summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* build-appliance-image: Update to dunfell head revisionyocto-3.1.19dunfell-23.0.19Richard Purdie2022-08-221-1/+1
| | | | | | (From OE-Core rev: a3cba15142e98177119ef36c09f553d09acf35ef) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* poky.conf: bump version for 3.1.19 releaseSteve Sakoman2022-08-221-1/+1
| | | | | | | (From meta-yocto rev: 2de758bc8a4ead8e89619766d5096604b554f2c1) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* documentation: update for 3.1.19 releaseSteve Sakoman2022-08-221-5/+5
| | | | | | | (From yocto-docs rev: 95e030ec74f69eccabcc97737c8a93fd7629f9d9) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bitbake: fetch2/wget: Update user-agentChristophe Priouzeau2022-08-221-3/+8
| | | | | | | | | | | | | | | With the usage of enterprise proxy, the user-agent defined are too old and refused by proxy configuration. Updating to something more modern is desirable. (Bitbake rev: 17be38290d1e971cd89785e6bf44caef0a6416f8) Signed-off-by: Christophe Priouzeau <christophe.priouzeau@st.com> Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 7001fdd7c4dca372cbebd8fd2c0b03c5d43f9400) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* initscripts: run umountnfs as a KILL scriptShruthi Ravichandran2022-08-221-1/+1
| | | | | | | | | | | | | | | | | | | | `rc` runs all the KILL scripts in a runlevel before the START scripts. The umountnfs script is currently configured as a START script, and runs after the networking KILL script. During shutdown, this causes a ~3 minute timeout after networking is shutdown when the system tries to connect to and unmount any mounted network shares. Fix this by changing the script configuration to "stop" so that it can run before networking is stopped and unmount any network shares safely. (From OE-Core rev: e59c72d570102d72786e44c8ace69fd4d0e8e5ef) Signed-off-by: Shruthi Ravichandran <shruthi.ravichandran@ni.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit c419bd4537756e9f6c2fe6da3a9b798526e27eca) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* rootfs-postcommands.bbclass: move host-user-contaminated.txt to ${S}Ming Liu2022-08-221-1/+1
| | | | | | | | | | | | | | | This is to ensure host-user-contaminated.txt would be removed before do_rootfs runs, since ${S} is in cleandirs of do_rootfs, otherwise, a host-user-contaminated.txt file that generated from previous builds could be used which is wrong. (From OE-Core rev: 06cfa8be54c9aee23bd8570a370a974b463a0a1a) Signed-off-by: Ming Liu <liu.ming50@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit 54a3fd63e684d070fad962be97e549f3af7ac111) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bin_package: install into base_prefixPascal Bach2022-08-221-1/+2
| | | | | | | | | | | | This makes the bin_package.bbclass work properly with the native class. (From OE-Core rev: 0bf78a8e0e1cf7e74b55aca4db0e62dd9dfa55ce) Signed-off-by: Pascal Bach <pascal.bach@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit ad330b6d4b6e2ba051b5c6c437e07a183831f757) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kernel-arch: Fix buildpaths leaking into external module compilesRichard Purdie2022-08-221-1/+1
| | | | | | | | | | | | | | | Building external kernel modules like lttng-modules was showing build paths inside the debug symbols for the modules and breaking build reproducibility. Fix this by adding in the mapping needed to map the kernel build directory to something more approriate on target. (From OE-Core rev: c4d8834ed3d200f25f12fec8acfa2b954f3240e0) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit b56dc9009ba93174de6bf4c01e17808ef249dc5c) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-firwmare: restore WHENCE_CHKSUM variableDmitry Baryshkov2022-08-221-1/+4
| | | | | | | | | | | | | | | | | | | | | | Restore WHENCE_CHKSUM variable which is used to hold the WHENCE file checksum. It is necessary to allow easily overriding it from local.conf if the devupstream version is selected: PREFERRED_VERSION_linux-firmware = "1:20220708+git%" SRCREV:class-devupstream = "${AUTOREV}" WHENCE_CHKSUM:class-devupstream:pn-linux-firmware = "abf1077491eeb261ecdcb680a34fc059" Without the WHENCE_CHECKSUM one would need to manually patch the LIC_FILES_CHKSUM variable to change the checksum of WHENC (e.g. using the anonymous python function or remove expression). (From OE-Core rev: ba997f02b2cb86aeaa308873727a9280d1f88b5b) Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 554be2af1e0a03a2d23032d48afbbe0913a45409) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-firmware: update 20220610 -> 20220708Alexander Kanavin2022-08-221-11/+2
| | | | | | | | | | | | | | License-Update: a few obsolete firmware were dropped (particularly i2400m and tda7706), file list updates. (From OE-Core rev: a151460d9234d6cd0bd1920c48aff8c78454931a) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit e89fb37e13fcb832ee7d35e7d92d45eaca20689e) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* vim: update from 9.0.0063 to 9.0.0115Randy MacLeod2022-08-223-92/+2
| | | | | | | | | | | | | | | | | | | | Drop crosscompile.patch which was merged as part of: 509695c1c (tag: v9.0.0065) patch 9.0.0065: \ cross-compiling doesn't work because of timer_create check Also drop: racefix.patch which may have been fixed upstream and is being tracked by: https://github.com/vim/vim/pull/10776 where upstream is asking if the different approach resolves the race condition. Let's see what's out there! (From OE-Core rev: 083d6de4139859a5eb66f78c2a62a1d59c8aee35) Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> (cherry picked from commit 6996472cd33d2d4b91821f2dfe24a27a697e4afe) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* vim: Upgrade 9.0.0021 -> 9.0.0063Richard Purdie2022-08-223-6/+67
