Minor fixup for nettle_secp_224r1 to _nettle_secp_224r1 to match 3.5.1 Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Mike Crowe [Fri, 17 Sep 2021 16:14:33 +0000 (17:14 +0100)]
curl: Fix CVE-2021-22946 and CVE-2021-22947, whitelist CVE-2021-22945
curl v7.79.0 contained fixes for three CVEs:
The description of CVE-2021-22945[1] contains:
> This flaw was introduced in commit 2522903b79 but since MQTT support
> was marked 'experimental' then and not enabled in the build by default
> until curl 7.73.0 (October 14, 2020) we count that as the first flawed
> version.
which I believe means that curl v7.69.1 is not vulnerable.
curl v7.69.1 is vulnerable to both CVE-2021-22946[2] and CVE-22947[3].
These patches are from Ubuntu 20.04's curl 7.68.0 package. The patches
applied without conflicts, but I used devtool to regenerate them to
avoid fuzz warnings.
An out-of-bounds array read in the apr_time_exp*() functions was fixed in the
Apache Portable Runtime 1.6.3 release (CVE-2017-12613). The fix for this issue
was not carried forward to the APR 1.7.x branch, and hence version 1.7.0 regressed
compared to 1.6.3 and is vulnerable to the same issue.
Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5bd5faf0c34b47b2443975d66b71482d2380a01a) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Mon, 6 Sep 2021 12:49:26 +0000 (13:49 +0100)]
flex: Add CVE-2019-6293 to exclusions for checks
CVE is effectively disputed - yes there is stack exhaustion but no bug and it
is building the parser, not running it, effectively similar to a compiler ICE.
Upstream no plans to address and there is no security issue.
https://github.com/westes/flex/issues/414
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0cae5d7a24bedf6784781b62cbb3795a44bab4d1) Signed-off-by: Steve Sakoman <steve@sakoman.com>
ab88811768 (HEAD, tag: dbus-1.12.20) v1.12.20 5757fd5480 Update NEWS f3b2574f0c userdb: Reference-count DBusUserInfo, DBusGroupInfo <- cve fix 37b36d49a6 userdb: Make lookups return a const pointer 732284d530 Solaris and derivatives do not adjust cmsg_len on MSG_CTRUNC 1f8c42c7cd Start 1.12.20 development
dbus and dbus-test share the same source code and base configuration options,
so factor out the common parts into dbus.inc.
This way we can eliminate the need to keep the two recipes in sync. When they
are not properly in sync (e.g. when dbus recipe has extra patches/config
options that are not duplicated in dbus-test) ptest testsuite will actually
test a slightly different codebase. This is due to the fact that dbus-test does
not run the testsuite against the system libdbus library, but instead it
generates a local libdbus.so that needs to configured/compiled as close as
possible to the system one.
Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a62471f0641551717a260c67690d3a7d280ac028)
[Bug fix only update, drop cve patch now included
a0926ef86f (tag: dbus-1.12.18) Prepare 1.12.18 8bc1381819 fdpass test: Assert that we don't leak file descriptors 272d484283 sysdeps-unix: On MSG_CTRUNC, close the fds we did receive <- cve fix 31297172f1 Update NEWS 041d579139 dbus-daemon test: Don't test fd limits if in an unprivileged container 55b3f71376 Update NEWS ced04aabc7 doxygen: fix example for dbus_message_append_args 3e40637b10 Update NEWS 3e0ea34966 cmake: Add X11 include path for tools d0992805d7 doc: replace dbus-send's --address with --peer and --bus dd32f6b617 Update NEWS d251fe7850 Merge branch 'cherry-pick-b034b83b' into 'dbus-1.12' 2c6b0ad7f6 bus: Don't explicitly clear BusConnections.monitors df0c675b93 Merge branch 'cherry-pick-bf71a58e' into 'dbus-1.12' beb79b94fb doc: Fix environment variable name in dbus-daemon(1) eab5d4a420 Start 1.12.18 development] Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Fri, 3 Sep 2021 08:22:46 +0000 (09:22 +0100)]
oeqa/runtime/parselogs: Make DVD ata error apply to all qemux86 machines
This log checking fix is needed for both qemux86 and qemux86-64 so move
to the common section.
[YOCTO #14528]
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 2475ce68f0bc1f342c75364dfcfaf7f30499badf) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Added 0001-core-reuse-large-mem-chunks-fix-mem-usage-fixes-3033.patch
to fix large memory usage for large file downloads
from dynamic backends reuse or release large memory chunks.
Also, added patch to set default chunk size 8k earlier it was 4k.
This issue is caused by a bug in the lighttpd 1.4.55 version and
has been fixed in lighttpd 1.4.58. Hence, it is not needed for
master and hardknott branch because lighttpd has 1.4.59 version.
Richard Purdie [Fri, 3 Sep 2021 13:24:17 +0000 (14:24 +0100)]
xdg-utils: Add fix for CVE-2020-27748
Backport an upstream patch for the CVE.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 87191ed0303f6552865ad1edcacd674c57f2010c) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Matt Madison [Thu, 12 Nov 2020 14:51:41 +0000 (06:51 -0800)]
layer.conf: fix syntax error in PATH setting
Commit 05a87be51b44608ce4f77ac332df90a3cd2445ef introduced
a Python conditional expression when updating PATH that
generates syntax warnings in bitbake-cookerdaemon.log:
Var <PATH[:=]>:1: SyntaxWarning: "is not" with a literal. Did you mean "!="?
Fix this by using the more appropriate '!=' comparison
operator.
Signed-off-by: Matt Madison <matt@madison.systems> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 2e753a12cf6bb98f9e0940e5ed6255ce8c538eed) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Andrej Valek [Thu, 26 Aug 2021 13:15:49 +0000 (15:15 +0200)]
vim: add option to disable NLS support
- Some distributions with UTF-8 locale have problem when National Language
Support is enabled. Add there an option to disable it.
Signed-off-by: Andrej Valek <andrej.valek@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit da630d6d81a396c3e1635fbd7b8103df47ed2732) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Tue, 31 Aug 2021 15:03:34 +0000 (16:03 +0100)]
cpio: backport fix for CVE-2021-38185
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4accf77ea5b5810cb2330acc6773690ec1b1c71b) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Fri, 30 Jul 2021 15:44:56 +0000 (16:44 +0100)]
sdk: Decouple default install path from built in path
Add SDKPATHINSTALL which is used as the default install location of the SDK
instead of SDKPATH. This means the default install path isn't encoded into
every SDK binary, meaning if a date is used there the entire SDK doesn't
have to rebuild. Most distros can switch to only customise SDKPATHINSTALL
meaning more sstate reuse too.
[YOCTO #14100]
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bc4ee5453560dcefc4a4ecc5657df5cc1666e153) Signed-off-by: Steve Sakoman <steve@sakoman.com>
We don't use the CD/DVD ROM drive in any of our tests, but it
periodically fails discovery and that leads to a QA error:
[ 6.403477] ata3.00: failed to IDENTIFY (I/O error, err_mask=0x4)
The only way to disable the optical ROM drive in qemu is to use
the '-nodefaults' option, which disables the CDROM (among other things).
We can't be sure that none of our tests, or extended users are relying
on default devices, so using that option is more of a risk than adding
the message to our ignore list.
To date, no one has sent a patch to just disable the optical drive
(either in qemu or the BIOS), but that is something we could consider
in the future.
[YOCTO #14528]
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 143fc5504539c69752ca87717507c197a8920ce5) Signed-off-by: Steve Sakoman <steve@sakoman.com>
qemurunner.py: handle getOutput() having nothing to read
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f4abfdeea175cfcadd6f73a69a676632ab4334a6) Signed-off-by: Steve Sakoman <steve@sakoman.com>
qemurunner.py: print output from runqemu/qemu-system in stop()
This is done when starting up qemu has failed, but is not done
when qemu started ok, but fails later in QMP communication.
Output from runqemu does contain valuable information to find out
why, so rather than fix all the QMP fails to include it, let's just
print it in stop().
