow a VMOVP on a dying VPE
    fad940e2dd78 pinctrl: apple: check devm_kasprintf() returned value
    3b36bb1fca2b pinctrl: stm32: check devm_kasprintf() returned value
    20728e86289a pinctrl: ocelot: fix system hang on level based interrupts
    481b477ab63c x86/bugs: Use code segment selector for VERW operand
    c29f192e0d44 tty: n_gsm: Fix use-after-free in gsm_cleanup_mux
    227358e89703 x86/entry_32: Clear CPU buffers after register restore in NMI return
    0c6a7e2c6012 x86/entry_32: Do not clobber user EFLAGS.ZF
    c8170b5ddc41 x86/CPU/AMD: Only apply Zenbleed fix for Zen2 during late microcode load
    6663f0c65885 x86/apic: Always explicitly disarm TSC-deadline timer
    16d7d35f1c1e x86/resctrl: Annotate get_mem_config() functions as __init
    66029078fee0 parport: Proper fix for array out-of-bounds access
    c895d48c843d serial: imx: Update mctrl old_status on RTSD interrupt
    245bee12a52d misc: microchip: pci1xxxx: add support for NVMEM_DEVID_AUTO for OTP device
    78df42183e82 misc: microchip: pci1xxxx: add support for NVMEM_DEVID_AUTO for EEPROM device
    c3d3501cf896 usb: dwc3: Wait for EndXfer completion before restoring GUSB2PHYCFG
    479830f6c15b usb: typec: qcom-pmic-typec: fix sink status being overwritten with RP_DEF
    86c68aa714d0 USB: serial: option: add Telit FN920C04 MBIM compositions
    90a5c64279ae USB: serial: option: add support for Quectel EG916Q-GL
    53cd1bb1f8eb xhci: Mitigate failed set dequeue pointer commands
    cc7b7050996a xhci: Fix incorrect stream context type macro
    9c696bf4ab54 xhci: tegra: fix checked USB2 port number
    dc2d5f02636c vt: prevent kernel-infoleak in con_font_get()
    885f8c873fed Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001
    8fb8e912afb4 Bluetooth: ISO: Fix multiple init when debugfs is disabled
    59bd80df4b88 Bluetooth: Remove debugfs directory on module init failure
    05f84d86169b Bluetooth: Call iso_exit() on module unload
    232c2eb6d60c iio: accel: kx022a: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
    d8ef39dad9b9 iio: adc: ti-ads124s08: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
    48e594b77cb7 iio: adc: ti-lmp92064: add missing select REGMAP_SPI in Kconfig
    2f76debe69b8 iio: dac: ad3552r: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
    ad60bbd7c071 iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
    1fcc9d634b50 iio: dac: ad5766: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
    66bfe12005f6 iio: light: bu27008: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
    5d41abc777dc iio: frequency: adf4377: add missing select REMAP_SPI in Kconfig
    dc7a11e8cebd iio: amplifiers: ada4250: add missing select REGMAP_SPI in Kconfig
    7f06b154ffcf iio: light: opt3001: add missing full-scale range value
    2cbb41abae65 iio: light: veml6030: fix IIO device retrieval from embedded device
    6bd2b16425d4 iio: light: veml6030: fix ALS sensor resolution
    6acb0a4dac40 iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency()
    082a75594ba4 iio: adc: ti-ads8688: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
    e0eb585eef6c iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig
    ea8180528111 iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig
    c3a230c1df36 iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig
    64cf93b87fe3 drm/amdgpu: prevent BO_HANDLES error from being overwritten
    db0978d3ed8b drm/amdgpu/swsmu: Only force workload setup on init
    7c0763fd7974 drm/vmwgfx: Handle surface check failure correctly
    1a235af02164 drm/radeon: Fix encoder->possible_clones
    8e6ca01b3b8d scsi: ufs: core: Fix the issue of ICU failure
    7bd9af254275 scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down
    d3c4f41ae32c Input: xpad - add support for MSI Claw A1M
    a16af52f2442 selftest: hid: add the missing tests directory
    6414ab5c9c9c ublk: don't allow user copy for unprivileged device
    2762b3cc9094 io_uring/sqpoll: close race on waiting for sqring entries
    4c5b123ab289 blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race
    c04670dffb3f x86/bugs: Do not use UNTRAIN_RET with IBPB on entry
    c42a343158ea x86/bugs: Skip RSB fill at VMEXIT
    61211f2da0be x86/entry: Have entry_ibpb() invalidate return predictions
    b28d3f44e20c x86/cpufeatures: Add a IBPB_NO_RET BUG flag
    6ccc10ed0a7d x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET
    369535232d6a KVM: s390: Change virtual to physical address access in diag 0x258 handler
    88607ed93ee6 KVM: s390: gaccess: Check if guest address is in memslot
    82b433fb9b13 s390/sclp_vt220: Convert newlines to CRLF instead of LFCR
    ccea29b1e072 s390/sclp: Deactivate sclp after all its users
    fe2e0b6cd00a iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices
    37d9305caace mptcp: prevent MPC handshake on port-based signal endpoints
    6365900cb10e net: fec: Remove duplicated code
    1e1eb62c40e1 net: fec: Move `fec_ptp_read()` to the top of the file
    677f1df179cb maple_tree: correct tree corruption on spanning store
    9a0ab4fc28ed xfs: restrict when we try to align cow fork delalloc to cowextsz hints
    3eeac3311683 xfs: allow unlinked symlinks and dirs with zero size
    2bc2d49c36c2 xfs: fix freeing speculative preallocations for preallocated files
    740a427e8f45 xfs: fix unlink vs cluster buffer instantiation race
    0e52b98bf041 xfs: make sure sb_fdblocks is non-negative
    0aca73915dc1 xfs: allow symlinks with short remote targets
    4c99f3026cf2 xfs: convert delayed extents to unwritten when zeroing post eof blocks
    36081fd0ee37 xfs: make xfs_bmapi_convert_delalloc() to allocate the target offset
    0f726c17dfd8 xfs: make the seq argument to xfs_bmapi_convert_delalloc() optional
    f24ba2183148 xfs: match lock mode in xfs_buffered_write_iomap_begin()
    7c03b124353a xfs: use dontcache for grabbing inodes during scrub
    20adb1e2f069 xfs: revert commit 44af6c7e59b12
    5689d2345a01 xfs: enforce one namespace per attribute
    9716cdcc2f9e xfs: validate recovered name buffers when recovering xattr items
    db460c26f0b0 xfs: check shortform attr entry flags specifically
    cad051826d83 xfs: fix missing check for invalid attr flags
    0934046e3392 xfs: check opcode and iovec count match in xlog_recover_attri_commit_pass2
    c13c21f77824 xfs: require XFS_SB_FEAT_INCOMPAT_LOG_XATTRS for attr log intent item recovery
    c299188b443a xfs: remove a racy if_bytes check in xfs_reflink_end_cow_extent
    4bcef72d96b5 xfs: fix xfs_bmap_add_extent_delay_real for partial conversions
    f43bd357fde0 xfs: fix error returns from xfs_bmapi_write
    bed2b9037806 mm/swapfile: skip HugeTLB pages for unuse_vma
    a0035fc55554 mm/mglru: only clear kswapd_failures if reclaimable
    17396e32f975 mm/mremap: fix move_normal_pmd/retract_page_tables race
    6b91fd65a117 selftests/mm: fix deadlock for fork after pthread_create on ARM
    8f5fa1c677df selftests/mm: replace atomic_bool with pthread_barrier_t
    a9af9d5fb01b fat: fix uninitialized variable
    8e29f3235181 irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1
    20b5342de51b net: microchip: vcap api: Fix memory leaks in vcap_api_encode_rule_test()
    81db1e528486 net: macb: Avoid 20s boot delay by skipping MDIO bus registration for fixed-link PHY
    8165bf83b8a6 arm64: probes: Fix uprobes for big-endian kernels
    173c13e38799 arm64: probes: Fix simulate_ldr*_literal()
    9f1e7735474e arm64: probes: Remove broken LDR (literal) uprobe support
    a3f169e39821 posix-clock: Fix missing timespec64 check in pc_clock_settime()
    75150ba93dda net: enetc: add missing static descriptor and inline keyword
    760a7c9695c0 net: enetc: disable NAPI after all rings are disabled
    a419f478b927 net: enetc: disable Tx BD rings after they are empty
    37184349468a net: enetc: block concurrent XDP transmissions during ring reconfiguration
    1c95443e44e1 net: enetc: remove xdp_drops statistic from enetc_xdp_drop()
    7b2e478abab0 mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow
    3c088dba8a4e ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2
    5511999e9615 ksmbd: fix user-after-free from session log off
    7fc7c47b9ba0 btrfs: fix uninitialized pointer free on read_alloc_one_name() error
    e11ce03b5874 btrfs: fix uninitialized pointer free in add_inode_ref()
    e9448e371c87 Linux 6.6.57
    8d5aebfff846 scsi: Revert "scsi: sd: Do not repeat the starting disk message"
    e6fc67c0efea e1000e: fix force smbus during suspend flow
    611f74b0e7fb net: ethernet: cortina: Restore TSO support
    7caf966390e6 secretmem: disable memfd_secret() if arch cannot set direct map
    e5a0031c7965 fs/proc/kcore.c: allow translation of physical memory addresses
    19a5029981c8 kthread: unpark only parked kthread
    f00545e8386e btrfs: split remaining space to discard in chunks
    73a4f5a704a2 selftests/rseq: Fix mm_cid test failure
    87070a96b1d2 selftests/mm: fix incorrect buffer->mirror size in hmm2 double_map test
    bd3222d47fae powercap: intel_rapl_tpmi: Fix bogus register reading
    697e3ddcf1f8 nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
    b822007e8db3 device-dax: correct pgoff align in dax_set_mapping()
    8b36f4dcacb9 mptcp: pm: do not remove closing subflows
    b8be15d1ae7e mptcp: handle consistently DSS corruption
    143ffa7878e2 net: phy: Remove LED entry from LEDs list on unregister
    28a2c3e51d09 net: dsa: lan9303: ensure chip reset and wait for READY status
    3be342e0332a net: Fix an unsafe loop on the list
    563e6892e21d net: explicitly clear the sk pointer, when pf->create fails
    31c62224e91c ata: libata: avoid superfluous disk spin down + spin up during hibernation
    a448ced30802 mptcp: fallback when MPTCP opts are dropped after 1st data
    7994a4849c8b scsi: ufs: Use pre-calculated offsets in ufshcd_init_lrb()
    e04642a207f1 scsi: wd33c93: Don't use stale scsi_pointer value
    867639300759 Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync
    55f2bd90b9fb drm/i915/hdcp: fix connector refcounting
    937943c04250 drm/vc4: Stop the active perfmon before being destroyed
    07c51108d9e2 drm/v3d: Stop the active perfmon before being destroyed
    fb1643d00a50 hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma
    0b97fe09f099 usb: gadget: core: force synchronous registration
    0770cda1e40f usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip
    cb8b441f73a6 usb: xhci: Fix problem with xhci resume from suspend
    38aef06ea2fd usb: dwc3: core: Stop processing of pending events if controller is halted
    936564b4dafa Revert "usb: yurex: Replace snprintf() with the safer scnprintf() variant"
    1fa959e74e50 HID: plantronics: Workaround for an unexcepted opposite volume key
    c1846e023899 HID: multitouch: Add support for lenovo Y9000P Touchpad
    1c3b4c90479a HID: amd_sfh: Switch to device-managed dmam_alloc_coherent()
    11381eea8897 hwmon: (adt7470) Add missing dependency on REGMAP_I2C
    f5033290daa1 hwmon: (adm9240) Add missing dependency on REGMAP_I2C
    fe5866fc1254 hwmon: (mc34vr500) Add missing dependency on REGMAP_I2C
    de90999ec3de hwmon: (tmp513) Add missing dependency on REGMAP_I2C
    2caf6c42629e hwmon: intel-m10-bmc-hwmon: relabel Columbiaville to CVL Die Temperature
    26b177ecdd31 wifi: mac80211: Avoid address calculations via out of bounds array indexing
    ea912d384d8e hid-asus: add ROG Ally X prod ID to quirk list
    1815b3236d6b HID: asus: add ROG Z13 lightbar
    5ec4596a0ba9 HID: asus: add ROG Ally N-Key ID and keycodes
    f74210883e53 HID: i2c-hid: Skip SET_POWER SLEEP for Cirque touchpad on system suspend
    64575ec3d24a HID: i2c-hid: Renumber I2C_HID_QUIRK_ defines
    e600ee984f72 HID: i2c-hid: Remove I2C_HID_QUIRK_SET_PWR_WAKEUP_DEV quirk
    b289b83409a6 HID: mcp2200: added driver for GPIOs of MCP2200
    84a5feebba10 rcu/nocb: Fix rcuog wake-up from offline softirq
    174caf7a16d6 rcu/nocb: Make IRQs disablement symmetric
    8bb79eb1db85 slip: make slhc_remember() more robust against malicious packets
    8fe992ff3df4 ppp: fix ppp_async_encode() illegal access
    c246bfbb35fb phonet: Handle error of rtnl_register_module().
    a8e473f7454a phonet: no longer hold RTNL in route_dumpit()
    4597c3866d04 mpls: Handle error of rtnl_register_module().
    ff7abccdd581 mpls: no longer hold RTNL in mpls_netconf_dump_devconf()
    ba5366b87c0d rtnetlink: add RTNL_FLAG_DUMP_UNLOCKED flag
    c8c76f1550b9 rtnetlink: change nlk->cb_mutex role
    f4df31a05153 mctp: Handle error of rtnl_register_module().
    60bfd345cc9b bridge: Handle error of rtnl_register_module().
    ca15d2882d8a vxlan: Handle error of rtnl_register_module().
    35b72beac967 rtnetlink: Add bulk registration helpers for rtnetlink message handlers.
    eae7435b48ff net: do not delay dst_entries_add() in dst_release()
    64121e36fdce netfilter: fib: check correct rtable in vrf setups
    997f67d813ce netfilter: xtables: avoid NFPROTO_UNSPEC where needed
    b4ff011609d0 sctp: ensure sk_state is set to CLOSED if hashing fails in sctp_listen_start
    a63850d0d941 btrfs: zoned: fix missing RCU locking in error message when loading zone info
    25c5ef253a4c net: ibm: emac: mal: fix wrong goto
    1edf039ee017 net/sched: accept TCA_STAB only for root qdisc
    ba578ecdd161 e1000e: change I219 (19) devices to ADP
    57c5053eaa5f igb: Do not bring the device up after non-fatal error
    703c4d820b31 i40e: Fix macvlan leak by synchronizing access to mac_filter_hash
    29d7aa1857b2 ice: Flush FDB entries before reset
    3b66266aa7ec ice: rename switchdev to eswitch
    fa6ab2d78c19 ice: Fix netif_is_ice() in Safe Mode
    a91c6e117079 powercap: intel_rapl_tpmi: Ignore minor version change
    f0a6c431d20d platform/x86/intel/tpmi: Add defines to get version information
    1e4a5eed757c gpio: aspeed: Use devm_clk api to manage clock source
    2a165df9ce20 gpio: aspeed: Add the flush write to ensure the write complete.
    cfa836da7f4c nouveau/dmem: Fix privileged error in copy engine channel
    0aac3fb641cc drm/nouveau: pass cli to nouveau_channel_new() instead of drm+device
    ca57186f2dec net: dsa: b53: fix jumbo frames on 10/100 ports
    dd5b3a830540 net: dsa: b53: allow lower MTUs on BCM5325/5365
    94c4cb9b9113 net: dsa: b53: fix max MTU for BCM5325/BCM5365
    bd1f41c3abd1 net: dsa: b53: fix max MTU for 1g switches
    f9a966afcd76 net: dsa: b53: fix jumbo frame mtu check
    1d068c925418 net: ethernet: adi: adin1110: Fix some error handling path in adin1110_read_fifo()
    826e9b748dec Revert "net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled"
    dd64ea033756 thermal: intel: int340x: processor: Fix warning during module unload
    335a4cbcaa6b thermal: int340x: processor_thermal: Set feature mask before proc_thermal_add
    80a146b9bb08 net: phy: bcm84881: Fix some error handling paths
    38b2d5a57d12 Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change
    597ea17d84d3 selftests: net: no_forwarding: fix VID for $swp2 in one_bridge_two_pvids() test
    3453f5839420 netfilter: br_netfilter: fix panic with metadata_dst skb
    446be5505ea0 rxrpc: Fix uninitialised variable in rxrpc_send_data()
    2daffbd861de tcp: fix TFO SYN_RECV to not zero retrans_stamp with retransmits out
    718c49f840ef tcp: new TCP_INFO stats for RTO events
    04dce9a12050 tcp: fix tcp_enter_recovery() to zero retrans_stamp when it's safe
    e676ca60ad2a tcp: fix to allow timestamp undo if no retransmits were sent
    9ca634676ff6 net: phy: dp83869: fix memory corruption when enabling fiber
    fca41e5fa491 NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()
    dedc14e1301a SUNRPC: Fix integer overflow in decode_rc_list()
    fde7db1c0614 ice: fix VLAN replay after reset
    803f31073b08 ice: set correct dst VSI in only LAN filters
    4ab072325c62 NFSD: Mark filecache "down" if init fails
    1fab0233720f x86/amd_nb: Add new PCI IDs for AMD family 1Ah model 60h
    9736678bc21c x86/amd_nb: Add new PCI IDs for AMD family 0x1a
    688872c4ea4a fbdev: sisfb: Fix strbuf array overflow
    0809fb86ad13 smb: client: fix UAF in async decryption
    f7fb5dda5553 fbcon: Fix a NULL pointer dereference issue in fbcon_putcs
    65b2d49e55fe drm/amd/display: Check null pointer before dereferencing se
    0ef6e016eb53 scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance
    ab88c77894aa scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd()
    5da9855385bc driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute
    d885c464c250 driver core: bus: Fix double free in driver API bus_register()
    a84ae28d710b staging: vme_user: added bound check to geoid
    5b53a7a6bdba tools/iio: Add memory allocation failure check for trigger_name
    b01793cc63dd virtio_pmem: Check device status before requesting flush
    784744b01b08 netfilter: nf_reject: Fix build warning when CONFIG_BRIDGE_NETFILTER=n
    5b04f41abaf8 netfilter: nf_nat: don't try nat source port reallocation for reverse dir clash
    1215e29918af LoongArch: Fix memleak in pci_acpi_scan_root()
    0b700d29ebad comedi: ni_routing: tools: Check when the file could not be opened
    0be52823e51c usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario
    01ac64e09261 usb: chipidea: udc: enable suspend interrupt after usb reset
    b72bf5cade51 usb: typec: tipd: Free IRQ only if it was requested before
    e418d91195d2 serial: protect uart_port_dtr_rts() in uart_shutdown() too
    339273a9ddfe clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D
    7fb5f957213b remoteproc: imx_rproc: Use imx specific hook for find_loaded_rsc_table
    7af8d697b70f media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put()
    a39416d8597a riscv/kexec_file: Fix relocation type R_RISCV_ADD16 and R_RISCV_SUB16 unknown
    740a6059c367 soundwire: cadence: re-check Peripheral status with delayed_work
    99002ae8a1a8 RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults
    a29a9c2c9dce riscv: avoid Imbalance in RAS
    50c4307e8261 mfd: intel_soc_pmic_chtwc: Make Lenovo Yoga Tab 3 X90F DMI match less strict
    fa840ba4bd9f ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition
    f4ce3b5d26ce io_uring: check if we need to reschedule during overflow flush
    30884833361b RISC-V: Don't have MAX_PHYSMEM_BITS exceed phys_addr_t
    ea0256e393e0 i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition
    8f53f6f96678 PCI: Mark Creative Labs EMU20k2 INTx masking as broken
    f8e2a0416a68 i2c: i801: Use a different adapter-name for IDF adapters
    2488685858ed PCI: Add ACS quirk for Qualcomm SA8775P
    f829cb4535ba clk: bcm: bcm53573: fix OF node leak in init
    ccb8e44ae3e2 RDMA/rtrs-srv: Avoid null pointer deref during path establishment
    bd9a77a93049 PCI: Add function 0 DMA alias quirk for Glenfly Arise chip
    1598bf01006d soundwire: intel_bus_common: enable interrupts before exiting reset
    a195a42dd25c RDMA/mad: Improve handling of timed out WRs of mad agent
    6ba8ecf9aa4e ktest.pl: Avoid false positives with grub2 skip regex
    5d5e3b4cbe8e bpf: Prevent tail call between progs attached to different hooks
    96b128028801 s390/cpum_sf: Remove WARN_ON_ONCE statements
    e789b7fdd7ba ext4: nested locking for xattr inode
    58c0648e4c77 ext4: don't set SB_RDONLY after filesystem errors
    cadbdd78e049 bpf, x64: Fix a jit convergence issue
    5575beab1b26 s390/mm: Add cond_resched() to cmm_alloc/free_pages()
    78cddbd77595 s390/facility: Disable compile time optimization for decompressor code
    c43622d6f917 bpf: Check percpu map value size first
    aaa880f8a9a5 selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test
    1881193bf2cb Input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal
    6e20720b1229 zram: don't free statically defined names
    6272936fd242 zram: free secondary algorithms names
    c556e72cea2a ntfs3: Change to non-blocking allocation in ntfs_d_hash
    fd94986382d1 virtio_console: fix misc probe bugs
    5e20797c824b fs/ntfs3: Refactor enum_rstbl to suppress static checker
    cdb1efee542c fs/ntfs3: Fix sparse warning in ni_fiemap
    16f93bdd61e4 fs/ntfs3: Do not call file_modified if collapse range failed
    939b4b2c008d drm/amd/display: Revert "Check HDCP returned status"
    b505e4fc411c drm/amd/display: Remove a redundant check in authenticated_dp
    1a7ca970112c lib/build_OID_registry: avoid non-destructive substitution for Perl < 5.13.2 compat
    dcfaf8b500db jbd2: fix kernel-doc for j_transaction_overhead_buffers
    5f77c8e84ae4 Bluetooth: Fix usage of __hci_cmd_sync_status
    66c43605be89 selftests: Introduce Makefile variable to list shared bash scripts
    f45c65b1b941 selftests: net: Remove executable bits from library scripts
    ab656dd9fc0d libsubcmd: Don't free the usage string
    03cec19f546d perf sched: Move curr_pid and cpu_last_switched initialization to perf_sched__{lat|map|replay}()
    4078f1d442d8 perf sched: Move curr_thread initialization to perf_sched__map()
    e649fb7f8361 perf sched: Fix memory leak in perf_sched__map()
    85ca3d45bd40 perf sched: Move start_work_mutex and work_done_wait_mutex initialization to perf_sched__replay()
    86052433693b bootconfig: Fix the kerneldoc of _xbc_exit()
    f0fc028b6f1f e1000e: move force SMBUS near the end of enable_ulp function
    1fe83044fdc9 i40e: Include types.h to some headers
    f717743ecfdf i40e: Fix ST code value for Clause 45
    a47a759e435b scsi: sd: Do not repeat the starting disk message
    9e6075e112ee scsi: Remove scsi device no_start_on_resume flag
    2e561175e9cf ASoC: tas2781: mark dvc_tlv with __maybe_unused
    9c122d020a62 ata: ahci: Add mask_port_map module parameter
    924c0af49c63 spi: spi-fsl-lpspi: remove redundant spi_controller_put call
    18f3fdb17496 riscv: cpufeature: Fix thead vector hwcap removal
    5915b8981ad6 tracing: Have saved_cmdlines arrays all in one allocation
    26c907b8d887 libceph: init the cursor when preparing sparse read in msgr2
    fb90d9729549 pds_core: no health-thread in VF path
    bd1521e0ea9a Revert "powerpc/ps3_defconfig: Disable PPC64_BIG_ENDIAN_ELF_ABI_V2"
    43987659fa9c bus: mhi: ep: Do not allocate memory for MHI objects from DMA zone
    39601f49c9e0 bus: mhi: ep: Add support for async DMA read operation
    b6af3a95417b bus: mhi: ep: Add support for async DMA write operation
    a77e5950f93f bus: mhi: ep: Introduce async read/write callbacks
    efdfa92a823a bus: mhi: ep: Rename read_from_host() and write_to_host() APIs
    be6c52b059a2 drm/crtc: fix uninitialized variable use even harder
    0d3d2236a0e0 ALSA: hda/realtek: cs35l41: Fix device ID / model name
    c800174e0865 ALSA: hda/realtek: cs35l41: Fix order and duplicates in quirks table
    e87cb9dd3fad tracing: Remove precision vsnprintf() check from print event
    9dd05dac697c drm/panel: boe-tv101wum-nl6: Fine tune Himax83102-j02 panel HFP and HBP (again)
    452c0740d72c net: ethernet: cortina: Drop TSO support
    6e0d0554d857 riscv: Remove SHADOW_OVERFLOW_STACK_SIZE macro
    50e33567bc4a gfs2: Revert "ignore negated quota changes"
    8251e3b0ce92 gfs2: qd_check_sync cleanups
    e51c5aff8480 gfs2: Revert "introduce qd_bh_get_or_undo"
    9060935b4b8b phy: qualcomm: eusb2-repeater: Rework init to drop redundant zero-out loop
    fa3532b1540f phy: qualcomm: phy-qcom-eusb2-repeater: Add tuning overrides
    e905bc71e7ed ASoC: cs35l56: Load tunings for the correct speaker models
    9790a7acc352 Revert "PCI/MSI: Provide stubs for IMS functions"
    7745e14f4c03 net: fec: don't save PTP state if PTP is unsupported
    ac20736861f3 unicode: Don't special case ignorable code points
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: a9e80c6809a0b1d0f0146b6e55a2313124b8adc3)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e8a5b1c53d9cae12b4f3c6d3259be55df5f1d2f4)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:44 -08:00
Bruce Ashfield
0db4e19952 linux-yocto/6.6: update to v6.6.56
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:

    d4576c567009 Linux 6.6.56
    1e0f696469d6 Revert "perf callchain: Fix stitch LBR memory leaks"
    9b15f68c4127 Linux 6.6.55
    e334ae4a0cd5 perf python: Allow checking for the existence of warning options in clang
    3faea7810e2b Revert "ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path"
    e0aba0c6d521 null_blk: Fix return value of nullb_device_power_store()
    e0b065ec636d drm/amd/display: enable_hpo_dp_link_output: Check link_res->hpo_dp_link_enc before using it
    776ebdeee65b perf report: Fix segfault when 'sym' sort key is not used
    eada63e6e337 drm/amd/display: Revert Avoid overflow assignment
    de4841fca84f crypto: octeontx* - Select CRYPTO_AUTHENC
    25613e6d9841 vhost/scsi: null-ptr-dereference in vhost_scsi_get_req()
    cdf4bbbdb956 rxrpc: Fix a race between socket set up and I/O thread creation
    b538fefeb102 net: stmmac: move the EST lock to struct stmmac_priv
    aaadb755f2d6 null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues'
    b2b02202f87d null_blk: Remove usage of the deprecated ida_simple_xx() API
    2deb10a99671 platform/x86: think-lmi: Fix password opcode ordering for workstations
    e115c1b5de55 efi/unaccepted: touch soft lockup during memory accept
    50f4b57e9a9d drm/bridge: adv7511: fix crash on irq during probe
    fd4d5cd7a2e8 iommufd: Fix protection fault in iommufd_test_syz_conv_iova
    69a1e2d938db net: dsa: fix netdev_priv() dereference before check on non-DSA netdevice events
    164936b2fc88 netfilter: nf_tables: restore set elements when delete set fails
    a1bd2a38a1c6 netfilter: nf_tables: fix memleak in map from abort path
    b90778973293 ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path
    1428da2f4a33 Revert "drm/amd/display: Skip Recompute DSC Params if no Stream on Link"
    d253f71605e4 drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066
    907717eea14c btrfs: drop the backref cache during relocation if we commit
    4dc6ea8b4d9d btrfs: relocation: constify parameters where possible
    5ae94c639777 btrfs: relocation: return bool from btrfs_should_ignore_reloc_root
    ce31847f109c ACPI: battery: Fix possible crash when unregistering a battery hook
    2deeb3c748da ACPI: battery: Simplify battery hook locking
    712d30f9a505 clk: qcom: gcc-sc8180x: Add GPLL9 support
    1c723d785adb r8169: add tally counter fields added with RTL8125
    f02fcb7283b1 r8169: Fix spelling mistake: "tx_underun" -> "tx_underrun"
    736da4240815 iio: pressure: bmp280: Fix waiting time for BMP3xx configuration
    ae6724f9f13e iio: pressure: bmp280: Fix regmap for BMP280 device
    5da669d9ee26 iio: pressure: bmp280: Use BME prefix for BME280 specifics
    b71b2d704a93 iio: pressure: bmp280: Improve indentation and line wrapping
    afe335a6c5e2 iio: pressure: bmp280: Allow multiple chips id per family of devices
    c059a2661a1d dt-bindings: clock: qcom: Add GPLL9 support on gcc-sc8180x
    65e71cffb833 dt-bindings: clock: qcom: Add missing UFS QREF clocks
    fc1ed6f791e3 remoteproc: k3-r5: Delay notification of wakeup event
    e1df6bbf4771 remoteproc: k3-r5: Acquire mailbox handle during probe routine
    9eac174a9b89 media: imx335: Fix reset-gpio handling
    2b00bc1d7d40 media: i2c: imx335: Enable regulator supplies
    e6be95592c9f RDMA/mana_ib: use the correct page table index based on hardware page size
    6c95c700f2b6 net: mana: Add support for page sizes other than 4KB on ARM64
    86b6cf7e253b net: mana: Enable MANA driver on ARM64 with 4K page size
    1f997b1d13e0 sched: psi: fix bogus pressure spikes from aggregation race
    c83a80d8b84f lib/buildid: harden build ID parsing logic
    f941d779622b build-id: require program headers to be right after ELF header
    a94ec40b9405 drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT`
    54ad9c760854 mm: z3fold: deprecate CONFIG_Z3FOLD
    5b981d8335e1 uprobes: fix kernel info leak via "[uprobes]" vma
    24f7989ed2e1 io_uring/net: harden multishot termination case for recv
    3c38faa39e6c arm64: errata: Expand speculative SSBS workaround once more
    9a3e9aab606d arm64: cputype: Add Neoverse-N3 definitions
    c7e0da744932 i2c: synquacer: Deal with optional PCLK correctly
    6109f5319bfd i2c: synquacer: Remove a clk reference from struct synquacer_i2c
    316be4911f63 i2c: core: Lock address during client device instantiation
    4a2be5a72865 i2c: create debugfs entry per adapter
    aac871e493fc platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors
    2dbc42f554b3 platform/x86: x86-android-tablets: Create a platform_device from module_init()
    ce5ec367994d kconfig: qconf: fix buffer overflow in debug links
    eebc10e92477 cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock
    68d603f467a7 drm/amd/display: Fix system hang while resume with TBT monitor
    487f6450bcb9 drm/amd/display: Add HDR workaround for specific eDP
    579a0a84e3c0 drm/sched: Add locking to drm_sched_entity_modify_sched
    451c87d21db6 drm/i915/gem: fix bitwise and logical AND mixup
    a8023f8b5598 close_range(): fix the logics in descriptor table trimming
    310d95316791 rtla: Fix the help text in osnoise and timerlat top tools
    8b0f0a268ddb tracing/timerlat: Fix duplicated kthread creation due to CPU online/offline
    a6e9849063a6 tracing/timerlat: Fix a race during cpuhp processing
    a4a05ceffe8f tracing/timerlat: Drop interface_lock in stop_kthread()
    79250decc9ab tracing/hwlat: Fix a race during cpuhp processing
    b8c118c2a2ad ceph: fix cap ref leak via netfs init_request
    e676e4ea76bb mac802154: Fix potential RCU dereference issue in mac802154_scan_worker
    830c03e58beb Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE
    2f4e3926bc50 net: pcs: xpcs: fix the wrong register that was written back
    7c5cd531d093 gpio: davinci: fix lazy disable
    0f41f383b5a6 cpufreq: Avoid a bad reference count on CPU node
    ed87190e9d9c btrfs: wait for fixup workers before stopping cleaner kthread during umount
    521cfe23fbcb btrfs: send: fix invalid clone operation for file that got its size decreased
    7ad0c5868f2f btrfs: fix a NULL pointer dereference when failed to start a new trasacntion
    d7674ed0dcd4 ACPI: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[]
    27ec4a380bc1 ACPI: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[]
    c7d10fa7d769 cachefiles: fix dentry leak in cachefiles_open_file()
    195e42c9a92f Input: adp5589-keys - fix adp5589_gpio_get_value()
    7c3f04223aaf Input: adp5589-keys - fix NULL pointer dereference
    cda7d597245f rtc: at91sam9: fix OF node leak in probe() error path
    03582f475242 net: stmmac: Fix zero-division error when disabling tc cbs
    cd9ce830facd tomoyo: fallback to realpath if symlink's pathname does not exist
    af3122f5fdc0 gso: fix udp gso fraglist segmentation after pull from frag_list
    718a752bd746 vrf: revert "vrf: Remove unnecessary RCU-bh critical section"
    73328d2af5aa iio: magnetometer: ak8975: Fix reading for ak099xx sensors
    3374f06f9544 smb3: fix incorrect mode displayed for read-only files
    472973229cb0 smb: client: use actual path when queryfs
    868e843e522d clk: qcom: clk-alpha-pll: Fix CAL_L_VAL override for LUCID EVO PLL
    5bdb3cc0cced clk: qcom: gcc-sc8180x: Fix the sdcc2 and sdcc4 clocks freq table
    ea3a6938cb9b media: qcom: camss: Fix ordering of pm_runtime_enable
    c2218a82f795 media: qcom: camss: Remove use_count guard in stop_streaming
    8c860f35867a clk: qcom: gcc-sm8250: Do not turn off PCIe GDSCs during gdsc_disable()
    b0686aedc5f1 media: venus: fix use after free bug in venus_remove due to race condition
    56770d1e01d6 clk: qcom: gcc-sm8150: De-register gcc_cpuss_ahb_clk_src
    7e21770654f5 clk: samsung: exynos7885: Update CLKS_NR_FSYS after bindings fix
    8cf5c85d5edf clk: qcom: clk-rpmh: Fix overflow in BCM vote
    1229485abfce media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags
    e6f63d04c03e clk: qcom: gcc-sm8450: Do not turn off PCIe GDSCs during gdsc_disable()
    6fa24b41d3b5 media: sun4i_csi: Implement link validate for sun4i_csi subdev
    fb2867420e4e clk: qcom: dispcc-sm8250: use CLK_SET_RATE_PARENT for branch clocks
    fc71c2395893 remoteproc: k3-r5: Fix error handling when power-up failed
    bd588d52562a clk: rockchip: fix error for unknown clocks
    eb4df5e36a6e media: ov5675: Fix power on/off delay timings
    acc5103a0a8c aoe: fix the potential use-after-free problem in more places
    1587db113004 riscv: Fix kernel stack size when KASAN is enabled
    83b39493cd00 RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page
    4ac637122930 i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition
    6b17072c7db5 NFSD: Fix NFSv4's PUTPUBFH operation
    f7d8ee9db943 nfsd: map the EBADMSG to nfserr_io to avoid warning
    33658acea064 nfsd: fix delegation_blocked() to block correctly for at least 30 seconds
    be8d32ebfa0b perf hist: Update hist symbol when updating maps
    bebb4c240500 perf python: Disable -Wno-cast-function-type-mismatch if present on clang
    bf0b3b352594 exfat: fix memory leak in exfat_load_bitmap()
    9a2585ad17cd riscv: define ILLEGAL_POINTER_VALUE for 64bit
    8f91116f3682 arm64: Subscribe Microsoft Azure Cobalt 100 to erratum 3194386
    5f5ec16bd14d arm64: fix selection of HAVE_DYNAMIC_FTRACE_WITH_ARGS
    d52c5652e7dc ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate
    86a89e75e9e4 ocfs2: fix null-ptr-deref when journal load failed.
    84543da867c9 ocfs2: remove unreasonable unlock in ocfs2_read_blocks
    ef768020366f ocfs2: cancel dqi_sync_work before freeing oinfo
    637c00e06564 ocfs2: reserve space for inline xattr before attaching reflink tree
    8d176ca5d915 ocfs2: fix uninit-value in ocfs2_get_block()
    e7a801014726 ocfs2: fix the la space leak when unmounting an ocfs2 volume
    e3a9fc1520a6 mm: krealloc: consider spare memory for __GFP_ZERO
    fd3496243409 jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit
    1c62dc0d82c6 jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error
    393331e16ce2 resource: fix region_intersects() vs add_memory_driver_managed()
    b57b53e8ffcd drm: omapdrm: Add missing check for alloc_ordered_workqueue
    0022085f11c6 of/irq: Support #msi-cells=<0> in of_msi_get_domain
    d657d28641ec of: address: Report error on resource bounds overflow
    25b7a6703728 drm/rockchip: vop: clear DMA stop bit on RK3066
    a17dfde57704 parisc: Fix stack start for ADDR_NO_RANDOMIZE personality
    62f3e58c4e39 parisc: Allow mmap(MAP_STACK) memory to automatically expand upwards
    42451ba0d6e1 parisc: Fix 64-bit userspace syscall path
    89bbc55d6b16 ext4: mark fc as ineligible using an handle in ext4_xattr_set()
    c5771f1c484c ext4: use handle to mark fc as ineligible in __track_dentry_update()
    d13a3558e824 ext4: fix fast commit inode enqueueing during a full journal commit
    1552199ace59 ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list()
    80dccb81b7db ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit()
    f55ecc58d07a ext4: update orig_path in ext4_find_extent()
    9203817ba46e ext4: fix timer use-after-free on failed mount
    68a69cf60660 ext4: fix double brelse() the buffer of the extents path
    8162ee5d94b8 ext4: aovid use-after-free in ext4_ext_insert_extent()
    1b558006d98b ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free
    93051d16b312 ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space()
    5efccdee4a7d ext4: dax: fix overflowing extents beyond inode size when partially writing
    8c762b4e1921 ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible()
    f4308d8ee384 ext4: propagate errors from ext4_find_extent() in ext4_insert_range()
    8fe117790b37 ext4: fix slab-use-after-free in ext4_split_extent_at()
    a56e5f389d42 ext4: correct encrypted dentry name hash when not casefolded
    2d64e7dada22 ext4: no need to continue when the number of entries is 1
    9cdf65c6c311 ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200
    762650cd5e7f ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9
    3624416ab149 ALSA: line6: add hw monitor volume control to POD HD500X
    228a8b952cf4 ALSA: usb-audio: Add native DSD support for Luxman D-08u
    9d125aab4c47 ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET
    aba1be9a804f ALSA: core: add isascii() check to card ID generator
    633d3456849d ALSA: hda/tas2781: Add new quirk for Lenovo Y990 Laptop
    c923bc874659 drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS
    6e6f89549c66 drm/mediatek: ovl_adaptor: Add missing of_node_put()
    3eff30f2c315 parisc: Fix itlb miss handler for 64-bit programs
    9fca08c06a8d perf/core: Fix small negative period being ignored
    888f728d81f8 power: supply: hwmon: Fix missing temp1_max_alarm attribute
    7febcf11742f spi: bcm63xx: Fix missing pm_runtime_disable()
    f2d0b351e03f spi: bcm63xx: Fix module autoloading
    0a42f6360798 dt-bindings: clock: exynos7885: Fix duplicated binding
    ff580d01301e memory: tegra186-emc: drop unused to_tegra186_emc()
    028258156f65 firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp()
    bf47be5479b3 ovl: fail if trusted xattrs are needed but caller lacks permission
    6fcd6feaf132 rust: sync: require `T: Sync` for `LockedBy::access`
    d6c159c066d2 i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled
    b80dc74c386f i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled
    625a77b68c96 media: i2c: ar0521: Use cansleep version of gpiod_set_value()
    c0e00163f804 i2c: xiic: Wait for TX empty to avoid missed TX NAKs
    7e263fd6efba i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq()
    22a1f8a5b56b i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume
    8176d4878ed2 platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug
    b8c0aee7c2a5 Revert "ALSA: hda: Conditionally use snooping for AMD HDMI"
    2c74d33dbfd9 selftests: vDSO: fix vdso_config for s390
    0fe35c473713 selftests: vDSO: fix ELF hash table entry size for s390x
    676727021dbd powerpc/vdso: Fix VDSO data access when running in a non-root time namespace
    dfb569762ce7 selftests/mm: fix charge_reserved_hugetlb.sh test
    b88842a9f1b8 selftests: vDSO: fix vDSO symbols lookup for powerpc64
    d3b90ed9a08d selftests: vDSO: fix vdso_config for powerpc
    6c8aff20229f selftests: vDSO: fix vDSO name for powerpc
    9629c0c3e876 perf: Really fix event_function_call() locking
    42cd165b4cf8 perf callchain: Fix stitch LBR memory leaks
    e2955fbe08b0 spi: rpc-if: Add missing MODULE_DEVICE_TABLE
    106f10fef0b9 accel/ivpu: Add missing MODULE_FIRMWARE metadata
    4019391dfe37 selftests: breakpoints: use remaining time to check if suspend succeed
    c2aa41032872 spi: s3c64xx: fix timeout counters in flush_fifo
    dbda70bbe421 selftest: hid: add missing run-hid-tools-tests.sh
    494380a4e4c0 spi: spi-cadence: Fix missing spi_controller_is_target() check
    97aa3293db69 spi: spi-cadence: Fix pm_runtime_set_suspended() with runtime pm enabled
    97f76711a90e spi: spi-cadence: Use helper function devm_clk_get_enabled()
    d6e3898d62a8 spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled
    c2d9f9a7837a bpftool: Fix undefined behavior in qsort(NULL, 0, ...)
    390b9e54cdfd iomap: handle a post-direct I/O invalidate race in iomap_write_delalloc_release
    ad762c520471 bpftool: Fix undefined behavior caused by shifting into the sign bit
    d43776b90765 ext4: fix i_data_sem unlock order in ext4_ind_migrate()
    34b2096380ba ext4: avoid use-after-free in ext4_ext_show_leaf()
    1fe2852720cd ext4: ext4_search_dir should return a proper error
    b111ae42bbfd bpf: Make the pointer returned by iter next method valid
    18f06bacc197 ksmbd: add refcnt to ksmbd_conn struct
    f5e30a30fce7 platform/x86: lenovo-ymc: Ignore the 0x0 state
    4298813a43f7 drm/amdgpu/gfx10: use rlc safe mode for soft recovery
    c20cd3d6d261 drm/amdgpu/gfx11: use rlc safe mode for soft recovery
    e16a6d1a3357 powerpc/pseries: Use correct data types from pseries_hp_errorlog struct
    fe2c86e1927e of/irq: Refer to actual buffer size in of_irq_parse_one()
    b511474f4958 drm/amd/pm: ensure the fw_info is not null before using it
    3ffbdc977d80 drm/amdgpu/gfx9: use rlc safe mode for soft recovery
    8361e3f78828 drm/amdgpu: Block MMR_READ IOCTL in reset
    c474a1a75599 drm/radeon/r100: Handle unknown family in r100_cp_init_microcode()
    ee5d547006d3 scsi: NCR5380: Initialize buffer for MSG IN and STATUS transfers
    66a403d89b73 perf: Fix event_function_call() locking
    deb78dc859dd drm/amdgpu: fix unchecked return value warning for amdgpu_gfx
    5e0e1a941e57 scsi: lpfc: Update PRLO handling in direct attached topology
    55119faf5abc scsi: aacraid: Rearrange order of struct aac_srb_unit
    adf290fe434c perf,x86: avoid missing caller address in stack traces captured in uprobe
    4ee08b4a7201 drm/printer: Allow NULL data in devcoredump printer
    c7630935d9a4 drm/amd/display: Initialize get_bytes_per_element's default to 1
    a1495acc6234 drm/amd/display: Avoid overflow assignment in link_dp_cts
    929506d56714 drm/amd/display: Fix index out of bounds in DCN30 color transformation
    122e3a7a8c7b drm/amd/display: Fix index out of bounds in degamma hardware format translation
    0d38a0751143 drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation
    be2ca7a2c156 drm/amd/display: Check link_res->hpo_dp_link_enc before using it
    42d31a336438 drm/amd/display: Check stream before comparing them
    fb557a36b0b9 drm/stm: ltdc: reset plane transparency after plane disable
    64f38c08b592 platform/x86: touchscreen_dmi: add nanote-next quirk
    651ba62c255f HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio
    71cfb54e0f0c drm/amdkfd: Fix resource leak in criu restore queue
    fe90214179d5 drm/amdgpu: enable gfxoff quirk on HP 705G4
    a3c8cbefce38 drm/amdgpu: add raven1 gfxoff quirk
    c076b3746224 jfs: Fix uninit-value access of new_ea in ea_buffer
    9288a9676c52 drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs
    4155dff76a8c scsi: smartpqi: correct stream detection
    7fff9a9f866e jfs: check if leafidx greater than num leaves per dmap tree
    4218b31ecc7a jfs: Fix uaf in dbFreeBits
    f04925a02ea2 jfs: UBSAN: shift-out-of-bounds in dbFindBits
    cf6f3ebd6312 drm/amd/display: fix double free issue during amdgpu module unload
    75839e2365b6 drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2)
    9641bc4adf84 drm/amd/display: Check null pointers before using dc->clk_mgr
    4778982c73d6 drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream'
    6ec7c739346c HID: Ignore battery for all ELAN I2C-HID devices
    29d2d5eda393 ata: sata_sil: Rename sil_blacklist to sil_quirks
    8fcf85196adc ata: pata_serverworks: Do not use the term blacklist
    e47e563c6f0d drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream
    30ceb873cc2e drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer
    44e4aeaef96b drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit
    0a1741d10da2 drm/stm: Avoid use-after-free issues with crtc and plane
    dfdbc5ba10fb iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count
    54e86bfec010 iommu/vt-d: Always reserve a domain ID for identity setup
    1c36eb173249 power: reset: brcmstb: Do not go into infinite loop if reset fails
    2d56271fce96 rcuscale: Provide clear error when async specified without primitives
    fdda354f60a5 fbdev: pxafb: Fix possible use after free in pxafb_task()
    36bfefb6baaa fbdev: efifb: Register sysfs groups through driver core
    4b101d2f40df hwmon: (nct6775) add G15CF to ASUS WMI monitoring list
    2de5fd836bd6 x86/syscall: Avoid memcpy() for ia32 syscall_get_arguments()
    e9df4c61079e selftests/nolibc: avoid passing NULL to printf("%s")
    fc975b8daba2 tools/nolibc: powerpc: limit stack-protector workaround to GCC
    6cc4e5eaadae ALSA: hdsp: Break infinite MIDI input flush loop
    7a5574099670 ALSA: asihpi: Fix potential OOB array access
    ddd52c9fe992 x86/kexec: Add EFI config table identity mapping for kexec kernel
    407abc7e0c7f x86/pkeys: Restore altstack access in sigreturn()
    19059128205f x86/pkeys: Add PKRU as a parameter in signal handling functions
    ef6c1ed5887f tools/x86/kcpuid: Protect against faulty "max subleaf" values
    71faa656b8e7 ASoC: codecs: wsa883x: Handle reading version failure
    70d5e30b0a3c ALSA: usb-audio: Add logitech Audio profile quirk
    fb2ed616af7e ALSA: usb-audio: Replace complex quirk lines with macros
    0bf9779cd954 ALSA: usb-audio: Define macros for quirk table entries
    077e1b7cd521 x86/ioapic: Handle allocation failures gracefully
    864f68a24293 ALSA: usb-audio: Add input value sanity checks for standard types
    f888741fcfab nfp: Use IRQF_NO_AUTOEN flag in request_irq()
    fef7b51f22cf wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()
    0a630d690b7f wifi: mt76: mt7915: hold dev->mt76.mutex while disabling tx worker
    833ebae26663 wifi: mt76: mt7915: add dummy HW offload of IEEE 802.11 fragmentation
    b4f8240bc389 can: netlink: avoid call to do_set_data_bittiming callback with stale can_priv::ctrlmode
    b017f4f6709a drivers/perf: arm_spe: Use perf_allow_kernel() for permissions
    8552508033b2 proc: add config & param to block forcing mem writes
    8b2906e1349a ACPICA: iasl: handle empty connection_node
    f37319609335 wifi: mac80211: fix RCU list iterations
    6dcadb2ed3b7 wifi: iwlwifi: mvm: avoid NULL pointer dereference
    324116255492 wifi: iwlwifi: mvm: use correct key iteration
    5cce1c07bf89 tcp: avoid reusing FIN_WAIT2 when trying to find port in connect() process
    27fe713c62a1 netpoll: Ensure clean state on setup failures
    b60d2bc676e4 crypto: simd - Do not call crypto_alloc_tfm during registration
    0f6dab0b79f1 net: atlantic: Avoid warning about potential string truncation
    f989162f55ed ipv4: Mask upper DSCP bits and ECN bits in NETLINK_FIB_LOOKUP family
    239ac7faeaea wifi: rtw89: correct base HT rate mask for firmware
    d4c4653b60de ipv4: Check !in_dev earlier for ioctl(SIOCSIFADDR).
    0d6255e512b3 bnxt_en: Extend maximum length of version string by 1 byte
    74834f4a6c19 net: mvpp2: Increase size of queue_name buffer
    12d26aa7fd3c tipc: guard against string buffer overrun
    4588ea78d390 ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package()
    93d065b704bd ACPI: EC: Do not release locks during operation region accesses
    90ec583a85c4 wifi: rtw88: select WANT_DEV_COREDUMP
    7a552bc2f3ef wifi: ath11k: fix array out-of-bound access in SoC stats
    d0e4274d9dc9 wifi: ath12k: fix array out-of-bound access in SoC stats
    1ab2cfe19700 blk_iocost: fix more out of bound shifts
    29dbea4c56df ACPI: CPPC: Add support for setting EPP register in FFH
    716dae9686fe ACPI: video: Add force_vendor quirk for Panasonic Toughbook CF-18
    cc026a7f9be6 Bluetooth: btrtl: Set msft ext address filter quirk for RTL8852B
    18ed567ad0aa Bluetooth: btusb: Add Realtek RTL8852C support ID 0x0489:0xe122
    37a6fc0d8fca net: sched: consistently use rcu_replace_pointer() in taprio_change()
    3f5625e9e92b wifi: mt76: mt7915: disable tx worker during tx BA session enable/disable
    1c6db07811fb e1000e: avoid failing the system during pm_suspend
    13ca2b3568fb ACPICA: Fix memory leak if acpi_ps_get_next_field() fails
    0b02303431a3 ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails
    68a8e45743d6 ACPI: PAD: fix crash in exit_round_robin()
    0a94777ba4ca net: hisilicon: hns_mdio: fix OF node leak in probe()
    359a218ce1a9 net: hisilicon: hns_dsaf_mac: fix OF node leak in hns_mac_get_info()
    f62bf4ffeba5 net: hisilicon: hip04: fix OF node leak in probe()
    143edf098b80 net/xen-netback: prevent UAF in xenvif_flush_hash()
    04053e55dd50 wifi: cfg80211: Set correct chandef when starting CAC
    d76360adabd6 wifi: iwlwifi: mvm: drop wrong STA selection in TX
    191e8d525620 wifi: iwlwifi: mvm: Fix a race in scan abort flow
    82465e05ca6f ice: Adjust over allocation of memory in ice_sched_add_root_node() and ice_sched_add_node()
    21ba7132a911 crypto: octeontx2 - Fix authenc setkey
    0ac97b001cce crypto: octeontx - Fix authenc setkey
    6300199be334 crypto: x86/sha256 - Add parentheses around macros' single arguments
    e37e34883503 wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit
    fdc73f2cfbe8 wifi: rtw89: avoid to add interface to list twice when SER
    e6e4cfb5f6d6 wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats()
    40346cbb19ad ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin
    b0f3c6a2d0bd ALSA: gus: Fix some error handling paths related to get_bpos() usage
    2c3c1f87cf7e cifs: Do not convert delimiter when parsing NFS-style symlinks
    c6db81c550ce cifs: Fix buffer overflow when parsing NFS reparse points
    92e71ccd8fd4 ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m
    f8f081578b5b ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs
    e4c886dd24a3 cifs: Remove intermediate object of failed create reparse call
    fa72abf31bd0 ALSA: hda/realtek: Fix the push button function for the ALC257
    466129e3d0ad ALSA: mixer_oss: Remove some incorrect kfree_const() usages
    0152c81f61fa ASoC: atmel: mchp-pdmc: Skip ALSA restoration if substream runtime is uninitialized
    28234f8ab69c Bluetooth: L2CAP: Fix not validating setsockopt user input
    6a6baa1ee7a9 Bluetooth: ISO: Fix not validating setsockopt user input
    dea46e246ef0 media: usbtv: Remove useless locks in usbtv_video_free()
    0c18a64039aa Bluetooth: hci_sock: Fix not validating setsockopt user input
    b66ff9a3fc90 loop: don't set QUEUE_FLAG_NOMERGES
    3000f3a86dd0 i2c: xiic: Try re-initialization on bus busy timeout
    7c48b5a6c32c i2c: xiic: improve error message when transfer fails to start
    7f64cb5b4d8c sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start
    25a54df40841 dt-bindings: net: xlnx,axi-ethernet: Add missing reg minItems
    1372c7579ec5 iomap: constrain the file range passed to iomap_file_unshare
    f9620e2a665a ppp: do not assume bh is held in ppp_channel_bridge_input()
    d9dfd41e32cc net: test for not too small csum_start in virtio_net_hdr_to_skb()
    ea8cad4ca5e0 ipv4: ip_gre: Fix drops of small packets in ipgre_xmit
    a9ad307c0dde net: stmmac: dwmac4: extend timeout for VLAN Tag register busy bit check
    9b0ee571d20a net: add more sanity checks to qdisc_pkt_len_init()
    25ab0b87dbd8 net: avoid potential underflow in qdisc_pkt_len_init() with UFO
    da143240028c net: fec: Reload PTP registers after link-state change
    dc5fb264168c net: fec: Restart PPS after link state change
    e66e38d07b31 net: ethernet: lantiq_etop: fix memory disclosure
    718b66340364 net: Fix gso_features_check to check for both dev->gso_{ipv4_,}max_size
    dae9b99bd21f net: Add netif_get_gro_max_size helper for GRO
    f0a84ad84d98 Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq()
    b90907696c30 Bluetooth: L2CAP: Fix uaf in l2cap_connect
    4883296505aa Bluetooth: MGMT: Fix possible crash on mgmt_index_removed
    4e3542f40f3a netfilter: nf_tables: prevent nf_skb_duplicated corruption
    fe9ccbf1b749 selftests: netfilter: Fix nft_audit.sh for newer nft binaries
    271b4904727b net: wwan: qcom_bam_dmux: Fix missing pm_runtime_disable()
    96858258de2f net: ieee802154: mcr20a: Use IRQF_NO_AUTOEN flag in request_irq()
    8691a82abf0c netfilter: uapi: NFTA_FLOWTABLE_HOOK is NLA_NESTED
    fab615ac9fcb net/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice
    0168ab6fbd9e net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()
    1c252d64652e net/mlx5: Added cond_resched() to crdump collection
    26fad69b34fc net/mlx5: Fix error path in multi-packet WQE transmit
    70db858273c7 net: sparx5: Fix invalid timestamps
    d6c4c0867086 ieee802154: Fix build error
    11ab19d48ab8 ceph: remove the incorrect Fw reference check when dirtying pages
    10a58555e0bb mailbox: bcm2835: Fix timeout during suspend mode
    b372b484d232 mailbox: rockchip: fix a typo in module autoloading
    7879ad0aa996 drm/amdgpu: Fix get each xcp macro
    f42595fb8fdb scsi: pm8001: Do not overwrite PCI queue mapping
    6b63cda2d4f4 scsi: st: Fix input/output error on empty drive reset
    86fdd1806461 jump_label: Fix static_key_slow_dec() yet again
    33f3e832275e jump_label: Simplify and clarify static_key_fast_inc_cpus_locked()
    e67534bd31d7 static_call: Replace pointless WARN_ON() in static_call_module_notify()
    c0abbbe8c98c static_call: Handle module init failure correctly in static_call_del_module()
    18abb2787b53 x86/syscall: Mark exit[_group] syscall handlers __noreturn
    2879d995e569 pnmtologo: sync with 6.6
    43ea1c5e6eb3 lib/build_OID_registry: take -stable reproducibility changes
    35046aea43c8 bpftool: Fix undefined bpf macro for unix socket
    9a558d4b8621 tools/resolve_btfids: Fix comparison of distinct pointer types warning in resolve_btfids
    42b2eec2e503 bpftool: Query only cgroup-related attach types
    f71bb11887ba cpu/amd: inhibit SMP check for qemux86
    c31365597a17 powerpc/uaccess: Fix build errors seen with GCC 13/14
    64ebf485c56b usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
    7c76aad68f6d kselftest: Add a ksft_perror() helper
    06644f0d7193 drm/tilcdc: Set preferred depth
    ff7ae7b32324 crypto: jitter - add RCT/APT support for different OSRs
    50cd24ddb6f0 arm64: defconfig: remove CONFIG_IPQ_APSS_5018
    58e5c91d6701 x86/alternatives: Disable interrupts and sync when optimizing NOPs in place
    c878fd2d4c79 x86/alternatives: Sync core before enabling interrupts
    c2d64b9f52b6 qemux86: add configuration symbol to select values
    630c33229e6d sched/isolation: really align nohz_full with rcu_nocbs
    0e5e0f68e2e6 clear_warn_once: add a clear_warn_once= boot parameter
    46934791b902 clear_warn_once: bind a timer to written reset value
    cdee9e38ff32 clear_warn_once: expand debugfs to include read support
    82b562b81841 tools: Remove some options from CLANG_CROSS_FLAGS
    36dc380b776b libbpf: Fix build warning on ref_ctr_off
    9e3e1fe20982 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel.
    e497a4a5da65 perf: x86-32: explicitly include <errno.h>
    7b57ddd89565 perf: mips64: Convert __u64 to unsigned long long
    1cfc19423dc7 perf: fix bench numa compilation
    98bc2815fade perf: add SLANG_INC for slang.h
    17209a70b9b3 perf: add sgidefs.h to for mips builds
    9cd4258d910a perf: change --root to --prefix for python install
    8110a4f26628 perf: add 'libperl not found' warning
    bc89d5e08f77 perf: force include of <stdbool.h>
    4f6c760cc876 fat: Replace prandom_u32() with get_random_u32()
    bc53117b12b2 fat: don't use obsolete random32 call in namei_vfat
    30b2236ab378 FAT: Added FAT_NO_83NAME
    cef98d22b4ed FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option
    0bbd7daba9e1 FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option
    5883fc340084 aufs6: adapt to v6.6 i_op->ctime changes
    c4342d979bf2 aufs6: fix magic.mk include path
    35266bc2dc81 aufs6: adapt to v6.6
    8edede4e98be aufs6: core
    712248233ebe aufs6: standalone
    3b71a8a848d8 aufs6: mmap
    3e2924871f37 aufs6: base
    7f4907a93101 aufs6: kbuild
    d2f7b03e4aa7 yaffs2: update VFS ctime operations to 6.6+
    bcd6cfcd1aa0 yaffs2: v6.5 fixups
    cc615704b5f5 yaffs2: Fix miscalculation of devname buffer length
    8ef2e22dcf91 yaffs2: convert user_namespace to mnt_idmap
    c9c749f9f7d3 yaffs2: replace bdevname call with sprintf
    395b01cdc39d yaffs2: convert read_page -> readfolio
    d98b07e43ba6 yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL
    613c6d50fdbe yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name
    622c4648936f yaffs2: v5.12+ build fixups (not runtime tested)
    7562133d4090 yaffs: include blkdev.h
    dbd44252cd59 yaffs: fix misplaced variable declaration
    c223a10b1ac0 yaffs2: v5.6 build fixups
    90f6007cfbf4 yaffs2: fix memory leak when /proc/yaffs is read
    37ee169c5ea1 yaffs: add strict check when call yaffs_internal_read_super
    b6e007b8abb6 yaffs: repair yaffs_get_mtd_device
    fb98f65a466a yaffs: Fix build failure by handling inode i_version with proper atomic API
    51e0aac75ea2 yaffs2: fix memory leak in mount/umount
    2b74a0cae7b0 yaffs: Avoid setting any ACL releated xattr
    ff4130a9c376 Yaffs:check oob size before auto selecting Yaffs1
    ba95b409c67c fs: yaffs2: replace CURRENT_TIME by other appropriate apis
    8fa35eba9056 yaffs2: adjust to proper location of MS_RDONLY
    1eb5deaad8c4 yaffs2: import git revision b4ce1bb (jan, 2020)
    4dce67c1e8c8 initramfs: allow an optional wrapper script around initramfs generation
    2f603d83fcc4 pnmtologo: use relocatable file name
    664a6a0a484b tools: use basename to identify file in gen-mach-types
    9de64bc0c185 lib/build_OID_registry: fix reproducibility issues
    ae9b80797295 vt/conmakehash: improve reproducibility
    a972323151bd iwlwifi: select MAC80211_LEDS conditionally
    15d2adcc0198 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119)
    5556a6c04b19 arm64/perf: Fix wrong cast that may cause wrong truncation
    5552dc768ffc defconfigs: drop obselete options
    00fe4152df31 arm64/perf: fix backtrace for AAPCS with FP enabled
    3888d0652edf linux-yocto: Handle /bin/awk issues
    3d55d299f23a uvesafb: provide option to specify timeout for task completion
    23c068c080be uvesafb: print error message when task timeout occurs
    edbfc939266e compiler.h: Undef before redefining __attribute_const__
    c99ae7e2a19a vmware: include jiffies.h
    572d84d928c8 Resolve jiffies wrapping about arp
    fdcd47cac843 nfs: Allow default io size to be configured.
    927d48801098 check console device file on fs when booting
    57cc27f821dd mount_root: clarify error messages for when no rootfs found
    1b53d82a8152 mconf: fix output of cflags and libraries
    1811da09f42c menuconfig,mconf-cfg: Allow specification of ncurses location
    83c2e0c6eb1f modpost: mask trivial warnings
    6de673039484 kbuild: exclude meta directory from distclean processing
    6decd32815f5 powerpc: serialize image targets
    f6b683b38318 arm: serialize build targets
    e798b09ebf57 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition
    dc8a1e5a88f8 x86_64_defconfig: Fix warnings
    68491e5f72b6 powerpc/ptrace: Disable array-bounds warning with gcc8
    d71ebfce3004 powerpc: Disable attribute-alias warnings from gcc8
    62f50884b8b1 powerpc: kexec fix for powerpc64
    da6871c62c37 powerpc: Add unwind information for SPE registers of E500 core
    f161c880c11d mips: make current_cpu_data preempt safe
    5e94a8247ce7 mips: vdso: fix 'jalr $t9' crash in vdso code
    19e36714b1c7 mips: Kconfig: add QEMUMIPS64 option
    e2e537db3cbd 4kc cache tlb hazard: tlbp cache coherency
    aee9870611e5 malta uhci quirks: make allowance for slow 4k(e)c
    881948cd1517 drm/fb-helper: move zeroing code to drm_fb_helper_fill_var
    98ec1963fcb7 arm64: defconfig: cleanup config options
    f1727c537ba8 vexpress: Pass LOADADDR to Makefile
    4474c32dc24a arm: ARM EABI socketcall
    75e31a2b70fd ARM: LPAE: Invalidate the TLB for module addresses during translation fault

(From OE-Core rev: 0bd693d60a5e82f2aca99aa6ba21da217884a4e2)

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 7829fdb1f05cf04d55d25db2d3ff705626008105)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:44 -08:00
Mark Hatle
85ceda54ce cve-update-nvd2-native: Handle BB_NO_NETWORK and missing db
The custom do_fetch routine is ignoring BB_NO_NETWORK, add a check for this
as the correct behavior for the user is to set:
  CVE_DB_UPDATE_INTERVAL = "-1"

If CVE_DB_UPDATE_INTERNAL is set to -1, check that a DB file exists, if not
we need to error so the user can deal with this.

Note, MIRRORs are NOT handled by this code.

(From OE-Core rev: 062c125f41c3fc3fec0938b24f847ed566357c84)

Signed-off-by: Mark Hatle <mark.hatle@amd.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 337c0806d2784d74bee8d6420fb8b4d48795d5fa)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(cherry picked from commit 2bc4623a910dfa3a22cd054ea1e0f2dd59d74eea)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-18 06:26:44 -08:00
Antonin Godard
7117d115ea ref-manual: move runtime-testing section to the test-manual
In the same fashion as the previous commit ("ref-manual/packages: move
ptest section to the test-manual"), move the runtime testing section of
the development tasks manual to the test environment manual.

Add a link to it from the test-manual/intro document.

(From yocto-docs rev: 79aa34db34def525a11c41d951365bcb891318c4)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 6b44257874858db3aa426d3e84a79c41cb4937a3)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Antonin Godard
3f782b6e45 ref-manual/packages: move ptest section to the test-manual
[ YOCTO #15106 ]

It makes more sense to document ptests in the test-manual. Since ptests
are still related to packages, keep a link to ptests from packages.rst
to the test-manual.

Reported-by: Yoann Congal <yoann.congal@smile.fr>
(From yocto-docs rev: 110e15c4407dfc03c7d931e4488eb43dbfad7570)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit b389c06b709e4791e1cce5e8a5b58f6b0cd03a14)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Antonin Godard
da6fec8a1d SSTATE_MIRRORS/SOURCE_MIRROR_URL: add instructions for mirror authentication
[ YOCTO #15218 ]

There are different ways of configuring the build host when
authentication to a mirror (SSTATE_MIRRORS or SOURCE_MIRROR_URL) is
required.

Document these methods, and begin with the preferred approach which is
to edit ~/.netrc appropriately. When that is not possible, specifying
the credentials from the URL is also possible, so document it as well.

Reported-by: peter.zsifkovits@at.bosch.com
Tested-by: Antonin Godard <antonin.godard@bootlin.com> # Debian 12 container
(From yocto-docs rev: 728d6fc872c4646004919f3487a5ee0bae2d16e9)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 4c303cce0627e0f2ce52e72597541e220585aaed)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Antonin Godard
eda687eb0d ref-manual/devtool-reference: add warning note on deploy-target and shared objects
The command `devtool deploy-target` does not handle any dependency of
the application, even when properly listed in DEPENDS or RDEPENDS. While
the current documentation was clear on that, it felt needed to add a
note on the fact that build-time dependencies may also result in
runtime dependencies, especially for people new to the project.