| | | | | | | | | | | | | | | | | | Pulls in several CVE fixes. Added a patch to avoid timer_create cross compile issue (and submitted upstream). Also submit the race fix upstream. We disable timer_create in the native case since some systems have it and some don't so this makes us consistent. Change from master commit: we also disable timer_create in the target case since the function isn't available in our glibc. (From OE-Core rev: f99677f79449032a3b0ea79d704fdccbd5be68b7) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit d0c1de084c7ce030d47a428e4bbfbc4ce2996057) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* zlib: CVE-2022-37434 a heap-based buffer over-readHitendra Prajapati2022-08-222-0/+45
| | | | | | | | | | | | | | | | Source: https://github.com/madler/zlib MR: 120531 Type: Security Fix Disposition: Backport from https://github.com/madler/zlib/commit/eff308af425b67093bab25f80f1ae950166bece1 & https://github.com/madler/zlib/commit/1eb7682f845ac9e9bf9ae35bbfb3bad5dacbd91d ChangeID: 364c17d74213c64fe40b9b37ee78aa172ff93acf Description: CVE-2022-37434 zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. (From OE-Core rev: 10ed7cf347d9e73b29e4a3f6ef77e0a4b08e350b) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnutls: CVE-2022-2509 Double free during gnutls_pkcs7_verifyHitendra Prajapati2022-08-222-0/+283
| | | | | | | | | | | | | | | | Source: https://gitlab.com/gnutls/gnutls MR: 120421 Type: Security Fix Disposition: Backport from https://gitlab.com/gnutls/gnutls/-/commit/ce37f9eb265dbe9b6d597f5767449e8ee95848e2 ChangeID: f0c84c6aa8178582ac9838c453dacdf2c7cae0e5 Description: CVE-2022-2509 gnutls: Double free during gnutls_pkcs7_verify. (From OE-Core rev: 4cac37913d08f433668778e788f01e009dbb94bd) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemu: CVE-2020-27821 heap buffer overflow in msix_table_mmio_writeHitendra Prajapati2022-08-222-0/+74
| | | | | | | | | | | | | | | | Source: https://git.qemu.org/?p=qemu.git; MR: 107558 Type: Security Fix Disposition: Backport from https://git.qemu.org/?p=qemu.git;a=commit;h=4bfb024bc76973d40a359476dc0291f46e435442 ChangeID: c5d25422f43edb7d8728118eb482eba09474ef2c Description: CVE-2020-27821 qemu: heap buffer overflow in msix_table_mmio_write() in hw/pci/msix.c. (From OE-Core rev: 198bd53bdc77d2b01dae19993bde79f03f4dd02c) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gstreamer1.0: use the correct meson option for the capabilitiesJose Quaresma2022-08-181-1/+1
| | | | | | | | | | (From OE-Core rev: ac6ea1a96645d2a4dd54660256603f0b191bb4d3) Signed-off-by: Jose Quaresma <quaresma.jose@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit baeab0f51ecc19fb85101c4bd472f0650231d0de) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libxml2: Port gentest.py to Python-3Martin Jansa2022-08-182-0/+824
| | | | | | | | | | | | | | | * but it still won't work well on hosts without libxml2, make sure to use pre-generated testapi.c in do_compile_ptest * this is reproducible with SOURCE_DATE_EPOCH set to 0 which e.g. meta-updater still sets by default for DISTROs which use it :(, see https://github.com/uptane/meta-updater/pull/35 (From OE-Core rev: 2f78dbcb300e7deae6cf39263e874ee8776d7a7b) Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* selftest: skip virgl test on fedora 36Steve Sakoman2022-08-181-0/+2
| | | | | | | | | This test will fail any time the host has libdrm > 2.4.107 (From OE-Core rev: 33d006ed8d93ea4c185d6b28a72b2d252fbb5ae1) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssh: Add openssh-sftp-server to openssh RDEPENDSAlex Kiernan2022-08-181-1/+1
| | | | | | | | | | | | | | | OpenSSH 9.0 uses sftp by default as the transport for scp, add in sftp-server so that this works as expected for users, rather than being left with a confusing "scp: Connection closed" message. (From OE-Core rev: 788e2c6bccc58e5a88b33fa91ea3c3ffec7611ca) Signed-off-by: Alex Kiernan <alexk@zuma.ai> Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit be61b9dac78f0d85c870a0d8304fb4b536ec4bc8) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libmodule-build-perl: Use env utility to find perl interpreterKhem Raj2022-08-181-0/+1
| | | | | | | | | | | | | | Fixes ERROR: QA Issue: : /work/x86_64-linux/libmodule-build-perl-native/0.4231-r0/sysroot-destdir/work/x86_64-linux/libmodule-build-perl-native/0.4231-r0/recipe-sysroot-native/usr/bin/config_data maximum shebang size exceeded, the maximum size is 128. [shebang-size] (From OE-Core rev: f11ed8c8fd78b88a50f382df419afff6ccde02a0) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 54ecb2d3f2523293383103cbe590ebdd037ee483) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* insane: Fix buildpaths test to work with special devicesRichard Purdie2022-08-181-2/+4
| | | | | | | | | | | | | | If enabled, the buildpaths test hangs in psplash as it tries to open a fifo and read from it, hanging indefinitely. Tweak the test to ignore fifo/socket/device files. (From OE-Core rev: 0106c6a629d0a9f07d76ffaad2dc92e48021e1b0) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 2567edb7e0a8c5ca9a88d6940491bf33bfe0eff9) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/5.4: update to v5.4.209Bruce Ashfield2022-08-183-15/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Updating to the latest korg -stable release that comprises the following commits: 8d8935e76f6f Linux 5.4.209 0b0088e47587 scsi: core: Fix race between handling STS_RESOURCE and completion 85fe8623f061 mt7601u: add USB device ID for some versions of XiaoDu WiFi Dongle. d5a596c148b3 ARM: crypto: comment out gcc warning that breaks clang builds 8d6dab81ee3d sctp: leave the err path free in sctp_stream_init to sctp_stream_free a49282eca8ab sfc: disable softirqs for ptp TX 7799f742f24b perf symbol: Correct address for bss symbols 388b3f14ff60 virtio-net: fix the race between refill work and close 52be29e8b645 netfilter: nf_queue: do not allow packet truncation below transport header offset 8e0ed463dbd5 sctp: fix sleep in atomic context bug in timer handlers bc135e464dee i40e: Fix interface init with MSI interrupts (no MSI-X) 46462e26e65f tcp: Fix a data-race around sysctl_tcp_comp_sack_nr. d42f68a9ceb4 tcp: Fix a data-race around sysctl_tcp_comp_sack_delay_ns. c2b57a4d3ff6 Documentation: fix sctp_wmem in ip-sysctl.rst 2d30375343b6 tcp: Fix a data-race around sysctl_tcp_invalid_ratelimit. 