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6e2bf68e4401db747484c2c8ba0f77500b1d2d49) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Wed, 25 Aug 2021 16:08:31 +0000 (12:08 -0400)]
linux-yocto/5.4: update to v5.4.142
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
c15b830f7c1c Linux 5.4.142 a17f2f2c8949 KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (CVE-2021-3656) 7c1c96ffb658 KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) 456fd889227f iommu/vt-d: Fix agaw for a supported 48 bit guest address width 5b5f855a793c vmlinux.lds.h: Handle clang's module.{c,d}tor sections e9b2b2b29ca8 ceph: take snap_empty_lock atomically with snaprealm refcount change 95ff775df6ec ceph: clean up locking annotation for ceph_get_snap_realm and __lookup_snap_realm 1d8c232afb03 ceph: add some lockdep assertions around snaprealm handling a6ff0f3f9f90 KVM: VMX: Use current VMCS to query WAITPKG support for MSR emulation ec25d05e1893 PCI/MSI: Protect msi_desc::masked for multi-MSI 48d2439c6f2a PCI/MSI: Use msi_mask_irq() in pci_msi_shutdown() 386ead1d3598 PCI/MSI: Correct misleading comments 76d81dec16d0 PCI/MSI: Do not set invalid bits in MSI mask 6b4bcbf13390 PCI/MSI: Enforce MSI[X] entry updates to be visible 4495a41fbcd7 PCI/MSI: Enforce that MSI-X table entry is masked for update 1866c8f6d43c PCI/MSI: Mask all unused MSI-X entries 3b4220c2bf35 PCI/MSI: Enable and mask MSI-X early 0c8dea3fd55c genirq/timings: Prevent potential array overflow in __irq_timings_store() 4dfe80927102 genirq/msi: Ensure deactivation on teardown e3e54a930073 x86/resctrl: Fix default monitoring groups reporting a6b594ad7419 x86/ioapic: Force affinity setup before startup db5e2666946a x86/msi: Force affinity setup before startup eda32c21882c genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP 06b347743608 x86/tools: Fix objdump version check again 74451dd8bfca powerpc/kprobes: Fix kprobe Oops happens in booke b74145d858a8 nbd: Aovid double completion of a request ad9550114d4c vsock/virtio: avoid potential deadlock when vsock device remove b9cd73cce50a xen/events: Fix race in set_evtchn_to_irq 4d3c5c319b19 net: igmp: increase size of mr_ifc_count 721ff564cc6a tcp_bbr: fix u32 wrap bug in round logic if bbr_init() called after 2B packets 2ce8a68a312c net: linkwatch: fix failure to restore device state across suspend/resume 33597972a2e9 net: bridge: fix memleak in br_add_if() f6eee53beb07 net: dsa: sja1105: fix broken backpressure in .port_fdb_dump 1e6a570d3786 net: dsa: lantiq: fix broken backpressure in .port_fdb_dump 564f6bbd0ed6 net: dsa: lan9303: fix broken backpressure in .port_fdb_dump a9243455e874 net: igmp: fix data-race in igmp_ifc_timer_expire() ed957c77b391 net: Fix memory leak in ieee802154_raw_deliver 13a381b8bc22 net: dsa: microchip: Fix ksz_read64() 991117eeeee8 drm/meson: fix colour distortion from HDR set during vendor u-boot e114f15de881 net/mlx5: Fix return value from tracer initialization f99aa76bb83c psample: Add a fwd declaration for skbuff 9dc8e396c12e iavf: Set RSS LUT and key in reset handle path 23436edae3c9 net: sched: act_mirred: Reset ct info when mirror/redirect skb 9636fbfe7bdd ppp: Fix generating ifname when empty IFLA_IFNAME is specified 1c31ee907fde net: phy: micrel: Fix link detection on ksz87xx switch" dfeb64f6e2ce platform/x86: pcengines-apuv2: Add missing terminating entries to gpio-lookup tables 699db2bb96ad platform/x86: pcengines-apuv2: revert wiring up simswitch GPIO as LED af7f1539cfb1 net: dsa: mt7530: add the missing RxUnicast MIB counter d353a61860a2 ASoC: cs42l42: Fix LRCLK frame start edge b036452082f3 netfilter: nf_conntrack_bridge: Fix memory leak when error cd36a36ea4ea ASoC: cs42l42: Remove duplicate control for WNF filter frequency eb789cc9179f ASoC: cs42l42: Fix inversion of ADC Notch Switch control 6a3381336398 ASoC: cs42l42: Don't allow SND_SOC_DAIFMT_LEFT_J 55e86f07b85e ASoC: cs42l42: Correct definition of ADC Volume control 22d2e3c6a1b8 ieee802154: hwsim: fix GPF in hwsim_new_edge_nl 5bac8c2a3087 ieee802154: hwsim: fix GPF in hwsim_set_edge_lqi ddcf807fbb70 libnvdimm/region: Fix label activation vs errors bc97fde4c668 ACPI: NFIT: Fix support for virtual SPA ranges a753e3f33405 ceph: reduce contention in ceph_check_delayed_caps() aa04486c419d i2c: dev: zero out array used for i2c reads from userspace c18b28e5ade8 ASoC: intel: atom: Fix reference to PCM buffer address aab3fa544647 ASoC: xilinx: Fix reference to PCM buffer address 60e2854acf3b iio: adc: Fix incorrect exit of for-loop bcac5225923b iio: humidity: hdc100x: Add margin to the conversion time da7cb80905ec iio: adc: ti-ads7950: Ensure CS is deasserted after reading channels
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Currently the mkfs.btrfs generates large images with a lot of wasted
space. This happens since OE-core updated btrfs-tools from 4.13.3 to
4.15.1 in commit 94b645aa77 ("btrfs-tools: update to 4.15.1") .
Note in mkfs.btrfs(8) manpage section -r says the following:
"
-r|--rootdir <rootdir>
...
Note This option may enlarge the image or file to ensure
it’s big enough to contain the files from rootdir. Since
version 4.14.1 the filesystem size is not minimized. Please
see option --shrink if you need that functionality.
--shrink
Shrink the filesystem to its minimal size, only works with
--rootdir option.
...
Note prior to version 4.14.1, the shrinking was done
automatically.
"
Add the --shrink option to EXTRA_IMAGECMD_btrfs to reinstate the
original behavior and un-waste the space.
Signed-off-by: Marek Vasut <marex@denx.de> Cc: Alexander Kanavin <alexander.kanavin@linux.intel.com> Cc: Richard Purdie <richard.purdie@linuxfoundation.org> Cc: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c4a99d36967302c176b62fad840b5e79486ea356) Cc: Steve Sakoman <steve@sakoman.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 44a6cd03721b51cbb4e05870375fa347527b0db5) Signed-off-by: Steve Sakoman <steve@sakoman.com>
utils: Reduce the number of calls to the "dirname" command
utils.bbclass contains create_cmdline_wrapper() function that
creates wrapper script with additional arguments for any passed
"$cmd" command, and uses several calls to "dirname".
Because "dirname" is an external command, in cases of lots of
calls to wrapped "$cmd", each call of "dirname" will incur
significant overhead.
There are three same calls to "dirname": one for saving it`s
output to "realdir" variable, and other two in "exec" command.
So last two "dirname" calls can be replaced with cached value
from "realdir" variable.
Signed-off-by: Oleksandr Popovych <opopovyc@cisco.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4b9cf2c80fd14386e0b88a2e6c40a9fa3f1ae0f7) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Marta Rybczynska [Fri, 20 Aug 2021 10:09:38 +0000 (12:09 +0200)]
lzo: add CVE_PRODUCT
lzo was missing CVE_PRODUCT and related CVEs (at least CVE-2014-4607) were
not reported.
Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 366cf8201e36df1ac836e49de04ccda1f763ca9e) Signed-off-by: Steve Sakoman <steve@sakoman.com>
jbouchard [Mon, 28 Jun 2021 00:28:37 +0000 (20:28 -0400)]
Use the label provided when formating a dos partition
Previously the bootimg-pcbios wic plugin was not respecting
the --label option provided from the wks file. The plugin
was setting the label to 'boot'. With this fix, the --label
option is use. If no option are specified, then the default
is 'boot'.
Signed-off-by: jbouchard <jeanbouch418@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0fd7a73c1bd2486b7a022f0f69bbcb2e0d9cb141) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Adding fix for CVE-2021-20266
Upstream-Status: Backport [https://github.com/rpm-software-management/rpm/pull/1587/commits/9646711891df851dfbf7ef54cc171574a0914b15]
Note: Hunk#2 and Hunk#3 refreshed to apply patch and match value of
dl_max variable to make it with current version
All Hunks are refreshed to solve patch-fuzz
Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
https://gitlab.com/qemu-project/qemu/-/commit/86dd8fac
https://gitlab.com/qemu-project/qemu/-/commit/b9f79858
https://gitlab.com/qemu-project/qemu/-/commit/b7afebcf
Tweeked the above patches as vhost-user-gpu.c does not exist.
Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 33a997a80a56fba4138780fadda231ae4fd751ea)
[gnupg 2.2 is an LTS release so this series are all bug fixes.
https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000452.html] Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
This addresses CVE-2020-25125 and provides some other minor
updates and translations.