Add a warning block below the existing deploy-target documentation.
Also, link to the Overview and Concepts page, which explains it
thoroughly.

[ YOCTO #14377 ]

Reported-By: Robert Berger <pokylinux@reliableembeddedsystems.com>
(From yocto-docs rev: 2b9ad30e440951d8c9e2182cea3841e6e326943f)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 56c84004daad5f8a5db53e36852331435d57c8af)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Antonin Godard
1c0c8e4b90 contributor-guide/submit-changes.rst: suggest to remove the git signature
By default when sending patches Git adds the git version at the bottom
of the patch, which is not necessary in most cases. Suggest to remove it
when configuring Git when sending patches.

Suggested-By: Jaekyu Lee <jaekyu.lee@lge.com>
(From yocto-docs rev: 05455e916b3c94a73b358ac4f4189cc66bec35f2)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d3465691231f10466703198a831a681803ffdfad)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Antonin Godard
466e5def1b ref-manual/qa-checks: remove patch-status-core/patch-status-noncore
These QA checks were merged as "patch-status" after commit
61a881fdbe8b5a21c6276b8a5d06cc30486b1eb3 ("insane: Improve patch-status
layer filtering") in OE-Core.

[ YOCTO #15345 ]

Reported-By: Diego Sueiro <diego.sueiro@arm.com>
(From yocto-docs rev: 4f18055f796d43e7e6901da0ee9537a165bdf2a5)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 3f3a9f53fea6c7d533b9e999dc959dcc3bed7745)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Trevor Gamblin
08b9ccdba3 reproducible-builds.rst: show how to build a single package
Add a bit to the "Can we prove the project is reproducible?" section to
show how OEQA_REPRODUCIBLE_TEST_TARGET can be used to test a single
package (rather than the world build), as this may be useful for
maintainers.

[YOCTO #15619]

(From yocto-docs rev: 6430ed0572ca5a6e10629aa27a05d4b262e87548)

Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com>
Reviewed-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c4bc09f61621938086be377653121d6b4e62b570)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Changqing Li
11ebb86111 sanity.bbclass: skip check_userns for non-local uid
Bitbake preserve network for non-local uid, refer [1],
so check_userns is not needed for non-local uid

[1] https://git.openembedded.org/bitbake/commit/?id=4eafae7904bae6e5c6bc50356e8a9077f2e207fa

(From OE-Core rev: c3e0666dd2624c20c5f32657846d6f044046205b)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 808d0cece22bcbee15236717e158da247cbedaf1)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Mikko Rapeli
e146288bcb ovmf-native: remove .pyc files from install
They break builds which share sstate files on different
machines and paths:

ERROR: ovmf-edk2-stable202408-r0 do_prepare_recipe_sysroot: Error executing a python function in exec_func_python() autogenerated:

The stack trace of python calls that resulted in this exception/failure was:
File: 'exec_func_python() autogenerated', lineno: 2, function: <module>
     0001:
 *** 0002:extend_recipe_sysroot(d)
     0003:
File: '/srv/pokybuild/yocto-worker/oe-selftest-fedora/build/meta/classes-global/staging.bbclass', lineno: 624, function: extend_recipe_sysroot
     0620:
     0621:    # Handle deferred binfiles
     0622:    for l in binfiles:
     0623:        (targetdir, dest) = binfiles[l]
 *** 0624:        staging_copyfile(l, targetdir, dest, postinsts, seendirs)
     0625:
     0626:    bb.note("Installed into sysroot: %s" % str(msg_adding))
     0627:    bb.note("Skipping as already exists in sysroot: %s" % str(msg_exists))
     0628:
File: '/srv/pokybuild/yocto-worker/oe-selftest-fedora/build/meta/classes-global/staging.bbclass', lineno: 165, function: staging_copyfile
     0161:        os.symlink(linkto, dest)
     0162:        #bb.warn(c)
     0163:    else:
     0164:        try:
 *** 0165:            os.link(c, dest)
     0166:        except OSError as err:
     0167:            if err.errno == errno.EXDEV:
     0168:                bb.utils.copyfile(c, dest)
     0169:            else:
Exception: FileExistsError: [Errno 17] File exists: '/srv/pokybuild/yocto-worker/oe-selftest-fedora/build/build-st-667282/tmp/sysroots-components/x86_64/ovmf-native/usr/bin/edk2_basetools/BaseTools/Source/Python/AutoGen/__pycache__/WorkspaceAutoGen.cpython-312.pyc' -> '/srv/pokybuild/yocto-worker/oe-selftest-fedora/build/build-st-667282/tmp/work/core2-64-poky-linux/ovmf/edk2-stable202408/recipe-sysroot-native/usr/bin/edk2_basetools/BaseTools/Source/Python/AutoGen/__pycache__/WorkspaceAutoGen.cpython-312.pyc'

(From OE-Core rev: d89f2533f1b394f443117d6c935ee04a3c6741e7)

Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit facd9e17fa53e2fb3a828b3f179cfb659be75d37)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Xiangyu Chen
ffa9b87ec8 lttng-modules: fix sched_stat_runtime changed in Linux 6.6.66
The following commit has been backported into the 6.6.y branch.

See upstream commit:

    commit 5fe6ec8f6ab549b6422e41551abb51802bd48bc7
    Author: Peter Zijlstra <peterz@infradead.org>
    Date:   Mon Nov 6 13:41:43 2023 +0100

        sched: Remove vruntime from trace_sched_stat_runtime()

That caused building the lttng-modules report compile error:

       tracepoint-event-impl.h:133:6: error: conflicting types for
       'trace_sched_stat_runtime';

The fix is still pending on lttng review board, backport it to oe-core to
de-block the build issue.

(From OE-Core rev: 598b2f27d74e08eb6089eadad68f80b2f1ef71de)

Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Mark Hatle
339c54b220 populate_sdk_ext: write_local_conf add shutil import
Add shutil import to resolve error:

Exception: NameError: name 'shutil' is not defined, Did you forget to import 'shutil'

(From OE-Core rev: 759fb4bb4f5d5cf7f124f64b9314a34e41f58d23)

Signed-off-by: Mark Hatle <mark.hatle@kernel.crashing.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b64263a43b4d82f1ebba13815bccb8a8cd3127f9)
Signed-off-by: Mark Hatle <mark.hatle@kernel.crashing.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Soumya Sambu
55c2943e43 python3-requests: upgrade 2.32.0 -> 2.32.3
Changelog:
https://requests.readthedocs.io/en/latest/community/updates/#release-history

2.32.3 (2024-05-29)
  * Bugfixes - Fixed bug breaking the ability to specify custom SSLContexts
    in sub-classes of HTTPAdapter. (#6716)
  * Fixed issue where Requests started failing to run on Python versions
    compiled without the ssl module. (#6724)

2.32.2 (2024-05-21)
  * Deprecations - To provide a more stable migration for custom HTTPAdapters
    impacted by the CVE changes in 2.32.0, we’ve renamed _get_connection to a
        new public API, get_connection_with_tls_context. Existing custom
        HTTPAdapters will need to migrate their code to use this new API.
        get_connection is considered deprecated in all versions of
        Requests>=2.32.0.
  * A minimal (2-line) example has been provided in the linked PR to ease
    migration, but we strongly urge users to evaluate if their custom adapter
        is subject to the same issue described in CVE-2024-35195. (#6710)

2.32.1 (2024-05-20)
  * Bugfixes - Add missing test certs to the sdist distributed on PyPI.

https://github.com/psf/requests/compare/v2.32.0...v2.32.3

Also transition to using python_setuptools_build_meta.

(From OE-Core rev: e1787271b07c605df2843d82d65e1c3d2e2114e6)

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Divya Chellam
21fdfa9f06 libxml2: Upgrade 2.12.8 -> 2.12.9
Changes between 2.12.8 -> 2.12.9
================================
https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.9

Security
* [CVE-2024-40896] Fix XXE protection in downstream code

Improvements
* Undeprecate xmlKeepBlanksDefault.

(From OE-Core rev: 774b10921b1e46d99338bb8c047d7f094d5ce7bd)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Guðni Már Gilbert
321943e627 python3: upgrade 3.12.7 -> 3.12.8
Changelog:
https://docs.python.org/release/3.12.8/whatsnew/changelog.html#python-3-12-8

(From OE-Core rev: db5081254adacf6c87269fd43af7199267ad535c)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Guðni Már Gilbert
a7abc52998 python3: upgrade 3.12.6 -> 3.12.7
Changelog:
https://docs.python.org/release/3.12.7/whatsnew/changelog.html#python-3-12-7

(From OE-Core rev: 197048667f69ed559baf54831eb7b1606320f3e8)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
aszh07
e5c348378f libarchive: Fix CVE-2024-20696
Add Patch file to fix CVE-2024-20696

CVE: CVE-2024-20696

(From OE-Core rev: a3b0a4a53e99e4faa42a6e7be5713b12acc63dba)

Signed-off-by: Nitin Wankhade <nitin.wankhade@kpit.com>
Signed-off-by: Nikhil R <nikhilr5@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
fc9273a57e gstreamer1.0: ignore CVEs fixed in plugins recipes
These were fixed in previous commits.

(From OE-Core rev: 5c582778954a05f102e292a0516b73b010d289a0)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
6a76806ceb gstreamer1.0-plugins-base: patch CVE-2024-47835
Pick commit from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8039

(From OE-Core rev: e9113fafef9cb2f060c9728d1e1bebdd76baad47)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
cd24f9434e gstreamer1.0-plugins-good: patch several CVEs
Pick commits from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8042

(From OE-Core rev: 4763e9911e82c886a02727bf654872280138d83e)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
1eed4bd135 gstreamer1.0-plugins-good: patch CVE-2024-47774
Pick commit from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8043

(From OE-Core rev: cc560b159f6629bc018ce6d832551a81d4c3f8c8)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
731ed65861 gstreamer1.0-plugins-good: patch CVE-2024-47606
Pick commit related to gstreamer from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032

(From OE-Core rev: d68a84dd3419811ec7f487907d7412c6105979d0)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
77aed6aa09 gstreamer1.0-plugins-good: patch CVE-2024-47606
Pick commit related to plugins-good from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032

(From OE-Core rev: 30f2b1c6b10e064ce0f0f1910d2740e6ccc86251)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
6a37fba5a7 gstreamer1.0-plugins-base: patch CVE-2024-47600
Pick commit from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8034

(From OE-Core rev: 13e66d4e616e66d278cd96bb04da4cc7e599626b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
76825dc65a gstreamer1.0-plugins-good: patch CVE-2024-47599
Pick commits from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8040

(From OE-Core rev: ba5545302daee0fb5ac2f3ca45cf8524cee278dc)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:36 -08:00
Peter Marko
7e005c1f66 gstreamer1.0-plugins-base: patch CVE-2024-47542
Pick commits from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8033

(From OE-Core rev: 8a0c3c92ec3bf150c0697d25c70ad149b2d82f0e)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:35 -08:00
Peter Marko
2187501065 gstreamer1.0-plugins-base: patch CVE-2024-47541
Pick commits from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8036

(From OE-Core rev: c81dae9e755d28eb514bfa32426ef2d8fff78e56)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:35 -08:00
Peter Marko
2bf4325722 gstreamer1.0-plugins-good: patch several CVEs
Pick commits from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8057

(From OE-Core rev: 4edd9caa9703e067167c4a185c7338c4e89f795b)

Signed-off-by: Peter Marko <peter.marko@siemens.com>

fixup! gstreamer1.0-plugins-good: patch CVE-2024-47540 and CVE-2024-47601

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:35 -08:00
Peter Marko
144b7586d1 gstreamer1.0-plugins-good: patch CVE-2024-47613
Pick commit from:
https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8041

(From OE-Core rev: 6236088fc43f7d2e8a01bb6e3937969ced8a7f6d)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:35 -08:00
Peter Marko
0ebfc58642 gstreamer1.0-plugins-base: patch CVE-2024-47615
Pick commits from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8038

(From OE-Core rev: fbf7092a67703ff3101cce55bf33bcfc24339503)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:35 -08:00
Peter Marko
130884e63e gstreamer1.0-plugins-base: patch CVE-2024-47607
Pick commit from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8037

(From OE-Core rev: 0cdac58a6a7ec25404b8a67508604844d282345a)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:35 -08:00
Peter Marko
0d591c95a3 gstreamer1.0-plugins-base: patch CVE-2024-47538
Pick commit from:
* https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8035

(From OE-Core rev: e7dbf6d73a11e6e9ec16035711179f451044eb09)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:35 -08:00
Peter Marko
6895713392 gstreamer1.0-plugins-good: fix several CVEs
Cherry-pick commits from branch 1.22 per [1].
Also cherry-pick [2] so these apply cleanly.

[1] https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8059
[2] 62de06c7a4

(From OE-Core rev: 33c2611c3998f25bf606b5a940c09b70ce04674c)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-09 06:25:35 -08:00
Antonin Godard
60b5842348 poky.conf: add new tested distros
These are currently tested on the autobuilder for Scarthgap.

(From meta-yocto rev: bd166d1fb8dc1bed7e71bd06b970a3da9149203e)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-26 05:50:14 -08:00
Michael Opdenacker
47b43a94da dev-manual/bmaptool.rst: simplify and fix instructions
- Remove duplicate instructions

- Detail how to run bmaptool directly if you installed it on your host
  instead of building it through the ``bmaptool-native`` recipe,
  as running "oe-run-native bmaptool-native bmaptool ..." won't work
  in this case.

- Use "chmod a+w" instead of "chmod 666", better advice,
  and only run "chmod" in the option that runs "oe-run-native"

(From yocto-docs rev: a1e4f18af6b0b10cece83c53ebb14052a0b94314)

Signed-off-by: Michael Opdenacker <michael.opdenacker@rootcommit.com>
Reviewed-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 4afa71ef6e5bf1db126c80e6d987f588d0b5a086)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Michael Opdenacker
e19629f1fc dev-manual/bmaptool.rst: correct command for bmaptool-native
Using only "bitbake bmaptool-native", running "oe-run-native bmaptool-native bmaptool ..."
fails as follows:

Error: Have you run 'bitbake bmaptool-native -caddto_recipe_sysroot'?

Running the "bitbake bmaptool-native -caddto_recipe_sysroot" target
is actually sufficient.

(From yocto-docs rev: c43eea3875e265c8a62b9f7323365b8d740a39f8)

Signed-off-by: Michael Opdenacker <michael.opdenacker@rootcommit.com>
Reviewed-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 72fe904a3bbb5e2c7279ab1f119c2beca200dcf2)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Michael Opdenacker
37f15b8e70 dev-manual: fix styling of references to bmaptool
To follow the styling conventions when we are
refering to the name of a tool instead of the command itself
(documentation/standards.md).

This also improves the HTML rendering of the bmaptools subsection.

(From yocto-docs rev: 55146fae45e8c2de1d0f7242f1c89f3e165d77c9)

Signed-off-by: Michael Opdenacker <michael.opdenacker@rootcommit.com>
Reviewed-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c569d840c4b6f43e10629b6f1ff45189211e27a9)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Antonin Godard
a789e8622a Update the documentation for SRCPV
The variable SRCPV is deprecated since 4.3. Instead of including SRCPV
in PV, including the sign "+" is enough for bitbake to add the source
control information to PKGV during the packaging phase.

Update the documentation for SRCPV and the places where it was used.
When instructions previously referred to SRCPV, replace by mentioning to
include "+" in the assignment.

In most examples, "+git" is added to PV as it is the most popular SCM.
Simply adding "+" is also possible, although it is better practice to
include the SCM name, so give that example.

Update the gcompat example with l3afpad as it didn't include "+git" in
its PV definition anymore.

(From yocto-docs rev: ef4d259842d9b1dd2d08ee38e00f932852f70543)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit ee16c96202e5027d1a8d7e89e11c25f127c78326)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Alexander Kanavin
52a2a1101a rust: add reproducibility patch to eliminate host leakage
[YOCTO #15185]

(From OE-Core rev: 01423828248b75e1f5afe2e5959ccd971df875cd)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 924df18b47e9a69fa295bafe37bdb39d8eaea2bb)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Ross Burton
c75016dcf3 python3: add dependency on -compression to -core
importlib.metadata is part of -core, but that will import zipfile which
is part of -compression.

Obviously this shows that our packaging of the Python modules is not
optimal.  I plan to follow up with a redesign of the splitting which
focuses on simply pulling out the larger or esoteric modules and
having a more featureful core.

(From OE-Core rev: 05166eafb99cf8c7adb6879277069ab384a2f8df)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Khem Raj
a56d901283 python3: Drop empty patch
The fix brought by this patch is already part of python 3.12.3
therefore drop it.

(From OE-Core rev: 555623d2378138fdcfae95c04e06ba384cebab5b)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Sunil Dora
19fce77a5f gcc: Fix c++: tweak for Wrange-loop-construct
This commit updates the warning to use a check for "trivially constructible" instead of
"trivially copyable." The original check was incorrect, as "trivially copyable" only applies
to types that can be copied trivially, whereas "trivially constructible" is the correct check
for types that can be trivially default-constructed.

This change ensures the warning is more accurate and aligns with the proper type traits.

LLVM accepted a similar fix:
https://github.com/llvm/llvm-project/issues/47355

PR c++/116731 [https://gcc.gnu.org/bugzilla/show_bug.cgi?id=116731]

(From OE-Core rev: 614a8e3a06003dfcbf1f32dc2d6f4d18f74b71a4)

Signed-off-by: Marek Polacek <polacek@redhat.com>
Signed-off-by: Sunil Dora <sunilkumar.dora@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Archana Polampalli
59a2ca0cfe ffmpeg: fix CVE-2024-35368
FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame
function within libavcodec/rkmppdec.c.

(From OE-Core rev: 53528caafa576a2f6417436cc0dba8be06e75048)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Archana Polampalli
3d0ff200b3 ffmpeg: fix CVE-2024-35367
FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_altivec.c,
static const vec_s8 h_subpel_filters_outer

(From OE-Core rev: 64d77d422d3c99d8a246ab03edfb54d9d185326e)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Archana Polampalli
93dc7300c0 ffmpeg: fix CVE-2024-35366
FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options
function of sbgdec.c within the libavformat module. When parsing certain options,
the software does not adequately validate the input. This allows for negative
duration values to be accepted without proper bounds checking.

(From OE-Core rev: a07bc254011736c0f0445607c56609be677ea8a7)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Jiaying Song
8f8989071a subversion: fix CVE-2024-46901
Insufficient validation of filenames against control characters in
Apache Subversion repositories served via mod_dav_svn allows
authenticated users with commit access to commit a corrupted revision,
leading to disruption for users of the repository. All versions of
Subversion up to and including Subversion 1.14.4 are affected if serving
repositories via mod_dav_svn. Users are recommended to upgrade to
version 1.14.5, which fixes this issue. Repositories served via other
access methods are not affected.

References:
https://nvd.nist.gov/vuln/detail/CVE-2024-46901

Upstream patches:
https://subversion.apache.org/security/CVE-2024-46901-advisory.txt

(From OE-Core rev: 16c212bd9a9e9c35256ff308da72a518c76ce11d)

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Yash Shinde
1e47fd8e44 binutils: Fix CVE-2024-53589
A buffer overflow vulnerability exists in GNU Binutils’ objdump utility
when processing tekhex format files. The vulnerability occurs in the
Binary File Descriptor (BFD) library’s tekhex parser during format identification.
Specifically, the issue manifests when attempting to read 8 bytes at an address
that precedes the global variable ‘_bfd_std_section’, resulting in an out-of-bounds read.

Backport a patch from upstream to fix CVE-2024-53589.
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=e0323071916878e0634a6e24d8250e4faff67e88]

(From OE-Core rev: 15635eb807ea1cbf0fd04e0cbe9cf169df107a05)

Signed-off-by: Yash Shinde <Yash.Shinde@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-23 05:46:32 -08:00
Antonin Godard
aee2a47dd9 system-requirements.rst: add dependencies for pdf builds
With the recent changes from commit
bd6265ca323fac547a197bb516dc4a9ef3897508 ("doc: Makefile: add support
for xelatex"), the list of dependencies needs to be updated.

The initial list of dependencies was made for Ubuntu/Debian, and the
packages were translated for the other distros using pkgs.org.

Add them separately from the rest of the dependencies as they pull a
_lot_ of additional dependencies (for LaTeX).

Move the texlive-fncychap documentation dependency to the PDF specific
dependency.

Notes:
- Fedora/OpenSUSE do not have the "lang-all" texlive collection, so
  install all available languages.
- AlmaLinux does not seem to provide texlive-collection-fontsextra,
  texlive-collection-lang*, and texlive-collection-latexextra, so add a
  warning about that.

(From yocto-docs rev: 804240fa86fee63d0d2dd029d941cf14b23bd730)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 02c090718ac602f7d4760dd28dadbf0631668d49)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-18 06:43:48 -08:00
Antonin Godard
24c9c0a423 system-requirements: update list of supported distros
To match the list in meta-poky/conf/distro/poky.conf.

(From yocto-docs rev: 74639cae135e254814c350f01f6e333d6d764fe9)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c9c3f6896e4bc967a9b394574532735babb70397)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-18 06:43:48 -08:00
Antonin Godard
dc9f46de28 system-requirements: add fedora 39 to supported distros
(From yocto-docs rev: 7b829845aa5a06bdcad0005fc44b24e2757a3d84)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit dc7fd0e56fbfed77975f6b4ed2106331476ef7f3)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-18 06:43:48 -08:00
Antonin Godard
e92efa5fe9 poky.yaml.in: replace inkscape dependency by librsvg2-bin
inkscape used to be a requirement to convert SVG images to PNGs/PDFs,
but we replaced it recently by rsvg-convert.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 19e18d3019209e9789461502bc5147856faef9c3)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 8c0bb4e41c203a0a7a31c2bdc26834d87a83413a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-18 06:43:48 -08:00
Antonin Godard
5b7a72ec8a poky.yaml.in: add missing locales dependency
This is a requirement for building the documentation, otherwise we get
(on Ubuntu 24.04):

     File "/usr/lib/python3.12/locale.py", line 615, in setlocale
       return _setlocale(category, locale)
              ^^^^^^^^^^^^^^^^^^^^^^^^^^^^
   locale.Error: unsupported locale setting

(From yocto-docs rev: 1b0353a230dce361fe29d4d184aebd9af28a9937)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 0943a7b67ef0012b5d9badc15e0c579dbb9014ae)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-18 06:43:48 -08:00
Antonin Godard
52e57af6a8 Gather dependencies in poky.yaml.in
We used to have packages here and there in system-requirements.rst for
each distro. Instead, gather all the dependencies in poky.yaml.in so we
have an overview of what we provide for each distro.

Use yaml ">" to list the dependencies in alphabetical order, one entry
per line, which makes them easier to read and compare among distros.

Rename UBUNTU_… variables to UBUNTU_DEBIAN_…, since these are used for
both distros.

(From yocto-docs rev: 33c0656706f5110381681b212877d39ec2148cc6)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 1ed6118b7cf1b5dcbfca753c83fa30fb97bf44ad)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-18 06:43:48 -08:00
Guénaël Muller
ccdf8c615f ref-manual: use standardized method accross both ubuntu and debian for locale install
Modify locale installation method to be standard accross all debian-based distributions.
Pre-existing method is available only on Ubuntu, locale-gen tool has no parameter in Debian.

(From yocto-docs rev: 70212d4780df6b7b74bd5c428d71b49d9a91c403)

Signed-off-by: Guénaël Muller <guenael.muller@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Reviewed-by: Antonin Godard <antonin.godard@bootlin.com>
Tested-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 30002019198a168e48537407bb928facb26af82a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-18 06:43:48 -08:00
Richard Purdie
704d1395b1 cve-update-nvd2-native: Tweak to work better with NFS DL_DIR
After much debugging, the corruption issues on the autobuilder appear to
be due to the way sqlite accesses database files. It doesn't change the
file timestamp after making changes, which for reasons unknown, confuses
NFS. As soon as the file is touched, NFS becomes fine again accross the
whole cluster, as if by magic.

We could try and debug further but putting a "touch" call into the code
is easy and harmless. Lets hope this removes this annoying source of
errors.

(From OE-Core rev: b19b1e905d966443c4e4d17dfaeb299ae2526575)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-18 06:43:48 -08:00
Steve Sakoman
2541a8171f build-appliance-image: Update to scarthgap head revision
(From OE-Core rev: 336eec6808710f260a5336ca8ca98139a80ccb14)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:24:12 -08:00
Steve Sakoman
6a80352d51 poky.conf: bump version for 5.0.6
(From meta-yocto rev: e9b828fdf46d3b3ad6ccd51710845bdfd29357bb)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:54 -08:00
Ross Burton
61ec07c6cf sanity: check for working user namespaces
If user namespaces are not available (typically because AppArmor is
blocking them), alert the user.

We consider network isolation sufficiently important that this is a fatal
error, and the user will need to configure AppArmor to allow bitbake to
create a user namespace.

[ YOCTO #15592 ]

(From OE-Core rev: 3577ceca39c7c3be81563de9ccf06a805f61d3ca)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b6af956fe6e876957a49d4abf425e8c789bf0459)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:54 -08:00
Guðni Már Gilbert
6ae367c861 dnf: drop python3-iniparse from DEPENDS and RDEPENDS
python3-iniparse dependency was dropped 2019, see the
following commit as reference:
d7d0e0e2f9

When looking at the Git history, this happened around tag 4.2.1

(From OE-Core rev: 3273ace1e5e4b0573ceaa44f2710f651db9ae525)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:54 -08:00
Guðni Már Gilbert
30fd1ca222 python3-poetry-core: drop python3-six from RDEPENDS
Looking at the history, python3-six was removed as a dependency
in the poetry.lock file in v1.5.2

Even before v1.5.2 and until now (v1.9.1) there is no code in
the package which imports the six module. So it can be safely
dropped from the recipe.

(From OE-Core rev: 09378088bba46b6e505f69381496da0ecd0ecf2c)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:54 -08:00
Guðni Már Gilbert
418996278d systemd-boot: drop intltool-native from DEPENDS
intltool was dropped as a dependency in v236
See commit for reference:
c81217920e

(From OE-Core rev: fffffc22e9cdfee5afe05baadaae941785f5a18b)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:54 -08:00
Guðni Már Gilbert
83293db0bc systemd: drop intltool-native from DEPENDS
intltool was dropped as a dependency in v236
See commit for reference:
c81217920e

(From OE-Core rev: 60e6fd2b7e3adfbe4260cd266dbe245c745344a9)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:54 -08:00
Divya Chellam
a5e0237596 libpam: fix CVE-2024-10041
A vulnerability was found in PAM. The secret information is
stored in memory, where the attacker can trigger the victim
program to execute by sending characters to its standard
input (stdin). As this occurs, the attacker can train the
branch predictor to execute an ROP chain speculatively.
This flaw could result in leaked passwords, such as those
found in /etc/shadow while performing authentications.

References:
https://security-tracker.debian.org/tracker/CVE-2024-10041

Upstream patches:
b3020da7da

(From OE-Core rev: 0e76d9bf150ac3bf96081cc1bda07e03e16fe994)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:54 -08:00
Peter Marko
cbafea41f5 qemu: set CVE-2024-6505 to fixed
CVE patch was removed on last upgrade as fixing commit was backported to
stable 8.2.x branch.

NVD DB has this CVE as version-less (with "-").
So explicit status set is needed to mark it as fixed.

(From OE-Core rev: 64359ec3b60ae68d39c2e6444f903fd20e397cff)

(From OE-Core rev: 33050bf82add43409675122a8f29acbcda4e8439)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:53 -08:00
Archana Polampalli
c2186ed9ea ffmpeg: fix CVE-2024-7055
A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as critical.
This affects the function pnm_decode_frame in the library /libavcodec/pnmdec.c.
The manipulation leads to heap-based buffer overflow. It is possible to initiate
the attack remotely. The exploit has been disclosed to the public and may be used.
Upgrading to version 7.0.2 is able to address this issue. It is recommended to
upgrade the affected component. The associated identifier of this vulnerability is VDB-273651.

(From OE-Core rev: 71a9c2d01ad8ed83f9da6e6b9541fcf1d9baed48)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:53 -08:00
Archana Polampalli
ac0988d9f2 ffmpeg: fix CVE-2023-49528
Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a
local attacker to execute arbitrary code and cause a denial of service (DoS)
via the af_dialoguenhance.c:261:5 in the de_stereo component.

(From OE-Core rev: a5e0e1f8be3c6611c09158c80e26848ae3d4f4e7)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:53 -08:00
Archana Polampalli
9edd744fd8 ffmpeg: fix CVE-2023-50007
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local
attacker to execute arbitrary code via theav_samples_set_silence function
in the libavutil/samplefmt.c:260:9 component.

(From OE-Core rev: b63ba0bff9e5b5e73d50b2b3ff805418fa98d7e5)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:53 -08:00
Archana Polampalli
34611ec3cb ffmpeg: fix CVE-2024-28661
Some of the changes are already present in recipe version

Ref:
148ada5577
https://ffmpeg.org/security.html

(From OE-Core rev: 4ca1544e95e327c7060efa845aa69c2a1eb1d782)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:53 -08:00
Archana Polampalli
2f5de1668c ffmpeg: fix CVE-2023-49501
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a
local attacker to execute arbitrary code via the config_eq_output function
in the libavfilter/asrc_afirsrc.c:495:30 component.

(From OE-Core rev: 873025145d42ffe75d421884160ec299d85d21ef)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-13 05:21:53 -08:00
Richard Purdie
f636d6eed7 resulttool: Improve repo layout for oeselftest results
Having all oe-selftest results on top of each other results in a large 640MB
json file which is hard to use. Split the results out per machine and test type.

This also stops the toolchain raw logs from overwriting each other meaning more
than one MACHINE is preserved.

(From OE-Core rev: 92cb4641ff4ec8c1f681bca21cfeaf2ba6923ab7)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4b890f04bc7d147b4a11b824a84f3d2abd75ac54)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:15 -08:00
Richard Purdie
7c85649416 resulttool: Trim the precision of duration information
The duration values have pointless amounts of precision. Removing some of the
least significant digits reduces result size and makes the results easier to read.

(From OE-Core rev: 7460a4bb50c696c39add79c2b299b5e636532b8c)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a789a2e6d97bb8efd663226a17db8d1ca6c1e40f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:15 -08:00
Richard Purdie
23f695fc77 resulttool: Clean up repoducible build logs
We've improved the data stored for reproduicible builds. Teach resulttool how
to apply those cleanups when reprocessing data so we can reduce results file
sizes and make the data easier to process.

(From OE-Core rev: 82acc3b1e410afd40fe8a67c77bfe69add95066e)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b799c57ae6d61c1b1c7035c8a2c4ba6ee08d1a81)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:15 -08:00
Richard Purdie
b30a7b6224 resulttool: Handle ltp rawlogs as well as ptest
Improve the rawlogs handling to include ltp logs as well as the ptest ones to
reduce the size of the results git repos.

(From OE-Core rev: 6b164f7fe556824c85873ce2ca4257b3a4956cdf)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a0a1954d559609c2c1ca16936d0d68eb3c4c6b45)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:15 -08:00
Richard Purdie
05b32cacc0 resulttool: Add --logfile-archive option to store mode
Storing the log files inside the testresults git repo isn't scaling and isn't
really appropriate use of a git repository. Allow these to be optionally stored
in a separate filesystem location so the git repo can remain managable.

(From OE-Core rev: 3472833b50b5ec97ec19f510ba926ab6aa5429b3)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 1afc0f3d7e93fa8496be241e9622d3b9a6904bd5)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:15 -08:00
Richard Purdie
d349ce2700 resulttool: Fix passthrough of --all files in store mode
When using store mode, --all was broken as not all files were being preserved.
Fix this by limiting the scope of the git rm command.

(From OE-Core rev: 461140bede110b561f0bae46255d6a9435329e97)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9604561d2022b6c76b1cb4186d40800d1affdd2b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:15 -08:00
Richard Purdie
29e16888a5 oeqa/utils/gitarchive: Return tag name and improve exclude handling
Tweak the gitarchive exclude handling not to error if excluded files
don't match.

Also return the tagname created so that other code can then use it.

(From OE-Core rev: 0a5b4fabf8bf9b559295bb4d2583809ca11522f4)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 1adba3430faffdf6217b6a00533a3b48a9388abc)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:15 -08:00
Richard Purdie
a7ccf5b7bd resulttool: Use single space indentation in json output
Using 4 space indentation in resulted in hundreds of megabytes of extra file size
in general use. Reduce this to make filesizes more managable and reduce the processing
cost. Some level of indentation and spacing does make the files more readable and allows
use of git diff so we need to retain some of it.

(From OE-Core rev: 03fef3a99186863a0c460bd89bad40f2360a6930)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a274cdcaf852cca9497f0358f44dda99c06aacbe)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Richard Purdie
710ddc100c resulttool: Allow store to filter to specific revisions
We have a challenge on the autobuilder where test results from both OE-Core
and poky are being mixed together during result storage which is confusing the
data. Add a way to filter to specific revisions as the least worst way to fix
the various issues this is causing.

(From OE-Core rev: 974a6d5ebebc279df7c6994df7bd8c5d462e4447)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3f276a0dc65341668788853be2cf27ab6aa12b13)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Richard Purdie
e1c3e84dd5 selftest/reproducible: Clean up pathnames
There are several problems with these paths. Firstly they contain full
system paths which depend upon where the test was run. These are pretty
pointless and just take up a lot of space making the results files large.

Secondly, they contain the same path twice. The reference and target path
will always be the same thing in two different locations.

Strip off the prefix and remove the duplication. This does change the output
data but that can't really be avoided. It does shrink the results data and makes
it more readable.

(From OE-Core rev: 44ee8f69db5e008b5ac5e0dbf390bb4fcf704f07)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 81a44de36e864b08687451fd85aeba7c529fd7f7)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Richard Purdie
96900f953f selftest/reproducible: Drop rawlogs
The "rawlogs" data consists of a long string of results data which is
already in a structured data format. I can't see this is adding much
value in duplciating the data but it does create a huge string with a
lot of long problematic pathnames and inflates the results data size.

I suggest we drop this data as obsolete and not necessary.

(From OE-Core rev: 296f64cbf83c40759b368526335502a6b130aa14)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5b2c70fab2ffa409b861d83f048b65d458d03a90)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Changqing Li
924cf07fc0 rxvt-unicode.inc: disable the terminfo installation by setting TIC to :
Without this change, TIC is the native tic in recipe-sysroot-native.
By default, native tic has set its default terminfo path to native path:
${datadir}/terminfo; $HOME/.terminfo

When sstate cache is used, the cached native tic's terminfo path could
be a path not exist on current host, then native tic will try to install
terminfo to HOME dir, cause host contamination.

Disable the terminfo installation by setting TIC to :

(From OE-Core rev: 846071ec89d3dc5f392e9203c4e7e1e3ea27892c)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit fe35ead2c3135a18c346e7baa31d34b15c3e2d95)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Richard Purdie
de0a865f2d do_package/sstate/sstatesig: Change timestamp clamping to hash output only
The code was changing the timestamps of the files in the do_package output,
particularly the files added for debug sources. This was to do two things:

a) make do_package sstate more reproducible
b) ensure better hash equivalence matching

Unfortuately the debug source files are hardlinks into the source tree for
efficiency so touching these, touches a lot of files in ${B} and ${S}. This
causes unpredictable effects if compile is run again for example, or could
cause compiling in the install task.

The hash equivalence matching is of key importance but we can mimic that
using clamping of the file timestamps in the depsig output used to generate
the hashes.

This patch drops the global timestamp clamping, instead allowing the files
to retain their creation timestamps into sstate. This makes do_package sstate
slightly less reproducibile. We could clamp the sstate timestamps but that
would lead to two different sets of timestamps depending on whether the
data came from sstate or not. I'd prefer to have consistent code behaviour,
rather than differing behavhour depending on whether data came from sstate
or not.

If we wanted to have reproducibiliy and fix the "corruption" of S/B and have
consistent codepaths, the only other option would be two copies of the
sources, which could end up huge and seems the least desireable option.

This patch therefore drops the timestamp clamping in the sstate files
and tweaks the depsig data generation to clamp the timestamps for do_package
instead since this seems the best compromise.

I validated that rpm/deb/ipk files still generate correctly as before.

(From OE-Core rev: 9df0bf5775ec96773e77c489ba6a443037d65ab6)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 475759fdab7200488b2a568b2ba1aa31a456d113)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Hongxu Jia
de191df9f6 ovmf: fix CVE-2024-1298
Backport fix from upstream to resolve CVE-2024-1298

  284dbac43d

(From OE-Core rev: 2a6825a8ad6e5a600e458614ff7bb676ec9c5fac)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Hongxu Jia
7bd9a000b6 ovmf: fix CVE-2024-38796
Backport fix from upstream to resolve CVE-2024-38796

  c95233b852

(From OE-Core rev: 01743182b7a4bcbd47157a49da7af7b41546434c)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Richard Purdie
ae41df7b37 bitbake: runqueue: Fix scenetask processing performance issue
Analysis shows that "bitbake core-image-ptest-all" spends a lot of
time in scenequeue_updatecounters and much of it is rebuilding a set
which doens't change. Reorder the code to avoid that performance
glitch.

(Bitbake rev: f40a3a477d5241b697bf2fb030dd804c1ff5839f)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 923c19b9713e398d8e66e6d4422dfd4c18a03486)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Richard Purdie
ac3e66f1a6 bitbake: runqueue: Optimise setscene loop processing
Rather than looping through things we looped through on the previous execution,
start looping where we left off for setscene processing. This gives speed
improvements depending on the kind of build being executed.

(Bitbake rev: 28569e9796d4b34d7b77b4f79074ab7854850386)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 00f4d932e3af0eeb333339cbe942010fc76dee0f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Richard Purdie
4f26b1b6a5 bitbake: runqueue: Fix performance of multiconfigs with large overlap
There have been complaints about the performance of large multiconfig builds
for a while. The key missing data point was that the builds needed to have large
overlaps in sstate objects. This can be simulated by building the same things with
just different TMPDIRs. In runqueue/bitbake terms this equates to large numbers of
deferred tasks.

The issue is that the expensive checks in the setscene loop were hit every time
through runqueue's execute function before the check on deferred tasks. This leads
to task execution starvation as that only happens once per iteration.

Move the skip check earlier in the function which speeds things up enormously
and should improve performance of such builds for users.

(Bitbake rev: db083cfe9e33c9fd7ffeead7b8c6023a5d581976)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9c6c506757f2b3e28c8b20513b45da6b4659c95f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 06:54:14 -08:00
Lee Chee Yang
159527cadf migration-guides: add release notes for 4.0.23
(From yocto-docs rev: 12d0ba4f496b2b28a188d34fc36e36895f397079)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 5835cb574881d57785f099c768467177d077e867)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Antonin Godard
d50df94381 ref-manual: classes: fix bin_package description
The previous bin_package description was confusing: it would instruct to
use the git fetcher to extract the content of an RPM package using the
`subpath` option - but that's not possible as the git fetcher can be
used to clone a repository but not to do the extraction.

Update the description by telling what it really does and what it
doesn't do, and by giving an HTTPS+RPM example.

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 13c9f861547490a734a7e6396ac0b8f416863f70)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 305f024bf99ba02b153eed0cebe3d36594868497)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Lee Chee Yang
54315a03b6 migration-guides: add release notes for 5.0.5
(From yocto-docs rev: 0a3a2dceb265112c97359f4366f66bd4b48f4310)

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 4175839e718db49bf6971e900c1cf176d03458d7)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Antonin Godard
a8580b726a standards.md: add a section on admonitions
We try to limit our usage of these admonitions to `note` and `warning`,
as the Sphinx documentation warns that most themes only style these two
admonitions. So add a section on that.

Suggested-by: Quentin Schulz <quentin.schulz@cherry.de>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 2c28575c9aa0ca77d9c21f0833bacb19d44a7931)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit f86ffa1b1dcf0665c17424eee87b6bead09960f6)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Gassner, Tobias.ext
aad028a455 rootfs: Ensure run-postinsts is not uninstalled for read-only-rootfs-delayed-postinsts
This patch ensures that pkg_postinst_ontarget task is executed for read only rootfs when
read-only-rootfs-delayed-postinsts is set as IMAGE_FEATURES. The issue was that run-postinsts
could be uninstalled at the end of rootfs construction and that shouldn't happen for
the delayed usecase.

In addition to the fix, a test in meta/lib/oeqa/selftest/cases/overlayfs.py testing
the fix has been implemented.

(From OE-Core rev: e0c4f2f69723f64a29ba35c4de5fb1a7c79ef718)

Signed-off-by: Gassner, Tobias.ext <tobias.gassner.ext@karlstorz.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 60f587475dda99eaa07848880058b69286b8900e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Florian Kreutzer
04886dab5e dropbear: backport fix for concurrent channel open/close
Prevents sporadic crashes of dropbear server when multiple channels are
active at the same time.

Upstream discussion:
https://github.com/mkj/dropbear/pull/326/commits
https://github.com/mkj/dropbear/issues/321

Issue was introduced in dropbear-2022.83 and fixed in v2024.86.

(From OE-Core rev: 808972c0418a64fbed2134b55f25fb90e5d498e9)

Signed-off-by: Florian Kreutzer <florian.kreutzer.oss@rohde-schwarz.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Robert Yang
4509002b44 libgcrypt: Fix building error with '-O2' in sysroot path
* Backport a patch to fix:
$ . oe-init-build-env build-O2
$ bitbake libgcrypt
random/rndjent.c:40:10: fatal error: stdio.h: No such file or directory

* Remove 0002-libgcrypt-fix-building-error-with-O2-in-sysroot-path.patch which
  is fixed by the backported patch.

Note, master branch's libgcrypt_1.11.0.bb has already fixed this problem.

(From OE-Core rev: c091ae2c6d45a95f0707b649bbe556275420e5e9)

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Markus Volk
6741c78d3f ninja: fix build with python 3.13
python 3.13 removed the pipes module. Thus build fails for host machines that run python 3.13

This commit adds a backport patch to use subprocess module instead

(From OE-Core rev: f357486da3374f7b49d6956260b5b3200f562e02)

Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Markus Volk
2d0d967bea gcc: add a backport patch to fix an issue with tzdata 2024b
There is an issue in the std::chrono::tzdb parser that causes problems
since the tzdata-2024b release started using %z in the main format.

As a real world problem I encounter an issue with the waybar clock module,
which ignores the timezone setting and only shows system time.

(From OE-Core rev: 05d05d9c199de6ec81d2ee9b06f0bff84a9144be)

Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Yogita Urade
2775596cb2 qemu: upgrade 8.2.3 -> 8.2.7
This includes fix for: CVE-2024-4693, CVE-2024-6505 and CVE-2024-7730

General changelog for 8.2: https://wiki.qemu.org/ChangeLog/8.2

Droped:
0001-target-riscv-kvm-change-KVM_REG_RISCV_FP_F-to-u32.patch
0002-target-riscv-kvm-change-KVM_REG_RISCV_FP_D-to-u64.patch
0003-target-riscv-kvm-change-timer-regs-size-to-u64.patch
CVE-2024-4467 and CVE-2024-7409 since already contained the fix.

(From OE-Core rev: 7983ad282c37f8c1125da5bab96489e5d0039948)

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Deepthi Hemraj
c6ec0e1bfd glibc: stable 2.39 branch updates
Below commits on glibc-2.39 stable branch are updated.
dcaf51b41e elf: Change ldconfig auxcache magic number (bug 32231)
b3c51635ef Make tst-strtod-underflow type-generic
b74be22f65 Add crt1-2.0.o for glibc 2.0 compatibility tests
fcdf98f38c Add tests of more strtod special cases
3edc0f22a6 Add more tests of strtod end pointer
988de94538 Make tst-strtod2 and tst-strtod5 type-generic
a2f7087237 powerpc64le: Build new strtod tests with long double ABI flags (bug 32145)
6624318c89 Do not set errno for overflowing NaN payload in strtod/nan (bug 32045)
63bcc01744 Improve NaN payload testing
86369c9ee4 Make __strtod_internal tests type-generic
a7be595c67 Fix strtod subnormal rounding (bug 30220)
9cfeccf65a More thoroughly test underflow / errno in tst-strtod-round
293e4e3c90 Test errno setting on strtod overflow in tst-strtod-round
d8b4fc3653 Add tests of fread
373aab3e52 stdio-common: Add new test for fdopen

Testresults:
After update	|Before update	 |Difference
PASS: 4889	|PASS: 4885	 |PASS: +4
FAIL: 229	|FAIL: 229	 |FAIL: 0
XPASS: 4	|XPASS: 4	 |XPASS: 0
XFAIL: 16	|XFAIL: 16	 |XFAIL: 0
UNSUPPORTED: 227|UNSUPPORTED: 227|UNSUPPORTED: 0

(From OE-Core rev: c658dfd63f2e92cdb4aa59e7deb3771619844b8c)

Signed-off-by: Deepthi Hemraj <Deepthi.Hemraj@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Aleksandar Nikolic
80c9ece4c6 scripts/install-buildtools: Update to 5.0.5
Update to the 5.0.5 release of the 5.0 series for buildtools.

(From OE-Core rev: 97841ea6f6d3d8225b4865e389815090f153ee55)

Signed-off-by: Aleksandar Nikolic <aleksandar.nikolic@zeiss.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Soumya Sambu
9dd9984b48 python3-requests: upgrade 2.32.1 -> 2.32.2
https://requests.readthedocs.io/en/latest/community/updates/#id2

2.32.2 (2024-05-21)
  * Deprecations - To provide a more stable migration for custom HTTPAdapters
    impacted by the CVE changes in 2.32.0, we’ve renamed _get_connection to a
	new public API, get_connection_with_tls_context. Existing custom
	HTTPAdapters will need to migrate their code to use this new API.
	get_connection is considered deprecated in all versions of
	Requests>=2.32.0.
  * A minimal (2-line) example has been provided in the linked PR to ease
    migration, but we strongly urge users to evaluate if their custom adapter
	is subject to the same issue described in CVE-2024-35195. (#6710)

https://github.com/psf/requests/compare/v2.32.1...v2.32.2

(From OE-Core rev: 5b420f3526729809f11b187f48469a7a86d6a93a)

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Trevor Gamblin
673d092e20 python3-urllib3: upgrade 2.2.1 -> 2.2.2
(From OE-Core rev: 32fdd5673c25084af4ba295b271455cd92ca09d5)

(From OE-Core rev: ee42ec7146a7c3ceb25c1e0f5afee93849cf9143)

Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Jinfeng Wang
d80d8de556 tzdata&tzcode-native: upgrade 2024a -> 2024b
(From OE-Core rev: 76fcb907f4db9ec64669d81e5e9c6baffac71973)

Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(cherry picked from commit c8d3edb2562ea4d980186e78b4abb5a94b1d7b22)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Changqing Li
51dbc10084 libsoup: fix CVE-2024-52530, CVE-2024-52531
CVE-2024-52531:
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that
perform conversion to UTF-8 in soup_header_parse_param_list_strict.
Input received over the network cannot trigger this.

Refer:
https://nvd.nist.gov/vuln/detail/CVE-2024-52531

CVE-2024-52530:
GNOME libsoup before 3.6.0 allows HTTP request smuggling in some
configurations because '\0' characters at the end of header names are
ignored, i.e., a "Transfer-Encoding\0: chunked" header is treated the
same as a "Transfer-Encoding: chunked" header.

Refer:
https://nvd.nist.gov/vuln/detail/CVE-2024-52530

(From OE-Core rev: 0af9ac076cdbab70f526520acbbb0c38d237c407)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Hitendra Prajapati
c7d5e09c10 libsndfile: fix CVE-2024-50612
Upstream-Status: Backport from 4755f5bd78

(From OE-Core rev: c427c0e22775a615e442d76b45bb3ec5dae067e2)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Peter Marko
b2ffc21086 builder: set CVE_PRODUCT
Builder is a common word and there are many other builder components
which makes us to ignore CVEs for all of them.
There is already 1 ignored and currently 3 new ones.

Instead, set product to yocto to filter them.

(From OE-Core rev: 408c987e9134180616f27ae5df3f59166eeaa6d9)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:25 -08:00
Changqing Li
1cb4e6a502 acpica: fix CVE-2024-24856
The memory allocation function ACPI_ALLOCATE_ZEROED does not guarantee a
successful allocation, but the subsequent code directly dereferences the
pointer that receives it, which may lead to null pointer dereference. To
fix this issue, a null pointer check should be added. If it is null,
return exception code AE_NO_MEMORY.

Refer: https://nvd.nist.gov/vuln/detail/CVE-2024-24856

(From OE-Core rev: 5c590ccd1973d343f47e7b7171691400490dfc1a)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:24 -08:00
Jiaying Song
6653eb6e90 python3-zipp: fix CVE-2024-5569
A Denial of Service (DoS) vulnerability exists in the jaraco/zipp
library, affecting all versions prior to 3.19.1. The vulnerability is
triggered when processing a specially crafted zip file that leads to an
infinite loop. This issue also impacts the zipfile module of CPython, as
features from the third-party zipp library are later merged into
CPython, and the affected code is identical in both projects. The
infinite loop can be initiated through the use of functions affecting
the `Path` module in both zipp and zipfile, such as `joinpath`, the
overloaded division operator, and `iterdir`. Although the infinite loop
is not resource exhaustive, it prevents the application from responding.
The vulnerability was addressed in version 3.19.1 of jaraco/zipp.

References:
https://nvd.nist.gov/vuln/detail/CVE-2024-5569

Upstream patches:
79a309fe54
564fcc10cd
58115d2be9
c18417ed29

(From OE-Core rev: ec77cfe12f0790c7e3cf2d9bf00e47b4c653997c)

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:24 -08:00
Chris Laplante
1876097252 bitbake: fetch2: use persist_data context managers
Python 3.13 emits a ResourceWarning for unclosed sqlite3 `Connection`s.
See https://docs.python.org/3/whatsnew/3.13.html#sqlite3

The previous commit fixed persist_data's context manager to close the
connection, but we were never actually using `with` in the first place.

This change is not necessary on 'master' because persist_data was
removed.

(Bitbake rev: 6c2641f7a9e92c1b82e306f59ddd3c1249c52cbf)

Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:24 -08:00
Chris Laplante
52d9241ee5 bitbake: persist_data: close connection in SQLTable __exit__
A Connection's __exit__ does not close the connection, but rather deals
with transactions. See https://docs.python.org/3/library/sqlite3.html#how-to-use-the-connection-context-manager

This change is not necessary on 'master' because persist_data was
removed.

(Bitbake rev: c9ea354c2df3d94b9ebe7810e83df9efb6007013)

Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:24 -08:00
Richard Purdie
dbb243bf0b bitbake: fetch/wget: Increase timeout to 100s from 30s
Testing shows the worst case CDN response time can be up to 100s. The wget fetcher
is used for accessing sstate from the CDN so increase our timeouts there to match
our worst case repsonse times.

(Bitbake rev: c7f282cd27edfd78830b61db586ed669808893a5)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:24 -08:00
Joshua Watt
d77302b2fe bitbake: Remove custom exception backtrace formatting
Removes the code in bitbake to show custom backtrace formatting for
exceptions. In particular, the bitbake exception code prints function
arguments, which while helpful is a security problem when passwords and
other secrets can be passed as function arguments.

As it turns out, the handling of the custom serialized exception stack
frames was pretty much made obsolete by d7db75020ed ("event/msg: Pass
formatted exceptions"), which changed the events to pass a preformatted
stacktrack list of strings, but the passing of the serialized data was
never removed.

Change all the code to use the python traceback API to format exceptions
instead of the custom code; conveniently traceback.format_exception()
also returns a list of stack trace strings, so it can be used as a drop
in replacement for bb.exception.format_exception()

(Bitbake rev: c25e7ed128b9fd5b53d28d678238e2f3af52ef8b)

Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-06 05:50:24 -08:00
Richard Purdie
fd5231a544 bitbake: fetch2/git: Use quote from shlex, not pipes
The pipes module is removed in python 3.13. It was already using the
quote function from shlex so use that directly instead.

The module already imports shlex too so it is an easy substitution.

(Bitbake rev: 70bd343fb273ad174e56d08c8b80c5594501e030)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-28 05:36:00 -08:00
Steve Sakoman
1e93d7555f llvm: reduce size of -dbg package
Unless DEBUG_BUILD is enabled, pass -g1 to massively reduce the size of
the debug symbols

  Level 1 produces minimal information, enough for making backtraces in
  parts of the program that you don't plan to debug. This includes
  descriptions of functions and external variables, and line number
  tables, but no information about local variables.

This makes the sstate objects a lot more manageable, and packaging
faster.

(From OE-Core rev: dac630ab5ee7aa6c5c7c294093adbd11b116c765)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Steve Sakoman
8574cb4d51 webkitgtk: fix erroneous use of unsuported DEBUG_LEVELFLAG variable
The version bump to 2.44.3 mistakenly changed the recipe to use
DEBUG_LEVELFLAG, which is unsupported in scarthgap.

Restore the original use of DEBUG_FLAGS

(From OE-Core rev: ba0d06f3004bb59368f796e4501a574b4575cad4)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Regis Dargent
1e8b49999a udev-extraconf: fix network.sh script did not configure hotplugged interfaces
Udev script network.sh is called when a new ethernet interface is plugged (eg. USB).
Due to some (old) missing files, this script does nothing, instead of configuring the
interfaces with ifup.
I just commented the corresponding lines to allow the script to reach the part where
it calls ifup.

(From OE-Core rev: cf881c1b96bf93a8a36b7d6ac83aa053ee059ba6)

Signed-off-by: Regis Dargent <regis.dargent@gmail.com>

Fixes [YOCTO 15616]

network.sh relies on (long) missing files (eg. /etc/network/options,
/etc/init.d/network) to decide if it should configure the new network
interface (ifup) or put its name in /etc/udev_network_queue for future
initialization by /etc/init.d/network service.
The actual result was that the new hotplugged interface was never
automatically configured.
Removing the obsolete tests allows the script to do its intended job.

Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 160f7139172ffdf510a0d7d4e85f7fbaac7fd000)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Jagadeesh Krishnanjanappa
13728e7d08 tune-cortexa32: set tune feature as armv8a
Cortexa32 is a 32-bit armv8a architecture processor, so set the tune feature
as armv8a instead of aarch64 which is 64-bit armv8a architecture.

It solves the following build error while compiling libgcc-initial
and libssp-nonshared.
-- snip --
aarch64-poky-linux-musl-gcc: error: unrecognized command-line option '-mfpu=neon'
aarch64-poky-linux-musl-gcc: error: unrecognized command-line option '-mfloat-abi=hard'
-- snip --

(From OE-Core rev: a83ead146c15772970c7ca649e81929302349033)

Signed-off-by: Jagadeesh Krishnanjanappa <workjagadeesh@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3b898270aca62559dfa42ed71d296fe8a8b46a41)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Ross Burton
ef6f0cc60b groff: fix rare build race in hdtbl
It's possible to build the hdtbl examples before grn has been build:

groff: error: couldn't exec grn: No such file or directory

Backport a dependency fix from upstream.

[ YOCTO #15610 ]

(From OE-Core rev: 40003e1f1444f6202b068dcde632571be208594e)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit d590a32423d05cefc4e7282f971f633b3fa0b941)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Ross Burton
f4d2e59433 tcl: skip io-13.6 test case
---- Result was:
{abcdefghj
01234} 0
---- Result should have been (exact matching):
{abcdefghj
} 1 01234 0
==== io-13.6 FAILED

This test is documented as failing on slow machines, so just skip it.

[ YOCTO #15407 ]

(From OE-Core rev: 2a44845ab1ca7d10e64d09fd5feb5becfc16aabe)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f69183586655294c9aed6687cebe57767c2f3eb8)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Richard Purdie
b0c9ca3600 qemurunner: Clean up serial_lock handling
Avoid "RuntimeError: release unlocked lock" since the lock shouldn't
be locked even in the error path. Add a try/finally path to ensure
this.

(From OE-Core rev: 78f86c946d37d15b044be158e22e9853009cae27)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b0732ee009ca47580d1d2ad75334f4aa50e6efd5)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Pavel Zhukov
1a526844db package_rpm: Check if file exists before open()
Exception handler tries to read() /etc/passwd file in sysroot
and if file doesn't exist for any reason then it raises FileNotFoundError
exception which mask the original source of the problem and makes
debugging of the issue more difficult.

Fixes:
Exception: FileNotFoundError: [Errno 2] No such file or directory:
'/codebuild/output/src1899304708/src/build/tmp-container/work/core2-64-oe-linux/emqx-bin/4.3.12/recipe-sysroot/etc/passwd'

(From OE-Core rev: 1adfa8b78991764ed1f9951c5bee5412553f3b9d)

Signed-off-by: Pavel Zhukov <pavel@zhukoff.net>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4ad9a0e0b11eb7bc5a3dd45fc8945e094ea949e9)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Robert Yang
c81f1bb300 cml1.bbclass: do_diffconfig: Don't override .config with .config.orig
Fixed:
1) $ bitbake virtual/kernel -cmenuconfig
Do some changes and save the new config to default .config.
2) $ bitbake virtual/kernel -cdiffconfig
The config fragment is dumped into ${WORKDIR}/fragment.cfg.

But the .config which was saved by step #1 is overridden by .config.orig, so
the changes will be lost if run 'bitbake virtual/kernel'

And the following comment is for subprocess.call(), not for shutil.copy(),
so move subprocess.call() to the correct location.
    # No need to check the exit code as we know it's going to be
    # non-zero, but that's what we expect.

(From OE-Core rev: 7ec97c40696d3b2dda777f68b9ad07430969dc16)

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6cccf6b02f92dad514e65fd779ff659b19eb6be7)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Richard Purdie
3fab614b0a oeqa/runtime/ssh: Fix incorrect timeout fix
I'd meant to change the command timeout in the previous change, fix
the correct one.

(From OE-Core rev: 419c96d17205fc9485869ab0fc1f27de52c31789)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bb991988cb23be2c8947171726ada321f27e6eed)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Richard Purdie
ae98542b90 oeqa/runtime/ssh: Rework ssh timeout
After the changes to improve this test, we keep seeing image testing ssh
failures, particularly on mips.

It looks like part of the problem is that on a loaded system, 5s is too short
for mips to reliably establish an ssh connection. I've seen logs where it keeps
timing out and fails to work, then the debug code successfully uses ssh later after
everything else fails.

Change the timings/retries to give slow platforms enough time to respond.

(From OE-Core rev: 55780565831a1a5fa292d82b2b04943fb9ddc82e)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit ba64ccf3ad6e40461219b72d60eb0fe5cb38fddd)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Chen Qi
e57dc303e1 toolchain-shar-extract.sh: exit when post-relocate-setup.sh fails
When LD_LIBRARY_PATH is set, post-relocate-setup.sh will fail and
exit properly. But such failure is ignored and the SDK installation
will continue and tell user that things succeed. This is misleading.
So exit immediately if post-relocate-setup.sh fails.

Fixes [Yocto #15586]

(From OE-Core rev: 1ecc2102cc8f4fbcf32c1296e1f7549c774380ac)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c8e2dcc1f71aa33cc6e56dfdebebbe7ef010c944)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Ross Burton
ddd907e591 strace: download release tarballs from GitHub
Switch to downloading the release tarballs from GitHub.  Their CDN is
rock solid, and strace.io is hosted inside Russia which some networks
are blocking.

(From OE-Core rev: 0ed862a612af7a6389e68cdcb2e94bd005bf64c2)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bbdbd6d943a64e5b0dae4c2ee705d017fb7ef80e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Alexander Kanavin
7bbee0e49e package_rpm: restrict rpm to 4 threads
TL;DR version:

with this, and the previous compression level changes
I am seeing drastic speedups in package_write_rpm completion times:

webkitgtk goes from 78 seconds to 37 seconds
glibc-locale goes from 399 seconds to 58 seconds (!)

The long version:

rpm uses multithreading for two purposes:

- spawning compressors (which are nowadays themselves
multi-threaded, so the feature is not as useful as it once
was)
- parallel file classification

While the former behaves well on massively parallel CPUs
(it was written and verified here :), the latter was then added
by upstream and only benchmarked on their very old, slow laptop,
apparently:
41f0e214f2

On anything more capable it starts showing pathologic behavior,
presumably from spawning massive amount of very short-lived threads,
and then having to synchronize them. For example classifying glibc-locale
takes
5m20s with 256 threads (default on my machine!)
1m49s with 64 threads
59s with 16 threads
48s with 8 threads

Even a more typical recipe like webkitgtk is affected:
47s with 256 threads
32s with 64 threads
27s with 16 or 8 threads

I have found that the optimal amount is actually four: this also
means that only four compressors are running at a time, but
as they're themselves using threads, and typical recipes are dominated
by just two or three large packages, this does not affect overall
completion time.

(From OE-Core rev: 8cbf3a2cddbff1728bd3d1382c3fec00b604501e)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Alexander Kanavin
71da054b97 package_rpm: use zstd's default compression level
zstd uses 3 by default, while 19 is the highest and slowest.
It's not clear why 19 was picked to begin with, possibly
I copy-pasted it from rpm's examples without thinking:
https://git.yoctoproject.org/poky/commit/?h=master-next&id=4a4d5f78a6962dda5f63e9891825c80a8a87bf66

This brings significant speedups in rpm's compression step:
for example compressing webkitgtk takes 11s instead of 36s.

The rpm size increases from 175648k to 234860k. I think it's
a worthy default tradeoff.

(From OE-Core rev: 515fc186d796eaf3bfce41bd17a908ff283242ce)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Changqing Li
055a8f6fc8 sysvinit: backport patch for fixing one issue of pidof
When a program is a link to an executable, and this executable is
handled by update-alternatives, renamed to a different name, cmd
`pidof full_path_of_program` will not work.

Eg:
/usr/sbin/httpd -> /usr/sbin/httpd.apache2
`pidof /usr/sbin/httpd` cannot get pid of the process httpd

Backport the patch to fix above issue.

(From OE-Core rev: 60e6fe983c82d8a62fc07d9271d44d0cb072f0fd)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Guðni Már Gilbert
ca10bad4db libpam: drop cracklib from DEPENDS
cracklib was dropped as a dependency in libpam v1.5.0
See the following commit as reference:
d702ff714c

(From OE-Core rev: 7d0c32584846f6cd12e5bda046fb7ad8f8821de4)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Guðni Már Gilbert
d6bb2db3a5 shared-mime-info: drop itstool-native from DEPENDS
itstool was dropped as a dependency in shared-mime-info
release v2.2 (2022-03-27)

(From OE-Core rev: 604afb6f71e6bcefc89319d8066a87c27bb55352)

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Bin Lan
0bfd0a4246 lttng-ust: backport patch to fix cmake-multiple-shared-libraries build error
There are the following error when building doc/examples/cmake-multiple-shared-libraries:
ld: warning: liblttng-ust-common.so.1, needed by lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so, not found (try using -rpath or -rpath-link)
ld: warning: liblttng-ust-tracepoint.so.1, needed by lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so, not found (try using -rpath or -rpath-link)
ld: warning: liblttng-ust-common.so.1, needed by lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so, not found (try using -rpath or -rpath-link)
ld: warning: liblttng-ust-tracepoint.so.1, needed by lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so, not found (try using -rpath or -rpath-link)
ld: lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so: undefined reference to `lttng_ust_common_alloc_tls'
ld: lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so: undefined reference to `lttng_ust_urcu_after_fork_parent'
ld: lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so: undefined reference to `lttng_ust_urcu_after_fork_child'
ld: lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so: undefined reference to `lttng_ust_urcu_after_fork_parent'
ld: lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so: undefined reference to `lttng_ust_tp_probe_unregister_queue_release'
ld: lttng-ust/2.13.8/build/src/lib/lttng-ust/.libs/liblttng-ust.so: undefined reference to `lttng_ust_cancelstate_disable_pop'
collect2: error: ld returned 1 exit status

This change set removes the old patch file 0001-Makefile.am-update-rpath-link.patch,
adds a new patch file 0001-Fix-Build-examples-when-rpath-is-stripped-from-in-bu.patch.

(From OE-Core rev: d416e36bf55f9b23102ca8bc6216851467f86bcb)

Signed-off-by: Bin Lan <bin.lan.cn@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 89394da1cbe98652e1d0bd59c762ff7da2d6a113)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Clayton Casciato
3593709b59 uboot-sign: fix concat_dtb arguments
Fixes [YOCTO #15642]

Ensure empty argument passed from do_uboot_assemble_fitimage is passed to
concat_dtb

(From OE-Core rev: 583580eb5dbfdf898a70bf9e8f31c5a717e986f4)

Signed-off-by: Clayton Casciato <majortomtosourcecontrol@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b3c473785e5ceef677ff2b77c5fc17f5704c622f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Wang Mingyu
04334a7542 wireless-regdb: upgrade 2024.07.04 -> 2024.10.07
(From OE-Core rev: 9ca71d120210c3ca51e7d65b0244200ef5dba3d3)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f124bb09a798d94eca5e93387bc361b147ce53f9)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Deepthi Hemraj
51556aa6da binutils: stable 2.42 branch update
Below commits on binutils-2.42 stable branch are updated.
09ba78f0513 LoongArch: ld:Report an error when seeing an unrecognized relocation
00abcf39930 s390: Add arch15 instructions
caf72067a77 s390: Relax risbg[n]z, risb{h|l}gz, {rns|ros|rxs}bgt operand constraints
543a22c7ee3 s390: Simplify (dis)assembly of insn operands with const bits
7c94c87d463 s390: Align opcodes to lower-case
fffb4fae823 s390: Flag conditional branch relative insns as condjump
2d238ecbe50 s390: Use proper string lengths when parsing opcode table flags
10d0dd2ba2b s390: Whitespace fixes in conditional branch flavor descriptions
10a143e273c LoongArch: Add elfNN_loongarch_mkobject to initialize LoongArch tdata
9055fbe5ffb LoongArch: The symbol got type can only be obtained after initialization

Tested on qemux86_64.
There were no additional PASS or FAIL after the update

(From OE-Core rev: 312c522787e72fffb9eb1b49e97aeaf24db27d2d)

Signed-off-by: Deepthi Hemraj <Deepthi.Hemraj@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Randy MacLeod
fb691445b2 systemd: stable update 255.4 -> 255.13
Full change log:
   https://github.com/systemd/systemd-stable/compare/v255.4...v255.13

Refreshed most of the musl patches using devtool to eliminate patch fuzz.