5d235c2fc295 tcp: Fix a data-race around sysctl_tcp_autocorking. e02c7ee5a430 tcp: Fix a data-race around sysctl_tcp_min_rtt_wlen. 558a2949608f tcp: Fix a data-race around sysctl_tcp_min_tso_segs. fb200869eabe net: sungem_phy: Add of_node_put() for reference returned by of_get_parent() e20dd1b0e0ea igmp: Fix data-races around sysctl_igmp_qrv. 73e5a0b59129 ipv6/addrconf: fix a null-ptr-deref bug for ip6_ptr 421e5dd1f12e net: ping6: Fix memleak in ipv6_renew_options(). 3d492b008b3d tcp: Fix a data-race around sysctl_tcp_challenge_ack_limit. dfdc635d55f9 tcp: Fix a data-race around sysctl_tcp_limit_output_bytes. d62e255ecc33 scsi: ufs: host: Hold reference returned by of_parse_phandle() b1343528c7ae ice: do not setup vlan for loopback VSI 15d019860159 ice: check (DD | EOF) bits on Rx descriptor rather than (EOP | RS) cd23a2ad7b7c tcp: Fix a data-race around sysctl_tcp_nometrics_save. f9a03fd8ed31 tcp: Fix a data-race around sysctl_tcp_frto. 3be498bcf6ea tcp: Fix a data-race around sysctl_tcp_adv_win_scale. f4b83df01105 tcp: Fix a data-race around sysctl_tcp_app_win. f240d0cad26c tcp: Fix data-races around sysctl_tcp_dsack. b9f937d3d54d s390/archrandom: prevent CPACF trng invocations in interrupt context 911904c577e0 ntfs: fix use-after-free in ntfs_ucsncmp() 098e07ef0059 Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put (From OE-Core rev: bd55001d9f895c7d52fedc7d1d2eb7b2ad7032b1) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/5.4: update to v5.4.208Bruce Ashfield2022-08-183-18/+18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Updating to the latest korg -stable release that comprises the following commits: 77ba2b9b46f8 Linux 5.4.208 ca5762c5896e x86: drop bogus "cc" clobber from __try_cmpxchg_user_asm() f88d8c188229 net: usb: ax88179_178a needs FLAG_SEND_ZLP f7785092cb7f tty: use new tty_insert_flip_string_and_push_buffer() in pty_write() 815d936e92f9 tty: extract tty_flip_buffer_commit() from tty_flip_buffer_push() 2ea77b0b6d22 tty: drop tty_schedule_flip() f20912215c9c tty: the rest, stop using tty_schedule_flip() aa60c0cce8b4 tty: drivers/tty/, stop using tty_schedule_flip() 126137a53d7e Bluetooth: Fix bt_skb_sendmmsg not allocating partial chunks 836b47e6436b Bluetooth: SCO: Fix sco_send_frame returning skb->len aa2d34cab3e6 Bluetooth: Fix passing NULL to PTR_ERR 10bacb891722 Bluetooth: RFCOMM: Replace use of memcpy_from_msg with bt_skb_sendmmsg bf46574d4655 Bluetooth: SCO: Replace use of memcpy_from_msg with bt_skb_sendmsg f00b06003b11 Bluetooth: Add bt_skb_sendmmsg helper 55bf99849be0 Bluetooth: Add bt_skb_sendmsg helper 015af30d373d ALSA: memalloc: Align buffer allocations in page size 352affc31e26 bitfield.h: Fix "type of reg too small for mask" test 0a0fbbd6cb65 x86/mce: Deduplicate exception handling b524137fa1d8 mmap locking API: initial implementation as rwsem wrappers 592a1c6066dd x86/uaccess: Implement macros for CMPXCHG on user addresses 1d778b54a5c0 x86: get rid of small constant size cases in raw_copy_{to,from}_user() d0d583484d2e locking/refcount: Consolidate implementations of refcount_t dab787c73f6e locking/refcount: Consolidate REFCOUNT_{MAX,SATURATED} definitions 0d3182fbe689 locking/refcount: Move saturation warnings out of line 809554147d60 locking/refcount: Improve performance of generic REFCOUNT_FULL code 9c9269977f03 locking/refcount: Move the bulk of the REFCOUNT_FULL implementation into the <linux/refcount.h> header 04bff7d7b808 locking/refcount: Remove unused refcount_*_checked() variants 513b19a43bec locking/refcount: Ensure integer operands are treated as signed 68b4ee68e8c8 locking/refcount: Define constants for saturation and max refcount values 3f71d0e292eb ima: remove the IMA_TEMPLATE Kconfig option bc7581e36d40 dlm: fix pending remove if msg allocation fails 4f1d21c77b15 bpf: Make sure mac_header was set before using it a1f8765f68bc mm/mempolicy: fix uninit-value in mpol_rebind_policy() 76668d2a2f36 spi: bcm2835: bcm2835_spi_handle_err(): fix NULL pointer deref for non DMA transfers 50a1d3d09750 tcp: Fix data-races around sysctl_tcp_max_reordering. c64b99819de4 tcp: Fix a data-race around sysctl_tcp_rfc1337. 6cc566df6806 tcp: Fix a data-race around sysctl_tcp_stdurg. 7f68bed16c7b tcp: Fix a data-race around sysctl_tcp_retrans_collapse. 369d99c2b89f tcp: Fix data-races around sysctl_tcp_slow_start_after_idle. 492f3713b282 tcp: Fix a data-race around sysctl_tcp_thin_linear_timeouts. 92c35113c633 tcp: Fix data-races around sysctl_tcp_recovery. 83767fe800a3 tcp: Fix a data-race around sysctl_tcp_early_retrans. 795aee11fda4 tcp: Fix data-races around sysctl knobs related to SYN option. f39b03bd727a udp: Fix a data-race around sysctl_udp_l3mdev_accept. 6727f39e99e0 ipv4: Fix a data-race around sysctl_fib_multipath_use_neigh. a8569f76df7e be2net: Fix buffer overflow in be_get_module_eeprom 91d6aa19dd72 gpio: pca953x: only use single read/write for No AI mode 031af9e617a6 ixgbe: Add locking to prevent panic when setting sriov_numvfs to zero 55a2a28b3285 i40e: Fix erroneous adapter reinitialization during recovery process d88d59faf4e6 iavf: Fix handling of dummy receive descriptors 25d53d858a6c tcp: Fix data-races around sysctl_tcp_fastopen. 78420d8e46df tcp: Fix data-races around sysctl_max_syn_backlog. dc58e68d1e26 tcp: Fix a data-race around sysctl_tcp_tw_reuse. e9362a993886 tcp: Fix a data-race around sysctl_tcp_notsent_lowat. b0d9f04c870e tcp: Fix data-races around some timeout sysctl knobs. ea309c467dac tcp: Fix data-races around sysctl_tcp_reordering. b222de2560ab tcp: Fix data-races around sysctl_tcp_syncookies. ff55c025e647 igmp: Fix a data-race around sysctl_igmp_max_memberships. 