Updated commits for reference: e234d04c3 Werner Koch Release 2.2.23 aeb8272ca Werner Koch gpg: Fix AEAD preference list overflow 038314665 Werner Koch po: auto update 1a4b0fd79 Yuri Chornoivan po: Update Ukrainian translation 93d10403a Jakub Bogusz po: Update Polish translation a8a8105bc Werner Koch po: Add key-check.c to the list of translatable sources. cad9955ac Petr Pisar po: Update Czech translation. 896c528ba Werner Koch gpg: Fix segv importing certain keys. 0a9665187 NIIBE Yutaka scd: Fix a regression for OpenPGP card. bcae9cd4e Nagy Ferenc László po: Minor update to the Hungarian translation. d2fe2ffd7 Werner Koch sm: Fix a bug in the rfc2253 parser f799b3ddb Werner Koch Post release updates
This version of glibc does not have __pthread_attr_setaffinity_np so an adapted patch was taken from 2.28 (https://sourceware.org/bugzilla/attachment.cgi?id=13497) and https://sourceware.org/git/?p=glibc.git;a=commit;h=42d359350510506b87101cf77202fefcbfc790cb
Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Khem Raj [Sun, 20 Jun 2021 21:46:32 +0000 (14:46 -0700)]
sdk: Enable do_populate_sdk with multilibs
This patch enables building image based SDKs for multi-libbed images
e.g. lib32-core-image-minimal and so on. Change the path to nativesdk
tools to use recipe-sysroot since thats where the nativesdk components
are installed and it will need access to qemu wrappers during build for
processing intercepts
[YOCTO #14444]
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6196a785eababb040ee1dee9f33cb6d6dad77eef) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Wed, 18 Aug 2021 14:05:34 +0000 (10:05 -0400)]
linux-yocto/5.4: update to v5.4.141
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
b704883aa8dc Linux 5.4.141 983d6a6b7e3c btrfs: don't flush from btrfs_delayed_inode_reserve_metadata ea13f678a3fd btrfs: export and rename qgroup_reserve_meta 41a9b8f36de7 btrfs: qgroup: don't commit transaction when we already hold the handle 38b8485b72cb net: xilinx_emaclite: Do not print real IOMEM pointer 654c19a7e8d8 btrfs: fix lockdep splat when enabling and disabling qgroups c55442cdfdb8 btrfs: qgroup: remove ASYNC_COMMIT mechanism in favor of reserve retry-after-EDQUOT fdaf6a322fcc btrfs: transaction: Cleanup unused TRANS_STATE_BLOCKED 36af2de520cc btrfs: qgroup: try to flush qgroup space when we get -EDQUOT 5c79287c2b6d btrfs: qgroup: allow to unreserve range without releasing other ranges b7a722fd75a1 btrfs: make btrfs_qgroup_reserve_data take btrfs_inode dfadea4061a2 btrfs: make qgroup_free_reserved_data take btrfs_inode 812f39ed5b0b ovl: prevent private clone if bind mount is not allowed eeb4742501e0 ppp: Fix generating ppp unit id when ifname is not specified 3460f3959d1c ALSA: hda: Add quirk for ASUS Flow x13 81d1a3f97631 USB:ehci:fix Kunpeng920 ehci hardware problem d28adaabbbf4 KVM: X86: MMU: Use the correct inherited permissions to get shadow page 5f4ab7e25fbb usb: dwc3: gadget: Avoid runtime resume if disabling pullup 1782c4af6bd0 usb: dwc3: gadget: Disable gadget IRQ during pullup disable 54b7022f2878 usb: dwc3: gadget: Clear DEP flags after stop transfers in ep disable e36245a68eb1 usb: dwc3: gadget: Prevent EP queuing while stopping transfers 823f69250863 usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup 25a0625fa96f usb: dwc3: gadget: Allow runtime suspend if UDC unbinded 5f081a928d55 usb: dwc3: Stop active transfers before halting the controller 396f29ea0cd2 tracing: Reject string operand in the histogram expression 28276c280f2e media: v4l2-mem2mem: always consider OUTPUT queue during poll 236aca70929d tee: Correct inappropriate usage of TEE_SHM_DMA_BUF flag 5b774238e8af KVM: SVM: Fix off-by-one indexing when nullifying last used SEV VMCB a998faa9c4ce Linux 5.4.140 3c197fdd0732 arm64: fix compat syscall return truncation 72fcaf69525d net/qla3xxx: fix schedule while atomic in ql_wait_for_drvr_lock and ql_adapter_reset 742e85fa9e80 alpha: Send stop IPI to send to online CPUs 26946d21395c virt_wifi: fix error on connect 17d7c9c940fb reiserfs: check directory items on read from disk bcad6ece2a50 reiserfs: add check for root_inode in reiserfs_fill_super e30a88f1f578 libata: fix ata_pio_sector for CONFIG_HIGHMEM a2671d96a3c7 bpf, selftests: Adjust few selftest result_unpriv outcomes 4892b4f3244b perf/x86/amd: Don't touch the AMD64_EVENTSEL_HOSTONLY bit inside the guest d6cf5342faa6 soc: ixp4xx/qmgr: fix invalid __iomem access a5bf7ef13ebf spi: meson-spicc: fix memory leak in meson_spicc_remove 27991c78d630 soc: ixp4xx: fix printing resources 07fd256d53a3 arm64: vdso: Avoid ISB after reading from cntvct_el0 90e498ef3f54 KVM: x86/mmu: Fix per-cpu counter corruption on 32-bit builds 2e1a80b93464 KVM: Do not leak memory for duplicate debugfs directories 43486cd7391f KVM: x86: accept userspace interrupt only if no event is injected 1b7b9713a50f md/raid10: properly indicate failure when ending a failed write request 790cb68d35a6 pcmcia: i82092: fix a null pointer dereference bug 42ac2c63486f timers: Move clearing of base::timer_running under base:: Lock 8211bb20da23 serial: 8250_pci: Avoid irq sharing for MSI(-X) interrupts. f73dcb5d63e2 serial: 8250_pci: Enumerate Elkhart Lake UARTs via dedicated driver 607460d38692 MIPS: Malta: Do not byte-swap accesses to the CBUS UART 3eb686d01c31 serial: 8250: Mask out floating 16/32-bit bus bits 3b73a69962d6 serial: 8250_mtk: fix uart corruption issue when rx power off afdef443a892 serial: tegra: Only print FIFO error message when an error occurs 097a183f9c1d ext4: fix potential htree corruption when growing large_dir directories ac23a1738127 pipe: increase minimum default pipe size to 2 pages f3cae04bd42d media: rtl28xxu: fix zero-length control request e2f6d5b03898 staging: rtl8712: get rid of flush_scheduled_work 8f241df0e68f staging: rtl8723bs: Fix a resource leak in sd_int_dpc bbdd4a51629a tpm_ftpm_tee: Free and unregister TEE shared memory during kexec 3c712f14d8a9 optee: Fix memory leak when failing to register shm pages 0572199b78b3 tee: add tee_shm_alloc_kernel_buf() b247bf412cc2 optee: Clear stale cache entries during initialization 7da261e6bb65 tracing / histogram: Give calculation hist_fields a size ba22053f5d5e scripts/tracing: fix the bug that can't parse raw_trace_func 8d1191f9243c clk: fix leak on devm_clk_bulk_get_all() unwind ed5c9a49e6c0 usb: otg-fsm: Fix hrtimer list corruption 449a705fba60 usb: gadget: f_hid: idle uses the highest byte for duration 02f336cee589 usb: gadget: f_hid: fixed NULL pointer dereference f780a9580cd2 usb: gadget: f_hid: added GET_IDLE and SET_IDLE handlers 134e27da543d usb: cdns3: Fixed incorrect gadget state df1c6eec4ea1 ALSA: usb-audio: Add registration quirk for JBL Quantum 600 639b45456ec6 ALSA: hda/realtek: add mic quirk for Acer SF314-42 d09639528b66 firmware_loader: fix use-after-free in firmware_fallback_sysfs 1deb6b903018 firmware_loader: use -ETIMEDOUT instead of -EAGAIN in fw_load_sysfs_fallback 0ee687e67277 USB: serial: ftdi_sio: add device ID for Auto-M3 OP-COM v2 01b2c35b051b USB: serial: ch341: fix character loss at high transfer rates 9ed43cfaa7f7 USB: serial: option: add Telit FD980 composition 0x1056 518e81874c40 USB: usbtmc: Fix RCU stall warning ff29fe26ab86 Bluetooth: defer cleanup of resources in hci_unregister_dev() 580c10a40cc7 blk-iolatency: error out if blk_get_queue() failed in iolatency_set_limit() ed169b054b43 net: vxge: fix use-after-free in vxge_device_unregister c5549876a9ef net: fec: fix use-after-free in fec_drv_remove 3fed6dee16e4 net: pegasus: fix uninit-value in get_interrupt_interval 75cef4fc07d2 bnx2x: fix an error code in bnx2x_nic_load() 437ee90d7b4f mips: Fix non-POSIX regexp b1fa6747b9d0 net: ipv6: fix returned variable type in ip6_skb_dst_mtu 3e63b566d96a nfp: update ethtool reporting of pauseframe control d333503de1f0 sctp: move the active_key update after sh_keys is added de30346dd396 gpio: tqmx86: really make IRQ optional 9d440b5c1d20 net: natsemi: Fix missing pci_disable_device() in probe and remove 69340406986a net: phy: micrel: Fix detection of ksz87xx switch 2b8ab7aec0dc net: dsa: sja1105: invalidate dynamic FDB entries learned concurrently with statically added ones 71b0a935dbb0 net: dsa: sja1105: overwrite dynamic FDB entries with static ones in .port_fdb_add 88b7781609c6 net, gro: Set inner transport header offset in tcp/udp GRO hook ba3abe3f8236 dmaengine: imx-dma: configure the generic DMA type to make it work ee2f81330a7b media: videobuf2-core: dequeue if start_streaming fails 3377f2f8c606 scsi: sr: Return correct event when media event code is 3 f588d4b7be92 spi: imx: mx51-ecspi: Fix low-speed CONFIGREG delay calculation b58e3d59a5d8 spi: imx: mx51-ecspi: Reinstate low-speed CONFIGREG delay 2c1065d40acb omap5-board-common: remove not physically existing vdds_1v8_main fixed-regulator 299e3968c01a ARM: dts: am437x-l4: fix typo in can@0 node 9cbe7e21ddff clk: stm32f4: fix post divisor setup for I2S/SAI PLLs 3f9eed4462b3 ALSA: usb-audio: fix incorrect clock source setting 16db40fc4a37 arm64: dts: armada-3720-turris-mox: remove mrvl,i2c-fast-mode 7c08460773b8 ARM: dts: imx: Swap M53Menlo pinctrl_power_button/pinctrl_power_out pins 1b1f1aa225ed ARM: imx: fix missing 3rd argument in macro imx_mmdc_perf_init