(From OE-Core rev: 39eb4070503a96311e52f44ab1ea3cdbd6795182)

Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Hitendra Prajapati
03e5a3f5f5 ghostscript: upgrade 10.03.1 -> 10.04.0
avoid-host-contamination.patch
refreshed for 10.04.0

Changelog:
===========
- addresses CVEs: CVE-2024-46951, CVE-2024-46952, CVE-2024-46953, CVE-2024-46954, CVE-2024-46955, CVE-2024-46956
- add protection for device selection from PostScript input.
- efforts in code hygiene and maintainability continue.
- The usual round of bug fixes, compatibility changes, and incremental improvements.
- add the capability to build with the Tesseract OCR engine.

(From OE-Core rev: a0c802e9b1d8400589aede20e52f40d10a344314)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Vijay Anusuri
938174660a glib-2.0: Backport fix for CVE-2024-52533
Upstream-Status: Backport from ec0b708b98

Reference: https://security-tracker.debian.org/tracker/CVE-2024-52533

(From OE-Core rev: 61e270156015be8c09d45a5065deed5f7b1fde96)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:30 -08:00
Hitendra Prajapati
a0e25e6652 libsoup: fix CVE-2024-52532
Upstream-Status: Backport from 6adc0e3eb7 && 29b96fab25

(From OE-Core rev: 5a28744c74270905d4b29285589a399df4c9cb68)

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-26 06:11:29 -08:00
Antonin Godard
d1c25a3ce4 dev-manual: bblock: use warning block instead of attention
Sphinx recommends using warning and note here:
https://www.sphinx-doc.org/en/master/usage/restructuredtext/basics.html#directives

Suggested-by: Quentin Schulz <quentin.schulz@cherry.de>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: cafa551d0927f56854f823e51f3de690f17423cd)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit ed49067f172637d38d470a864feed2a02bd84c66)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Antonin Godard
bc6bd220a0 dev-manual: document how to provide confs from layer.conf
Add a section on providing global level configuration from the
layer.conf file. Since this file is parsed at an earlier stage in the
parsing process, it's not possible to combine bb.utils.contains and
{DISTRO,MACHINE}_FEATURES to conditionally set some configurations.

This patch documents:

- First that this file can be used for providing such configuration.
- Then demonstrate how to conditionally provide them, using a technique
  that is currently used in meta-virtualization
  (https://git.yoctoproject.org/meta-virtualization/tree/conf/layer.conf#n50).

Fixes [YOCTO #12688].

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 36f2a230ca810b1dd221b7c8ce71e8086291131a)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 31e5bd3e82e11f77da2abd96eb8c17a7c8194b7c)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Antonin Godard
a9cdf867e4 conf.py: add a bitbake_git extlink
To make references to the bitbake repo, add an extlink for it and use it
in the docs with ":bitbake_git:`lib/bb/utils.py </tree/lib/bb/utils.py>`".

Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: f0e98d65e3dbdf7c9bed135285f21da8d084edc0)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 8bf3c656ec54a582c75ca7c135121a15f8e4f631)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Antonin Godard
217e1de9e8 sphinx-static/switchers.js.in: do not refer to URL_ROOT anymore
This variable was removed from the Sphinx-generated
documentation_options.js, thus breaking the current implementation of
our switchers.js. Like searchtools.js, which is also generated by
Sphinx, use document.documentElement.dataset.content_root as a
replacement.

To be backwards-compatible to get one or the other.

(From yocto-docs rev: d8f4e179dd80e2f2618adfe12dbddad4bd29d488)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 2849690abf94872e259e712128e90413f3b9a2f2)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Antonin Godard
1371c1106b doc: add a download page for epub and pdf
These files are placed in the _static directory during publish. Note
that Sphinx does not complain if files do not exist during compilation
(since they are copied at the end). This is why this was used instead of
the ":download:" role.

(From yocto-docs rev: a422a2f4fe452d6f01685717961f6acdf09217de)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 38aa55418426227203fe3a106fa1e85494a57c12)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Michael Opdenacker
656b0274b2 doc: Makefile: publish pdf and epub versions too
Copy the generated files in the special _static directory.

Fixes [YOCTO #14357]

(From yocto-docs rev: 1ee04ff4798be042e9404fca08bbfb7058c79053)

Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit b6974695993599959c0d5b7436aa290ee5d0dfca)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Antonin Godard
1ca844121b doc: Makefile: add support for xelatex
This patch makes the "latexpdf" target compile the documentation with
xelatex instead of the default pdflatex engine.

The reason behind this is stated in [YOCTO #14357]: pdflatex does not
support compiling foreign characters, so we need to resort to another
engine, here xelatex.

It also increases the texmf config buf_size to 10000000 to avoid a
compilation error.

(From yocto-docs rev: 22f2365417ea5a9a7970e2475925f4f8eb983acf)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 93848842b3ad8aa6b9c9f46d60f2c2ad396c6971)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Antonin Godard
4a5e9aa5a2 doc: Makefile: remove inkscape, replace by rsvg-convert
Remove inkscape as it is not part of meta/, and use librsvg so we can
ship it in a buildtools tarball for the autobuilder workers.

(From yocto-docs rev: c45b401d8a1794dec2c5bd42633b9b7fac44ed82)

Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 0caa432b888209bd80443df230143761e1faf415)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Talel BELHAJSALEM
4c01aca2ec contributor-guide: Remove duplicated words
Remove "and then" as it is duplicated.

(From yocto-docs rev: 4eb28bf7e1ee52ee5abb5302169685d849cf1b91)

Signed-off-by: Talel BELHAJSALEM <bhstalel@gmail.com>
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 52ed947120e400620277a58f895294b558a9324e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Jiaying Song
94338b35b7 libxml-parser-perl: fix do_fetch error
Change the SRC_URI to the correct value due to the following error:
WARNING: libxml-parser-perl-native-2.47-r0 do_fetch: Failed to fetch URL https://search.cpan.org/CPAN/modules/by-module/XML/XML-Parser-2.47.tar.gz, attempting MIRRORS if available

(From OE-Core rev: c9d5a6c480c377399a7dc998f3755e42072e19a6)

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Jiaying Song
70a8910063 enchant2: fix do_fetch error
Change the SRC_URI to the correct value due to the following error:
WARNING: enchant2-2.6.7-r0 do_fetch: Failed to fetch URL https://github.com/AbiWord/enchant/releases/download/v2.6.7/enchant-2.6.7.tar.gz, attempting MIRRORS if available

(From OE-Core rev: 15337a58f77de3d0a30b73fcd836349df811ca39)

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Harish Sadineni
e1958af36c binutils: Add missing perl modules to RDEPENDS for nativesdk variant
In SDK, missing perl modules causes 'x86_64-pokysdk-linux-gp-display-html --help' to abort with below errors..
  - Can't locate bignum.pm in @INC (you may need to install the feature module).
  - Can't locate Math/BigInt.pm in @INC (you may need to install the Math::BigInt module)

By adding the following perl modules to RDEPENDS fixes the above errors:
  nativesdk-perl-module-bignum
  nativesdk-perl-module-bigint
  nativesdk-perl-module-math-bigint

(patch taken to master branch with following commit id: 05f1099acbbb10b6ce33ea117d313749f7dc4a47)

(From OE-Core rev: a1317e52260eed9961291d461e48a4915ffc36bc)

Signed-off-by: Harish Sadineni <Harish.Sadineni@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Richard Purdie
679b1842bb pseudo: Fix envp bug and add posix_spawn wrapper
Fix pseudo with python 3.13 by adding a wrapper for posix_spawn and
fixing a NULL pointer dereference in envp handling it uncovered. This
fixes issues on Fedora 41.

(From OE-Core rev: 782fc8c12deaf713a60c62c34914b585ff150ddf)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit d80e20d70d170397f9827c5a5fc75ad1f2e8cd94)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Philip Lorenz
582da2a157 cmake: Fix sporadic issues when determining compiler internals
When `-pipe` is enabled, GCC passes data between its different
executables using pipes instead of temporary files. This leads to issues
when cmake attempts to infer compiler internals via the `-v` parameter
as each executable will print to `stderr` in parallel.

In turn this may lead to compilation issues down the line as for example
the system include directories could not be determined properly which
may then propagate to issues such as:

    recipe-sysroot/usr/include/c++/11.3.0/cstdlib:75:15: fatal error:
        stdlib.h: No such file or directory
    |    75 | #include_next <stdlib.h>
    |       |               ^~~~~~~~~~
    | compilation terminated.
    | ninja: build stopped: subcommand failed.
    | WARNING: exit code 1 from a shell command.

Fix this stripping `-pipe` from the command line used to determine
compiler internals.

(From OE-Core rev: ef5c060a939416b4034be1b8b81f9035b23534b7)

Signed-off-by: Philip Lorenz <philip.lorenz@bmw.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Peter Marko
b7d43e74a0 expat: upgrade 2.6.3 -> 2.6.4
Handle CVE-2024-50602

(From OE-Core rev: e53da1a3bfd62b6b1771f9026fed8fd04e97f7b4)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Peter Marko
e7335e4f0a gstreamer1.0: set status for CVE-2024-0444
This is patched in gstreamer1.0-plugins-bad in 1.22 branch since 1.22.9
via [1].
cpe product is set to gstreamer, they share source git repository.

[1] 394d5066f8

(From OE-Core rev: 5ea630617daf0897e5a1edd7482f705e1e7997fe)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Peter Marko
855c30fc81 curl: patch CVE-2024-9681
Picked commit [1] per solution described in [2].

[1] https://github.com/curl/curl/commit/a94973805df96269bf
[2] https://curl.se/docs/CVE-2024-9681.html

(From OE-Core rev: 19663c559b72a0d14ddd0792be325284a6e16edc)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
Peter Marko
19b2afe4af dropbear: backport patch for CVE-2023-48795
Documentation for this patch is under
66bc1fcdee

(From OE-Core rev: 2ab0b4212aee85c77c3667ccfaedbe9540e78e3f)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-11-18 06:59:35 -08:00
891 changed files with 58539 additions and 6508 deletions

View File

@@ -27,7 +27,7 @@ from bb.main import bitbake_main, BitBakeConfigParameters, BBMainException
bb.utils.check_system_locale()
__version__ = "2.8.0"
__version__ = "2.8.1"
if __name__ == "__main__":
if __version__ != bb.__version__:

View File

@@ -72,16 +72,17 @@ def find_siginfo_task(bbhandler, pn, taskname, sig1=None, sig2=None):
elif sig2 not in sigfiles:
logger.error('No sigdata files found matching %s %s with signature %s' % (pn, taskname, sig2))
sys.exit(1)
latestfiles = [sigfiles[sig1]['path'], sigfiles[sig2]['path']]
else:
sigfiles = find_siginfo(bbhandler, pn, taskname)
latestsigs = sorted(sigfiles.keys(), key=lambda h: sigfiles[h]['time'])[-2:]
if not latestsigs:
logger.error('No sigdata files found matching %s %s' % (pn, taskname))
sys.exit(1)
sig1 = latestsigs[0]
sig2 = latestsigs[1]
latestfiles = [sigfiles[sig1]['path'], sigfiles[sig2]['path']]
latestfiles = [sigfiles[latestsigs[0]]['path']]
if len(latestsigs) > 1:
latestfiles.append(sigfiles[latestsigs[1]]['path'])
return latestfiles

View File

@@ -9,7 +9,7 @@
# SPDX-License-Identifier: GPL-2.0-only
#
__version__ = "2.8.0"
__version__ = "2.8.1"
import sys
if sys.version_info < (3, 8, 0):
@@ -37,6 +37,34 @@ class BBHandledException(Exception):
import os
import logging
from collections import namedtuple
import multiprocessing as mp
# Python 3.14 changes the default multiprocessing context from "fork" to
# "forkserver". However, bitbake heavily relies on "fork" behavior to
# efficiently pass data to the child processes. Places that need this should do:
# from bb import multiprocessing
# in place of
# import multiprocessing
class MultiprocessingContext(object):
"""
Multiprocessing proxy object that uses the "fork" context for a property if
available, otherwise goes to the main multiprocessing module. This allows
it to be a drop-in replacement for the multiprocessing module, but use the
fork context
"""
def __init__(self):
super().__setattr__("_ctx", mp.get_context("fork"))
def __getattr__(self, name):
if hasattr(self._ctx, name):
return getattr(self._ctx, name)
return getattr(mp, name)
def __setattr__(self, name, value):
raise AttributeError(f"Unable to set attribute {name}")
multiprocessing = MultiprocessingContext()
class NullHandler(logging.Handler):

View File

@@ -11,7 +11,7 @@ import os
import signal
import socket
import sys
import multiprocessing
from bb import multiprocessing
import logging
from .connection import StreamConnection, WebsocketConnection
from .exceptions import ClientError, ServerError, ConnectionClosedError, InvokeError

View File

@@ -420,15 +420,30 @@ class CommandsSync:
return command.cooker.recipecaches[mc].pkg_dp
getDefaultPreference.readonly = True
def getSkippedRecipes(self, command, params):
"""
Get the map of skipped recipes for the specified multiconfig/mc name (`params[0]`).
Invoked by `bb.tinfoil.Tinfoil.get_skipped_recipes`
:param command: Internally used parameter.
:param params: Parameter array. params[0] is multiconfig/mc name. If not given, then default mc '' is assumed.
:return: Dict whose keys are virtualfns and values are `bb.cooker.SkippedPackage`
"""
try:
mc = params[0]
except IndexError:
mc = ''
# Return list sorted by reverse priority order
import bb.cache
def sortkey(x):
vfn, _ = x
realfn, _, mc = bb.cache.virtualfn2realfn(vfn)
return (-command.cooker.collections[mc].calc_bbfile_priority(realfn)[0], vfn)
realfn, _, item_mc = bb.cache.virtualfn2realfn(vfn)
return -command.cooker.collections[item_mc].calc_bbfile_priority(realfn)[0], vfn
skipdict = OrderedDict(sorted(command.cooker.skiplist.items(), key=sortkey))
skipdict = OrderedDict(sorted(command.cooker.skiplist_by_mc[mc].items(), key=sortkey))
return list(skipdict.items())
getSkippedRecipes.readonly = True

View File

@@ -12,12 +12,12 @@
import sys, os, glob, os.path, re, time
import itertools
import logging
import multiprocessing
from bb import multiprocessing
import threading
from io import StringIO, UnsupportedOperation
from contextlib import closing
from collections import defaultdict, namedtuple
import bb, bb.exceptions, bb.command
import bb, bb.command
from bb import utils, data, parse, event, cache, providers, taskdata, runqueue, build
import queue
import signal
@@ -134,7 +134,8 @@ class BBCooker:
self.baseconfig_valid = False
self.parsecache_valid = False
self.eventlog = None
self.skiplist = {}
# The skiplists, one per multiconfig
self.skiplist_by_mc = defaultdict(dict)
self.featureset = CookerFeatures()
if featureSet:
for f in featureSet:
@@ -612,8 +613,8 @@ class BBCooker:
localdata = {}
for mc in self.multiconfigs:
taskdata[mc] = bb.taskdata.TaskData(halt, skiplist=self.skiplist, allowincomplete=allowincomplete)
localdata[mc] = data.createCopy(self.databuilder.mcdata[mc])
taskdata[mc] = bb.taskdata.TaskData(halt, skiplist=self.skiplist_by_mc[mc], allowincomplete=allowincomplete)
localdata[mc] = bb.data.createCopy(self.databuilder.mcdata[mc])
bb.data.expandKeys(localdata[mc])
current = 0
@@ -933,7 +934,7 @@ class BBCooker:
for mc in self.multiconfigs:
# First get list of recipes, including skipped
recipefns = list(self.recipecaches[mc].pkg_fn.keys())
recipefns.extend(self.skiplist.keys())
recipefns.extend(self.skiplist_by_mc[mc].keys())
# Work out list of bbappends that have been applied
applied_appends = []
@@ -2097,7 +2098,6 @@ class Parser(multiprocessing.Process):
except Exception as exc:
tb = sys.exc_info()[2]
exc.recipe = filename
exc.traceback = list(bb.exceptions.extract_traceback(tb, context=3))
return True, None, exc
# Need to turn BaseExceptions into Exceptions here so we gracefully shutdown
# and for example a worker thread doesn't just exit on its own in response to
@@ -2298,8 +2298,12 @@ class CookerParser(object):
return False
except ParsingFailure as exc:
self.error += 1
logger.error('Unable to parse %s: %s' %
(exc.recipe, bb.exceptions.to_string(exc.realexception)))
exc_desc = str(exc)
if isinstance(exc, SystemExit) and not isinstance(exc.code, str):
exc_desc = 'Exited with "%d"' % exc.code
logger.error('Unable to parse %s: %s' % (exc.recipe, exc_desc))
self.shutdown(clean=False)
return False
except bb.parse.ParseError as exc:
@@ -2308,20 +2312,33 @@ class CookerParser(object):
self.shutdown(clean=False, eventmsg=str(exc))
return False
except bb.data_smart.ExpansionError as exc:
def skip_frames(f, fn_prefix):
while f and f.tb_frame.f_code.co_filename.startswith(fn_prefix):
f = f.tb_next
return f
self.error += 1
bbdir = os.path.dirname(__file__) + os.sep
etype, value, _ = sys.exc_info()
tb = list(itertools.dropwhile(lambda e: e.filename.startswith(bbdir), exc.traceback))
etype, value, tb = sys.exc_info()
# Remove any frames where the code comes from bitbake. This
# prevents deep (and pretty useless) backtraces for expansion error
tb = skip_frames(tb, bbdir)
cur = tb
while cur:
cur.tb_next = skip_frames(cur.tb_next, bbdir)
cur = cur.tb_next
logger.error('ExpansionError during parsing %s', value.recipe,
exc_info=(etype, value, tb))
self.shutdown(clean=False)
return False
except Exception as exc:
self.error += 1
etype, value, tb = sys.exc_info()
_, value, _ = sys.exc_info()
if hasattr(value, "recipe"):
logger.error('Unable to parse %s' % value.recipe,
exc_info=(etype, value, exc.traceback))
exc_info=sys.exc_info())
else:
# Most likely, an exception occurred during raising an exception
import traceback
@@ -2342,7 +2359,7 @@ class CookerParser(object):
for virtualfn, info_array in result:
if info_array[0].skipped:
self.skipped += 1
self.cooker.skiplist[virtualfn] = SkippedPackage(info_array[0])
self.cooker.skiplist_by_mc[mc][virtualfn] = SkippedPackage(info_array[0])
self.bb_caches[mc].add_info(virtualfn, info_array, self.cooker.recipecaches[mc],
parsed=parsed, watcher = self.cooker.add_filewatch)
return True

View File

@@ -31,7 +31,7 @@ logger = logging.getLogger("BitBake.Data")
__setvar_keyword__ = [":append", ":prepend", ":remove"]
__setvar_regexp__ = re.compile(r'(?P<base>.*?)(?P<keyword>:append|:prepend|:remove)(:(?P<add>[^A-Z]*))?$')
__expand_var_regexp__ = re.compile(r"\${[a-zA-Z0-9\-_+./~:]+?}")
__expand_var_regexp__ = re.compile(r"\${[a-zA-Z0-9\-_+./~:]+}")
__expand_python_regexp__ = re.compile(r"\${@(?:{.*?}|.)+?}")
__whitespace_split__ = re.compile(r'(\s)')
__override_regexp__ = re.compile(r'[a-z0-9]+')
@@ -580,12 +580,9 @@ class DataSmart(MutableMapping):
else:
loginfo['op'] = keyword
self.varhistory.record(**loginfo)
# todo make sure keyword is not __doc__ or __module__
# pay the cookie monster
# more cookies for the cookie monster
if ':' in var:
self._setvar_update_overrides(base, **loginfo)
self._setvar_update_overrides(base, **loginfo)
if base in self.overridevars:
self._setvar_update_overridevars(var, value)
@@ -638,6 +635,7 @@ class DataSmart(MutableMapping):
nextnew.update(vardata.contains.keys())
new = nextnew
self.overrides = None
self.expand_cache = {}
def _setvar_update_overrides(self, var, **loginfo):
# aka pay the cookie monster

View File

@@ -19,7 +19,6 @@ import sys
import threading
import traceback
import bb.exceptions
import bb.utils
# This is the pid for which we should generate the event. This is set when
@@ -195,7 +194,12 @@ def fire_ui_handlers(event, d):
ui_queue.append(event)
return
with bb.utils.lock_timeout(_thread_lock):
with bb.utils.lock_timeout_nocheck(_thread_lock) as lock:
if not lock:
# If we can't get the lock, we may be recursively called, queue and return
ui_queue.append(event)
return
errors = []
for h in _ui_handlers:
#print "Sending event %s" % event
@@ -214,6 +218,9 @@ def fire_ui_handlers(event, d):
for h in errors:
del _ui_handlers[h]
while ui_queue:
fire_ui_handlers(ui_queue.pop(), d)
def fire(event, d):
"""Fire off an Event"""
@@ -759,13 +766,7 @@ class LogHandler(logging.Handler):
def emit(self, record):
if record.exc_info:
etype, value, tb = record.exc_info
if hasattr(tb, 'tb_next'):
tb = list(bb.exceptions.extract_traceback(tb, context=3))
# Need to turn the value into something the logging system can pickle
record.bb_exc_info = (etype, value, tb)
record.bb_exc_formatted = bb.exceptions.format_exception(etype, value, tb, limit=5)
value = str(value)
record.bb_exc_formatted = traceback.format_exception(*record.exc_info)
record.exc_info = None
fire(record, None)

View File

@@ -1,96 +0,0 @@
#
# Copyright BitBake Contributors
#
# SPDX-License-Identifier: GPL-2.0-only
#
import inspect
import traceback
import bb.namedtuple_with_abc
from collections import namedtuple
class TracebackEntry(namedtuple.abc):
"""Pickleable representation of a traceback entry"""
_fields = 'filename lineno function args code_context index'
_header = ' File "{0.filename}", line {0.lineno}, in {0.function}{0.args}'
def format(self, formatter=None):
if not self.code_context:
return self._header.format(self) + '\n'
formatted = [self._header.format(self) + ':\n']
for lineindex, line in enumerate(self.code_context):
if formatter:
line = formatter(line)
if lineindex == self.index:
formatted.append(' >%s' % line)
else:
formatted.append(' %s' % line)
return formatted
def __str__(self):
return ''.join(self.format())
def _get_frame_args(frame):
"""Get the formatted arguments and class (if available) for a frame"""
arginfo = inspect.getargvalues(frame)
try:
if not arginfo.args:
return '', None
# There have been reports from the field of python 2.6 which doesn't
# return a namedtuple here but simply a tuple so fallback gracefully if
# args isn't present.
except AttributeError:
return '', None
firstarg = arginfo.args[0]
if firstarg == 'self':
self = arginfo.locals['self']
cls = self.__class__.__name__
arginfo.args.pop(0)
del arginfo.locals['self']
else:
cls = None
formatted = inspect.formatargvalues(*arginfo)
return formatted, cls
def extract_traceback(tb, context=1):
frames = inspect.getinnerframes(tb, context)
for frame, filename, lineno, function, code_context, index in frames:
formatted_args, cls = _get_frame_args(frame)
if cls:
function = '%s.%s' % (cls, function)
yield TracebackEntry(filename, lineno, function, formatted_args,
code_context, index)
def format_extracted(extracted, formatter=None, limit=None):
if limit:
extracted = extracted[-limit:]
formatted = []
for tracebackinfo in extracted:
formatted.extend(tracebackinfo.format(formatter))
return formatted
def format_exception(etype, value, tb, context=1, limit=None, formatter=None):
formatted = ['Traceback (most recent call last):\n']
if hasattr(tb, 'tb_next'):
tb = extract_traceback(tb, context)
formatted.extend(format_extracted(tb, formatter, limit))
formatted.extend(traceback.format_exception_only(etype, value))
return formatted
def to_string(exc):
if isinstance(exc, SystemExit):
if not isinstance(exc.code, str):
return 'Exited with "%d"' % exc.code
return str(exc)

View File

@@ -237,7 +237,7 @@ class URI(object):
# to RFC compliant URL format. E.g.:
# file://foo.diff -> file:foo.diff
if urlp.scheme in self._netloc_forbidden:
uri = re.sub("(?<=:)//(?!/)", "", uri, 1)
uri = re.sub(r"(?<=:)//(?!/)", "", uri, count=1)
reparse = 1
if reparse:
@@ -499,30 +499,30 @@ def fetcher_init(d):
Calls before this must not hit the cache.
"""
revs = bb.persist_data.persist('BB_URI_HEADREVS', d)
try:
# fetcher_init is called multiple times, so make sure we only save the
# revs the first time it is called.
if not bb.fetch2.saved_headrevs:
bb.fetch2.saved_headrevs = dict(revs)
except:
pass
with bb.persist_data.persist('BB_URI_HEADREVS', d) as revs:
try:
# fetcher_init is called multiple times, so make sure we only save the
# revs the first time it is called.
if not bb.fetch2.saved_headrevs:
bb.fetch2.saved_headrevs = dict(revs)
except:
pass
# When to drop SCM head revisions controlled by user policy
srcrev_policy = d.getVar('BB_SRCREV_POLICY') or "clear"
if srcrev_policy == "cache":
logger.debug("Keeping SRCREV cache due to cache policy of: %s", srcrev_policy)
elif srcrev_policy == "clear":
logger.debug("Clearing SRCREV cache due to cache policy of: %s", srcrev_policy)
revs.clear()
else:
raise FetchError("Invalid SRCREV cache policy of: %s" % srcrev_policy)
# When to drop SCM head revisions controlled by user policy
srcrev_policy = d.getVar('BB_SRCREV_POLICY') or "clear"
if srcrev_policy == "cache":
logger.debug("Keeping SRCREV cache due to cache policy of: %s", srcrev_policy)
elif srcrev_policy == "clear":
logger.debug("Clearing SRCREV cache due to cache policy of: %s", srcrev_policy)
revs.clear()
else:
raise FetchError("Invalid SRCREV cache policy of: %s" % srcrev_policy)
_checksum_cache.init_cache(d.getVar("BB_CACHEDIR"))
_checksum_cache.init_cache(d.getVar("BB_CACHEDIR"))
for m in methods:
if hasattr(m, "init"):
m.init(d)
for m in methods:
if hasattr(m, "init"):
m.init(d)
def fetcher_parse_save():
_checksum_cache.save_extras()
@@ -536,8 +536,8 @@ def fetcher_compare_revisions(d):
when bitbake was started and return true if they have changed.
"""
headrevs = dict(bb.persist_data.persist('BB_URI_HEADREVS', d))
return headrevs != bb.fetch2.saved_headrevs
with dict(bb.persist_data.persist('BB_URI_HEADREVS', d)) as headrevs:
return headrevs != bb.fetch2.saved_headrevs
def mirror_from_string(data):
mirrors = (data or "").replace('\\n',' ').split()
@@ -1662,13 +1662,13 @@ class FetchMethod(object):
if not hasattr(self, "_latest_revision"):
raise ParameterError("The fetcher for this URL does not support _latest_revision", ud.url)
revs = bb.persist_data.persist('BB_URI_HEADREVS', d)
key = self.generate_revision_key(ud, d, name)
try:
return revs[key]
except KeyError:
revs[key] = rev = self._latest_revision(ud, d, name)
return rev
with bb.persist_data.persist('BB_URI_HEADREVS', d) as revs:
key = self.generate_revision_key(ud, d, name)
try:
return revs[key]
except KeyError:
revs[key] = rev = self._latest_revision(ud, d, name)
return rev
def sortable_revision(self, ud, d, name):
latest_rev = self._build_revision(ud, d, name)

View File

@@ -23,7 +23,6 @@ import urllib.parse, urllib.error
from bb.fetch2 import FetchMethod
from bb.fetch2 import FetchError
from bb.fetch2 import logger
from bb.fetch2 import runfetchcmd
class GCP(FetchMethod):
"""
@@ -48,7 +47,6 @@ class GCP(FetchMethod):
ud.basename = os.path.basename(ud.path)
ud.localfile = d.expand(urllib.parse.unquote(ud.basename))
ud.basecmd = "gsutil stat"
def get_gcp_client(self):
from google.cloud import storage
@@ -59,17 +57,20 @@ class GCP(FetchMethod):
Fetch urls using the GCP API.
Assumes localpath was called first.
"""
from google.api_core.exceptions import NotFound
logger.debug2(f"Trying to download gs://{ud.host}{ud.path} to {ud.localpath}")
if self.gcp_client is None:
self.get_gcp_client()
bb.fetch2.check_network_access(d, ud.basecmd, f"gs://{ud.host}{ud.path}")
runfetchcmd("%s %s" % (ud.basecmd, f"gs://{ud.host}{ud.path}"), d)
bb.fetch2.check_network_access(d, "blob.download_to_filename", f"gs://{ud.host}{ud.path}")
# Path sometimes has leading slash, so strip it
path = ud.path.lstrip("/")
blob = self.gcp_client.bucket(ud.host).blob(path)
blob.download_to_filename(ud.localpath)
try:
blob.download_to_filename(ud.localpath)
except NotFound:
raise FetchError("The GCP API threw a NotFound exception")
# Additional sanity checks copied from the wget class (although there
# are no known issues which mean these are required, treat the GCP API
@@ -91,8 +92,7 @@ class GCP(FetchMethod):
if self.gcp_client is None:
self.get_gcp_client()
bb.fetch2.check_network_access(d, ud.basecmd, f"gs://{ud.host}{ud.path}")
runfetchcmd("%s %s" % (ud.basecmd, f"gs://{ud.host}{ud.path}"), d)
bb.fetch2.check_network_access(d, "gcp_client.bucket(ud.host).blob(path).exists()", f"gs://{ud.host}{ud.path}")
# Path sometimes has leading slash, so strip it
path = ud.path.lstrip("/")

View File

@@ -926,9 +926,8 @@ class Git(FetchMethod):
commits = None
else:
if not os.path.exists(rev_file) or not os.path.getsize(rev_file):
from pipes import quote
commits = bb.fetch2.runfetchcmd(
"git rev-list %s -- | wc -l" % quote(rev),
"git rev-list %s -- | wc -l" % shlex.quote(rev),
d, quiet=True).strip().lstrip('0')
if commits:
open(rev_file, "w").write("%d\n" % int(commits))

View File

@@ -87,7 +87,7 @@ class Wget(FetchMethod):
if not ud.localfile:
ud.localfile = d.expand(urllib.parse.unquote(ud.host + ud.path).replace("/", "."))
self.basecmd = d.getVar("FETCHCMD_wget") or "/usr/bin/env wget -t 2 -T 30"
self.basecmd = d.getVar("FETCHCMD_wget") or "/usr/bin/env wget -t 2 -T 100"
if ud.type == 'ftp' or ud.type == 'ftps':
self.basecmd += " --passive-ftp"
@@ -371,7 +371,7 @@ class Wget(FetchMethod):
except (FileNotFoundError, netrc.NetrcParseError):
pass
with opener.open(r, timeout=30) as response:
with opener.open(r, timeout=100) as response:
pass
except (urllib.error.URLError, ConnectionResetError, TimeoutError) as e:
if try_again:

View File

@@ -89,10 +89,6 @@ class BBLogFormatter(logging.Formatter):
msg = logging.Formatter.format(self, record)
if hasattr(record, 'bb_exc_formatted'):
msg += '\n' + ''.join(record.bb_exc_formatted)
elif hasattr(record, 'bb_exc_info'):
etype, value, tb = record.bb_exc_info
formatted = bb.exceptions.format_exception(etype, value, tb, limit=5)
msg += '\n' + ''.join(formatted)
return msg
def colorize(self, record):

View File

@@ -391,6 +391,14 @@ def finalize(fn, d, variant = None):
if d.getVar("_FAILPARSINGERRORHANDLED", False) == True:
raise bb.BBHandledException()
while True:
inherits = d.getVar('__BBDEFINHERITS', False) or []
if not inherits:
break
inherit, filename, lineno = inherits.pop(0)
d.setVar('__BBDEFINHERITS', inherits)
bb.parse.BBHandler.inherit(inherit, filename, lineno, d, deferred=True)
for var in d.getVar('__BBHANDLERS', False) or []:
# try to add the handler
handlerfn = d.getVarFlag(var, "filename", False)
@@ -444,14 +452,6 @@ def multi_finalize(fn, d):
logger.debug("Appending .bbappend file %s to %s", append, fn)
bb.parse.BBHandler.handle(append, d, True)
while True:
inherits = d.getVar('__BBDEFINHERITS', False) or []
if not inherits:
break
inherit, filename, lineno = inherits.pop(0)
d.setVar('__BBDEFINHERITS', inherits)
bb.parse.BBHandler.inherit(inherit, filename, lineno, d, deferred=True)
onlyfinalise = d.getVar("__ONLYFINALISE", False)
safe_d = d
@@ -487,7 +487,9 @@ def multi_finalize(fn, d):
d.setVar("BBEXTENDVARIANT", variantmap[name])
else:
d.setVar("PN", "%s-%s" % (pn, name))
bb.parse.BBHandler.inherit(extendedmap[name], fn, 0, d)
inherits = d.getVar('__BBDEFINHERITS', False) or []
inherits.append((extendedmap[name], fn, 0))
d.setVar('__BBDEFINHERITS', inherits)
safe_d.setVar("BBCLASSEXTEND", extended)
_create_variants(datastores, extendedmap.keys(), extendfunc, onlyfinalise)

View File

@@ -154,6 +154,7 @@ class SQLTable(collections.abc.MutableMapping):
def __exit__(self, *excinfo):
self.connection.__exit__(*excinfo)
self.connection.close()
@_Decorators.retry()
@_Decorators.transaction

View File

@@ -14,6 +14,7 @@ import os
import sys
import stat
import errno
import itertools
import logging
import re
import bb
@@ -728,6 +729,8 @@ class RunQueueData:
if mc == frommc:
fn = taskData[mcdep].build_targets[pn][0]
newdep = '%s:%s' % (fn,deptask)
if newdep not in taskData[mcdep].taskentries:
bb.fatal("Task mcdepends on non-existent task %s" % (newdep))
taskData[mc].taskentries[tid].tdepends.append(newdep)
for mc in taskData:
@@ -2189,12 +2192,20 @@ class RunQueueExecute:
if not hasattr(self, "sorted_setscene_tids"):
# Don't want to sort this set every execution
self.sorted_setscene_tids = sorted(self.rqdata.runq_setscene_tids)
# Resume looping where we left off when we returned to feed the mainloop
self.setscene_tids_generator = itertools.cycle(self.rqdata.runq_setscene_tids)
task = None
if not self.sqdone and self.can_start_task():
# Find the next setscene to run
for nexttask in self.sorted_setscene_tids:
loopcount = 0
# Find the next setscene to run, exit the loop when we've processed all tids or found something to execute
while loopcount < len(self.rqdata.runq_setscene_tids):
loopcount += 1
nexttask = next(self.setscene_tids_generator)
if nexttask in self.sq_buildable and nexttask not in self.sq_running and self.sqdata.stamps[nexttask] not in self.build_stamps.values() and nexttask not in self.sq_harddep_deferred:
if nexttask in self.sq_deferred and self.sq_deferred[nexttask] not in self.runq_complete:
# Skip deferred tasks quickly before the 'expensive' tests below - this is key to performant multiconfig builds
continue
if nexttask not in self.sqdata.unskippable and self.sqdata.sq_revdeps[nexttask] and \
nexttask not in self.sq_needed_harddeps and \
self.sqdata.sq_revdeps[nexttask].issubset(self.scenequeue_covered) and \
@@ -2224,8 +2235,7 @@ class RunQueueExecute:
if t in self.runq_running and t not in self.runq_complete:
continue
if nexttask in self.sq_deferred:
if self.sq_deferred[nexttask] not in self.runq_complete:
continue
# Deferred tasks that were still deferred were skipped above so we now need to process
logger.debug("Task %s no longer deferred" % nexttask)
del self.sq_deferred[nexttask]
valid = self.rq.validate_hashes(set([nexttask]), self.cooker.data, 0, False, summary=False)
@@ -2751,8 +2761,12 @@ class RunQueueExecute:
logger.debug2("%s was unavailable and is a hard dependency of %s so skipping" % (task, dep))
self.sq_task_failoutright(dep)
continue
# For performance, only compute allcovered once if needed
if self.sqdata.sq_deps[task]:
allcovered = self.scenequeue_covered | self.scenequeue_notcovered
for dep in sorted(self.sqdata.sq_deps[task]):
if self.sqdata.sq_revdeps[dep].issubset(self.scenequeue_covered | self.scenequeue_notcovered):
if self.sqdata.sq_revdeps[dep].issubset(allcovered):
if dep not in self.sq_buildable:
self.sq_buildable.add(dep)

View File

@@ -13,7 +13,7 @@
import bb
import bb.event
import logging
import multiprocessing
from bb import multiprocessing
import threading
import array
import os

View File

@@ -1421,7 +1421,7 @@ class FetchLatestVersionTest(FetcherTest):
# combination version pattern
("sysprof", "git://git.yoctoproject.org/sysprof.git;protocol=https;branch=master", "cd44ee6644c3641507fb53b8a2a69137f2971219", "", "")
: "1.2.0",
("u-boot-mkimage", "git://source.denx.de/u-boot/u-boot.git;branch=master;protocol=https", "62c175fbb8a0f9a926c88294ea9f7e88eb898f6c", "", "")
("u-boot-mkimage", "git://git.yoctoproject.org/bbfetchtests-u-boot.git;branch=master;protocol=https", "62c175fbb8a0f9a926c88294ea9f7e88eb898f6c", "", "")
: "2014.01",
# version pattern "yyyymmdd"
("mobile-broadband-provider-info", "git://git.yoctoproject.org/mobile-broadband-provider-info.git;protocol=https;branch=master", "4ed19e11c2975105b71b956440acdb25d46a347d", "", "")
@@ -1715,6 +1715,8 @@ class GitShallowTest(FetcherTest):
if cwd is None:
cwd = self.gitdir
actual_refs = self.git(['for-each-ref', '--format=%(refname)'], cwd=cwd).splitlines()
# Resolve references into the same format as the comparision (needed by git 2.48 onwards)
actual_refs = self.git(['rev-parse', '--symbolic-full-name'] + actual_refs, cwd=cwd).splitlines()
full_expected = self.git(['rev-parse', '--symbolic-full-name'] + expected_refs, cwd=cwd).splitlines()
self.assertEqual(sorted(set(full_expected)), sorted(set(actual_refs)))

View File

@@ -0,0 +1,2 @@
do_build[mcdepends] = "mc::mc-1:h1:do_invalid"

View File

@@ -26,7 +26,7 @@ class RunQueueTests(unittest.TestCase):
a1_sstatevalid = "a1:do_package a1:do_package_qa a1:do_packagedata a1:do_package_write_ipk a1:do_package_write_rpm a1:do_populate_lic a1:do_populate_sysroot"
b1_sstatevalid = "b1:do_package b1:do_package_qa b1:do_packagedata b1:do_package_write_ipk b1:do_package_write_rpm b1:do_populate_lic b1:do_populate_sysroot"
def run_bitbakecmd(self, cmd, builddir, sstatevalid="", slowtasks="", extraenv=None, cleanup=False):
def run_bitbakecmd(self, cmd, builddir, sstatevalid="", slowtasks="", extraenv=None, cleanup=False, allowfailure=False):
env = os.environ.copy()
env["BBPATH"] = os.path.realpath(os.path.join(os.path.dirname(__file__), "runqueue-tests"))
env["BB_ENV_PASSTHROUGH_ADDITIONS"] = "SSTATEVALID SLOWTASKS TOPDIR"
@@ -41,6 +41,8 @@ class RunQueueTests(unittest.TestCase):
output = subprocess.check_output(cmd, env=env, stderr=subprocess.STDOUT,universal_newlines=True, cwd=builddir)
print(output)
except subprocess.CalledProcessError as e:
if allowfailure:
return e.output
self.fail("Command %s failed with %s" % (cmd, e.output))
tasks = []
tasklog = builddir + "/task.log"
@@ -314,6 +316,13 @@ class RunQueueTests(unittest.TestCase):
["mc_2:a1:%s" % t for t in rerun_tasks]
self.assertEqual(set(tasks), set(expected))
# Check that a multiconfig that doesn't exist rasies a correct error message
error_output = self.run_bitbakecmd(["bitbake", "g1"], tempdir, "", extraenv=extraenv, cleanup=True, allowfailure=True)
self.assertIn("non-existent task", error_output)
# If the word 'Traceback' or 'KeyError' is in the output we've regressed
self.assertNotIn("Traceback", error_output)
self.assertNotIn("KeyError", error_output)
self.shutdown(tempdir)
def test_hashserv_single(self):

View File

@@ -3,7 +3,7 @@
#
import http.server
import multiprocessing
from bb import multiprocessing
import os
import traceback
import signal
@@ -43,7 +43,7 @@ class HTTPService(object):
self.process = multiprocessing.Process(target=self.server.server_start, args=[self.root_dir, self.logger])
# The signal handler from testimage.bbclass can cause deadlocks here
# if the HTTPServer is terminated before it can restore the standard
# if the HTTPServer is terminated before it can restore the standard
#signal behaviour
orig = signal.getsignal(signal.SIGTERM)
signal.signal(signal.SIGTERM, signal.SIG_DFL)

View File

@@ -188,11 +188,19 @@ class TinfoilCookerAdapter:
self._cache[name] = attrvalue
return attrvalue
class TinfoilSkiplistByMcAdapter:
def __init__(self, tinfoil):
self.tinfoil = tinfoil
def __getitem__(self, mc):
return self.tinfoil.get_skipped_recipes(mc)
def __init__(self, tinfoil):
self.tinfoil = tinfoil
self.multiconfigs = [''] + (tinfoil.config_data.getVar('BBMULTICONFIG') or '').split()
self.collections = {}
self.recipecaches = {}
self.skiplist_by_mc = self.TinfoilSkiplistByMcAdapter(tinfoil)
for mc in self.multiconfigs:
self.collections[mc] = self.TinfoilCookerCollectionAdapter(tinfoil, mc)
self.recipecaches[mc] = self.TinfoilRecipeCacheAdapter(tinfoil, mc)
@@ -201,8 +209,6 @@ class TinfoilCookerAdapter:
# Grab these only when they are requested since they aren't always used
if name in self._cache:
return self._cache[name]
elif name == 'skiplist':
attrvalue = self.tinfoil.get_skipped_recipes()
elif name == 'bbfile_config_priorities':
ret = self.tinfoil.run_command('getLayerPriorities')
bbfile_config_priorities = []
@@ -514,12 +520,12 @@ class Tinfoil:
"""
return defaultdict(list, self.run_command('getOverlayedRecipes', mc))
def get_skipped_recipes(self):
def get_skipped_recipes(self, mc=''):
"""
Find recipes which were skipped (i.e. SkipRecipe was raised
during parsing).
"""
return OrderedDict(self.run_command('getSkippedRecipes'))
return OrderedDict(self.run_command('getSkippedRecipes', mc))
def get_all_providers(self, mc=''):
return defaultdict(list, self.run_command('allProviders', mc))
@@ -533,6 +539,7 @@ class Tinfoil:
def get_runtime_providers(self, rdep):
return self.run_command('getRuntimeProviders', rdep)
# TODO: teach this method about mc
def get_recipe_file(self, pn):
"""
Get the file name for the specified recipe/target. Raises
@@ -541,6 +548,7 @@ class Tinfoil:
"""
best = self.find_best_provider(pn)
if not best or (len(best) > 3 and not best[3]):
# TODO: pass down mc
skiplist = self.get_skipped_recipes()
taskdata = bb.taskdata.TaskData(None, skiplist=skiplist)
skipreasons = taskdata.get_reasons(pn)

View File

@@ -577,6 +577,8 @@ def main(server, eventHandler, params, tf = TerminalFilter):
else:
log_exec_tty = False
should_print_hyperlinks = sys.stdout.isatty() and os.environ.get('NO_COLOR', '') == ''
helper = uihelper.BBUIHelper()
# Look for the specially designated handlers which need to be passed to the
@@ -640,7 +642,7 @@ def main(server, eventHandler, params, tf = TerminalFilter):
return_value = 0
errors = 0
warnings = 0
taskfailures = []
taskfailures = {}
printintervaldelta = 10 * 60 # 10 minutes
printinterval = printintervaldelta
@@ -726,6 +728,8 @@ def main(server, eventHandler, params, tf = TerminalFilter):
if isinstance(event, bb.build.TaskFailed):
return_value = 1
print_event_log(event, includelogs, loglines, termfilter)
k = "{}:{}".format(event._fn, event._task)
taskfailures[k] = event.logfile
if isinstance(event, bb.build.TaskBase):
logger.info(event._message)
continue
@@ -821,7 +825,7 @@ def main(server, eventHandler, params, tf = TerminalFilter):
if isinstance(event, bb.runqueue.runQueueTaskFailed):
return_value = 1
taskfailures.append(event.taskstring)
taskfailures.setdefault(event.taskstring)
logger.error(str(event))
continue
@@ -942,11 +946,21 @@ def main(server, eventHandler, params, tf = TerminalFilter):
try:
termfilter.clearFooter()
summary = ""
def format_hyperlink(url, link_text):
if should_print_hyperlinks:
start = f'\033]8;;{url}\033\\'
end = '\033]8;;\033\\'
return f'{start}{link_text}{end}'
return link_text
if taskfailures:
summary += pluralise("\nSummary: %s task failed:",
"\nSummary: %s tasks failed:", len(taskfailures))
for failure in taskfailures:
for (failure, log_file) in taskfailures.items():
summary += "\n %s" % failure
if log_file:
hyperlink = format_hyperlink(f"file://{log_file}", log_file)
summary += "\n log: {}".format(hyperlink)
if warnings:
summary += pluralise("\nSummary: There was %s WARNING message.",
"\nSummary: There were %s WARNING messages.", warnings)

View File

@@ -30,7 +30,6 @@ import bb.build
import bb.command
import bb.cooker
import bb.event
import bb.exceptions
import bb.runqueue
from bb.ui import uihelper
@@ -102,10 +101,6 @@ class TeamcityLogFormatter(logging.Formatter):
details = ""
if hasattr(record, 'bb_exc_formatted'):
details = ''.join(record.bb_exc_formatted)
elif hasattr(record, 'bb_exc_info'):
etype, value, tb = record.bb_exc_info
formatted = bb.exceptions.format_exception(etype, value, tb, limit=5)
details = ''.join(formatted)
if record.levelno in [bb.msg.BBLogFormatter.ERROR, bb.msg.BBLogFormatter.CRITICAL]:
# ERROR gets a separate errorDetails field

View File

@@ -14,7 +14,7 @@ import logging
import bb
import bb.msg
import locale
import multiprocessing
from bb import multiprocessing
import fcntl
import importlib
import importlib.machinery
@@ -1174,8 +1174,6 @@ def process_profilelog(fn, pout = None):
#
def multiprocessingpool(*args, **kwargs):
import multiprocessing.pool
#import multiprocessing.util
#multiprocessing.util.log_to_stderr(10)
# Deal with a multiprocessing bug where signals to the processes would be delayed until the work
# completes. Putting in a timeout means the signals (like SIGINT/SIGTERM) get processed.
@@ -1854,15 +1852,42 @@ def path_is_descendant(descendant, ancestor):
return False
# Recomputing the sets in signal.py is expensive (bitbake -pP idle)
# so try and use _signal directly to avoid it
valid_signals = signal.valid_signals()
try:
import _signal
sigmask = _signal.pthread_sigmask
except ImportError:
sigmask = signal.pthread_sigmask
# If we don't have a timeout of some kind and a process/thread exits badly (for example
# OOM killed) and held a lock, we'd just hang in the lock futex forever. It is better
# we exit at some point than hang. 5 minutes with no progress means we're probably deadlocked.
# This function can still deadlock python since it can't signal the other threads to exit
# (signals are handled in the main thread) and even os._exit() will wait on non-daemon threads
# to exit.
@contextmanager
def lock_timeout(lock):
held = lock.acquire(timeout=5*60)
try:
s = sigmask(signal.SIG_BLOCK, valid_signals)
held = lock.acquire(timeout=5*60)
if not held:
bb.server.process.serverlog("Couldn't get the lock for 5 mins, timed out, exiting.\n%s" % traceback.format_stack())
os._exit(1)
yield held
finally:
lock.release()
sigmask(signal.SIG_SETMASK, s)
# A version of lock_timeout without the check that the lock was locked and a shorter timeout
@contextmanager
def lock_timeout_nocheck(lock):
try:
s = sigmask(signal.SIG_BLOCK, valid_signals)
l = lock.acquire(timeout=10)
yield l
finally:
if l:
lock.release()
sigmask(signal.SIG_SETMASK, s)

View File

@@ -142,10 +142,11 @@ skipped recipes will also be listed, with a " (skipped)" suffix.
# Ensure we list skipped recipes
# We are largely guessing about PN, PV and the preferred version here,
# but we have no choice since skipped recipes are not fully parsed
skiplist = list(self.tinfoil.cooker.skiplist.keys())
mcspec = 'mc:%s:' % mc
skiplist = list(self.tinfoil.cooker.skiplist_by_mc[mc].keys())
if mc:
skiplist = [s[len(mcspec):] for s in skiplist if s.startswith(mcspec)]
mcspec = f'mc:{mc}:'
skiplist = [s[len(mcspec):] if s.startswith(mcspec) else s for s in skiplist]
for fn in skiplist:
recipe_parts = os.path.splitext(os.path.basename(fn))[0].split('_')
@@ -162,7 +163,7 @@ skipped recipes will also be listed, with a " (skipped)" suffix.
def print_item(f, pn, ver, layer, ispref):
if not selected_layer or layer == selected_layer:
if not bare and f in skiplist:
skipped = ' (skipped: %s)' % self.tinfoil.cooker.skiplist[f].skipreason
skipped = ' (skipped: %s)' % self.tinfoil.cooker.skiplist_by_mc[mc][f].skipreason
else:
skipped = ''
if show_filenames:
@@ -301,7 +302,7 @@ Lists recipes with the bbappends that apply to them as subitems.
if self.show_appends_for_pn(pn, cooker_data, args.mc):
appends = True
if not args.pnspec and self.show_appends_for_skipped():
if not args.pnspec and self.show_appends_for_skipped(args.mc):
appends = True
if not appends:
@@ -317,9 +318,9 @@ Lists recipes with the bbappends that apply to them as subitems.
return self.show_appends_output(filenames, best_filename)
def show_appends_for_skipped(self):
def show_appends_for_skipped(self, mc):
filenames = [os.path.basename(f)
for f in self.tinfoil.cooker.skiplist.keys()]
for f in self.tinfoil.cooker.skiplist_by_mc[mc].keys()]
return self.show_appends_output(filenames, None, " (skipped)")
def show_appends_output(self, filenames, best_filename, name_suffix = ''):

View File

@@ -11,7 +11,7 @@ from bb.asyncrpc import InvokeError
from .client import ClientPool
import hashlib
import logging
import multiprocessing
from bb import multiprocessing
import os
import sys
import tempfile

View File

@@ -128,7 +128,7 @@ class BuildTest(unittest.TestCase):
if os.environ.get("TOASTER_TEST_USE_SSTATE_MIRROR"):
ProjectVariable.objects.get_or_create(
name="SSTATE_MIRRORS",
value="file://.* http://cdn.jsdelivr.net/yocto/sstate/all/PATH;downloadfilename=PATH",
value="file://.* http://sstate.yoctoproject.org/all/PATH;downloadfilename=PATH",
project=project)
ProjectTarget.objects.create(project=project,

View File

@@ -13,8 +13,8 @@ SPHINXLINTDOCS ?= $(SOURCEDIR)
IMAGEDIRS = */svg
BUILDDIR = _build
DESTDIR = final
SVG2PNG = inkscape
SVG2PDF = inkscape
SVG2PNG = rsvg-convert
SVG2PDF = rsvg-convert
ifeq ($(shell if which $(SPHINXBUILD) >/dev/null 2>&1; then echo 1; else echo 0; fi),0)
$(error "The '$(SPHINXBUILD)' command was not found. Make sure you have Sphinx installed")
@@ -26,10 +26,12 @@ help:
.PHONY: all help Makefile clean stylecheck publish epub latexpdf
publish: Makefile html singlehtml
publish: Makefile epub latexpdf html singlehtml
rm -rf $(BUILDDIR)/$(DESTDIR)/
mkdir -p $(BUILDDIR)/$(DESTDIR)/
cp -r $(BUILDDIR)/html/* $(BUILDDIR)/$(DESTDIR)/
mkdir -p $(BUILDDIR)/$(DESTDIR)/_static
cp $(BUILDDIR)/epub/TheYoctoProject.epub $(BUILDDIR)/latex/theyoctoproject.pdf $(BUILDDIR)/$(DESTDIR)/_static/
cp $(BUILDDIR)/singlehtml/index.html $(BUILDDIR)/$(DESTDIR)/singleindex.html
sed -i -e 's@index.html#@singleindex.html#@g' $(BUILDDIR)/$(DESTDIR)/singleindex.html
@@ -41,11 +43,11 @@ PNGs := $(foreach dir, $(IMAGEDIRS), $(patsubst %.svg,%.png,$(wildcard $(SOURCED
# Pattern rule for converting SVG to PDF
%.pdf : %.svg
$(SVG2PDF) --export-filename=$@ $<
$(SVG2PDF) --format=Pdf --output=$@ $<
# Pattern rule for converting SVG to PNG
%.png : %.svg
$(SVG2PNG) --export-filename=$@ $<
$(SVG2PNG) --format=Png --output=$@ $<
clean:
@rm -rf $(BUILDDIR) $(PNGs) $(PDFs) poky.yaml sphinx-static/switchers.js releases.rst
@@ -61,9 +63,12 @@ epub: $(PNGs)
$(SOURCEDIR)/set_versions.py
@$(SPHINXBUILD) -M $@ "$(SOURCEDIR)" "$(BUILDDIR)" $(SPHINXOPTS) $(O)
# Note: we need to pass buf_size here (which is also configurable from
# texmf.cnf), to avoid following error:
# Unable to read an entire line---bufsize=200000. Please increase buf_size in texmf.cnf.
latexpdf: $(PDFs)
$(SOURCEDIR)/set_versions.py
@$(SPHINXBUILD) -M $@ "$(SOURCEDIR)" "$(BUILDDIR)" $(SPHINXOPTS) $(O)
buf_size=10000000 $(SPHINXBUILD) -M $@ "$(SOURCEDIR)" "$(BUILDDIR)" $(SPHINXOPTS) $(O)
all: html epub latexpdf

View File

@@ -429,5 +429,22 @@ both the Yocto Project and BitBake manuals:
Submitting documentation changes
================================
Please see the top level README file in this repository for details of where
to send patches.
Please refer to our contributor guide here: https://docs.yoctoproject.org/contributor-guide/
for full details on how to submit changes.
As a quick guide, patches should be sent to docs@lists.yoctoproject.org
The git command to do that would be:
git send-email -M -1 --to docs@lists.yoctoproject.org
The 'To' header can be set as default for this repository:
git config sendemail.to docs@lists.yoctoproject.org
Now you can just do 'git send-email origin/master..' to send all local patches.
Read the other sections in this document and documentation/standards.md for
rules to follow when contributing to the documentation.
Git repository: https://git.yoctoproject.org/yocto-docs
Mailing list: docs@lists.yoctoproject.org

View File

@@ -44,7 +44,7 @@ following requirements:
much more will help to run multiple builds and increase
performance by reusing build artifacts.
- At least &MIN_RAM; Gbytes of RAM, though a modern modern build host with as
- At least &MIN_RAM; Gbytes of RAM, though a modern build host with as
much RAM and as many CPU cores as possible is strongly recommended to
maximize build performance.
@@ -57,7 +57,7 @@ following requirements:
:ref:`dev-manual/start:preparing the build host`
section in the Yocto Project Development Tasks Manual.
-
- Ensure that the following utilities have these minimum version numbers:
- Git &MIN_GIT_VERSION; or greater
- tar &MIN_TAR_VERSION; or greater
@@ -65,7 +65,7 @@ following requirements:
- gcc &MIN_GCC_VERSION; or greater.
- GNU make &MIN_MAKE_VERSION; or greater
If your build host does not meet any of these three listed version
If your build host does not satisfy all of the above version
requirements, you can take steps to prepare the system so that you
can still use the Yocto Project. See the
:ref:`ref-manual/system-requirements:required git, tar, python, make and gcc versions`
@@ -78,7 +78,7 @@ You must install essential host packages on your build host. The
following command installs the host packages based on an Ubuntu
distribution::
$ sudo apt install &UBUNTU_HOST_PACKAGES_ESSENTIAL;
$ sudo apt install &UBUNTU_DEBIAN_HOST_PACKAGES_ESSENTIAL;
.. note::
@@ -182,7 +182,7 @@ an entire Linux distribution, including the toolchain, from source.
page of the Yocto Project Wiki.
#. **Initialize the Build Environment:** From within the ``poky``
directory, run the :ref:`ref-manual/structure:\`\`oe-init-build-env\`\``
directory, run the :ref:`ref-manual/structure:``oe-init-build-env```
environment
setup script to define Yocto Project's build environment on your
build host.
@@ -252,7 +252,7 @@ an entire Linux distribution, including the toolchain, from source.
file in the :term:`Build Directory`::
BB_HASHSERVE_UPSTREAM = "wss://hashserv.yoctoproject.org/ws"
SSTATE_MIRRORS ?= "file://.* http://cdn.jsdelivr.net/yocto/sstate/all/PATH;downloadfilename=PATH"
SSTATE_MIRRORS ?= "file://.* http://sstate.yoctoproject.org/all/PATH;downloadfilename=PATH"
BB_HASHSERVE = "auto"
BB_SIGNATURE_HANDLER = "OEEquivHash"

View File

@@ -81,7 +81,7 @@ directory of that Layer. This directory is what you add to the
``conf/bblayers.conf`` file found in your
:term:`Build Directory`, which is
established after you run the OpenEmbedded build environment setup
script (i.e. :ref:`ref-manual/structure:\`\`oe-init-build-env\`\``).
script (i.e. :ref:`ref-manual/structure:``oe-init-build-env```).
Adding the root directory allows the :term:`OpenEmbedded Build System`
to recognize the BSP
layer and from it build an image. Here is an example::
@@ -166,7 +166,7 @@ section.
BSPs, which are maintained in their own layers or in layers designed
to contain several BSPs. To get an idea of machine support through
BSP layers, you can look at the
:yocto_dl:`index of machines </releases/yocto/yocto-&DISTRO;/machines>`
:yocto_dl:`index of machines </releases/yocto/&DISTRO_REL_LATEST_TAG;/machines>`
for the release.
#. *Optionally Clone the meta-intel BSP Layer:* If your hardware is
@@ -229,7 +229,7 @@ section.
#. *Initialize the Build Environment:* While in the root directory of
the Source Directory (i.e. ``poky``), run the
:ref:`ref-manual/structure:\`\`oe-init-build-env\`\`` environment
:ref:`ref-manual/structure:``oe-init-build-env``` environment
setup script to define the OpenEmbedded build environment on your
build host. ::
@@ -674,21 +674,21 @@ to the kernel recipe by using a similarly named append file, which is
located in the BSP Layer for your target device (e.g. the
``meta-bsp_root_name/recipes-kernel/linux`` directory).
Suppose you are using the ``linux-yocto_4.4.bb`` recipe to build the
Suppose you are using the ``linux-yocto_6.12.bb`` recipe to build the
kernel. In other words, you have selected the kernel in your
``"bsp_root_name".conf`` file by adding
:term:`PREFERRED_PROVIDER` and :term:`PREFERRED_VERSION`
statements as follows::
PREFERRED_PROVIDER_virtual/kernel ?= "linux-yocto"
PREFERRED_VERSION_linux-yocto ?= "4.4%"
PREFERRED_VERSION_linux-yocto ?= "6.12%"
.. note::
When the preferred provider is assumed by default, the :term:`PREFERRED_PROVIDER`
statement does not appear in the ``"bsp_root_name".conf`` file.
You would use the ``linux-yocto_4.4.bbappend`` file to append specific
You would use the ``linux-yocto_6.12.bbappend`` file to append specific
BSP settings to the kernel, thus configuring the kernel for your
particular BSP.
@@ -698,14 +698,19 @@ in the Yocto Project Linux Kernel Development Manual.
An alternate scenario is when you create your own kernel recipe for the
BSP. A good example of this is the Raspberry Pi BSP. If you examine the
``recipes-kernel/linux`` directory you see the following::
``recipes-kernel/linux`` directory in that layer you see the following
Raspberry Pi-specific recipes and associated files::
files/
linux-raspberrypi_6.12.bb
linux-raspberrypi_6.1.bb
linux-raspberrypi_6.6.bb
linux-raspberrypi-dev.bb
linux-raspberrypi.inc
linux-raspberrypi_4.14.bb
linux-raspberrypi_4.9.bb
The directory contains three kernel recipes and a common include file.
linux-raspberrypi-v7_6.12.bb
linux-raspberrypi-v7_6.1.bb
linux-raspberrypi-v7_6.6.bb
linux-raspberrypi-v7.inc
Developing a Board Support Package (BSP)
========================================
@@ -1177,7 +1182,7 @@ Use these steps to create a BSP layer:
- *Create a Kernel Recipe:* Create a kernel recipe in
``recipes-kernel/linux`` by either using a kernel append file or a
new custom kernel recipe file (e.g. ``linux-yocto_4.12.bb``). The BSP
new custom kernel recipe file (e.g. ``linux-yocto_6.12.bb``). The BSP
layers mentioned in the previous step also contain different kernel
examples. See the ":ref:`kernel-dev/common:modifying an existing recipe`"
section in the Yocto Project Linux Kernel Development Manual for
@@ -1242,7 +1247,7 @@ located in :yocto_git:`poky/meta-yocto-bsp/conf/machine/beaglebone-yocto.conf
PREFERRED_PROVIDER_virtual/xserver ?= "xserver-xorg"
MACHINE_EXTRA_RRECOMMENDS = "kernel-modules kernel-devicetree"
MACHINE_EXTRA_RRECOMMENDS = "kernel-modules"
EXTRA_IMAGEDEPENDS += "virtual/bootloader"
@@ -1258,23 +1263,21 @@ located in :yocto_git:`poky/meta-yocto-bsp/conf/machine/beaglebone-yocto.conf
SERIAL_CONSOLES ?= "115200;ttyS0 115200;ttyO0 115200;ttyAMA0"
PREFERRED_PROVIDER_virtual/kernel ?= "linux-yocto"
PREFERRED_VERSION_linux-yocto ?= "6.1%"
PREFERRED_VERSION_linux-yocto ?= "6.12%"
KERNEL_IMAGETYPE = "zImage"
KERNEL_DEVICETREE = "am335x-bone.dtb am335x-boneblack.dtb am335x-bonegreen.dtb"
KERNEL_EXTRA_ARGS += "LOADADDR=${UBOOT_ENTRYPOINT}"
DTB_FILES = "am335x-bone.dtb am335x-boneblack.dtb am335x-bonegreen.dtb"
KERNEL_DEVICETREE = '${@' '.join('ti/omap/%s' % d for d in '${DTB_FILES}'.split())}'
PREFERRED_PROVIDER_virtual/bootloader ?= "u-boot"
SPL_BINARY = "MLO"
UBOOT_SUFFIX = "img"
UBOOT_MACHINE = "am335x_evm_defconfig"
UBOOT_ENTRYPOINT = "0x80008000"
UBOOT_LOADADDRESS = "0x80008000"
MACHINE_FEATURES = "usbgadget usbhost vfat alsa"
IMAGE_BOOT_FILES ?= "u-boot.${UBOOT_SUFFIX} ${SPL_BINARY} ${KERNEL_IMAGETYPE} ${KERNEL_DEVICETREE}"
IMAGE_BOOT_FILES ?= "u-boot.${UBOOT_SUFFIX} ${SPL_BINARY} ${KERNEL_IMAGETYPE} ${DTB_FILES}"
# support runqemu
EXTRA_IMAGEDEPENDS += "qemu-native qemu-helper-native"
@@ -1328,12 +1331,12 @@ Project Reference Manual.
needed in the root filesystem. In this case, the U-Boot recipe must
be built for the image.
At the end of the file, we also use this setings to implement
At the end of the file, we also use this setting to implement
``runqemu`` support on the host machine.
- :term:`DEFAULTTUNE`: Machines
use tunings to optimize machine, CPU, and application performance.
These features, which are collectively known as "tuning features",
These features --- collectively known as "tuning features" ---
are set in the :term:`OpenEmbedded-Core (OE-Core)` layer. In this
example, the default tuning file is :oe_git:`tune-cortexa8
</openembedded-core/tree/meta/conf/machine/include/arm/armv7a/tune-cortexa8.inc>`.
@@ -1363,8 +1366,7 @@ Project Reference Manual.
to create the sysroot when building a Wic image.
- :term:`SERIAL_CONSOLES`:
Defines a serial console (TTY) to enable using getty. In this case,
the baud rate is "115200" and the device name is "ttyO0".
Defines one or more serial consoles (TTYs) to enable using getty.
- :term:`PREFERRED_PROVIDER_virtual/kernel <PREFERRED_PROVIDER>`:
Specifies the recipe that provides "virtual/kernel" when more than
@@ -1374,7 +1376,7 @@ Project Reference Manual.
- :term:`PREFERRED_VERSION_linux-yocto <PREFERRED_VERSION>`:
Defines the version of the recipe used to build the kernel, which is
"6.1" in this case.
"6.12" in this case.
- :term:`KERNEL_IMAGETYPE`:
The type of kernel to build for the device. In this case, the
@@ -1416,12 +1418,6 @@ Project Reference Manual.
Specifies the value passed on the make command line when building
a U-Boot image.
- :term:`UBOOT_ENTRYPOINT`:
Specifies the entry point for the U-Boot image.
- :term:`UBOOT_LOADADDRESS`:
Specifies the load address for the U-Boot image.
- :term:`MACHINE_FEATURES`:
Specifies the list of hardware features the BeagleBone device is
capable of supporting. In this case, the device supports "usbgadget

