Updating to the latest korg -stable release that comprises
the following commits:
02f78c59a0ed Linux 5.4.258
f70c285cf02c xen/events: replace evtchn_rwlock with RCU
e2614ab16a7e ima: rework CONFIG_IMA dependency block
b5c3bc4b8104 NFS: Fix a race in __nfs_list_for_each_server()
f0ea421fa2f7 parisc: Restore __ldcw_align for PA-RISC 2.0 processors
14e5d94d5c86 RDMA/mlx5: Fix NULL string error
6e26812e289b RDMA/siw: Fix connection failure handling
8ab1fb16dce0 RDMA/uverbs: Fix typo of sizeof argument
26d48f7090b8 RDMA/cma: Fix truncation compilation warning in make_cma_ports
f102dd8a1795 gpio: pxa: disable pinctrl calls for MMP_GPIO
e38aceeadb4b gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config()
8584ee20a56c IB/mlx4: Fix the size of a buffer in add_port_entries()
35b689ee4b57 RDMA/core: Require admin capabilities to set system parameters
1047ca5bae20 cpupower: add Makefile dependencies for install targets
3c2f536c3d32 sctp: update hb timer immediately after users change hb_interval
caf0c61f14e7 sctp: update transport state when processing a dupcook packet
14fc22c92937 tcp: fix delayed ACKs for MSS boundary condition
2791d64e6607 tcp: fix quick-ack counting to count actual ACKs of new data
7fbce1e46b41 net: stmmac: dwmac-stm32: fix resume on STM32 MCU
f110aa377ddc netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp
191d87a19cf1 net: nfc: llcp: Add lock when modifying device list
310f1c92f65a net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg
899205521005 net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent
1fc793d68d50 ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data()
95eabb075a59 net: fix possible store tearing in neigh_periodic_work()
10a301c83a3d modpost: add missing else to the "of" check
5e1c1bf53e5f NFSv4: Fix a nfs4_state_manager() race
f90821f66727 NFS: Add a helper nfs_client_for_each_server()
e2d4fc53e9f7 NFS4: Trace state recovery operation
c87f66c43c1b scsi: target: core: Fix deadlock due to recursive locking
8a1fa738b491 ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig
442e50393a29 regmap: rbtree: Fix wrong register marked as in-cache when creating new node
52008a5e22ac wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling
31b27776905a drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close()
b8e260654a29 wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet
1b67be400a96 wifi: iwlwifi: dbg_ini: fix structure packing
c6d358387632 ubi: Refuse attaching if mtd's erasesize is 0
b4ec10b962f7 net: prevent rewrite of msg_name in sock_sendmsg()
53b700b41a06 net: replace calls to sock->ops->connect() with kernel_connect()
3c4bfa7a56c8 wifi: mwifiex: Fix tlv_buf_left calculation
2e608cede0ae qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info
810248a12999 scsi: zfcp: Fix a double put in zfcp_port_enqueue()
e60272ab021c Revert "PCI: qcom: Disable write access to read only registers for IP v2.3.3"
6e37de4a1407 rbd: take header_rwsem in rbd_dev_refresh() only when updating
bc2a3044015f rbd: decouple parent info read-in from updating rbd_dev
2e0114edeb47 rbd: decouple header read-in from updating rbd_dev->header
32a59639c551 rbd: move rbd_dev_refresh() definition
ff10b1fad581 fs: binfmt_elf_efpic: fix personality for ELF-FDPIC
43e5dc1ee2ea ata: libata-sata: increase PMP SRST timeout to 10s
ac1aebd4e3b8 ata: libata-core: Do not register PM operations for SAS ports
9313aab5f649 ata: libata-core: Fix port and device removal
9207666f166c ata: libata-core: Fix ata_port_request_pm() locking
d9483f5aecf4 net: thunderbolt: Fix TCPv6 GSO checksum calculation
47062af85961 btrfs: properly report 0 avail for very full file systems
cf221a7880ea ring-buffer: Update "shortest_full" in polling
ec7b2e7b365c i2c: i801: unregister tco_pdev in i801_probe() error path
a4ecd8562c0e ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES
ec1df5d37d59 ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q
193b5a1c6c67 nilfs2: fix potential use after free in nilfs_gccache_submit_read_data()
bf3c728e3692 serial: 8250_port: Check IRQ data before use
76ffbd900b6a Smack:- Use overlay inode label in smack_inode_copy_up()
957a9916db5b smack: Retrieve transmuting information in smack_inode_getsecurity()
c9ce9bab2301 smack: Record transmuting in smk_transmuted
d037d8964fb8 i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc
2d78e2d3e31f i40e: always propagate error value in i40e_set_vsi_promisc()