aecff98c3efe ARM: dts: colibri-imx6ull: limit SDIO clock to 25MHz c39907335b9c ARM: dts: imx6qdl-sr-som: Increase the PHY reset duration to 10ms 61b71c5f51aa ARM: imx: add missing clk_disable_unprepare() d88d6bba3bd9 ARM: imx: add missing iounmap() 6c629cd0239f arm64: dts: ls1028a: fix node name for the sysclk 4a830a37d37e ALSA: seq: Fix racy deletion of subscriber 0658a4533576 Revert "ACPICA: Fix memory leak caused by _CID repair function" e350cd02e293 Linux 5.4.139 03ff8a4f9db6 spi: mediatek: Fix fifo transfer a0f66ddf05c2 bpf, selftests: Adjust few selftest outcomes wrt unreachable code d3796e8f6b3d bpf, selftests: Add a verifier test for assigning 32bit reg states to 64bit ones 8dec99abcd74 bpf: Test_verifier, add alu32 bounds tracking tests fd568de5806f bpf: Fix leakage under speculation on mispredicted branches d2f790327f83 bpf: Do not mark insn as seen under speculative path verification 283d742988f6 bpf: Inherit expanded/patched seen count from old aux data a0a9546aaec3 Revert "watchdog: iTCO_wdt: Account for rebooting on second timeout" 76f5314d7859 firmware: arm_scmi: Add delayed response status check 1b38f70bbc7c firmware: arm_scmi: Ensure drivers provide a probe function 44f522298c94 Revert "Bluetooth: Shutdown controller after workqueues are flushed or cancelled" 38f54217b423 ACPI: fix NULL pointer dereference 0ea2f55babb7 nvme: fix nvme_setup_command metadata trace event b508b652d4f3 net: Fix zero-copy head len calculation. bf692e7ef657 qed: fix possible unpaired spin_{un}lock_bh in _qed_mcp_cmd_and_union() 6bc48348eca7 r8152: Fix potential PM refcount imbalance a57c75ff0700 ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits e2cccb839a18 spi: stm32h7: fix full duplex irq handler handling b72f2d9e91e1 regulator: rt5033: Fix n_voltages settings for BUCK and LDO 86f2a3e9aae9 btrfs: fix lost inode on log replay after mix of fsync, rename and inode eviction b7f0fa2192c5 btrfs: fix race causing unnecessary inode logging during link and rename cb006da62a9e btrfs: do not commit logs and transactions during link and rename operations 174c27d0f9ef btrfs: delete duplicated words + other fixes in comments 7b90d57b09fa Linux 5.4.138 7eef18c0479b can: j1939: j1939_session_deactivate(): clarify lifetime of session object 18b536de3b97 i40e: Add additional info to PHY type error d21eb931109a Revert "perf map: Fix dso->nsinfo refcounting" 16447b2f5c66 powerpc/pseries: Fix regression while building external modules 265883d1d839 PCI: mvebu: Setup BAR0 in order to fix MSI 21734a31c9a0 can: hi311x: fix a signedness bug in hi3110_cmd() f4fa45b0f91e sis900: Fix missing pci_disable_device() in probe and remove dff00ce44891 tulip: windbond-840: Fix missing pci_disable_device() in probe and remove e0310bbeaaa2 sctp: fix return value check in __sctp_rcv_asconf_lookup 408614108abd net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() ac4983230616 net/mlx5: Fix flow table chaining 527feae56fe6 net: llc: fix skb_over_panic ede4c93860e6 mlx4: Fix missing error code in mlx4_load_one() acb97d4b2d0e net: Set true network header for ECN decapsulation 851946a68136 tipc: fix sleeping in tipc accept routine 194b71d28b26 i40e: Fix log TC creation failure when max num of queues is exceeded 834af62212c7 i40e: Fix queue-to-TC mapping on Tx 74aea4b7159a i40e: Fix firmware LLDP agent related warning b2ab34e862eb i40e: Fix logic of disabling queues 519582e44e6a netfilter: nft_nat: allow to specify layer 4 protocol NAT only 3a7a4cee7bec netfilter: conntrack: adjust stop timestamp to real expiry value 1c043783403c cfg80211: Fix possible memory leak in function cfg80211_bss_update 6cf2abea1018 nfc: nfcsim: fix use after free during module unload 6b313d0ffa71 NIU: fix incorrect error return, missed in previous revert c4663c162778 HID: wacom: Re-enable touch by default for Cintiq 24HDT / 27QHDT e9e2ce00aeda can: esd_usb2: fix memory leak 43726620b2f6 can: ems_usb: fix memory leak 819867389276 can: usb_8dev: fix memory leak a051dbd17b5b can: mcba_usb_start(): add missing urb->transfer_dma initialization 793581441b5c can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF c621638d0e6d can: j1939: j1939_xtp_rx_dat_one(): fix rxtimer value between consecutive TP.DT to 750ms a24d87b429a9 ocfs2: issue zeroout to EOF blocks eaaa4284e288 ocfs2: fix zero out valid data 9bd1092148b5 KVM: add missing compat KVM_CLEAR_DIRTY_LOG 7a94dfe5e2a0 x86/kvm: fix vcpu-id indexed array sizes 2dc291582cce Revert "ACPI: resources: Add checks for ACPI IRQ override" a8eec6979734 btrfs: mark compressed range uptodate only if all bio succeed 57429c1ec770 btrfs: fix rw device counting in __btrfs_free_extra_devids 61f2cbc792eb x86/asm: Ensure asm/proto.h can be included stand-alone 99372c38a948 net_sched: check error pointer in tcf_dump_walker() 5b1de8e15f0f Linux 5.4.137 ebb1b38be0c9 ipv6: ip6_finish_output2: set sk into newly allocated nskb 6c04123962f0 ARM: dts: versatile: Fix up interrupt controller node names befa900533a9 iomap: remove the length variable in iomap_seek_hole 83fb41b2f6e4 iomap: remove the length variable in iomap_seek_data 302e1acd4c26 cifs: fix the out of range assignment to bit fields in parse_server_interfaces 02a470e3c64a firmware: arm_scmi: Fix range check for the maximum number of pending messages 289dd584319f firmware: arm_scmi: Fix possible scmi_linux_errmap buffer overflow e3acb292f092 hfs: add lock nesting notation to hfs_find_init af1178296d77 hfs: fix high memory mapping in hfs_bnode_read 89136a47e2e7 hfs: add missing clean-up in hfs_fill_super ded37d03440d ipv6: allocate enough headroom in ip6_finish_output2() f65b7f377cca sctp: move 198 addresses from unusable to private scope c8d32973ee6a net: annotate data race around sk_ll_usec c23b9a5610f9 net/802/garp: fix memleak in garp_request_join() 88c4cae3ed25 net/802/mrp: fix memleak in mrp_request_join() eef99860c677 cgroup1: fix leaked context root causing sporadic NULL deref in LTP 7f0365b4daaa workqueue: fix UAF in pwq_unbound_release_workfn() 85abe0d47fe6 af_unix: fix garbage collect vs MSG_PEEK af45f3527aa0 KVM: x86: determine if an exception has an error code only when injecting it. 828cab3c8c23 tools: Allow proper CC/CXX/... override with LLVM=1 in Makefile.include 525c5513b60d selftest: fix build error in tools/testing/selftests/vm/userfaultfd.c 253dccefb5cb Linux 5.4.136 587f86b7a2a0 xhci: add xhci_get_virt_ep() helper f9d0c35556cd perf inject: Close inject.output on exit a9c103fa91e4 PCI: Mark AMD Navi14 GPU ATS as broken 11561d2f7b9d btrfs: compression: don't try to compress if we don't have enough pages 4980301e1c1f iio: accel: bma180: Fix BMA25x bandwidth register values d04f2582c47e iio: accel: bma180: Use explicit member assignment 4e0afa88954b net: bcmgenet: ensure EXT_ENERGY_DET_MASK is clear 2a4865d1547e net: dsa: mv88e6xxx: use correct .stats_set_histogram() on Topaz 7d8c06b8d2d2 drm: Return -ENOTTY for non-drm ioctls b5d7bebd96a3 nds32: fix up stack guard gap ba378b796088 rbd: always kick acquire on "acquired" and "released" notifications 13066d6628f0 rbd: don't hold lock_rwsem while running_list is being drained b12ead825f6c hugetlbfs: fix mount mode command line processing 60dbbd76f110 userfaultfd: do not untag user pointers 540eee8cbb3d selftest: use mmap instead of posix_memalign to allocate memory e706ac3fc82e ixgbe: Fix packet corruption due to missing DMA sync e617fa62f6cf media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() 77713fb336ca btrfs: check for missing device in btrfs_trim_fs f899f24d34d9 tracing: Fix bug in rb_per_cpu_empty() that might cause deadloop. 59a9f75fb2b6 tracing/histogram: Rename "cpu" to "common_cpu" 379d8da3353e firmware/efi: Tell memblock about EFI iomem reservations 281a94362bbe usb: dwc2: gadget: Fix sending zero length packet in DDMA mode. 167079fbfaa7 USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick 811c4cdf2917 USB: serial: cp210x: fix comments for GE CS1000 f54ee7e16d0d USB: serial: option: add support for u-blox LARA-R6 family e28d28eb9be6 usb: renesas_usbhs: Fix superfluous irqs happen after usb_pkt_pop() 863d071dbcd5 usb: max-3421: Prevent corruption of freed memory e4077a90e600 USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS da6f6769ee0f usb: hub: Fix link power management max exit latency (MEL) calculations fea6b53e631a usb: hub: Disable USB 3 device initiated lpm if exit latency is too high 962ce043ef92 KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state 2b9ffddd70b4 KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow c968f563ccde xhci: Fix lost USB 2 remote wake a660ecde5c55 ALSA: hdmi: Expose all pins on MSI MS-7C94 board f73696354d59 ALSA: sb: Fix potential ABBA deadlock in CSP driver 7aa2dfbc6bd0 ALSA: usb-audio: Add registration quirk for JBL Quantum headsets 46d62c3fe2ab ALSA: usb-audio: Add missing proc text entry for BESPOKEN type f1754f96ab41 s390/boot: fix use of expolines in the DMA code 8eb521d19248 s390/ftrace: fix ftrace_update_ftrace_func implementation 268132b070d9 Revert "MIPS: add PMD table accounting into MIPS'pmd_alloc_one" f323809e3108 proc: Avoid mixing integer types in mem_rw() b71a75209f6a drm/panel: raspberrypi-touchscreen: Prevent double-free 2e6ab87f8e63 net: sched: cls_api: Fix the the wrong parameter b60461696a0b sctp: update active_key for asoc when old key is being replaced 9fa89c2caee2 nvme: set the PRACT bit when using Write Zeroes with T10 PI c50141b3d769 r8169: Avoid duplicate sysfs entry creation error f726817d6b42 afs: Fix tracepoint string placement with built-in AFS b22c9e433bb7 Revert "USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem" 69a49e7b5baf nvme-pci: don't WARN_ON in nvme_reset_work if ctrl.state is not RESETTING 830251361425 ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions a88414fb1117 net/sched: act_skbmod: Skip non-Ethernet packets c278b954ccc7 net: hns3: fix rx VLAN offload state inconsistent issue 006ed6f4d00b net/tcp_fastopen: fix data races around tfo_active_disable_stamp 3942ba235693 net: hisilicon: rename CACHE_LINE_MASK to avoid redefinition f11f12decd55 bnxt_en: Check abort error state in bnxt_half_open_nic() 16ce6cb78690 bnxt_en: Add missing check for BNXT_STATE_ABORT_ERR in bnxt_fw_rset_task() c993e7aadc50 bnxt_en: Refresh RoCE capabilities in bnxt_ulp_probe() 6ee8e6be3067 bnxt_en: Improve bnxt_ulp_stop()/bnxt_ulp_start() call sequence. 