1656ecaddf90 igmp: Fix data-races around sysctl_igmp_llm_reports. 2aad2c5745ec net/tls: Fix race in TLS device down flow 573768dede0e net: stmmac: fix dma queue left shift overflow issue 911b81fca2d7 i2c: cadence: Change large transfer count reset logic to be unconditional 73a11588751a tcp: Fix a data-race around sysctl_tcp_probe_interval. b04817c94fbd tcp: Fix a data-race around sysctl_tcp_probe_threshold. 033963b22063 tcp: Fix a data-race around sysctl_tcp_mtu_probe_floor. fdb96b69f590 tcp: Fix data-races around sysctl_tcp_min_snd_mss. 30b73edc1d24 tcp: Fix data-races around sysctl_tcp_base_mss. f966773e13cd tcp: Fix data-races around sysctl_tcp_mtu_probing. a7386602a2fe tcp/dccp: Fix a data-race around sysctl_tcp_fwmark_accept. 25a635a67c83 ip: Fix a data-race around sysctl_fwmark_reflect. 281de3719986 ip: Fix data-races around sysctl_ip_nonlocal_bind. 7828309df0f8 ip: Fix data-races around sysctl_ip_fwd_use_pmtu. 5af6d9226376 ip: Fix data-races around sysctl_ip_no_pmtu_disc. 16cb6717f4f4 igc: Reinstate IGC_REMOVED logic and implement it properly 98c3c8fd0d4c perf/core: Fix data race between perf_event_set_output() and perf_mmap_close() 6194c021496a pinctrl: ralink: Check for null return of devm_kcalloc 78bdf732cf5d power/reset: arm-versatile: Fix refcount leak in versatile_reboot_probe f4248bdb7d5c xfrm: xfrm_policy: fix a possible double xfrm_pols_put() in xfrm_bundle_lookup() c68f6e2e4fda serial: mvebu-uart: correctly report configured baudrate value 2230428fb866 PCI: hv: Fix interrupt mapping for multi-MSI 7121d7120fd4 PCI: hv: Reuse existing IRTE allocation in compose_msi_msg() 584c9d41800b PCI: hv: Fix hv_arch_irq_unmask() for multi-MSI 8e94cc883011 PCI: hv: Fix multi-MSI to allow more than one MSI vector 3048666143be xen/gntdev: Ignore failure to unmap INVALID_GRANT_HANDLE ed3fea55066b lockdown: Fix kexec lockdown bypass with ima policy c3856fe718ad mlxsw: spectrum_router: Fix IPv4 nexthop gateway indication c3dc75118445 riscv: add as-options for modules with assembly compontents e5a6b05d0c68 pinctrl: stm32: fix optional IRQ support to gpios 002c3bbb4713 Linux 5.4.207 08d90846e438 can: m_can: m_can_tx_handler(): fix use after free of skb 579c8a2e6361 serial: pl011: UPSTAT_AUTORTS requires .throttle/unthrottle 0c8649a49788 serial: stm32: Clear prev values before setting RTS delays f4c7f5028b48 serial: 8250: fix return error code in serial8250_request_std_resource() 07379bd79d86 tty: serial: samsung_tty: set dma burst_size to 1 edcb2612218d usb: dwc3: gadget: Fix event pending check 40034fe6b8a7 usb: typec: add missing uevent when partner support PD 42373b717a3f USB: serial: ftdi_sio: add Belimo device ids cbc98dcc38e2 signal handling: don't use BUG_ON() for debugging 172cd32ada70 ARM: dts: stm32: use the correct clock source for CEC on stm32mp151 c7d4b3ec6306 soc: ixp4xx/npe: Fix unused match warning a3c7c1a726a4 x86: Clear .brk area at early boot 549f70b29953 irqchip: or1k-pic: Undefine mask_ack for level triggered hardware b0f41db50084 ASoC: madera: Fix event generation for rate controls 79067a663247 ASoC: madera: Fix event generation for OUT1 demux 0e7e515a6733 ASoC: cs47l15: Fix event generation for low power mux control 20b921f22a8b ASoC: wm5110: Fix DRE control f298d2e4c60c ASoC: ops: Fix off by one in range control validation ede990cfc427 net: sfp: fix memory leak in sfp_probe() 555cee1bc40b nvme: fix regression when disconnect a recovering ctrl 08082a642aaa NFC: nxp-nci: don't print header length mismatch on i2c error 4919d82f7041 net: tipc: fix possible refcount leak in tipc_sk_create() 70d8aee1de6e platform/x86: hp-wmi: Ignore Sanitization Mode event 8dda30f81c75 cpufreq: pmac32-cpufreq: Fix refcount leak bug b749af1b8f11 netfilter: br_netfilter: do not skip all hooks with 0 priority 0c9203e75dae virtio_mmio: Restore guest page size on resume 569f1ee032c9 virtio_mmio: Add missing PM calls to freeze/restore 70433d9ea6ff mm: sysctl: fix missing numa_stat when !CONFIG_HUGETLB_PAGE da346adcf557 sfc: fix kernel panic when creating VF ba60ca0ed12e seg6: bpf: fix skb checksum in bpf_push_seg6_encap() de7849d9de1d seg6: fix skb checksum in SRv6 End.B6 and End.B6.Encaps behaviors 487f0f77f1cd seg6: fix skb checksum evaluation in SRH encapsulation/insertion bcad880865bf sfc: fix use after free when disabling sriov b8d77f2396d5 net: ftgmac100: Hold reference returned by of_get_child_by_name() 9b61d3f6df1b ipv4: Fix data-races around sysctl_ip_dynaddr. cc9540ba5b36 raw: Fix a data-race around sysctl_raw_l3mdev_accept. df691b991043 icmp: Fix a data-race around sysctl_icmp_ratemask. 8bc1f6871490 icmp: Fix a data-race around sysctl_icmp_ratelimit. 3093a6fe3170 drm/i915/gt: Serialize TLB invalidates with GT resets 40d58aad2f66 ARM: dts: sunxi: Fix SPI NOR campatible on Orange Pi Zero bf676c940865 ARM: dts: at91: sama5d2: Fix typo in i2s1 node 7c1acd98fb22 ipv4: Fix a data-race around sysctl_fib_sync_mem. 0cba7ca667ce icmp: Fix data-races around sysctl. 0e41a0f73ccb cipso: Fix data-races around sysctl. 861f1852af6d net: Fix data-races around sysctl_mem. 8d2daf565f61 inetpeer: Fix data-races around sysctl. 