Removed rpms ============ - alsa-oss-32bit - alsa-plugins-32bit - busybox - busybox-bzip2 - busybox-ed - cyrus-sasl-gssapi-32bit - dbus-1-glib-32bit - fontconfig-32bit - gettext-runtime-32bit - glibc-32bit - glibc-locale-32bit - gnome-keyring-pam-32bit - cyrus-sasl-32bit - cyrus-sasl-crammd5-32bit - cyrus-sasl-digestmd5-32bit - cyrus-sasl-plain-32bit - glibc-locale-base-32bit - gnome-keyring-32bit - krb5-32bit - libFLAC8-32bit - libacl1-32bit - libaudit1-32bit - libavahi-client3-32bit - libavahi-common3-32bit - libbz2-1-32bit - libcrypt1-32bit - libcups2-32bit - libdbus-1-3-32bit - libdevmapper1_03-32bit - libexpat1-32bit - libfontconfig1-32bit - libgio-2_0-0-32bit - libgmodule-2_0-0-32bit - libgnutls30-32bit - libidn2-0-32bit - libjitterentropy3-32bit - libkeyutils1-32bit - libldb2-32bit - liblua5_3-5-32bit - liblzma5-32bit - libmagic1-32bit - libnettle8-32bit - libnscd1-32bit - libnss_usrfiles2-32bit - libogg0-32bit - libopenssl1_1-32bit - libparted0-32bit - libpci3-32bit - libpcre1-32bit - libpopt0-32bit - libselinux1-32bit - libssh4-32bit - libsystemd0-32bit - libtevent0-32bit - libtirpc3-32bit - libudev1-32bit - libunistring2-32bit - libverto1-32bit - libvorbis0-32bit - libvorbisenc2-32bit - libxcb1-32bit - pam-32bit - pulseaudio-utils-32bit - samba-winbind-libs-32bit - libXau6-32bit - libattr1-32bit - libbrotlicommon1-32bit - libbrotlidec1-32bit - libcap2-32bit - libcom_err2-32bit - libcrack2-32bit - libcurl4-32bit - libdw1-32bit - libelf1-32bit - libffi7-32bit - libfreetype6-32bit - libgcrypt20-32bit - libgdbm4-32bit - libglib-2_0-0-32bit - libgmp10-32bit - libgobject-2_0-0-32bit - libgpg-error0-32bit - libipset11 - libjansson4-32bit - libldap-2_4-2-32bit - liblz4-1-32bit - libnghttp2-14-32bit - libnsl2-32bit - libnuma1-32bit - libp11-kit0-32bit - libpng16-16-32bit - libpsl5-32bit - libpulse0-32bit - libpwquality1-32bit - libre2-9 - libsasl2-3-32bit - libsndfile1-32bit - libspeex1-32bit - libtalloc2-32bit - libtasn1-6-32bit - libtdb1-32bit - libtextstyle0-32bit - libxml2-2-32bit - libzstd1-32bit - nss-mdns-32bit - openslp-32bit - pam_pwquality-32bit - perl-base-32bit - qemu-sgabios - rpm-32bit - samba-client-32bit - samba-client-libs-32bit - systemd-32bit Added rpms ========== - ctags - cyrus-sasl-32bit - cyrus-sasl-crammd5-32bit - cyrus-sasl-digestmd5-32bit - cyrus-sasl-plain-32bit - glibc-locale-base-32bit - gnome-keyring-32bit - alsa-oss-32bit - alsa-plugins-32bit - cyrus-sasl-gssapi-32bit - dbus-1-glib-32bit - fontconfig-32bit - gettext-runtime-32bit - glibc-32bit - gnome-keyring-pam-32bit - libXau6-32bit - libattr1-32bit - libbrotlicommon1-32bit - libbrotlidec1-32bit - libcap2-32bit - libcom_err2-32bit - libcrack2-32bit - libcurl4-32bit - libdw1-32bit - libelf1-32bit - libffi7-32bit - libfreetype6-32bit - libgcrypt20-32bit - libgdbm4-32bit - libglib-2_0-0-32bit - libgmp10-32bit - libgobject-2_0-0-32bit - libgpg-error0-32bit - libjansson4-32bit - libldap-2_4-2-32bit - liblz4-1-32bit - libnghttp2-14-32bit - libnsl2-32bit - libnuma1-32bit - libp11-kit0-32bit - libpng16-16-32bit - libpsl5-32bit - libpulse0-32bit - libpwquality1-32bit - libsasl2-3-32bit - libsndfile1-32bit - libspeex1-32bit - libtalloc2-32bit - libtasn1-6-32bit - libtdb1-32bit - libtextstyle0-32bit - libxml2-2-32bit - libzstd1-32bit - nss-mdns-32bit - openslp-32bit - pam_pwquality-32bit - perl-base-32bit - rpm-32bit - samba-client-32bit - samba-client-libs-32bit - systemd-32bit - qemu-sgabios - krb5-32bit - libFLAC8-32bit - libacl1-32bit - libaudit1-32bit - libavahi-client3-32bit - libavahi-common3-32bit - libboost_regex1_66_0 - libbz2-1-32bit - libcrypt1-32bit - libcups2-32bit - libdbus-1-3-32bit - libdevmapper1_03-32bit - libexpat1-32bit - libfontconfig1-32bit - libgio-2_0-0-32bit - libgmodule-2_0-0-32bit - libgnutls30-32bit - libidn2-0-32bit - libipset13 - libjitterentropy3-32bit - libkeyutils1-32bit - libldb2-32bit - liblua5_3-5-32bit - liblzma5-32bit - libmagic1-32bit - libnettle8-32bit - libnscd1-32bit - libnss_usrfiles2-32bit - libogg0-32bit - libopenssl1_1-32bit - libparted0-32bit - libpci3-32bit - libpcre1-32bit - libpoppler126 - libpopt0-32bit - libre2-10 - libselinux1-32bit - libsource-highlight4 - libssh4-32bit - libsss_nss_idmap0 - libsystemd0-32bit - libtevent0-32bit - libtirpc3-32bit - libudev1-32bit - libunistring2-32bit - libverto1-32bit - libvorbis0-32bit - libvorbisenc2-32bit - libxcb1-32bit - pam-32bit - pulseaudio-utils-32bit - samba-winbind-libs-32bit - sssd-wbclient Package Source Changes ====================== MozillaFirefox +- Firefox Extended Support Release 102.6.0 ESR + Placeholder changelog-entry (bsc#1206242) + - Placeholder changelog-entry (bsc#1205270) + * Fixed: Various stability, functionality, and security fixes. + MFSA 2022-48 (bsc#1205270) + * CVE-2022-45403 (bmo#1762078) + Service Workers might have learned size of cross-origin media + files + * CVE-2022-45404 (bmo#1790815) + Fullscreen notification bypass + * CVE-2022-45405 (bmo#1791314) + Use-after-free in InputStream implementation + * CVE-2022-45406 (bmo#1791975) + Use-after-free of a JavaScript Realm + * CVE-2022-45408 (bmo#1793829) + Fullscreen notification bypass via windowName + * CVE-2022-45409 (bmo#1796901) + Use-after-free in Garbage Collection + * CVE-2022-45410 (bmo#1658869) + ServiceWorker-intercepted requests bypassed SameSite cookie + policy + * CVE-2022-45411 (bmo#1790311) + Cross-Site Tracing was possible via non-standard override + headers + * CVE-2022-45412 (bmo#1791029) + Symlinks may resolve to partially uninitialized buffers + * CVE-2022-45416 (bmo#1793676) + Keystroke Side-Channel Leakage + * CVE-2022-45418 (bmo#1795815) + Custom mouse cursor could have been drawn over browser UI + * CVE-2022-45420 (bmo#1792643) + Iframe contents could be rendered outside the iframe + * CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061) + Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5 MozillaThunderbird +- Mozilla Thunderbird 102.5.1 + * changed: Mail extension API