View File

@@ -13,6 +13,7 @@
# documentation root, use os.path.abspath to make it absolute, like shown here.
#
import os
import re
import sys
import datetime
try:
@@ -90,6 +91,7 @@ rst_prolog = """
# external links and substitutions
extlinks = {
'bitbake_git': ('https://git.openembedded.org/bitbake%s', None),
'cve_mitre': ('https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-%s', 'CVE-%s'),
'cve_nist': ('https://nvd.nist.gov/vuln/detail/CVE-%s', 'CVE-%s'),
'yocto_home': ('https://www.yoctoproject.org%s', None),
@@ -110,6 +112,9 @@ extlinks = {
'wikipedia': ('https://en.wikipedia.org/wiki/%s', None),
}
# To be able to use :manpage:`<something>` in the docs.
manpages_url = 'https://manpages.debian.org/{path}'
# Intersphinx config to use cross reference with BitBake user manual
intersphinx_mapping = {
'bitbake': ('https://docs.yoctoproject.org/bitbake/' + bitbake_version, None)
@@ -135,6 +140,7 @@ except ImportError:
sys.exit(1)
html_logo = 'sphinx-static/YoctoProject_Logo_RGB.jpg'
html_favicon = 'sphinx-static/favicon.ico'
# Add any paths that contain custom static files (such as style sheets) here,
# relative to this directory. They are copied after the builtin static files,
@@ -158,11 +164,34 @@ html_last_updated_fmt = '%b %d, %Y'
# Remove the trailing 'dot' in section numbers
html_secnumber_suffix = " "
# We need XeTeX to process special unicode character, sometimes the contributor
# list from the release note contains those.
# See https://docs.readthedocs.io/en/stable/guides/pdf-non-ascii-languages.html.
latex_engine = 'xelatex'
latex_use_xindy = False
latex_elements = {
'passoptionstopackages': '\\PassOptionsToPackage{bookmarksdepth=5}{hyperref}',
'preamble': '\\setcounter{tocdepth}{2}',
'preamble': '\\usepackage[UTF8]{ctex}\n\\setcounter{tocdepth}{2}',
}
from sphinx.search import SearchEnglish
from sphinx.search import languages
class DashFriendlySearchEnglish(SearchEnglish):
# Accept words that can include 'inner' hyphens or dots
_word_re = re.compile(r'[\w]+(?:[\.\-][\w]+)*')
js_splitter_code = r"""
function splitQuery(query) {
return query
.split(/[^\p{Letter}\p{Number}_\p{Emoji_Presentation}\-\.]+/gu)
.filter(term => term.length > 0);
}
"""
languages['en'] = DashFriendlySearchEnglish
# Make the EPUB builder prefer PNG to SVG because of issues rendering Inkscape SVG
from sphinx.builders.epub3 import Epub3Builder
Epub3Builder.supported_image_types = ['image/png', 'image/gif', 'image/jpeg']

View File

@@ -47,10 +47,10 @@ Debian policy closely.
When a recipe references a git revision that does not correspond to a released
version of software (e.g. is not a tagged version), the :term:`PV` variable
should include the Git revision using the following to make the
version clear::
should include the sign ``+``, so :term:`bitbake` automatically includes package
version information during the packaging phase::
PV = "<version>+git${SRCPV}"
PV = "<version>+git"
In this case, ``<version>`` should be the most recently released version of the
software from the current source revision (``git describe`` can be useful for

View File

@@ -65,6 +65,13 @@ use to identify your commits::
git config --global user.name "Ada Lovelace"
git config --global user.email "ada.lovelace@gmail.com"
By default, Git adds a signature line at the end of patches containing the Git
version. We suggest to remove it as it doesn't add useful information.
Remove it with the following command::
git config --global format.signature ""
Clone the Git repository for the component to modify
----------------------------------------------------
@@ -116,110 +123,116 @@ to add the upgraded version.
$ git commit -s file1 file2 dir1 dir2 ...
To include **a**\ ll staged files::
To include all staged files::
$ git commit -sa
- The ``-s`` option of ``git commit`` adds a "Signed-off-by:" line
to your commit message. There is the same requirement for contributing
to the Linux kernel. Adding such a line signifies that you, the
submitter, have agreed to the `Developer's Certificate of Origin 1.1
<https://www.kernel.org/doc/html/latest/process/submitting-patches.html#sign-your-work-the-developer-s-certificate-of-origin>`__
as follows:
#. The ``-s`` option of ``git commit`` adds a "Signed-off-by:" line
to your commit message. There is the same requirement for contributing
to the Linux kernel. Adding such a line signifies that you, the
submitter, have agreed to the `Developer's Certificate of Origin 1.1
<https://www.kernel.org/doc/html/latest/process/submitting-patches.html#sign-your-work-the-developer-s-certificate-of-origin>`__
as follows:
.. code-block:: none
.. code-block:: none
Developer's Certificate of Origin 1.1
Developer's Certificate of Origin 1.1
By making a contribution to this project, I certify that:
By making a contribution to this project, I certify that:
(a) The contribution was created in whole or in part by me and I
have the right to submit it under the open source license
indicated in the file; or
(a) The contribution was created in whole or in part by me and I
have the right to submit it under the open source license
indicated in the file; or
(b) The contribution is based upon previous work that, to the best
of my knowledge, is covered under an appropriate open source
license and I have the right under that license to submit that
work with modifications, whether created in whole or in part
by me, under the same open source license (unless I am
permitted to submit under a different license), as indicated
in the file; or
(b) The contribution is based upon previous work that, to the best
of my knowledge, is covered under an appropriate open source
license and I have the right under that license to submit that
work with modifications, whether created in whole or in part
by me, under the same open source license (unless I am
permitted to submit under a different license), as indicated
in the file; or
(c) The contribution was provided directly to me by some other
person who certified (a), (b) or (c) and I have not modified
it.
(c) The contribution was provided directly to me by some other
person who certified (a), (b) or (c) and I have not modified
it.
(d) I understand and agree that this project and the contribution
are public and that a record of the contribution (including all
personal information I submit with it, including my sign-off) is
maintained indefinitely and may be redistributed consistent with
this project or the open source license(s) involved.
(d) I understand and agree that this project and the contribution
are public and that a record of the contribution (including all
personal information I submit with it, including my sign-off) is
maintained indefinitely and may be redistributed consistent with
this project or the open source license(s) involved.
- Provide a single-line summary of the change and, if more
explanation is needed, provide more detail in the body of the
commit. This summary is typically viewable in the "shortlist" of
changes. Thus, providing something short and descriptive that
gives the reader a summary of the change is useful when viewing a
list of many commits. You should prefix this short description
with the recipe name (if changing a recipe), or else with the
short form path to the file being changed.
#. Provide a single-line summary of the change and, if more
explanation is needed, provide more detail in the description of the
commit. This summary is typically viewable in the "shortlist" of
changes. Thus, providing something short and descriptive that
gives the reader a summary of the change is useful when viewing a
list of many commits. You should prefix this short description
with the recipe name (if changing a recipe), or else with the
short form path to the file being changed.
.. note::
To find a suitable prefix for the commit summary, a good idea
is to look for prefixes used in previous commits touching the
same files or directories::
git log --oneline <paths>
#. For the commit description, provide detailed information
that describes what you changed, why you made the change, and the
approach you used. It might also be helpful if you mention how you
tested the change. Provide as much detail as you can in the commit
description.
.. note::
If the single line summary is enough to describe a simple
change, the commit description can be left empty.
#. If the change addresses a specific bug or issue that is associated
with a bug-tracking ID, include a reference to that ID in the body of the
commit message. For example, the Yocto Project uses a
specific convention for bug references --- any commit that addresses
a specific bug should use the following form for the body of the commit
message. Be sure to use the actual bug-tracking ID from
Bugzilla for bug-id::
single-line summary of change
Fixes [YOCTO #bug-id]
detailed description of change
#. If other people participated in this patch, add some tags to the commit
description to credit other contributors to the change:
- ``Reported-by``: name and email of a person reporting a bug
that your commit is trying to fix. This is a good practice
to encourage people to go on reporting bugs and let them
know that their reports are taken into account.
- ``Suggested-by``: name and email of a person to credit for the
idea of making the change.
- ``Tested-by``, ``Reviewed-by``: name and email for people having
tested your changes or reviewed their code. These fields are
usually added by the maintainer accepting a patch, or by
yourself if you submitted your patches to early reviewers,
or are submitting an unmodified patch again as part of a
new iteration of your patch series.
- ``Cc``: name and email of people you want to send a copy
of your changes to. This field will be used by ``git send-email``.
See `more guidance about using such tags
<https://www.kernel.org/doc/html/latest/process/submitting-patches.html#using-reported-by-tested-by-reviewed-by-suggested-by-and-fixes>`__
in the Linux kernel documentation.
.. note::
To find a suitable prefix for the commit summary, a good idea
is to look for prefixes used in previous commits touching the
same files or directories::
git log --oneline <paths>
- For the body of the commit message, provide detailed information
that describes what you changed, why you made the change, and the
approach you used. It might also be helpful if you mention how you
tested the change. Provide as much detail as you can in the body
of the commit message.
.. note::
If the single line summary is enough to describe a simple
change, the body of the commit message can be left empty.
- If the change addresses a specific bug or issue that is associated
with a bug-tracking ID, include a reference to that ID in your
detailed description. For example, the Yocto Project uses a
specific convention for bug references --- any commit that addresses
a specific bug should use the following form for the detailed
description. Be sure to use the actual bug-tracking ID from
Bugzilla for bug-id::
Fixes [YOCTO #bug-id]
detailed description of change
#. *Crediting contributors:* By using the ``git commit --amend`` command,
you can add some tags to the commit description to credit other contributors
to the change:
- ``Reported-by``: name and email of a person reporting a bug
that your commit is trying to fix. This is a good practice
to encourage people to go on reporting bugs and let them
know that their reports are taken into account.
- ``Suggested-by``: name and email of a person to credit for the
idea of making the change.
- ``Tested-by``, ``Reviewed-by``: name and email for people having
tested your changes or reviewed their code. These fields are
usually added by the maintainer accepting a patch, or by
yourself if you submitted your patches to early reviewers,
or are submitting an unmodified patch again as part of a
new iteration of your patch series.
- ``CC:`` Name and email of people you want to send a copy
of your changes to. This field will be used by ``git send-email``.
See `more guidance about using such tags
<https://www.kernel.org/doc/html/latest/process/submitting-patches.html#using-reported-by-tested-by-reviewed-by-suggested-by-and-fixes>`__
in the Linux kernel documentation.
One can amend an existing git commit message to add missing tags for
contributors with the ``git commit --amend`` command.
Test your changes
-----------------
@@ -483,7 +496,7 @@ typical usage of ``git send-email``::
git send-email --to <mailing-list-address> *.patch
Then, review each subject line and list of recipients carefully, and then
and then allow the command to send each message.
allow the command to send each message.
You will see that ``git send-email`` will automatically copy the people listed
in any commit tags such as ``Signed-off-by`` or ``Reported-by``.
@@ -769,6 +782,38 @@ argument to ``git format-patch`` with a version number::
git format-patch -v2 <ref-branch>
After generating updated patches (v2, v3, and so on) via ``git
format-patch``, ideally developers will add a patch version changelog
to each patch that describes what has changed between each revision of
the patch. Add patch version changelogs after the ``---`` marker in the
patch, indicating that this information is part of this patch, but is not
suitable for inclusion in the commit message (i.e. the git history) itself.
Providing a patch version changelog makes it easier for maintainers and
reviewers to succinctly understand what changed in all versions of the
patch, without having to consult alternate sources of information, such as
searching through messages on a mailing list. For example::
<patch title>
<commit message>
<Signed-off-by/other trailers>
---
changes in v4:
- provide a clearer commit message
- fix spelling mistakes
changes in v3:
- replace func() to use other_func() instead
changes in v2:
- this patch was added in v2
---
<diffstat output>
<unified diff>
Lastly please ensure that you also test your revised changes. In particular
please don't just edit the patch file written out by ``git format-patch`` and
resend it.
@@ -825,3 +870,52 @@ Other layers may have similar testing branches but there is no formal
requirement or standard for these so please check the documentation for the
layers you are contributing to.
Acceptance of AI Generated Code
===============================
The Yocto Project and OpenEmbedded follow the guidance of the Linux Foundation
in regards to the use of generative AI tools. See:
https://www.linuxfoundation.org/legal/generative-ai.
All of the existing guidelines in this document are expected to be followed,
including in the :doc:`recipe-style-guide`, and contributing the changes with
additional requirements to the items in section
:ref:`contributor-guide/submit-changes:Implement and commit changes`.
All AI Generated Code must be labeled as such in the commit message,
prior to your ``Signed-off-by`` line. It is also strongly recommended,
that any patches or code within the commit also have a comment or other
indication that this code was AI generated.
For example, here is a properly formatted commit message::
component: Add the ability to ...
AI-Generated: Uses GitHub Copilot
Signed-off-by: Your Name <your.name@domain>
The ``Signed-off-by`` line must be written by you, and not the AI helper.
As a reminder, when contributing a change, your ``Signed-off-by`` line is
required and the stipulations in the `Developer's Statement of Origin
1.1 <https://developercertificate.org/>`__ still apply.
Additionally, you must stipulate AI contributions conform to the Linux
Foundation policy, specifically:
#. Contributors should ensure that the terms and conditions of the generative AI
tool do not place any contractual restrictions on how the tool's output can
be used that are inconsistent with the project's open source software
license, the project's intellectual property policies, or the Open Source
Definition.
#. If any pre-existing copyrighted materials (including pre-existing open
source code) authored or owned by third parties are included in the AI tool's
output, prior to contributing such output to the project, the Contributor
should confirm that they have permission from the third party
owners -- such as the form of an open source license or public domain
declaration that complies with the project's licensing policies -- to use and
modify such pre-existing materials and contribute them to the project.
Additionally, the contributor should provide notice and attribution of such
third party rights, along with information about the applicable license
terms, with their contribution.

View File

@@ -19,7 +19,7 @@ recipes that depend on it.
To prevent this, use ``bblock`` to lock specific tasks or recipes to
specific signatures, forcing BitBake to use the sstate cache for them.
.. attention::
.. warning::
Use ``bblock`` only during the development phase.

View File

@@ -1,13 +1,13 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
Flashing Images Using ``bmaptool``
**********************************
Flashing Images Using `bmaptool`
********************************
A fast and easy way to flash an image to a bootable device is to use
bmaptool, which is integrated into the OpenEmbedded build system.
bmaptool is a generic tool that creates a file's block map (bmap) and
`bmaptool`, which is integrated into the OpenEmbedded build system.
`bmaptool` is a generic tool that creates a file's block map (bmap) and
then uses that map to copy the file. As compared to traditional tools
such as dd or cp, bmaptool can copy (or flash) large files like raw
such as `dd` or `cp`, `bmaptool` can copy (or flash) large files like raw
system image files much faster.
.. note::
@@ -20,13 +20,13 @@ system image files much faster.
$ sudo apt install bmap-tools
- If you are unable to install the ``bmap-tools`` package, you will
need to build bmaptool before using it. Use the following command::
need to build `bmaptool` before using it. Use the following command::
$ bitbake bmaptool-native
$ bitbake bmaptool-native -caddto_recipe_sysroot
Following, is an example that shows how to flash a Wic image. Realize
that while this example uses a Wic image, you can use bmaptool to flash
any type of image. Use these steps to flash an image using bmaptool:
that while this example uses a Wic image, you can use `bmaptool` to flash
any type of image. Use these steps to flash an image using `bmaptool`:
#. *Update your local.conf File:* You need to have the following set
in your ``local.conf`` file before building your image::
@@ -39,18 +39,17 @@ any type of image. Use these steps to flash an image using bmaptool:
$ bitbake image
#. *Flash the Device:* Flash the device with the image by using bmaptool
#. *Flash the Device:* Flash the device with the image by using `bmaptool`
depending on your particular setup. The following commands assume the
image resides in the :term:`Build Directory`'s ``deploy/images/`` area:
- If you have write access to the media, use this command form::
- If you installed the package for `bmaptool`, you can directly run::
$ oe-run-native bmaptool-native bmaptool copy build-directory/tmp/deploy/images/machine/image.wic /dev/sdX
$ sudo bmaptool copy build-directory/tmp/deploy/images/machine/image.wic /dev/sdX
- If you do not have write access to the media, set your permissions
first and then use the same command form::
- Otherwise, if you built `bmaptool` with BitBake, run::
$ sudo chmod 666 /dev/sdX
$ sudo chmod a+w /dev/sdX # get write access to the media, needed only once after booting
$ oe-run-native bmaptool-native bmaptool copy build-directory/tmp/deploy/images/machine/image.wic /dev/sdX
For help on the ``bmaptool`` command, use the following command::

View File

@@ -280,7 +280,9 @@ Follow these steps to create an :term:`Initramfs` image:
#. *Create the Initramfs Image Recipe:* You can reference the
``core-image-minimal-initramfs.bb`` recipe found in the
``meta/recipes-core`` directory of the :term:`Source Directory`
as an example from which to work.
as an example from which to work. The ``core-image-minimal-initramfs`` recipe
is based on the :ref:`initramfs-framework <dev-manual/building:Customizing an
Initramfs using \`\`initramfs-framework\`\`>` recipe described below.
#. *Decide if You Need to Bundle the Initramfs Image Into the Kernel
Image:* If you want the :term:`Initramfs` image that is built to be bundled
@@ -308,6 +310,86 @@ Follow these steps to create an :term:`Initramfs` image:
and bundled with the kernel image if you used the
:term:`INITRAMFS_IMAGE_BUNDLE` variable described earlier.
Customizing an Initramfs using ``initramfs-framework``
------------------------------------------------------
The ``core-image-minimal-initramfs.bb`` recipe found in
:oe_git:`meta/recipes-core/images
</openembedded-core/tree/meta/recipes-core/images>` uses the
:oe_git:`initramfs-framework_1.0.bb
</openembedded-core/tree/meta/recipes-core/initrdscripts/initramfs-framework_1.0.bb>`
recipe as its base component. The goal of the ``initramfs-framework`` recipe is
to provide the building blocks to build a customized :term:`Initramfs`.
The ``initramfs-framework`` recipe relies on shell initialization scripts
defined in :oe_git:`meta/recipes-core/initrdscripts/initramfs-framework
</openembedded-core/tree/meta/recipes-core/initrdscripts/initramfs-framework>`. Since some of
these scripts do not apply for all use cases, the ``initramfs-framework`` recipe
defines different packages:
- ``initramfs-framework-base``: this package installs the basic components of
an :term:`Initramfs`, such as the ``init`` script or the ``/dev/console``
character special file. As this package is a runtime dependency of all
modules listed below, it is automatically pulled in when one of the modules
is installed in the image.
- ``initramfs-module-exec``: support for execution of applications.
- ``initramfs-module-mdev``: support for `mdev
<https://wiki.gentoo.org/wiki/Mdev>`__.
- ``initramfs-module-udev``: support for :wikipedia:`Udev <Udev>`.
- ``initramfs-module-e2fs``: support for :wikipedia:`ext4/ext3/ext2
<Extended_file_system>` filesystems.
- ``initramfs-module-nfsrootfs``: support for locating and mounting the root
partition via :wikipedia:`NFS <Network_File_System>`.
- ``initramfs-module-rootfs``: support for locating and mounting the root
partition.
- ``initramfs-module-debug``: dynamic debug support.
- ``initramfs-module-lvm``: :wikipedia:`LVM <Logical_volume_management>` rootfs support.
- ``initramfs-module-overlayroot``: support for mounting a read-write overlay
on top of a read-only root filesystem.
In addition to the packages defined by the ``initramfs-framework`` recipe
itself, the following packages are defined by the recipes present in
:oe_git:`meta/recipes-core/initrdscripts </openembedded-core/tree/meta/recipes-core/initrdscripts>`:
- ``initramfs-module-install``: module to create and install a partition layout
on a selected block device.
- ``initramfs-module-install-efi``: module to create and install an EFI
partition layout on a selected block device.
- ``initramfs-module-setup-live``: module to start a shell in the
:term:`Initramfs` if ``root=/dev/ram0`` in passed in the `Kernel command-line
<https://www.kernel.org/doc/html/latest/admin-guide/kernel-parameters.html>`__
or the ``root=`` parameter was not passed.
To customize the :term:`Initramfs`, you can add or remove packages listed
earlier from the :term:`PACKAGE_INSTALL` variable with a :ref:`bbappend
<dev-manual/layers:Appending Other Layers Metadata With Your Layer>` on the
``core-image-minimal-initramfs`` recipe, or create a custom recipe for the
:term:`Initramfs` taking ``core-image-minimal-initramfs`` as example.
Custom scripts can be added to the :term:`Initramfs` by writing your own
recipes. The recipes are conventionally named ``initramfs-module-<module name>``
where ``<module name>`` is the name of the module. The recipe should set its
:term:`RDEPENDS` package-specific variables to include
``initramfs-framework-base`` and the other packages on which the module depends
at runtime.
The recipe must install shell initialization scripts in :term:`${D} <D>`\
``/init.d`` and must follow the ``<number>-<script name>`` naming scheme where:
- ``<number>`` is a *two-digit* number that affects the execution order of the
script compared to others. For example, the script ``80-setup-live`` would be
executed after ``01-udev`` because 80 is greater than 01.
This number being two-digits is important here as the scripts are executed
alphabetically. For example, the script ``10-script`` would be executed
before the script ``8-script``, because ``1`` is inferior to ``8``.
Therefore, the script should be named ``08-script``.
- ``<script name>`` is the script name which you can choose freely.
If two script use the same ``<number>``, they are sorted alphabetically based
on ``<script name>``.
Bundling an Initramfs Image From a Separate Multiconfig
-------------------------------------------------------
@@ -827,6 +909,11 @@ to point to that directory::
EXTERNALSRC_BUILD:pn-myrecipe = "path-to-your-source-tree"
.. note::
The values of :term:`EXTERNALSRC` and :term:`EXTERNALSRC_BUILD`
must be absolute paths.
Replicating a Build Offline
===========================

View File

@@ -80,15 +80,14 @@ recipe that are enabled with :term:`IMAGE_FEATURES`. The value of
:term:`EXTRA_IMAGE_FEATURES` is added to :term:`IMAGE_FEATURES` within
``meta/conf/bitbake.conf``.
To illustrate how you can use these variables to modify your image,
consider an example that selects the SSH server. The Yocto Project ships
with two SSH servers you can use with your images: Dropbear and OpenSSH.
Dropbear is a minimal SSH server appropriate for resource-constrained
environments, while OpenSSH is a well-known standard SSH server
implementation. By default, the ``core-image-sato`` image is configured
to use Dropbear. The ``core-image-full-cmdline`` and ``core-image-lsb``
images both include OpenSSH. The ``core-image-minimal`` image does not
contain an SSH server.
To illustrate how you can use these variables to modify your image, consider an
example that selects the SSH server. The Yocto Project ships with two SSH
servers you can use with your images: Dropbear and OpenSSH. Dropbear is a
minimal SSH server appropriate for resource-constrained environments, while
OpenSSH is a well-known standard SSH server implementation. By default, the
``core-image-sato`` image is configured to use Dropbear. The
``core-image-full-cmdline`` image includes OpenSSH. The ``core-image-minimal``
image does not contain an SSH server.
You can customize your image and change these defaults. Edit the
:term:`IMAGE_FEATURES` variable in your recipe or use the

View File

@@ -36,7 +36,7 @@ section:
use the BitBake ``-e`` option to examine variable values after a
recipe has been parsed.
- ":ref:`dev-manual/debugging:viewing package information with \`\`oe-pkgdata-util\`\``"
- ":ref:`dev-manual/debugging:viewing package information with ``oe-pkgdata-util```"
describes how to use the ``oe-pkgdata-util`` utility to query
:term:`PKGDATA_DIR` and
display package-related information for built packages.

View File

@@ -12,10 +12,13 @@ revision number for changes. Currently, you can do this with Apache
Subversion (SVN), Git, and Bazaar (BZR) repositories.
To enable this behavior, the :term:`PV` of
the recipe needs to reference
:term:`SRCPV`. Here is an example::
the recipe needs to include a ``+`` sign in its assignment.
Here is an example::
PV = "1.2.3+git${SRCPV}"
PV = "1.2.3+git"
:term:`Bitbake` later includes the source control information in :term:`PKGV`
during the packaging phase.
Then, you can add the following to your
``local.conf``::

View File

@@ -39,7 +39,6 @@ Yocto Project Development Tasks Manual
external-scm
read-only-rootfs
build-quality
runtime-testing
debugging
licenses
security-subjects

View File

@@ -644,6 +644,96 @@ variable and append the layer's root name::
order of ``.conf`` or ``.bbclass`` files. Future versions of BitBake
might address this.
Providing Global-level Configurations With Your Layer
-----------------------------------------------------
When creating a layer, you may need to define configurations that should take
effect globally in your build environment when the layer is part of the build.
The ``layer.conf`` file is a :term:`configuration file` that affects the build
system globally, so it is a candidate for this use-case.
.. warning::
Providing unconditional global level configuration from the ``layer.conf``
file is *not* a good practice, and should be avoided. For this reason, the
section :ref:`ref-conditional-layer-confs` below shows how the ``layer.conf``
file can be used to provide configurations only if a certain condition is
met.
For example, if your layer provides a Linux kernel recipe named
``linux-custom``, you may want to make :term:`PREFERRED_PROVIDER_virtual/kernel
<PREFERRED_PROVIDER>` point to ``linux-custom``::
PREFERRED_PROVIDER_virtual/kernel = "linux-custom"
This can be defined in the ``layer.conf`` file. If your layer is at the last
position in the :term:`BBLAYERS` list, it will take precedence over previous
``PREFERRED_PROVIDER_virtual/kernel`` assignments (unless one is set from a
:term:`configuration file` that is parsed later, such as machine or distro
configuration files).
.. _ref-conditional-layer-confs:
Conditionally Provide Global-level Configurations With Your Layer
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
In some cases, your layer may provide global configurations only if some
features it provides are enabled. Since the ``layer.conf`` file is parsed at an
earlier stage in the parsing process, the :term:`DISTRO_FEATURES` and
:term:`MACHINE_FEATURES` variables are not yet available to ``layer.conf``, and
declaring conditional assignments based on these variables is not possible. The
following technique shows a way to bypass this limitation by using the
:term:`USER_CLASSES` variable and a conditional ``require`` command.
In the following steps, let's assume our layer is named ``meta-mylayer`` and
that this layer defines a custom :ref:`distro feature <ref-features-distro>`
named ``mylayer-kernel``. We will set the :term:`PREFERRED_PROVIDER` variable
for the kernel only if our feature ``mylayer-kernel`` is part of the
:term:`DISTRO_FEATURES`:
#. Create an include file in the directory
``meta-mylayer/conf/distro/include/``, for example a file named
``mylayer-kernel-provider.inc`` that sets the kernel provider to
``linux-custom``::
PREFERRED_PROVIDER_virtual/kernel = "linux-custom"
#. Provide a path to this include file in your ``layer.conf``::
META_MYLAYER_KERNEL_PROVIDER_PATH = "${LAYERDIR}/conf/distro/include/mylayer-kernel-provider.inc"
#. Create a new class in ``meta-mylayer/classes-global/``, for example a class
``meta-mylayer-cfg.bbclass``. Make it conditionally require the file
``mylayer-kernel-provider.inc`` defined above, using the variable
``META_MYLAYER_KERNEL_PROVIDER_PATH`` defined in ``layer.conf``::
require ${@bb.utils.contains('DISTRO_FEATURES', 'mylayer-kernel', '${META_MYLAYER_KERNEL_PROVIDER_PATH}', '', d)}
For details on the ``bb.utils.contains`` function, see its definition in
:bitbake_git:`lib/bb/utils.py </tree/lib/bb/utils.py>`.
.. note::
The ``require`` command is designed to not fail if the function
``bb.utils.contains`` returns an empty string.
#. Back to your ``layer.conf`` file, add the class ``meta-mylayer-cfg`` class to
the :term:`USER_CLASSES` variable::
USER_CLASSES:append = " meta-mylayer-cfg"
This will add the class ``meta-mylayer-cfg`` to the list of classes to
globally inherit. Since the ``require`` command is conditional in
``meta-mylayer-cfg.bbclass``, even though inherited the class will have no
effect unless the feature ``mylayer-kernel`` is enabled through
:term:`DISTRO_FEATURES`.
This technique can also be used for :ref:`Machine features
<ref-features-machine>` by following the same steps. Though not mandatory, it is
recommended to put include files for :term:`DISTRO_FEATURES` in your layer's
``conf/distro/include`` and the ones for :term:`MACHINE_FEATURES` in your
layer's ``conf/machine/include``.
Managing Layers
===============

View File

@@ -56,7 +56,7 @@ necessary when adding a recipe to build a new piece of software to be
included in a build.
You can find a complete description of the ``devtool add`` command in
the ":ref:`sdk-manual/extensible:a closer look at \`\`devtool add\`\``" section
the ":ref:`sdk-manual/extensible:a closer look at ``devtool add```" section
in the Yocto Project Application Development and the Extensible Software
Development Kit (eSDK) manual.
@@ -291,13 +291,13 @@ another example that specifies these types of files, see the
Another way of specifying source is from an SCM. For Git repositories,
you must specify :term:`SRCREV` and you should specify :term:`PV` to include
the revision with :term:`SRCPV`. Here is an example from the recipe
``meta/recipes-core/musl/gcompat_git.bb``::
a ``+`` sign in its definition. Here is an example from the recipe
:oe_git:`meta/recipes-sato/l3afpad/l3afpad_git.bb </openembedded-core/tree/meta/recipes-sato/l3afpad/l3afpad_git.bb>`::
SRC_URI = "git://git.adelielinux.org/adelie/gcompat.git;protocol=https;branch=current"
SRC_URI = "git://github.com/stevenhoneyman/l3afpad.git;branch=master;protocol=https"
PV = "1.0.0+1.1+git${SRCPV}"
SRCREV = "af5a49e489fdc04b9cf02547650d7aeaccd43793"
PV = "0.8.18.1.11+git"
SRCREV ="3cdccdc9505643e50f8208171d9eee5de11a42ff"
If your :term:`SRC_URI` statement includes URLs pointing to individual files
fetched from a remote server other than a version control system,

View File

@@ -16,7 +16,7 @@ This section describes a few tasks that involve packages:
- :ref:`dev-manual/packages:generating and using signed packages`
- :ref:`Setting up and running package test
(ptest) <dev-manual/packages:testing packages with ptest>`
(ptest) <test-manual/ptest:testing packages with ptest>`
- :ref:`dev-manual/packages:creating node package manager (npm) packages`
@@ -84,10 +84,6 @@ the following:
- :term:`PR`: The recipe revision.
- :term:`SRCPV`: The OpenEmbedded
build system uses this string to help define the value of :term:`PV` when
the source code revision needs to be included in it.
- :yocto_wiki:`PR Service </PR_Service>`: A
network-based service that helps automate keeping package feeds
compatible with existing package manager applications such as RPM,
@@ -256,15 +252,14 @@ the software::
SRCREV = "${AUTOREV}"
Furthermore, you need to reference :term:`SRCPV` in :term:`PV` in order to
Furthermore, you need to include a ``+`` sign in :term:`PV` in order to
automatically update the version whenever the revision of the source
code changes. Here is an example::
PV = "1.0+git${SRCPV}"
PV = "1.0+git"
The OpenEmbedded build system substitutes :term:`SRCPV` with the following:
.. code-block:: none
The OpenEmbedded build system will automatically add the source control
information to the end of the variable :term:`PKGV`, in this format::
AUTOINC+source_code_revision
@@ -887,114 +882,8 @@ related to signed package feeds are available:
Testing Packages With ptest
===========================
A Package Test (ptest) runs tests against packages built by the
OpenEmbedded build system on the target machine. A ptest contains at
least two items: the actual test, and a shell script (``run-ptest``)
that starts the test. The shell script that starts the test must not
contain the actual test --- the script only starts the test. On the other
hand, the test can be anything from a simple shell script that runs a
binary and checks the output to an elaborate system of test binaries and
data files.
The test generates output in the format used by Automake::
result: testname
where the result can be ``PASS``, ``FAIL``, or ``SKIP``, and
the testname can be any identifying string.
For a list of Yocto Project recipes that are already enabled with ptest,
see the :yocto_wiki:`Ptest </Ptest>` wiki page.
.. note::
A recipe is "ptest-enabled" if it inherits the :ref:`ref-classes-ptest`
class.
Adding ptest to Your Build
--------------------------
To add package testing to your build, add the :term:`DISTRO_FEATURES` and
:term:`EXTRA_IMAGE_FEATURES` variables to your ``local.conf`` file, which
is found in the :term:`Build Directory`::
DISTRO_FEATURES:append = " ptest"
EXTRA_IMAGE_FEATURES += "ptest-pkgs"
Once your build is complete, the ptest files are installed into the
``/usr/lib/package/ptest`` directory within the image, where ``package``
is the name of the package.
Running ptest
-------------
The ``ptest-runner`` package installs a shell script that loops through
all installed ptest test suites and runs them in sequence. Consequently,
you might want to add this package to your image.
Getting Your Package Ready
--------------------------
In order to enable a recipe to run installed ptests on target hardware,
you need to prepare the recipes that build the packages you want to
test. Here is what you have to do for each recipe:
- *Be sure the recipe inherits the* :ref:`ref-classes-ptest` *class:*
Include the following line in each recipe::
inherit ptest
- *Create run-ptest:* This script starts your test. Locate the
script where you will refer to it using
:term:`SRC_URI`. Here is an
example that starts a test for ``dbus``::
#!/bin/sh
cd test
make -k runtest-TESTS
- *Ensure dependencies are met:* If the test adds build or runtime
dependencies that normally do not exist for the package (such as
requiring "make" to run the test suite), use the
:term:`DEPENDS` and
:term:`RDEPENDS` variables in
your recipe in order for the package to meet the dependencies. Here
is an example where the package has a runtime dependency on "make"::
RDEPENDS:${PN}-ptest += "make"
- *Add a function to build the test suite:* Not many packages support
cross-compilation of their test suites. Consequently, you usually
need to add a cross-compilation function to the package.
Many packages based on Automake compile and run the test suite by
using a single command such as ``make check``. However, the host
``make check`` builds and runs on the same computer, while
cross-compiling requires that the package is built on the host but
executed for the target architecture (though often, as in the case
for ptest, the execution occurs on the host). The built version of
Automake that ships with the Yocto Project includes a patch that
separates building and execution. Consequently, packages that use the
unaltered, patched version of ``make check`` automatically
cross-compiles.
Regardless, you still must add a ``do_compile_ptest`` function to
build the test suite. Add a function similar to the following to your
recipe::
do_compile_ptest() {
oe_runmake buildtest-TESTS
}
- *Ensure special configurations are set:* If the package requires
special configurations prior to compiling the test code, you must
insert a ``do_configure_ptest`` function into the recipe.
- *Install the test suite:* The :ref:`ref-classes-ptest` class
automatically copies the file ``run-ptest`` to the target and then runs make
``install-ptest`` to run the tests. If this is not enough, you need
to create a ``do_install_ptest`` function and make sure it gets
called after the "make install-ptest" completes.
See the :ref:`test-manual/ptest:Testing Packages With ptest` section of the
Yocto Project Test Environment Manual.
Creating Node Package Manager (NPM) Packages
============================================

View File

@@ -75,7 +75,7 @@ available. Follow these general steps to run QEMU:
your :term:`Build Directory`.
- If you have not built an image, you can go to the
:yocto_dl:`machines/qemu </releases/yocto/yocto-&DISTRO;/machines/qemu/>` area and download a
:yocto_dl:`machines/qemu </releases/yocto/&DISTRO_REL_LATEST_TAG;/machines/qemu/>` area and download a
pre-built image that matches your architecture and can be run on
QEMU.
@@ -280,12 +280,11 @@ present, the toolchain is also automatically used.
networking.
- SSH servers are available in some QEMU images. The ``core-image-sato``
QEMU image has a Dropbear secure shell (SSH) server that runs with
the root password disabled. The ``core-image-full-cmdline`` and
``core-image-lsb`` QEMU images have OpenSSH instead of Dropbear.
Including these SSH servers allow you to use standard ``ssh`` and
``scp`` commands. The ``core-image-minimal`` QEMU image, however,
contains no SSH server.
QEMU image has a Dropbear secure shell (SSH) server that runs with the
root password disabled. The ``core-image-full-cmdline`` QEMU image has
OpenSSH instead of Dropbear. Including these SSH servers allow you to use
standard ``ssh`` and ``scp`` commands. The ``core-image-minimal`` QEMU
image, however, contains no SSH server.
- You can use a provided, user-space NFS server to boot the QEMU
session using a local copy of the root filesystem on the host. In

View File

@@ -30,16 +30,9 @@ To make this happen, you must inherit the
INHERIT += "create-spdx"
Upon building an image, you will then get:
- :term:`SPDX` output in JSON format as an ``IMAGE-MACHINE.spdx.json`` file in
``tmp/deploy/images/MACHINE/`` inside the :term:`Build Directory`.
- This toplevel file is accompanied by an ``IMAGE-MACHINE.spdx.index.json``
containing an index of JSON :term:`SPDX` files for individual recipes.
- The compressed archive ``IMAGE-MACHINE.spdx.tar.zst`` contains the index
and the files for the single recipes.
Upon building an image, you will then get the compressed archive
``IMAGE-MACHINE.spdx.tar.zst`` contains the index and the files for the single
recipes.
The :ref:`ref-classes-create-spdx` class offers options to include
more information in the output :term:`SPDX` data:
@@ -56,7 +49,7 @@ more information in the output :term:`SPDX` data:
Though the toplevel :term:`SPDX` output is available in
``tmp/deploy/images/MACHINE/`` inside the :term:`Build Directory`, ancillary
generated files are available in ``tmp/deploy/spdx/MACHINE`` too, such as:
generated files are available in ``tmp/deploy/spdx`` too, such as:
- The individual :term:`SPDX` JSON files in the ``IMAGE-MACHINE.spdx.tar.zst``
archive.

View File

@@ -52,19 +52,24 @@ for them for significant issues.
Security-related discussions at the Yocto Project
-------------------------------------------------
We have set up two security-related mailing lists:
We have set up two security-related emails/mailing lists:
- Public List: yocto [dash] security [at] yoctoproject[dot] org
- Public Mailing List: yocto [dash] security [at] yoctoproject[dot] org
This is a public mailing list for anyone to subscribe to. This list is an
open list to discuss public security issues/patches and security-related
initiatives. For more information, including subscription information,
please see the :yocto_lists:`yocto-security mailing list info page </g/yocto-security>`.
This is a public mailing list for anyone to subscribe to. This list is an
open list to discuss public security issues/patches and security-related
initiatives. For more information, including subscription information,
please see the :yocto_lists:`yocto-security mailing list info page
</g/yocto-security>`.
- Private List: security [at] yoctoproject [dot] org
This list requires moderator approval for new topics to be posted, to avoid
private security reports to be posted by mistake.
This is a private mailing list for reporting non-published potential
vulnerabilities. The list is monitored by the Yocto Project Security team.
- Yocto Project Security Team: security [at] yoctoproject [dot] org
This is an email for reporting non-published potential vulnerabilities.
Emails sent to this address are forwarded to the Yocto Project Security
Team members.
What you should do if you find a security vulnerability

View File

@@ -543,6 +543,7 @@ your Yocto Project build host:
DISKPART> select vdisk file="<path_to_VHDX_file>"
DISKPART> attach vdisk readonly
DISKPART> compact vdisk
DISKPART> detach
DISKPART> exit
.. note::
@@ -615,7 +616,7 @@ Accessing Source Archives
The Yocto Project also provides source archives of its releases, which
are available on :yocto_dl:`/releases/yocto/`. Then, choose the subdirectory
containing the release you wish to use, for example
:yocto_dl:`yocto-&DISTRO; </releases/yocto/yocto-&DISTRO;/>`.
:yocto_dl:`&DISTRO_REL_LATEST_TAG; </releases/yocto/&DISTRO_REL_LATEST_TAG;/>`.
You will find there source archives of individual components (if you wish
to use them individually), and of the corresponding Poky release bundling

View File

@@ -333,7 +333,7 @@ Manually Upgrading a Recipe
If for some reason you choose not to upgrade recipes using
:ref:`dev-manual/upgrading-recipes:Using the Auto Upgrade Helper (AUH)` or
by :ref:`dev-manual/upgrading-recipes:Using \`\`devtool upgrade\`\``,
by :ref:`dev-manual/upgrading-recipes:Using ``devtool upgrade```,
you can manually edit the recipe files to upgrade the versions.
.. note::

View File

@@ -62,37 +62,77 @@ found in ``build/tmp/deploy/cve``.
For example the CVE check report for the ``flex-native`` recipe looks like::
$ cat poky/build/tmp/deploy/cve/flex-native
LAYER: meta
PACKAGE NAME: flex-native
PACKAGE VERSION: 2.6.4
CVE: CVE-2016-6354
CVE STATUS: Patched
CVE SUMMARY: Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read.
CVSS v2 BASE SCORE: 7.5
CVSS v3 BASE SCORE: 9.8
VECTOR: NETWORK
MORE INFORMATION: https://nvd.nist.gov/vuln/detail/CVE-2016-6354
LAYER: meta
PACKAGE NAME: flex-native
PACKAGE VERSION: 2.6.4
CVE: CVE-2019-6293
CVE STATUS: Ignored
CVE SUMMARY: An issue was discovered in the function mark_beginning_as_normal in nfa.c in flex 2.6.4. There is a stack exhaustion problem caused by the mark_beginning_as_normal function making recursive calls to itself in certain scenarios involving lots of '*' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service.
CVSS v2 BASE SCORE: 4.3
CVSS v3 BASE SCORE: 5.5
VECTOR: NETWORK
MORE INFORMATION: https://nvd.nist.gov/vuln/detail/CVE-2019-6293
$ cat ./tmp/deploy/cve/flex-native_cve.json
{
"version": "1",
"package": [
{
"name": "flex-native",
"layer": "meta",
"version": "2.6.4",
"products": [
{
"product": "flex",
"cvesInRecord": "No"
},
{
"product": "flex",
"cvesInRecord": "Yes"
}
],
"issue": [
{
"id": "CVE-2006-0459",
"status": "Patched",
"link": "https://nvd.nist.gov/vuln/detail/CVE-2006-0459",
"summary": "flex.skl in Will Estes and John Millaway Fast Lexical Analyzer Generator (flex) before 2.5.33 does not allocate enough memory for grammars containing (1) REJECT statements or (2) trailing context rules, which causes flex to generate code that contains a buffer overflow that might allow context-dependent attackers to execute arbitrary code.",
"scorev2": "7.5",
"scorev3": "0.0",
"scorev4": "0.0",
"modified": "2024-11-21T00:06Z",
"vector": "NETWORK",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"detail": "version-not-in-range"
},
{
"id": "CVE-2016-6354",
"status": "Patched",
"link": "https://nvd.nist.gov/vuln/detail/CVE-2016-6354",
"summary": "Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read.",
"scorev2": "7.5",
"scorev3": "9.8",
"scorev4": "0.0",
"modified": "2024-11-21T02:55Z",
"vector": "NETWORK",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"detail": "version-not-in-range"
},
{
"id": "CVE-2019-6293",
"status": "Ignored",
"link": "https://nvd.nist.gov/vuln/detail/CVE-2019-6293",
"summary": "An issue was discovered in the function mark_beginning_as_normal in nfa.c in flex 2.6.4. There is a stack exhaustion problem caused by the mark_beginning_as_normal function making recursive calls to itself in certain scenarios involving lots of '*' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service.",
"scorev2": "4.3",
"scorev3": "5.5",
"scorev4": "0.0",
"modified": "2024-11-21T04:46Z",
"vector": "NETWORK",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"detail": "upstream-wontfix",
"description": "there is stack exhaustion but no bug and it is building the parser, not running it, effectively similar to a compiler ICE. Upstream no plans to address this."
}
]
}
]
}
For images, a summary of all recipes included in the image and their CVEs is also
generated in textual and JSON formats. These ``.cve`` and ``.json`` reports can be found
generated in the JSON format. These ``.json`` reports can be found
in the ``tmp/deploy/images`` directory for each compiled image.
At build time CVE check will also throw warnings about ``Unpatched`` CVEs::
WARNING: flex-2.6.4-r0 do_cve_check: Found unpatched CVE (CVE-2019-6293), for more information check /poky/build/tmp/work/core2-64-poky-linux/flex/2.6.4-r0/temp/cve.log
WARNING: libarchive-3.5.1-r0 do_cve_check: Found unpatched CVE (CVE-2021-36976), for more information check /poky/build/tmp/work/core2-64-poky-linux/libarchive/3.5.1-r0/temp/cve.log
WARNING: qemu-native-9.2.0-r0 do_cve_check: Found unpatched CVE (CVE-2023-1386)
It is also possible to check the CVE status of individual packages as follows::
@@ -111,10 +151,10 @@ upstream `NIST CVE database <https://nvd.nist.gov/>`__.
The variable supports using vendor and product names like this::
CVE_PRODUCT = "flex_project:flex"
CVE_PRODUCT = "flex_project:flex westes:flex"
In this example the vendor name used in the CVE database is ``flex_project`` and the
product is ``flex``. With this setting the ``flex`` recipe only maps to this specific
In this example we have two possible vendors names, ``flex_project`` and ``westes``,
with the product name ``flex``. With this setting the ``flex`` recipe only maps to this specific
product and not products from other vendors with same name ``flex``.
Similarly, when the recipe version :term:`PV` is not compatible with software versions used by

View File

@@ -513,7 +513,7 @@ or ::
For more information on how to use the ``bmaptool``
to flash a device with an image, see the
":ref:`dev-manual/bmaptool:flashing images using \`\`bmaptool\`\``"
":ref:`dev-manual/bmaptool:flashing images using \`bmaptool\``"
section.
Using a Modified Kickstart File
@@ -721,7 +721,7 @@ the existing kernel, and then inserts a new kernel:
Once the new kernel is added back into the image, you can use the
``dd`` command or :ref:`bmaptool
<dev-manual/bmaptool:flashing images using \`\`bmaptool\`\`>`
<dev-manual/bmaptool:flashing images using \`bmaptool\`>` commands
to flash your wic image onto an SD card or USB stick and test your
target.

View File

@@ -0,0 +1,11 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
=======================
Documentation Downloads
=======================
The documentation can be downloaded in file formats to be read offline or on
another device. The currently supported formats are linked below:
- `EPub <_static/TheYoctoProject.epub>`_
- `PDF <_static/theyoctoproject.pdf>`_

View File

@@ -51,3 +51,10 @@ Welcome to the Yocto Project Documentation
:hidden:
genindex
.. toctree::
:maxdepth: 1
:caption: Documentation Downloads
:hidden:
downloads

View File

@@ -650,13 +650,9 @@ the Broadcom 2708/2709 chipset::
KBUILD_DEFCONFIG:raspberrypi2 ?= "bcm2709_defconfig"
Aside from modifying your kernel recipe and providing your own
``defconfig`` file, you need to be sure no files or statements set
:term:`SRC_URI` to use a ``defconfig`` other than your "in-tree" file (e.g.
a kernel's ``linux-``\ `machine`\ ``.inc`` file). In other words, if the
build system detects a statement that identifies an "out-of-tree"
``defconfig`` file, that statement will override your
:term:`KBUILD_DEFCONFIG` variable.
If the build system detects a statement that identifies an "out-of-tree"
``defconfig`` file, your :term:`KBUILD_DEFCONFIG` variable will take precedence
over it.
See the
:term:`KBUILD_DEFCONFIG`
@@ -672,7 +668,7 @@ The steps in this procedure show you how you can patch the kernel using
Before attempting this procedure, be sure you have performed the
steps to get ready for updating the kernel as described in the
":ref:`kernel-dev/common:getting ready to develop using \`\`devtool\`\``"
":ref:`kernel-dev/common:getting ready to develop using ``devtool```"
section.
Patching the kernel involves changing or adding configurations to an
@@ -685,7 +681,7 @@ output at boot time through ``printk`` statements in the kernel's
``calibrate.c`` source code file. Applying the patch and booting the
modified image causes the added messages to appear on the emulator's
console. The example is a continuation of the setup procedure found in
the ":ref:`kernel-dev/common:getting ready to develop using \`\`devtool\`\``" Section.
the ":ref:`kernel-dev/common:getting ready to develop using ``devtool```" Section.
#. *Check Out the Kernel Source Files:* First you must use ``devtool``
to checkout the kernel source code in its workspace.
@@ -693,7 +689,7 @@ the ":ref:`kernel-dev/common:getting ready to develop using \`\`devtool\`\``" Se
.. note::
See this step in the
":ref:`kernel-dev/common:getting ready to develop using \`\`devtool\`\``"
":ref:`kernel-dev/common:getting ready to develop using ``devtool```"
section for more information.
Use the following ``devtool`` command to check out the code::
@@ -804,7 +800,7 @@ the ":ref:`kernel-dev/common:getting ready to develop using \`\`devtool\`\``" Se
.. note::
See Step 3 of the
":ref:`kernel-dev/common:getting ready to develop using \`\`devtool\`\``"
":ref:`kernel-dev/common:getting ready to develop using ``devtool```"
section for information on setting up this layer.
Once the command
@@ -1190,7 +1186,7 @@ appear in the ``.config`` file, which is in the :term:`Build Directory`.
For more information about where the ``.config`` file is located, see the
example in the
":ref:`kernel-dev/common:using \`\`menuconfig\`\``"
":ref:`kernel-dev/common:using ``menuconfig```"
section.
It is simple to create a configuration fragment. One method is to use
@@ -1286,7 +1282,7 @@ when you override a policy configuration in a hardware configuration
fragment.
In order to run this task, you must have an existing ``.config`` file.
See the ":ref:`kernel-dev/common:using \`\`menuconfig\`\``" section for
See the ":ref:`kernel-dev/common:using ``menuconfig```" section for
information on how to create a configuration file.
Here is sample output from the :ref:`ref-tasks-kernel_configcheck` task:
@@ -1359,7 +1355,7 @@ and
tasks until they produce no warnings.
For more information on how to use the ``menuconfig`` tool, see the
:ref:`kernel-dev/common:using \`\`menuconfig\`\`` section.
:ref:`kernel-dev/common:using ``menuconfig``` section.
Fine-Tuning the Kernel Configuration File
-----------------------------------------
@@ -1562,16 +1558,9 @@ Here are some basic steps you can use to work with your own sources:
changed.
- :term:`PV`: The default :term:`PV`
assignment is typically adequate. It combines the
:term:`LINUX_VERSION` with the Source Control Manager (SCM) revision
as derived from the :term:`SRCPV`
variable. The combined results are a string with the following
form::
3.19.11+git1+68a635bf8dfb64b02263c1ac80c948647cc76d5f_1+218bd8d2022b9852c60d32f0d770931e3cf343e2
While lengthy, the extra verbosity in :term:`PV` helps ensure you are
using the exact sources from which you intend to build.
assignment is typically adequate. It combines the value of
:term:`LINUX_VERSION` and the value ``+git`` which adds source control
information to :term:`PKGV` later during the packaging phase.
- :term:`COMPATIBLE_MACHINE`:
A list of the machines supported by your new recipe. This variable

View File

@@ -122,7 +122,7 @@ general information and references for further information.
Using ``devtool`` requires that you have a clean build
of the image. For
more information, see the
":ref:`kernel-dev/common:getting ready to develop using \`\`devtool\`\``"
":ref:`kernel-dev/common:getting ready to develop using ``devtool```"
section.
Using traditional kernel development requires that you have the

View File

@@ -248,8 +248,8 @@ A new automated image testing framework has been added through the
framework replaces the older ``imagetest-qemu`` framework.
You can learn more about performing automated image tests in the
":ref:`dev-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Development Tasks Manual.
":ref:`test-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Test Environment Manual.
.. _migration-1.5-build-history:

View File

@@ -221,7 +221,7 @@ Package Test (ptest)
Package Tests (ptest) are built but not installed by default. For
information on using Package Tests, see the
":ref:`dev-manual/packages:testing packages with ptest`" section in the
":ref:`test-manual/ptest:testing packages with ptest`" section in the
Yocto Project Development Tasks Manual. See also the ":ref:`ref-classes-ptest`"
section.

View File

@@ -29,4 +29,10 @@ Release 4.0 (kirkstone)
release-notes-4.0.20
release-notes-4.0.21
release-notes-4.0.22
release-notes-4.0.23
release-notes-4.0.24
release-notes-4.0.25
release-notes-4.0.26
release-notes-4.0.27
release-notes-4.0.28
release-notes-4.0.29

View File

@@ -11,3 +11,11 @@ Release 5.0 (scarthgap)
release-notes-5.0.2
release-notes-5.0.3
release-notes-5.0.4
release-notes-5.0.5
release-notes-5.0.6
release-notes-5.0.7
release-notes-5.0.8
release-notes-5.0.9
release-notes-5.0.10
release-notes-5.0.11
release-notes-5.0.12