2968830c9b47 net: stmmac: dwc-qos: Disable split header for Tegra194 1273fd5153e8 ASoC: sgtl5000: Fix noise on shutdown/remove 388f3df7c3c8 ima: Fix a potential integer overflow in ima_appraise_measurement 72f231b9a88a drm/i915: fix a possible refcount leak in intel_dp_add_mst_connector() 0f02e7c02bb0 ARM: 9210/1: Mark the FDT_FIXED sections as shareable 41ea241fb3c2 ARM: 9209/1: Spectre-BHB: avoid pr_info() every time a CPU comes out of idle 851730a1989f ARM: dts: imx6qdl-ts7970: Fix ngpio typo and count 18881d7e5171 ext4: fix race condition between ext4_write and ext4_convert_inline_data 423f2695007d sched/rt: Disable RT_RUNTIME_SHARE by default 31e99fa969fd Revert "evm: Fix memleak in init_desc" d85d19f3b664 nilfs2: fix incorrect masking of permission flags for symlinks 393594aad551 drm/panfrost: Fix shrinker list corruption by madvise IOCTL ad44e05f3e01 cgroup: Use separate src/dst nodes when preloading css_sets for migration 444be5a02b77 wifi: mac80211: fix queue selection for mesh/OCB interfaces dba548476909 ARM: 9214/1: alignment: advance IT state after emulating Thumb instruction b4d99aa5ae90 ARM: 9213/1: Print message about disabled Spectre workarounds only once 2c1cc40fb2a1 ip: fix dflt addr selection for connected nexthop fb5a7f1548d6 net: sock: tracing: Fix sock_exceed_buf_limit not to dereference stale pointer ecc6dec12c33 tracing/histograms: Fix memory leak problem 7425479d20f9 xen/netback: avoid entering xenvif_rx_next_skb() with an empty rx queue 9026b280eb7f ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop bbb82d4d9b3d ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc221 7e2fbf2d9b61 ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 33d33a66e31c ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model 5e7cc47ab923 ALSA: hda - Add fixup for Dell Latitidue E5430 658410791556 Linux 5.4.206 15a3adfe7593 Revert "mtd: rawnand: gpmi: Fix setting busy timeout setting" (From OE-Core rev: b98028117b82aab650affb0538e77bb69fb5fdf8) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cve_check: skip remote patches that haven't been fetched when searching for ↵Ross Burton2022-08-181-2/+3
| | | | | | | | | | | | | | | | | | | | CVE tags If a remote patch is compressed we need to have run the unpack task for the file to exist locally. Currently cve_check only depends on fetch so instead of erroring out, emit a warning that this file won't be scanned for CVE references. Typically, remote compressed patches won't contain our custom tags, so this is unlikely to be an issue. (From OE-Core rev: a2d03f445c45558997484240d2549eaa1e103692) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit cefc8741438c91f74264da6b59dece2e31f9e5a5) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gdk-pixbuf: CVE-2021-46829 a heap-based buffer overflowHitendra Prajapati2022-08-182-0/+62
| | | | | | | | | | | | | | | | Source: https://gitlab.gnome.org/GNOME/gdk-pixbuf MR: 120380 Type: Security Fix Disposition: Backport from https://gitlab.gnome.org/GNOME/gdk-pixbuf/-/commit/5398f04d772f7f8baf5265715696ed88db0f0512 ChangeID: d8a843bcf97268ee4f0c6870f1339790a9a908e5 Description: CVE-2021-46829 gdk-pixbuf: a heap-based buffer overflow when compositing or clearing frames in GIF files. (From OE-Core rev: ef3f5fba3c3b5e8b16d6b8b7721468e61c65f72f) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* grub2: Fix several security issue of integer underflowHitendra Prajapati2022-08-184-0/+405
| | | | | | | | | | | | | | | | | | | Source: https://git.savannah.gnu.org/gitweb/?p=grub.git MR: 119763, 119779, 119807 Type: Security Fix Disposition: Backport from https://git.savannah.gnu.org/gitweb/?p=grub.git;a=commit;h=3e4817538de828319ba6d59ced2fbb9b5ca13287 && https://git.savannah.gnu.org/gitweb/?p=grub.git;a=commit;h=b26b4c08e7119281ff30d0fb4a6169bd2afa8fe4 && https://git.savannah.gnu.org/gitweb/?p=grub.git;a=commit;h=04c86e0bb7b58fc2f913f798cdb18934933e532d ChangeID: ef7c28bc7b4eb32550df2cf49082791dac64ef1b Description: Fix CVEs: CVE-2022-28733 CVE-2022-28734 CVE-2022-28736 (From OE-Core rev: 4608413d460fa351d583c357fbc9b1957cb3d1d6) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libtirpc: CVE-2021-46828 DoS vulnerability with lots of connectionsHitendra Prajapati2022-08-082-1/+158
| | | | | | | | | | | | | | | | Source: http://git.linux-nfs.org/?p=steved/libtirpc.git; MR: 120231 Type: Security Fix Disposition: Backport from http://git.linux-nfs.org/?p=steved/libtirpc.git;a=commit;h=86529758570cef4c73fb9b9c4104fdc510f701ed ChangeID: 544120a5f10a4717cd2c7291821a012e26b14b7f Description: CVE-2021-46828 libtirpc: DoS vulnerability with lots of connections. (From OE-Core rev: 73d2b640ad665f6ff3c4fbe8f5da4ef0dbb175f2) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libTiff: CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 DoS from Divide By Zero ErrorHitendra Prajapati2022-08-082-0/+184
| | | | | | | | | | | | | | | | Source: https://gitlab.com/libtiff/libtiff MR: 119341 Type: Security Fix Disposition: Backport from https://gitlab.com/libtiff/libtiff/-/commit/dd1bcc7abb26094e93636e85520f0d8f81ab0fab ChangeID: 6cea4937a34a618567a42cef8c41961ade2f3a07 Description: CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 libTiff: DoS from Divide By Zero Error. (From OE-Core rev: 429c2c89b65b8e226d4e0d6f94d43300989c143e) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemu: CVE-2022-35414 can perform an uninitialized read on the translate_fail ↵Hitendra Prajapati2022-08-082-0/+54
| | | | | | | | | | | | | | | | | | path, leading to an io_readx or io_writex crash Source: https://github.com/qemu/qemu MR: 119832 Type: Security Fix Disposition: Backport from https://github.com/qemu/qemu/commit/418ade7849ce7641c0f7333718caf5091a02fd4c ChangeID: 1246afd7bb950d2d5fe2e198961797c0fa14ac00 Description: CVE-2022-35414 qemu: can perform an uninitialized read on the translate_fail path, leading to an io_readx or io_writex crash. (From OE-Core rev: 7c3043df56b3090138fe56f8c06df5ca08cafd26) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* grub2: Fix buffer underflow write in the heapHitendra Prajapati2022-08-084-1/+310
| | | | | | | | | | | | | | | | | | | | | Source: https://git.savannah.gnu.org/gitweb/?p=grub.git MR: 119719, 119733, 119689 Type: Security Fix Disposition: Backport from https://git.savannah.gnu.org/gitweb/?p=grub.git;a=commit;h=e623866d9286410156e8b9d2c82d6253a1b22d08 && https://git.savannah.gnu.org/gitweb/?p=grub.git;a=commit;h=210245129c932dc9e1c2748d9d35524fb95b5042 && https://git.savannah.gnu.org/gitweb/?p=grub.git;a=commit;h=22a3f97d39f6a10b08ad7fd1cc47c4dcd10413f6 ChangeID: 97605970cd42776fa449fd8318f2762e32bbd177 Description: Fixed CVEs : CVE-2021-3695 CVE-2021-3696 CVE-2021-3697 Affects "grub2 < 2.06" (From OE-Core rev: 191db3c58b52fa7c8530d82f7e3e3b24075fdeb4) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kernel-fitimage.bbclass: add padding algorithm property in config nodesLUIS ENRIQUEZ2022-08-081-0/+5