updates. See Mail Extension API + Docs. + * fixed: "Copy to again" menu item was not present + after copying message to folder with Unicode name on Unicode- + enabled IMAP server (bmo#1798172) + * fixed: Calendar date picker was displayed behind "Send Later" + window (bmo#1791537) + * fixed: Various security fixes + MFSA 2022-50 (bsc#1205941) + * CVE-2022-45414 (bmo#1788096) + Quoting from an HTML email with certain tags will trigger + network requests and load remote content, regardless of a + configuration to block remote content + acl +- test: Add helper library to fake passwd/group files +- quote: escape literal backslashes (bsc#953659). +- Added patch: + * 0001-test-Add-helper-library-to-fake-passwd-group-files.patch + * 0002-quote-escape-literal-backslashes.patch + +- refresh acl-2.2.52-tests.patch to work with perl 5.26 + +- BuildRequires gettext-tools-mini instead of gettext-tools: as + acl is part of the bootstrap, we want to try to keep the dep + chain as small as possible. + +- Remove --with-pic that's just for static libraries. +- Replace %__-type macro indirections. + Replace old $RPM_ by their macro equivalents for consistency. + Make the macro style consistent across the file again. + +- reenable full Larg File Support for i586 + +- Make it possible to disable tests (for Ring0) +- Add BuildRequires: system-user-daemon for the testsuite + +- Add BuildRequires for system user bin needed by test suite + +- Update to git snapshot dated 21 Sep 2015. + - Added: + * 0001-Install-the-libraries-to-the-appropriate-directory.patch + * 0002-setfacl.1-fix-typo-inclu-de-include.patch + * 0003-test-fix-insufficient-quoting-of.patch + * 0004-Makefile-rename-configure.in-to-configure.ac.patch + * 0005-Bad-markup-in-acl.5-page.patch + * 0006-.gitignore-ignore-and-config.h.in.patch + * 0007-Use-autoreconf-rather-than-autoconf-to-regenerate-th.patch + * 0008-libacl-Make-sure-that-acl_from_text-always-sets-errn.patch + * 0009-libacl-fix-SIGSEGV-of-getfacl-e-on-overly-long-group.patch + * 0010-punt-debian-rpm-packaging-logic.patch + * 0011-move-gettext-logic-into-misc.h.patch + * 0012-test-make-running-parallel-out-of-tree-safe.patch + * 0013-modernize-build-system.patch + * 0014-po-regenerate-files-after-move.patch + * 0015-build-drop-aclincludedir-use-pkgincludedir.patch + * 0016-build-make-use-of-an-aux-dir-to-stow-away-helper-scr.patch + * 0017-build-ship-a-pkgconfig-file-for-libacl.patch + * 0018-read_acl_-comments-seq-rename-line-to-lineno.patch + * 0019-read_acl_-comments-seq-switch-to-next_line.patch + * 0020-telldir-return-value-and-seekdir-second-parameters-a.patch + * 0021-mark-libmisc-funcs-as-hidden-so-they-are-not-exporte.patch + * 0022-add-__acl_-prefixes-to-internal-symbols.patch + * 0023-cp.test-Check-permissions-of-the-right-file.patch + * 0024-libacl-acl_set_file-Remove-unnecesary-racy-check.patch + * 0025-fix-compilation-with-latest-xattr-git.patch + * 0026-getfacl-Fix-memory-leak.patch + * 0027-Fix-the-display-block-nesting-in-acl.5.patch + * 0028-setfacl-man-page-Minor-wording-improvements.patch + * 0029-getfacl-Fix-minor-resource-leak.patch + * 0030-Do-not-export-symbols-that-are-not-supposed-to-be-ex.patch + * 0031-walk_tree-mark-internal-variables-as-static.patch + * 0032-ignore-configure.lineno.patch +- Signficant spec file restructuring due to 0013-modernize-build-system.patch +- removed builddefs.in.diff + +- Reduce size of filelist by using wildcards; + remove %doc (some locations are always %doc), + remove %attr (files already have proper permissions) + +- add acl-2.2.52-tests.patch and enable tests, check section taken + from Fedora package + +- remove gpg-offline calls from bootstrap package + +- Update to new upstream release 2.2.52 + * This release fixes a few build system issues that were found and + merges in a tree walking bug fix. +- Remove acl-fiximplicit.patch (merged upstream), + config-guess-sub-update.diff (no longer applies) +- Sync baselibs.conf with in-.spec obsoletes/provides. + +- add gpg checking + +- use source url + +- Add config-guess-sub-update.diff: + update config.guess/sub to latest state for AArch64 + +- Use OS byteswapping routines, application already Includes + "endian.h" but then goes ahead defining ad-hoc equivalent + functionality (0001-Use-OS-byteswapping-macros.patch) + +- remove useless automake deps + +- patch license to follow spdx.org standard + +- license update: GPL-2.0+;LGPL-2.1+ + SPDX format + +- add automake as buildrequire to avoid implicit dependency + +- Fix provides/Obsoletes + +- Implement shlib package (libacl1) +- Enable libacl-devel on all baselib arches + +- upgrade to 2.2.51 + - Test fixes + +- upgrade to 2.2.50 + - OPTIONS in man pages should be a section heading, not a subsection heading + - Fix a typo in the setfacl man page + - setfacl: Clarify that removing a non-existent acl entry is not an error + - Prevent setfacl --restore from SIGSEGV on malformed restore file + - setfacl: make sure that -R only calls stat(2) on symlinks when it needs to + - libacl: fix potential null pointer dereference + - setfacl: fix restore crash on malformed input + - setfacl: print useful error from read_acl_comments + - setfacl: changing owner and when S_ISUID should be set --restore fix + +- use %_smp_mflags + +- add baselibs.conf as a source +- adjust baselibs.conf for SPARC + +- readded incorrectly removed libattr-devel requires in -devel + +- fixed implicit strchr() usage. + +- do not package static libraries +- fix -devel package dependencies + +- Version bump to 2.2.48 + - Document the new flags comments + - Include the S_ISUID, S_ISGID, S_ISVTX flags in the getfacl output, and restore them with "setfacl --restore=file". + - Make sure that getfacl -R only calls stat(2) on symlinks when it needs to + - Stop quoting nonprintable characters in the getfacl output + - Avoid unnecessary but destructive chown calls + - Clarify license notice + alsa +- Update to version 1.2.8 (jsc#PED-850): + add