View File

@@ -0,0 +1,209 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
Release notes for Yocto-4.0.23 (Kirkstone)
------------------------------------------
Security Fixes in Yocto-4.0.23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- ``curl``: Fix :cve_nist:`2024-9681`
- ``expat``: Fix :cve_nist:`2024-50602`
- ``gcc``: Ignore :cve_nist:`2023-4039`
- ``ghostscript``: Fix :cve_nist:`2023-46361` and :cve_nist:`2024-29508`
- ``gstreamer1.0``: Ignore :cve_nist:`2024-0444`
- ``libarchive``: Fix :cve_nist:`2024-48957` and :cve_nist:`2024-48958`
- ``openssl``: Fix :cve_nist:`2024-9143`
- ``orc``: Fix :cve_nist:`2024-40897`
- ``python3``: Ignore :cve_nist:`2023-27043`, :cve_nist:`2024-6232` and :cve_nist:`2024-7592`
- ``qemu``: Fix :cve_nist:`2023-3019`
- ``vim``: Fix :cve_nist:`2024-43790`, :cve_nist:`2024-43802`, :cve_nist:`2024-45306` and :cve_nist:`2024-47814`
- ``zstd``: Fix :cve_nist:`2022-4899`
Fixes in Yocto-4.0.23
~~~~~~~~~~~~~~~~~~~~~
- at-spi2-core: backport a patch to fix build with gcc-14 on host
- bitbake: bitbake: doc/user-manual: Update the BB_HASHSERVE_UPSTREAM
- bitbake: codeparser: Fix handling of string AST nodes with older Python versions
- bitbake: fetch2/git: Use quote from shlex, not pipes
- bitbake: gitsm: Add call_process_submodules() to remove duplicated code
- bitbake: gitsm: Remove downloads/tmpdir when failed
- bitbake: tests/fetch: Use our own mirror of mobile-broadband-provider to decouple from gnome gitlab
- bitbake: tests/fetch: Use our own mirror of sysprof to decouple from gnome gitlab
- bmap-tools: update :term:`HOMEPAGE` and :term:`SRC_URI`
- build-appliance-image: Update to kirkstone head revision
- cmake: Fix sporadic issues when determining compiler internals
- cracklib: Modify patch to compile with GCC 14
- cve-check: add CVSS vector string to CVE database and reports
- cve-check: add support for cvss v4.0
- cve_check: Use a local copy of the database during builds
- dev-manual: document how to provide confs from layer.conf
- documentation: Makefile: add SPHINXLINTDOCS to specify subset to sphinx-lint
- documentation: Makefile: fix epub and latexpdf targets
- documentation: README: add instruction to run Vale on a subset
- documentation: brief-yoctoprojectqs: update BB_HASHSERVE_UPSTREAM for new infrastructure
- documentation: conf.py: add a bitbake_git extlink
- documentation: rename :cve: role to :cve_nist:
- documentation: styles: vocabularies: Yocto: add sstate
- documnetation: contributor-guide: Remove duplicated words
- gcc: restore a patch for Neoverse N2 core
- glib-2.0: patch regression of :cve_nist:`2023-32665`
- kmscube: create_framebuffer: backport modifier fix
- libffi: backport a fix to build libffi-native with gcc-14
- linux-firmware: Upgrade to 20240909
- local.conf.sample: update BB_HASHSERVE_UPSTREAM for new infrastructure
- migration-guide: add release notes for 4.0.22
- migration-guide: release-notes-4.0: update BB_HASHSERVE_UPSTREAM for new infrastructure
- nativesdk-intercept: Fix bad intercept chgrp/chown logic
- orc: Upgrade to 0.4.40
- overlayfs-etc: add option to skip creation of mount dirs
- overview-manual: concepts: add details on package splitting
- package: Switch debug source handling to use prefix map
- patch.py: Use shlex instead of deprecated pipe
- poky.conf: bump version for 4.0.23
- pseudo: Disable LFS on 32bit arches
- pseudo: Fix envp bug and add posix_spawn wrapper
- pseudo: Fix to work with glibc 2.40
- pseudo: Switch back to the master branch
- pseudo: Update to include logic fix
- pseudo: Update to include open symlink handling bugfix
- pseudo: Update to pull in fchmodat fix
- pseudo: Update to pull in fd leak fix
- pseudo: Update to pull in gcc14 fix and missing statvfs64 intercept
- pseudo: Update to pull in linux-libc-headers race fix
- pseudo: Update to pull in python 3.12+ fix
- pseudo: Update to pull in syncfs probe fix
- ref-manual: add description for the "sysroot" term
- ref-manual: add missing CVE_CHECK manifest variables
- ref-manual: add missing :term:`EXTERNAL_KERNEL_DEVICETREE` variable
- ref-manual: add missing :term:`OPKGBUILDCMD` variable
- ref-manual: devtool-reference: document missing commands
- ref-manual: devtool-reference: refresh example outputs
- ref-manual: introduce :term:`CVE_CHECK_REPORT_PATCHED` variable
- ref-manual: release-process: add a reference to the doc's release
- ref-manual: release-process: refresh the current LTS releases
- ref-manual: release-process: update releases.svg
- ref-manual: release-process: update releases.svg with month after "Current"
- ref-manual: structure.rst: document missing tmp/ dirs
- ref-manual: variables: add SIGGEN_LOCKEDSIGS* variables
- syslinux: Disable error on implicit-function-declaration
- util-linux: Define pidfd_* function signatures
- vala: add -Wno-error=incompatible-pointer-types work around
- vim: Upgrade to 9.1.0764
- xmlto: backport a patch to fix build with gcc-14 on host
- zip: Fix build with gcc-14
- zip: Make configure checks to be more robust
Known Issues in Yocto-4.0.23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-N/A
Contributors to Yocto-4.0.23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- Aleksandar Nikolic
- Alexandre Belloni
- Antoine Lubineau
- Antonin Godard
- Archana Polampalli
- Ashish Sharma
- Baruch Siach
- Eilís 'pidge' Ní Fhlannagáin
- Jose Quaresma
- Julien Stephan
- Khem Raj
- Lee Chee Yang
- Macpaul Lin
- Martin Jansa
- Michael Opdenacker
- Ola x Nilsson
- Peter Marko
- Philip Lorenz
- Randolph Sapp
- Richard Purdie
- Robert Yang
- Rohini Sangam
- Ruiqiang Hao
- Siddharth Doshi
- Steve Sakoman
- Talel BELHAJSALEM
- Wang Mingyu
- Yogita Urade
- Zoltan Boszormenyi
Repositories / Downloads for Yocto-4.0.23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.23 </poky/log/?h=yocto-4.0.23>`
- Git Revision: :yocto_git:`8e092852b63e998d990b8f8e1aa91297dec4430f </poky/commit/?id=8e092852b63e998d990b8f8e1aa91297dec4430f>`
- Release Artefact: poky-8e092852b63e998d990b8f8e1aa91297dec4430f
- sha: 339d34d8432070dac948449e732ebf06a888eeb27ff548958b2395c9446b029d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.23/poky-8e092852b63e998d990b8f8e1aa91297dec4430f.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.23/poky-8e092852b63e998d990b8f8e1aa91297dec4430f.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>`
- Tag: :oe_git:`yocto-4.0.23 </openembedded-core/log/?h=yocto-4.0.23>`
- Git Revision: :oe_git:`fb45c5cf8c2b663af293acb069d446610f77ff1a </openembedded-core/commit/?id=fb45c5cf8c2b663af293acb069d446610f77ff1a>`
- Release Artefact: oecore-fb45c5cf8c2b663af293acb069d446610f77ff1a
- sha: 1d394370ea7d43fb885ab8a952d6d1e43f1a850745a5152d5ead5565a283a0f5
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.23/oecore-fb45c5cf8c2b663af293acb069d446610f77ff1a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.23/oecore-fb45c5cf8c2b663af293acb069d446610f77ff1a.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.23 </meta-mingw/log/?h=yocto-4.0.23>`
- Git Revision: :yocto_git:`87c22abb1f11be430caf4372e6b833dc7d77564e </meta-mingw/commit/?id=87c22abb1f11be430caf4372e6b833dc7d77564e>`
- Release Artefact: meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e
- sha: f0bc4873e2e0319fb9d6d6ab9b98eb3f89664d4339a167d2db6a787dd12bc1a8
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.23/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.23/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
meta-gplv2
- Repository Location: :yocto_git:`/meta-gplv2`
- Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.23 </meta-gplv2/log/?h=yocto-4.0.23>`
- Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>`
- Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a
- sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.23/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.23/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>`
- Tag: :oe_git:`yocto-4.0.23 </bitbake/log/?h=yocto-4.0.23>`
- Git Revision: :oe_git:`fb73c495c45d1d4107cfd60b67a5b4f11a99647b </bitbake/commit/?id=fb73c495c45d1d4107cfd60b67a5b4f11a99647b>`
- Release Artefact: bitbake-fb73c495c45d1d4107cfd60b67a5b4f11a99647b
- sha: 5cd271299951f25912a2e8d4de6d8769a4c0bb3bbcfc90815be41f23fd299a0b
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.23/bitbake-fb73c495c45d1d4107cfd60b67a5b4f11a99647b.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.23/bitbake-fb73c495c45d1d4107cfd60b67a5b4f11a99647b.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.23 </yocto-docs/log/?h=yocto-4.0.23>`
- Git Revision: :yocto_git:`TBD </yocto-docs/commit/?id=TBD>`

View File

@@ -0,0 +1,383 @@
Release notes for Yocto-4.0.24 (Kirkstone)
------------------------------------------
Security Fixes in Yocto-4.0.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- coreutils: Fix :cve_nist:`2024-0684`
- cpio: Ignore :cve_nist:`2023-7216`
- diffoscope: Fix :cve_nist:`2024-25711`
- ffmpeg: fix :cve_mitre:`2023-47342`, :cve_nist:`2023-50007`, :cve_nist:`2023-50008`,
:cve_nist:`2023-51793`, :cve_nist:`2023-51794`, :cve_nist:`2023-51796`, :cve_nist:`2023-51798`,
:cve_nist:`2024-7055`, :cve_nist:`2024-31578`, :cve_nist:`2024-31582`, :cve_nist:`2024-32230`,
:cve_nist:`2024-35366`, :cve_nist:`2024-35367` and :cve_nist:`2024-35368`
- ghostscript: Fix :cve_nist:`2024-46951`, :cve_nist:`2024-46952`, :cve_nist:`2024-46953`,
:cve_nist:`2024-46955` and :cve_nist:`2024-46956`
- ghostscript: Ignore :cve_nist:`2024-46954`
- glib-2.0: Fix :cve_nist:`2024-52533`
- gnupg: Ignore :cve_nist:`2022-3515`
- grub: Ignore :cve_nist:`2024-1048` and :cve_nist:`2023-4001`
- gstreame1.0: Ignore :cve_nist:`2023-40474`, :cve_nist:`2023-40475`, :cve_nist:`2023-40476`,
:cve_nist:`2023-44429`, :cve_nist:`2023-44446`, :cve_nist:`2023-50186` and :cve_nist:`2024-0444`
- gstreamer1.0-plugins-base: Fix :cve_nist:`2024-47538`, :cve_nist:`2024-47541`,
:cve_nist:`2024-47542`, :cve_nist:`2024-47600`, :cve_nist:`2024-47607`, :cve_nist:`2024-47615`
and :cve_nist:`2024-47835`
- gstreamer1.0-plugins-good: Fix :cve_nist:`2024-47537`, :cve_nist:`2024-47539`,
:cve_nist:`2024-47540`, :cve_nist:`2024-47543`, :cve_nist:`2024-47544`, :cve_nist:`2024-47545`,
:cve_nist:`2024-47546`, :cve_nist:`2024-47596`, :cve_nist:`2024-47597`, :cve_nist:`2024-47598`,
:cve_nist:`2024-47599`, :cve_nist:`2024-47601`, :cve_nist:`2024-47602`, :cve_nist:`2024-47603`,
:cve_nist:`2024-47606`, :cve_nist:`2024-47613`, :cve_nist:`2024-47774`, :cve_nist:`2024-47775`,
:cve_nist:`2024-47776`, :cve_nist:`2024-47777`, :cve_nist:`2024-47778` and :cve_nist:`2024-47834`
- gstreamer1.0: Fix :cve_nist:`2024-47606`
- libarchive: Fix :cve_nist:`2024-20696`
- libpam: Fix :cve_nist:`2024-10041`
- libsdl2: Ignore :cve_nist:`2020-14409` and :cve_nist:`2020-14410`
- libsndfile1: Fix :cve_nist:`2022-33065` and :cve_nist:`2024-50612`
- libsoup-2.4: Fix :cve_nist:`2024-52530`, :cve_nist:`2024-52531` and :cve_nist:`2024-52532`
- libsoup: Fix :cve_nist:`2024-52530`, :cve_nist:`2024-52531` and :cve_nist:`2024-52532`
- linux-yocto/5.10: Fix :cve_nist:`2023-52889`, :cve_nist:`2023-52917`, :cve_nist:`2023-52918`,
:cve_nist:`2024-41011`, :cve_nist:`2024-42259`, :cve_nist:`2024-42271`, :cve_nist:`2024-42272`,
:cve_nist:`2024-42280`, :cve_nist:`2024-42283`, :cve_nist:`2024-42284`, :cve_nist:`2024-42285`,
:cve_nist:`2024-42286`, :cve_nist:`2024-42287`, :cve_nist:`2024-42288`, :cve_nist:`2024-42289`,
:cve_nist:`2024-42301`, :cve_nist:`2024-42302`, :cve_nist:`2024-42309`, :cve_nist:`2024-42310`,
:cve_nist:`2024-42311`, :cve_nist:`2024-42313`, :cve_nist:`2024-43828`, :cve_nist:`2024-43856`,
:cve_nist:`2024-43858`, :cve_nist:`2024-43860`, :cve_nist:`2024-43861`, :cve_nist:`2024-43871`,
:cve_nist:`2024-43882`, :cve_nist:`2024-43889`, :cve_nist:`2024-43890`, :cve_nist:`2024-43893`,
:cve_nist:`2024-43894`, :cve_nist:`2024-43907`, :cve_nist:`2024-43908`, :cve_nist:`2024-43914`,
:cve_nist:`2024-44935`, :cve_nist:`2024-44944`, :cve_nist:`2024-44947`, :cve_nist:`2024-44954`,
:cve_nist:`2024-44960`, :cve_nist:`2024-44965`, :cve_nist:`2024-44969`, :cve_nist:`2024-44971`,
:cve_nist:`2024-44987`, :cve_nist:`2024-44988`, :cve_nist:`2024-44989`, :cve_nist:`2024-44990`,
:cve_nist:`2024-44995`, :cve_nist:`2024-44998`, :cve_nist:`2024-44999`, :cve_nist:`2024-45003`,
:cve_nist:`2024-45006`, :cve_nist:`2024-45016`, :cve_nist:`2024-45018`, :cve_nist:`2024-45021`,
:cve_nist:`2024-45025`, :cve_nist:`2024-45026`, :cve_nist:`2024-45028`, :cve_nist:`2024-46673`,
:cve_nist:`2024-46674`, :cve_nist:`2024-46675`, :cve_nist:`2024-46676`, :cve_nist:`2024-46677`,
:cve_nist:`2024-46679`, :cve_nist:`2024-46685`, :cve_nist:`2024-46689`, :cve_nist:`2024-46702`,
:cve_nist:`2024-46707`, :cve_nist:`2024-46714`, :cve_nist:`2024-46719`, :cve_nist:`2024-46721`,
:cve_nist:`2024-46722`, :cve_nist:`2024-46723`, :cve_nist:`2024-46724`, :cve_nist:`2024-46725`,
:cve_nist:`2024-46731`, :cve_nist:`2024-46737`, :cve_nist:`2024-46738`, :cve_nist:`2024-46739`,
:cve_nist:`2024-46740`, :cve_nist:`2024-46743`, :cve_nist:`2024-46744`, :cve_nist:`2024-46747`,
:cve_nist:`2024-46750`, :cve_nist:`2024-46755`, :cve_nist:`2024-46759`, :cve_nist:`2024-46761`,
:cve_nist:`2024-46763`, :cve_nist:`2024-46771`, :cve_nist:`2024-46777`, :cve_nist:`2024-46780`,
:cve_nist:`2024-46781`, :cve_nist:`2024-46782`, :cve_nist:`2024-46783`, :cve_nist:`2024-46791`,
:cve_nist:`2024-46798`, :cve_nist:`2024-46800`, :cve_nist:`2024-46804`, :cve_nist:`2024-46814`,
:cve_nist:`2024-46815`, :cve_nist:`2024-46817`, :cve_nist:`2024-46818`, :cve_nist:`2024-46819`,
:cve_nist:`2024-46822`, :cve_nist:`2024-46828`, :cve_nist:`2024-46829`, :cve_nist:`2024-46832`,
:cve_nist:`2024-46840`, :cve_nist:`2024-46844`, :cve_nist:`2024-47659`, :cve_nist:`2024-47660`,
:cve_nist:`2024-47663`, :cve_nist:`2024-47667`, :cve_nist:`2024-47668`, :cve_nist:`2024-47669`,
:cve_nist:`2024-47679`, :cve_nist:`2024-47684`, :cve_nist:`2024-47685`, :cve_nist:`2024-47692`,
:cve_nist:`2024-47697`, :cve_nist:`2024-47698`, :cve_nist:`2024-47699`, :cve_nist:`2024-47701`,
:cve_nist:`2024-47705`, :cve_nist:`2024-47706`, :cve_nist:`2024-47710`, :cve_nist:`2024-47712`,
:cve_nist:`2024-47713`, :cve_nist:`2024-47718`, :cve_nist:`2024-47723`, :cve_nist:`2024-47735`,
:cve_nist:`2024-47737`, :cve_nist:`2024-47739`, :cve_nist:`2024-47742`, :cve_nist:`2024-47747`,
:cve_nist:`2024-47748`, :cve_nist:`2024-47749`, :cve_nist:`2024-47757`, :cve_nist:`2024-49851`,
:cve_nist:`2024-49858`, :cve_nist:`2024-49860`, :cve_nist:`2024-49863`, :cve_nist:`2024-49867`,
:cve_nist:`2024-49868`, :cve_nist:`2024-49875`, :cve_nist:`2024-49877`, :cve_nist:`2024-49878`,
:cve_nist:`2024-49879`, :cve_nist:`2024-49881`, :cve_nist:`2024-49882`, :cve_nist:`2024-49883`,
:cve_nist:`2024-49884`, :cve_nist:`2024-49889`, :cve_nist:`2024-49890`, :cve_nist:`2024-49892`,
:cve_nist:`2024-49894`, :cve_nist:`2024-49895`, :cve_nist:`2024-49896`, :cve_nist:`2024-49900`,
:cve_nist:`2024-49902`, :cve_nist:`2024-49903`, :cve_nist:`2024-49907`, :cve_nist:`2024-49913`,
:cve_nist:`2024-49924`, :cve_nist:`2024-49930`, :cve_nist:`2024-49933`, :cve_nist:`2024-49936`,
:cve_nist:`2024-49938`, :cve_nist:`2024-49944`, :cve_nist:`2024-49948`, :cve_nist:`2024-49949`,
:cve_nist:`2024-49952`, :cve_nist:`2024-49955`, :cve_nist:`2024-49957`, :cve_nist:`2024-49958`,
:cve_nist:`2024-49959`, :cve_nist:`2024-49962`, :cve_nist:`2024-49963`, :cve_nist:`2024-49965`,
:cve_nist:`2024-49966`, :cve_nist:`2024-49969`, :cve_nist:`2024-49973`, :cve_nist:`2024-49975`,
:cve_nist:`2024-49977`, :cve_nist:`2024-49981`, :cve_nist:`2024-49982`, :cve_nist:`2024-49983`,
:cve_nist:`2024-49985`, :cve_nist:`2024-49995`, :cve_nist:`2024-49997`, :cve_nist:`2024-50001`,
:cve_nist:`2024-50006`, :cve_nist:`2024-50007`, :cve_nist:`2024-50008`, :cve_nist:`2024-50013`,
:cve_nist:`2024-50015`, :cve_nist:`2024-50024`, :cve_nist:`2024-50033`, :cve_nist:`2024-50035`,
:cve_nist:`2024-50039`, :cve_nist:`2024-50040`, :cve_nist:`2024-50044`, :cve_nist:`2024-50045`,
:cve_nist:`2024-50046`, :cve_nist:`2024-50049`, :cve_nist:`2024-50059`, :cve_nist:`2024-50095`,
:cve_nist:`2024-50096`, :cve_nist:`2024-50179`, :cve_nist:`2024-50180`, :cve_nist:`2024-50181`,
:cve_nist:`2024-50184` and :cve_nist:`2024-50188`
- linux-yocto/5.15: Fix :cve_nist:`2022-48695`, :cve_nist:`2023-52530`, :cve_nist:`2023-52917`,
:cve_nist:`2024-45009`, :cve_nist:`2024-46714`, :cve_nist:`2024-46719`, :cve_nist:`2024-46721`,
:cve_nist:`2024-46722`, :cve_nist:`2024-46723`, :cve_nist:`2024-46724`, :cve_nist:`2024-46725`,
:cve_nist:`2024-46731`, :cve_nist:`2024-46732`, :cve_nist:`2024-46737`, :cve_nist:`2024-46738`,
:cve_nist:`2024-46739`, :cve_nist:`2024-46740`, :cve_nist:`2024-46743`, :cve_nist:`2024-46744`,
:cve_nist:`2024-46746`, :cve_nist:`2024-46747`, :cve_nist:`2024-46750`, :cve_nist:`2024-46755`,
:cve_nist:`2024-46759`, :cve_nist:`2024-46761`, :cve_nist:`2024-46763`, :cve_nist:`2024-46771`,
:cve_nist:`2024-46777`, :cve_nist:`2024-46780`, :cve_nist:`2024-46781`, :cve_nist:`2024-46782`,
:cve_nist:`2024-46783`, :cve_nist:`2024-46791`, :cve_nist:`2024-46795`, :cve_nist:`2024-46798`,
:cve_nist:`2024-46800`, :cve_nist:`2024-46804`, :cve_nist:`2024-46805`, :cve_nist:`2024-46807`,
:cve_nist:`2024-46810`, :cve_nist:`2024-46814`, :cve_nist:`2024-46815`, :cve_nist:`2024-46817`,
:cve_nist:`2024-46818`, :cve_nist:`2024-46819`, :cve_nist:`2024-46822`, :cve_nist:`2024-46828`,
:cve_nist:`2024-46829`, :cve_nist:`2024-46832`, :cve_nist:`2024-46840`, :cve_nist:`2024-46844`,
:cve_nist:`2024-47659`, :cve_nist:`2024-47660`, :cve_nist:`2024-47663`, :cve_nist:`2024-47665`,
:cve_nist:`2024-47667`, :cve_nist:`2024-47668`, :cve_nist:`2024-47669`, :cve_nist:`2024-47674`,
:cve_nist:`2024-47679`, :cve_nist:`2024-47684`, :cve_nist:`2024-47685`, :cve_nist:`2024-47690`,
:cve_nist:`2024-47692`, :cve_nist:`2024-47693`, :cve_nist:`2024-47695`, :cve_nist:`2024-47696`,
:cve_nist:`2024-47697`, :cve_nist:`2024-47698`, :cve_nist:`2024-47699`, :cve_nist:`2024-47701`,
:cve_nist:`2024-47705`, :cve_nist:`2024-47706`, :cve_nist:`2024-47710`, :cve_nist:`2024-47712`,
:cve_nist:`2024-47713`, :cve_nist:`2024-47718`, :cve_nist:`2024-47720`, :cve_nist:`2024-47723`,
:cve_nist:`2024-47734`, :cve_nist:`2024-47735`, :cve_nist:`2024-47737`, :cve_nist:`2024-47739`,
:cve_nist:`2024-47742`, :cve_nist:`2024-47747`, :cve_nist:`2024-47748`, :cve_nist:`2024-47749`,
:cve_nist:`2024-47757`, :cve_nist:`2024-49851`, :cve_nist:`2024-49852`, :cve_nist:`2024-49854`,
:cve_nist:`2024-49856`, :cve_nist:`2024-49858`, :cve_nist:`2024-49860`, :cve_nist:`2024-49863`,
:cve_nist:`2024-49866`, :cve_nist:`2024-49867`, :cve_nist:`2024-49868`, :cve_nist:`2024-49871`,
:cve_nist:`2024-49875`, :cve_nist:`2024-49877`, :cve_nist:`2024-49878`, :cve_nist:`2024-49879`,
:cve_nist:`2024-49881`, :cve_nist:`2024-49882`, :cve_nist:`2024-49883`, :cve_nist:`2024-49884`,
:cve_nist:`2024-49886`, :cve_nist:`2024-49889`, :cve_nist:`2024-49890`, :cve_nist:`2024-49892`,
:cve_nist:`2024-49894`, :cve_nist:`2024-49895`, :cve_nist:`2024-49896`, :cve_nist:`2024-49900`,
:cve_nist:`2024-49902`, :cve_nist:`2024-49903`, :cve_nist:`2024-49907`, :cve_nist:`2024-49913`,
:cve_nist:`2024-49924`, :cve_nist:`2024-49927`, :cve_nist:`2024-49930`, :cve_nist:`2024-49933`,
:cve_nist:`2024-49935`, :cve_nist:`2024-49936`, :cve_nist:`2024-49938`, :cve_nist:`2024-49944`,
:cve_nist:`2024-49946`, :cve_nist:`2024-49948`, :cve_nist:`2024-49949`, :cve_nist:`2024-49952`,
:cve_nist:`2024-49954`, :cve_nist:`2024-49955`, :cve_nist:`2024-49957`, :cve_nist:`2024-49958`,
:cve_nist:`2024-49959`, :cve_nist:`2024-49962`, :cve_nist:`2024-49963`, :cve_nist:`2024-49965`,
:cve_nist:`2024-49966`, :cve_nist:`2024-49969`, :cve_nist:`2024-49973`, :cve_nist:`2024-49975`,
:cve_nist:`2024-49977`, :cve_nist:`2024-49981`, :cve_nist:`2024-49982`, :cve_nist:`2024-49983`,
:cve_nist:`2024-49985`, :cve_nist:`2024-49995`, :cve_nist:`2024-49997`, :cve_nist:`2024-50000`,
:cve_nist:`2024-50001`, :cve_nist:`2024-50002`, :cve_nist:`2024-50003`, :cve_nist:`2024-50006`,
:cve_nist:`2024-50007`, :cve_nist:`2024-50008`, :cve_nist:`2024-50013`, :cve_nist:`2024-50015`,
:cve_nist:`2024-50019`, :cve_nist:`2024-50024`, :cve_nist:`2024-50031`, :cve_nist:`2024-50033`,
:cve_nist:`2024-50035`, :cve_nist:`2024-50038`, :cve_nist:`2024-50039`, :cve_nist:`2024-50040`,
:cve_nist:`2024-50041`, :cve_nist:`2024-50044`, :cve_nist:`2024-50045`, :cve_nist:`2024-50046`,
:cve_nist:`2024-50049`, :cve_nist:`2024-50059`, :cve_nist:`2024-50062`, :cve_nist:`2024-50074`,
:cve_nist:`2024-50082`, :cve_nist:`2024-50083`, :cve_nist:`2024-50093`, :cve_nist:`2024-50095`,
:cve_nist:`2024-50096`, :cve_nist:`2024-50099`, :cve_nist:`2024-50101`, :cve_nist:`2024-50103`,
:cve_nist:`2024-50110`, :cve_nist:`2024-50115`, :cve_nist:`2024-50116`, :cve_nist:`2024-50117`,
:cve_nist:`2024-50127`, :cve_nist:`2024-50128`, :cve_nist:`2024-50131`, :cve_nist:`2024-50134`,
:cve_nist:`2024-50141`, :cve_nist:`2024-50142`, :cve_nist:`2024-50143`, :cve_nist:`2024-50148`,
:cve_nist:`2024-50150`, :cve_nist:`2024-50151`, :cve_nist:`2024-50153`, :cve_nist:`2024-50154`,
:cve_nist:`2024-50156`, :cve_nist:`2024-50160`, :cve_nist:`2024-50162`, :cve_nist:`2024-50163`,
:cve_nist:`2024-50167`, :cve_nist:`2024-50168`, :cve_nist:`2024-50171`, :cve_nist:`2024-50179`,
:cve_nist:`2024-50180`, :cve_nist:`2024-50181`, :cve_nist:`2024-50182`, :cve_nist:`2024-50184`,
:cve_nist:`2024-50185`, :cve_nist:`2024-50186`, :cve_nist:`2024-50188`, :cve_nist:`2024-50189`,
:cve_nist:`2024-50191`, :cve_nist:`2024-50192`, :cve_nist:`2024-50193`, :cve_nist:`2024-50194`,
:cve_nist:`2024-50195`, :cve_nist:`2024-50196`, :cve_nist:`2024-50198`, :cve_nist:`2024-50201`,
:cve_nist:`2024-50202`, :cve_nist:`2024-50205`, :cve_nist:`2024-50208`, :cve_nist:`2024-50209`,
:cve_nist:`2024-50229`, :cve_nist:`2024-50230`, :cve_nist:`2024-50232`, :cve_nist:`2024-50233`,
:cve_nist:`2024-50234`, :cve_nist:`2024-50236`, :cve_nist:`2024-50237`, :cve_nist:`2024-50244`,
:cve_nist:`2024-50245`, :cve_nist:`2024-50247`, :cve_nist:`2024-50251`, :cve_nist:`2024-50257`,
:cve_nist:`2024-50259`, :cve_nist:`2024-50262`, :cve_nist:`2024-50264`, :cve_nist:`2024-50265`,
:cve_nist:`2024-50267`, :cve_nist:`2024-50268`, :cve_nist:`2024-50269`, :cve_nist:`2024-50273`,
:cve_nist:`2024-50278`, :cve_nist:`2024-50279`, :cve_nist:`2024-50282`, :cve_nist:`2024-50287`,
:cve_nist:`2024-50292`, :cve_nist:`2024-50296`, :cve_nist:`2024-50299`, :cve_nist:`2024-50301`,
:cve_nist:`2024-50302`, :cve_nist:`2024-53052`, :cve_nist:`2024-53055`, :cve_nist:`2024-53057`,
:cve_nist:`2024-53058`, :cve_nist:`2024-53059`, :cve_nist:`2024-53060`, :cve_nist:`2024-53061`,
:cve_nist:`2024-53063`, :cve_nist:`2024-53066`, :cve_nist:`2024-53088`, :cve_nist:`2024-53096`,
:cve_nist:`2024-53101`, :cve_nist:`2024-53103`, :cve_nist:`2024-53145`, :cve_nist:`2024-53146`,
:cve_nist:`2024-53150`, :cve_nist:`2024-53151`, :cve_nist:`2024-53155`, :cve_nist:`2024-53156`,
:cve_nist:`2024-53157`, :cve_nist:`2024-53165`, :cve_nist:`2024-53171`, :cve_nist:`2024-53173`,
:cve_nist:`2024-53226`, :cve_nist:`2024-53227`, :cve_nist:`2024-53237`, :cve_nist:`2024-56567`,
:cve_nist:`2024-56572`, :cve_nist:`2024-56574`, :cve_nist:`2024-56578`, :cve_nist:`2024-56581`,
:cve_nist:`2024-56593`, :cve_nist:`2024-56600`, :cve_nist:`2024-56601`, :cve_nist:`2024-56602`,
:cve_nist:`2024-56603`, :cve_nist:`2024-56605`, :cve_nist:`2024-56606`, :cve_nist:`2024-56614`,
:cve_nist:`2024-56622`, :cve_nist:`2024-56623`, :cve_nist:`2024-56629`, :cve_nist:`2024-56634`,
:cve_nist:`2024-56640`, :cve_nist:`2024-56642`, :cve_nist:`2024-56643`, :cve_nist:`2024-56648`,
:cve_nist:`2024-56650`, :cve_nist:`2024-56659`, :cve_nist:`2024-56662`, :cve_nist:`2024-56670`,
:cve_nist:`2024-56688`, :cve_nist:`2024-56694`, :cve_nist:`2024-56704`, :cve_nist:`2024-56708`,
:cve_nist:`2024-56720`, :cve_nist:`2024-56723`, :cve_nist:`2024-56724`, :cve_nist:`2024-56726`,
:cve_nist:`2024-56728`, :cve_nist:`2024-56739`, :cve_nist:`2024-56741`, :cve_nist:`2024-56745`,
:cve_nist:`2024-56746`, :cve_nist:`2024-56747`, :cve_nist:`2024-56748`, :cve_nist:`2024-56754`,
:cve_nist:`2024-56756`, :cve_nist:`2024-56770`, :cve_nist:`2024-56774`, :cve_nist:`2024-56776`,
:cve_nist:`2024-56777`, :cve_nist:`2024-56778`, :cve_nist:`2024-56779`, :cve_nist:`2024-56780`,
:cve_nist:`2024-56781`, :cve_nist:`2024-56785` and :cve_nist:`2024-56787`
- ovmf: Fix :cve_nist:`2022-36763`, :cve_nist:`2022-36764`, :cve_nist:`2022-36765`,
:cve_nist:`2023-45229`, :cve_nist:`2023-45230`, :cve_nist:`2023-45231`, :cve_nist:`2023-45232`,
:cve_nist:`2023-45233`, :cve_nist:`2023-45234`, :cve_nist:`2023-45235`, :cve_nist:`2023-45236`,
:cve_nist:`2023-45237`, :cve_nist:`2024-1298` and :cve_nist:`2024-38796`
- pixman: Ignore :cve_nist:`2023-37769`
- python3: Fix :cve_nist:`2024-9287`, :cve_nist:`2024-11168` and :cve_nist:`2024-50602`
- python3-pip: Fix :cve_nist:`2023-5752`
- python3-requests: Fix :cve_nist:`2024-35195`
- python3-zipp: Fix :cve_nist:`2024-5569`
- qemu: Fix :cve_nist:`2024-3446`, :cve_nist:`2024-3447` and :cve_nist:`2024-6505`
- qemu: Ignore :cve_nist:`2022-36648`
- subversion: Fix :cve_nist:`2024-46901`
- tiff: Fix :cve_nist:`2023-3164`
- tiff: Ignore :cve_nist:`2023-2731`
- webkitgtk: Fix :cve_nist:`2024-40776` and :cve_nist:`2024-40780`
- xserver-xorg: Fix :cve_nist:`2024-9632`
- xwayland: Fix :cve_nist:`2023-5380` and :cve_nist:`2024-0229`
Fixes in Yocto-4.0.24
~~~~~~~~~~~~~~~~~~~~~
- base-passwd: Add the sgx group
- base-passwd: Regenerate the patches
- base-passwd: Update the status for two patches
- base-passwd: Update to 3.5.52
- base-passwd: add the wheel group
- base-passwd: fix patchreview warning
- bitbake: fetch2: use persist_data context managers
- bitbake: fetch/wget: Increase timeout to 100s from 30s
- bitbake: persist_data: close connection in SQLTable __exit__
- build-appliance-image: Update to kirkstone head revision
- builder: set :term:`CVE_PRODUCT`
- contributor-guide: submit-changes.rst: suggest to remove the git signature
- cve-update-nvd2-native: Tweak to work better with NFS :term:`DL_DIR`
- dbus: disable assertions and enable only modular tests
- do_package/sstate/sstatesig: Change timestamp clamping to hash output only
- docs: Gather dependencies in poky.yaml.in
- docs: standards.md: add a section on admonitions
- gstreamer1.0: improve test reliability
- linux-yocto/5.10: update to v5.10.227
- linux-yocto/5.15: update to v5.15.175
- llvm: reduce size of -dbg package
- lttng-modules: fix build error after kernel update to 5.15.171
- migration-guides: add release notes for 4.0.23
- ninja: fix build with python 3.13
- oeqa/utils/gitarchive: Return tag name and improve exclude handling
- ovmf-native: remove .pyc files from install
- package.bbclass: Use shlex instead of deprecated pipes
- package_rpm: restrict rpm to 4 threads
- package_rpm: use zstd's default compression level
- poky.conf: add new tested distros
- poky.conf: bump version for 4.0.24
- poky.yaml.in: add missing locales dependency
- python3: upgrade to 3.10.16
- ref-manual: SSTATE_MIRRORS/SOURCE_MIRROR_URL: add instructions for mirror authentication
- ref-manual: classes: fix bin_package description
- ref-manual: devtool-reference: add warning note on deploy-target and shared objects
- ref-manual: move runtime-testing section to the test-manual
- ref-manual: packages: move ptest section to the test-manual
- ref-manual: system-requirements: update list of supported distros
- ref-manual: use standardized method accross both ubuntu and debian for locale install
- resulttool: Add --logfile-archive option to store mode
- resulttool: Allow store to filter to specific revisions
- resulttool: Clean up repoducible build logs
- resulttool: Fix passthrough of --all files in store mode
- resulttool: Handle ltp rawlogs as well as ptest
- resulttool: Improve repo layout for oeselftest results
- resulttool: Trim the precision of duration information
- resulttool: Use single space indentation in json output
- rootfs-postcommands.bbclass: make opkg status reproducible
- rxvt-unicode.inc: disable the terminfo installation by setting TIC to :
- sanity: check for working user namespaces
- scripts/install-buildtools: Update to 4.0.22
- selftest/reproducible: Clean up pathnames
- selftest/reproducible: Drop rawlogs
- test-manual: reproducible-builds.rst: document :term:`OEQA_REPRODUCIBLE_TEST_TARGET` and
:term:`OEQA_REPRODUCIBLE_TEST_SSTATE_TARGETS`
- test-manual: reproducible-builds.rst: show how to build a single package
- toolchain-shar-extract.sh: exit when post-relocate-setup.sh fails
- tzdata & tzcode-native: upgrade 2024b
- udev-extraconf: fix network.sh script did not configure hotplugged interfaces
- unzip: Fix configure tests to use modern C
- webkitgtk: Fix build on 32bit arm
- webkitgtk: fix perl-native dependency
- webkitgtk: reduce size of -dbg package
- wireless-regdb: upgrade to 2024.10.07
Known Issues in Yocto-4.0.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-4.0.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Aleksandar Nikolic
- Alex Kiernan
- Alexander Kanavin
- Alexandre Belloni
- Antonin Godard
- Archana Polampalli
- Bruce Ashfield
- Changqing Li
- Chen Qi
- Chris Laplante
- Divya Chellam
- Ernst Persson
- Guénaël Muller
- Hitendra Prajapati
- Hongxu Jia
- Jiaying Song
- Jinfeng Wang
- Khem Raj
- Lee Chee Yang
- Liyin Zhang
- Louis Rannou
- Markus Volk
- Mikko Rapeli
- Ovidiu Panait
- Peter Kjellerstedt
- Peter Marko
- Regis Dargent
- Richard Purdie
- Rohini Sangam
- Ross Burton
- Soumya Sambu
- Steve Sakoman
- Trevor Gamblin
- Vijay Anusuri
- Wang Mingyu
- Yogita Urade
- Zahir Hussain
Repositories / Downloads for Yocto-4.0.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.24 </poky/log/?h=yocto-4.0.24>`
- Git Revision: :yocto_git:`f50532593651dff82bc952288d786c55038c2c86 </poky/commit/?id=f50532593651dff82bc952288d786c55038c2c86>`
- Release Artefact: poky-f50532593651dff82bc952288d786c55038c2c86
- sha: 0aa062d19510394748db9a2d6ded2d764f435383296d9c94fb6b25755280556e
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.24/poky-f50532593651dff82bc952288d786c55038c2c86.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.24/poky-f50532593651dff82bc952288d786c55038c2c86.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>`
- Tag: :oe_git:`yocto-4.0.24 </openembedded-core/log/?h=yocto-4.0.24>`
- Git Revision: :oe_git:`a270d4c957259761bcc7382fcc54642a02f9fc7d </openembedded-core/commit/?id=a270d4c957259761bcc7382fcc54642a02f9fc7d>`
- Release Artefact: oecore-a270d4c957259761bcc7382fcc54642a02f9fc7d
- sha: b08b9b16c8ffa587d521ad28e24e38c79d757a6f0839d18165ebac3081a34b68
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.24/oecore-a270d4c957259761bcc7382fcc54642a02f9fc7d.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.24/oecore-a270d4c957259761bcc7382fcc54642a02f9fc7d.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.24 </meta-mingw/log/?h=yocto-4.0.24>`
- Git Revision: :yocto_git:`87c22abb1f11be430caf4372e6b833dc7d77564e </meta-mingw/commit/?id=87c22abb1f11be430caf4372e6b833dc7d77564e>`
- Release Artefact: meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e
- sha: f0bc4873e2e0319fb9d6d6ab9b98eb3f89664d4339a167d2db6a787dd12bc1a8
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.24/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.24/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
meta-gplv2
- Repository Location: :yocto_git:`/meta-gplv2`
- Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.24 </meta-gplv2/log/?h=yocto-4.0.24>`
- Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>`
- Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a
- sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.24/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.24/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>`
- Tag: :oe_git:`yocto-4.0.24 </bitbake/log/?h=yocto-4.0.24>`
- Git Revision: :oe_git:`3f88b005244a0afb5d5c7260e54a94a453ec9b3e </bitbake/commit/?id=3f88b005244a0afb5d5c7260e54a94a453ec9b3e>`
- Release Artefact: bitbake-3f88b005244a0afb5d5c7260e54a94a453ec9b3e
- sha: 31f442b72ec7d81ca75509b1a7179c3fe3942528b1e31c823b21a413244bd15b
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.24/bitbake-3f88b005244a0afb5d5c7260e54a94a453ec9b3e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.24/bitbake-3f88b005244a0afb5d5c7260e54a94a453ec9b3e.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.24 </yocto-docs/log/?h=yocto-4.0.24>`
- Git Revision: :yocto_git:`3128bf149f40928e6c2a3e264590a0c6c9778c6a </yocto-docs/commit/?id=3128bf149f40928e6c2a3e264590a0c6c9778c6a>`

View File

@@ -0,0 +1,167 @@
Release notes for Yocto-4.0.25 (Kirkstone)
------------------------------------------
Security Fixes in Yocto-4.0.25
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- avahi: Fix :cve_nist:`2024-52616`
- binutils: Fix :cve_nist:`2024-53589`
- gdb: Fix :cve_nist:`2024-53589`
- go: Fix :cve_nist:`2024-34155`, :cve_nist:`2024-34156`, :cve_nist:`2024-34158` and
:cve_nist:`2024-45336`
- gstreamer1.0: Ignore :cve_nist:`2024-47537`, :cve_nist:`2024-47539`, :cve_nist:`2024-47540`,
:cve_nist:`2024-47543`, :cve_nist:`2024-47544`, :cve_nist:`2024-47545`, :cve_nist:`2024-47538`,
:cve_nist:`2024-47541`, :cve_nist:`2024-47542`, :cve_nist:`2024-47600`, :cve_nist:`2024-47607`,
:cve_nist:`2024-47615`, :cve_nist:`2024-47835`, :cve_nist:`2024-47546`, :cve_nist:`2024-47596`,
:cve_nist:`2024-47597`, :cve_nist:`2024-47598`, :cve_nist:`2024-47599`, :cve_nist:`2024-47601`,
:cve_nist:`2024-47777`, :cve_nist:`2024-47778`, :cve_nist:`2024-47834`, :cve_nist:`2024-47602`,
:cve_nist:`2024-47603`, :cve_nist:`2024-47613`, :cve_nist:`2024-47774`, :cve_nist:`2024-47775`
and :cve_nist:`2024-47776`
- linux-yocto/5.15: Fix :cve_nist:`2024-36476`, :cve_nist:`2024-55916`, :cve_nist:`2024-56369`,
:cve_nist:`2024-56626`, :cve_nist:`2024-56627`, :cve_nist:`2024-56715`, :cve_nist:`2024-56716`,
:cve_nist:`2024-57802`, :cve_nist:`2024-57807`, :cve_nist:`2024-57841`, :cve_nist:`2024-57890`,
:cve_nist:`2024-57896`, :cve_nist:`2024-57900`, :cve_nist:`2024-57910`, :cve_nist:`2024-57911`,
:cve_nist:`2024-57938`, :cve_nist:`2024-57951`, :cve_nist:`2025-21631`, :cve_nist:`2025-21665`,
:cve_nist:`2025-21666`, :cve_nist:`2025-21669`, :cve_nist:`2025-21680`, :cve_nist:`2025-21683`,
:cve_nist:`2025-21694`, :cve_nist:`2025-21697` and :cve_nist:`2025-21699`
- ofono: Fix :cve_nist:`2024-7539`, :cve_nist:`2024-7540`, :cve_nist:`2024-7541`,
:cve_nist:`2024-7542`, :cve_nist:`2024-7543`, :cve_nist:`2024-7544`, :cve_nist:`2024-7545`,
:cve_nist:`2024-7546` and :cve_nist:`2024-7547`
- openssl: Fix :cve_nist:`2024-13176`
- rsync: Fix :cve_nist:`2024-12084`, :cve_nist:`2024-12085`, :cve_nist:`2024-12086`,
:cve_nist:`2024-12087`, :cve_nist:`2024-12088` and :cve_nist:`2024-12747`
- ruby: Fix :cve_nist:`2024-49761`
- socat: Fix :cve_nist:`2024-54661`
- vte: Fix :cve_nist:`2024-37535`
- wget: Fix :cve_nist:`2024-10524`
Fixes in Yocto-4.0.25
~~~~~~~~~~~~~~~~~~~~~
- bitbake: tests/fetch: Fix git shallow test failure with git >= 2.48
- build-appliance-image: Update to kirkstone head revision
- classes-global/insane: Look up all runtime providers for file-rdeps
- classes/nativesdk: also override :term:`TUNE_PKGARCH`
- classes/qemu: use tune to select QEMU_EXTRAOPTIONS, not package architecture
- cmake: apply parallel build settings to ptest tasks
- dev-manual/building: document the initramfs-framework recipe
- docs: Update autobuilder URLs to valkyrie
- documentation: Fix typo in standards.md
- glibc: Suppress GCC -Os warning on user2netname for sunrpc
- glibc: stable 2.35 branch updates
- lib/packagedata.py: Add API to iterate over rprovides
- linux-yocto/5.15: upgrade to v5.15.178
- migration-guides: add release notes for 4.0.24
- openssl: upgrade to 3.0.16
- poky.conf: bump version for 4.0.25
- python3: Treat UID/GID overflow as failure
- rsync: Delete pedantic errors re-ordering patch
- rsync: upgrade to 3.2.7
- rust-common.bbclass: soft assignment for RUSTLIB path
- scripts/install-buildtools: Update to 4.0.23
- test-manual/reproducible-builds: fix reproducible links
Known Issues in Yocto-4.0.25
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-4.0.25
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- Aleksandar Nikolic
- Alexander Kanavin
- Antonin Godard
- Archana Polampalli
- Bruce Ashfield
- Deepesh Varatharajan
- Divya Chellam
- Joshua Watt
- Khem Raj
- Lee Chee Yang
- Nikhil R
- Pedro Ferreira
- Peter Marko
- Praveen Kumar
- Richard Purdie
- Ross Burton
- Simon A. Eugster
- Steve Sakoman
- Yash Shinde
- Yogita Urade
- Zhang Peng
Repositories / Downloads for Yocto-4.0.25
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.25 </poky/log/?h=yocto-4.0.25>`
- Git Revision: :yocto_git:`b5aa03f336c121269551f9e7baed4c677c76bb39 </poky/commit/?id=b5aa03f336c121269551f9e7baed4c677c76bb39>`
- Release Artefact: poky-b5aa03f336c121269551f9e7baed4c677c76bb39
- sha: 7afbcb25f0dd89a4fb6dd4c5945061705ef9ce79a6863806278603273c2b3b4a
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.25/poky-b5aa03f336c121269551f9e7baed4c677c76bb39.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.25/poky-b5aa03f336c121269551f9e7baed4c677c76bb39.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>`
- Tag: :oe_git:`yocto-4.0.25 </openembedded-core/log/?h=yocto-4.0.25>`
- Git Revision: :oe_git:`5a794fd244f7fdeb426bd5e3def6b4effc0e8c62 </openembedded-core/commit/?id=5a794fd244f7fdeb426bd5e3def6b4effc0e8c62>`
- Release Artefact: oecore-5a794fd244f7fdeb426bd5e3def6b4effc0e8c62
- sha: 8fc93109693e5f4702b3fe0633b6be833605291b3d595dc8bdeb6379f40cd2de
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.25/oecore-5a794fd244f7fdeb426bd5e3def6b4effc0e8c62.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.25/oecore-5a794fd244f7fdeb426bd5e3def6b4effc0e8c62.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.25 </meta-mingw/log/?h=yocto-4.0.25>`
- Git Revision: :yocto_git:`87c22abb1f11be430caf4372e6b833dc7d77564e </meta-mingw/commit/?id=87c22abb1f11be430caf4372e6b833dc7d77564e>`
- Release Artefact: meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e
- sha: f0bc4873e2e0319fb9d6d6ab9b98eb3f89664d4339a167d2db6a787dd12bc1a8
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.25/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.25/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
meta-gplv2
- Repository Location: :yocto_git:`/meta-gplv2`
- Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.25 </meta-gplv2/log/?h=yocto-4.0.25>`
- Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>`
- Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a
- sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.25/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.25/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>`
- Tag: :oe_git:`yocto-4.0.25 </bitbake/log/?h=yocto-4.0.25>`
- Git Revision: :oe_git:`e71f1ce53cf3b8320caa481ae62d1ce2900c4670 </bitbake/commit/?id=e71f1ce53cf3b8320caa481ae62d1ce2900c4670>`
- Release Artefact: bitbake-e71f1ce53cf3b8320caa481ae62d1ce2900c4670
- sha: 007eef35174586c85b233f4ec91578956fe21e0236f7ca2c3f90f9d034f94b5b
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.25/bitbake-e71f1ce53cf3b8320caa481ae62d1ce2900c4670.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.25/bitbake-e71f1ce53cf3b8320caa481ae62d1ce2900c4670.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.25 </yocto-docs/log/?h=yocto-4.0.25>`
- Git Revision: :yocto_git:`c6dce0c77481dee7b0a0fcdc803f755ceccef234 </yocto-docs/commit/?id=c6dce0c77481dee7b0a0fcdc803f755ceccef234>`

View File

@@ -0,0 +1,263 @@
Release notes for Yocto-4.0.26 (Kirkstone)
------------------------------------------
Security Fixes in Yocto-4.0.26
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- bind: Fix :cve_nist:`2024-11187` and :cve_nist:`2024-12705`
- binutils: Fix :cve_nist:`2025-0840`
- elfutils: Fix :cve_nist:`2025-1352` and :cve_nist:`2025-1372`
- ffmpeg: Fix CVE-2024-28661, :cve_nist:`2024-35369`, :cve_nist:`2024-36613`, :cve_nist:`2024-36616`,
:cve_nist:`2024-36617`, :cve_nist:`2024-36618`, :cve_nist:`2025-0518` and :cve_nist:`2025-25473`
- ffmpeg: Ignore :cve_nist:`2023-46407`, :cve_nist:`2023-47470`, :cve_nist:`2024-7272`,
:cve_nist:`2024-22860`, :cve_nist:`2024-22861` and :cve_nist:`2024-22862`
- freetype: Fix :cve_nist:`2025-27363`
- gnutls: Fix :cve_nist:`2024-12243`
- grub: Fix :cve_nist:`2024-45774`, :cve_nist:`2024-45775`, :cve_nist:`2024-45776`,
:cve_nist:`2024-45777`, :cve_nist:`2024-45778`, :cve_nist:`2024-45779`, :cve_nist:`2024-45780`,
:cve_nist:`2024-45781`, :cve_nist:`2024-45782`, :cve_nist:`2024-45783`, :cve_nist:`2024-56737`,
:cve_nist:`2025-0622`, :cve_nist:`2025-0624`, :cve_nist:`2025-0677`, :cve_nist:`2025-0684`,
:cve_nist:`2025-0685`, :cve_nist:`2025-0686`, :cve_nist:`2025-0689`, :cve_nist:`2025-0678`,
:cve_nist:`2025-0690`, :cve_nist:`2025-1118` and :cve_nist:`2025-1125`
- gstreamer1.0-rtsp-server: fix :cve_nist:`2024-44331`
- libarchive: Fix :cve_nist:`2025-25724`
- libarchive: Ignore :cve_nist:`2025-1632`
- libcap: Fix :cve_nist:`2025-1390`
- linux-yocto/5.10: Fix :cve_nist:`2024-36476`, :cve_nist:`2024-43098`, :cve_nist:`2024-47143`,
:cve_nist:`2024-48881`, :cve_nist:`2024-50051`, :cve_nist:`2024-50074`, :cve_nist:`2024-50082`,
:cve_nist:`2024-50083`, :cve_nist:`2024-50099`, :cve_nist:`2024-50115`, :cve_nist:`2024-50116`,
:cve_nist:`2024-50117`, :cve_nist:`2024-50142`, :cve_nist:`2024-50148`, :cve_nist:`2024-50150`,
:cve_nist:`2024-50151`, :cve_nist:`2024-50167`, :cve_nist:`2024-50168`, :cve_nist:`2024-50171`,
:cve_nist:`2024-50185`, :cve_nist:`2024-50192`, :cve_nist:`2024-50193`, :cve_nist:`2024-50194`,
:cve_nist:`2024-50195`, :cve_nist:`2024-50198`, :cve_nist:`2024-50201`, :cve_nist:`2024-50202`,
:cve_nist:`2024-50205`, :cve_nist:`2024-50208`, :cve_nist:`2024-50209`, :cve_nist:`2024-50229`,
:cve_nist:`2024-50230`, :cve_nist:`2024-50233`, :cve_nist:`2024-50234`, :cve_nist:`2024-50236`,
:cve_nist:`2024-50237`, :cve_nist:`2024-50251`, :cve_nist:`2024-50262`, :cve_nist:`2024-50264`,
:cve_nist:`2024-50265`, :cve_nist:`2024-50267`, :cve_nist:`2024-50268`, :cve_nist:`2024-50269`,
:cve_nist:`2024-50273`, :cve_nist:`2024-50278`, :cve_nist:`2024-50279`, :cve_nist:`2024-50282`,
:cve_nist:`2024-50287`, :cve_nist:`2024-50292`, :cve_nist:`2024-50296`, :cve_nist:`2024-50299`,
:cve_nist:`2024-50301`, :cve_nist:`2024-50302`, :cve_nist:`2024-53042`, :cve_nist:`2024-53052`,
:cve_nist:`2024-53057`, :cve_nist:`2024-53059`, :cve_nist:`2024-53060`, :cve_nist:`2024-53061`,
:cve_nist:`2024-53063`, :cve_nist:`2024-53066`, :cve_nist:`2024-53096`, :cve_nist:`2024-53097`,
:cve_nist:`2024-53101`, :cve_nist:`2024-53103`, :cve_nist:`2024-53104`, :cve_nist:`2024-53145`,
:cve_nist:`2024-53146`, :cve_nist:`2024-53150`, :cve_nist:`2024-53155`, :cve_nist:`2024-53156`,
:cve_nist:`2024-53157`, :cve_nist:`2024-53161`, :cve_nist:`2024-53165`, :cve_nist:`2024-53171`,
:cve_nist:`2024-53173`, :cve_nist:`2024-53174`, :cve_nist:`2024-53194`, :cve_nist:`2024-53197`,
:cve_nist:`2024-53217`, :cve_nist:`2024-53226`, :cve_nist:`2024-53227`, :cve_nist:`2024-53237`,
:cve_nist:`2024-53239`, :cve_nist:`2024-55916`, :cve_nist:`2024-56548`, :cve_nist:`2024-56558`,
:cve_nist:`2024-56567`, :cve_nist:`2024-56568`, :cve_nist:`2024-56569`, :cve_nist:`2024-56572`,
:cve_nist:`2024-56574`, :cve_nist:`2024-56581`, :cve_nist:`2024-56587`, :cve_nist:`2024-56593`,
:cve_nist:`2024-56595`, :cve_nist:`2024-56596`, :cve_nist:`2024-56598`, :cve_nist:`2024-56600`,
:cve_nist:`2024-56601`, :cve_nist:`2024-56602`, :cve_nist:`2024-56603`, :cve_nist:`2024-56605`,
:cve_nist:`2024-56606`, :cve_nist:`2024-56615`, :cve_nist:`2024-56619`, :cve_nist:`2024-56623`,
:cve_nist:`2024-56629`, :cve_nist:`2024-56634`, :cve_nist:`2024-56642`, :cve_nist:`2024-56643`,
:cve_nist:`2024-56648`, :cve_nist:`2024-56650`, :cve_nist:`2024-56659`, :cve_nist:`2024-56662`,
:cve_nist:`2024-56670`, :cve_nist:`2024-56688`, :cve_nist:`2024-56698`, :cve_nist:`2024-56704`,
:cve_nist:`2024-56716`, :cve_nist:`2024-56720`, :cve_nist:`2024-56723`, :cve_nist:`2024-56724`,
:cve_nist:`2024-56728`, :cve_nist:`2024-56739`, :cve_nist:`2024-56746`, :cve_nist:`2024-56747`,
:cve_nist:`2024-56748`, :cve_nist:`2024-56754`, :cve_nist:`2024-56756`, :cve_nist:`2024-56770`,
:cve_nist:`2024-56779`, :cve_nist:`2024-56780`, :cve_nist:`2024-56781`, :cve_nist:`2024-56785`,
:cve_nist:`2024-57802`, :cve_nist:`2024-57807`, :cve_nist:`2024-57850`, :cve_nist:`2024-57874`,
:cve_nist:`2024-57890`, :cve_nist:`2024-57896`, :cve_nist:`2024-57900`, :cve_nist:`2024-57901`,
:cve_nist:`2024-57902`, :cve_nist:`2024-57910`, :cve_nist:`2024-57911`, :cve_nist:`2024-57913`,
:cve_nist:`2024-57922`, :cve_nist:`2024-57938`, :cve_nist:`2024-57939`, :cve_nist:`2024-57946`,
:cve_nist:`2024-57951`, :cve_nist:`2025-21638`, :cve_nist:`2025-21687`, :cve_nist:`2025-21689`,
:cve_nist:`2025-21692`, :cve_nist:`2025-21694`, :cve_nist:`2025-21697` and :cve_nist:`2025-21699`
- linux-yocto/5.15: Fix :cve_nist:`2024-57979`, :cve_nist:`2024-58034`, :cve_nist:`2024-58052`,
:cve_nist:`2024-58055`, :cve_nist:`2024-58058`, :cve_nist:`2024-58063`, :cve_nist:`2024-58069`,
:cve_nist:`2024-58071`, :cve_nist:`2024-58076`, :cve_nist:`2024-58083`, :cve_nist:`2025-21700`,
:cve_nist:`2025-21703`, :cve_nist:`2025-21715`, :cve_nist:`2025-21722`, :cve_nist:`2025-21727`,
:cve_nist:`2025-21731`, :cve_nist:`2025-21753`, :cve_nist:`2025-21756`, :cve_nist:`2025-21760`,
:cve_nist:`2025-21761`, :cve_nist:`2025-21762`, :cve_nist:`2025-21763`, :cve_nist:`2025-21764`,
:cve_nist:`2025-21796`, :cve_nist:`2025-21811`, :cve_nist:`2025-21887`, :cve_nist:`2025-21898`,
:cve_nist:`2025-21904`, :cve_nist:`2025-21905`, :cve_nist:`2025-21912`, :cve_nist:`2025-21917`,
:cve_nist:`2025-21919`, :cve_nist:`2025-21920`, :cve_nist:`2025-21922`, :cve_nist:`2025-21934`,
:cve_nist:`2025-21943`, :cve_nist:`2025-21948` and :cve_nist:`2025-21951`
- libpcre2: Ignore :cve_nist:`2022-1586`
- libtasn1: Fix :cve_nist:`2024-12133`
- libxml2: Fix :cve_nist:`2022-49043`, :cve_nist:`2024-56171`, :cve_nist:`2025-24928` and
:cve_nist:`2025-27113`
- libxslt: Fix :cve_nist:`2024-55549` and :cve_nist:`2025-24855`
- llvm: Fix :cve_nist:`2024-0151`
- mpg123: Fix :cve_nist:`2024-10573`
- openssh: Fix :cve_nist:`2025-26465`
- ovmf: Revert Fix for CVE-2023-45236 :cve_nist:`2023-45237`
- perl: Ignore :cve_nist:`2023-47038`
- puzzles: Ignore :cve_nist:`2024-13769`, :cve_nist:`2024-13770` and :cve_nist:`2025-0837`
- python3: Fix :cve_nist:`2025-0938`
- ruby: Fix :cve_nist:`2024-41946`, :cve_nist:`2025-27219` and :cve_nist:`2025-27220`
- subversion: Ignore :cve_nist:`2024-45720`
- systemd: Fix :cve_nist:`2022-3821`, :cve_nist:`2022-4415`, :cve_nist:`2022-45873` and
:cve_nist:`2023-7008`
- tiff: mark :cve_nist:`2023-30774` as patched with existing patch
- u-boot: Fix :cve_nist:`2022-2347`, :cve_nist:`2022-30767`, :cve_nist:`2022-30790`,
:cve_nist:`2024-57254`, :cve_nist:`2024-57255`, :cve_nist:`2024-57256`, :cve_nist:`2024-57257`,
:cve_nist:`2024-57258` and :cve_nist:`2024-57259`
- vim: Fix :cve_nist:`2025-1215`, :cve_nist:`2025-22134`, :cve_nist:`2025-24014`,
:cve_nist:`2025-26603`, :cve_nist:`2025-27423` and :cve_nist:`2025-29768`
- xserver-xorg: Fix :cve_nist:`2022-49737`, :cve_nist:`2025-26594`, :cve_nist:`2025-26595`,
:cve_nist:`2025-26596`, :cve_nist:`2025-26597`, :cve_nist:`2025-26598`, :cve_nist:`2025-26599`,
:cve_nist:`2025-26600` and :cve_nist:`2025-26601`
- xwayland: Fix :cve_nist:`2022-49737`, :cve_nist:`2024-9632`, :cve_nist:`2024-21885`,
:cve_nist:`2024-21886`, :cve_nist:`2024-31080`, :cve_nist:`2024-31081`, :cve_nist:`2024-31083`,
:cve_nist:`2025-26594`, :cve_nist:`2025-26595`, :cve_nist:`2025-26596`, :cve_nist:`2025-26597`,
:cve_nist:`2025-26598`, :cve_nist:`2025-26599`, :cve_nist:`2025-26600` and :cve_nist:`2025-26601`
- zlib: Fix :cve_nist:`2014-9485`
Fixes in Yocto-4.0.26
~~~~~~~~~~~~~~~~~~~~~
- bind: Upgrade to 9.18.33
- bitbake: cache: bump cache version
- bitbake: siggen.py: Improve taskhash reproducibility
- boost: fix do_fetch error
- build-appliance-image: Update to kirkstone head revision
- contributor-guide/submit-changes: add policy on AI generated code
- cve-update-nvd2-native: handle missing vulnStatus
- docs: Add favicon for the documentation html
- docs: Remove all mention of core-image-lsb
- libtasn1: upgrade to 4.20.0
- libxcrypt-compat: Remove libcrypt.so to fix conflict with libcrypt
- libxml2: fix compilation of explicit child axis in pattern
- linux-yocto/5.10: update to v5.10.234
- linux-yocto/5.15: update to v5.15.179
- mesa: Fix missing GLES3 headers in SDK sysroot
- mesa: Update :term:`SRC_URI`
- meta: Enable '-o pipefail' for the SDK installer
- migration-guides: add release notes for 4.0.25
- poky.conf: add ubuntu2404 to :term:`SANITY_TESTED_DISTROS`
- poky.conf: bump version for 4.0.26
- procps: replaced one use of fputs(3) with a write(2) call
- ref-manual: don't refer to poky-lsb
- scripts/install-buildtools: Update to 4.0.24
- scritps/runqemu: Ensure we only have two serial ports
- systemd: upgrade to 250.14
- tzcode-native: Fix compiler setting from 2023d version
- tzcode: Update :term:`SRC_URI`
- tzdata/tzcode-native: upgrade 2025a
- vim: Upgrade to 9.1.1198
- virglrenderer: fix do_fetch error
- vulnerabilities/classes: remove references to cve-check text format
- xz: Update :term:`SRC_URI`
- yocto-uninative: Update to 4.7 for glibc 2.41
Known Issues in Yocto-4.0.26
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-4.0.26
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Aleksandar Nikolic
- Alessio Cascone
- Antonin Godard
- Archana Polampalli
- Ashish Sharma
- Bruce Ashfield
- Carlos Dominguez
- Deepesh Varatharajan
- Divya Chellam
- Guocai He
- Hitendra Prajapati
- Hongxu Jia
- Jiaying Song
- Johannes Kauffmann
- Kai Kang
- Lee Chee Yang
- Libo Chen
- Marta Rybczynska
- Michael Halstead
- Mingli Yu
- Moritz Haase
- Narpat Mali
- Paulo Neves
- Peter Marko
- Priyal Doshi
- Richard Purdie
- Robert Yang
- Ross Burton
- Sakib Sajal
- Steve Sakoman
- Vijay Anusuri
- Yogita Urade
- Zhang Peng
Repositories / Downloads for Yocto-4.0.26
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.26 </poky/log/?h=yocto-4.0.26>`
- Git Revision: :yocto_git:`d70d287a77d5026b698ac237ab865b2dafd36bb8 </poky/commit/?id=d70d287a77d5026b698ac237ab865b2dafd36bb8>`
- Release Artefact: poky-d70d287a77d5026b698ac237ab865b2dafd36bb8
- sha: 3ebfadb8bff4c1ca12b3cf3e4ef6e3ac2ce52b73570266daa98436c9959249f2
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.26/poky-d70d287a77d5026b698ac237ab865b2dafd36bb8.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.26/poky-d70d287a77d5026b698ac237ab865b2dafd36bb8.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>`
- Tag: :oe_git:`yocto-4.0.26 </openembedded-core/log/?h=yocto-4.0.26>`
- Git Revision: :oe_git:`1efbe1004bc82e7c14c1e8bd4ce644f5015c3346 </openembedded-core/commit/?id=1efbe1004bc82e7c14c1e8bd4ce644f5015c3346>`
- Release Artefact: oecore-1efbe1004bc82e7c14c1e8bd4ce644f5015c3346
- sha: d3805e034dabd0865dbf55488b2c16d4ea0351d37aa826f0054a6bfdde5a8be9
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.26/oecore-1efbe1004bc82e7c14c1e8bd4ce644f5015c3346.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.26/oecore-1efbe1004bc82e7c14c1e8bd4ce644f5015c3346.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.26 </meta-mingw/log/?h=yocto-4.0.26>`
- Git Revision: :yocto_git:`87c22abb1f11be430caf4372e6b833dc7d77564e </meta-mingw/commit/?id=87c22abb1f11be430caf4372e6b833dc7d77564e>`
- Release Artefact: meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e
- sha: f0bc4873e2e0319fb9d6d6ab9b98eb3f89664d4339a167d2db6a787dd12bc1a8
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.26/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.26/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
meta-gplv2
- Repository Location: :yocto_git:`/meta-gplv2`
- Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.26 </meta-gplv2/log/?h=yocto-4.0.26>`
- Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>`
- Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a
- sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.26/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.26/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>`
- Tag: :oe_git:`yocto-4.0.26 </bitbake/log/?h=yocto-4.0.26>`
- Git Revision: :oe_git:`046871d9fd76efdca7b72718b328d8f545523f7e </bitbake/commit/?id=046871d9fd76efdca7b72718b328d8f545523f7e>`
- Release Artefact: bitbake-046871d9fd76efdca7b72718b328d8f545523f7e
- sha: e9df0a9f5921b583b539188d66b23f120e1751000e7822e76c3391d5c76ee21a
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.26/bitbake-046871d9fd76efdca7b72718b328d8f545523f7e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.26/bitbake-046871d9fd76efdca7b72718b328d8f545523f7e.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.26 </yocto-docs/log/?h=yocto-4.0.26>`
- Git Revision: :yocto_git:`9b4c36f7b02dd4bedfec90206744a1e90e37733c </yocto-docs/commit/?id=9b4c36f7b02dd4bedfec90206744a1e90e37733c>`

View File

@@ -0,0 +1,153 @@
Release notes for Yocto-4.0.27 (Kirkstone)
------------------------------------------
Security Fixes in Yocto-4.0.27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- binutils: Fix :cve_nist:`2025-1178`
- busybox: fix :cve_nist:`2023-39810`
- connman :fix :cve_nist:`2025-32743`
- curl: Ignore :cve_nist:`2025-0725`
- ghostscript: Fix :cve_nist:`2025-27830`, :cve_nist:`2025-27831`, :cve_nist:`2025-27832`,
:cve_nist:`2025-27834`, :cve_nist:`2025-27835` and :cve_nist:`2025-27836`
- ghostscript: Ignore :cve_nist:`2024-29507`, :cve_nist:`2025-27833` and :cve_nist:`2025-27837`
- glib-2.0: Fix :cve_nist:`2025-3360`
- go: Fix :cve_nist:`2025-22871`
- libarchive: Ignore :cve_nist:`2024-48615`
- libpam: Fix :cve_nist:`2024-10041`
- libsoup-2.4: Fix :cve_nist:`2024-52532`, :cve_nist:`2025-32906` and :cve_nist:`2025-32909`
- libsoup: Fix :cve_nist:`2024-52532`, :cve_nist:`2025-32906`, :cve_nist:`2025-32909`,
:cve_nist:`2025-32910`, :cve_nist:`2025-32911`, :cve_nist:`2025-32912`, :cve_nist:`2025-32913`
and :cve_nist:`2025-32914`
- libxml2: Fix :cve_nist:`2025-32414` and :cve_nist:`2025-32415`
- ofono: Fix :cve_nist:`2024-7537`
- perl: Fix :cve_nist:`2024-56406`
- ppp: Fix :cve_nist:`2024-58250`
- python3-setuptools: Fix :cve_nist:`2024-6345`
- qemu: Ignore :cve_nist:`2023-1386`
- ruby: Fix :cve_nist:`2024-43398`
- sqlite3: Fix :cve_nist:`2025-29088`
- systemd: Ignore :cve_nist:`2022-3821`, :cve_nist:`2022-4415` and :cve_nist:`2022-45873`
Fixes in Yocto-4.0.27
~~~~~~~~~~~~~~~~~~~~~
- Revert "cve-update-nvd2-native: Tweak to work better with NFS DL_DIR"
- build-appliance-image: Update to kirkstone head revision
- cve-update-nvd2-native: add workaround for json5 style list
- docs: Fix dead links that use the :term:`DISTRO` macro
- docs: manuals: remove repeated word
- docs: poky.yaml: introduce DISTRO_LATEST_TAG
- glibc: Add single-threaded fast path to rand()
- glibc: stable 2.35 branch updates
- module.bbclass: add KBUILD_EXTRA_SYMBOLS to install
- perl: enable _GNU_SOURCE define via d_gnulibc
- poky.conf: bump version for 4.0.27
- ref-manual/variables.rst: document autotools class related variables
- scripts/install-buildtools: Update to 4.0.26
- systemd: backport patch to fix journal issue
- systemd: systemd-journald fails to setup LogNamespace
- tzdata/tzcode-native: upgrade to 2025b
Known Issues in Yocto-4.0.27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-4.0.27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- Aleksandar Nikolic
- Alexander Kanavin
- Alon Bar-Lev
- Andrew Kreimer
- Antonin Godard
- Chen Qi
- Deepesh Varatharajan
- Divya Chellam
- Haitao Liu
- Haixiao Yan
- Hitendra Prajapati
- Peter Marko
- Praveen Kumar
- Priyal Doshi
- Shubham Kulkarni
- Soumya Sambu
- Steve Sakoman
- Vijay Anusuri
- Yogita Urade
Repositories / Downloads for Yocto-4.0.27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.27 </poky/log/?h=yocto-4.0.27>`
- Git Revision: :yocto_git:`ab9a994a8cd8e06b519a693db444030999d273b7 </poky/commit/?id=ab9a994a8cd8e06b519a693db444030999d273b7>`
- Release Artefact: poky-ab9a994a8cd8e06b519a693db444030999d273b7
- sha: 77a366c17cf29eef15c6ff3f44e73f81c07288c723fd4a6dbd8c7ee9b79933f3
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.27/poky-ab9a994a8cd8e06b519a693db444030999d273b7.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.27/poky-ab9a994a8cd8e06b519a693db444030999d273b7.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>`
- Tag: :oe_git:`yocto-4.0.27 </openembedded-core/log/?h=yocto-4.0.27>`
- Git Revision: :oe_git:`e8be08a624b2d024715a5c8b0c37f2345a02336b </openembedded-core/commit/?id=e8be08a624b2d024715a5c8b0c37f2345a02336b>`
- Release Artefact: oecore-e8be08a624b2d024715a5c8b0c37f2345a02336b
- sha: cc5b0fadab021c6dc61f37fc4ff01a1cf657e7c219488ce264bede42f7f6212f
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.27/oecore-e8be08a624b2d024715a5c8b0c37f2345a02336b.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.27/oecore-e8be08a624b2d024715a5c8b0c37f2345a02336b.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.27 </meta-mingw/log/?h=yocto-4.0.27>`
- Git Revision: :yocto_git:`87c22abb1f11be430caf4372e6b833dc7d77564e </meta-mingw/commit/?id=87c22abb1f11be430caf4372e6b833dc7d77564e>`
- Release Artefact: meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e
- sha: f0bc4873e2e0319fb9d6d6ab9b98eb3f89664d4339a167d2db6a787dd12bc1a8
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.27/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.27/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
meta-gplv2
- Repository Location: :yocto_git:`/meta-gplv2`
- Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.27 </meta-gplv2/log/?h=yocto-4.0.27>`
- Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>`
- Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a
- sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.27/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.27/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>`
- Tag: :oe_git:`yocto-4.0.27 </bitbake/log/?h=yocto-4.0.27>`
- Git Revision: :oe_git:`046871d9fd76efdca7b72718b328d8f545523f7e </bitbake/commit/?id=046871d9fd76efdca7b72718b328d8f545523f7e>`
- Release Artefact: bitbake-046871d9fd76efdca7b72718b328d8f545523f7e
- sha: e9df0a9f5921b583b539188d66b23f120e1751000e7822e76c3391d5c76ee21a
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.27/bitbake-046871d9fd76efdca7b72718b328d8f545523f7e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.27/bitbake-046871d9fd76efdca7b72718b328d8f545523f7e.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.27 </yocto-docs/log/?h=yocto-4.0.27>`
- Git Revision: :yocto_git:`0d51e553d5f83eea6634e03ddc9c7740bf72fcea </yocto-docs/commit/?id=0d51e553d5f83eea6634e03ddc9c7740bf72fcea>`

View File

@@ -0,0 +1,224 @@
Release notes for Yocto-4.0.28 (Kirkstone)
------------------------------------------
Security Fixes in Yocto-4.0.28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- binutils: Fix :cve_nist:`2025-1180`, :cve_nist:`2025-1182`, :cve_nist:`2025-5244` and
:cve_nist:`2025-5245`
- connman: Fix :cve_nist:`2025-32366`
- ffmpeg: Fix :cve_nist:`2025-1373`, :cve_nist:`2025-22919` and :cve_nist:`2025-22921`
- ffmpeg: Ignore :cve_nist:`2022-48434`
- ghostscript: Fix :cve_nist:`2025-48708`
- git: Fix :cve_nist:`2024-50349` and :cve_nist:`2024-52006`
- glib-2.0: Fix :cve_nist:`2025-4373`
- glibc: Fix for :cve_nist:`2025-4802`
- go: Fix :cve_nist:`2025-4673`
- go: ignore :cve_nist:`2024-3566`
- icu: Fix :cve_nist:`2025-5222`
- iputils: Fix :cve_nist:`2025-47268`
- libsoup-2.4: Fix :cve_nist:`2025-2784`, :cve_nist:`2025-4476`, :cve_nist:`2025-4948`,
:cve_nist:`2025-4969`, :cve_nist:`2025-32050`, :cve_nist:`2025-32052`, :cve_nist:`2025-32053`,
:cve_nist:`2025-32907`, :cve_nist:`2025-32910`, :cve_nist:`2025-32911`, :cve_nist:`2025-32912`,
:cve_nist:`2025-32913`, :cve_nist:`2025-32914`, :cve_nist:`2025-46420` and :cve_nist:`2025-46421`
- libsoup: Fix :cve_nist:`2025-2784`, :cve_nist:`2025-4476`, :cve_nist:`2025-4948`,
:cve_nist:`2025-4969`, :cve_nist:`2025-32050`, :cve_nist:`2025-32051`, :cve_nist:`2025-32052`,
:cve_nist:`2025-32053`, :cve_nist:`2025-32907`, :cve_nist:`2025-46420` and :cve_nist:`2025-46421`
- linux-yocto/5.15: Fix :cve_nist:`2024-26952`, :cve_nist:`2025-21941`, :cve_nist:`2025-21957`,
:cve_nist:`2025-21959`, :cve_nist:`2025-21962`, :cve_nist:`2025-21963`, :cve_nist:`2025-21964`,
:cve_nist:`2025-21968`, :cve_nist:`2025-21996`, :cve_nist:`2025-22018`, :cve_nist:`2025-22020`,
:cve_nist:`2025-22035`, :cve_nist:`2025-22054`, :cve_nist:`2025-22056`, :cve_nist:`2025-22063`,
:cve_nist:`2025-22066`, :cve_nist:`2025-22081`, :cve_nist:`2025-22097`, :cve_nist:`2025-23136`,
:cve_nist:`2025-37785`, :cve_nist:`2025-37803`, :cve_nist:`2025-37805`, :cve_nist:`2025-38152`,
:cve_nist:`2025-39728` and :cve_nist:`2025-39735`
- net-tools: Fix :cve_nist:`2025-46836`
- openssh: Fix :cve_nist:`2025-32728`
- python3: Fix :cve_nist:`2024-12718`, :cve_nist:`2025-0938`, :cve_nist:`2025-4138`,
:cve_nist:`2025-4330`, :cve_nist:`2025-4435`, :cve_nist:`2025-4516` and :cve_nist:`2025-4517`
- python3-requests: Fix :cve_nist:`2024-47081`
- python3-setuptools: Fix :cve_nist:`2025-47273`
- ruby: Fix :cve_nist:`2025-27221`
- screen: Fix :cve_nist:`2025-46802`, :cve_nist:`2025-46804` and :cve_nist:`2025-46805`
- taglib: Fix :cve_nist:`2023-47466`
Fixes in Yocto-4.0.28
~~~~~~~~~~~~~~~~~~~~~
- babeltrace/libatomic-ops: correct the :term:`SRC_URI`
- brief-yoctoprojectqs/ref-manual: Switch to new CDN
- bsp guide: update kernel version example to 6.12
- bsp-guide: update lonely "4.12" kernel reference to "6.12"
- build-appliance-image: Update to kirkstone head revision
- cmake: Correctly handle cost data of tests with arbitrary chars in name
- conf.py: tweak SearchEnglish to be hyphen-friendly
- contributor-guide/submit-changes: encourage patch version changelogs
- dev-manual/sbom.rst: fix wrong build outputs
- docs: Clean up explanation of minimum required version numbers
- docs: README: specify how to contribute instead of pointing at another file
- docs: conf.py: silence SyntaxWarning on js_splitter_code
- e2fsprogs: removed 'sed -u' option
- ffmpeg: Add "libswresample libavcodec" to :term:`CVE_PRODUCT`
- ffmpeg: upgrade to 5.0.3
- gcc: AArch64 - Fix strict-align cpymem/setmem
- glibc: nptl Fix indentation
- glibc: nptl Remove unnecessary catch-all-wake in condvar group switch
- glibc: nptl Remove unnecessary quadruple check in pthread_cond_wait
- glibc: nptl Update comments and indentation for new condvar implementation
- glibc: nptl Use a single loop in pthread_cond_wait instaed of a nested loop
- glibc: nptl Use all of g1_start and g_signals
- glibc: nptl rename __condvar_quiesce_and_switch_g1
- glibc: pthreads NPTL lost wakeup fix 2
- kernel.bbclass: add original package name to :term:`RPROVIDES` for -image and -base
- libpng: Improve ptest
- linux-yocto/5.15: update to v5.15.184
- migration-guides: add release notes for 4.0.26 and 4.0.27
- nfs-utils: don't use signals to shut down nfs server.
- poky.conf: bump version for 4.0.28
- python3: upgrade to 3.10.18
- ref-manual/release-process: update releases.svg
- ref-manual/variables.rst: document :term:`INHIBIT_DEFAULT_RUST_DEPS`
:term:`INHIBIT_UPDATERCD_BBCLASS` :term:`SSTATE_SKIP_CREATION` :term:`WIC_CREATE_EXTRA_ARGS`
:term:`IMAGE_ROOTFS_MAXSIZE` :term:`INITRAMFS_MAXSIZE`
- ref-manual: clarify :term:`KCONFIG_MODE` default behaviour
- ref-manual: classes: nativesdk: move note to appropriate section
- ref-manual: classes: reword to clarify that native/nativesdk options are exclusive
- ref-manual: kernel-fitimage.bbclass does not use :term:`SPL_SIGN_KEYNAME`
- scripts/install-buildtools: Update to 4.0.27
- sphinx-lint: role missing opening tag colon
- sphinx-lint: trailing whitespace
- sphinx-lint: unbalanced inline literal markup
- sysstat: correct the :term:`SRC_URI`
- systemtap: add sysroot Python paths to configure flags
- test-manual/intro: remove Buildbot version used
- util-linux: Add fix to isolate test fstab entries using CUSTOM_FSTAB
- xz: Update :term:`LICENSE` variable for xz packages
Known Issues in Yocto-4.0.28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-4.0.28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- Aditya Tayade
- Adrian Freihofer
- Aleksandar Nikolic
- Alper Ak
- Antonin Godard
- Archana Polampalli
- Ashish Sharma
- Bruce Ashfield
- Carlos Sánchez de La Lama
- Changqing Li
- Christos Gavros
- Colin Pinnell McAllister
- Deepesh Varatharajan
- Divya Chellam
- Enrico Jörns
- Etienne Cordonnier
- Guocai He
- Harish Sadineni
- Hitendra Prajapati
- Jiaying Song
- Lee Chee Yang
- Martin Jansa
- Moritz Haase
- NeilBrown
- Peter Marko
- Poonam Jadhav
- Praveen Kumar
- Quentin Schulz
- Richard Purdie
- Robert P. J. Day
- Soumya Sambu
- Steve Sakoman
- Sundeep KOKKONDA
- Sunil Dora
- Trevor Woerner
- Vijay Anusuri
- Virendra Thakur
- Yi Zhao
- aszh07
Repositories / Downloads for Yocto-4.0.28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.28 </poky/log/?h=yocto-4.0.28>`
- Git Revision: :yocto_git:`78c9cb3eaf071932567835742608404d5ce23cc4 </poky/commit/?id=78c9cb3eaf071932567835742608404d5ce23cc4>`
- Release Artefact: poky-78c9cb3eaf071932567835742608404d5ce23cc4
- sha: 9c73c6f89e70c2041a52851e5cc582e5a2f05ad2fdc110d2c518f2c4994e8de3
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.28/poky-78c9cb3eaf071932567835742608404d5ce23cc4.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.28/poky-78c9cb3eaf071932567835742608404d5ce23cc4.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>`
- Tag: :oe_git:`yocto-4.0.28 </openembedded-core/log/?h=yocto-4.0.28>`
- Git Revision: :oe_git:`75e54301c5076eb0454aee33c870adf078f563fd </openembedded-core/commit/?id=75e54301c5076eb0454aee33c870adf078f563fd>`
- Release Artefact: oecore-75e54301c5076eb0454aee33c870adf078f563fd
- sha: c5ffceab90881c4041ec4304da8b7b32d9c1f89a4c63ee7b8cbd53c796b0187b
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.28/oecore-75e54301c5076eb0454aee33c870adf078f563fd.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.28/oecore-75e54301c5076eb0454aee33c870adf078f563fd.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.28 </meta-mingw/log/?h=yocto-4.0.28>`
- Git Revision: :yocto_git:`87c22abb1f11be430caf4372e6b833dc7d77564e </meta-mingw/commit/?id=87c22abb1f11be430caf4372e6b833dc7d77564e>`
- Release Artefact: meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e
- sha: f0bc4873e2e0319fb9d6d6ab9b98eb3f89664d4339a167d2db6a787dd12bc1a8
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.28/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.28/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
meta-gplv2
- Repository Location: :yocto_git:`/meta-gplv2`
- Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.28 </meta-gplv2/log/?h=yocto-4.0.28>`
- Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>`
- Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a
- sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.28/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.28/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>`
- Tag: :oe_git:`yocto-4.0.28 </bitbake/log/?h=yocto-4.0.28>`
- Git Revision: :oe_git:`046871d9fd76efdca7b72718b328d8f545523f7e </bitbake/commit/?id=046871d9fd76efdca7b72718b328d8f545523f7e>`
- Release Artefact: bitbake-046871d9fd76efdca7b72718b328d8f545523f7e
- sha: e9df0a9f5921b583b539188d66b23f120e1751000e7822e76c3391d5c76ee21a
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.28/bitbake-046871d9fd76efdca7b72718b328d8f545523f7e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.28/bitbake-046871d9fd76efdca7b72718b328d8f545523f7e.tar.bz2
meta-yocto
- Repository Location: :yocto_git:`/meta-yocto`
- Branch: :yocto_git:`kirkstone </meta-yocto/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.28 </meta-yocto/log/?h=yocto-4.0.28>`
- Git Revision: :yocto_git:`0bf3dcef1caa80fb047bf9c3514314ab658e30ea </meta-yocto/commit/?id=0bf3dcef1caa80fb047bf9c3514314ab658e30ea>`
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.28 </yocto-docs/log/?h=yocto-4.0.28>`
- Git Revision: :yocto_git:`97cd3ee7f3bf1de8454708d1852ea9cdbd45c39b </yocto-docs/commit/?id=97cd3ee7f3bf1de8454708d1852ea9cdbd45c39b>`