8ed4b5d710b0 i40e: improve locking of mac_filter_hash
30055e020ab2 watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running
c54a392fc79e watchdog: iTCO_wdt: No need to stop the timer in probe
d68c61092c3d nvme-pci: do not set the NUMA node of device if it has none
283f24df8303 fbdev/sh7760fb: Depend on FB=y
ee1f5c63e919 ncsi: Propagate carrier gain/loss events to the NCSI controller
b42eac146247 powerpc/watchpoints: Annotate atomic context in more places
723904ce853e bpf: Clarify error expectations from bpf_clone_redirect
db4afbc6c1a1 spi: nxp-fspi: reset the FLSHxCR1 registers
3502dd803138 ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset()
05264d6551e1 ring-buffer: Avoid softlockup in ring_buffer_resize()
1d28224d49f3 selftests/ftrace: Correctly enable event in instance-event.tc
ded3551163fc parisc: irq: Make irq_stack_union static to avoid sparse warning
a721e5788aca parisc: drivers: Fix sparse warning
2569e0ceff8a parisc: iosapic.c: Fix sparse warnings
f1a0dd9243f0 parisc: sba: Fix compile warning wrt list of SBA devices
6db9cdfdc3c5 gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip
4a62d23eba66 xtensa: boot/lib: fix function prototypes
e11fa78a3722 xtensa: boot: don't add include-dirs
5ed83a0a3953 xtensa: iss/network: make functions static
b821e6a8b2f5 xtensa: add default definition for XCHAL_HAVE_DIV32
49dc6fcd4b6a bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up
841733189b2e ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot
3468fa39d898 clk: tegra: fix error return case for recalc_rate
6938a6cbe651 MIPS: Alchemy: only build mmc support helpers if au1xmmc is enabled
5b0d13e2d9f6 ata: libata: disallow dev-initiated LPM transitions to unsupported states
617a89ff55e3 drm/amd/display: prevent potential division by zero errors
07b63a3dcfef drm/amd/display: Fix LFC multiplier changing erratically
11e3f781f6e3 drm/amd/display: Reinstate LFC optimization
a4628a5b98e4 scsi: qla2xxx: Fix deletion race condition
0a51c838c58f scsi: qla2xxx: Fix update_fcport for current_topology
ecdf4c658b6e Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN
0926a2b7cb60 i2c: mux: demux-pinctrl: check the return value of devm_kstrdup()
e09db461f258 gpio: tb10x: Fix an error handling path in tb10x_gpio_probe()
02a233986c9e netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP
812da2a08dc5 net: rds: Fix possible NULL-pointer dereference
c5f6478686bb team: fix null-ptr-deref when team device type is changed
ad8d39c7b437 net: bridge: use DEV_STATS_INC()
121a7c474ce0 net: hns3: add 5ms delay before clear firmware reset irq source
a6f4d582e25d dccp: fix dccp_v4_err()/dccp_v6_err() again
16b88d7a1436 powerpc/perf/hv-24x7: Update domain value check
810fd23d9715 ipv4: fix null-deref in ipv4_link_failure
8f228c326d68 i40e: Fix VF VLAN offloading when port VLAN is configured
8b835db2793a i40e: Fix warning message and call stack during rmmod i40e driver
9cbec71a5721 i40e: Remove scheduling while atomic possibility
0988fc499f67 i40e: Fix for persistent lldp support
09475d647670 ASoC: imx-audmix: Fix return error with devm_clk_get()
ca1d4e3c4dba selftests: tls: swap the TX and RX sockets in some tests
b9eb384fd4fd selftests/tls: Add {} to avoid static checker warning
40e34ea01748 bpf: Avoid deadlock when using queue and stack maps from NMI
eec981349b03 netfilter: nf_tables: disallow element removal on anonymous sets
d2a6844be5bd ASoC: meson: spdifin: start hw on dai probe
0c908e159588 ext4: do not let fstrim block system suspend
4db34feaf297 ext4: move setting of trimmed bit into ext4_try_to_trim_range()
767a50bef2aa ext4: replace the traditional ternary conditional operator with with max()/min()
2fd502f53bf4 ext4: mark group as trimmed only if it was fully scanned
635901bdbd7e ext4: change s_last_trim_minblks type to unsigned long
2d874151584d ext4: scope ret locally in ext4_try_to_trim_range()
c71cb46affe9 ext4: add new helper interface ext4_try_to_trim_range()
b0dcbd4bb957 ext4: remove the 'group' parameter of ext4_trim_extent
bf0660756510 ata: libahci: clear pending interrupt status
e6807c873d87 tracing: Increase trace array ref count on enable and filter files
7d3f6612e90b SUNRPC: Mark the cred for revalidation if the server rejects it
321c75b01cc8 NFS/pNFS: Report EINVAL errors from connect() to the server
(From OE-Core rev: 013883aef0e9bfc6817ae1e5c5d1f1abafdf4cd0)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ignore RHEL specific CVE-2021-20295 CVE-2023-2680.