FreeBSD/NetBD/OpenBSD build support, fixes in control namehint, + various PCM plugins and UCM. For details, see: + https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8 +- Add keyring + +- Update to version 1.2.7.2: minor updates, including fixes for PCM + share plugin, rawmidi and UCM + +- Update to version 1.2.7.1: minor bug fixes, including the previous + patches. For details, see + https://www.alsa-project.org/wiki/Changes_v1.2.7_v1.2.7.1#alsa-lib +- Drop obsoleted patches: + 0001-conf-Use-ino64_t-to-save-and-compare-inode-numbers.patch + 0002-control-eld-fix-the-decoding-for-older-hw.patch + +- Backport upstream fixes for 32bit inode and ELD parsing: + 0001-conf-Use-ino64_t-to-save-and-compare-inode-numbers.patch + 0002-control-eld-fix-the-decoding-for-older-hw.patch + +- Update to version 1.2.7: + more extended UCM API, PCM rate,multi,direct plugin fixes and + enhancements, compilation fixes, etc. For details see: + https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-lib + alsa-oss -- use https for urls - -- Drop the superfluous buildreq alsa-topology-devel again; - it's no longer mandatory - -- Fix build breakage by the new alsa update; now it requires - alsa-topology-devel - -- Avoid repetition of name in summary. Update description. - -- Update to alsa-oss 1.1.8 (bsc#1181571): - Fix the build with the recent glibc -- Remove obsoleted patch: - remove-libio.patch: - -- remove-libio.patch: don't use obsolete - -- Remove old kludges -- Run spec-cleaner - -- Update to alsa-oss 1.1.6: - * Change FSF address (Franklin Street) -- Use %license file tag - -- Updated to alsa-oss 1.0.28: - All pervious fix patches are obsoleted: - 0002-Add-AM_MAINTAINER_MODE-enable-to-configure.in.patch - 0003-Fix-the-argument-passed-to-snd_pcm_dump_setup.patch - 0004-Workaround-for-aoss-dmix-with-unaligned-rates.patch - -- Fix for dmix with unaligned sample rate: - 0003-Fix-the-argument-passed-to-snd_pcm_dump_setup.patch - 0004-Workaround-for-aoss-dmix-with-unaligned-rates.patch - alsa-plugins +- Add keyring + +- Fix dependency of pulse plugin; now pulseaudio-daemon is required + (bsc#1201409) + +- Update to version 1.2.7.1 (jsc#jsc#PED-850): + jack plugin fix/enhancement + alsa-ucm-conf +- Update to version 1.2.8 (jsc#PED-850): + lots of new profiles for USB-audio, SOF and others: + https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8 +- Add keyring + +- Update to version 1.2.7.2: + updates of various device-specific profiles. For details, see + https://www.alsa-project.org/wiki/Changes_v1.2.7.1_v1.2.7.2#alsa-ucm-conf + +- Update to version 1.2.7.1: + updates of various device-specific profiles. For details, see + https://www.alsa-project.org/wiki/Changes_v1.2.7_v1.2.7.1#alsa-ucm-conf +- Drop obsoleted patches: + 0001-Steinberg-UR44-fix-the-Line2-channel-mapping.patch + 0002-Steinberg-UR44-fix-the-Line2-channel-mapping-2nd.patch + 0003-Steinberg-UR44-fix-the-direction-for-steinberg_ur44_.patch + +- Backport upstream fixes for Steinberg UR44: + 0001-Steinberg-UR44-fix-the-Line2-channel-mapping.patch + 0002-Steinberg-UR44-fix-the-Line2-channel-mapping-2nd.patch + 0003-Steinberg-UR44-fix-the-direction-for-steinberg_ur44_.patch + +- Update to version 1.2.7: + Various profile updates for USB-audio, HD-audio, etc. + For details, see: + https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-ucm-conf +- Drop obsoleted patches: + 0001-HDA-DualCodecs-fix-typo-in-Speaker-condition.patch + 0002-HDA-acp-avoid-to-create-Mic-ACP-LED-control-for-the-.patch + alsa-utils +- Update to alsa-utils 1.2.8 (jsc#PED-850): + automake update, minor alsactl, amixer and aplay fixes. + https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8 +- Add keyring + +- Update to alsa-utils 1.2.7: + Enhancement and fixes of alsactl, speaker-test cleanup, + alsatplg enhancements, arecord ghost data fix, etc. + For details see: + https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-utils +- Drop obsoleted patches: + 0001-alsamixer-Fix-regression-in-color-setup.patch + 0002-alsamixer-Revert-has_mouse-check.patch + +- Fix the broken mouse support on alsamixer: + 0002-alsamixer-Revert-has_mouse-check.patch + audit-secondary +- Fix rules not loaded when restarting auditd.service(bsc#1204844) + autoyast2 +- Avoid a potential crash when autoinst.ycp file is empty or + missing (bsc#1205732). +- 4.5.11 + busybox +- Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065, + boo#1199744). + cracklib -- %check: really test the package [bsc#1191736] - -- Update to version 2.9.7: - + fix a buffer overflow processing long words. -- Drop 0003-overflow-processing-gecos.patch and - 0004-overflow-processing-long-words.patch: fixed upstream. -- Update source URI. -- Remove use of translation-update-upstream. It cannot be added to - ring 0 on leap, and 2.9.7 has some translation fixes - (bsc#1172396). - -- Enable translation-update-upstream on leap, to remove the use of - is_opensuse (jsc#SLE-12096). - -- use /usr/lib instead of %{_libexecdir}, %{_libexecdir} should - contain internal binaries, not data - -- Use %license (boo#1082318) - -- Update to 2.9.6 - * fix issue with sort and locale - * some particularly bad cases to the cracklib small dictionary - * updates to cracklib-words (adds a bunch of other dictionary lists) - * migration to github -- run spec-cleaner - -- Only buildrequire and call translation-update-upstream on SLE: - the package in openSUSE is a dummy and is empty. - -- Add patch 0004-overflow-processing-long-words.patch - to fix a new buffer overflow identified together with bsc#992966. - -- Relabel patches: - cracklib-magic.diff -> 0001-cracklib-magic.diff - cracklib-2.9.2-visibility.patch -> 0002-cracklib-2.9.2-visibility.patch -- Add patch 0003-overflow-processing-gecos.patch - to fix a buffer overflow in GECOS parser (bsc#992966 CVE-2016-6318) - -- Update to 2.9.5 - * fix matching against first password in dictionary (Anton Dobkin) -- Changes for 2.9.4 - * remove