| | | | | | | | | | | This allows choosing padding algorithm when building fitImage. It may be pkcs-1.5 or pss. (From OE-Core rev: 152765b74c77b4da102fce9c4c61a667e71f26a1) Signed-off-by: LUIS ENRIQUEZ <luis.enriquez@se.com> From: LUIS ENRIQUEZ <luis.enriquez@se.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libjpeg-turbo: Fix CVE-2021-46822Sana.Kazi2022-08-082-0/+134
| | | | | | | | | | | Add patch to fix CVE-2021-46822 Link: https://github.com/libjpeg-turbo/libjpeg-turbo/commit/f35fd27ec641c42d6b115bfa595e483ec58188d2.patch (From OE-Core rev: 80d14a9aaff273daca68c2e860701d51fee45851) Signed-off-by: Bhabu Bindu <bhabu.bindu@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: CVE-2022-34903 possible signature forgery via injection into the ↵Hitendra Prajapati2022-08-082-0/+45
| | | | | | | | | | | | | | | | | | status line Source: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git MR: 119424 Type: Security Fix Disposition: Backport from https://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=34c649b3601383cd11dbc76221747ec16fd68e1b ChangeID: 97de66d6aa74e12cb1bf82fe85ee62e2530fccf6 Description: CVE-2022-34903 gnupg: possible signature forgery via injection into the status line. (From OE-Core rev: 2bf155d59e33972bbb1780e34753199b5a9192a0) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* build-appliance-image: Update to dunfell head revisionyocto-3.1.18dunfell-23.0.18Richard Purdie2022-07-251-1/+1
| | | | | | (From OE-Core rev: 3f40d5f095ceb099b604750db96058df00fcd49e) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* poky.conf: bump version for 3.1.18 releaseSteve Sakoman2022-07-251-1/+1
| | | | | | | (From meta-yocto rev: 57d6803aaf475552a827d322d90d1f07ba73a97d) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto-rt/5.4: fixup -rt build breakageBruce Ashfield2022-07-251-1/+1
| | | | | | | | | | | | Integrating the following commit(s) to linux-yocto/5.4: cc478e363cc3 rt: fixup random and irq/manage merge issues (From OE-Core rev: 597eef3b2f6cb884c474c44e87b1137e6acbe6b5) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/5.4: update to v5.4.205Bruce Ashfield2022-07-253-18/+18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Updating to the latest korg -stable release that comprises the following commits: 0ec831fa971d Linux 5.4.205 1be11d7f3c89 dmaengine: ti: Add missing put_device in ti_dra7_xbar_route_allocate b31ab132561c dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate f19026ede26e dmaengine: at_xdma: handle errors of at_xdmac_alloc_desc() correctly 164e88024f82 dmaengine: pl330: Fix lockdep warning about non-static key 5af3f2a697d5 ida: don't use BUG_ON() for debugging d88022b41eff dt-bindings: dma: allwinner,sun50i-a64-dma: Fix min/max typo aaf875578fd9 misc: rtsx_usb: set return value in rsp_buf alloc err path 29612c43a2c5 misc: rtsx_usb: use separate command and response buffers 0e517d0d7feb misc: rtsx_usb: fix use of dma mapped buffer for usb bulk transfer 858c2d070895 dmaengine: imx-sdma: Allow imx8m for imx7 FW revs 67586906893c i2c: cadence: Unregister the clk notifier in error path acb72388aed5 selftests: forwarding: fix error message in learning_test 7adf3d45c460 selftests: forwarding: fix learning_test when h1 supports IFF_UNICAST_FLT 681738560bf2 selftests: forwarding: fix flood_unicast_test when h2 supports IFF_UNICAST_FLT 0711d15ccb27 ibmvnic: Properly dispose of all skbs during a failover. aa698affa62c ARM: at91: pm: use proper compatibles for sam9x60's rtc and rtt 6b4747d5af43 ARM: at91: pm: use proper compatible for sama5d2's rtc 123540275034 pinctrl: sunxi: sunxi_pconf_set: use correct offset 12a690536931 pinctrl: sunxi: a83t: Fix NAND function name for some pins 3cf8ece91132 ARM: meson: Fix refcount leak in meson_smp_prepare_cpus c465bbcd3c74 xfs: remove incorrect ASSERT in xfs_rename 845dac0276a5 can: kvaser_usb: kvaser_usb_leaf: fix bittiming limits 9afdff9dd820 can: kvaser_usb: kvaser_usb_leaf: fix CAN clock frequency regression 93f228fcbef2 can: kvaser_usb: replace run-time checks with struct kvaser_usb_driver_info 0adb049bac09 powerpc/powernv: delay rng platform device creation until later in boot 782b65ee7bbe video: of_display_timing.h: include errno.h af93e8219734 fbcon: Prevent that screen size is smaller than font size 4f34f380f952 fbcon: Disallow setting font bigger than screen size 997d86cd3e39 fbmem: Check virtual screen sizes in fb_set_var() 407c1b491fbd fbdev: fbmem: Fix logo center image dx issue 14ff1184310f iommu/vt-d: Fix PCI bus rescan device hot add 800bb66ab275 net: rose: fix UAF bug caused by rose_t0timer_expiry 04894ab34faf usbnet: fix memory leak in error case 6f655b5e13fa can: gs_usb: gs_usb_open/close(): fix memory leak eb7bbd7728da can: grcan: grcan_probe(): remove extra of_node_get() 5b48f5711f1c can: bcm: use call_rcu() instead of costly synchronize_rcu() e7e3e90d6710 mm/slub: add missing TID updates on slab deactivation 3defefd22ad5 esp: limit skb_page_frag_refill use to a single page 49286fbdad47 Linux 5.4.204 0ac2845937ce clocksource/drivers/ixp4xx: remove EXPORT_SYMBOL_GPL from ixp4xx_timer_setup() d40057538bee net: usb: qmi_wwan: add Telit 0x1070 composition ea89a522b4cc net: usb: qmi_wwan: add Telit 0x1060 composition 5c03cad51b84 xen/arm: Fix race in RB-tree based P2M accounting 60ac50daad36 xen/blkfront: force data bouncing when backend is untrusted ede57be88a5f xen/netfront: force data bouncing when backend is untrusted 04945b5beb73 xen/netfront: fix leaking data in shared pages 42112e8f9461 xen/blkfront: fix leaking data in shared pages b7c996abe545 selftests/rseq: Change type of rseq_offset to ptrdiff_t dc2825288012 selftests/rseq: x86-32: use %gs segment selector for accessing rseq thread area f89d15c9861c selftests/rseq: x86-64: use %fs segment selector for accessing rseq thread area 618da2318e15 selftests/rseq: Fix: work-around asm goto compiler bugs 58082d4e8186 selftests/rseq: Remove arm/mips asm goto compiler work-around 1c9f13880f47 selftests/rseq: Fix warnings about #if checks of undefined tokens 6f87493c3aa6 selftests/rseq: Fix ppc32 offsets by using long rather than off_t 4e9c8fd7f7f0 selftests/rseq: Fix ppc32 missing instruction selection "u" and "x" for load/store d0ca70238f40 selftests/rseq: Fix ppc32: wrong rseq_cs 32-bit field pointer on big endian 20e2f0108539 selftests/rseq: Uplift rseq selftests for compatibility with glibc-2.35 71c04fdf59ca selftests/rseq: Introduce thread pointer getters f491e073b992 selftests/rseq: Introduce rseq_get_abi() helper 158d91ffe0be selftests/rseq: Remove volatile from __rseq_abi 7037c511f67d selftests/rseq: Remove useless assignment to cpu variable 9aa134cb66b4 selftests/rseq: introduce own copy of rseq uapi header 8417f4475959 selftests/rseq: remove ARRAY_SIZE define from individual tests b13119007056 rseq/selftests,x86_64: Add rseq_offset_deref_addv() 7b6bffcfb9d3 ipv6/sit: fix ipip6_tunnel_get_prl return value 05387c4ff568 sit: use min e99a98616191 net: dsa: bcm_sf2: force pause link settings ac9cd4f66a4d hwmon: (ibmaem) don't call platform_device_del() if platform_device_add() fails ee25841221c1 xen/gntdev: Avoid blocking in unmap_grant_pages() 5eac00ef2a11 net: tun: avoid disabling NAPI twice 8f968872ec34 NFC: nxp-nci: Don't issue a zero length i2c_master_read() 37287fd28fb0 nfc: nfcmrvl: Fix irq_of_parse_and_map() return value 893825289ba8 net: bonding: fix use-after-free after 802.3ad slave unbind 6fdef80e7eaa net: bonding: fix possible NULL deref in rlb code bb1dc7cc576e net/sched: act_api: Notify user space if any actions were flushed before error 3b2ddeb89fe7 netfilter: nft_dynset: restore set element counter when failing to update 5b3a1c6bca38 s390: remove unneeded 'select BUILD_BIN2C' bdecd912e99a PM / devfreq: exynos-ppmu: Fix refcount leak in of_get_devfreq_events e1284ec4a6d7 caif_virtio: fix race between virtio_device_ready() and ndo_open() 9204bc3e8722 net: ipv6: unexport __init-annotated seg6_hmac_net_init() 7a79f71f6931 usbnet: fix memory allocation in helpers 5af106f8e072 linux/dim: Fix divide by 0 in RDMA DIM 85d7d672e896 RDMA/qedr: Fix reporting QP timeout attribute ea0519bc578d net: tun: stop NAPI when detaching queues a8cf91902237 net: tun: unlink NAPI from device on destruction 22e75461014b selftests/net: pass ipv6_args to udpgso_bench's IPv6 TCP test 1d877327da33 virtio-net: fix race between ndo_open() and virtio_device_ready() 7f89bb5d7102 net: usb: ax88179_178a: Fix packet receiving bb91556d2af0 net: rose: fix UAF bugs caused by timer handler 76a477d39836 SUNRPC: Fix READ_PLUS crasher 13816057eaf2 s390/archrandom: simplify back to earlier design and initialize earlier f157bd9cf377 dm raid: fix KASAN warning in raid5_add_disks 90de15357504 dm raid: fix accesses beyond end of raid member array b6125c5dc3d6 powerpc/bpf: Fix use of user_pt_regs in uapi 1ef2e87736a6 powerpc/prom_init: Fix kernel config grep d5e32f08e7f1 nvdimm: Fix badblocks clear off-by-one error 53fb996f2709 ipv6: take care of disable_policy when restoring routes (From OE-Core rev: c954fc1097cb99b7caac764db007f6b2541c248f) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* curl: Fix CVE-2022-32206, CVE-2022-32207, and CVE-2022-32208Robert Joslyn2022-07-254-0/+411
| | | | | | | | | | | | | Backport fixes for: * CVE-2022-32206 - https://curl.se/docs/CVE-2022-32206.html * CVE-2022-32207 - https://curl.se/docs/CVE-2022-32207.html * CVE-2022-32208 - https://curl.se/docs/CVE-2022-32208.html (From OE-Core rev: aad2a330086b3a12aa5469499774fafdc8a21c48) Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cve-extra-exclusions.inc: Use CVE_CHECK_WHITELISTRanjitsinh Rathod2022-07-251-3/+3
| | | | | | | | | | | | Use CVE_CHECK_WHITELIST as CVE_CHECK_IGNORE is not valid on dunfell branch (From OE-Core rev: 5cb48712e09ffb4198b36897495215e578f9fe62) Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com> Signed-off-by: Ranjitsinh Rathod <ranjitsinhrathod1991@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: variables: remove sphinx directive from literal blockMichael Opdenacker2022-07-201-1/+1
| | | | | | | | | | | | | | | Literal blocks make sphinx take their text verbatim. This means that directives cannot be used in literal blocks. This means :term:`S` was printed as-is, without actually creating a link to the S variable definition as would be expected outside of literal blocks. Initially contributed to the master branch by Quentin Schulz. (From yocto-docs rev: 882810d294762a6340909b59736acc660c4eaf5c) Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Reported-by: Quentin Schulz <foss@0leil.net> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: Add XZ_THREADS and XZ_MEMLIMITRichard Purdie2022-07-191-1/+19
| | | | | | | | | | | | | XZ_THREADS and XZ_MEMLIMIT were introduced in dunfell. [RP improved an original patch from Paul] (From yocto-docs rev: 4fb0498ecf1e6747ecd3ea5482d0b8bfa2632d49) Signed-off-by: Paul Eggleton <paul.eggleton@microsoft.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Quentin Schulz <quentin.schulz@theobroma-systems.com> Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* documentation: update for 3.1.18 releaseSteve Sakoman2022-07-191-5/+5
| | | | | | | | (From yocto-docs rev: 217c3d1581c7ebb4799c4a3822c8b594c779037c) Signed-off-by: Steve Sakoman <steve@sakoman.com> Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* classes/cve-check: Move get_patches_cves to libraryJoshua Watt2022-07-162-60/+84