35637acc9810 spi: cadence: Correct initialisation of runtime PM again 2f2150bf41c1 scsi: target: Fix protect handling in WRITE SAME(32) a6cb717f8534 scsi: iscsi: Fix iface sysfs attr detection 25df44e90ff5 netrom: Decrease sock refcount when sock timers expire 8d7924ce85ba net: sched: fix memory leak in tcindex_partial_destroy_work f38527f18905 KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak b85dadd4347b KVM: PPC: Book3S: Fix CONFIG_TRANSACTIONAL_MEM=n crash b3224bd31861 net: decnet: Fix sleeping inside in af_decnet bd2b3b13aa2a efi/tpm: Differentiate missing and invalid final event log table. 9413c0abb57f net: fix uninit-value in caif_seqpkt_sendmsg 6d56299ff911 bpftool: Check malloc return value in mount_bpffs_for_pin edec10098675 bpf, sockmap, tcp: sk_prot needs inuse_idx set for proc stats 58259e8b6e85 s390/bpf: Perform r1 range checking before accessing jit->seen_reg[r1] cc876a5618bc liquidio: Fix unintentional sign extension issue on left shift of u16 42fe8f433b31 ASoC: rt5631: Fix regcache sync errors on resume d99aaf07365f spi: mediatek: fix fifo rx mode 08cdda8d8972 regulator: hi6421: Fix getting wrong drvdata b25be6bf6419 regulator: hi6421: Use correct variable type for regmap api val argument a1ade24cccb5 spi: stm32: fixes pm_runtime calls in probe/remove 40e203ce74eb spi: stm32: Use dma_request_chan() instead dma_request_slave_channel() 24b78097a837 spi: imx: add a check for speed_hz before calculating the clock 52cff6123aa0 perf data: Close all files in close_dir() 0f63857d1099 perf probe-file: Delete namelist in del_events() on the error path 8b92ea243bbf perf lzma: Close lzma stream on exit 51351c6d5a18 perf script: Fix memory 'threads' and 'cpus' leaks on exit d2bfc3eda914 perf dso: Fix memory leak in dso__new_map() 05804a7d223d perf test event_update: Fix memory leak of evlist d257f3abdc71 perf test session_topology: Delete session->evlist 89d1762a4a21 perf env: Fix sibling_dies memory leak fd335143befb perf probe: Fix dso->nsinfo refcounting 6513dee46f80 perf map: Fix dso->nsinfo refcounting ff9fc81fa884 nvme-pci: do not call nvme_dev_remove_admin from nvme_remove d029df83c61a cxgb4: fix IRQ free race during driver unload ae9b64434441 pwm: sprd: Ensure configuring period and duty_cycle isn't wrongly skipped a37ca2a076ec selftests: icmp_redirect: IPv6 PMTU info should be cleared after redirect 05364a2794fb selftests: icmp_redirect: remove from checking for IPv6 route get 7f4848229e91 ipv6: fix 'disable_policy' for fwd packets c67fb96f5431 gve: Fix an error handling path in 'gve_probe()' e33da4eeaa35 igb: Fix position of assignment to *ring 7dd897773618 igb: Check if num of q_vectors is smaller than max before array access d3d7cceee841 iavf: Fix an error handling path in 'iavf_probe()' 7a13a8a8a5fb e1000e: Fix an error handling path in 'e1000_probe()' 9fc381db7583 fm10k: Fix an error handling path in 'fm10k_probe()' 5d6a04927b08 igb: Fix an error handling path in 'igb_probe()' cddd53237de8 igc: Fix an error handling path in 'igc_probe()' 47f69d8828e7 igc: Prefer to use the pci_release_mem_regions method 83b2d55a512a ixgbe: Fix an error handling path in 'ixgbe_probe()' ba4fbb68fcfe igc: change default return of igc_read_phy_reg() 88e0720133d4 igb: Fix use-after-free error during reset a9508e0edfe3 igc: Fix use-after-free error during reset
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Sun, 15 Aug 2021 15:08:54 +0000 (11:08 -0400)]
linux-yocto/5.4: update to v5.4.139
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
e350cd02e293 Linux 5.4.139 03ff8a4f9db6 spi: mediatek: Fix fifo transfer a0f66ddf05c2 bpf, selftests: Adjust few selftest outcomes wrt unreachable code d3796e8f6b3d bpf, selftests: Add a verifier test for assigning 32bit reg states to 64bit ones 8dec99abcd74 bpf: Test_verifier, add alu32 bounds tracking tests fd568de5806f bpf: Fix leakage under speculation on mispredicted branches d2f790327f83 bpf: Do not mark insn as seen under speculative path verification 283d742988f6 bpf: Inherit expanded/patched seen count from old aux data a0a9546aaec3 Revert "watchdog: iTCO_wdt: Account for rebooting on second timeout" 76f5314d7859 firmware: arm_scmi: Add delayed response status check 1b38f70bbc7c firmware: arm_scmi: Ensure drivers provide a probe function 44f522298c94 Revert "Bluetooth: Shutdown controller after workqueues are flushed or cancelled" 38f54217b423 ACPI: fix NULL pointer dereference 0ea2f55babb7 nvme: fix nvme_setup_command metadata trace event b508b652d4f3 net: Fix zero-copy head len calculation. bf692e7ef657 qed: fix possible unpaired spin_{un}lock_bh in _qed_mcp_cmd_and_union() 6bc48348eca7 r8152: Fix potential PM refcount imbalance a57c75ff0700 ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits e2cccb839a18 spi: stm32h7: fix full duplex irq handler handling b72f2d9e91e1 regulator: rt5033: Fix n_voltages settings for BUCK and LDO 86f2a3e9aae9 btrfs: fix lost inode on log replay after mix of fsync, rename and inode eviction b7f0fa2192c5 btrfs: fix race causing unnecessary inode logging during link and rename cb006da62a9e btrfs: do not commit logs and transactions during link and rename operations 174c27d0f9ef btrfs: delete duplicated words + other fixes in comments 7b90d57b09fa Linux 5.4.138 7eef18c0479b can: j1939: j1939_session_deactivate(): clarify lifetime of session object 18b536de3b97 i40e: Add additional info to PHY type error d21eb931109a Revert "perf map: Fix dso->nsinfo refcounting" 16447b2f5c66 powerpc/pseries: Fix regression while building external modules 265883d1d839 PCI: mvebu: Setup BAR0 in order to fix MSI 21734a31c9a0 can: hi311x: fix a signedness bug in hi3110_cmd() f4fa45b0f91e sis900: Fix missing pci_disable_device() in probe and remove dff00ce44891 tulip: windbond-840: Fix missing pci_disable_device() in probe and remove e0310bbeaaa2 sctp: fix return value check in __sctp_rcv_asconf_lookup 408614108abd net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() ac4983230616 net/mlx5: Fix flow table chaining 527feae56fe6 net: llc: fix skb_over_panic ede4c93860e6 mlx4: Fix missing error code in mlx4_load_one() acb97d4b2d0e net: Set true network header for ECN decapsulation 851946a68136 tipc: fix sleeping in tipc accept routine 194b71d28b26 i40e: Fix log TC creation failure when max num of queues is exceeded 834af62212c7 i40e: Fix queue-to-TC mapping on Tx 74aea4b7159a i40e: Fix firmware LLDP agent related warning b2ab34e862eb i40e: Fix logic of disabling queues 519582e44e6a netfilter: nft_nat: allow to specify layer 4 protocol NAT only 3a7a4cee7bec netfilter: conntrack: adjust stop timestamp to real expiry value 1c043783403c cfg80211: Fix possible memory leak in function cfg80211_bss_update 6cf2abea1018 nfc: nfcsim: fix use after free during module unload 6b313d0ffa71 NIU: fix incorrect error return, missed in previous revert c4663c162778 HID: wacom: Re-enable touch by default for Cintiq 24HDT / 27QHDT e9e2ce00aeda can: esd_usb2: fix memory leak 43726620b2f6 can: ems_usb: fix memory leak 819867389276 can: usb_8dev: fix memory leak a051dbd17b5b can: mcba_usb_start(): add missing urb->transfer_dma initialization 793581441b5c can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF c621638d0e6d can: j1939: j1939_xtp_rx_dat_one(): fix rxtimer value between consecutive TP.DT to 750ms a24d87b429a9 ocfs2: issue zeroout to EOF blocks eaaa4284e288 ocfs2: fix zero out valid data 9bd1092148b5 KVM: add missing compat KVM_CLEAR_DIRTY_LOG 7a94dfe5e2a0 x86/kvm: fix vcpu-id indexed array sizes 2dc291582cce Revert "ACPI: resources: Add checks for ACPI IRQ override" a8eec6979734 btrfs: mark compressed range uptodate only if all bio succeed 57429c1ec770 btrfs: fix rw device counting in __btrfs_free_extra_devids 61f2cbc792eb x86/asm: Ensure asm/proto.h can be included stand-alone 99372c38a948 net_sched: check error pointer in tcf_dump_walker()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit d5455d9e201e324b7cf7bb19381bfebb0e892312) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Sun, 15 Aug 2021 15:08:53 +0000 (11:08 -0400)]
linux-yocto/5.4: update to v5.4.137
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