doubled prototype -- Changes for 2.9.3 - * expose additional functions externally - -- Cleanup spec file with spec-cleaner -- Remove old ppc provides/obsoletes - -- Update to version 2.9.2 - + support build of python support outside of source tree - + fix bug in Python string distance calculation - + fix bug #16 / debian bug 724570 - broken optimization with packlib - prevblock -- Adapt patch to upstream changes - + cracklib-visibility.patch > cracklib-2.9.2-visibility.patch - cyrus-sasl -- CVE-2022-24407: cyrus-sasl: SQL injection in sql_auxprop_store - in plugins/sql.c (bsc#1196036) - o add upstream patch: - 0001-CVE-2022-24407-Escape-password-for-SQL-insert-update.patch - -- postfix: sasl authentication with password fails (bsc#1194265) - Add config parameter --with-dblib=gdbm -- Avoid converting of /etc/sasldb2 by every update. Convert - /etc/sasldb2 only if it is a Berkeley DB - -- CVE-2020-8032: cyrus-sasl: Local privilege escalation to root - due to insecure tmp file usage. (bsc#1180669) - Use /var/adm/update-scripts/ instead of /tmp. Clean up temporary - files. - -- Remove Berkeley DB dependency (JIRA#SLE-12190) - The packages cyrus-sasl and cyrus-sasl-saslauthd are built - without Berkely DB support. gdbm will be used instead of BDB. - The packages cyrus-sasl-bdb and cyrus-sasl-saslauthd-bdb are built - with Berkely DB support. -- Update to 2.1.27 - * Added support for OpenSSL 1.1 - * Added support for lmdb - * Lots of build fixes - * Treat SCRAM and DIGEST-MD5 as more secure than PLAIN when selecting client mech - * DIGEST-MD5 plugin: - Fixed memory leaks - Fixed a segfault when looking for non-existent reauth cache - Prevent client from going from step 3 back to step 2 - Allow cmusaslsecretDIGEST-MD5 property to be disabled - * GSSAPI plugin: - Added support for retrieving negotiated SSF - Fixed GSS-SPNEGO to use flags negotiated by GSSAPI for SSF - Properly compute maxbufsize AFTER security layers have been set - * SCRAM plugin: - Added support for SCRAM-SHA-256 - * LOGIN plugin: - Don’t prompt client for password until requested by server - * NTLM plugin: - Fixed crash due to uninitialized HMAC context -- Replace references to /var/adm/fillup-templates with new - %_fillupdir macro (boo#1069468) -- bsc#983938 `After=syslog.target` left-overs in several unit files -- added patches: - fix_libpq-fe_include.diff for fixing including libpq-fe.h -- removed patches obsoleted by upstream changes: - * shared_link_on_ppc.patch - * cyrus-sasl-2.1.27-openssl-1.1.0.patch - * 0002-Drop-unused-parameter-from-gssapi_spnego_ssf.patch - * 0003-Check-return-error-from-gss_wrap_size_limit.patch - * 0004-Add-support-for-retrieving-the-mech_ssf.patch - * 0001-Fix-GSS-SPNEGO-mechanism-s-incompatible-behavior.patch - * cyrus-sasl-fix-logging-in-gssapi.patch - -- Added support for retrieving negotiated SSF in gssapi plugin (bsc#1162518) - * Add 0002-Drop-unused-parameter-from-gssapi_spnego_ssf.patch - * Add 0003-Check-return-error-from-gss_wrap_size_limit.patch - * Add 0004-Add-support-for-retrieving-the-mech_ssf.patch -- Fixed GSS-SPNEGO to use flags negotiated by GSSAPI for SSF (bsc#1162518) - * Add 0001-Fix-GSS-SPNEGO-mechanism-s-incompatible-behavior.patch - -- added backport-patch cyrus-sasl-bug587.patch which fixes - off-by-one error in _sasl_add_string function - (see CVE-2019-19906 bsc#1159635) - -- bnc#1044840 syslog is polluted with messages "GSSAPI client step 1" - By server context the connection will be sent to the log function. - Client content does not have log level information. I.e. there is no - way to stop DEBUG level logs nece I've removed it. - * add cyrus-sasl-fix-logging-in-gssapi.patch - -- OpenSSL 1.1 support (bsc#1055463) - * add cyrus-sasl-2.1.27-openssl-1.1.0.patch from Fedora - -- added cyrus-sasl-issue-402.patch to fix - SASL GSSAPI mechanism acceptor wrongly returns zero maxbufsize #402 - (see https://github.com/cyrusimap/cyrus-sasl/issues/402) - -- bnc#1026825 saslauthd: :set_auth_mech : unknown authentication mechanism: kerberos5 - -- really use SASLAUTHD_PARAMS variable (bnc#938657) - -- bnc#908883 cyrus-sasl-scram refers to wrong RFC - -- Make sure /usr/sbin/rcsaslauthd exists - dbus-1 +- Fix a potential crash that could be triggered by an invalid signature. + (CVE-2022-42010, bsc#1204111) + * fix-upstream-CVE-2022-42010.patch +- Fix an out of bounds read caused by a fixed length array (CVE-2022-42011, + bsc#1204112) + * fix-upstream-CVE-2022-42011.patch +- A message in non-native endianness with out-of-band Unix file descriptors + would cause a use-after-free and possible memory corruption CVE-2022-42012, + bsc#1204113) + * fix-upstream-CVE-2022-42012.patch +- Disable asserts (bsc#1087072) +- Refreshed patches + * fix-upstream-CVE-2020-35512.patch + +- Remove pointless %%post scriptlet leveraging non-existent systemd env + variables + FIRST_ARG has been used in our systemd macros, but this has now been gone for + years. Thus the true branch of the if has never been executed for years and is + only causing warnings when installing dbus. + +- Add missing patch for CVE-2020-12049 + * fix-upstream-CVE-2020-12049_2.patch + +- Fix CVE-2020-12049 truncated messages lead to resource exhaustion + (CVE-2020-12049, bsc#1172505) + * fix-upstream-CVE-2020-12049.patch +- Rebased fix-CVE-2019-12749.patch + +- Fix CVE-2020-35512 - shared UID's caused issues (CVE-2020-35512 bsc#1187105) + * fix-upstream-userdb-constpointer.patch + * fix-upstream-CVE-2020-35512.patch + +- Fix CVE-2019-12749 Authentication bypass (CVE-2019-12749 bsc#1137832) + * added fix-CVE-2019-12749.patch + +- Make libdbus-1-3 own the %{_datadir}/dbus-1/system.d directory + +- Use %license instead of %doc [bsc#1082318] + +- Avoid bashisms in scriptlets. + +- Avoid ugly error message from %pre(install) script when installing + for the first time. + +- Don't spit out a warning if /usr/bin/dbus-daemon does not exist + when we run the pre-script. + +- Swap a missed libdir to