| | | | | | | | | | | | | | | | | | | | Moving the function will allow other classes to capture which CVEs have been patched, in particular SBoM generation. Also add a function to capture the CPE ID from the CVE Product and Version (From OE-Core rev: 75d34259a715120be1d023e4fd7b6b4b125f2443) (From OE-Core rev: bba069463ca3813666d084643b0239b9af0199e1) Signed-off-by: Joshua Watt <JPEWhacker@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit fa6c07bc1a585f204dbdc28704f61448edb8fdc8) Signed-off-by: Akash Hadke <akash.hadke@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* vim: upgrade to 9.0.0021Ross Burton2022-07-161-2/+2
| | | | | | | | | | | | | | | | | | This fixes the following CVEs: - CVE-2022-2257 - CVE-2022-2264 - CVE-2022-2284 - CVE-2022-2285 - CVE-2022-2286 - CVE-2022-2287 (From OE-Core rev: 3230e5f734f69acfe05219da104e8818445c9eff) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 03c044a81a76b7505b9d5bf0d936dde75b51905e) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: security upgrade 1.1.1p to 1.1.1qSteve Sakoman2022-07-161-1/+1
| | | | | | | | | Fixed AES OCB failure to encrypt some bytes on 32-bit x86 platforms (CVE-2022-2097) (From OE-Core rev: 6031eecee8ac8bed1c43a04ecf06ed08014346f2) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bitbake: fetch/wget: Move files into place atomicallyRichard Purdie2022-07-151-4/+7
| | | | | | | | | (Bitbake rev: 7fc4cffebf5dcc1d050416c0b7f7d58c765c1d69) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit cd7cce4cf4be5c742d29671169354fe84220b47a) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bitbake: fetch/git: Fix usehead for non-default namesJoey Degges2022-07-152-1/+58
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The usehead url parameter for git repositories causes bitbake to use whatever commit the repository HEAD is pointing to if the repository happens to have the name 'default'. This is the default name so in many cases it works just fine, but if a different name is specified with the url parameter 'name=newName' then it will fail to parse the recipe with an error along the lines of: ERROR: ExpansionError during parsing /path/to/my/recipe.bb Traceback (most recent call last): File "/path/to/poky/bitbake/lib/bb/fetch2/git.py", line 235, in Git.urldata_init: > ud.setup_revisions(d) File "/path/to/poky/bitbake/lib/bb/fetch2/__init__.py", line 1302, in FetchData.setup_revisions: for name in self.names: > self.revisions[name] = srcrev_internal_helper(self, d, name) File "/path/to/poky/bitbake/lib/bb/fetch2/__init__.py", line 1167, in srcrev_internal_helper(name='newName'): if srcrev == "AUTOINC": > srcrev = ud.method.latest_revision(ud, d, name) File "/path/to/poky/bitbake/lib/bb/fetch2/__init__.py", line 1562, in Git.latest_revision(name='newName'): except KeyError: > revs[key] = rev = self._latest_revision(ud, d, name) return rev File "/path/to/poky/bitbake/lib/bb/fetch2/git.py", line 650, in Git._latest_revision(name='newName'): raise bb.fetch2.FetchError("Unable to resolve '%s' in upstream git repository in git ls-remote output for %s" % \ > (ud.unresolvedrev[name], ud.host+ud.path)) bb.data_smart.ExpansionError: Failure expanding variable SRCPV, expression was ${@bb.fetch2.get_srcrev(d)} which triggered exception FetchError: Fetcher failure: Unable to resolve 'master' in upstream git repository in git ls-remote output for /path/to/local/git/repo Let's fix this by setting the unresolved rev of _all_ repository names to 'HEAD' when the usehead url parameter is specified. Update the currently failing test, test_local_gitfetch_usehead_withname, to now expect success. This change preserves existing behavior that allows usehead to be overridden by a valid looking revision if one happens to be specified instead of AUTOREV. (Bitbake rev: a247f56df680382d62910bb9a174e0fdd29e4ca8) Signed-off-by: Joey Degges <jdegges@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 01e901c44ab0f496606b1d45c8953dc54970204c) Signed-off-by: Paulo Neves <ptsneves@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemu: add PACKAGECONFIG for capstoneSteve Sakoman2022-07-151-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | Autobuilder workers were non-deterministically enabling capstone depending on whether the worker had libcapstone installed. Add PACKAGECONFIG for capstone with default off, since qemu does not require capstone support. Qemu version in dunfell has capstone in the source tree as a submodule and has configure options to enable it using that source code or using the system libcapstone. Qemu versions in master and kirkstone have removed the capstone submodule and configure options, but added libcapstone autodetection to meson. In all cases using PACKAGECONFIG will allow a deterministic build. (From OE-Core rev: af25fff399fa623b4fd6efbca21e01ea6b4d1fd7) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 052ef1f14d1e6a5ee34f742f65e51b20b416f79f) Signed-off-by: Steve Sakoman <steve@sakoman.com Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* IMAGE_LOCALES_ARCHIVE: add option to prevent locale archive creationJate Sujjavanich2022-07-152-7/+11
| | | | | | | | | | | | | | | | | | | | [YOCTO #14851] Under some circumstances it is not desirable to create a combined locale archive (/usr/lib/locale/locale-archive). The new variable IMAGE_LOCALES_ARCHIVE defaults to '1', so the default behaviour is not changed. Modified to work with code before move to lib/oe/package_manager (From OE-Core rev: af32908dfcebbc0f617ad828d895f504c37ee2d1) Signed-off-by: Michael Thalmeier <michael.thalmeier@hale.at> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 8d78b819c2ec33fce3a34254fa90864ee5fa7617) Signed-off-by: Jate Sujjavanich <jatedev@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* dropbear: break dependency on base package for -dev packageSteve Sakoman2022-07-151-0/+5
| | | | | | | | | | | | Otherwise the SDK fails to build as the main openssh and dropbear packages conflict with each other (From OE-Core rev: 7bc7d4d24ee05a3bbb9a82ff1089da5d162c8497) Signed-off-by: Steve Sakoman <steve@sakoman.com> (cherry picked from commit 4667abcc925ae0c430cccb480ec530506f6201ae) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>