View File

@@ -0,0 +1,178 @@
Release notes for Yocto-4.0.29 (Kirkstone)
------------------------------------------
Security Fixes in Yocto-4.0.29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- avahi: Fix :cve_nist:`2024-52615`
- binutils: Fix :cve_nist:`2025-7545` and :cve_nist:`2025-7546`
- coreutils: Fix :cve_nist:`2025-5278`
- curl: Fix :cve_nist:`2024-11053` and :cve_nist:`2025-0167`
- dropbear: Fix :cve_nist:`2025-47203`
- ffmpeg: Ignore :cve_nist:`2022-3109` and :cve_nist:`2022-3341`
- gdk-pixbuf: Fix :cve_nist:`2025-7345`
- ghostscript: Ignore :cve_nist:`2025-46646`
- gnupg: Fix :cve_nist:`2025-30258`
- gnutls: Fix :cve_nist:`2025-6395`, :cve_nist:`2025-32988`, :cve_nist:`2025-32989` and
:cve_nist:`2025-32990`
- iputils: Fix :cve_nist:`2025-48964`
- libarchive: Fix :cve_nist:`2025-5914`, :cve_nist:`2025-5915`, :cve_nist:`2025-5916` and
:cve_nist:`2025-5917`
- libpam: Fix :cve_nist:`2025-6020`
- libsoup-2.4: Fix :cve_nist:`2025-4945`
- libsoup-2.4: Fix :cve_nist:`2025-4969` (update patch)
- libsoup: Fix :cve_nist:`2025-4945`, :cve_nist:`2025-6021`, :cve_nist:`2025-6170`,
:cve_nist:`2025-49794` and :cve_nist:`2025-49796`
- ncurses: Fix :cve_nist:`2025-6141`
- ofono: Fix :cve_nist:`2023-4232` and :cve_nist:`2023-4235`
- openssl: Fix :cve_nist:`2024-41996`
- python3-urllib3: Fix :cve_nist:`2025-50181`
- ruby: Fix :cve_nist:`2024-43398` (update patches)
- sqlite3: Fix :cve_nist:`2025-6965` and :cve_nist:`2025-7458`
- sqlite3: Ignore :cve_nist:`2025-3277`
- systemd: Fix :cve_nist:`2025-4598`
- xwayland: Fix :cve_nist:`2025-49175`, :cve_nist:`2025-49176`, :cve_nist:`2025-49177`,
:cve_nist:`2025-49178`, :cve_nist:`2025-49179` and :cve_nist:`2025-49180`
Fixes in Yocto-4.0.29
~~~~~~~~~~~~~~~~~~~~~
- bintuils: stable 2.38 branch update
- bitbake: test/fetch: Switch u-boot based test to use our own mirror
- build-appliance-image: Update to kirkstone head revision
- conf.py: improve SearchEnglish to handle terms with dots
- db: ignore implicit-int and implicit-function-declaration issues fatal with gcc-14
- dev-manual/start.rst: added missing command in Optimize your VHDX file using DiskPart
- glibc: stable 2.35 branch updates
- gnutls: patch read buffer overrun in the "pre_shared_key" extension
- gnutls: patch reject zero-length version in certificate request
- linux-yocto/5.15: update to v5.15.186
- migration-guides: add release notes for 4.0.28
- oeqa/core/decorator: add decorators to skip based on :term:`HOST_ARCH`
- openssl: upgrade to 3.0.17
- orc: set :term:`CVE_PRODUCT`
- overview-manual/concepts.rst: fix sayhello hardcoded bindir
- poky.conf: bump version for 4.0.29
- python3: update CVE product
- ref-manual: document :term:`KERNEL_SPLIT_MODULES` variable
- scripts/install-buildtools: Update to 4.0.28
- sudo: upgrade to 1.9.17p1
- tcf-agent: correct the :term:`SRC_URI`
Known Issues in Yocto-4.0.29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-4.0.29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- Aleksandar Nikolic
- Antonin Godard
- Archana Polampalli
- Bruce Ashfield
- Changqing Li
- Chen Qi
- Colin Pinnell McAllister
- Daniel Díaz
- Deepesh Varatharajan
- Divya Chellam
- Dixit Parmar
- Enrico Jörns
- Guocai He
- Hitendra Prajapati
- Lee Chee Yang
- Marco Cavallini
- Martin Jansa
- Peter Marko
- Praveen Kumar
- Richard Purdie
- Rob Woolley
- Ross Burton
- Steve Sakoman
- Vijay Anusuri
- Yash Shinde
- Yogita Urade
- Zhang Peng
Repositories / Downloads for Yocto-4.0.29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.29 </poky/log/?h=yocto-4.0.29>`
- Git Revision: :yocto_git:`81ab000fa437ca04f584a3327b076f7a512dc6d0 </poky/commit/?id=81ab000fa437ca04f584a3327b076f7a512dc6d0>`
- Release Artefact: poky-81ab000fa437ca04f584a3327b076f7a512dc6d0
- sha: 2fecf3cac5c2361c201b5ae826960af92289862ec9be13837a8431138e534fd2
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.29/poky-81ab000fa437ca04f584a3327b076f7a512dc6d0.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.29/poky-81ab000fa437ca04f584a3327b076f7a512dc6d0.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>`
- Tag: :oe_git:`yocto-4.0.29 </openembedded-core/log/?h=yocto-4.0.29>`
- Git Revision: :oe_git:`bd620eb14660075fd0f7476bbbb65d5da6293874 </openembedded-core/commit/?id=bd620eb14660075fd0f7476bbbb65d5da6293874>`
- Release Artefact: oecore-bd620eb14660075fd0f7476bbbb65d5da6293874
- sha: f32ab195c7090268e6e87ccf8db2813cf705c517030654326d14b25d926de88e
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.29/oecore-bd620eb14660075fd0f7476bbbb65d5da6293874.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.29/oecore-bd620eb14660075fd0f7476bbbb65d5da6293874.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.29 </meta-mingw/log/?h=yocto-4.0.29>`
- Git Revision: :yocto_git:`87c22abb1f11be430caf4372e6b833dc7d77564e </meta-mingw/commit/?id=87c22abb1f11be430caf4372e6b833dc7d77564e>`
- Release Artefact: meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e
- sha: f0bc4873e2e0319fb9d6d6ab9b98eb3f89664d4339a167d2db6a787dd12bc1a8
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.29/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.29/meta-mingw-87c22abb1f11be430caf4372e6b833dc7d77564e.tar.bz2
meta-gplv2
- Repository Location: :yocto_git:`/meta-gplv2`
- Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.29 </meta-gplv2/log/?h=yocto-4.0.29>`
- Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>`
- Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a
- sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.29/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.29/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>`
- Tag: :oe_git:`yocto-4.0.29 </bitbake/log/?h=yocto-4.0.29>`
- Git Revision: :oe_git:`8e2d1f8de055549b2101614d85454fcd1d0f94b2 </bitbake/commit/?id=8e2d1f8de055549b2101614d85454fcd1d0f94b2>`
- Release Artefact: bitbake-8e2d1f8de055549b2101614d85454fcd1d0f94b2
- sha: fad4e7699bae62082118e89785324b031b0af0743064caee87c91ba28549afb0
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-4.0.29/bitbake-8e2d1f8de055549b2101614d85454fcd1d0f94b2.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-4.0.29/bitbake-8e2d1f8de055549b2101614d85454fcd1d0f94b2.tar.bz2
meta-yocto
- Repository Location: :yocto_git:`/meta-yocto`
- Branch: :yocto_git:`kirkstone </meta-yocto/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.29 </meta-yocto/log/?h=yocto-4.0.29>`
- Git Revision: :yocto_git:`e916d3bad58f955b73e2c67aba975e63cd191394 </meta-yocto/commit/?id=e916d3bad58f955b73e2c67aba975e63cd191394>`
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>`
- Tag: :yocto_git:`yocto-4.0.29 </yocto-docs/log/?h=yocto-4.0.29>`
- Git Revision: :yocto_git:`bf855ecaf4bec4cef9bbfea2e50caa65a8339828 </yocto-docs/commit/?id=bf855ecaf4bec4cef9bbfea2e50caa65a8339828>`

View File

@@ -295,7 +295,7 @@ New Features / Enhancements in 4.3
- Generation of :term:`SPDX` manifests is now enabled by default.
- Git based recipes in OE-Core which used the ``git`` protocol have been
changed to use `https`` where possible, as it is typically faster and
changed to use ``https`` where possible, as it is typically faster and
more reliable.
- The ``os-release`` recipe added a ``CPE_NAME`` to the fields provided, with the

View File

@@ -0,0 +1,208 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
Release notes for Yocto-5.0.10 (Scarthgap)
------------------------------------------
Security Fixes in Yocto-5.0.10
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- binutils: Fix :cve_nist:`2025-1153`, :cve_nist:`2025-1179`, :cve_nist:`2025-1180` and
:cve_nist:`2025-1182`
- connman: Fix :cve_nist:`2025-32366` and :cve_nist:`2025-32743`
- curl: Fix :cve_nist:`2024-11053` and :cve_nist:`2025-0167`
- elfutils: Fix :cve_nist:`2025-1371`
- ffmpeg: Fix :cve_nist:`2024-7055`, :cve_nist:`2024-32230`, :cve_nist:`2024-35366`,
:cve_nist:`2024-36613`, :cve_nist:`2024-36616`, :cve_nist:`2024-36617` and :cve_nist:`2024-36619`
- git: Fix :cve_nist:`2024-50349` and :cve_nist:`2024-52006`
- glib-2.0: fix :cve_nist:`2025-3360` and :cve_nist:`2025-4373`
- iputils: Fix :cve_nist:`2025-47268`
- libpam: Fix :cve_nist:`2024-10041`
- libsoup-2.4: Fix :cve_nist:`2024-52530`, :cve_nist:`2024-52531`, :cve_nist:`2024-52532`,
:cve_nist:`2025-32906`, :cve_nist:`2025-32909`, :cve_nist:`2025-32910`, :cve_nist:`2025-32911`,
:cve_nist:`2025-32912`, :cve_nist:`2025-32913`, :cve_nist:`2025-32914` and :cve_nist:`2025-46420`
- libsoup: Fix :cve_nist:`2025-4476`, :cve_nist:`2025-32906`, :cve_nist:`2025-32909`,
:cve_nist:`2025-32910`, :cve_nist:`2025-32911`, :cve_nist:`2025-32912`, :cve_nist:`2025-32913`,
:cve_nist:`2025-32914` and :cve_nist:`2025-46420`
- libxml2: Fix :cve_nist:`2025-32414` and :cve_nist:`2025-32415`
- openssh: Fix :cve_nist:`2025-32728`
- perl: Fix :cve_nist:`2024-56406`
- ppp: Fix :cve_nist:`2024-58250`
- python3-jinja2: Fix :cve_nist:`2024-56201`, :cve_nist:`2024-56326` and :cve_nist:`2025-27516`
- ruby: Fix :cve_nist:`2025-27221`
- sqlite3: Fix :cve_nist:`2025-3277`, :cve_nist:`2025-29087` and :cve_nist:`2025-29088`
Fixes in Yocto-5.0.10
~~~~~~~~~~~~~~~~~~~~~
- binutils: stable 2.42 branch updates
- bluez5: add missing tools to noinst-tools package
- bluez5: backport a patch to fix btmgmt -i
- bluez5: make media control a :term:`PACKAGECONFIG` option
- build-appliance-image: Update to scarthgap head revision
- buildtools-tarball: Make buildtools respects host CA certificates
- buildtools-tarball: add envvars into :term:`BB_ENV_PASSTHROUGH_ADDITIONS`
- buildtools-tarball: move setting of envvars to respective envfile
- contributor-guide/submit-changes: encourage patch version changelogs
- cve-check.bbclass: Fix symlink handling also for text files
- cve-update-nvd2-native: Revert "cve-update-nvd2-native: Tweak to work better with NFS DL_DIR"
- dev-manual/sbom.rst: fix wrong build outputs
- docs: Fix dead links that use the :term:`DISTRO` macro
- docs: conf.py: tweak SearchEnglish to be hyphen-friendly
- docs:conf.py: define a manpage url
- ffmpeg: upgrade to 6.1.2
- git: upgrade to 2.44.3
- glibc-y2038-tests: remove glibc-y2038-tests_2.39.bb recipe
- glibc: Add single-threaded fast path to rand()
- glibc: stable 2.39 branch updates
- initscripts: add function log_success_msg/log_failure_msg/log_warning_msg
- libatomic-ops: Update :term:`GITHUB_BASE_URI`
- manuals: remove repeated word
- migration-guides: add release notes for 4.0.26, 5.0.8, 5.0.9
- module.bbclass: add KBUILD_EXTRA_SYMBOLS to install
- perl: upgrade to 5.38.4
- perlcross: upgrade to 1.6.2
- poky.conf: bump version for 5.0.10
- poky.yaml: introduce DISTRO_LATEST_TAG
- python3-jinja2: upgrade to 3.1.6
- ref-manual/release-process: update releases.svg
- ref-manual/variables.rst: HOST_CC_ARCH: fix wrong SDK reference
- ref-manual/variables.rst: WATCHDOG_TIMEOUT: fix recipe name
- ref-manual/variables.rst: add manpage links for toolchain variables
- ref-manual/variables.rst: add missing documentation for BUILD_* variables
- ref-manual/variables.rst: document HOST_*_ARCH variables
- ref-manual/variables.rst: document :term:`INHIBIT_DEFAULT_RUST_DEPS`
- ref-manual/variables.rst: document :term:`INHIBIT_UPDATERCD_BBCLASS`
- ref-manual/variables.rst: document :term:`SSTATE_SKIP_CREATION`
- ref-manual/variables.rst: document :term:`WIC_CREATE_EXTRA_ARGS`
- ref-manual/variables.rst: document autotools class related variables
- ref-manual/variables.rst: document missing SDK_*_ARCH variables
- ref-manual/variables.rst: document the :term:`IMAGE_ROOTFS_MAXSIZE` variable
- ref-manual/variables.rst: document the :term:`INITRAMFS_MAXSIZE` variable
- ref-manual/variables.rst: improve the :term:`PKGV` documentation
- ref-manual/variables.rst: update :term:`ROOT_HOME` documentation
- ref-manual: kernel-fitimage.bbclass does not use :term:`SPL_SIGN_KEYNAME`
- scripts/install-buildtools: Update to 5.0.9
- sphinx-lint: missing space after literal
- sphinx-lint: trailing whitespace
- sphinx-lint: unbalanced inline literal markup
- systemd: Password agents shouldn't be optional
- systemd: upgrade to 255.18
- test-manual/intro: remove Buildbot version used
- tzdata/tzcode-native: upgrade 2025a -> 2025b
- u-boot: ensure keys are generated before assembling U-Boot FIT image
- util-linux: Add fix to isolate test fstab entries using CUSTOM_FSTAB
- wic: bootimg-efi: Support + symbol in filenames
Known Issues in Yocto-5.0.10
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- There is an issue where the target libsoup-2.4 build may fail if apachectl is present on the build
host. The issue only affects test binaries which aren't actually used. The issue can be fixed by
disabling the tests or updating to more recent changes on the scarthgap branch which fix this.
Contributors to Yocto-5.0.10
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Adrian Freihofer
- Aleksandar Nikolic
- Alexander Kanavin
- Alon Bar-Lev
- Alper Ak
- Andrew Kreimer
- Antonin Godard
- Archana Polampalli
- Ashish Sharma
- Changqing Li
- Christos Gavros
- Deepesh Varatharajan
- Divya Chellam
- Divyanshu Rathore
- Enrico Jörns
- Etienne Cordonnier
- Guðni Már Gilbert
- Haixiao Yan
- Harish Sadineni
- Igor Opaniuk
- Jeroen Hofstee
- Lee Chee Yang
- Nguyen Dat Tho
- Niko Mauno
- Peter Marko
- Praveen Kumar
- Priyal Doshi
- Rogerio Guerra Borin
- Shubham Kulkarni
- Soumya Sambu
- Steve Sakoman
- Sunil Dora
- Trevor Woerner
- Vijay Anusuri
- Virendra Thakur
- Vyacheslav Yurkov
- Yi Zhao
- Yogita Urade
- rajmohan r
Repositories / Downloads for Yocto-5.0.10
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`scarthgap </poky/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.10 </poky/log/?h=yocto-5.0.10>`
- Git Revision: :yocto_git:`ac257900c33754957b2696529682029d997a8f28 </poky/commit/?id=ac257900c33754957b2696529682029d997a8f28>`
- Release Artefact: poky-ac257900c33754957b2696529682029d997a8f28
- sha: ddca7e54b331e78214bea65b346320d4fbcddf4b51103bfbbd9fc3960f32cdc7
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.10/poky-ac257900c33754957b2696529682029d997a8f28.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.10/poky-ac257900c33754957b2696529682029d997a8f28.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`scarthgap </openembedded-core/log/?h=scarthgap>`
- Tag: :oe_git:`yocto-5.0.10 </openembedded-core/log/?h=yocto-5.0.10>`
- Git Revision: :oe_git:`d5342ffc570d47a723b18297d75bd2f63c2088db </openembedded-core/commit/?id=d5342ffc570d47a723b18297d75bd2f63c2088db>`
- Release Artefact: oecore-d5342ffc570d47a723b18297d75bd2f63c2088db
- sha: daa62094f2327f4b3fbcc485e8964d1b86a4722f58fb37e0d8e8e9885094a262
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.10/oecore-d5342ffc570d47a723b18297d75bd2f63c2088db.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.10/oecore-d5342ffc570d47a723b18297d75bd2f63c2088db.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`scarthgap </meta-mingw/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.10 </meta-mingw/log/?h=yocto-5.0.10>`
- Git Revision: :yocto_git:`bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f </meta-mingw/commit/?id=bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f>`
- Release Artefact: meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f
- sha: ab073def6487f237ac125d239b3739bf02415270959546b6b287778664f0ae65
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.10/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.10/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.8 </bitbake/log/?h=2.8>`
- Tag: :oe_git:`yocto-5.0.10 </bitbake/log/?h=yocto-5.0.10>`
- Git Revision: :oe_git:`696c2c1ef095f8b11c7d2eff36fae50f58c62e5e </bitbake/commit/?id=696c2c1ef095f8b11c7d2eff36fae50f58c62e5e>`
- Release Artefact: bitbake-696c2c1ef095f8b11c7d2eff36fae50f58c62e5e
- sha: fc83f879cd6dd14b9b7eba0161fec23ecc191fed0fb00556ba729dceef6c145f
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.10/bitbake-696c2c1ef095f8b11c7d2eff36fae50f58c62e5e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.10/bitbake-696c2c1ef095f8b11c7d2eff36fae50f58c62e5e.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`scarthgap </yocto-docs/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.10 </yocto-docs/log/?h=yocto-5.0.10>`
- Git Revision: :yocto_git:`3996388e337377bedc113d072a51fe9d68dd40c6 </yocto-docs/commit/?id=3996388e337377bedc113d072a51fe9d68dd40c6>`

View File

@@ -0,0 +1,219 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
Release notes for Yocto-5.0.11 (Scarthgap)
------------------------------------------
Security Fixes in Yocto-5.0.11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- binutils: Fix :cve_nist:`2025-5244` and :cve_nist:`2025-5245`
- busybox: Fix :cve_nist:`2022-48174`
- coreutils: Fix :cve_nist:`2025-5278`
- curl: Ignore :cve_nist:`2025-5025` if :term:`PACKAGECONFIG` set with openssl
- ffmpeg: Fix :cve_nist:`2025-1373`
- glibc: fix :cve_nist:`2025-4802` and :cve_nist:`2025-5702`
- gnupg: Fix :cve_nist:`2025-30258`
- go: Fix :cve_nist:`2025-4673`
- go: Ignore :cve_nist:`2024-3566`
- icu: Fix :cve_nist:`2025-5222`
- kea: Fix :cve_nist:`2025-32801`, :cve_nist:`2025-32802` and :cve_nist:`2025-32803`
- libarchive: fix :cve_nist:`2025-5914`, :cve_nist:`2025-5915`, :cve_nist:`2025-5916`,
:cve_nist:`2025-5917` and :cve_nist:`2025-5918`
- libsoup-2.4: Fix :cve_nist:`2025-2784`, :cve_nist:`2025-4476`, :cve_nist:`2025-4945`,
:cve_nist:`2025-4948`, :cve_nist:`2025-4969`, :cve_nist:`2025-32050`, :cve_nist:`2025-32052`,
:cve_nist:`2025-32053`, :cve_nist:`2025-32907` and :cve_nist:`2025-46421`
- libsoup-3.4: Fix :cve_nist:`2025-2784`, :cve_nist:`2025-4945`, :cve_nist:`2025-4948`,
:cve_nist:`2025-4969`, :cve_nist:`2025-32050`, :cve_nist:`2025-32051`, :cve_nist:`2025-32052`,
:cve_nist:`2025-32053`, :cve_nist:`2025-32907`, :cve_nist:`2025-32908` and :cve_nist:`2025-46421`
- libxml2: Fix :cve_nist:`2025-6021`
- linux-yocto-6.6: Fix :cve_nist:`2025-21995`, :cve_nist:`2025-21996`, :cve_nist:`2025-21997`,
:cve_nist:`2025-21999`, :cve_nist:`2025-22001`, :cve_nist:`2025-22003`, :cve_nist:`2025-22004`,
:cve_nist:`2025-22005`, :cve_nist:`2025-22007`, :cve_nist:`2025-22009`, :cve_nist:`2025-22010`,
:cve_nist:`2025-22014`, :cve_nist:`2025-22018`, :cve_nist:`2025-22020`, :cve_nist:`2025-22027`,
:cve_nist:`2025-22033`, :cve_nist:`2025-22035`, :cve_nist:`2025-22038`, :cve_nist:`2025-22040`,
:cve_nist:`2025-22041`, :cve_nist:`2025-22054`, :cve_nist:`2025-22056`, :cve_nist:`2025-22063`,
:cve_nist:`2025-22066`, :cve_nist:`2025-22080`, :cve_nist:`2025-22081`, :cve_nist:`2025-22088`,
:cve_nist:`2025-22097`, :cve_nist:`2025-23136`, :cve_nist:`2025-37785`, :cve_nist:`2025-37800`,
:cve_nist:`2025-37801`, :cve_nist:`2025-37803`, :cve_nist:`2025-37805`, :cve_nist:`2025-37838`,
:cve_nist:`2025-37893`, :cve_nist:`2025-38152`, :cve_nist:`2025-39728` and :cve_nist:`2025-39735`
- net-tools: Fix :cve_nist:`2025-46836`
- python3-setuptools: Fix :cve_nist:`2025-47273`
- python3-requests: fix :cve_nist:`2024-47081`
- python3-urllib3: Fix :cve_nist:`2025-50181`
- python3: Fix CVE 2024-12718 CVE 2025-4138 CVE 2025-4330 CVE 2025-4435 :cve_nist:`2025-4516` CVE
2025-4517
- screen: fix :cve_nist:`2025-46802`, :cve_nist:`2025-46804` and :cve_nist:`2025-46805`
- sudo: Fix :cve_nist:`2025-32462`
- xwayland: Fix :cve_nist:`2025-49175`, :cve_nist:`2025-49176`, :cve_nist:`2025-49177`,
:cve_nist:`2025-49178`, :cve_nist:`2025-49179` and :cve_nist:`2025-49180`
Fixes in Yocto-5.0.11
~~~~~~~~~~~~~~~~~~~~~
- bitbake: ast: Change deferred inherits to happen per recipe
- bitbake: fetch2: Avoid deprecation warning
- bitbake: gcp.py: remove slow calls to gsutil stat
- bitbake: toaster/tests/buildtest: Switch to new CDN
- brief-yoctoprojectqs/ref-manual: Switch to new CDN
- bsp-guide: update kernel version example to 6.12
- bsp-guide: update all of section 1.8.2 to reflect current beaglebone conf file
- bsp-guide: update lonely "4.12" kernel reference to "6.12"
- build-appliance-image: Update to scarthgap head revision
- cmake: Correctly handle cost data of tests with arbitrary chars in name
- conf.py: improve SearchEnglish to handle terms with dots
- docs: Clean up explanation of minimum required version numbers
- docs: README: specify how to contribute instead of pointing at another file
- docs: conf.py: silence SyntaxWarning on js_splitter_code
- gcc: Upgrade to GCC 13.4
- ghostscript: upgrade to 10.05.1
- glibc: stable 2.39 branch updates (06a70769fd...)
- gnupg: update to 2.4.8
- gtk+: add missing libdrm dependency
- kea: upgrade to 2.4.2
- libpng: Add ptest
- libsoup-2.4: fix do_compile failure
- linux-yocto/6.6: fix beaglebone ethernet
- linux-yocto/6.6: update to v6.6.96
- local.conf.sample: Switch to new CDN
- ltp: backport patch to fix compilation error for x86_64
- migration-guides: add release notes for 4.0.27, 4.0.28, 5.0.10
- minicom: correct the :term:`SRC_URI`
- nfs-utils: don't use signals to shut down nfs server.
- overview-manual/concepts.rst: fix sayhello hardcoded bindir
- overview-manual: small number of pedantic cleanups
- package: export debugsources in :term:`PKGDESTWORK` as json
- poky.conf: bump version for 5.0.11
- python3-requests: upgrade to 2.32.4
- python3: upgrade to 3.12.11
- ref-manual: clarify :term:`KCONFIG_MODE` default behaviour
- ref-manual: classes: nativesdk: move note to appropriate section
- ref-manual: classes: reword to clarify that native/nativesdk options are exclusive
- ref-manual: document :term:`KERNEL_SPLIT_MODULES` variable
- scripts/install-buildtools: Update to 5.0.10
- spdx: add option to include only compiled sources
- sstatetests: Switch to new CDN
- systemd: Rename systemd_v255.21 to systemd_255.21
- systemd: upgrade to 255.21
- tcf-agent: correct the :term:`SRC_URI`
- testimage: get real os-release file
- tune-cortexr52: Remove aarch64 for ARM Cortex-R52
- uboot: Allow for customizing installed/deployed file names
Known Issues in Yocto-5.0.11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-5.0.11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Aleksandar Nikolic
- Andrew Fernandes
- Antonin Godard
- Archana Polampalli
- Ashish Sharma
- Bruce Ashfield
- Carlos Sánchez de La Lama
- Changqing Li
- Chen Qi
- Colin Pinnell McAllister
- Daniel Turull
- Deepesh Varatharajan
- Divya Chellam
- Dixit Parmar
- Enrico Jörns
- Etienne Cordonnier
- Guocai He
- Guðni Már Gilbert
- Hitendra Prajapati
- Jiaying Song
- Lee Chee Yang
- Moritz Haase
- NeilBrown
- Peter Marko
- Poonam Jadhav
- Praveen Kumar
- Preeti Sachan
- Quentin Schulz
- Richard Purdie
- Robert P. J. Day
- Roland Kovacs
- Ryan Eatmon
- Sandeep Gundlupet Raju
- Savvas Etairidis
- Steve Sakoman
- Victor Giraud
- Vijay Anusuri
- Virendra Thakur
- Wang Mingyu
- Yogita Urade
Repositories / Downloads for Yocto-5.0.11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`scarthgap </poky/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.11 </poky/log/?h=yocto-5.0.11>`
- Git Revision: :yocto_git:`ae2d52758fc2fcb0ed996aa234430464ebf4b310 </poky/commit/?id=ae2d52758fc2fcb0ed996aa234430464ebf4b310>`
- Release Artefact: poky-ae2d52758fc2fcb0ed996aa234430464ebf4b310
- sha: 48dec434dd51e5c9c626abdccc334da300fa2b4975137d526f5df6703e5a930e
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.11/poky-ae2d52758fc2fcb0ed996aa234430464ebf4b310.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.11/poky-ae2d52758fc2fcb0ed996aa234430464ebf4b310.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`scarthgap </openembedded-core/log/?h=scarthgap>`
- Tag: :oe_git:`yocto-5.0.11 </openembedded-core/log/?h=yocto-5.0.11>`
- Git Revision: :oe_git:`7a59dc5ee6edd9596e87c2fbcd1f2594c06b3d1b </openembedded-core/commit/?id=7a59dc5ee6edd9596e87c2fbcd1f2594c06b3d1b>`
- Release Artefact: oecore-7a59dc5ee6edd9596e87c2fbcd1f2594c06b3d1b
- sha: fb50992a28298915fe195e327628d6d5872fd2dbc74189c2d840178cd860bb2e
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.11/oecore-7a59dc5ee6edd9596e87c2fbcd1f2594c06b3d1b.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.11/oecore-7a59dc5ee6edd9596e87c2fbcd1f2594c06b3d1b.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`scarthgap </meta-mingw/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.11 </meta-mingw/log/?h=yocto-5.0.11>`
- Git Revision: :yocto_git:`bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f </meta-mingw/commit/?id=bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f>`
- Release Artefact: meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f
- sha: ab073def6487f237ac125d239b3739bf02415270959546b6b287778664f0ae65
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.11/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.11/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.8 </bitbake/log/?h=2.8>`
- Tag: :oe_git:`yocto-5.0.11 </bitbake/log/?h=yocto-5.0.11>`
- Git Revision: :oe_git:`139f61fe9eec221745184a14b3618d2dfa650b91 </bitbake/commit/?id=139f61fe9eec221745184a14b3618d2dfa650b91>`
- Release Artefact: bitbake-139f61fe9eec221745184a14b3618d2dfa650b91
- sha: 86669d4220c50d35c0703f151571954ad9c6285cc91a870afbb878d2e555d2ca
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.11/bitbake-139f61fe9eec221745184a14b3618d2dfa650b91.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.11/bitbake-139f61fe9eec221745184a14b3618d2dfa650b91.tar.bz2
meta-yocto
- Repository Location: :yocto_git:`/meta-yocto`
- Branch: :yocto_git:`scarthgap </meta-yocto/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.11 </meta-yocto/log/?h=yocto-5.0.11>`
- Git Revision: :yocto_git:`50e5c0d85d3775ac1294bdcd7f11deaa382c9d08 </meta-yocto/commit/?id=50e5c0d85d3775ac1294bdcd7f11deaa382c9d08>`
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`scarthgap </yocto-docs/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.11 </yocto-docs/log/?h=yocto-5.0.11>`
- Git Revision: :yocto_git:`3f88cb85cca8f9128cfaab36882c4563457b03d9 </yocto-docs/commit/?id=3f88cb85cca8f9128cfaab36882c4563457b03d9>`

View File

@@ -0,0 +1,184 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
Release notes for Yocto-5.0.12 (Scarthgap)
------------------------------------------
Security Fixes in Yocto-5.0.12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- avahi: Fix :cve_nist:`2024-52615`
- binutils: Fix :cve_nist:`2025-7545` and :cve_nist:`2025-7546`
- busybox: Fix :cve_nist:`2023-39810`
- dropbear: Fix :cve_nist:`2025-47203`
- gdk-pixbuf: Fix :cve_nist:`2025-7345`
- git: Fix :cve_nist:`2025-27613`, :cve_nist:`2025-27614`, :cve_nist:`2025-46334`,
:cve_nist:`2025-46835`, :cve_nist:`2025-48384`, :cve_nist:`2025-48385` and :cve_nist:`2025-48386`
- glib-2.0: Ignore :cve_nist:`2025-4056`
- glibc: Fix :cve_nist:`2025-8058`
- gnutls: Fix :cve_nist:`2025-6395`, :cve_nist:`2025-32988`, :cve_nist:`2025-32989` and
:cve_nist:`2025-32990`
- go: Ignore :cve_nist:`2025-0913`
- gstreamer1.0-plugins-base: Fix :cve_nist:`2025-47806` and :cve_nist:`2025-47808`
- gstreamer1.0-plugins-good: Fix :cve_nist:`2025-47183` and :cve_nist:`2025-47219`
- iputils: Fix :cve_nist:`2025-48964`
- libpam: Fix :cve_nist:`2025-6020`
- libxml2: Fix :cve_nist:`2025-6170`, :cve_nist:`2025-49794`, :cve_nist:`2025-49795` and
:cve_nist:`2025-49796`
- libxml2: Ignore :cve_nist:`2025-8732`
- ncurses: Fix :cve_nist:`2025-6141`
- openssl: Fix :cve_nist:`2024-41996` and :cve_nist:`2025-27587`
- python3: Fix :cve_nist:`2025-8194`
- sqlite3: Fix :cve_nist:`2025-6965`
- sudo: Fix :cve_nist:`2025-32463`
- xserver-xorg: Fix :cve_nist:`2022-49737`, :cve_nist:`2025-49175`, :cve_nist:`2025-49176`,
:cve_nist:`2025-49177`, :cve_nist:`2025-49178`, :cve_nist:`2025-49179`, :cve_nist:`2025-49180`
and :cve_nist:`2025-49176`
- xz: Ignore :cve_nist:`2024-47611`
Fixes in Yocto-5.0.12
~~~~~~~~~~~~~~~~~~~~~
- bash: Stick to C17 std
- bash: use -std=gnu17 also for native :term:`CFLAGS`
- binutils: stable 2.42 branch updates
- bitbake: bitbake: runqueue: Verify mcdepends are valid
- bitbake: test/fetch: Switch u-boot based test to use our own mirror
- bitbake: utils: Optimise signal/sigmask performance
- build-appliance-image: Update to scarthgap head revision
- cairo: fix build with gcc-15 on host
- cmake: Add :term:`PACKAGECONFIG` option for debugger support
- cve-check: Add missing call to exit_if_errors
- dev-manual/start.rst: added missing command in Optimize your VHDX file using DiskPart
- e2fsprogs: Fix build failure with gcc 15
- git: Upgrade to 2.44.4
- glibc: stable 2.39 branch updates
- gnutls: patch read buffer overrun in the "pre_shared_key" extension
- gnutls: patch reject zero-length version in certificate request
- go-helloworld: fix license
- kea: set correct permissions for /var/run/kea
- linux-libc-headers: Fix invalid conversion in cn_proc.h
- migration-guides: add release notes for 5.0.11
- mtools: upgrade to 4.0.49
- oe-debuginfod: add option for data storage
- orc: set :term:`CVE_PRODUCT`
- overview-manual/yp-intro.rst: fix broken link to article
- parted: Fix build with GCC 15
- poky.conf: bump version for 5.0.12
- python3: update CVE product
- ref-manual/classes.rst: document the testexport class
- ref-manual/system-requirements.rst: update supported distributions
- ref-manual/variables.rst: document :term:`SPL_DTB_BINARY` :term:`FIT_CONF_PREFIX` variable
- scripts/install-buildtools: Update to 5.0.11
- sudo: upgrade to 1.9.17p1
- timedated: wait for jobs before SetNTP response
- variables.rst: remove references to obsolete tar packaging
- xserver-xorg: upgrade to 21.1.18
Known Issues in Yocto-5.0.12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-5.0.12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Aleksandar Nikolic
- Alexander Kanavin
- Antonin Godard
- Archana Polampalli
- Daniel Turull
- Deepesh Varatharajan
- Erik Lindsten
- Fabio Berton
- Hitendra Prajapati
- Jinfeng Wang
- Joe Slater
- Khem Raj
- Lee Chee Yang
- Marco Cavallini
- Mark Hatle
- Martin Jansa
- Michal Seben
- Nikhil R
- Peter Marko
- Philip Lorenz
- Praveen Kumar
- Quentin Schulz
- Richard Purdie
- Robert P. J. Day
- Roland Kovacs
- Steve Sakoman
- Vijay Anusuri
- Wang Mingyu
- Yash Shinde
- Yi Zhao
- Zhang Peng
Repositories / Downloads for Yocto-5.0.12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`scarthgap </poky/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.12 </poky/log/?h=yocto-5.0.12>`
- Git Revision: :yocto_git:`ec220ae083dba35c279192b2249ad03fe238446e </poky/commit/?id=ec220ae083dba35c279192b2249ad03fe238446e>`
- Release Artefact: poky-ec220ae083dba35c279192b2249ad03fe238446e
- sha: a5f8c2ad491c59d0bdfb85f46a136b0ee66cfdd4359ab1ab9dac2430d0a52c17
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.12/poky-ec220ae083dba35c279192b2249ad03fe238446e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.12/poky-ec220ae083dba35c279192b2249ad03fe238446e.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`scarthgap </openembedded-core/log/?h=scarthgap>`
- Tag: :oe_git:`yocto-5.0.12 </openembedded-core/log/?h=yocto-5.0.12>`
- Git Revision: :oe_git:`93c7489d843a0e46fe4fc685b356d0ae885300d7 </openembedded-core/commit/?id=93c7489d843a0e46fe4fc685b356d0ae885300d7>`
- Release Artefact: oecore-93c7489d843a0e46fe4fc685b356d0ae885300d7
- sha: 49695592179cd777eee337d922aae354dad4ab503628f0344b1b53329900c4d9
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.12/oecore-93c7489d843a0e46fe4fc685b356d0ae885300d7.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.12/oecore-93c7489d843a0e46fe4fc685b356d0ae885300d7.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`scarthgap </meta-mingw/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.12 </meta-mingw/log/?h=yocto-5.0.12>`
- Git Revision: :yocto_git:`bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f </meta-mingw/commit/?id=bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f>`
- Release Artefact: meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f
- sha: ab073def6487f237ac125d239b3739bf02415270959546b6b287778664f0ae65
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.12/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.12/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.8 </bitbake/log/?h=2.8>`
- Tag: :oe_git:`yocto-5.0.12 </bitbake/log/?h=yocto-5.0.12>`
- Git Revision: :oe_git:`982645110a19ebb94d519926a4e14c8a2a205cfd </bitbake/commit/?id=982645110a19ebb94d519926a4e14c8a2a205cfd>`
- Release Artefact: bitbake-982645110a19ebb94d519926a4e14c8a2a205cfd
- sha: f8d777d322b8f05372d7ce75c67df2db2b7de3f64d5b7769b8051c507161245d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.12/bitbake-982645110a19ebb94d519926a4e14c8a2a205cfd.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.12/bitbake-982645110a19ebb94d519926a4e14c8a2a205cfd.tar.bz2
meta-yocto
- Repository Location: :yocto_git:`/meta-yocto`
- Branch: :yocto_git:`scarthgap </meta-yocto/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.12 </meta-yocto/log/?h=yocto-5.0.12>`
- Git Revision: :yocto_git:`82602cda1a89644d1acbe230a81c93e3fb5031c8 </meta-yocto/commit/?id=82602cda1a89644d1acbe230a81c93e3fb5031c8>`
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`scarthgap </yocto-docs/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.12 </yocto-docs/log/?h=yocto-5.0.12>`
- Git Revision: :yocto_git:`dd665216fa578a1f2f268790d708c6a5d2912ecf </yocto-docs/commit/?id=dd665216fa578a1f2f268790d708c6a5d2912ecf>`

View File

@@ -0,0 +1,227 @@
Release notes for Yocto-5.0.5 (Scarthgap)
-----------------------------------------
Security Fixes in Yocto-5.0.5
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- ``cups``: Fix :cve_nist:`2024-47175`
- ``curl``: Fix :cve_nist:`2024-8096`
- ``gnupg``: Ignore :cve_nist:`2022-3219` (wont-fix)
- ``libarchive``: Fix :cve_nist:`2024-48957` and :cve_nist:`2024-48958`
- ``openssh``: Ignore :cve_nist:`2023-51767` (wont-fix)
- ``openssl``: Fix :cve_nist:`2024-9143`
- ``ruby``: Fix :cve_nist:`2024-41123` and :cve_mitre:`2024-41496`
- ``rust-llvm``: Fix :cve_nist:`2024-0151`
- ``rust``, ``libstd-rs``: Ignore :cve_nist:`2024-43402`
- ``wpa-supplicant``: Patch SAE H2E and incomplete downgrade protection for group negotiation
- ``wpa-supplicant``: Fix :cve_nist:`2024-3596`
- ``wpa-supplicant``: Ignore :cve_nist:`2024-5290`
Fixes in Yocto-5.0.5
~~~~~~~~~~~~~~~~~~~~
- binutils: stable 2.42 branch updates
- bitbake.conf: Add truncate to :term:`HOSTTOOLS`
- bitbake: asyncrpc: Use client timeout for websocket open timeout
- bitbake: bitbake: doc/user-manual: Update the :term:`BB_HASHSERVE_UPSTREAM`
- bitbake: gitsm: Add call_process_submodules() to remove duplicated code
- bitbake: gitsm: Remove downloads/tmpdir when failed
- bitbake: tests/fetch: Use our own mirror of mobile-broadband-provider to decouple from gnome gitlab
- bitbake: tests/fetch: Use our own mirror of sysprof to decouple from gnome gitlab
- build-appliance-image: Update to scarthgap head revision
- cryptodev: upgrade to 1.14
- cve-check: add support for cvss v4.0
- cve_check: Use a local copy of the database during builds
- dev-manual: add bblock documentation
- documentation: conf.py: rename :cve: role to :cve_nist:
- documentation: README: add instruction to run Vale on a subset
- documentation: Makefile: add SPHINXLINTDOCS to specify subset to sphinx-lint
- e2fsprogs: removed 'sed -u' option
- ffmpeg: Add "libswresample libavcodec" to :term:`CVE_PRODUCT`
- glibc: stable 2.39 branch updates.
- go: upgrade to 1.22.8
- icu: update patch Upstream-Status
- image.bbclass: Drop support for ImageQAFailed exceptions in image_qa
- image_qa: fix error handling
- install-buildtools: fix "test installation" step
- install-buildtools: remove md5 checksum validation
- install-buildtools: update base-url, release and installer version
- kernel-devsrc: remove 64 bit vdso cmd files
- kernel-fitimage: fix external dtb check
- kernel-fitimage: fix intentation
- lib/oe/package-manager: skip processing installed-pkgs with empty globs
- liba52: fix do_fetch error
- libpcre2: Update base uri PhilipHazel -> PCRE2Project
- libsdl2: Fix non-deterministic configure option for libsamplerate
- license: Fix directory layout issues
- linux-firmware: upgrade to 20240909
- linux-yocto/6.6: fix genericarm64 config warning
- linux-yocto/6.6: upgrade to v6.6.54
- lsb-release: fix Distro Codename shell escaping
- makedevs: Fix issue when rootdir of / is given
- makedevs: Fix matching uid/gid
- meta-ide-support: Mark recipe as MACHINE-specific
- meta-world-pkgdata: Inherit nopackages
- migration-guide: add release notes for 4.0.21, 4.0.22 and 5.0.4
- migration-guide: release-notes-4.0: update :term:`BB_HASHSERVE_UPSTREAM` for new infrastructure
- migration-guide: release-notes-5.0.rst: update NO_OUTPUT -> NO_COLOR
- orc: upgrade to 0.4.40
- overview-manual: concepts: add details on package splitting
- poky.conf: bump version for 5.0.5
- populate_sdk_base: inherit nopackages
- ptest-runner: upgrade to 2.4.5
- pulseaudio: correct freedesktop.org -> www.freedesktop.org :term:`SRC_URI`
- desktop-file-utils: correct freedesktop.org -> www.freedesktop.org :term:`SRC_URI`
- python3-lxml: upgrade to v5.0.2
- python3-setuptools: Add "python:setuptools" to :term:`CVE_PRODUCT`
- recipes-bsp: usbutils: Fix usb-devices command using busybox
- ref-manual: add missing CVE_CHECK manifest variables
- ref-manual: add missing :term:`EXTERNAL_KERNEL_DEVICETREE` variable
- ref-manual: add missing :term:`OPKGBUILDCMD` variable
- ref-manual: add missing :term:`TESTIMAGE_FAILED_QA_ARTIFACTS`
- ref-manual: devtool-reference: document missing commands
- ref-manual: devtool-reference: refresh example outputs
- ref-manual: faq: add q&a on class appends
- ref-manual: introduce :term:`CVE_CHECK_REPORT_PATCHED` variable
- ref-manual: merge patch-status-* to patch-status
- ref-manual: release-process: add a reference to the doc's release
- ref-manual: release-process: refresh the current LTS releases
- ref-manual: release-process: update releases.svg
- ref-manual: release-process: update releases.svg with month after "Current"
- ref-manual: structure.rst: document missing tmp/ dirs
- ref-manual: variables: add SIGGEN_LOCKEDSIGS* variables
- rootfs-postcommands.bbclass: make opkg status reproducible
- rpm: fix expansion of %_libdir in macros
- ruby: upgrade to 3.3.5
- runqemu: Fix detection of -serial parameter
- runqemu: keep generating tap devices
- scripts/install-buildtools: Update to 5.0.3
- sqlite3: upgrade to 3.45.3
- styles: vocabularies: Yocto: add sstate
- systemtap: fix systemtap-native build error on Fedora 40
- sysvinit: take release tarballs from github
- testexport: fallback for empty :term:`IMAGE_LINK_NAME`
- testimage: fallback for empty :term:`IMAGE_LINK_NAME`
- uboot-sign: fix counters in do_uboot_assemble_fitimage
- vim: upgrade to 9.1.0764
- virglrenderer: Add patch to fix -int-conversion build issue
- webkitgtk: upgrade to 2.44.3
- weston: backport patch to allow neatvnc < v0.9.0
- wpa-supplicant: Patch security advisory 2024-2
- xserver-xorg: upgrade to 21.1.14
Known Issues in Yocto-5.0.5
~~~~~~~~~~~~~~~~~~~~~~~~~~~
- ``oeqa/runtime``: the ``beaglebone-yocto`` target fails the parselogs runtime test due to unexpected kernel error messages in the log (see :yocto_bugs:`bug 15624 </show_bug.cgi?id=15624>` on Bugzilla).
Contributors to Yocto-5.0.5
~~~~~~~~~~~~~~~~~~~~~~~~~~~
- Aditya Tayade
- Adrian Freihofer
- Aleksandar Nikolic
- Alexander Kanavin
- Antonin Godard
- Anuj Mittal
- Bruce Ashfield
- Claus Stovgaard
- Deepesh Varatharajan
- Deepthi Hemraj
- Hiago De Franco
- Hitendra Prajapati
- Jaeyoon Jung
- Jiaying Song
- Jonas Gorski
- Jose Quaresma
- Joshua Watt
- Julien Stephan
- Jörg Sommer
- Khem Raj
- Konrad Weihmann
- Lee Chee Yang
- Louis Rannou
- Macpaul Lin
- Martin Jansa
- Paul Barker
- Paul Gerber
- Peter Kjellerstedt
- Peter Marko
- Purushottam Choudhary
- Richard Purdie
- Robert Yang
- Rohini Sangam
- Ross Burton
- Sergei Zhmylev
- Shunsuke Tokumoto
- Steve Sakoman
- Teresa Remmet
- Victor Kamensky
- Vijay Anusuri
- Wang Mingyu
- Yi Zhao
- Yogita Urade
- Zahir Hussain
Repositories / Downloads for Yocto-5.0.5
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`scarthgap </poky/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.5 </poky/log/?h=yocto-5.0.5>`
- Git Revision: :yocto_git:`dce4163d42f7036ea216b52b9135968d51bec4c1 </poky/commit/?id=dce4163d42f7036ea216b52b9135968d51bec4c1>`
- Release Artefact: poky-dce4163d42f7036ea216b52b9135968d51bec4c1
- sha: ad35a965a284490a962f6854ace536b8795f96514e14bf5c79f91f6d76ac25d3
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.5/poky-dce4163d42f7036ea216b52b9135968d51bec4c1.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.5/poky-dce4163d42f7036ea216b52b9135968d51bec4c1.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`scarthgap </openembedded-core/log/?h=scarthgap>`
- Tag: :oe_git:`yocto-5.0.5 </openembedded-core/log/?h=yocto-5.0.5>`
- Git Revision: :oe_git:`a051a066da2874b95680d0353dfa18c1d56b2670 </openembedded-core/commit/?id=a051a066da2874b95680d0353dfa18c1d56b2670>`
- Release Artefact: oecore-a051a066da2874b95680d0353dfa18c1d56b2670
- sha: 16d252aade00161ade2692f41b2da3effeb1f41816a66db843bb1c5495125e93
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.5/oecore-a051a066da2874b95680d0353dfa18c1d56b2670.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.5/oecore-a051a066da2874b95680d0353dfa18c1d56b2670.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`scarthgap </meta-mingw/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.5 </meta-mingw/log/?h=yocto-5.0.5>`
- Git Revision: :yocto_git:`acbba477893ef87388effc4679b7f40ee49fc852 </meta-mingw/commit/?id=acbba477893ef87388effc4679b7f40ee49fc852>`
- Release Artefact: meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852
- sha: 3b7c2f475dad5130bace652b150367f587d44b391218b1364a8bbc430b48c54c
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.5/meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.5/meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852.tar.bz2
bitbake
- Repository Location: :bitbake_git:`/`
- Branch: :bitbake_git:`2.8 </log/?h=2.8>`
- Tag: :bitbake_git:`yocto-5.0.5 </log/?h=yocto-5.0.5>`
- Git Revision: :bitbake_git:`377eba2361850adfb8ce7e761ef9c76be287f88c </commit/?id=377eba2361850adfb8ce7e761ef9c76be287f88c>`
- Release Artefact: bitbake-377eba2361850adfb8ce7e761ef9c76be287f88c
- sha: 4a5a35098eec719bbb879706d50e552a2b709295db4055c8050ae7dda1eb2994
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.5/bitbake-377eba2361850adfb8ce7e761ef9c76be287f88c.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.5/bitbake-377eba2361850adfb8ce7e761ef9c76be287f88c.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`scarthgap </yocto-docs/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.5 </yocto-docs/log/?h=yocto-5.0.5>`
- Git Revision: :yocto_git:`e882cb3e5816d081eb05cb83488f286cca70e0c6 </yocto-docs/commit/?id=e882cb3e5816d081eb05cb83488f286cca70e0c6>`

View File

@@ -0,0 +1,223 @@
Release notes for Yocto-5.0.6 (Scarthgap)
-----------------------------------------
Security Fixes in Yocto-5.0.6
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- acpica: Fix :cve_nist:`2024-24856`
- curl: Fix :cve_nist:`2024-9681`
- dropbear: Fix :cve_nist:`2023-48795`
- expat: Fix :cve_nist:`2024-50602`
- ffmpeg: Fix :cve_nist:`2023-49501`, :cve_nist:`2023-49528`, :cve_nist:`2023-50007`,
:cve_nist:`2024-7055` and :cve_mitre:`2024-28661`
- glib-2.0: Fix :cve_nist:`2024-52533`
- ghostscript: Fix :cve_nist:`2024-46951`, :cve_nist:`2024-46952`, :cve_nist:`2024-46953`,
:cve_nist:`2024-46954`, :cve_nist:`2024-46955` and :cve_nist:`2024-46956`
- gstreamer1.0: Ignore :cve_nist:`2024-0444`
- libpam: Fix :cve_nist:`2024-10041`
- libsndfile: Fix :cve_nist:`2024-50612`
- libsoup: Fix :cve_nist:`2024-52530`, :cve_nist:`2024-52531` and :cve_nist:`2024-52532`
- ovmf: Fix :cve_nist:`2024-1298` and :cve_nist:`2024-38796`
- python3-zipp: Fix :cve_nist:`2024-5569`
- qemu: Fix :cve_nist:`2024-4693`, :cve_nist:`2024-6505` and :cve_nist:`2024-7730`
- qemu: Ignore :cve_nist:`2024-6505`
Fixes in Yocto-5.0.6
~~~~~~~~~~~~~~~~~~~~
- binutils: Add missing perl modules to :term:`RDEPENDS` for nativesdk variant
- binutils: stable 2.42 branch update
- bitbake: Remove custom exception backtrace formatting
- bitbake: fetch2/git: Use quote from shlex, not pipes
- bitbake: fetch2: use persist_data context managers
- bitbake: fetch/wget: Increase timeout to 100s from 30s
- bitbake: persist_data: close connection in SQLTable __exit__
- bitbake: runqueue: Fix performance of multiconfigs with large overlap
- bitbake: runqueue: Fix scenetask processing performance issue
- bitbake: runqueue: Optimise setscene loop processing
- build-appliance-image: Update to scarthgap head revision
- builder: set :term:`CVE_PRODUCT`
- cmake: Fix sporadic issues when determining compiler internals
- cml1: do_diffconfig: Don't override .config with .config.orig
- contributor-guide: Remove duplicated words
- dev-manual: bblock: use warning block instead of attention
- dev-manual: document how to provide confs from layer.conf
- dnf: drop python3-iniparse from :term:`DEPENDS` and :term:`RDEPENDS`
- do_package/sstate/sstatesig: Change timestamp clamping to hash output only
- doc: Makefile: add support for xelatex
- doc: Makefile: publish pdf and epub versions too
- doc: Makefile: remove inkscape, replace by rsvg-convert
- doc: add a download page for epub and pdf
- doc: conf.py: add a bitbake_git extlink
- doc: standards.md: add a section on admonitions
- doc: sphinx-static: switchers.js.in: do not refer to URL_ROOT anymore
- dropbear: backport fix for concurrent channel open/close
- enchant2: fix do_fetch error
- expat: upgrade to 2.6.4
- gcc: backport patch to fix an issue with tzdata 2024b
- ghostscript: upgrade to 10.04.0
- glibc: stable 2.39 branch updates
- groff: fix rare build race in hdtbl
- libgcrypt: Fix building error with '-O2' in sysroot path
- libpam: drop cracklib from :term:`DEPENDS`
- libxml-parser-perl: fix do_fetch error
- llvm: reduce size of -dbg package
- lttng-ust: backport patch to fix cmake-multiple-shared-libraries build error
- migration-guides: add release notes for 4.0.23 and 5.0.5
- ninja: fix build with python 3.13
- oeqa/runtime/ssh: Fix incorrect timeout fix
- oeqa/runtime/ssh: Rework ssh timeout
- oeqa/utils/gitarchive: Return tag name and improve exclude handling
- package_rpm: Check if file exists before open()
- package_rpm: restrict rpm to 4 threads
- package_rpm: use zstd's default compression level
- poky.conf: bump version for 5.0.6
- pseudo: Fix envp bug and add posix_spawn wrapper
- python3-poetry-core: drop python3-six from :term:`RDEPENDS`
- python3-requests: upgrade to 2.32.2
- python3-urllib3: upgrade to 2.2.2
- qemu: upgrade to 8.2.7
- qemurunner: Clean up serial_lock handling
- ref-manual: classes: fix bin_package description
- resulttool: Add --logfile-archive option to store mode
- resulttool: Allow store to filter to specific revisions
- resulttool: Clean up repoducible build logs
- resulttool: Fix passthrough of --all files in store mode
- resulttool: Handle ltp rawlogs as well as ptest
- resulttool: Improve repo layout for oeselftest results
- resulttool: Trim the precision of duration information
- resulttool: Use single space indentation in json output
- rootfs: Ensure run-postinsts is not uninstalled for read-only-rootfs-delayed-postinsts
- rxvt-unicode.inc: disable the terminfo installation by setting TIC to :
- sanity: check for working user namespaces
- scripts/install-buildtools: Update to 5.0.5
- selftest/reproducible: Clean up pathnames
- selftest/reproducible: Drop rawlogs
- shared-mime-info: drop itstool-native from :term:`DEPENDS`
- strace: download release tarballs from GitHub
- systemd-boot: drop intltool-native from :term:`DEPENDS`
- systemd: drop intltool-native from :term:`DEPENDS`
- systemd: upgrade to 255.13
- sysvinit: backport patch for fixing one issue of pidof
- tcl: skip io-13.6 test case
- toolchain-shar-extract.sh: exit when post-relocate-setup.sh fails
- tune-cortexa32: set tune feature as armv8a
- tzcode-native: upgrade to 2024b
- tzdata: upgrade to 2024b
- uboot-sign: fix concat_dtb arguments
- udev-extraconf: fix network.sh script did not configure hotplugged interfaces
- webkitgtk: fix erroneous use of unsuported DEBUG_LEVELFLAG variable
- wireless-regdb: upgrade to 2024.10.07
Known Issues in Yocto-5.0.6
~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-5.0.6
~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Aleksandar Nikolic
- Alexander Kanavin
- Antonin Godard
- Archana Polampalli
- Bin Lan
- Changqing Li
- Chen Qi
- Chris Laplante
- Clayton Casciato
- Deepthi Hemraj
- Divya Chellam
- Florian Kreutzer
- Gassner, Tobias.ext
- Guðni Már Gilbert
- Harish Sadineni
- Hitendra Prajapati
- Hongxu Jia
- Jagadeesh Krishnanjanappa
- Jiaying Song
- Jinfeng Wang
- Joshua Watt
- Lee Chee Yang
- Markus Volk
- Michael Opdenacker
- Pavel Zhukov
- Peter Marko
- Philip Lorenz
- Randy MacLeod
- Regis Dargent
- Richard Purdie
- Robert Yang
- Ross Burton
- Soumya Sambu
- Steve Sakoman
- Talel BELHAJSALEM
- Trevor Gamblin
- Vijay Anusuri
- Wang Mingyu
- Yogita Urade
Repositories / Downloads for Yocto-5.0.6
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`scarthgap </poky/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.6 </poky/log/?h=yocto-5.0.6>`
- Git Revision: :yocto_git:`2541a8171f91812a4b16e7dc4da0d77d2318a256 </poky/commit/?id=2541a8171f91812a4b16e7dc4da0d77d2318a256>`
- Release Artefact: poky-2541a8171f91812a4b16e7dc4da0d77d2318a256
- sha: b77157596ae75d163387a08a317397a57ab8fa6cf4725f28e344fae3f69cca4d
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.6/poky-2541a8171f91812a4b16e7dc4da0d77d2318a256.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.6/poky-2541a8171f91812a4b16e7dc4da0d77d2318a256.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`scarthgap </openembedded-core/log/?h=scarthgap>`
- Tag: :oe_git:`yocto-5.0.6 </openembedded-core/log/?h=yocto-5.0.6>`
- Git Revision: :oe_git:`336eec6808710f260a5336ca8ca98139a80ccb14 </openembedded-core/commit/?id=336eec6808710f260a5336ca8ca98139a80ccb14>`
- Release Artefact: oecore-336eec6808710f260a5336ca8ca98139a80ccb14
- sha: 38c4fa7e7e88c28361c012dd5baabe373e2ec3c8aba6194146768b146192cceb
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.6/oecore-336eec6808710f260a5336ca8ca98139a80ccb14.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.6/oecore-336eec6808710f260a5336ca8ca98139a80ccb14.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`scarthgap </meta-mingw/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.6 </meta-mingw/log/?h=yocto-5.0.6>`
- Git Revision: :yocto_git:`acbba477893ef87388effc4679b7f40ee49fc852 </meta-mingw/commit/?id=acbba477893ef87388effc4679b7f40ee49fc852>`
- Release Artefact: meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852
- sha: 3b7c2f475dad5130bace652b150367f587d44b391218b1364a8bbc430b48c54c
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.6/meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.6/meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.8 </bitbake/log/?h=2.8>`
- Tag: :oe_git:`yocto-5.0.6 </bitbake/log/?h=yocto-5.0.6>`
- Git Revision: :oe_git:`f40a3a477d5241b697bf2fb030dd804c1ff5839f </bitbake/commit/?id=f40a3a477d5241b697bf2fb030dd804c1ff5839f>`
- Release Artefact: bitbake-f40a3a477d5241b697bf2fb030dd804c1ff5839f
- sha: dbfc056c7408a5547f624799621ab1261a05685112e0922a88007723b1edbc87
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.6/bitbake-f40a3a477d5241b697bf2fb030dd804c1ff5839f.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.6/bitbake-f40a3a477d5241b697bf2fb030dd804c1ff5839f.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`scarthgap </yocto-docs/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.6 </yocto-docs/log/?h=yocto-5.0.6>`
- Git Revision: :yocto_git:`TBD </yocto-docs/commit/?id=TBD>`