libexecdir + +- Do not hide errors during useradd. + +- Fix dbus-daemon-launch-helper to use proper ref to libexecdir + +- use %{_libexecdir}/dbus-1 as libexecdir + +- Update to 1.12.2 + Deprecations: + • Eavesdropping is officially deprecated in favour of BecomeMonitor. + See the release notes for spec version 0.31 (in dbus 1.11.14). + • [Unix] Flag files in /var/run/console/${username} are deprecated. + See the release notes for 1.11.18. + New APIs: + • and rules in dbus-daemon configuration can now + include send_broadcast="true", send_broadcast="false", + max_unix_fds="N", min_unix_fds="N" (for some integer N). + See the release notes for 1.11.18. + • dbus_try_get_local_machine_id() is like + dbus_get_local_machine_id(), but returns a DBusError. + • New APIs around DBusMessageIter to simplify cleanup. + See the release notes for 1.11.16. + • The message bus daemon now implements the standard Introspectable, + Peer and Properties interfaces. See the release notes for + dbus 1.11.14 and spec version 0.31. + • DTDs for introspection XML and bus configuration are installed. + • [Unix] A new unix:dir=… address family resembles unix:tmpdir=… but + never uses Linux abstract sockets, which is advantageous for + containers. On non-Linux it is equivalent to unix:tmpdir=…. + See the release notes for dbus 1.11.14 and spec version 0.31. + • [Unix] New option "dbus-launch --exit-with-x11". + • [Unix] Session managers can create transient .service files in + $XDG_RUNTIME_DIR/dbus-1/services. See the release notes for 1.11.12. + • [Unix] A sysusers.d snippet can create the messagebus user on-demand. + Miscellaneous behaviour changes: + • [Unix] The session bus now logs to syslog if it was started by + dbus-launch. + • [Unix] Internal warnings are logged to syslog if configured. + • [Unix] Exceeding an anti-DoS limit is logged to syslog if configured, + or to stderr. +- Enabled "make check test suite" +- Patches removed, fixed upstream + * fix-upstream-drop-install-sections-from-user-services.patch + * fix-upstream-increase-backlog.patch + * fix-upstream-timeout-reset-1.patch + * fix-upstream-timeout-reset-2.patch + +- boo#1027201 dbus-daemon not found +- boo#978477 systemd reseting under heavy load + * fix-upstream-timeout-reset-1.patch + * fix-upstream-timeout-reset-2.patch + +- boo#1027200 don't generate machine-id in %post systemd will do it + on first boot. +- swap usage of /bin/false to /usr/bin/false +- Use libexecdir=%{_libdir}/dbus-1 rather then /lib/dbus-1 + +- No need to set --libdir anymore now that prefix is /usr/bin, + * fixes boo#1047532 +- No need to set --bindir, bindir in dbus-1-x11 was incorrect +- Other fixes required to properly change prefix +- Don't pass --with-initscripts we don't use them anymore. + +- Update to 1.10.20 + * Fixes: + + Fix a reference leak when blocking on a pending call on a + connection that has been disconnected (fdo#101481, Shin-ichi + MORITA) + + Don't put timestamps in the Doxygen-generated documentation, + for closer-to-reproducible builds (fdo#100692, Simon + McVittie) + + Avoid an assertion failure when connecting to a + semicolon-separated series of addresses, one of which fails + (fdo#101257, Simon McVittie) + * Documentation: + + Update git URIs in HACKING document to sync up with + cgit.freedesktop.org (fdo#100715, Simon McVittie) + +- swap to /usr/bin bsc#1029968 +- Add the following fixes from SLE12 + * bsc#980928 increase listen() backlog of AF_UNIX sockets to + SOMAXCONN fix-upstream-increase-backlog.patch +- The following bugs were already fixed but are missing changelog + entries + * bsc#867256 (No longer applicable) + * bsc#916785 (No longer applicable) + * bsc#1012564 (Not applicable) + * fdo#90004 (Fixed Upstream) +- Rename the following patches as a tidy up + * dbus-log-deny.patch to feature-suse-log-deny.patch + * dbus-do-autolaunch.patch feature-suse-do-autolaunch.patch + * 0001-Add-RefuseManualStartStop.patch to + feature-suse-refuse-manual-start-stop.patch + * 0001-Drop-Install-sections-from-user-services.patch to + fix-upstream-drop-install-sections-from-user-services.patch + +- Update to 1.10.18 + * Fixes + + Re-order dbus-daemon startup so that on SELinux systems, the + thread that reads AVC notifications retains the ability to + write to the audit log (fdo#92832, Debian #857660; Laurent + Bigonville) + + Fix a harmless read overflow and some memory leaks in a unit + test (fdo#100568, Philip Withnall) + +- Update to 1.10.16 + Fixes: + * Prevent symlink attacks in the nonce-tcp transport on Unix that could + allow an attacker to overwrite a file named "nonce", in a directory + that the user running dbus-daemon can write, with a random value + known only to the user running dbus-daemon. This is unlikely to be + exploitable in practice, particularly since the nonce-tcp transport + is really only useful on Windows. + (fd.o #99828, Simon McVittie) (bsc#1025950) + * Avoid symlink attacks in the "embedded tests", which are not enabled + by default and should never be enabled in production builds of dbus. + (fd.o #99828, Simon McVittie) (bsc#1025951) + * Work around an undesired effect of the fix for CVE-2014-3637 + (fd.o #80559), in which processes that frequently send fds, such as + logind during a flood of new PAM sessions, can get disconnected for + continuously having at least one fd "in flight" for too long; + dbus-daemon interprets that as a potential denial of service attack. + The workaround is to disable that check for uid 0 process such as + logind, with a message in the system log. The bug remains open while + we look for a more general solution. + (fd.o #95263, LP#1591411; Simon McVittie) + * Don't run the test test-dbus-launch-x11.sh if X11 autolaunching + was disabled at compile time. That test is not expected to work + in that configuration. (fd.o #98665, Simon McVittie) + Enhancements: + * Do the Travis-CI build in Docker containers for Ubuntu LTS, Debian + stable and Debian testing