5b1de8e15f0f Linux 5.4.137 ebb1b38be0c9 ipv6: ip6_finish_output2: set sk into newly allocated nskb 6c04123962f0 ARM: dts: versatile: Fix up interrupt controller node names befa900533a9 iomap: remove the length variable in iomap_seek_hole 83fb41b2f6e4 iomap: remove the length variable in iomap_seek_data 302e1acd4c26 cifs: fix the out of range assignment to bit fields in parse_server_interfaces 02a470e3c64a firmware: arm_scmi: Fix range check for the maximum number of pending messages 289dd584319f firmware: arm_scmi: Fix possible scmi_linux_errmap buffer overflow e3acb292f092 hfs: add lock nesting notation to hfs_find_init af1178296d77 hfs: fix high memory mapping in hfs_bnode_read 89136a47e2e7 hfs: add missing clean-up in hfs_fill_super ded37d03440d ipv6: allocate enough headroom in ip6_finish_output2() f65b7f377cca sctp: move 198 addresses from unusable to private scope c8d32973ee6a net: annotate data race around sk_ll_usec c23b9a5610f9 net/802/garp: fix memleak in garp_request_join() 88c4cae3ed25 net/802/mrp: fix memleak in mrp_request_join() eef99860c677 cgroup1: fix leaked context root causing sporadic NULL deref in LTP 7f0365b4daaa workqueue: fix UAF in pwq_unbound_release_workfn() 85abe0d47fe6 af_unix: fix garbage collect vs MSG_PEEK af45f3527aa0 KVM: x86: determine if an exception has an error code only when injecting it. 828cab3c8c23 tools: Allow proper CC/CXX/... override with LLVM=1 in Makefile.include 525c5513b60d selftest: fix build error in tools/testing/selftests/vm/userfaultfd.c 253dccefb5cb Linux 5.4.136 587f86b7a2a0 xhci: add xhci_get_virt_ep() helper f9d0c35556cd perf inject: Close inject.output on exit a9c103fa91e4 PCI: Mark AMD Navi14 GPU ATS as broken 11561d2f7b9d btrfs: compression: don't try to compress if we don't have enough pages 4980301e1c1f iio: accel: bma180: Fix BMA25x bandwidth register values d04f2582c47e iio: accel: bma180: Use explicit member assignment 4e0afa88954b net: bcmgenet: ensure EXT_ENERGY_DET_MASK is clear 2a4865d1547e net: dsa: mv88e6xxx: use correct .stats_set_histogram() on Topaz 7d8c06b8d2d2 drm: Return -ENOTTY for non-drm ioctls b5d7bebd96a3 nds32: fix up stack guard gap ba378b796088 rbd: always kick acquire on "acquired" and "released" notifications 13066d6628f0 rbd: don't hold lock_rwsem while running_list is being drained b12ead825f6c hugetlbfs: fix mount mode command line processing 60dbbd76f110 userfaultfd: do not untag user pointers 540eee8cbb3d selftest: use mmap instead of posix_memalign to allocate memory e706ac3fc82e ixgbe: Fix packet corruption due to missing DMA sync e617fa62f6cf media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() 77713fb336ca btrfs: check for missing device in btrfs_trim_fs f899f24d34d9 tracing: Fix bug in rb_per_cpu_empty() that might cause deadloop. 59a9f75fb2b6 tracing/histogram: Rename "cpu" to "common_cpu" 379d8da3353e firmware/efi: Tell memblock about EFI iomem reservations 281a94362bbe usb: dwc2: gadget: Fix sending zero length packet in DDMA mode. 167079fbfaa7 USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick 811c4cdf2917 USB: serial: cp210x: fix comments for GE CS1000 f54ee7e16d0d USB: serial: option: add support for u-blox LARA-R6 family e28d28eb9be6 usb: renesas_usbhs: Fix superfluous irqs happen after usb_pkt_pop() 863d071dbcd5 usb: max-3421: Prevent corruption of freed memory e4077a90e600 USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS da6f6769ee0f usb: hub: Fix link power management max exit latency (MEL) calculations fea6b53e631a usb: hub: Disable USB 3 device initiated lpm if exit latency is too high 962ce043ef92 KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state 2b9ffddd70b4 KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow c968f563ccde xhci: Fix lost USB 2 remote wake a660ecde5c55 ALSA: hdmi: Expose all pins on MSI MS-7C94 board f73696354d59 ALSA: sb: Fix potential ABBA deadlock in CSP driver 7aa2dfbc6bd0 ALSA: usb-audio: Add registration quirk for JBL Quantum headsets 46d62c3fe2ab ALSA: usb-audio: Add missing proc text entry for BESPOKEN type f1754f96ab41 s390/boot: fix use of expolines in the DMA code 8eb521d19248 s390/ftrace: fix ftrace_update_ftrace_func implementation 268132b070d9 Revert "MIPS: add PMD table accounting into MIPS'pmd_alloc_one" f323809e3108 proc: Avoid mixing integer types in mem_rw() b71a75209f6a drm/panel: raspberrypi-touchscreen: Prevent double-free 2e6ab87f8e63 net: sched: cls_api: Fix the the wrong parameter b60461696a0b sctp: update active_key for asoc when old key is being replaced 9fa89c2caee2 nvme: set the PRACT bit when using Write Zeroes with T10 PI c50141b3d769 r8169: Avoid duplicate sysfs entry creation error f726817d6b42 afs: Fix tracepoint string placement with built-in AFS b22c9e433bb7 Revert "USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem" 69a49e7b5baf nvme-pci: don't WARN_ON in nvme_reset_work if ctrl.state is not RESETTING 830251361425 ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions a88414fb1117 net/sched: act_skbmod: Skip non-Ethernet packets c278b954ccc7 net: hns3: fix rx VLAN offload state inconsistent issue 006ed6f4d00b net/tcp_fastopen: fix data races around tfo_active_disable_stamp 3942ba235693 net: hisilicon: rename CACHE_LINE_MASK to avoid redefinition f11f12decd55 bnxt_en: Check abort error state in bnxt_half_open_nic() 16ce6cb78690 bnxt_en: Add missing check for BNXT_STATE_ABORT_ERR in bnxt_fw_rset_task() c993e7aadc50 bnxt_en: Refresh RoCE capabilities in bnxt_ulp_probe() 6ee8e6be3067 bnxt_en: Improve bnxt_ulp_stop()/bnxt_ulp_start() call sequence. 35637acc9810 spi: cadence: Correct initialisation of runtime PM again 2f2150bf41c1 scsi: target: Fix protect handling in WRITE SAME(32) a6cb717f8534 scsi: iscsi: Fix iface sysfs attr detection 25df44e90ff5 netrom: Decrease sock refcount when sock timers expire 8d7924ce85ba net: sched: fix memory leak in tcindex_partial_destroy_work f38527f18905 KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak b85dadd4347b KVM: PPC: Book3S: Fix CONFIG_TRANSACTIONAL_MEM=n crash b3224bd31861 net: decnet: Fix sleeping inside in af_decnet bd2b3b13aa2a efi/tpm: Differentiate missing and invalid final event log table. 9413c0abb57f net: fix uninit-value in caif_seqpkt_sendmsg 6d56299ff911 bpftool: Check malloc return value in mount_bpffs_for_pin edec10098675 bpf, sockmap, tcp: sk_prot needs inuse_idx set for proc stats 58259e8b6e85 s390/bpf: Perform r1 range checking before accessing jit->seen_reg[r1] cc876a5618bc liquidio: Fix unintentional sign extension issue on left shift of u16 42fe8f433b31 ASoC: rt5631: Fix regcache sync errors on resume d99aaf07365f spi: mediatek: fix fifo rx mode 08cdda8d8972 regulator: hi6421: Fix getting wrong drvdata b25be6bf6419 regulator: hi6421: Use correct variable type for regmap api val argument a1ade24cccb5 spi: stm32: fixes pm_runtime calls in probe/remove 40e203ce74eb spi: stm32: Use dma_request_chan() instead dma_request_slave_channel() 24b78097a837 spi: imx: add a check for speed_hz before calculating the clock 52cff6123aa0 perf data: Close all files in close_dir() 0f63857d1099 perf probe-file: Delete namelist in del_events() on the error path 8b92ea243bbf perf lzma: Close lzma stream on exit 51351c6d5a18 perf script: Fix memory 'threads' and 'cpus' leaks on exit d2bfc3eda914 perf dso: Fix memory leak in dso__new_map() 05804a7d223d perf test event_update: Fix memory leak of evlist d257f3abdc71 perf test session_topology: Delete session->evlist 89d1762a4a21 perf env: Fix sibling_dies memory leak fd335143befb perf probe: Fix dso->nsinfo refcounting 6513dee46f80 perf map: Fix dso->nsinfo refcounting ff9fc81fa884 nvme-pci: do not call nvme_dev_remove_admin from nvme_remove d029df83c61a cxgb4: fix IRQ free race during driver unload ae9b64434441 pwm: sprd: Ensure configuring period and duty_cycle isn't wrongly skipped a37ca2a076ec selftests: icmp_redirect: IPv6 PMTU info should be cleared after redirect 05364a2794fb selftests: icmp_redirect: remove from checking for IPv6 route get 7f4848229e91 ipv6: fix 'disable_policy' for fwd packets c67fb96f5431 gve: Fix an error handling path in 'gve_probe()' e33da4eeaa35 igb: Fix position of assignment to *ring 7dd897773618 igb: Check if num of q_vectors is smaller than max before array access d3d7cceee841 iavf: Fix an error handling path in 'iavf_probe()' 7a13a8a8a5fb e1000e: Fix an error handling path in 'e1000_probe()' 9fc381db7583 fm10k: Fix an error handling path in 'fm10k_probe()' 5d6a04927b08 igb: Fix an error handling path in 'igb_probe()' cddd53237de8 igc: Fix an error handling path in 'igc_probe()' 47f69d8828e7 igc: Prefer to use the pci_release_mem_regions method 83b2d55a512a ixgbe: Fix an error handling path in 'ixgbe_probe()' ba4fbb68fcfe igc: change default return of igc_read_phy_reg() 88e0720133d4 igb: Fix use-after-free error during reset a9508e0edfe3 igc: Fix use-after-free error during reset
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit d308f120891e23c34fa8ae38a7e87aa3810518ae) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Fri, 26 Jun 2020 15:40:44 +0000 (16:40 +0100)]
ovmf: build natively everywhere
The OVMF target binaries are (currently) x86-specific, but the native
tools to build them are not.