View File

@@ -0,0 +1,331 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
Release notes for Yocto-5.0.7 (Scarthgap)
-----------------------------------------
Security Fixes in Yocto-5.0.7
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- avahi: Fix :cve_nist:`2024-52616`
- binutils: Fix :cve_nist:`2024-53589`
- ffmpeg: Fix :cve_nist:`2024-35366`, :cve_nist:`2024-35367` and :cve_nist:`2024-35368`
- gstreamer1.0-plugins-base: Fix :cve_nist:`2024-47538`, :cve_nist:`2024-47541`,
:cve_nist:`2024-47542`, :cve_nist:`2024-47600`, :cve_nist:`2024-47607`, :cve_nist:`2024-47615`
and :cve_nist:`2024-47835`
- gstreamer1.0-plugins-good: Fix :cve_nist:`2024-47537`, :cve_nist:`2024-47539`,
:cve_nist:`2024-47540`, :cve_nist:`2024-47543`, :cve_nist:`2024-47544`, :cve_nist:`2024-47545`,
:cve_nist:`2024-47546`, :cve_nist:`2024-47596`, :cve_nist:`2024-47597`, :cve_nist:`2024-47598`,
:cve_nist:`2024-47599`, :cve_nist:`2024-47601`, :cve_nist:`2024-47602`, :cve_nist:`2024-47603`,
:cve_nist:`2024-47606`, :cve_nist:`2024-47613`, :cve_nist:`2024-47774`, :cve_nist:`2024-47775`,
:cve_nist:`2024-47776`, :cve_nist:`2024-47777`, :cve_nist:`2024-47778` and :cve_nist:`2024-47834`
- gstreamer1.0: Ignore :cve_nist:`2024-47537`, :cve_nist:`2024-47539`, :cve_nist:`2024-47540`,
:cve_nist:`2024-47543`, :cve_nist:`2024-47544`, :cve_nist:`2024-47545`, :cve_nist:`2024-47538`,
:cve_nist:`2024-47541`, :cve_nist:`2024-47542`, :cve_nist:`2024-47600`, :cve_nist:`2024-47607`,
:cve_nist:`2024-47615`, :cve_nist:`2024-47835`, :cve_nist:`2024-47546`, :cve_nist:`2024-47596`,
:cve_nist:`2024-47597`, :cve_nist:`2024-47598`, :cve_nist:`2024-47599`, :cve_nist:`2024-47601`,
:cve_nist:`2024-47602`, :cve_nist:`2024-47603`, :cve_nist:`2024-47613`, :cve_nist:`2024-47774`,
:cve_nist:`2024-47775`, :cve_nist:`2024-47776`, :cve_nist:`2024-47777`, :cve_nist:`2024-47778`
and :cve_nist:`2024-47834`
- libarchive: Fix :cve_nist:`2024-20696`
- libxml2: Fix :cve_nist:`2024-40896`
- linux-yocto/6.6: Fix :cve_nist:`2024-27059`, :cve_nist:`2024-43098`, :cve_nist:`2024-45828`,
:cve_nist:`2024-47141`, :cve_nist:`2024-47143`, :cve_nist:`2024-47704`, :cve_nist:`2024-47809`,
:cve_nist:`2024-48873`, :cve_nist:`2024-48875`, :cve_nist:`2024-48881`, :cve_nist:`2024-49863`,
:cve_nist:`2024-49864`, :cve_nist:`2024-49866`, :cve_nist:`2024-49867`, :cve_nist:`2024-49868`,
:cve_nist:`2024-49870`, :cve_nist:`2024-49871`, :cve_nist:`2024-49874`, :cve_nist:`2024-49875`,
:cve_nist:`2024-49877`, :cve_nist:`2024-49878`, :cve_nist:`2024-49879`, :cve_nist:`2024-49881`,
:cve_nist:`2024-49882`, :cve_nist:`2024-49883`, :cve_nist:`2024-49884`, :cve_nist:`2024-49886`,
:cve_nist:`2024-49889`, :cve_nist:`2024-49890`, :cve_nist:`2024-49892`, :cve_nist:`2024-49894`,
:cve_nist:`2024-49895`, :cve_nist:`2024-49896`, :cve_nist:`2024-49900`, :cve_nist:`2024-49901`,
:cve_nist:`2024-49902`, :cve_nist:`2024-49903`, :cve_nist:`2024-49905`, :cve_nist:`2024-49907`,
:cve_nist:`2024-49912`, :cve_nist:`2024-49913`, :cve_nist:`2024-49924`, :cve_nist:`2024-49925`,
:cve_nist:`2024-49927`, :cve_nist:`2024-49929`, :cve_nist:`2024-49930`, :cve_nist:`2024-49931`,
:cve_nist:`2024-49933`, :cve_nist:`2024-49935`, :cve_nist:`2024-49936`, :cve_nist:`2024-49937`,
:cve_nist:`2024-49938`, :cve_nist:`2024-49939`, :cve_nist:`2024-49944`, :cve_nist:`2024-49946`,
:cve_nist:`2024-49947`, :cve_nist:`2024-49948`, :cve_nist:`2024-49949`, :cve_nist:`2024-49950`,
:cve_nist:`2024-49951`, :cve_nist:`2024-49952`, :cve_nist:`2024-49953`, :cve_nist:`2024-49954`,
:cve_nist:`2024-49955`, :cve_nist:`2024-49957`, :cve_nist:`2024-49958`, :cve_nist:`2024-49959`,
:cve_nist:`2024-49960`, :cve_nist:`2024-49961`, :cve_nist:`2024-49962`, :cve_nist:`2024-49963`,
:cve_nist:`2024-49965`, :cve_nist:`2024-49966`, :cve_nist:`2024-49969`, :cve_nist:`2024-49973`,
:cve_nist:`2024-49975`, :cve_nist:`2024-49976`, :cve_nist:`2024-49977`, :cve_nist:`2024-49978`,
:cve_nist:`2024-49980`, :cve_nist:`2024-49981`, :cve_nist:`2024-49982`, :cve_nist:`2024-49983`,
:cve_nist:`2024-49985`, :cve_nist:`2024-49986`, :cve_nist:`2024-49987`, :cve_nist:`2024-49988`,
:cve_nist:`2024-49989`, :cve_nist:`2024-49991`, :cve_nist:`2024-49992`, :cve_nist:`2024-49995`,
:cve_nist:`2024-49996`, :cve_nist:`2024-49997`, :cve_nist:`2024-50000`, :cve_nist:`2024-50001`,
:cve_nist:`2024-50002`, :cve_nist:`2024-50003`, :cve_nist:`2024-50005`, :cve_nist:`2024-50006`,
:cve_nist:`2024-50007`, :cve_nist:`2024-50008`, :cve_nist:`2024-50012`, :cve_nist:`2024-50013`,
:cve_nist:`2024-50015`, :cve_nist:`2024-50016`, :cve_nist:`2024-50019`, :cve_nist:`2024-50022`,
:cve_nist:`2024-50023`, :cve_nist:`2024-50024`, :cve_nist:`2024-50026`, :cve_nist:`2024-50029`,
:cve_nist:`2024-50031`, :cve_nist:`2024-50032`, :cve_nist:`2024-50033`, :cve_nist:`2024-50035`,
:cve_nist:`2024-50036`, :cve_nist:`2024-50038`, :cve_nist:`2024-50039`, :cve_nist:`2024-50040`,
:cve_nist:`2024-50041`, :cve_nist:`2024-50044`, :cve_nist:`2024-50045`, :cve_nist:`2024-50046`,
:cve_nist:`2024-50047`, :cve_nist:`2024-50048`, :cve_nist:`2024-50049`, :cve_nist:`2024-50051`,
:cve_nist:`2024-50055`, :cve_nist:`2024-50057`, :cve_nist:`2024-50058`, :cve_nist:`2024-50059`,
:cve_nist:`2024-50060`, :cve_nist:`2024-50061`, :cve_nist:`2024-50062`, :cve_nist:`2024-50063`,
:cve_nist:`2024-50064`, :cve_nist:`2024-50065`, :cve_nist:`2024-50066`, :cve_nist:`2024-50069`,
:cve_nist:`2024-50070`, :cve_nist:`2024-50072`, :cve_nist:`2024-50073`, :cve_nist:`2024-50074`,
:cve_nist:`2024-50075`, :cve_nist:`2024-50076`, :cve_nist:`2024-50077`, :cve_nist:`2024-50078`,
:cve_nist:`2024-50080`, :cve_nist:`2024-50082`, :cve_nist:`2024-50083`, :cve_nist:`2024-50084`,
:cve_nist:`2024-50085`, :cve_nist:`2024-50086`, :cve_nist:`2024-50087`, :cve_nist:`2024-50088`,
:cve_nist:`2024-50093`, :cve_nist:`2024-50095`, :cve_nist:`2024-50096`, :cve_nist:`2024-50098`,
:cve_nist:`2024-50099`, :cve_nist:`2024-50101`, :cve_nist:`2024-50103`, :cve_nist:`2024-50108`,
:cve_nist:`2024-50110`, :cve_nist:`2024-50111`, :cve_nist:`2024-50112`, :cve_nist:`2024-50115`,
:cve_nist:`2024-50116`, :cve_nist:`2024-50117`, :cve_nist:`2024-50120`, :cve_nist:`2024-50121`,
:cve_nist:`2024-50124`, :cve_nist:`2024-50125`, :cve_nist:`2024-50126`, :cve_nist:`2024-50127`,
:cve_nist:`2024-50128`, :cve_nist:`2024-50130`, :cve_nist:`2024-50131`, :cve_nist:`2024-50133`,
:cve_nist:`2024-50134`, :cve_nist:`2024-50135`, :cve_nist:`2024-50136`, :cve_nist:`2024-50139`,
:cve_nist:`2024-50140`, :cve_nist:`2024-50141`, :cve_nist:`2024-50142`, :cve_nist:`2024-50143`,
:cve_nist:`2024-50145`, :cve_nist:`2024-50147`, :cve_nist:`2024-50148`, :cve_nist:`2024-50150`,
:cve_nist:`2024-50151`, :cve_nist:`2024-50152`, :cve_nist:`2024-50153`, :cve_nist:`2024-50154`,
:cve_nist:`2024-50155`, :cve_nist:`2024-50156`, :cve_nist:`2024-50158`, :cve_nist:`2024-50159`,
:cve_nist:`2024-50160`, :cve_nist:`2024-50162`, :cve_nist:`2024-50163`, :cve_nist:`2024-50164`,
:cve_nist:`2024-50166`, :cve_nist:`2024-50167`, :cve_nist:`2024-50168`, :cve_nist:`2024-50169`,
:cve_nist:`2024-50170`, :cve_nist:`2024-50171`, :cve_nist:`2024-50172`, :cve_nist:`2024-50175`,
:cve_nist:`2024-50176`, :cve_nist:`2024-50179`, :cve_nist:`2024-50180`, :cve_nist:`2024-50181`,
:cve_nist:`2024-50182`, :cve_nist:`2024-50183`, :cve_nist:`2024-50184`, :cve_nist:`2024-50185`,
:cve_nist:`2024-50186`, :cve_nist:`2024-50187`, :cve_nist:`2024-50188`, :cve_nist:`2024-50189`,
:cve_nist:`2024-50191`, :cve_nist:`2024-50192`, :cve_nist:`2024-50193`, :cve_nist:`2024-50194`,
:cve_nist:`2024-50195`, :cve_nist:`2024-50196`, :cve_nist:`2024-50198`, :cve_nist:`2024-50201`,
:cve_nist:`2024-50202`, :cve_nist:`2024-50205`, :cve_nist:`2024-50208`, :cve_nist:`2024-50209`,
:cve_nist:`2024-50211`, :cve_nist:`2024-50215`, :cve_nist:`2024-50222`, :cve_nist:`2024-50223`,
:cve_nist:`2024-50224`, :cve_nist:`2024-50226`, :cve_nist:`2024-50229`, :cve_nist:`2024-50230`,
:cve_nist:`2024-50231`, :cve_nist:`2024-50232`, :cve_nist:`2024-50233`, :cve_nist:`2024-50234`,
:cve_nist:`2024-50235`, :cve_nist:`2024-50236`, :cve_nist:`2024-50237`, :cve_nist:`2024-50239`,
:cve_nist:`2024-50240`, :cve_nist:`2024-50242`, :cve_nist:`2024-50243`, :cve_nist:`2024-50244`,
:cve_nist:`2024-50245`, :cve_nist:`2024-50246`, :cve_nist:`2024-50247`, :cve_nist:`2024-50248`,
:cve_nist:`2024-50249`, :cve_nist:`2024-50250`, :cve_nist:`2024-50251`, :cve_nist:`2024-50252`,
:cve_nist:`2024-50255`, :cve_nist:`2024-50256`, :cve_nist:`2024-50257`, :cve_nist:`2024-50258`,
:cve_nist:`2024-50259`, :cve_nist:`2024-50261`, :cve_nist:`2024-50262`, :cve_nist:`2024-50264`,
:cve_nist:`2024-50265`, :cve_nist:`2024-50267`, :cve_nist:`2024-50268`, :cve_nist:`2024-50269`,
:cve_nist:`2024-50271`, :cve_nist:`2024-50272`, :cve_nist:`2024-50273`, :cve_nist:`2024-50275`,
:cve_nist:`2024-50276`, :cve_nist:`2024-50278`, :cve_nist:`2024-50279`, :cve_nist:`2024-50282`,
:cve_nist:`2024-50283`, :cve_nist:`2024-50284`, :cve_nist:`2024-50285`, :cve_nist:`2024-50286`,
:cve_nist:`2024-50287`, :cve_nist:`2024-50292`, :cve_nist:`2024-50296`, :cve_nist:`2024-50298`,
:cve_nist:`2024-50299`, :cve_nist:`2024-50300`, :cve_nist:`2024-50301`, :cve_nist:`2024-50302`,
:cve_nist:`2024-53042`, :cve_nist:`2024-53043`, :cve_nist:`2024-53046`, :cve_nist:`2024-53047`,
:cve_nist:`2024-53052`, :cve_nist:`2024-53055`, :cve_nist:`2024-53057`, :cve_nist:`2024-53058`,
:cve_nist:`2024-53059`, :cve_nist:`2024-53060`, :cve_nist:`2024-53061`, :cve_nist:`2024-53063`,
:cve_nist:`2024-53066`, :cve_nist:`2024-53068`, :cve_nist:`2024-53072`, :cve_nist:`2024-53076`,
:cve_nist:`2024-53079`, :cve_nist:`2024-53081`, :cve_nist:`2024-53082`, :cve_nist:`2024-53083`,
:cve_nist:`2024-53088`, :cve_nist:`2024-53091`, :cve_nist:`2024-53093`, :cve_nist:`2024-53094`,
:cve_nist:`2024-53096`, :cve_nist:`2024-53099`, :cve_nist:`2024-53100`, :cve_nist:`2024-53101`,
:cve_nist:`2024-53103`, :cve_nist:`2024-53108`, :cve_nist:`2024-53109`, :cve_nist:`2024-53110`,
:cve_nist:`2024-53112`, :cve_nist:`2024-53113`, :cve_nist:`2024-53119`, :cve_nist:`2024-53120`,
:cve_nist:`2024-53121`, :cve_nist:`2024-53122`, :cve_nist:`2024-53123`, :cve_nist:`2024-53126`,
:cve_nist:`2024-53127`, :cve_nist:`2024-53129`, :cve_nist:`2024-53130`, :cve_nist:`2024-53131`,
:cve_nist:`2024-53134`, :cve_nist:`2024-53135`, :cve_nist:`2024-53138`, :cve_nist:`2024-53139`,
:cve_nist:`2024-53140`, :cve_nist:`2024-53141`, :cve_nist:`2024-53142`, :cve_nist:`2024-53145`,
:cve_nist:`2024-53146`, :cve_nist:`2024-53150`, :cve_nist:`2024-53151`, :cve_nist:`2024-53154`,
:cve_nist:`2024-53155`, :cve_nist:`2024-53156`, :cve_nist:`2024-53157`, :cve_nist:`2024-53161`,
:cve_nist:`2024-53165`, :cve_nist:`2024-53166`, :cve_nist:`2024-53168`, :cve_nist:`2024-53171`,
:cve_nist:`2024-53173`, :cve_nist:`2024-53175`, :cve_nist:`2024-53180`, :cve_nist:`2024-53188`,
:cve_nist:`2024-53191`, :cve_nist:`2024-53200`, :cve_nist:`2024-53202`, :cve_nist:`2024-53208`,
:cve_nist:`2024-53210`, :cve_nist:`2024-53213`, :cve_nist:`2024-53215`, :cve_nist:`2024-53217`,
:cve_nist:`2024-53224`, :cve_nist:`2024-53226`, :cve_nist:`2024-53227`, :cve_nist:`2024-53230`,
:cve_nist:`2024-53231`, :cve_nist:`2024-53237`, :cve_nist:`2024-53239`, :cve_nist:`2024-54683`,
:cve_nist:`2024-55916`, :cve_nist:`2024-56369`, :cve_nist:`2024-56538`, :cve_nist:`2024-56551`,
:cve_nist:`2024-56567`, :cve_nist:`2024-56568`, :cve_nist:`2024-56569`, :cve_nist:`2024-56572`,
:cve_nist:`2024-56574`, :cve_nist:`2024-56575`, :cve_nist:`2024-56577`, :cve_nist:`2024-56578`,
:cve_nist:`2024-56579`, :cve_nist:`2024-56581`, :cve_nist:`2024-56587`, :cve_nist:`2024-56593`,
:cve_nist:`2024-56595`, :cve_nist:`2024-56596`, :cve_nist:`2024-56598`, :cve_nist:`2024-56600`,
:cve_nist:`2024-56601`, :cve_nist:`2024-56602`, :cve_nist:`2024-56603`, :cve_nist:`2024-56604`,
:cve_nist:`2024-56605`, :cve_nist:`2024-56606`, :cve_nist:`2024-56611`, :cve_nist:`2024-56613`,
:cve_nist:`2024-56614`, :cve_nist:`2024-56615`, :cve_nist:`2024-56617`, :cve_nist:`2024-56622`,
:cve_nist:`2024-56623`, :cve_nist:`2024-56626`, :cve_nist:`2024-56627`, :cve_nist:`2024-56629`,
:cve_nist:`2024-56631`, :cve_nist:`2024-56634`, :cve_nist:`2024-56635`, :cve_nist:`2024-56640`,
:cve_nist:`2024-56642`, :cve_nist:`2024-56643`, :cve_nist:`2024-56648`, :cve_nist:`2024-56649`,
:cve_nist:`2024-56650`, :cve_nist:`2024-56651`, :cve_nist:`2024-56653`, :cve_nist:`2024-56654`,
:cve_nist:`2024-56657`, :cve_nist:`2024-56658`, :cve_nist:`2024-56659`, :cve_nist:`2024-56660`,
:cve_nist:`2024-56662`, :cve_nist:`2024-56663`, :cve_nist:`2024-56664`, :cve_nist:`2024-56667`,
:cve_nist:`2024-56670`, :cve_nist:`2024-56672`, :cve_nist:`2024-56675`, :cve_nist:`2024-56687`,
:cve_nist:`2024-56688`, :cve_nist:`2024-56689`, :cve_nist:`2024-56692`, :cve_nist:`2024-56694`,
:cve_nist:`2024-56698`, :cve_nist:`2024-56704`, :cve_nist:`2024-56708`, :cve_nist:`2024-56710`,
:cve_nist:`2024-56715`, :cve_nist:`2024-56716`, :cve_nist:`2024-56717`, :cve_nist:`2024-56718`,
:cve_nist:`2024-56720`, :cve_nist:`2024-56722`, :cve_nist:`2024-56723`, :cve_nist:`2024-56724`,
:cve_nist:`2024-56725`, :cve_nist:`2024-56726`, :cve_nist:`2024-56727`, :cve_nist:`2024-56728`,
:cve_nist:`2024-56729`, :cve_nist:`2024-56739`, :cve_nist:`2024-56741`, :cve_nist:`2024-56744`,
:cve_nist:`2024-56745`, :cve_nist:`2024-56746`, :cve_nist:`2024-56747`, :cve_nist:`2024-56748`,
:cve_nist:`2024-56751`, :cve_nist:`2024-56752`, :cve_nist:`2024-56754`, :cve_nist:`2024-56755`,
:cve_nist:`2024-56756`, :cve_nist:`2024-56760`, :cve_nist:`2024-56763`, :cve_nist:`2024-56765`,
:cve_nist:`2024-56767`, :cve_nist:`2024-56769`, :cve_nist:`2024-56770`, :cve_nist:`2024-56774`,
:cve_nist:`2024-56776`, :cve_nist:`2024-56777`, :cve_nist:`2024-56778`, :cve_nist:`2024-56779`,
:cve_nist:`2024-56780`, :cve_nist:`2024-56781`, :cve_nist:`2024-56783`, :cve_nist:`2024-56785`,
:cve_nist:`2024-56786`, :cve_nist:`2024-56787`, :cve_nist:`2024-57798`, :cve_nist:`2024-57807`
and :cve_nist:`2024-57874`
- ofono: Fix :cve_nist:`2023-4232`, :cve_nist:`2023-4235`, :cve_nist:`2024-7539`,
:cve_nist:`2024-7540`, :cve_nist:`2024-7541`, :cve_nist:`2024-7542`, :cve_nist:`2024-7543`,
:cve_nist:`2024-7544`, :cve_nist:`2024-7545`, :cve_nist:`2024-7546` and :cve_nist:`2024-7547`
- rsync: Fix :cve_nist:`2024-12084`, :cve_nist:`2024-12085`, :cve_nist:`2024-12086`,
:cve_nist:`2024-12087`, :cve_nist:`2024-12088` and :cve_nist:`2024-12747`
- socat: Fix :cve_nist:`2024-54661`
- subversion: Fix :cve_nist:`2024-46901`
- wget: Fix :cve_nist:`2024-10524`
Fixes in Yocto-5.0.7
~~~~~~~~~~~~~~~~~~~~
- bitbake: cooker: Make cooker 'skiplist' per-multiconfig/mc
- bitbake: tests/fetch: Fix git shallow test failure with git >= 2.48
- bitbake: ui/knotty: print log paths for failed tasks in summary
- bitbake: ui/knotty: respect NO_COLOR & check for tty; rename print_hyperlink => format_hyperlink
- bluez5: Revert "bluez5: remove configuration files from install task"
- bluez5: backport patch to fix address type when loading keys
- boost: fix do_fetch error
- build-appliance-image: Update to scarthgap head revision
- classes/nativesdk: also override :term:`TUNE_PKGARCH`
- classes/qemu: use tune to select QEMU_EXTRAOPTIONS, not package architecture
- contributor-guide/submit-changes.rst: suggest to remove the git signature
- cve-update-nvd2-native: Handle :term:`BB_NO_NETWORK` and missing db
- cve-update-nvd2-native: Tweak to work better with NFS :term:`DL_DIR`
- dev-manual/bmaptool.rst: correct command for bmaptool-native
- dev-manual/bmaptool.rst: simplify and fix instructions
- dev-manual: fix styling of references to bmaptool
- docs: Gather dependencies in poky.yaml.in
- docs: Update autobuilder URLs to valkyrie
- docs: Update the documentation for :term:`SRCPV`
- gcc: Fix c++: tweak for Wrange-loop-construct
- groff: Fix race issues for parallel build
- libgfortran: fix buildpath QA issue
- libxml2: Upgrade to 2.12.9
- linux-yocto/6.6: bsp/genericarm64: disable ARM64_SME
- linux-yocto/6.6: genericarm64.cfg: enable CONFIG_DMA_CMA
- linux-yocto/6.6: update to v6.6.69
- lttng-modules: fix sched_stat_runtime changed in Linux 6.6.66
- migration-guides: add release notes for 5.0.6
- oeqa/ssh: allow to retrieve raw, unformatted ouput
- ovmf-native: remove .pyc files from install
- poky.conf: add new tested distros
- poky.conf: bump version for 5.0.7
- poky.yaml.in: add missing locales dependency
- poky.yaml.in: replace inkscape dependency by librsvg2-bin
- populate_sdk_ext: write_local_conf add shutil import
- pulseaudio: fix webrtc audio depdency
- python3-requests: upgrade to 2.32.3
- python3: Drop empty patch
- python3: add dependency on -compression to -core
- python3: upgrade to 3.12.7
- ref-manual: move runtime-testing section to the test-manual
- ref-manual: use standardized method accross both ubuntu and debian for locale install
- ref-manual: SSTATE_MIRRORS/SOURCE_MIRROR_URL: add instructions for mirror authentication
- reproducible-builds.rst: show how to build a single package
- rust-target-config: Fix TARGET_C_INT_WIDTH with correct size
- rust: Revert "rust: Add new varaible RUST_ENABLE_EXTRA_TOOLS"
- rust: add reproducibility patch to eliminate host leakage
- rust: build the default set of tools
- rust: correctly link rust-snapshot into build/stage0
- rust: use rust-snapshot binaries only in rust-native
- sanity.bbclass: skip check_userns for non-local uid
- scripts/install-buildtools: Update to 5.0.6
- system-requirements.rst: add dependencies for pdf builds
- system-requirements: add fedora 39 to supported distros
- system-requirements: update list of supported distros
- systemd: enable create-log-dirs
- test-manual/reproducible-builds: fix reproducible links
Known Issues in Yocto-5.0.7
~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-5.0.7
~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Aleksandar Nikolic
- Alexander Kanavin
- Alexis Lothoré
- Antonin Godard
- Archana Polampalli
- Bruce Ashfield
- Catalin Popescu
- Changqing Li
- Chen Qi
- Chris Laplante
- Divya Chellam
- Esben Haabendal
- Guénaël Muller
- Guðni Már Gilbert
- Harish Sadineni
- Hiago De Franco
- Hitendra Prajapati
- Jiaying Song
- Khem Raj
- Lee Chee Yang
- Mark Hatle
- Michael Opdenacker
- Mikko Rapeli
- Peter Marko
- Richard Purdie
- Robert Yang
- Ross Burton
- Soumya Sambu
- Steve Sakoman
- Sunil Dora
- Trevor Gamblin
- Xiangyu Chen
- Yash Shinde
- Zhang Peng
- Zahir Hussain
Repositories / Downloads for Yocto-5.0.7
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`scarthgap </poky/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.7 </poky/log/?h=yocto-5.0.7>`
- Git Revision: :yocto_git:`7dad83c7e5e9637c0ff5d5712409611fd4a14946 </poky/commit/?id=7dad83c7e5e9637c0ff5d5712409611fd4a14946>`
- Release Artefact: poky-7dad83c7e5e9637c0ff5d5712409611fd4a14946
- sha: ae688031b19b88582bb4a76d0525e3704b981ad1d21eb38a0873cd01dd9a4652
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.7/poky-7dad83c7e5e9637c0ff5d5712409611fd4a14946.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.7/poky-7dad83c7e5e9637c0ff5d5712409611fd4a14946.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`scarthgap </openembedded-core/log/?h=scarthgap>`
- Tag: :oe_git:`yocto-5.0.7 </openembedded-core/log/?h=yocto-5.0.7>`
- Git Revision: :oe_git:`62cb12967391db709315820d48853ffa4c6b4740 </openembedded-core/commit/?id=62cb12967391db709315820d48853ffa4c6b4740>`
- Release Artefact: oecore-62cb12967391db709315820d48853ffa4c6b4740
- sha: bc45429df1805445b678f1b0ed6ce017edfac38c7226dce92ce393b3ef311f95
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.7/oecore-62cb12967391db709315820d48853ffa4c6b4740.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.7/oecore-62cb12967391db709315820d48853ffa4c6b4740.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`scarthgap </meta-mingw/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.7 </meta-mingw/log/?h=yocto-5.0.7>`
- Git Revision: :yocto_git:`acbba477893ef87388effc4679b7f40ee49fc852 </meta-mingw/commit/?id=acbba477893ef87388effc4679b7f40ee49fc852>`
- Release Artefact: meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852
- sha: 3b7c2f475dad5130bace652b150367f587d44b391218b1364a8bbc430b48c54c
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.7/meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.7/meta-mingw-acbba477893ef87388effc4679b7f40ee49fc852.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.8 </bitbake/log/?h=2.8>`
- Tag: :oe_git:`yocto-5.0.7 </bitbake/log/?h=yocto-5.0.7>`
- Git Revision: :oe_git:`aa0e540fc31a1c26839efd2c7785a751ce24ebfb </bitbake/commit/?id=aa0e540fc31a1c26839efd2c7785a751ce24ebfb>`
- Release Artefact: bitbake-aa0e540fc31a1c26839efd2c7785a751ce24ebfb
- sha: 169b68ed7d5e55015b1c35a82d35efaa25c87cba4722c85e66514a15d31e1d28
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.7/bitbake-aa0e540fc31a1c26839efd2c7785a751ce24ebfb.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.7/bitbake-aa0e540fc31a1c26839efd2c7785a751ce24ebfb.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`scarthgap </yocto-docs/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.7 </yocto-docs/log/?h=yocto-5.0.7>`
- Git Revision: :yocto_git:`bb9e018adcc10c642f87d0b95432783b5eb8057b </yocto-docs/commit/?id=bb9e018adcc10c642f87d0b95432783b5eb8057b>`

View File

@@ -0,0 +1,226 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
Release notes for Yocto-5.0.8 (Scarthgap)
-----------------------------------------
Security Fixes in Yocto-5.0.8
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- binutils: Fix :cve_nist:`2025-0840`
- curl: Ignore :cve_nist:`2025-0725`
- elfutils: Fix :cve_nist:`2025-1352`, :cve_nist:`2025-1365` and :cve_nist:`2025-1372`
- ffmpeg: Fix :cve_nist:`2024-35365`, :cve_nist:`2024-35369`, :cve_nist:`2024-36613`,
:cve_nist:`2024-36616`, :cve_nist:`2024-36617`, :cve_nist:`2024-36618`, :cve_nist:`2024-36619`,
:cve_nist:`2025-0518`, :cve_nist:`2025-22919`, :cve_nist:`2025-22921` and :cve_nist:`2025-25473`
- glibc: Fix :cve_nist:`2025-0395`
- gnutls: Fix :cve_nist:`2024-12243`
- go: Fix :cve_nist:`2024-45336`, :cve_nist:`2024-45341` and :cve_nist:`2025-22866`
- gstreamer1.0-rtsp-server: Fix :cve_nist:`2024-44331`
- libcap: Fix :cve_nist:`2025-1390`
- libtasn1: Fix :cve_nist:`2024-12133`
- libxml2: Fix :cve_nist:`2024-56171` and :cve_nist:`2025-24928`
- linux-yocto/6.6: Fix :cve_nist:`2024-36476`, :cve_nist:`2024-53179`, :cve_nist:`2024-56582`,
:cve_nist:`2024-56703`, :cve_nist:`2024-57801`, :cve_nist:`2024-57802`, :cve_nist:`2024-57841`,
:cve_nist:`2024-57882`, :cve_nist:`2024-57887`, :cve_nist:`2024-57890`, :cve_nist:`2024-57892`,
:cve_nist:`2024-57895`, :cve_nist:`2024-57896`, :cve_nist:`2024-57900`, :cve_nist:`2024-57901`,
:cve_nist:`2024-57902`, :cve_nist:`2024-57906`, :cve_nist:`2024-57907`, :cve_nist:`2024-57908`,
:cve_nist:`2024-57910`, :cve_nist:`2024-57911`, :cve_nist:`2024-57912`, :cve_nist:`2024-57913`,
:cve_nist:`2024-57916`, :cve_nist:`2024-57922`, :cve_nist:`2024-57925`, :cve_nist:`2024-57926`,
:cve_nist:`2024-57933`, :cve_nist:`2024-57938`, :cve_nist:`2024-57939`, :cve_nist:`2024-57940`,
:cve_nist:`2024-57949`, :cve_nist:`2024-57951`, :cve_nist:`2025-21631`, :cve_nist:`2025-21636`,
:cve_nist:`2025-21637`, :cve_nist:`2025-21638`, :cve_nist:`2025-21639`, :cve_nist:`2025-21640`,
:cve_nist:`2025-21642`, :cve_nist:`2025-21652`, :cve_nist:`2025-21658`, :cve_nist:`2025-21665`,
:cve_nist:`2025-21666`, :cve_nist:`2025-21667`, :cve_nist:`2025-21669`, :cve_nist:`2025-21670`,
:cve_nist:`2025-21671`, :cve_nist:`2025-21673`, :cve_nist:`2025-21674`, :cve_nist:`2025-21675`,
:cve_nist:`2025-21676`, :cve_nist:`2025-21680`, :cve_nist:`2025-21681`, :cve_nist:`2025-21683`,
:cve_nist:`2025-21684`, :cve_nist:`2025-21687`, :cve_nist:`2025-21689`, :cve_nist:`2025-21690`,
:cve_nist:`2025-21692`, :cve_nist:`2025-21694`, :cve_nist:`2025-21697` and :cve_nist:`2025-21699`
- openssh: Fix :cve_nist:`2025-26466`
- openssl: Fix :cve_nist:`2024-9143`, :cve_nist:`2024-12797` and :cve_nist:`2024-13176`
- pyhton3: Fix :cve_nist:`2024-12254` and :cve_nist:`2025-0938`
- subversion: Ignore :cve_nist:`2024-45720`
- u-boot: Fix :cve_nist:`2024-57254`, :cve_nist:`2024-57255`, :cve_nist:`2024-57256`,
:cve_nist:`2024-57257`, :cve_nist:`2024-57258` and :cve_nist:`2024-57259`
- vim: Fix :cve_nist:`2025-22134` and :cve_nist:`2025-24014`
- xwayland: Fix :cve_nist:`2024-9632`, :cve_nist:`2025-26594`, :cve_nist:`2025-26595`,
:cve_nist:`2025-26596`, :cve_nist:`2025-26597`, :cve_nist:`2025-26598`, :cve_nist:`2025-26599`,
:cve_nist:`2025-26600` and :cve_nist:`2025-26601`
Fixes in Yocto-5.0.8
~~~~~~~~~~~~~~~~~~~~
- base-files: Drop /bin/sh dependency
- bind: upgrade to 9.18.33
- binutils: File name too long causing failure to open temporary head file in dlltool
- binutils: stable 2.42 branch update
- bitbake: bblayers/query: Fix using "removeprefix" string method
- bitbake: bitbake-diffsigs: fix handling when finding only a single sigfile
- bitbake: data_smart.py: clear expand_cache in _setvar_update_overridevars
- bitbake: data_smart.py: remove unnecessary ? from __expand_var_regexp__
- bitbake: data_smart.py: simple clean up
- build-appliance-image: Update to scarthgap head revision
- ccache.conf: Add include_file_ctime to sloppiness
- cmake: apply parallel build settings to ptest tasks
- contributor-guide/submit-changes: add policy on AI generated code
- dev-manual/building: document the initramfs-framework recipe
- devtool: ide-sdk recommend :term:`DEBUG_BUILD`
- devtool: ide-sdk remove the plugin from eSDK installer
- devtool: ide-sdk sort cmake preset
- devtool: modify support debug-builds
- docs: Add favicon for the documentation html
- docs: Fix typo in standards.md
- docs: Remove all mention of core-image-lsb
- docs: vulnerabilities/classes: remove references to cve-check text format
- files: Amend overlayfs unit descriptions with path information
- files: overlayfs-create-dirs: Improve mount unit dependency
- glibc: stable 2.39 branch updates
- gnupg: upgrade to 2.4.5
- go: upgrade 1.22.12
- icu: remove host references in nativesdk to fix reproducibility
- libtasn1: upgrade to 4.20.0
- libxml2: upgrade to 2.12.10
- linux-yocto/6.6: upgrade to v6.6.75
- meta: Enable '-o pipefail' for the SDK installer
- migration-guides: add release notes for 4.0.24, 4.0.25 and 5.0.7
- oe-selftest: devtool ide-sdk use modify debug-build
- oeqa/sdk/context: fix for gtk3 test failure during do_testsdk
- oeqa/selftest/rust: skip on all MIPS platforms
- openssl: upgrade to 3.2.4
- pkg-config-native: pick additional search paths from $EXTRA_NATIVE_PKGCONFIG_PATH
- poky.conf: add ubuntu2404 to :term:`SANITY_TESTED_DISTROS`
- poky.conf: bump version for 5.0.8
- ppp: Revert lock path to /var/lock
- python3-setuptools-scm: respect GIT_CEILING_DIRECTORIES
- python3: upgrade to 3.12.9
- qemu: Do not define sched_attr with glibc >= 2.41
- ref-manual/faq: add q&a on systemd as default
- ref-manual: Add missing variable :term:`IMAGE_ROOTFS_MAXSIZE`
- ref-manual: don't refer to poky-lsb
- ref-manual: remove OE_IMPORTS
- rust-common.bbclass: soft assignment for RUSTLIB path
- rust: fix for rust multilib sdk configuration
- rust: remove redundant cargo config file
- scripts/install-buildtools: Update to 5.0.7
- sdk-manual: extensible.rst: devtool ide-sdk improve
- sdk-manual: extensible.rst: update devtool ide-sdk
- selftest/rust: correctly form the PATH environment variable
- systemd: add libpcre2 as :term:`RRECOMMENDS` if pcre2 is enabled
- systemd: upgrade to 255.17
- test-manual/ptest: link to common framework ptest classes
- tzcode-native: Fix compiler setting from 2023d version
- tzdata/tzcode-native: upgrade to 2025a
- u-boot: kernel-fitimage: Fix dependency loop if :term:`UBOOT_SIGN_ENABLE` and UBOOT_ENV enabled
- u-boot: kernel-fitimage: Restore FIT_SIGN_INDIVIDUAL="1" behavior
- uboot-config: fix devtool modify with kernel-fitimage
- vim: upgrade to 9.1.1043
Known Issues in Yocto-5.0.8
~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-5.0.8
~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Adrian Freihofer
- Aleksandar Nikolic
- Alessio Cascone
- Alexander Kanavin
- Alexis Cellier
- Antonin Godard
- Archana Polampalli
- Bruce Ashfield
- Chen Qi
- Deepesh Varatharajan
- Divya Chellam
- Enrico Jörns
- Esben Haabendal
- Etienne Cordonnier
- Fabio Berton
- Guðni Már Gilbert
- Harish Sadineni
- Hitendra Prajapati
- Hongxu Jia
- Jiaying Song
- Joerg Schmidt
- Johannes Schneider
- Khem Raj
- Lee Chee Yang
- Marek Vasut
- Marta Rybczynska
- Moritz Haase
- Oleksandr Hnatiuk
- Pedro Ferreira
- Peter Marko
- Poonam Jadhav
- Priyal Doshi
- Ross Burton
- Simon A. Eugster
- Steve Sakoman
- Vijay Anusuri
- Wang Mingyu
- Weisser, Pascal
Repositories / Downloads for Yocto-5.0.8
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`scarthgap </poky/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.8 </poky/log/?h=yocto-5.0.8>`
- Git Revision: :yocto_git:`dc4827b3660bc1a03a2bc3b0672615b50e9137ff </poky/commit/?id=dc4827b3660bc1a03a2bc3b0672615b50e9137ff>`
- Release Artefact: poky-dc4827b3660bc1a03a2bc3b0672615b50e9137ff
- sha: ace7264e16e18ed02ef0ad2935fa10b5fad2c4de38b2356f4192b38ef2184504
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.8/poky-dc4827b3660bc1a03a2bc3b0672615b50e9137ff.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.8/poky-dc4827b3660bc1a03a2bc3b0672615b50e9137ff.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`scarthgap </openembedded-core/log/?h=scarthgap>`
- Tag: :oe_git:`yocto-5.0.8 </openembedded-core/log/?h=yocto-5.0.8>`
- Git Revision: :oe_git:`cd2b6080a4c0f2ed2c9939ec0b87763aef595048 </openembedded-core/commit/?id=cd2b6080a4c0f2ed2c9939ec0b87763aef595048>`
- Release Artefact: oecore-cd2b6080a4c0f2ed2c9939ec0b87763aef595048
- sha: 14c7cd5c62a96ceb9c2141164ea0f087fdbaed99ca3e9a722977a3f12d6381f6
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.8/oecore-cd2b6080a4c0f2ed2c9939ec0b87763aef595048.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.8/oecore-cd2b6080a4c0f2ed2c9939ec0b87763aef595048.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`scarthgap </meta-mingw/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.8 </meta-mingw/log/?h=yocto-5.0.8>`
- Git Revision: :yocto_git:`bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f </meta-mingw/commit/?id=bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f>`
- Release Artefact: meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f
- sha: ab073def6487f237ac125d239b3739bf02415270959546b6b287778664f0ae65
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.8/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.8/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.8 </bitbake/log/?h=2.8>`
- Tag: :oe_git:`yocto-5.0.8 </bitbake/log/?h=yocto-5.0.8>`
- Git Revision: :oe_git:`7375d32e8c1af20c51abec4eb3b072b4ca58b239 </bitbake/commit/?id=7375d32e8c1af20c51abec4eb3b072b4ca58b239>`
- Release Artefact: bitbake-7375d32e8c1af20c51abec4eb3b072b4ca58b239
- sha: 13dffbc162c5b6e2c95fa72936a430b9a542d52d81d502a5d0afc592fbf4a16b
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.8/bitbake-7375d32e8c1af20c51abec4eb3b072b4ca58b239.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.8/bitbake-7375d32e8c1af20c51abec4eb3b072b4ca58b239.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`scarthgap </yocto-docs/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.8 </yocto-docs/log/?h=yocto-5.0.8>`
- Git Revision: :yocto_git:`7d3cce5b962ca9f73b29affceb7ebc6710627739 </yocto-docs/commit/?id=7d3cce5b962ca9f73b29affceb7ebc6710627739>`

View File

@@ -0,0 +1,206 @@
.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
Release notes for Yocto-5.0.9 (Scarthgap)
-----------------------------------------
Security Fixes in Yocto-5.0.9
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- binutils: Fix :cve_nist:`2024-57360`, :cve_nist:`2025-1176`, :cve_nist:`2025-1178` and
:cve_nist:`2025-1181`
- expat: Fix :cve_nist:`2024-8176`
- freetype: Fix :cve_nist:`2025-27363`
- ghostscript: Fix :cve_nist:`2025-27830`, :cve_nist:`2025-27831`, :cve_nist:`2025-27832`,
:cve_nist:`2025-27833`, :cve_nist:`2025-27833`, :cve_nist:`2025-27834`, :cve_nist:`2025-27835`
and :cve_nist:`2025-27836`
- go: fix :cve_nist:`2025-22870` and :cve_nist:`2025-22871`
- grub: Fix :cve_nist:`2024-45781`, :cve_nist:`2024-45774`, :cve_nist:`2024-45775`,
:cve_nist:`2024-45776`, :cve_nist:`2024-45777`, :cve_nist:`2024-45778`, :cve_nist:`2024-45779`,
:cve_nist:`2024-45780`, :cve_nist:`2024-45782`, :cve_nist:`2024-45783`, :cve_nist:`2024-56737`,
:cve_nist:`2025-0622`, :cve_nist:`2025-0624`, :cve_nist:`2025-0677`, :cve_nist:`2025-0678`,
:cve_nist:`2025-0684`, :cve_nist:`2025-0685`, :cve_nist:`2025-0686`, :cve_nist:`2025-0689`,
:cve_nist:`2025-0690`, :cve_nist:`2025-1118` and :cve_nist:`2025-1125`
- libarchive: Fix :cve_nist:`2024-20696`, :cve_nist:`2024-48957`, :cve_nist:`2024-48958`,
:cve_nist:`2025-1632` and :cve_nist:`2025-25724`
- libxslt: Fix :cve_nist:`2024-24855` and :cve_nist:`2024-55549`
- linux-yocto/6.6: Fix :cve_nist:`2024-54458`, :cve_nist:`2024-57834`, :cve_nist:`2024-57973`,
:cve_nist:`2024-57978`, :cve_nist:`2024-57979`, :cve_nist:`2024-57980`, :cve_nist:`2024-57981`,
:cve_nist:`2024-57984`, :cve_nist:`2024-57996`, :cve_nist:`2024-57997`, :cve_nist:`2024-58002`,
:cve_nist:`2024-58005`, :cve_nist:`2024-58007`, :cve_nist:`2024-58010`, :cve_nist:`2024-58011`,
:cve_nist:`2024-58013`, :cve_nist:`2024-58017`, :cve_nist:`2024-58020`, :cve_nist:`2024-58034`,
:cve_nist:`2024-58052`, :cve_nist:`2024-58055`, :cve_nist:`2024-58058`, :cve_nist:`2024-58063`,
:cve_nist:`2024-58068`, :cve_nist:`2024-58069`, :cve_nist:`2024-58070`, :cve_nist:`2024-58071`,
:cve_nist:`2024-58076`, :cve_nist:`2024-58080`, :cve_nist:`2024-58083`, :cve_nist:`2024-58088`,
:cve_nist:`2025-21700`, :cve_nist:`2025-21703`, :cve_nist:`2025-21707`, :cve_nist:`2025-21711`,
:cve_nist:`2025-21715`, :cve_nist:`2025-21716`, :cve_nist:`2025-21718`, :cve_nist:`2025-21726`,
:cve_nist:`2025-21727`, :cve_nist:`2025-21731`, :cve_nist:`2025-21735`, :cve_nist:`2025-21736`,
:cve_nist:`2025-21741`, :cve_nist:`2025-21742`, :cve_nist:`2025-21743`, :cve_nist:`2025-21744`,
:cve_nist:`2025-21745`, :cve_nist:`2025-21748`, :cve_nist:`2025-21749`, :cve_nist:`2025-21753`,
:cve_nist:`2025-21756`, :cve_nist:`2025-21759`, :cve_nist:`2025-21760`, :cve_nist:`2025-21761`,
:cve_nist:`2025-21762`, :cve_nist:`2025-21763`, :cve_nist:`2025-21764`, :cve_nist:`2025-21773`,
:cve_nist:`2025-21775`, :cve_nist:`2025-21776`, :cve_nist:`2025-21779`, :cve_nist:`2025-21780`,
:cve_nist:`2025-21782`, :cve_nist:`2025-21783`, :cve_nist:`2025-21785`, :cve_nist:`2025-21787`,
:cve_nist:`2025-21789`, :cve_nist:`2025-21790`, :cve_nist:`2025-21791`, :cve_nist:`2025-21792`,
:cve_nist:`2025-21793`, :cve_nist:`2025-21796`, :cve_nist:`2025-21811`, :cve_nist:`2025-21812`,
:cve_nist:`2025-21814`, :cve_nist:`2025-21820`, :cve_nist:`2025-21844`, :cve_nist:`2025-21846`,
:cve_nist:`2025-21847`, :cve_nist:`2025-21848`, :cve_nist:`2025-21853`, :cve_nist:`2025-21854`,
:cve_nist:`2025-21855`, :cve_nist:`2025-21856`, :cve_nist:`2025-21857`, :cve_nist:`2025-21858`,
:cve_nist:`2025-21859`, :cve_nist:`2025-21862`, :cve_nist:`2025-21863`, :cve_nist:`2025-21864`,
:cve_nist:`2025-21865`, :cve_nist:`2025-21866`, :cve_nist:`2025-21867`, :cve_nist:`2025-21887`,
:cve_nist:`2025-21891`, :cve_nist:`2025-21898`, :cve_nist:`2025-21904`, :cve_nist:`2025-21905`,
:cve_nist:`2025-21908`, :cve_nist:`2025-21912`, :cve_nist:`2025-21915`, :cve_nist:`2025-21917`,
:cve_nist:`2025-21918`, :cve_nist:`2025-21919`, :cve_nist:`2025-21920`, :cve_nist:`2025-21922`,
:cve_nist:`2025-21928`, :cve_nist:`2025-21934`, :cve_nist:`2025-21936`, :cve_nist:`2025-21937`,
:cve_nist:`2025-21941`, :cve_nist:`2025-21943`, :cve_nist:`2025-21945`, :cve_nist:`2025-21947`,
:cve_nist:`2025-21948`, :cve_nist:`2025-21951`, :cve_nist:`2025-21957`, :cve_nist:`2025-21959`,
:cve_nist:`2025-21962`, :cve_nist:`2025-21963`, :cve_nist:`2025-21964`, :cve_nist:`2025-21966`,
:cve_nist:`2025-21967`, :cve_nist:`2025-21968`, :cve_nist:`2025-21969`, :cve_nist:`2025-21979`,
:cve_nist:`2025-21980`, :cve_nist:`2025-21981`, :cve_nist:`2025-21991` and :cve_nist:`2025-21993`
- mpg123: Fix :cve_nist:`2024-10573`
- ofono: Fix :cve_nist:`2024-7537`
- openssh: Fix :cve_nist:`2025-26465`
- puzzles: Ignore :cve_nist:`2024-13769`, :cve_nist:`2024-13770` and :cve_nist:`2025-0837`
- qemu: Ignore :cve_nist:`2023-1386`
- ruby: Fix :cve_nist:`2025-27219` and :cve_nist:`2025-27220`
- rust-cross-canadian: Ignore :cve_nist:`2024-43402`
- vim: Fix :cve_nist:`2025-1215`, :cve_nist:`2025-26603`, :cve_nist:`2025-27423` and
:cve_nist:`2025-29768`
- xserver-xorg: Fix :cve_nist:`2025-26594`, :cve_nist:`2025-26595`, :cve_nist:`2025-26596`,
:cve_nist:`2025-26597`, :cve_nist:`2025-26598`, :cve_nist:`2025-26599`, :cve_nist:`2025-26600`
and :cve_nist:`2025-26601`
- xz: Fix :cve_nist:`2025-31115`
Fixes in Yocto-5.0.9
~~~~~~~~~~~~~~~~~~~~
- babeltrace2: extend to nativesdk
- babeltrace: extend to nativesdk
- bitbake: event/utils: Avoid deadlock from lock_timeout() and recursive events
- bitbake: utils: Add signal blocking for lock_timeout
- bitbake: utils: Print information about lock issue before exiting
- bitbake: utils: Tweak lock_timeout logic
- build-appliance-image: Update to scarthgap head revision
- cve-check.bbclass: Mitigate symlink related error
- cve-update-nvd2-native: add workaround for json5 style list
- cve-update-nvd2-native: handle missing vulnStatus
- gcc: remove paths to sysroot from configargs.h and checksum-options for gcc-cross-canadian
- gcc: unify cleanup of include-fixed, apply to cross-canadian
- ghostscript: upgrade to 10.05.0
- grub: backport strlcpy function
- grub: drop obsolete CVE statuses
- icu: Adjust ICU_DATA_DIR path on big endian targets
- kernel-arch: add macro-prefix-map in KERNEL_CC
- libarchive: upgrade to 3.7.9
- libxslt: upgrade to 1.1.43
- linux-yocto/6.6: update to v6.6.84
- mc: set ac_cv_path_ZIP to avoid buildpaths QA issues
- mpg123: upgrade to 1.32.10
- nativesdk-libtool: sanitize the script, remove buildpaths
- openssl: rewrite ptest installation
- overview-manual/concepts: remove :term:`PR` from the build dir list
- patch.py: set commituser and commitemail for addNote
- poky.conf: bump version for 5.0.9
- vim: Upgrade to 9.1.1198
- xserver-xf86-config: add a configuration fragment to disable screen blanking
- xserver-xf86-config: remove obsolete configuration files
- xserver-xorg: upgrade to 21.1.16
- xz: upgrade to 5.4.7
- yocto-uninative: Update to 4.7 for glibc 2.41
Known Issues in Yocto-5.0.9
~~~~~~~~~~~~~~~~~~~~~~~~~~~
- N/A
Contributors to Yocto-5.0.9
~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks to the following people who contributed to this release:
- Antonin Godard
- Archana Polampalli
- Ashish Sharma
- Bruce Ashfield
- Changqing Li
- Denys Dmytriyenko
- Divya Chellam
- Hitendra Prajapati
- Madhu Marri
- Makarios Christakis
- Martin Jansa
- Michael Halstead
- Niko Mauno
- Oleksandr Hnatiuk
- Peter Marko
- Richard Purdie
- Ross Burton
- Sana Kazi
- Stefan Mueller-Klieser
- Steve Sakoman
- Vijay Anusuri
- Virendra Thakur
- Vishwas Udupa
- Wang Mingyu
- Zhang Peng
Repositories / Downloads for Yocto-5.0.9
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
poky
- Repository Location: :yocto_git:`/poky`
- Branch: :yocto_git:`scarthgap </poky/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.9 </poky/log/?h=yocto-5.0.9>`
- Git Revision: :yocto_git:`bab0f9f62af9af580744948dd3240f648a99879a </poky/commit/?id=bab0f9f62af9af580744948dd3240f648a99879a>`
- Release Artefact: poky-bab0f9f62af9af580744948dd3240f648a99879a
- sha: ee6811d9fb6c4913e19d6e3569f1edc8ccd793779b237520596506446a6b4531
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.9/poky-bab0f9f62af9af580744948dd3240f648a99879a.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.9/poky-bab0f9f62af9af580744948dd3240f648a99879a.tar.bz2
openembedded-core
- Repository Location: :oe_git:`/openembedded-core`
- Branch: :oe_git:`scarthgap </openembedded-core/log/?h=scarthgap>`
- Tag: :oe_git:`yocto-5.0.9 </openembedded-core/log/?h=yocto-5.0.9>`
- Git Revision: :oe_git:`04038ecd1edd6592b826665a2b787387bb7074fa </openembedded-core/commit/?id=04038ecd1edd6592b826665a2b787387bb7074fa>`
- Release Artefact: oecore-04038ecd1edd6592b826665a2b787387bb7074fa
- sha: 6e201a4b486dfbdfcb7e96d83b962a205ec4764db6ad0e34bd623db18910eddb
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.9/oecore-04038ecd1edd6592b826665a2b787387bb7074fa.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.9/oecore-04038ecd1edd6592b826665a2b787387bb7074fa.tar.bz2
meta-mingw
- Repository Location: :yocto_git:`/meta-mingw`
- Branch: :yocto_git:`scarthgap </meta-mingw/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.9 </meta-mingw/log/?h=yocto-5.0.9>`
- Git Revision: :yocto_git:`bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f </meta-mingw/commit/?id=bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f>`
- Release Artefact: meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f
- sha: ab073def6487f237ac125d239b3739bf02415270959546b6b287778664f0ae65
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.9/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.9/meta-mingw-bd9fef71ec005be3c3a6d7f8b99d8116daf70c4f.tar.bz2
bitbake
- Repository Location: :oe_git:`/bitbake`
- Branch: :oe_git:`2.8 </bitbake/log/?h=2.8>`
- Tag: :oe_git:`yocto-5.0.9 </bitbake/log/?h=yocto-5.0.9>`
- Git Revision: :oe_git:`696c2c1ef095f8b11c7d2eff36fae50f58c62e5e </bitbake/commit/?id=696c2c1ef095f8b11c7d2eff36fae50f58c62e5e>`
- Release Artefact: bitbake-696c2c1ef095f8b11c7d2eff36fae50f58c62e5e
- sha: fc83f879cd6dd14b9b7eba0161fec23ecc191fed0fb00556ba729dceef6c145f
- Download Locations:
https://downloads.yoctoproject.org/releases/yocto/yocto-5.0.9/bitbake-696c2c1ef095f8b11c7d2eff36fae50f58c62e5e.tar.bz2
https://mirrors.kernel.org/yocto/yocto/yocto-5.0.9/bitbake-696c2c1ef095f8b11c7d2eff36fae50f58c62e5e.tar.bz2
yocto-docs
- Repository Location: :yocto_git:`/yocto-docs`
- Branch: :yocto_git:`scarthgap </yocto-docs/log/?h=scarthgap>`
- Tag: :yocto_git:`yocto-5.0.9 </yocto-docs/log/?h=yocto-5.0.9>`
- Git Revision: :yocto_git:`56db4fd81f6235428bef9e46a61c11ca0ba89733 </yocto-docs/commit/?id=56db4fd81f6235428bef9e46a61c11ca0ba89733>`