in addition to the older Ubuntu that is + the default (fd.o #98889, Simon McVittie) + +- A note for scripts bsc#974092 (remove sysvinit script) is already + fixed here. + +- Don't restart dbus on upgrade - Includes temporary work around + for last version boo#1020301 +- Add 0001-Add-RefuseManualStartStop.patch don't allow users to Manually + start or stop dbus. + +- Add systemd unit files to start session bus via systemd +- Added patch: + * 0001-Drop-Install-sections-from-user-services.patch + + remove install section from socket unit because it does not + need to be enabled explicitly (see fdo#92402) + +- Requires systemd >= 209 and drop the compatibility pkg-config + names that don't exist in newer systemd + +- Drop useless --with-pic which is only for static libs +- Abort installation when user/group creation fails +- Avoid calling %service_* more than once + +- Build the dbus-1 package without X in the dbus-1.spec +- Move the dbus-launch.nox11 to the dbus-1 package and install + it by default +- Build devel-doc package in dbus-1.spec and don't build any + documentation in dbus-1-x11 +- Make dbus-1-x11 package contains only the X11-enabled dbus-launch +- Fix some rpmlint warnings +- Delete the dbus-1-x11.spec.in file, since maintaining it is + more complicated then keeping in sync a dbus-1-x11.spec file of + less then 120 lines + +- Create new subpackage: dbus-1-nox11 + - contains dbus-launch without x11 support +- Rename dbus-launch to dbus-launch.x11 +- use update-alternatives to switch between dbus-launch with and + without X11 +- Solves [bnc#934214] + +- Update to 1.10.12 + * Security fixes: + + Do not treat ActivationFailure message received from + root-owned systemd name as a format string. In principle this + is a security vulnerability, but we do not believe it is + exploitable in practice, because only privileged processes can + own the org.freedesktop.systemd1 bus name, and systemd does + not appear to send activation failures that contain "%". + Please note that this probably *was* exploitable in dbus + versions older than 1.6.30, 1.8.16 and 1.9.10 due to a missing + check which at the time was only thought to be a denial of + service vulnerability (CVE-2015-0245). If you are still + running one of those versions, patch or upgrade immediately. + (fdo#98157, bsc#1003898, Simon McVittie) + * Other fixes: + + Harden dbus-daemon against malicious or incorrect + ActivationFailure messages by rejecting them if they do not + come from a privileged process, or if systemd activation is + not enabled (fdo#98157, Simon McVittie) + + Avoid undefined behaviour when setting reply serial number + without going via union DBusBasicValue (fdo#98035, Marc Mutz) + + autogen.sh: fail cleanly if autoconf fails (Simon McVittie) + +- Moved dbus-run-session from dbus-1-x11 to dbus-1 (bdo#836296) + +- Update to 1.10.10 + * Fixes: + + On Linux, when dbus-daemon is run with reduced susceptibility + to the OOM killer (typically via systemd), do not let child + processes inherit that setting (fdo#32851; + Kimmo Hämäläinen, WaLyong Cho) + + Output valid shell syntax in ~/.dbus/session-bus/ if the bus + address contains a semicolon (fdo#94746, Thiago Macieira) + + Fix memory leaks and thread safety in subprocess starting on + Windows (fdo#95191, Ralf Habacker) + + Do not require systemd to have a service file if using it for + activation (fdo#93194; Simon McVittie; backport from 1.11.0) + + Stop test-dbus-daemon incorrectly failing on platforms that + cannot discover the process ID of clients (fdo#96653, + Руслан Ижбулатов) + + In tests that exercise correct handling of crashing D-Bus + services, suppress Windows crash handler (fdo#95155; + Yiyang Fei, Ralf Habacker) + + Explicitly check for stdint.h (Ioan-Adrian Ratiu) + + update-activation-environment: produce better diagnostics on + error (fdo#96653, Simon McVittie) + + Don't fail the build with an unused const variable warning + under gcc 6 (fdo#97282; Thomas Zimmermann, Simon McVittie) + + Merge dbus-1.10-ci branch, containing backports from 1.11.0 + in build/test code to support continuous integration + (fdo#93194, Simon McVittie) + - Avoid -Wunused-label when compiling with libselinux but no + libaudit + - In development builds, allow OOM tests to be disabled as + documented + - Accept and ignore the --tap argument in all "embedded + tests", and run all automated tests with that argument for + better diagnostics + - Fix the systemd activation test under CMake by installing + the required files + - In Automake, fix shell syntax for installcheck-local with + no DESTDIR + - In Automake, don't try to run manual tests in installcheck + - In CMake, don't run manual-tcp test as an automated test + - Add travis-ci.org build machinery + +- Update to 1.10.8 + * Fixes: + + Enable "large file support" on systems where it exists: + dbus-daemon is not expected to open large files, but it might + need to stat files that happen to have large inode numbers + (fdo#93545, Hongxu Jia) + + Eliminate padding inside DBusMessageIter on 64-bit platforms, + which might result in a pedantic C compiler not copying the + entire contents of a DBusMessageIter; statically assert that + this is not an ABI change in practice (fdo#94136, Simon + McVittie) + + Document dbus-test-tool echo --sleep-ms=N instead of + incorrect --sleep=N (fdo#94244, Dmitri Iouchtchenko) + + Correctly report test failures in C tests from run-test.sh + (fdo#93379; amit tewari, Simon McVittie) + + When tests are enabled, run all the marshal-validate tests, + not just the even-numbered ones (fdo#93908, Nick Lewycky) + + Correct the expected error from one marshal-validate test, + which was previously not run due to the above bug(fdo#93908, + Simon McVittie) + +- Update to 1.10.6 + * Fixes: + - On Unix when running tests as root, don't assert that root + and the dbus-daemon user can still call + UpdateActivationEnvironment; assert that those privileged + users can call