Make the COMPATIBLE_HOST assignment target-specific, so that the native
tools can be built on an arm64 build server.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 58ebb47688fc98fdaeb78b4033bd31100218d5d6) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Mon, 16 Aug 2021 09:15:40 +0000 (10:15 +0100)]
oeqa/selftest/glibc: Handle incorrect encoding issuesin glibc test results
We dont control the test output and sometimes see badly encoded characters.
These don't affect the operation of the code we're running. Use
errors='replace' to avoid those issues and the resulting test failures.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3939b1923387d3bc440118ed1663d28a03a1ea5d) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Since commit [bc4ee54535 sdk: Decouple default install path from
built in path] applied, sdk relocates symlink failed, it should
replace $SDK_BUILD_PATH rather than $DEFAULT_INSTALL_DIR, just
like above commit did
Without this commit:
...
|+ for l in $($SUDO_EXEC find $native_sysroot -type l)
|++ readlink path-to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat
|++ sed -e s:/usr/local/oecore-x86_64:path-to:
|+ ln -sfn /opt/windriver/wrlinux-graphics/21.32/sysroots/x86_64-wrlinuxsdk-linux/
usr/bin/mkfs.vfat.dosfstools path-to//sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat
...
After appling this commit:
...
|+ for l in $($SUDO_EXEC find $native_sysroot -type l)
|++ readlink path-to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat
|++ sed -e s:/opt/windriver/wrlinux-graphics/21.31:path-to:
|+ ln -sfn path-to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat.dosfstools
path-to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat
...
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 942c06a7348070b92f722fa5c439c8c4404485b7) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Mon, 16 Aug 2021 09:05:49 +0000 (10:05 +0100)]
tar: ignore node-tar CVEs
These two CVEs are specific to the Node package node-tar.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bc7216e8148d0dee7b56e6851da6615e93647a0a) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Jose Quaresma [Sun, 8 Aug 2021 13:11:45 +0000 (14:11 +0100)]
sstate.bbclass: fix error handling when sstate mirrors is ro
The commit dd555537fc35c5f934af09d601d70772eb5955ae
'sstate.bbclass: fix errors about read-only sstate mirrors'
adds an additional exception handler to silently mask read
only rootfs errors thrown during the touch.
The exception handler checks the error type with the python module errno
but this module needs to be imported as it don't exist.
Example of the error:
File: 'exec_python_func() autogenerated', lineno: 2, function: <module>
0001:
*** 0002:sstate_task_postfunc(d)
0003:
File: '/home/builder/src/base/poky/meta/classes/sstate.bbclass', lineno: 778, function: sstate_task_postfunc
0774:
0775: omask = os.umask(0o002)
0776: if omask != 0o002:
0777: bb.note("Using umask 0o002 (not %0o) for sstate packaging" % omask)
*** 0778: sstate_package(shared_state, d)
0779: os.umask(omask)
0780:
0781: sstateinst = d.getVar("SSTATE_INSTDIR")
0782: d.setVar('SSTATE_FIXMEDIR', shared_state['fixmedir'])
File: '/home/builder/src/base/poky/meta/classes/sstate.bbclass', lineno: 708, function: sstate_package
0704: except PermissionError:
0705: pass
0706: except OSError as e:
0707: # Handle read-only file systems gracefully
*** 0708: if e.errno != errno.EROFS:
0709: raise e
0710:
0711: return
0712:
Exception: NameError: name 'errno' is not defined
Signed-off-by: Jose Quaresma <quaresma.jose@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 15f30ad144fbe25e9a5e71bc7e42e746d2039992) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Mon, 9 Aug 2021 15:36:49 +0000 (16:36 +0100)]
wic: don't forcibly pass -T default
This reverts part of oe-core eecbe62555, which was a previous attempt
to solve the Y2038 problem. This is now solved centrally in e2fsprogs,
so doesn't need to be dealt with in wic.
We don't revert the commit entirely, to retain the warning if a
filesystem has small inodes.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 7e8017208bed98b6c90735cb641fc9d7aedf9140) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Mon, 9 Aug 2021 15:36:48 +0000 (16:36 +0100)]
e2fsprogs: ensure small images have 256-byte inodes
e2fsprogs calls filesystems larger than 3MB but smaller than 512MB
"small", which has some implications:
- blocksize 1024 instead of 4096
- inode_ratio 4096 instead of 16384
- inode_size 128 instead of 256
The outcome of the inode size dropping to 128 bytes is that they cannot
store 64-bit timestamps, so are not Y2038-safe.
A previous attempt to solve this problem[1] changed some of the canned
wic files to pass -T default to mkfs.ext4, but this only covered wic
images and not traditional images. Also, actually small filesystems,
for example a core-image-minimal, will happily be tens of megabytes and
with the "default" options will result in an image which runs out of
blocks before it runs out of space:
mkfs.ext4: Could not allocate block in ext2 filesystem while populating file system
Considering that many OpenEmbedded images are in fact "small", being
2038-safe is worth the marginal increase is disk usage. This patch
alters the small configuration in native builds so that it also has
256-byte inodes. Target is unchanged so that standard behaviour is
maintained outside of the build.
This is actually the same underlying patch that Mathieu Dubois-Briand
sent in April, but the wic change in [1] was accepted instead. I believe
that is the wrong approach and this approach covers more cases.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9ab0ae83a24ee99e69f8ac54256b253a122aef8a) Signed-off-by: Steve Sakoman <steve@sakoman.com>
This variable has been deprecated since Yocto Project version 3.0.
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f8ac58568b2dceef54a743369460019b3a3eeccd) Signed-off-by: Steve Sakoman <steve@sakoman.com>
cve-check: improve comment about CVE patch file names
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 8aa613480663e11ecc62278d8c57ca719eb23899) Signed-off-by: Steve Sakoman <steve@sakoman.com>
cve-check: update link to NVD website for CVE details
The old URL schema
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-ID
now redirects to
https://nvd.nist.gov/vuln/detail/CVE-ID
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 57adb57a9d9b08c08ab606ec7b561792e4f4ff2d) Signed-off-by: Steve Sakoman <steve@sakoman.com>
This implements various fixes in comments in cve-check.bbclass
In particular, the "whitlisted" typo is important as the "whitelisted"
word is going to be replaced in a near future.
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5eecd2bf942254d08c252388594e5ec7ae330f45) Signed-off-by: Steve Sakoman <steve@sakoman.com>
akuster [Mon, 8 Feb 2021 05:51:30 +0000 (05:51 +0000)]
cve-check: add include/exclude layers
There are times when exluding or including a layer
may be desired. This provide the framwork for that via
two variables. The default is all layers in bblayers.
Matthias Klein [Wed, 4 Aug 2021 08:53:39 +0000 (10:53 +0200)]
runqemu: Fix typo in error message
Signed-off-by: Matthias Klein <matthias@extraklein.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5cc0051d50974e198313f9513b24fd7ae9a96dd4) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Paul Barker [Mon, 2 Aug 2021 10:44:30 +0000 (11:44 +0100)]
kernel-yocto: Simplify no git repo case in do_kernel_checkout
If the kernel sources are not fetched via git, a local git repository is
created in do_kernel_checkout. In this case we know that there will be
no remote branches and we will already be on the correct branch (since
only one branch will exist). So we can simplify things by skipping these
steps.