View File

@@ -98,7 +98,7 @@ files, and how to package the compiled output.
The term "package" is sometimes used to refer to recipes. However, since
the word "package" is used for the packaged output from the OpenEmbedded
build system (i.e. ``.ipk`` or ``.deb`` files), this document avoids
build system (i.e. ``.ipk``, ``.deb`` or ``.rpm`` files), this document avoids
using the term "package" when referring to recipes.
Classes
@@ -256,7 +256,7 @@ development environment.
.. note::
The
scripts/oe-setup-builddir
``scripts/oe-setup-builddir``
script uses the
``$TEMPLATECONF``
variable to determine which sample configuration files to locate.
@@ -352,7 +352,7 @@ layers the build system uses to further control the build. These layers
provide Metadata for the software, machine, and policies.
In general, there are three types of layer input. You can see them below
the "User Configuration" box in the `general workflow
the "User Configuration" box in the :ref:`general workflow
figure <overview-manual/concepts:openembedded build system concepts>`:
- *Metadata (.bb + Patches):* Software layers containing
@@ -420,14 +420,14 @@ build.
Distro Layer
~~~~~~~~~~~~
The distribution layer provides policy configurations for your
A distribution layer provides policy configurations for your
distribution. Best practices dictate that you isolate these types of
configurations into their own layer. Settings you provide in
``conf/distro/distro.conf`` override similar settings that BitBake finds
in your ``conf/local.conf`` file in the :term:`Build Directory`.
The following list provides some explanation and references for what you
typically find in the distribution layer:
typically find in a distribution layer:
- *classes:* Class files (``.bbclass``) hold common functionality that
can be shared among recipes in the distribution. When your recipes
@@ -454,7 +454,7 @@ typically find in the distribution layer:
BSP Layer
~~~~~~~~~
The BSP Layer provides machine configurations that target specific
A BSP layer provides machine configurations that target specific
hardware. Everything in this layer is specific to the machine for which
you are building the image or the SDK. A common structure or form is
defined for BSP layers. You can learn more about this structure in the
@@ -465,7 +465,7 @@ defined for BSP layers. You can learn more about this structure in the
In order for a BSP layer to be considered compliant with the Yocto
Project, it must meet some structural requirements.
The BSP Layer's configuration directory contains configuration files for
A BSP layer's configuration directory contains configuration files for
the machine (``conf/machine/machine.conf``) and, of course, the layer
(``conf/layer.conf``).
@@ -477,18 +477,18 @@ formfactors, graphics support systems, and so forth.
.. note::
While the figure shows several
recipes-\*
``recipes-*``
directories, not all these directories appear in all BSP layers.
Software Layer
~~~~~~~~~~~~~~
The software layer provides the Metadata for additional software
A software layer provides the Metadata for additional software
packages used during the build. This layer does not include Metadata
that is specific to the distribution or the machine, which are found in
their respective layers.
This layer contains any recipes, append files, and patches, that your
This layer contains any recipes, append files, and patches that your
project needs.
Sources
@@ -560,9 +560,8 @@ source tree used by the group).
The canonical method through which to include a local project is to use the
:ref:`ref-classes-externalsrc` class to include that local project. You use
either the ``local.conf`` or a recipe's append file to override or set the
recipe to point to the local directory on your disk to pull in the whole
source tree.
either ``local.conf`` or a recipe's append file to override or set the
recipe to point to the local directory from which to fetch the source.
Source Control Managers (Optional)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -736,9 +735,6 @@ following list describe the :term:`Build Directory`'s hierarchy:
- :term:`PV`: The version of the
recipe used to build the package.
- :term:`PR`: The revision of the
recipe used to build the package.
- :term:`S`: Contains the unpacked source
files for a given recipe.
@@ -956,7 +952,7 @@ package.
For more information on the ``oe-pkgdata-util`` utility, see the section
:ref:`dev-manual/debugging:Viewing Package Information with
\`\`oe-pkgdata-util\`\`` of the Yocto Project Development Tasks Manual.
``oe-pkgdata-util``` of the Yocto Project Development Tasks Manual.
To add a custom package variant of the ``${PN}`` recipe named
``${PN}-extra`` (name is arbitrary), one can add it to the
@@ -2204,7 +2200,7 @@ require root privileges, the fact that some earlier steps ran in a fake
root environment does not cause problems.
The capability to run tasks in a fake root environment is known as
"`fakeroot <http://man.he.net/man1/fakeroot>`__", which is derived from
":manpage:`fakeroot <fakeroot(1)>`", which is derived from
the BitBake keyword/variable flag that requests a fake root environment
for a task.
@@ -2398,8 +2394,8 @@ The contents of ``sayhello_0.1.bb`` are::
S = "${WORKDIR}/git"
do_install(){
install -d ${D}/usr/bin
install -m 0700 sayhello ${D}/usr/bin
install -d ${D}${bindir}
install -m 0700 sayhello ${D}${bindir}
}
After placing the recipes in a custom layer we can run ``bitbake sayhello``

View File

@@ -28,7 +28,7 @@ platforms as well as software stacks that can be maintained and scaled.
For further introductory information on the Yocto Project, you might be
interested in this
`article <https://www.embedded.com/electronics-blogs/say-what-/4458600/Why-the-Yocto-Project-for-my-IoT-Project->`__
`article <https://www.embedded.com/why-the-yocto-project-for-my-iot-project/>`__
by Drew Moseley and in this short introductory
`video <https://www.youtube.com/watch?v=utZpKM7i5Z4>`__.
@@ -400,7 +400,7 @@ Yocto Project:
Autobuilder :doc:`here </test-manual/understand-autobuilder>`.
- *Pseudo:* Pseudo is the Yocto Project implementation of
`fakeroot <http://man.he.net/man1/fakeroot>`__, which is used to run
:manpage:`fakeroot <fakeroot(1)>`, which is used to run
commands in an environment that seemingly has root privileges.
During a build, it can be necessary to perform operations that

View File

@@ -1,41 +1,27 @@
#
# Macros used in the documentation
#
# The DISTRO variable represents the current docs version. It should be used
# when referring to the current docs version. See also DISTRO_LATEST_TAG.
DISTRO : "5.0"
# The DISTRO_LATEST_TAG represents the latest tag on the current branch. It
# should be used in HTTP link referring to the current docs version. In these
# cases, the DISTRO may point to A.B.999 which does not exist (just used to
# represent the latest HEAD revision on the branch). DISTRO_LATEST_TAG should
# always point to an existing tag.
DISTRO_LATEST_TAG : "5.0"
DISTRO_NAME_NO_CAP : "scarthgap"
DISTRO_NAME : "Scarthgap"
DISTRO_NAME_NO_CAP_MINUS_ONE : "nanbield"
DISTRO_NAME_NO_CAP_LTS : "scarthgap"
YOCTO_DOC_VERSION : "5.0"
DISTRO_REL_TAG : "yocto-5.0"
DISTRO_REL_TAG : "yocto-$DISTRO;"
DISTRO_REL_LATEST_TAG : "yocto-&DISTRO_LATEST_TAG;"
DOCCONF_VERSION : "dev"
BITBAKE_SERIES : ""
YOCTO_DL_URL : "https://downloads.yoctoproject.org"
YOCTO_AB_URL : "https://autobuilder.yoctoproject.org"
YOCTO_RELEASE_DL_URL : "&YOCTO_DL_URL;/releases/yocto/yocto-&DISTRO;"
UBUNTU_HOST_PACKAGES_ESSENTIAL : "gawk wget git diffstat unzip texinfo gcc \
build-essential chrpath socat cpio python3 python3-pip python3-pexpect \
xz-utils debianutils iputils-ping python3-git python3-jinja2 \
python3-subunit zstd liblz4-tool file locales libacl1
\n\ $ sudo locale-gen en_US.UTF-8"
FEDORA_HOST_PACKAGES_ESSENTIAL : "gawk make wget tar bzip2 gzip python3 unzip perl patch \
diffutils diffstat git cpp gcc gcc-c++ glibc-devel texinfo chrpath \
ccache perl-Data-Dumper perl-Text-ParseWords perl-Thread-Queue perl-bignum socat \
python3-pexpect findutils which file cpio python python3-pip xz python3-GitPython \
python3-jinja2 rpcgen perl-FindBin perl-File-Compare \
perl-File-Copy perl-locale zstd lz4 hostname glibc-langpack-en libacl"
OPENSUSE_HOST_PACKAGES_ESSENTIAL : "python gcc gcc-c++ git chrpath make wget python-xml \
diffstat makeinfo python-curses patch socat python3 python3-curses tar python3-pip \
python3-pexpect xz which python3-Jinja2 rpcgen \
zstd lz4 bzip2 gzip hostname libacl1
\n\ $ sudo pip3 install GitPython"
ALMALINUX_HOST_PACKAGES_ESSENTIAL : "-y epel-release
\n\ $ sudo yum install dnf-plugins-core
\n\ $ sudo dnf config-manager --set-enabled crb
\n\ $ sudo dnf makecache
\n\ $ sudo dnf install gawk make wget tar bzip2 gzip python3 unzip perl patch \
diffutils diffstat git cpp gcc gcc-c++ glibc-devel texinfo chrpath ccache \
socat perl-Data-Dumper perl-Text-ParseWords perl-Thread-Queue python3-pip \
python3-GitPython python3-jinja2 python3-pexpect xz which \
rpcgen zstd lz4 cpio glibc-langpack-en libacl"
PIP3_HOST_PACKAGES_DOC : "$ sudo pip3 install sphinx sphinx_rtd_theme pyyaml"
MIN_PYTHON_VERSION : "3.8.0"
MIN_TAR_VERSION : "1.28"
MIN_GIT_VERSION : "1.8.3.1"
@@ -47,3 +33,237 @@ MIN_DISK_SPACE : "90"
MIN_DISK_SPACE_RM_WORK : "40"
# RAM (Gbytes) needed to generate qemux86-64 core-image-sato on Ubuntu 22.04 (x86-64) on a 4 core system
MIN_RAM : "8"
#
# Dependencies
#
# Shared between distros
PIP3_HOST_PACKAGES_DOC: sphinx sphinx_rtd_theme pyyaml
UBUNTU_DEBIAN_HOST_PACKAGES_ESSENTIAL: >-
build-essential
chrpath
cpio
debianutils
diffstat
file
gawk
gcc
git
iputils-ping
libacl1
liblz4-tool
locales
python3
python3-git
python3-jinja2
python3-pexpect
python3-pip
python3-subunit
socat
texinfo
unzip
wget
xz-utils
zstd
UBUNTU_DEBIAN_HOST_PACKAGES_DOC: >-
git
librsvg2-bin
locales
make
python3-saneyaml
python3-sphinx-rtd-theme
sphinx
UBUNTU_DEBIAN_HOST_PACKAGES_DOC_PDF: >-
fonts-freefont-otf
latexmk
tex-gyre
texlive-fonts-extra
texlive-fonts-recommended
texlive-lang-all
texlive-latex-extra
texlive-latex-recommended
texlive-xetex
FEDORA_HOST_PACKAGES_ESSENTIAL: >-
bzip2
ccache
chrpath
cpio
cpp
diffstat
diffutils
file
findutils
gawk
gcc
gcc-c++
git
glibc-devel
glibc-langpack-en
gzip
hostname
libacl
lz4
make
patch
perl
perl-Data-Dumper
perl-File-Compare
perl-File-Copy
perl-FindBin
perl-Text-ParseWords
perl-Thread-Queue
perl-bignum
perl-locale
python
python3
python3-GitPython
python3-jinja2
python3-pexpect
python3-pip
rpcgen
socat
tar
texinfo
unzip
wget
which
xz
zstd
FEDORA_HOST_PACKAGES_DOC: >-
git
glibc-locale-source
librsvg2-tools
make
python3-pip
which
FEDORA_HOST_PACKAGES_DOC_PDF: >-
'texlive-collection-lang*'
latexmk
texlive-collection-fontsextra
texlive-collection-fontsrecommended
texlive-collection-latex
texlive-collection-latexextra
texlive-collection-latexrecommended
texlive-collection-xetex
texlive-fncychap
texlive-gnu-freefont
texlive-tex-gyre
texlive-xetex
OPENSUSE_HOST_PACKAGES_ESSENTIAL: >-
bzip2
chrpath
diffstat
gcc
gcc-c++
git
gzip
hostname
libacl1
lz4
make
makeinfo
patch
python
python-curses
python-xml
python3
python3-Jinja2
python3-curses
python3-pexpect
python3-pip
rpcgen
socat
tar
wget
which
xz
zstd
OPENSUSE_PIP3_HOST_PACKAGES_ESSENTIAL: GitPython
OPENSUSE_HOST_PACKAGES_DOC: >-
git
glibc-i18ndata
make
python3-pip
rsvg-convert
which
OPENSUSE_HOST_PACKAGES_DOC_PDF: >-
'texlive-collection-lang*'
texlive-collection-fontsextra
texlive-collection-fontsrecommended
texlive-collection-latex
texlive-collection-latexextra
texlive-collection-latexrecommended
texlive-collection-xetex
texlive-fncychap
texlive-gnu-freefont
texlive-latexmk
texlive-tex-gyre
texlive-xetex
ALMALINUX_HOST_PACKAGES_ESSENTIAL: >-
bzip2
ccache
chrpath
cpio
cpp
diffstat
diffutils
gawk
gcc
gcc-c++
git
glibc-devel
glibc-langpack-en
gzip
libacl
lz4
make
patch
perl
perl-Data-Dumper
perl-Text-ParseWords
perl-Thread-Queue
python3
python3-GitPython
python3-jinja2
python3-pexpect
python3-pip
rpcgen
socat
tar
texinfo
unzip
wget
which
xz
zstd
ALMALINUX_HOST_PACKAGES_DOC: >-
git
glibc-locale-source
librsvg2-tools
make
python3-pip
which
ALMALINUX_HOST_PACKAGES_DOC_PDF: >-
latexmk
texlive-collection-fontsrecommended
texlive-collection-latex
texlive-collection-latexrecommended
texlive-collection-xetex
texlive-fncychap
texlive-gnu-freefont
texlive-tex-gyre
texlive-xetex

View File

@@ -159,27 +159,38 @@ software that includes bash-completion data.
``bin_package``
===============
The :ref:`ref-classes-bin-package` class is a helper class for recipes that extract the
contents of a binary package (e.g. an RPM) and install those contents
rather than building the binary from source. The binary package is
extracted and new packages in the configured output package format are
created. Extraction and installation of proprietary binaries is a good
example use for this class.
The :ref:`ref-classes-bin-package` class is a helper class for recipes, that
disables the :ref:`ref-tasks-configure` and :ref:`ref-tasks-compile` tasks and
copies the content of the :term:`S` directory into the :term:`D` directory. This
is useful for installing binary packages (e.g. RPM packages) by passing the
package in the :term:`SRC_URI` variable and inheriting this class.
For RPMs and other packages that do not contain a subdirectory, you should set
the :term:`SRC_URI` option ``subdir`` to :term:`BP` so that the contents are
extracted to the directory expected by the default value of :term:`S`. For
example::
SRC_URI = "https://example.com/downloads/somepackage.rpm;subdir=${BP}"
This class can also be used for tarballs. For example::
SRC_URI = "file://somepackage.tar.xz;subdir=${BP}"
The :ref:`ref-classes-bin-package` class will copy the extracted content of the
tarball from :term:`S` to :term:`D`.
This class assumes that the content of the package as installed in :term:`S`
mirrors the expected layout once installed on the target, which is generally the
case for binary packages. For example, an RPM package for a library would
usually contain the ``usr/lib`` directory, and should be extracted to
``${S}/usr/lib/<library>.so.<version>`` to be installed in :term:`D` correctly.
.. note::
For RPMs and other packages that do not contain a subdirectory, you
should specify an appropriate fetcher parameter to point to the
subdirectory. For example, if BitBake is using the Git fetcher (``git://``),
the "subpath" parameter limits the checkout to a specific subpath
of the tree. Here is an example where ``${BP}`` is used so that the files
are extracted into the subdirectory expected by the default value of
:term:`S`::
SRC_URI = "git://example.com/downloads/somepackage.rpm;branch=main;subpath=${BP}"
See the ":ref:`bitbake-user-manual/bitbake-user-manual-fetching:fetchers`" section in the BitBake User Manual for
more information on supported BitBake Fetchers.
The extraction of the package passed in :term:`SRC_URI` is not handled by the
:ref:`ref-classes-bin-package` class, but rather by the appropriate
:ref:`fetcher <bitbake-user-manual/bitbake-user-manual-fetching:fetchers>`
depending on the file extension.
.. _ref-classes-binconfig:
@@ -552,7 +563,7 @@ You can also look for vulnerabilities in specific packages by passing
``-c cve_check`` to BitBake.
After building the software with Bitbake, CVE check output reports are available in ``tmp/deploy/cve``
and image specific summaries in ``tmp/deploy/images/*.cve`` or ``tmp/deploy/images/*.json`` files.
and image specific summaries in ``tmp/deploy/images/*.json`` files.
When building, the CVE checker will emit build time warnings for any detected
issues which are in the state ``Unpatched``, meaning that CVE issue seems to affect the software component
@@ -1982,7 +1993,8 @@ a couple different ways:
Not using this naming convention can lead to subtle problems
caused by existing code that depends on that naming convention.
- Create or modify a target recipe that contains the following::
- Or, create a :ref:`ref-classes-native` variant of any target recipe (e.g.
``myrecipe.bb``) by adding the following to the recipe::
BBCLASSEXTEND = "native"
@@ -2013,7 +2025,18 @@ couple different ways:
inherit statement in the recipe after all other inherit statements so
that the :ref:`ref-classes-nativesdk` class is inherited last.
- Create a :ref:`ref-classes-nativesdk` variant of any recipe by adding the following::
.. note::
When creating a recipe, you must follow this naming convention::
nativesdk-myrecipe.bb
Not doing so can lead to subtle problems because there is code that
depends on the naming convention.
- Or, create a :ref:`ref-classes-nativesdk` variant of any target recipe (e.g.
``myrecipe.bb``) by adding the following to the recipe::
BBCLASSEXTEND = "nativesdk"
@@ -2022,16 +2045,6 @@ couple different ways:
specify any functionality specific to the respective SDK machine or
target case.
.. note::
When creating a recipe, you must follow this naming convention::
nativesdk-myrecipe.bb
Not doing so can lead to subtle problems because there is code that
depends on the naming convention.
Although applied differently, the :ref:`ref-classes-nativesdk` class is used with both
methods. The advantage of the second method is that you do not need to
have two separate recipes (assuming you need both) for the SDK machine
@@ -2604,7 +2617,7 @@ runtime tests for recipes that build software that provides these tests.
This class is intended to be inherited by individual recipes. However,
the class' functionality is largely disabled unless "ptest" appears in
:term:`DISTRO_FEATURES`. See the
":ref:`dev-manual/packages:testing packages with ptest`"
":ref:`test-manual/ptest:testing packages with ptest`"
section in the Yocto Project Development Tasks Manual for more information
on ptest.
@@ -2628,7 +2641,7 @@ Enables package tests (ptests) specifically for GNOME packages, which
have tests intended to be executed with ``gnome-desktop-testing``.
For information on setting up and running ptests, see the
":ref:`dev-manual/packages:testing packages with ptest`"
":ref:`test-manual/ptest:testing packages with ptest`"
section in the Yocto Project Development Tasks Manual.
.. _ref-classes-python3-dir:
@@ -3173,6 +3186,22 @@ class assuming :term:`PATCHRESOLVE` is set to "user", the
:ref:`ref-classes-cml1` class, and the :ref:`ref-classes-devshell` class all
use the :ref:`ref-classes-terminal` class.
.. _ref-classes-testexport:
``testexport``
==============
Based on the :ref:`ref-classes-testimage` class, the
:ref:`ref-classes-testexport` class can be used to export the test environment
outside of the :term:`OpenEmbedded Build System`. This will generate the
directory structure to execute the runtime tests using the
:oe_git:`runexported.py </openembedded-core/tree/meta/lib/oeqa/runexported.py>`
Python script.
For more details on how to use :ref:`ref-classes-testexport`, see
the :ref:`test-manual/runtime-testing:Exporting Tests` section in the Yocto
Project Test Environment Manual.
.. _ref-classes-testimage:
``testimage``
@@ -3201,8 +3230,8 @@ after it is built, you can set :term:`TESTIMAGE_AUTO`::
TESTIMAGE_AUTO = "1"
For information on how to enable, run, and create new tests, see the
":ref:`dev-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Development Tasks Manual.
":ref:`test-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Test Environment Manual.
.. _ref-classes-testsdk:
@@ -3303,6 +3332,9 @@ The variables used by this class are:
- :term:`SPL_SIGN_ENABLE`: enable signing the FIT image.
- :term:`SPL_SIGN_KEYDIR`: directory containing the signing keys.
- :term:`SPL_SIGN_KEYNAME`: base filename of the signing keys.
- :term:`SPL_DTB_BINARY`: Name of the SPL device tree binary. Can be set to an
empty string to indicate that no SPL should be created and added to the FIT
image.
- :term:`UBOOT_FIT_ADDRESS_CELLS`: ``#address-cells`` value for the FIT image.
- :term:`UBOOT_FIT_DESC`: description string encoded into the FIT image.
- :term:`UBOOT_FIT_GENERATE_KEYS`: generate the keys if they don't exist yet.

View File

@@ -435,7 +435,7 @@ You can read more on the ``devtool upgrade`` workflow in the
":ref:`sdk-manual/extensible:use \`\`devtool upgrade\`\` to create a version of the recipe that supports a newer version of the software`"
section in the Yocto Project Application Development and the Extensible
Software Development Kit (eSDK) manual. You can also see an example of
how to use ``devtool upgrade`` in the ":ref:`dev-manual/upgrading-recipes:using \`\`devtool upgrade\`\``"
how to use ``devtool upgrade`` in the ":ref:`dev-manual/upgrading-recipes:using ``devtool upgrade```"
section in the Yocto Project Development Tasks Manual.
.. _devtool-resetting-a-recipe:
@@ -553,6 +553,26 @@ the packages are already on the target. Consequently, when a runtime
call is made in the application for a dependent function (e.g. a library
call), the function cannot be found.
.. warning::
Runtime dependencies can be explicitly listed in the :term:`RDEPENDS`
variable, but may also be the result of a :term:`DEPENDS` assignment in your
application's recipe. This is usually the case when your application depends
on libraries for compilation: these libraries are listed as build-time
dependencies in the :term:`DEPENDS` variable in your application's recipe.
However these may also be runtime dependencies if they install shared objects
on which your application will dynamically link to at runtime (e.g. shared
libraries ending with ``.so``).
These runtime dependencies are automatically resolved by the
:term:`OpenEmbedded Build System` during the packaging phase. Since
``devtool`` ignores packaging dependencies, they will not be installed
automatically with ``devtool deploy-target``.
For more information on how the :term:`OpenEmbedded Build System` handles
packaging, see the :ref:`overview-manual/concepts:Automatically Added Runtime
Dependencies` section of the Yocto Project Overview and Concepts Manual.
To be sure you have all the dependencies local to the target, you need
to be sure that the packages are pre-deployed (installed) on the target
before attempting to run your application.

View File

@@ -45,6 +45,28 @@ See :yocto_wiki:`Products that use the Yocto Project
Wiki. Don't hesitate to contribute to this page if you know other such
products.
Why isn't systemd the default init system for OpenEmbedded-Core/Yocto Project or in Poky?
-----------------------------------------------------------------------------------------
`systemd <https://systemd.io/>`__ is a desktop Linux init system with a specific
focus that is not entirely aligned with a customisable "embedded" build
system/environment.
It understandably mandates certain layouts and configurations which may
or may not align with what the objectives and direction :term:`OpenEmbedded-Core
(OE-Core)` or Yocto Project want to take. It doesn't support all of our targets.
For example `musl <https://www.musl-libc.org/>`__ support in systemd is
problematic.
If it were our default, we would have to align with all their choices
and this doesn't make sense. It is therefore a configuration option and
available to anyone where the design goals align. But we are clear it
is not the only way to handle init.
Our automated testing includes it through the ``poky-altcfg`` :term:`DISTRO` and
we don't really need it to be the default: it is tested, it works, and people
can choose to use it.
Building environment
====================

View File

@@ -12,7 +12,7 @@ Features provide a mechanism for working out which packages should be
included in the generated images. Distributions can select which
features they want to support through the :term:`DISTRO_FEATURES` variable,
which is set or appended to in a distribution's configuration file such
as ``poky.conf``, ``poky-tiny.conf``, ``poky-lsb.conf`` and so forth.
as ``poky.conf``, ``poky-tiny.conf``, ``poky-altcfg.conf`` and so forth.
Machine features are set in the :term:`MACHINE_FEATURES` variable, which is
set in the machine configuration file and specifies the hardware
features for a given machine.
@@ -207,7 +207,7 @@ metadata, as extra layers can define their own:
- *ptest:* Enables building the package tests where supported by
individual recipes. For more information on package tests, see the
":ref:`dev-manual/packages:testing packages with ptest`" section
":ref:`test-manual/ptest:testing packages with ptest`" section
in the Yocto Project Development Tasks Manual.
- *pulseaudio:* Include support for

View File

@@ -51,27 +51,6 @@ Here is a list of supported recipes:
- ``core-image-full-cmdline``: A console-only image with more
full-featured Linux system functionality installed.
- ``core-image-lsb``: An image that conforms to the Linux Standard Base
(LSB) specification. This image requires a distribution configuration
that enables LSB compliance (e.g. ``poky-lsb``). If you build
``core-image-lsb`` without that configuration, the image will not be
LSB-compliant.
- ``core-image-lsb-dev``: A ``core-image-lsb`` image that is suitable
for development work using the host. The image includes headers and
libraries you can use in a host development environment. This image
requires a distribution configuration that enables LSB compliance
(e.g. ``poky-lsb``). If you build ``core-image-lsb-dev`` without that
configuration, the image will not be LSB-compliant.
- ``core-image-lsb-sdk``: A ``core-image-lsb`` that includes everything
in the cross-toolchain but also includes development headers and
libraries to form a complete standalone SDK. This image requires a
distribution configuration that enables LSB compliance (e.g.
``poky-lsb``). If you build ``core-image-lsb-sdk`` without that
configuration, the image will not be LSB-compliant. This image is
suitable for development using the target.
- ``core-image-minimal``: A small image just capable of allowing a
device to boot.
@@ -119,8 +98,8 @@ Here is a list of supported recipes:
deployed to a separate partition so that you can boot into it and use
it to deploy a second image to be tested. You can find more
information about runtime testing in the
":ref:`dev-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Development Tasks Manual.
":ref:`test-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Test Environment Manual.
- ``core-image-testmaster-initramfs``: A RAM-based Initial Root
Filesystem (:term:`Initramfs`) image tailored for use with the

View File

@@ -752,21 +752,17 @@ Errors and Warnings
.. _qa-check-patch-status:
- ``Missing Upstream-Status in patch <patchfile> Please add according to <url> [patch-status-core/patch-status-noncore]``
- ``Missing Upstream-Status in patch <patchfile> Please add according to <url> [patch-status]``
The ``Upstream-Status`` value is missing in the specified patch file's header.
This value is intended to track whether or not the patch has been sent
upstream, whether or not it has been merged, etc.
There are two options for this same check - ``patch-status-core`` (for
recipes in OE-Core) and ``patch-status-noncore`` (for recipes in any other
layer).
For more information, see the
":ref:`contributor-guide/recipe-style-guide:patch upstream status`"
section in the Yocto Project and OpenEmbedded Contributor Guide.
- ``Malformed Upstream-Status in patch <patchfile> Please correct according to <url> [patch-status-core/patch-status-noncore]``
- ``Malformed Upstream-Status in patch <patchfile> Please correct according to <url> [patch-status]``
The ``Upstream-Status`` value in the specified patch file's header is invalid -
it must be a specific format. See the "Missing Upstream-Status" entry above
@@ -795,7 +791,7 @@ Errors and Warnings
This check will detect if the source of the package contains some
upstream-provided tests and, if so, that ptests are implemented for this
recipe. See the ":ref:`dev-manual/packages:testing packages with ptest`"
recipe. See the ":ref:`test-manual/ptest:testing packages with ptest`"
section in the Yocto Project Development Tasks Manual. See also the
":ref:`ref-classes-ptest`" section.

View File

@@ -148,8 +148,8 @@ Additionally, because the test strategies are visible to you as a
developer, you can validate your projects. This section overviews the
available test infrastructure used in the Yocto Project. For information
on how to run available tests on your projects, see the
":ref:`dev-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Development Tasks Manual.
":ref:`test-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Test Environment Manual.
The QA/testing infrastructure is woven into the project to the point
where core developers take some of it for granted. The infrastructure
@@ -175,7 +175,7 @@ consists of the following pieces:
operation and functions. However, the test can also use the IP
address of a machine to test.
- :ref:`ptest <dev-manual/packages:testing packages with ptest>`:
- :ref:`ptest <test-manual/ptest:testing packages with ptest>`:
Runs tests against packages produced during the build for a given
piece of software. The test allows the packages to be run within a
target image.
@@ -190,7 +190,7 @@ effort has been made to automate the tests so that more people can use
them and the Yocto Project development team can run them faster and more
efficiently.
The Yocto Project's main Autobuilder (&YOCTO_AB_URL;) publicly tests each Yocto
The Yocto Project's main :yocto_ab:`Autobuilder <>` publicly tests each Yocto
Project release's code in the :oe_git:`openembedded-core </openembedded-core>`,
:yocto_git:`poky </poky>` and :oe_git:`bitbake </bitbake>` repositories. The
testing occurs for both the current state of the "master" branch and also for

View File

@@ -344,6 +344,15 @@ This configuration file is generated by :doc:`bblock </dev-manual/bblock>` and
contains the signatures locked by ``bblock``. By default, it does not exist
and will be created upon the first invocation of ``bblock``.
.. _structure-build-conf-auto.conf:
``build/conf/auto.conf``
------------------------
This file contains configuration variables that are automatically modified by
tools such as :oe_git:`bitbake-config-build </bitbake/tree/bin/bitbake-config-build>`.
This file should not be modified manually.
.. _structure-build-downloads:
``build/downloads/``
@@ -515,7 +524,7 @@ generated during the :ref:`ref-tasks-packagedata` task. The files stored in this
directory contain information about each output package produced by the
OpenEmbedded build system, and are used in different ways by the build system
such as ":ref:`dev-manual/debugging:viewing package information with
\`\`oe-pkgdata-util\`\``".
``oe-pkgdata-util```".
.. _structure-build-tmp-sstate-control:

View File

@@ -2,11 +2,11 @@
<svg
version="1.1"
id="svg2"
width="1523.001"
height="504.30499"
viewBox="0 0 1523.001 504.30497"
width="1992.7236"
height="613.35602"
viewBox="0 0 1992.7236 613.35599"
sodipodi:docname="releases.svg"
inkscape:version="1.3.2 (091e20ef0f, 2023-11-25, custom)"
inkscape:version="1.4.1 (93de688d07, 2025-03-30)"
inkscape:export-filename="../../../../../../../../tmp/releases.png"
inkscape:export-xdpi="96"
inkscape:export-ydpi="96"
@@ -70,7 +70,7 @@
scale_width="1"
end_linecap_type="zerowidth"
not_jump="false"
message="&lt;b&gt;Ctrl + click&lt;/b&gt; on existing node and move it" />
message="" />
<marker
style="overflow:visible"
id="marker5783"
@@ -412,9 +412,9 @@
inkscape:window-height="2069"
id="namedview4"
showgrid="true"
inkscape:zoom="2.1971372"
inkscape:cx="1068.2082"
inkscape:cy="287.87461"
inkscape:zoom="1.5536106"
inkscape:cx="1158.2696"
inkscape:cy="273.55632"
inkscape:window-x="2256"
inkscape:window-y="60"
inkscape:window-maximized="1"
@@ -433,8 +433,8 @@
<inkscape:grid
type="xygrid"
id="grid1257"
originx="-289.99936"
originy="369.99997"
originx="-289.06071"
originy="478.43017"
spacingy="1"
spacingx="1"
units="px"
@@ -444,66 +444,90 @@
inkscape:groupmode="layer"
inkscape:label="Image"
id="g10"
transform="translate(-289.99936,370.00003)">
transform="translate(-289.06072,478.43022)">
<rect
style="fill:#333333;fill-opacity:0;stroke:#000000;stroke-width:0.713896;stroke-linejoin:bevel;stroke-miterlimit:0;stroke-opacity:0"
id="rect1"
width="1992.0098"
height="612.64215"
x="289.41766"
y="-478.07327"
ry="24.97636" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 563.40434,64.000628 v -415.635938 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 563.40434,64.000628 v -524.414808 0 0"
id="path207708" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 683.40434,64.000628 v -415.635938 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 683.40434,64.000628 v -524.414808 0 0"
id="path207708-4" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 803.40434,64.000628 v -415.635938 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 803.40434,64.000628 v -524.414808 0 0"
id="path207708-4-3" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 923.40434,64.000588 v -415.635898 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 923.40434,64.000577 v -524.414757 0 0"
id="path207708-4-3-6" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1043.4043,64.000588 v -415.635898 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1043.4043,64.000577 v -524.414757 0 0"
id="path207708-4-3-6-2" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1163.4043,64.000588 v -415.635898 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1163.4043,64.000577 v -524.414757 0 0"
id="path207708-4-3-6-2-8" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1283.4043,64.000588 v -415.635898 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1283.4043,64.000577 v -524.414757 0 0"
id="path207708-4-3-6-2-8-4" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1403.4043,64.000588 v -415.635898 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1403.4043,64.000577 v -524.414757 0 0"
id="path207708-4-3-6-2-8-4-3" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.475347;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1523.4043,64.000568 v -415.757648 0 0"
id="path207708-4-3-6-2-8-4-3-8" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1523.4043,64.000588 v -415.635898 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1523.4043,64.000577 v -524.414757 0 0"
id="path207708-4-3-6-2-8-4-3-8-0" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1643.3583,64.000578 v -415.635868 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1643.3583,64.000565 v -524.414715 0 0"
id="path207708-4-3-6-2-8-4-3-8-4" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1763.4043,64.000578 v -415.635868 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1763.4043,64.000565 v -524.414715 0 0"
id="path207708-4-3-6-2-8-4-3-8-4-0" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 443.40434,64.000628 v -415.635938 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1883.7877,64.878769 v -524.414709 0 0"
id="path207708-4-3-6-2-8-4-3-8-4-0-8" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 2002.9599,64.984489 v -524.414709 0 0"
id="path207708-4-3-6-2-8-4-3-8-4-0-8-8" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 2123.2232,62.984489 v -524.414709 0 0"
id="path207708-4-3-6-2-8-4-3-8-4-0-8-8-1" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 2243.313,63.984489 v -524.414709 0 0"
id="path207708-4-3-6-2-8-4-3-8-4-0-8-8-1-9" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 443.40434,64.000628 v -524.414808 0 0"
id="path207708-9" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.5;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 323.40434,64.000608 v -375.000008 0 0"
id="path207708-9-6" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.449183;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 323.40434,64.000618 v -415.635908 0 0"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:0.50455;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 323.40434,64.000616 v -524.414766 0 0"
id="path207708-9-6-2" />
<text
xml:space="preserve"
@@ -536,7 +560,7 @@
x="-59.575905"
y="580.05695" /></text>
<rect
style="fill:#333333;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:2;stroke-opacity:1;opacity:0.5"
style="opacity:0.5;fill:#333333;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:2;stroke-opacity:1"
id="rect917-0-0-4-4-9-4"
width="160.00002"
height="45.000004"
@@ -583,14 +607,6 @@
y="-73.501534"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4">4.2</tspan></text>
<rect
style="opacity:0.75;fill:#251f32;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:2;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-3"
width="140"
height="45.000004"
x="1043.132"
y="-328.2114"
ry="2.2558987" />
<rect
style="opacity:1;fill:#333333;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:2;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-3-6"
@@ -615,22 +631,78 @@
y="-238.332"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4-6-5-6">5.1</tspan></text>
<rect
style="fill:#333333;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:2;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-3-6-2"
width="140"
height="45.000004"
x="1043.4697"
y="-328.48172"
ry="2.2558987" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#fffefe;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="1094.2197"
y="-309.83084"
id="text1185-3-55-4-0-0-0-1-1-6-4-3"><tspan
x="1090.4542"
y="-309.61823"
id="text1185-3-55-4-0-0-0-1-1-6-4-7"><tspan
sodipodi:role="line"
x="1094.2197"
y="-309.83084"
x="1090.4542"
y="-309.61823"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
id="tspan957-2-8-6-3-9-7-4-2-0-5">Walnascar</tspan><tspan
id="tspan957-2-8-6-3-9-7-4-2-0-0">Walnascar</tspan><tspan
sodipodi:role="line"
x="1094.2197"
y="-291.83417"
x="1090.4542"
y="-291.62155"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4-6-5-6-6">5.2</tspan></text>
id="tspan10317-2-9-1-4-6-5-6-9">5.2</tspan></text>
<rect
style="opacity:0.75;fill:#251f32;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:2;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-3-67"
width="140"
height="45.000004"
x="1163.6425"
y="-382.27469"
ry="2.2558987" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#fffefe;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="1214.9716"
y="-363.89413"
id="text1185-3-55-4-0-0-0-1-1-6-4-3-53"><tspan
sodipodi:role="line"
x="1214.9716"
y="-363.89413"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
id="tspan957-2-8-6-3-9-7-4-2-0-5-5">Whinlatter</tspan><tspan
sodipodi:role="line"
x="1214.9716"
y="-345.89746"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4-6-5-6-6-6">5.3</tspan></text>
<rect
style="opacity:0.75;fill:#251f32;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:5.29752;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-3-67-6"
width="982.23163"
height="45.000004"
x="1283.7023"
y="-436.77539"
ry="2.2558987" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#fffefe;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="1335.1118"
y="-418.39484"
id="text1185-3-55-4-0-0-0-1-1-6-4-3-53-0"><tspan
sodipodi:role="line"
x="1335.1118"
y="-418.39484"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
id="tspan957-2-8-6-3-9-7-4-2-0-5-5-6">Wrynose</tspan><tspan
sodipodi:role="line"
x="1335.1118"
y="-400.39816"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#fffefe;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4-6-5-6-6-6-2">6.0</tspan></text>
<g
id="g1591"
transform="translate(-516.59566,64.000598)">
@@ -681,7 +753,7 @@
id="tspan10317-2-9-0-1">5.0</tspan></text>
<g
id="g1125-0"
transform="matrix(0.42240595,0,0,0.41654472,330.77064,-441.11721)"
transform="matrix(0.42240595,0,0,0.41654472,330.77064,-497.11721)"
style="stroke:none;stroke-width:2.38399">
<rect
style="opacity:1;fill:#333333;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:4.76797;stroke-opacity:1"
@@ -923,8 +995,8 @@
y="345.7359" /></text>
<path
id="path29430"
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1.72671;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="M 307.54809,63.999718 H 1783.4043 Z" />
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1.99503;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="M 307.54809,63.999718 H 2277.72 Z" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 323.40434,64.000618 v 9.99995 0"
@@ -1437,50 +1509,324 @@
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1763.4043,64.000578 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-2-0-0" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#000000;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="1885.6029"
y="94.285194"
id="text1185-9-7-1-1-8-1-0-4-2-8-2"><tspan
sodipodi:role="line"
x="1885.6029"
y="94.285194"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;text-align:center;text-anchor:middle;stroke:none"
id="tspan31345-4-0-4-81-5-2-8">Oct.</tspan><tspan
sodipodi:role="line"
x="1885.6029"
y="112.28188"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;text-align:center;text-anchor:middle;stroke:none"
id="tspan49906-7-3-8-2-8-9-9">2028</tspan></text>
<g
id="g1267-4-5-2-7"
transform="translate(563.45518,-155.9782)">
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1200,220.00002 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-1-3" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1220,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-0-5-0-0-5-6"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1240,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-7-5-3-5-9-1"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1260,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-5-2-0-9-9-2"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1280,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-8-9-9-4-1-9"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1299.7216,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-9-7-0-2-6-4-3"
inkscape:transform-center-x="-14.78205"
inkscape:transform-center-y="-0.085282837" />
</g>
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1883.4551,64.021829 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-2-0-0-1" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#000000;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="2005.5908"
y="94.339828"
id="text1185-9-7-1-1-8-1-0-4-2-8-2-4"><tspan
sodipodi:role="line"
x="2005.5908"
y="94.339828"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;text-align:center;text-anchor:middle;stroke:none"
id="tspan31345-4-0-4-81-5-2-8-7">Apr.</tspan><tspan
sodipodi:role="line"
x="2005.5908"
y="112.33651"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;text-align:center;text-anchor:middle;stroke:none"
id="tspan49906-7-3-8-2-8-9-9-8">2029</tspan></text>
<g
id="g1267-4-5-2-7-4"
transform="translate(683.44312,-155.92356)">
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1200,220.00002 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-1-3-5" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1220,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-0-5-0-0-5-6-0"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1240,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-7-5-3-5-9-1-3"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1260,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-5-2-0-9-9-2-6"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1280,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-8-9-9-4-1-9-1"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1299.7216,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-9-7-0-2-6-4-3-0"
inkscape:transform-center-x="-14.78205"
inkscape:transform-center-y="-0.085282837" />
</g>
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 2003.443,64.076464 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-2-0-0-1-6" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#000000;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="2125.6079"
y="94.692207"
id="text1185-9-7-1-1-8-1-0-4-2-8-2-4-2"><tspan
sodipodi:role="line"
x="2125.6079"
y="94.692207"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;text-align:center;text-anchor:middle;stroke:none"
id="tspan31345-4-0-4-81-5-2-8-7-0">Oct.</tspan><tspan
sodipodi:role="line"
x="2125.6079"
y="112.68889"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;text-align:center;text-anchor:middle;stroke:none"
id="tspan49906-7-3-8-2-8-9-9-8-6">2029</tspan></text>
<g
id="g1267-4-5-2-7-4-1"
transform="translate(803.46019,-155.57118)">
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1200,220.00002 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-1-3-5-5" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1220,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-0-5-0-0-5-6-0-5"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1240,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-7-5-3-5-9-1-3-4"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1260,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-5-2-0-9-9-2-6-7"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1280,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-8-9-9-4-1-9-1-6"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1299.7216,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-9-7-0-2-6-4-3-0-5"
inkscape:transform-center-x="-14.78205"
inkscape:transform-center-y="-0.085282837" />
</g>
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 2123.4601,64.428843 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-2-0-0-1-6-6" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 2123.3825,64.223284 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-2-0-0-1-6-3" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#000000;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="2245.5474"
y="94.839027"
id="text1185-9-7-1-1-8-1-0-4-2-8-2-4-2-7"><tspan
sodipodi:role="line"
x="2245.5474"
y="94.839027"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;text-align:center;text-anchor:middle;stroke:none"
id="tspan31345-4-0-4-81-5-2-8-7-0-4">Apr.</tspan><tspan
sodipodi:role="line"
x="2245.5474"
y="112.83571"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;text-align:center;text-anchor:middle;stroke:none"
id="tspan49906-7-3-8-2-8-9-9-8-6-5">2030</tspan></text>
<g
id="g1267-4-5-2-7-4-1-2"
transform="translate(923.39972,-155.42436)">
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1200,220.00002 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-1-3-5-5-5" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1220,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-0-5-0-0-5-6-0-5-4"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1240,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-7-5-3-5-9-1-3-4-7"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1260,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-5-2-0-9-9-2-6-7-4"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1280,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-8-9-9-4-1-9-1-6-4"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1299.7216,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-9-7-0-2-6-4-3-0-5-3"
inkscape:transform-center-x="-14.78205"
inkscape:transform-center-y="-0.085282837" />
</g>
<g
id="g1267-4-5-2-7-4-1-2-0"
transform="translate(1043.3579,-155.33829)">
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1200,220.00002 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-1-3-5-5-5-6" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1220,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-0-5-0-0-5-6-0-5-4-8"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1240,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-7-5-3-5-9-1-3-4-7-9"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1260,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-5-2-0-9-9-2-6-7-4-2"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1280,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-8-9-9-4-1-9-1-6-4-6"
inkscape:transform-center-x="14.782001"
inkscape:transform-center-y="-0.085282837" />
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 1299.7216,219.99997 v 5.00004 0"
id="path29548-8-5-0-6-4-6-2-9-0-8-1-3-1-9-6-9-3-4-0-4-6-2-2-7-6-1-9-9-1-4-9-7-0-2-6-4-3-0-5-3-6"
inkscape:transform-center-x="-14.78205"
inkscape:transform-center-y="-0.085282837" />
</g>
<path
style="fill:none;fill-rule:evenodd;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
d="m 2243.3996,64.575663 v 9.99999 0"
id="path29548-5-1-3-6-3-1-0-3-4-2-0-0-1-6-6-0" />
<rect
style="opacity:0.75;fill:#241f31;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:0.751473;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-36"
width="38.418175"
height="23.151052"
x="1605.6135"
y="-41.172161"
x="2047.6135"
y="-45.172161"
ry="1.1605872" />
<rect
style="opacity:1;fill:#ffffff;fill-opacity:1;fill-rule:evenodd;stroke:#000000;stroke-width:1.98878;stroke-dasharray:none;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-36-7"
width="186.42949"
height="110.40546"
x="1594.5294"
y="-73.753708"
x="2036.5294"
y="-77.753708"
ry="5.5347452" />
<rect
style="opacity:0.75;fill:#241f31;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:0.50949;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-6"
width="21.197233"
height="19.28739"
x="1611.8163"
y="-41.883858"
x="2053.8164"
y="-45.883858"
ry="0.96689767" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#fffefe;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="1690.4917"
y="-53.687912"
x="2132.4917"
y="-57.687912"
id="text1185-3-55-4-0-0-0-1-1-6-4-3-5"><tspan
sodipodi:role="line"
x="1690.4917"
y="-53.687912"
x="2132.4917"
y="-57.687912"
style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans Bold';text-align:center;text-anchor:middle;fill:#000000;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4-6-5-6-6-5">Legend</tspan></text>
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#fffefe;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="1656.0988"
y="-27.899874"
x="2098.0986"
y="-31.899874"
id="text1185-3-55-4-0-0-0-1-1-6-4-3-5-2"><tspan
sodipodi:role="line"
x="1656.0988"
y="-27.899874"
x="2098.0986"
y="-31.899874"
style="font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans';text-align:center;text-anchor:middle;fill:#000000;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4-6-5-6-6-5-9">Future</tspan></text>
<rect
@@ -1488,38 +1834,38 @@
id="rect917-0-0-4-4-9-4-5-3-9-2-6-1"
width="21.197233"
height="19.28739"
x="1611.8671"
y="-17.756365"
x="2053.8672"
y="-21.756365"
ry="0.96689767" />
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#fffefe;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="1686.7159"
y="-3.6722763"
x="2128.7158"
y="-7.6722765"
id="text1185-3-55-4-0-0-0-1-1-6-4-3-5-2-2"><tspan
sodipodi:role="line"
x="1686.7159"
y="-3.6722763"
x="2128.7158"
y="-7.6722765"
style="font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans';text-align:center;text-anchor:middle;fill:#000000;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4-6-5-6-6-5-9-7">Current (Oct. 24)</tspan></text>
id="tspan10317-2-9-1-4-6-5-6-6-5-9-7">Current (Apr. 25)</tspan></text>
<text
xml:space="preserve"
style="font-weight:bold;font-size:13.3333px;line-height:125%;font-family:'Nimbus Roman';-inkscape-font-specification:'Nimbus Roman, Bold';letter-spacing:0px;word-spacing:0px;writing-mode:lr-tb;fill:#fffefe;fill-opacity:1;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
x="1667.363"
y="20.03771"
x="2109.363"
y="16.03771"
id="text1185-3-55-4-0-0-0-1-1-6-4-3-5-2-2-9"><tspan
sodipodi:role="line"
x="1667.363"
y="20.03771"
x="2109.363"
y="16.03771"
style="font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;font-size:13.3333px;font-family:'Liberation Sans';-inkscape-font-specification:'Liberation Sans';text-align:center;text-anchor:middle;fill:#000000;fill-opacity:1;stroke:none"
id="tspan10317-2-9-1-4-6-5-6-6-5-9-7-3">End-of-life</tspan></text>
<rect
style="fill:#333333;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:0.50949;stroke-opacity:1;opacity:0.5"
style="opacity:0.5;fill:#333333;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:0.50949;stroke-opacity:1"
id="rect917-0-0-4-4-9-4-5-3-9-2-6-1-0"
width="21.197233"
height="19.28739"
x="1612.0239"
y="5.9667883"
x="2054.0239"
y="1.9667883"
ry="0.96689767" />
<rect
style="opacity:0.5;fill:#333333;fill-opacity:1;fill-rule:evenodd;stroke:none;stroke-width:1.85786;stroke-opacity:1"

Before

Width:  |  Height:  |  Size: 93 KiB

After

Width:  |  Height:  |  Size: 117 KiB

View File

@@ -58,32 +58,35 @@ Supported Linux Distributions
Currently, the &DISTRO; release ("&DISTRO_NAME;") of the Yocto Project is
supported on the following distributions:
- Ubuntu 20.04 (LTS)
- Ubuntu 22.04 (LTS)
- Fedora 38
- CentOS Stream 8
- Debian GNU/Linux 11 (Bullseye)
- Debian GNU/Linux 12 (Bookworm)
- OpenSUSE Leap 15.4
..
Can be generated with yocto-autobuilder-helper's scripts/yocto-supported-distros:
yocto-supported-distros --release scarthgap --config yocto-autobuilder2/config.py --output-format docs --poky-distros
- AlmaLinux 8
- AlmaLinux 9
- Rocky 9
- Debian 11
- Debian 12
- Fedora 39
- Fedora 40
- Fedora 41
- Rocky Linux 8
- Rocky Linux 9
- Ubuntu 20.04 (LTS)
- Ubuntu 22.04 (LTS)
- Ubuntu 24.04 (LTS)
- Ubuntu 24.10
The following distribution versions are still tested, even though the
organizations publishing them no longer make updates publicly available:
- Ubuntu 18.04 (LTS)
..
This list contains EOL distros that are still tested on the Autobuilder
(meaning there are running workers).
See https://endoflife.date for information of EOL releases.
- Ubuntu 23.04
- Fedora 39
- Fedora 40
- Ubuntu 20.04 (LTS)
Note that the Yocto Project doesn't have access to private updates
that some of these versions may have. Therefore, our testing has
@@ -92,7 +95,15 @@ limited value if you have access to such updates.
Finally, here are the distribution versions which were previously
tested on former revisions of "&DISTRO_NAME;", but no longer are:
*This list is currently empty*
..
Can be generated with yocto-autobuilder-helper's scripts/yocto-supported-distros.
yocto-supported-distros --release scarthgap --config yocto-autobuilder2/config.py --output-format docs --old-distros
- CentOS Stream 8
- Fedora 38
- OpenSUSE Leap 15.4
- Ubuntu 18.04
- Ubuntu 23.04
.. note::
@@ -150,10 +161,27 @@ Ubuntu and Debian
Here are the packages needed to build an image on a headless system
with a supported Ubuntu or Debian Linux distribution::
$ sudo apt install &UBUNTU_HOST_PACKAGES_ESSENTIAL;
$ sudo apt install &UBUNTU_DEBIAN_HOST_PACKAGES_ESSENTIAL;
You also need to ensure you have the ``en_US.UTF-8`` locale enabled::
$ locale --all-locales | grep en_US.utf8
If this is not the case, you can reconfigure the ``locales`` package to add it
(requires an interactive shell)::
$ sudo dpkg-reconfigure locales
.. note::
- If you are not in an interactive shell, ``dpkg-reconfigure`` will
not work as expected. To add the locale you will need to edit
``/etc/locale.gen`` file to add/uncomment the ``en_US.UTF-8`` locale.
A naive way to do this as root is::
$ echo "en_US.UTF-8 UTF-8" >> /etc/locale.gen
$ locale-gen
- If your build system has the ``oss4-dev`` package installed, you
might experience QEMU build failures due to the package installing
its own custom ``/usr/include/linux/soundcard.h`` on the Debian
@@ -164,8 +192,12 @@ with a supported Ubuntu or Debian Linux distribution::
Here are the packages needed to build Project documentation manuals::
$ sudo apt install git make inkscape texlive-latex-extra
$ sudo apt install sphinx python3-saneyaml python3-sphinx-rtd-theme
$ sudo apt install &UBUNTU_DEBIAN_HOST_PACKAGES_DOC;
In addition to the previous packages, here are the packages needed to build the
documentation in PDF format::
$ sudo apt install &UBUNTU_DEBIAN_HOST_PACKAGES_DOC_PDF;
Fedora Packages
---------------
@@ -177,8 +209,13 @@ with a supported Fedora Linux distribution::
Here are the packages needed to build Project documentation manuals::
$ sudo dnf install git make python3-pip which inkscape texlive-fncychap
&PIP3_HOST_PACKAGES_DOC;
$ sudo dnf install &FEDORA_HOST_PACKAGES_DOC;
$ sudo pip3 install &PIP3_HOST_PACKAGES_DOC;
In addition to the previous packages, here are the packages needed to build the
documentation in PDF format::
$ sudo dnf install &FEDORA_HOST_PACKAGES_DOC_PDF;
openSUSE Packages
-----------------
@@ -187,11 +224,17 @@ Here are the packages needed to build an image on a headless system
with a supported openSUSE distribution::
$ sudo zypper install &OPENSUSE_HOST_PACKAGES_ESSENTIAL;
$ sudo pip3 install &OPENSUSE_PIP3_HOST_PACKAGES_ESSENTIAL;
Here are the packages needed to build Project documentation manuals::
$ sudo zypper install git make python3-pip which inkscape texlive-fncychap
&PIP3_HOST_PACKAGES_DOC;
$ sudo zypper install &OPENSUSE_HOST_PACKAGES_DOC;
$ sudo pip3 install &PIP3_HOST_PACKAGES_DOC;
In addition to the previous packages, here are the packages needed to build the
documentation in PDF format::
$ sudo zypper install &OPENSUSE_HOST_PACKAGES_DOC_PDF;
AlmaLinux Packages
@@ -200,6 +243,10 @@ AlmaLinux Packages
Here are the packages needed to build an image on a headless system
with a supported AlmaLinux distribution::
$ sudo dnf install -y epel-release
$ sudo yum install dnf-plugins-core
$ sudo dnf config-manager --set-enabled crb
$ sudo dnf makecache
$ sudo dnf install &ALMALINUX_HOST_PACKAGES_ESSENTIAL;
.. note::
@@ -217,8 +264,20 @@ with a supported AlmaLinux distribution::
Here are the packages needed to build Project documentation manuals::
$ sudo dnf install git make python3-pip which inkscape texlive-fncychap
&PIP3_HOST_PACKAGES_DOC;
$ sudo dnf install &ALMALINUX_HOST_PACKAGES_DOC;
$ sudo pip3 install &PIP3_HOST_PACKAGES_DOC;
In addition to the previous packages, here are the packages needed to build the
documentation in PDF format::
$ sudo dnf install &ALMALINUX_HOST_PACKAGES_DOC_PDF;
.. warning::
Unlike Fedora or OpenSUSE, AlmaLinux does not provide the packages
``texlive-collection-fontsextra``, ``texlive-collection-lang*`` and
``texlive-collection-latexextra``, so you may run into issues. These may be
installed using `tlmgr <https://tug.org/texlive/tlmgr.html>`_.
.. _system-requirements-buildtools:
@@ -319,7 +378,7 @@ If you would prefer not to use the ``install-buildtools`` script, you can instea
download and run a pre-built :term:`buildtools` installer yourself with the following
steps:
#. Go to :yocto_dl:`/releases/yocto/yocto-&DISTRO;/buildtools/`, locate and
#. Go to :yocto_dl:`/releases/yocto/&DISTRO_REL_LATEST_TAG;/buildtools/`, locate and
download the ``.sh`` file corresponding to your host architecture
and to :term:`buildtools`, :term:`buildtools-extended` or :term:`buildtools-make`.

View File

@@ -616,8 +616,8 @@ information on how the root filesystem is created.
Boots an image and performs runtime tests within the image. For
information on automatically testing images, see the
":ref:`dev-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Development Tasks Manual.
":ref:`test-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Test Environment Manual.
.. _ref-tasks-testimage_auto:
@@ -629,8 +629,8 @@ after it has been built. This task is enabled when you set
:term:`TESTIMAGE_AUTO` equal to "1".
For information on automatically testing images, see the
":ref:`dev-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Development Tasks Manual.
":ref:`test-manual/runtime-testing:performing automated runtime testing`"
section in the Yocto Project Test Environment Manual.
Kernel-Related Tasks
====================
@@ -727,7 +727,7 @@ tool, which you then use to modify the kernel configuration.
$ bitbake linux-yocto -c menuconfig
See the ":ref:`kernel-dev/common:using \`\`menuconfig\`\``"
See the ":ref:`kernel-dev/common:using ``menuconfig```"
section in the Yocto Project Linux Kernel Development Manual for more
information on this configuration tool.
@@ -751,7 +751,7 @@ which can then be applied by subsequent tasks such as
Runs ``make menuconfig`` for the kernel. For information on
``menuconfig``, see the
":ref:`kernel-dev/common:using \`\`menuconfig\`\``"
":ref:`kernel-dev/common:using ``menuconfig```"
section in the Yocto Project Linux Kernel Development Manual.
.. _ref-tasks-savedefconfig:

View File

@@ -63,7 +63,7 @@ universal, the list includes them just in case:
This term refers to the area used by the OpenEmbedded build system for
builds. The area is created when you ``source`` the setup environment
script that is found in the Source Directory
(i.e. :ref:`ref-manual/structure:\`\`oe-init-build-env\`\``). The
(i.e. :ref:`ref-manual/structure:``oe-init-build-env```). The
:term:`TOPDIR` variable points to the :term:`Build Directory`.
You have a lot of flexibility when creating the :term:`Build Directory`.
@@ -452,7 +452,7 @@ universal, the list includes them just in case:
the Source Directory, if you do, the top-level directory name of the
Source Directory is derived from the Yocto Project release tarball.
For example, downloading and unpacking poky tarballs from
:yocto_dl:`/releases/yocto/&DISTRO_REL_TAG;/`
:yocto_dl:`/releases/yocto/&DISTRO_REL_LATEST_TAG;/`
results in a Source Directory whose root folder is named poky.

File diff suppressed because it is too large Load Diff

View File

@@ -29,7 +29,7 @@ and then run the script to hand-install the toolchain.
Follow these steps to locate and hand-install the toolchain:
#. *Go to the Installers Directory:* Go to
:yocto_dl:`/releases/yocto/yocto-&DISTRO;/toolchain/`
:yocto_dl:`/releases/yocto/&DISTRO_REL_LATEST_TAG;/toolchain/`
#. *Open the Folder for Your Build Host:* Open the folder that matches
your :term:`Build Host` (i.e.
@@ -201,7 +201,7 @@ Follow these steps to extract the root filesystem:
Image File:* You need to find and download the root filesystem image
file that is appropriate for your target system. These files are kept
in machine-specific folders in the
:yocto_dl:`Index of Releases </releases/yocto/yocto-&DISTRO;/machines/>`
:yocto_dl:`Index of Releases </releases/yocto/&DISTRO_REL_LATEST_TAG;/machines/>`
in the "machines" directory.
The machine-specific folders of the "machines" directory contain
@@ -245,7 +245,7 @@ Follow these steps to extract the root filesystem:
Here is an example command that extracts the root filesystem
from a previously built root filesystem image that was downloaded
from the :yocto_dl:`Index of Releases </releases/yocto/yocto-&DISTRO;/machines/>`.
from the :yocto_dl:`Index of Releases </releases/yocto/&DISTRO_REL_LATEST_TAG;/machines/>`.
This command extracts the root filesystem into the ``core2-64-sato``
directory::

View File

@@ -87,7 +87,7 @@ Host` by running the ``*.sh`` installation script.
You can download a tarball installer, which includes the pre-built
toolchain, the ``runqemu`` script, the internal build system,
``devtool``, and support files from the appropriate
:yocto_dl:`toolchain </releases/yocto/yocto-&DISTRO;/toolchain/>` directory within the Index of
:yocto_dl:`toolchain </releases/yocto/&DISTRO_REL_LATEST_TAG;/toolchain/>` directory within the Index of
Releases. Toolchains are available for several 32-bit and 64-bit
architectures with the ``x86_64`` directories, respectively. The
toolchains the Yocto Project provides are based off the
@@ -178,7 +178,7 @@ Running the Extensible SDK Environment Setup Script
Once you have the SDK installed, you must run the SDK environment setup
script before you can actually use the SDK.
When using a SDK directly in a Yocto build, you will find the script in
When using an SDK directly in a Yocto build, you will find the script in
``tmp/deploy/images/qemux86-64/`` in your :term:`Build Directory`.
When using a standalone SDK installer, this setup script resides in
@@ -622,28 +622,91 @@ command:
decide you do not want to proceed with your work. If you do use this
command, realize that the source tree is preserved.
``devtool ide-sdk`` configures IDEs for the extensible SDK
----------------------------------------------------------
``devtool ide-sdk`` configures IDEs and bootstraps SDKs
-------------------------------------------------------
``devtool ide-sdk`` automatically configures IDEs to use the extensible SDK.
To make sure that all parts of the extensible SDK required by the generated
IDE configuration are available, ``devtool ide-sdk`` uses BitBake in the
background to bootstrap the extensible SDK.
The ``devtool ide-sdk`` command can provide an IDE configuration for IDEs when
working on the source code of one or more recipes.
Depending on the programming language, and the build system used by the recipe,
the tools required for cross-development and remote debugging are different.
For example:
The extensible SDK supports two different development modes.
``devtool ide-sdk`` supports both of them:
- A C/C++ project usually uses CMake or Meson.
- A Python project uses setuptools or one of its successors.
- A Rust project uses Cargo.
Also, the IDE plugins needed for the integration of a build system with the
IDE and the corresponding settings are usually specific to these build-systems.
To hide all these details from the user, ``devtool ide-sdk`` does two things:
- It generates any kind of SDK needed for cross-development and remote
debugging of the specified recipes.
- It generates the configuration for the IDE (and the IDE plugins) for using
the cross-toolchain and remote debugging tools provided by the SDK directly
from the IDE.
For supported build systems the configurations generated by ``devtool ide-sdk``
combine the advantages of the ``devtool modify`` based workflow
(see :ref:`using_devtool`) with the advantages of the simple Environment Setup
script based workflow (see :ref:`running_the_ext_sdk_env`) provided by Yocto's
SDK or eSDK:
- The source code of the recipe is in the workspace created by
``devtool modify`` or ``devtool add``.
Using ``devtool build``, ``devtool build-image``,
``devtool deploy-target`` or ``bitbake`` is possible.
Also ``devtool ide-sdk`` can be used to update the SDK and the IDE
configuration at any time.
- ``devtool ide-sdk`` aims to support multiple programming languages and
multiple IDEs natively. "Natively" means that the IDE is configured to call
the build tool (e.g. ``cmake`` or ``meson``) directly. This has several
advantages.
First of all, it is usually much faster to call for example ``cmake`` than
``devtool build``.
It also allows to benefit from the very good integration that IDEs like
VSCode offer for tools like CMake or GDB.
However, supporting many programming languages and multiple
IDEs is quite an elaborate and constantly evolving thing. Support for IDEs
is therefore implemented as plugins. Plugins can also be provided by
optional layers.
So much about the introduction to the default mode of ``devtool sdk-ide`` which
is called the "modified" mode because it uses the workspace created by
``devtool modify`` and the per recipe :term:`Sysroots <Sysroot>` of BitBake.
For some recipes and use cases, this default behavior of ``devtool ide-sdk``
with full ``devtool`` and ``bitbake`` integration might not be suitable.
To offer full feature parity with the SDK and the eSDK, ``devtool ide-sdk`` has
a second mode called "shared" mode.
If ``devtool ide-sdk`` is called with the ``--mode=shared`` option, it
bootstraps an SDK directly from the BitBake environment, which offers the same
Environment Setup script as described in :ref:`running_the_ext_sdk_env`.
In addition to the (e)SDK installer-based setup, the IDE gets configured
to use the shared :term:`Sysroots <Sysroot>` and the tools from the SDK.
``devtool ide-sdk --mode=shared`` is basically a wrapper for the setup of the
extensible SDK as described in :ref:`setting_up_ext_sdk_in_build`.
The use of ``devtool ide-sdk`` is an alternative to using one of the SDK
installers.
``devtool ide-sdk`` allows the creation of SDKs that offer all the
functionality of the SDK and the eSDK installers. Compared to the installers,
however, the SDK created with ``devtool ide-sdk`` is much more flexible.
For example, it is very easy to change the :term:`MACHINE` in the
``local.conf`` file, update the layer meta data and then regenerate the SDK.
Let's take a look at an example of how to use ``devtool ide-sdk`` in each of
the two modes:
#. *Modified mode*:
By default ``devtool ide-sdk`` generates IDE configurations for recipes in
workspaces created by ``devtool modify`` or ``devtool add`` as described in
:ref:`using_devtool`. This mode creates IDE configurations with support for
advanced features, such as deploying the binaries to the remote target
device and performing remote debugging sessions. The generated IDE
configurations use the per recipe sysroots as Bitbake does internally.
In order to use the tool, a few settings are needed. As a starting example,
the following lines of code can be added to the ``local.conf`` file::
In order to use the ``devtool ide-sdk``, a few settings are needed. As a
starting example, the following lines of code can be added to the
``local.conf`` file::
# Build the companion debug file system
IMAGE_GEN_DEBUGFS = "1"
@@ -666,15 +729,20 @@ The extensible SDK supports two different development modes.
IMAGE_INSTALL:append = " my-recipe"
Assuming the BitBake environment is set up correctly and a workspace has
been created for the recipe using ``devtool modify my-recipe``, the
been created for the recipe using ``devtool modify my-recipe`` or probably
even better by using ``devtool modify my-recipe --debug-build``, the
following command can create the SDK and the configuration for VSCode in
the recipe workspace::
$ devtool ide-sdk my-recipe core-image-minimal --target root@192.168.7.2
The command requires an image recipe (``core-image-minimal`` for this example)
that is used to create the SDK. This firmware image should also be installed
on the target device. It is possible to pass multiple package recipes.
The command requires an image recipe (``core-image-minimal`` for this
example) that is used to create the SDK.
This firmware image should also be installed on the target device.
It is possible to pass multiple package recipes::
$ devtool ide-sdk my-recipe-1 my-recipe-2 core-image-minimal --target root@192.168.7.2
``devtool ide-sdk`` tries to create an IDE configuration for all package
recipes.
@@ -684,9 +752,9 @@ The extensible SDK supports two different development modes.
For example, a CMake preset is created for a recipe that inherits
:ref:`ref-classes-cmake`. In the case of VSCode, CMake presets are supported
by the CMake Tools plugin. This is an example of how the build
configuration used by ``bitbake`` is exported to an IDE configuration that
gives exactly the same build results.
by the CMake Tools plugin. This is an example of how the build configuration
used by ``bitbake`` is exported to an IDE configuration that gives exactly
the same build results.
Support for remote debugging with seamless integration into the IDE is
important for a cross-SDK. ``devtool ide-sdk`` automatically generates the
@@ -699,23 +767,54 @@ The extensible SDK supports two different development modes.
running on the target device, it is essential that the image built by
``devtool ide-sdk`` is running on the target device.
``devtool ide-sdk`` aims to support multiple programming languages and
multiple IDEs natively. "Natively" means that the IDE is configured to call
the build tool (e.g. CMake or Meson) directly. This has several advantages.
First of all, it is much faster than ``devtool build``, but it also allows
to use the very good integration of tools like CMake or GDB in VSCode and
other IDEs. However, supporting many programming languages and multiple
IDEs is quite an elaborate and constantly evolving thing. Support for IDEs
is therefore implemented as plugins. Plugins can also be provided by
optional layers.
The default IDE is VSCode. Some hints about using VSCode:
- To work on the source code of a recipe an instance of VSCode is started in
the recipe's workspace. Example::
- VSCode can be used to work on the BitBake recipes or the application
source code.
Usually there is one instance of VSCode running in the folder where the
BitBake recipes are. This instance has the
`Yocto Project BitBake plugin <https://marketplace.visualstudio.com/items?itemName=yocto-project.yocto-bitbake>`_
running.
.. warning::
Some VSCode plugins (Python, BitBake and others) need a reasonable
configuration to work as expected. Otherwise, some plugins try to
index the build directory of BitBake, which keeps your system quite
busy until an out of memory exception stops this nonsense.
Other plugins, such as the BitBake plugin, do not behave as expected.
To work around such issues, the ``oe-init-build-env`` script creates
an initial ``.vscode/settings.json`` file if ``code`` can be found
and the ``.vscode`` folder does not yet exist.
It is best to run ``oe-init-build-env`` once before starting VSCode.
An alternative approach is to use a build folder outside the layers,
e.g. ``oe-init-build-env ../build``.
The BitBake plugin also offers to create devtool workspaces and run
``devtool ide-sdk`` with a few mouse clicks.
Of course, issuing commands in the terminal works as well.
- To work on the source code of a recipe another instance of VSCode is
started in the recipe's workspace. Example::
code build/workspace/sources/my-recipe
This instance of VSCode uses plugins that are useful for the development
of the application. ``devtool ide-sdk`` generates the necessary
``extensions.json``, ``settings.json``, ``tasks.json`` and ``launch.json``
configuration files for all the involved plugins.
When the source code folder present in the workspace folder is opened in
VSCode for the first time, a pop-up message recommends installing the
required plugins.
After accepting the installation of the plugins, working with the source
code or some debugging tasks should work as usual with VSCode.
Starting the VSCode instances in the recipe workspace folders can also be
done by a mouse click on the recipe workspaces in the first VSCode
instance.
- To work with CMake press ``Ctrl + Shift + p``, type ``cmake``. This will
show some possible commands like selecting a CMake preset, compiling or
running CTest.
@@ -728,10 +827,9 @@ The extensible SDK supports two different development modes.
show some possible commands like compiling or executing the unit tests.
A note on running cross-compiled unit tests on the host: Meson enables
support for QEMU user-mode by default. It is expected that the execution
of the unit tests from the IDE will work easily without any additional
steps, provided that the code is suitable for execution on the host
machine.
support for QEMU user mode by default. It is expected that the execution
of the unit tests from the IDE will work without any additional steps,
given that the code is suitable for the execution on the host machine.
- For the deployment to the target device, just press ``Ctrl + Shift + p``,
type ``task``. Select ``install && deploy-target``.
@@ -742,23 +840,23 @@ The extensible SDK supports two different development modes.
selected. After selecting one of the generated configurations, press the
"play" button.
Starting a remote debugging session automatically initiates the deployment
to the target device. If this is not desired, the
Starting a remote debugging session automatically initiates the
deployment to the target device. If this is not desired, the
``"dependsOn": ["install && deploy-target...]`` parameter of the tasks
with ``"label": "gdbserver start...`` can be removed from the
``tasks.json`` file.
VSCode supports GDB with many different setups and configurations for many
different use cases. However, most of these setups have some limitations
when it comes to cross-development, support only a few target
VSCode supports GDB with many different setups and configurations for
many different use cases. However, most of these setups have some
limitations when it comes to cross-development, support only a few target
architectures or require a high performance target device. Therefore
``devtool ide-sdk`` supports the classic, generic setup with GDB on the
development host and gdbserver on the target device.
Roughly summarized, this means:
- The binaries are copied via SSH to the remote target device by a script
referred by ``tasks.json``.
- The binaries are copied via SSH to the remote target device by a
script referred by ``tasks.json``.
- gdbserver is started on the remote target device via SSH by a script
referred by ``tasks.json``.
@@ -783,8 +881,8 @@ The extensible SDK supports two different development modes.
.. code-block:: sh
# Create the SDK
devtool modify cmake-example
devtool ide-sdk cmake-example core-image-minimal -c --debug-build-config --ide=none
devtool modify cmake-example --debug-build
devtool ide-sdk cmake-example core-image-minimal -c --ide=none
# Install the firmware on a target device or start QEMU
runqemu
@@ -860,16 +958,9 @@ The extensible SDK supports two different development modes.
#. *Shared sysroots mode*
For some recipes and use cases a per-recipe sysroot based SDK is not
suitable. Optionally ``devtool ide-sdk`` configures the IDE to use the
toolchain provided by the extensible SDK as described in
:ref:`running_the_ext_sdk_env`. ``devtool ide-sdk --mode=shared`` is
basically a wrapper for the setup of the extensible SDK as described in
:ref:`setting_up_ext_sdk_in_build`. The IDE gets a configuration to use the
shared sysroots.
Creating a SDK with shared sysroots that contains all the dependencies needed
to work with ``my-recipe`` is possible with the following example command::
Creating an SDK with shared :term:`Sysroots <Sysroot>` that contains all the
dependencies needed to work with ``my-recipe`` is possible with the following
example command::
$ devtool ide-sdk --mode=shared my-recipe
@@ -883,12 +974,14 @@ The extensible SDK supports two different development modes.
echo "project(foo VERSION 1.0)" > kit-test/CMakeLists.txt
code kit-test
If there is a CMake project in the workspace, cross-compilation is supported:
If there is a CMake project in the workspace, cross-compilation is
supported:
- Press ``Ctrl + Shift + P``, type ``CMake: Scan for Kits``
- Press ``Ctrl + Shift + P``, type ``CMake: Select a Kit``
Finally most of the features provided by CMake and the IDE should be available.
Finally most of the features provided by CMake and the IDE should be
available.
Other IDEs than VSCode are supported as well. However,
``devtool ide-sdk --mode=shared --ide=none my-recipe`` is currently

View File

@@ -173,7 +173,7 @@ You just need to follow these general steps:
root filesystem images.
If you are going to develop your application on hardware, go to the
:yocto_dl:`machines </releases/yocto/yocto-&DISTRO;/machines/>` download area and choose a
:yocto_dl:`machines </releases/yocto/&DISTRO_REL_LATEST_TAG;/machines/>` download area and choose a
target machine area from which to download the kernel image and root
filesystem. This download area could have several files in it that
support development using actual hardware. For example, the area
@@ -183,7 +183,7 @@ You just need to follow these general steps:
If you are going to develop your application and then run and test it
using the QEMU emulator, go to the
:yocto_dl:`machines/qemu </releases/yocto/yocto-&DISTRO;/machines/qemu>` download area. From this
:yocto_dl:`machines/qemu </releases/yocto/&DISTRO_REL_LATEST_TAG;/machines/qemu>` download area. From this
area, go down into the directory for your target architecture (e.g.
``qemux86_64`` for an Intel-based 64-bit architecture). Download the
kernel, root filesystem, and any other files you need for your

View File

@@ -43,7 +43,7 @@ Host` by running the ``*.sh`` installation script.
You can download a tarball installer, which includes the pre-built
toolchain, the ``runqemu`` script, and support files from the
appropriate :yocto_dl:`toolchain </releases/yocto/yocto-&DISTRO;/toolchain/>` directory within
appropriate :yocto_dl:`toolchain </releases/yocto/&DISTRO_REL_LATEST_TAG;/toolchain/>` directory within
the Index of Releases. Toolchains are available for several 32-bit and
64-bit architectures with the ``x86_64`` directories, respectively. The
toolchains the Yocto Project provides are based off the

View File

@@ -56,9 +56,10 @@ project:
#include <stdio.h>
main()
int main()
{
printf("Hello World!\n");
return 0;
}
- ``configure.ac``::

View File

@@ -168,17 +168,29 @@ series = [k for k in release_series]
previousseries = series[series.index(ourseries)+1:] or [""]
lastlts = [k for k in previousseries if k in ltsseries] or "dunfell"
latestreltag = subprocess.run(["git", "describe", "--abbrev=0", "--tags", "--match", "yocto-*"], capture_output=True, text=True).stdout
latestreltag = latestreltag.strip()
if latestreltag:
if latestreltag.startswith("yocto-"):
latesttag = latestreltag[6:]
else:
# fallback on the calculated version
print("Did not find a tag with 'git describe', falling back to %s" % ourversion)
latestreltag = "yocto-" + ourversion
latesttag = ourversion
print("Version calculated to be %s" % ourversion)
print("Latest release tag found is %s" % latestreltag)
print("Release series calculated to be %s" % ourseries)
replacements = {
"DISTRO" : ourversion,
"DISTRO_LATEST_TAG": latesttag,
"DISTRO_NAME_NO_CAP" : ourseries,
"DISTRO_NAME" : ourseries.capitalize(),
"DISTRO_NAME_NO_CAP_MINUS_ONE" : previousseries[0],
"DISTRO_NAME_NO_CAP_LTS" : lastlts[0],
"YOCTO_DOC_VERSION" : ourversion,
"DISTRO_REL_TAG" : "yocto-" + ourversion,
"DOCCONF_VERSION" : docconfver,
"BITBAKE_SERIES" : bitbakeversion,
}
@@ -316,3 +328,5 @@ with open('releases.rst', 'w') as f:
if tag == release_series[series] or tag.startswith('%s.' % release_series[series]):
f.write('- :yocto_docs:`%s Documentation </%s>`\n' % (tag, tag))
f.write('\n')

Some files were not shown because too many files have changed in this diff Show More