(From OE-Core rev: 2c0822d9e7b8e7d013ef89c7e82e19fff39228a9)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(From OE-Core rev: 507b9de9df375721cd307163fe06c3ee567385e8)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A previous commit attempted to fix reproducibility errors by forcing
regeneration of .po files. Unfortunately this triggered a different
type of reproducibility issue.
Work around this by adjusting the timestamps of the troublesome .po
files so they are not regenerated and we use the shipped upstream
versions of the files.
The shipped version of ru.cp1251.po doesn't seem to have been created
with the vim tooling and specifies CP1251 instead of cp1251, fix that.
(From OE-Core rev: 0764da7e3f1d71eb390e5eb8a9aa1323c24d1c19)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
vim 8.3 has been out for a long time, so this comment is obsolete.
However we still need UPSTREAM_VERSION_UNKNOWN, since we ignore
the last digit of the upstream version number.
Test result:
$ devtool check-upgrade-status vim
...
INFO: vim 9.0.1592 UNKNOWN Tom Rini <trini@konsulko.com> c0370529c027abc5b1698d53fcfb8c02a0c515da
(From OE-Core rev: 65f5de85c3f488136d1ec2b1f7fe8d8426d6c5b3)
(From OE-Core rev: be68cf4c3e4218cc360ce7a645c92b631224ce94)
Signed-off-by: Etienne Cordonnier <ecordonnier@snap.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 868a19357841470eb55fb7f1c4ab1af09dea99ed)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
When making checkouts from git, the timestamps can vary and occasionally two files
can end up with the same stamp. This triggers make to regenerate ru.cp1251.po from
ru.po for example. If it isn't regenerated, the output isn't quite the same leading
to reproducibility issues (CP1251 vs cp1251).
Since we added all locales to buildtools tarball now, we can drop the locale
restrictions too. We need to generate a native binary for the sjis conversion
tool so also tweak that.
(From OE-Core rev: 14982eabcdb96c2f7ef9e28d6c0daedb53aa96c4)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
import patch from ubuntu curl_7.68.0-1ubuntu2.20.
minor change to CVE-2023-28321.patch tests/data/test1397 part
so the patch can be apply.
(From OE-Core rev: 5cc1f487928df04c58709dd88ef6c17c171da7a5)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
import patch from ubuntu setuptools_45.2.0-1ubuntu0.1 .
(From OE-Core rev: a939696d7c70c42e404ec30a9d75e5ea4f742c78)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
take CVE-2021-3782.patch from OE-core rev 09b8ff8d2361b2db001bc963f481db294ccf2170.
(From OE-Core rev: 9c3f494bf54c4d4b7ec776ab18d900bf9fbd042a)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This test will fail any time the host has libdrm > 2.4.107
(From OE-Core rev: ff7dbcc0206203e2ece68ca91a37050a4bc822a2)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There are cached reproducibility issues on the autobuilder due to CFLAGS
issues, flush the bad data out the system by bumping the versions.
(From OE-Core rev: f398c84405913bd8038c007f43f991f54d136571)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Currently lz4 uses it's own defaults which include O3 optimization.
Switch from O3 to bitbake default O2 reduces binary package size
from 467056 to 331888 bytes. Enables also building with Os if needed.
(From OE-Core rev: af571c0841265dfa4bd87546080e499336a37fcc)
Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit abaaf8c6bcd368728d298937a9406eb2aebc7a7d)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Branch 'master' renamed to 'unstable', which causing following failure.
Error:
Fetcher failure: Unable to find revision cb19bbfbe7e52174332f68bf2f295b39d119fad3 in branch master even from upstream
Switch to 'unstanble' branch.
(From OE-Core rev: d4b96dc1e457b4e68c5bad685ffcfd2f250162e7)
Signed-off-by: Naveen Saini <naveen.kumar.saini@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Branch 'assimp_5.0_release' is not present in repo.