This also removes the assumption that the default git branch name will
be "master". Prior to this change, the final git checkout command in
do_kernel_checkout could fail if a local git repo was created and the
user had changed init.defaultBranch in their gitconfig.
Signed-off-by: Paul Barker <paul@pbarker.dev> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit af2a9c92d4498492ca23388c7b4bbed48abdc4d7) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Tue, 3 Aug 2021 10:46:56 +0000 (11:46 +0100)]
license: Exclude COPYING.MIT from pseudo
Along with the other license exclusions, we need to exclude the
top level COPYING.MIT file else when:
COPY_LIC_DIRS = "1"
COPY_LIC_MANIFEST = "1"
is set, we see eSDK failures from a pseudo abort.
[YOCTO #14366]
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3eb580843de3f055e42fcce60b0f15c4190c0542) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Minjae Kim [Tue, 10 Aug 2021 01:36:54 +0000 (10:36 +0900)]
ruby: 2.7.3 -> 2.7.4
This release includes security fixes.
CVE-2021-31810: Trusting FTP PASV responses vulnerability in Net::FTP
CVE-2021-32066: A StartTLS stripping vulnerability in Net::IMAP
CVE-2021-31799: A command injection vulnerability in RDoc
https://www.ruby-lang.org/en/news/2021/07/07/ruby-2-7-4-released/ Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ralph Siemsen [Mon, 9 Aug 2021 19:10:17 +0000 (15:10 -0400)]
glibc: Document and whitelist CVE-2021-35942
This CVE is fixed in the upstream glibc-2.31 branch, and dunfell already
includes an update to this version in commit e1e89ff7d75c3d22 ("glibc:
update to lastest 2.31 release HEAD")
Signed-off-by: Ralph Siemsen <ralph.siemsen@linaro.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Lee Chee Yang [Wed, 4 Aug 2021 08:21:46 +0000 (16:21 +0800)]
aspell: fix CVE-2019-25051
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 297f8c4eb4ff209b5ea69910902d216d86dbe2bf) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Sun, 1 Aug 2021 12:47:21 +0000 (13:47 +0100)]
sstate: Fix rebuilds when changing layer config
When adding a layer which changed SSTATE_EXCLUDEDEPS_SYSROOT, the state
hashes were changing when they should not. This was caused by wider use
of setscene_depvalid which means the dependency on the variable was seen
when it was previously not.
Exclude the variable since this should be be included in the hashes.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 09725a29365c69ccbd603fe3a1de72189f26d5ac) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Thu, 29 Jul 2021 04:50:00 +0000 (00:50 -0400)]
linux-yocto/5.4: update to v5.4.135
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
0a0beb1f9120 Linux 5.4.135 d2f7b384a74f udp: annotate data races around unix_sk(sk)->gso_size c72374978b3f perf test bpf: Free obj_buf 17bc942c0b96 bpftool: Properly close va_list 'ap' by va_end() on error 84ed8340941a ipv6: tcp: drop silly ICMPv6 packet too big messages 315033cab379 tcp: annotate data races around tp->mtu_info 41f45e91c92c dma-buf/sync_file: Don't leak fences on merge failure 04b06716838b net: fddi: fix UAF in fza_probe 8aa13a86964c net: validate lwtstate->data before returning from skb_tunnel_info() 8cff7b28ab05 net: send SYNACK packet with accepted fwmark b7e5563f2a78 net: ti: fix UAF in tlan:remove_one 2b70ca92847c net: qcom/emac: fix UAF in emac:remove 463c0addb4eb net: moxa: fix UAF in moxart_mac_probe 7ac4a6a74e75 net: ip_tunnel: fix mtu calculation for ETHER tunnel devices d5dc50ca1f7a net: bcmgenet: Ensure all TX/RX queues DMAs are disabled 7ecd40801e5b net: bridge: sync fdb to new unicast-filtering ports 813d45499f51 net/sched: act_ct: fix err check for nf_conntrack_confirm 24973073562f netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo c6f4a71153f4 net: ipv6: fix return value of ip6_skb_dst_mtu 9872273b670a net: dsa: mv88e6xxx: enable .rmu_disable() on Topaz 6148ddff2dcb net: dsa: mv88e6xxx: enable .port_set_policy() on Topaz d73c180e6add dm writecache: return the exact table values that were set 8a85afc6621a mm: slab: fix kmem_cache_create failed when sysfs node not destroyed f53729b828db usb: cdns3: Enable TDL_CHK only for OUT ep 52b01a808696 f2fs: Show casefolding support only when supported 91d846016729 arm64: dts: marvell: armada-37xx: move firmware node to generic dtsi file f696cc7f1bc8 firmware: turris-mox-rwtm: add marvell,armada-3700-rwtm-firmware compatible string e2b28026b861 arm64: dts: armada-3720-turris-mox: add firmware node f7d1fa65e742 cifs: prevent NULL deref in cifs_compose_mount_options() 06d8a7eb5803 s390: introduce proper type handling call_on_stack() macro 2a47e0719ae7 sched/fair: Fix CFS bandwidth hrtimer expiry type 5b7d065868a6 scsi: qedf: Add check to synchronize abort and flush 0fe70c15f943 scsi: libfc: Fix array index out of bound exception d7b647d05586 scsi: libsas: Add LUN number check in .slave_alloc callback 863c4bc883d5 scsi: aic7xxx: Fix unintentional sign extension issue on left shift of u8 712e9ed6134f rtc: max77686: Do not enforce (incorrect) interrupt trigger type 199d8ea4c7b1 kbuild: mkcompile_h: consider timestamp if KBUILD_BUILD_TIMESTAMP is set 484193b635a7 thermal/core: Correct function name thermal_zone_device_unregister() 556cf0283035 arm64: dts: imx8mq: assign PCIe clocks 9d3eb68a5385 arm64: dts: ls208xa: remove bus-num from dspi node e054b361caec firmware: tegra: bpmp: Fix Tegra234-only builds 94d009577033 soc/tegra: fuse: Fix Tegra234-only builds 270a2e9fafea ARM: dts: stm32: move stmmac axi config in ethernet node on stm32mp15 4bc66215bc22 ARM: dts: stm32: fix i2c node name on stm32f746 to prevent warnings 856c753237ae ARM: dts: rockchip: fix supply properties in io-domains nodes c5bb9cc2ce23 arm64: dts: juno: Update SCPI nodes as per the YAML schema f572a9139396 ARM: dts: stm32: fix timer nodes on STM32 MCU to prevent warnings 95e795474c81 ARM: dts: stm32: fix RCC node name on stm32f429 MCU a898aa9f88cc ARM: dts: stm32: fix gpio-keys node on STM32 MCU boards 5c17edaaead7 ARM: dts: am437x-gp-evm: fix ti,no-reset-on-init flag for gpios 3446233096ff ARM: dts: am57xx-cl-som-am57x: fix ti,no-reset-on-init flag for gpios e79e29a4e162 kbuild: sink stdout from cmd for silent build f817d4677582 rtc: mxc_v2: add missing MODULE_DEVICE_TABLE 0a22b5178276 ARM: imx: pm-imx5: Fix references to imx5_cpu_suspend_info e20e85639e25 ARM: dts: imx6: phyFLEX: Fix UART hardware flow control a5b19d33ae22 ARM: dts: Hurricane 2: Fix NAND nodes names f83535a47ff8 ARM: dts: BCM63xx: Fix NAND nodes names cb05b84ad7f1 ARM: NSP: dts: fix NAND nodes names 14e3bad3b548 ARM: Cygnus: dts: fix NAND nodes names 587a757afe73 ARM: brcmstb: dts: fix NAND nodes names a9c32c7aeee6 reset: ti-syscon: fix to_ti_syscon_reset_data macro b400afa42739 arm64: dts: rockchip: Fix power-controller node names for rk3328 dfb4e8ed0792 arm64: dts: rockchip: Fix power-controller node names for px30 789070f17886 ARM: dts: rockchip: Fix power-controller node names for rk3288 6aaffe6ce8a9 ARM: dts: rockchip: Fix power-controller node names for rk3188 439115ee56d8 ARM: dts: rockchip: Fix power-controller node names for rk3066a 3b4c34728382 ARM: dts: rockchip: Fix IOMMU nodes properties on rk322x c9d29d62da59 ARM: dts: rockchip: Fix the timer clocks order d105e15de610 arm64: dts: rockchip: fix pinctrl sleep nodename for rk3399.dtsi cfe3d29e5cde ARM: dts: rockchip: fix pinctrl sleep nodename for rk3036-kylin and rk3288 79573c64410b ARM: dts: gemini: add device_type on pci 7037876393ce ARM: dts: gemini: rename mdio to the right name
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5c36549fab7cc27bd2f4f9e8b6be1ec8546d32bd) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Nicolas Dechesne [Thu, 22 Jul 2021 12:46:44 +0000 (14:46 +0200)]
yocto-check-layer: ensure that all layer dependencies are tested too
In order to be compliant with the YP compatible status, a layer also
needs to ensure that all its dependencies are compatible
too. Currently yocto-check-layer only checks the requested layer,
without testing any dependencies.
With this change, all dependencies are also checked by default, so the
summary printed at the end will give a clear picture whether all
dependencies pass the script or not.
Using --no-auto-dependency can be used to skip that.
Signed-off-by: Nicolas Dechesne <nicolas.dechesne@linaro.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 45d59b774b95c91193a8376b83c05291d555e5c8) Signed-off-by: Steve Sakoman <steve@sakoman.com>