Error:
assimp-5.0.1-r0 do_fetch: Fetcher failure: Unable to find revision 8f0c6b04b2257a520aaab38421b2e090204b69df in branch assimp_5.0_release even from upstream
Set nobranch=1, to fetch from v5.0.1 tag.
(From OE-Core rev: 4bd92b9621909b8b528b648529baaaa48bc1c424)
Signed-off-by: Naveen Saini <naveen.kumar.saini@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
We don't make do_cve_check depend on do_unpack because that would be a
waste of time 99% of the time. The compromise here is that we can't
scan remote patches for issues, but this isn't a problem so downgrade
the warning to a note.
Also move the check for CVEs in the filename before the local file check
so that even with remote patches, we still check for CVE references in
the name.
(From OE-Core rev: 32a19dfbaac38cd4864281a1131ac65e1216318f)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0251cad677579f5b4dcc25fa2f8552c6040ac2cf)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Occasionally the cve-check tool will warn that it is adding the same
package twice. Knowing what this package is might be the first step
towards understanding where this message comes from.
(From OE-Core rev: e3574760ee59c1ca7d2698f09ddd37ee568f04f3)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c1179faec8583a8b7df192cf1cbf221f0e3001fc)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The JSON report generated by the cve-check class is basically a huge
list of packages. This list of packages is, however, unsorted.
To make things easier for people comparing the JSON, or more
specifically for git when archiving the JSON over time in a git
repository, we can sort the list by package name.
(From OE-Core rev: 5a509bc6f26247cc7561189d582c91816042fd91)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e9861be0e5020830c2ecc24fd091f4f5b05da036)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This reverts commit 45ce9885351a2344737170e6e810dc67ab3e7ea9.
Unfortunately this backport results in qemuarmv5 failing to boot with
a qemu lsi hw error.
[YOCTO #15274]
See discussion: https://bugzilla.yoctoproject.org/show_bug.cgi?id=15274
(From OE-Core rev: 14aa11aecf503cef08e43c90cf0bd574721ca965)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This vulnerability was introduced in 2.36, so 2.31 is not vulnerable.
(From OE-Core rev: 3471922461627c0f0487feb09cfdc4cfeeb3f3ca)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(From OE-Core rev: d34567be6e87afdec55973f8f75be8d44b4acd1b)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Error occured while running bitbake on cephfs:
WARNING: The free inode of path is running low (-0.001K left)
ERROR: Immediately halt since the disk space monitor action is "HALT"!
(Bitbake rev: 3c7b210e9599058a48d0c38ce8034b94e2d0f781)
Signed-off-by: Samantha Jalabert <samantha.jalabert@syslinbit.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The pipe library is deprecated in Python 3.11 and will be removed in
Python 3.13. pipe.quote is just an import of shlex.quote anyway.
Clean up imports while we're at it.
(From OE-Core rev: a6ef13bdad40826d76a3331cd0878bb22510f375)
Signed-off-by: Ola x Nilsson <olani@axis.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
(cherry picked from commit 5f33c7b99a991c380d1813da8248ba5470ca4d4e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Avoid a divide by zero traceback if unfortunate test counts are encountered.
(From OE-Core rev: 33d3374a7149ad1afe86d86c0dc2a948f70e26bd)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c5aeea53dfacb53dedb8445cb3523dc3a8cb6dca)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This includes CVE fix for CVE-2023-5535.
(From OE-Core rev: 35fc341402f38619922dcfc4dc9e58b00be26259)
Signed-off-by: Siddharth Doshi <sdoshi@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Add a SECURITY.md file with hints for security researchers and other
parties who might report potential security vulnerabilities.
(From meta-yocto rev: d8b84cfded9137a74ab0052ff2d7710887f29f10)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Add a SECURITY.md file with hints for security researchers and other
parties who might report potential security vulnerabilities.
(Bitbake rev: dd826595414c5dc1a649f45a9dd2430bf6d4699b)
Signed-off-by: Marta Rybczynska <marta.rybczynska@syslinbit.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield
Tim Orling
Lee Chee Yang
Vivek Kumbhar
Ashish Sharma
poojitha adireddy
Steve Sakoman
Archana Polampalli
Etienne Cordonnier
Richard Purdie
Vijay Anusuri
Hitendra Prajapati
Mikko Rapeli
Naveen Saini
Ross Burton
Soumya Sambu
Peter Marko
Samantha Jalabert
Meenali Gupta
Siddharth Doshi
Marta Rybczynska