BecomeMonitor instead (fdo#93036, Simon + McVittie) + - On Windows, fix a memory leak in the autolaunch transport + (fdo#92899, Simon McVittie) + - On Windows Autotools builds, don't run tests that rely on + dbus-run-session and other Unix-specifics (fdo#92899, Simon + McVittie) + +- Update to 1.10.4 + * Changes between 1.10.2 and 1.10.4 + - Enhancements: + + GetConnectionCredentials, GetConnectionUnixUser and + GetConnectionUnixProcessID with argument + "org.freedesktop.DBus" will now return details of the + dbus-daemon itself. This is required to be able to call + SetEnvironment on systemd. (fdo#92857, Jan Alexander + Steffens) + - Fixes: + + Make UpdateActivationEnvironment always fail with + AccessDenied on the system bus. Previously, it was + possible to configure it so root could call it, but the + environment variables were not actually used, because the + launch helper would discard them. (fdo#92857, Jan Alexander + Steffens) + + On Unix with --systemd-activation on a user bus, make + UpdateActivationEnvironment pass on its arguments to + systemd's SetEnvironment method, solving inconsistency + between the environments used for traditional activation + and systemd user-service activation. (fdo#92857, Jan + Alexander Steffens) + + On Windows, don't crash if or --syslog is used + (fdo#92538, Ralf Habacker) + + On Windows, fix a memory leak when setting a DBusError from + a Windows error (fdo#92721, Ralf Habacker) + + On Windows, don't go into infinite recursion if we abort the + process with backtraces enabled (fdo#92721, Ralf Habacker) + + Fix various failing tests, variously on Windows and + cross-platform: + . don't test system.conf features (users, groups) that only + make sense on the system bus, which is not supported on + Windows + . don't call _dbus_warn() when we skip a test, since it is + fatal + . fix computation of expected + . when running TAP tests, translate newlines to Unix format, + fixing cross-compiled tests under Wine on Linux + . don't stress-test refcounting under Wine, where it's + really slow + . stop assuming that a message looped-back to the test will + be received immediately + . skip some system bus tests on Windows since they make no + sense there (fdo#92538, fdo#92721; Ralf Habacker, Simon + McVittie) + * Changes between 1.10.0 and 1.10.2 + - Fixes: + + Correct error handling for activation: if there are multiple + attempts to activate the same service and it fails + immediately, the first attempt would get the correct reply, + but the rest would time out. We now send the same error + reply to each attempt. (fdo#92200, Simon McVittie) + + If BecomeMonitor is called with a syntactically invalid + match rule, don't crash with an assertion failure, fixing a + regression in 1.9.10. This was not exploitable as a denial + of service, because the check for a privileged user is done + first. (fdo#92298, Simon McVittie) + + On Linux with --enable-user-session, add the bus address to + the environment of systemd services for better backwards + compatibility (fdo#92612, Jan Alexander Steffens) + + On Windows, fix the logic for replacing the installation + prefix in service files' Exec lines (fdo#83539; Milan Crha, + Simon McVittie) + + On Windows, if installed in the conventional layout with + ${prefix}/etc and ${prefix}/share, use relative paths + between bus configuration files to allow the tree to be + relocated (fdo#92028, Simon McVittie) + + Make more of the regression tests pass in Windows builds + (fdo#92538, Simon McVittie) + * Summary of major changes since 1.8.0: + - The basic setup for the well-known system and session buses is + now done in read-only files in ${datadir} (normally /usr/share). + - AppArmor integration has been merged, with features similar to + the pre-existing SELinux integration. It is mostly compatible + with the patches previously shipped by Ubuntu, with one + significant change: Ubuntu's GetConnectionAppArmorSecurityContext + method has been superseded by GetConnectionCredentials and was + not included. + - The --enable-user-session configure option can be enabled + by OS integrators intending to use systemd to provide a + session bus per user (in effect, treating all concurrent + graphical and non-graphical login sessions as one large session). + - The new listenable address mode "unix:runtime=yes" listens on + $XDG_RUNTIME_DIR/bus, the same AF_UNIX socket used by the + systemd user session. libdbus and "dbus-launch --autolaunch" + will connect to this address by default. GLib >= 2.45.3 and + sd-bus >= 209 have a matching default. + - All executables are now dynamically linked to libdbus-1. + Previously, some executables, most notably dbus-daemon, were + statically linked to a specially-compiled variant of libdbus. + This results in various private functions in the _dbus + namespace being exposed by the shared library. These are not + API, and must not be used outside the dbus source tree. + - On platforms with ELF symbol versioning, all public symbols + are versioned LIBDBUS_1_3. + * New bus APIs: + - org.freedesktop.DBus.GetConnectionCredentials returns + LinuxSecurityLabel where supported + - org.freedesktop.DBus.Monitoring interface (privileged) + . BecomeMonitor method supersedes match rules with eavesdrop=true, + which are now deprecated + - org.freedesktop.DBus.Stats interface (semi-privileged) + . now enabled by default + . new GetAllMatchRules method + - org.freedesktop.DBus.Verbose interface (not normally compiled) + . toggles the effect of DBUS_VERBOSE + * New executables: + - dbus-test-tool + - dbus-update-activation-environment + * New optional dependencies: + - The systemd: pseudo-transport requires libsystemd or libsd-daemon + - Complete documentation requires Ducktype and yelp-tools + - Full test coverage requires GLib 2.36 and PyGI + - AppArmor integration requires libapparmor and optionally libaudit + * Dependencies removed: + - dbus-glib + +- Update to 1.8.20: + * Fixes: + - Fix a memory leak when GetConnectionCredentials() succeeds + (fdo#91008, Jacek Bukarewicz) + - Ensure that dbus-monitor does not reply to messages intended + for others (fdo#90952, Simon McVittie) + +- Account for openSUSE:Leap in the conditional for chosing right + local state directories (boo#941352) + +- Move common-begin sections around to make pre_checkin work again +- Unconditionally build with systemd features, there are no cycles + now, systemd no longer buildrequires dbus-1-devel + +- Update to 1.8.18: + * Security hardening: + - On Unix platforms, change the default configuration for the + session bus to only allow EXTERNAL authentication (secure + kernel-mediated credentials-passing), as was already done for + the system bus. + This avoids falling back to DBUS_COOKIE_SHA1, which relies on + strongly unpredictable pseudo-random numbers; under certain + circumstances (/dev/urandom unreadable or malloc() returns + NULL), dbus could fall back to using rand(), which does not + have the desired unpredictability. The fallback to rand() has + not been changed in this stable-branch since the necessary + code changes for correct error-handling are rather intrusive. + If you are using D-Bus over the (unencrypted!) tcp: or + nonce-tcp: transport, in conjunction with DBUS_COOKIE_SHA1 + and a shared home directory using NFS or similar, you will + need to reconfigure the session bus to accept DBUS_COOKIE_SHA1 + by commenting out the element. This configuration is + not recommended. (bsc#931066, fdo#90414, Simon McVittie) + * Other fixes: + - Add locking to DBusCounter's reference count and notify + function (fdo#89297, Adrian Szyndela) + - Ensure that DBusTransport's reference count is protected by + the corresponding DBusConnection's lock (fdo#90312, + Adrian Szyndela) + - On Windows, listen on the same port for IPv4 and IPv6 + (previously broken by an endianness mistake), and fix a + failure to bind TCP sockets on approximately 1 attempt in 256 + (fdo#87999, Ralf Habacker) + - Correctly release DBusServer mutex before early-return if we + run out of memory while copying authentication mechanisms + (fdo#90021, Ralf Habacker) + - Correctly initialize all fields of DBusTypeReader (fdo#90021, + Ralf Habacker, Simon McVittie) + - Fix some missing \n in verbose (debug log) messages + (fdo#90021, Ralf Habacker) + - Clean up some memory leaks in test code (fdo#90021, + Ralf Habacker) + +- Sync changes from SLE12 conditionalized for suse_version <= 1315 + +- Update to 1.8.16: + * Security fixes: + - Do not allow non-uid-0 processes to send forged + ActivationFailure messages. On Linux systems with systemd + activation, this would allow a local denial of service: + unprivileged processes could flood the bus with these forged + messages, winning the race with the actual service activation + and causing an error reply to be sent back when service + auto-activation was requested. This does not prevent the real + service from being started, so it only works while the real + service is not running. (CVE-2015-0245, fdo#88811, bnc#916343; + Simon McVittie) + * Other fixes: + - fix a Windows build failure (fdo#88009, Ralf Habacker) + - on Windows, allow up to 8K connections to the dbus-daemon + instead of the previous 64, completing a previous fix which + only worked under Autotools (fdo#71297, Ralf Habacker) + +- Update to 1.8.14 + * Security hardening: + - Do not allow calls to UpdateActivationEnvironment from uids + other than the uid of the dbus-daemon. If a system service + installs unsafe security policy rules that allow arbitrary + method calls (such as CVE-2014-8148) then this prevents + memory consumption and possible privilege escalation via + UpdateActivationEnvironment. + We believe that in practice, privilege escalation here is + avoided by dbus-daemon-launch-helper sanitizing its + environment; but it seems better to be safe. + - Do not allow calls to UpdateActivationEnvironment or the + Stats interface on object paths other than + /org/freedesktop/DBus. Some system services install unsafe + security policy rules that allow arbitrary method calls to + any destination, method and interface with a specified object + path; while less bad than allowing arbitrary method calls, + these security policies are still harmful, since dbus-daemon + normally offers the same API on all object paths and other + system services might behave similarly. + * Other fixes: + - Add missing initialization so GetExtendedTcpTable doesn't + crash on Windows Vista SP0 (fdo#77008, Ilya A. Tkachenko) + +- Update to 1.8.12: + * Fixes: + - Partially revert the CVE-2014-3639 patch by increasing the + default authentication timeout on the system bus from 5 + seconds back to 30 seconds, since this has been reported to + cause boot regressions for some users, mostly with parallel + boot (systemd) on slower hardware. + On fast systems where local users are considered particularly + hostile, administrators can return to the 5 second timeout + (or any other value in milliseconds) by saving this as + /etc/dbus-1/system-local.conf: + + 5000 + + (fdo#86431, Simon McVittie) + - Add a message in syslog/the Journal when the auth_timeout is + exceeded (fdo#86431, Simon McVittie) + - Send back an AccessDenied error if the addressed recipient is + not allowed to receive a message (and in builds with + assertions enabled, don't assert under the same conditions). + (fdo#86194, Jacek Bukarewicz) + +- Update to 1.8.10: + * Security fixes: + - Increase dbus-daemon's RLIMIT_NOFILE rlimit to 65536 + so that CVE-2014-3636 part A cannot exhaust the system bus' + file descriptors, completing the incomplete fix in 1.8.8. + (CVE-2014-7824, fdo#85105; Simon McVittie, Alban Crequy) + dracut +- Update to version 055+suse.333.g39325ba0: + * feat(kernel-modules): exclude USB drivers in strict hostonly mode (bsc#1186056) + * fix(multipath): warn if included with no multipath devices and no user conf (bsc#1069169) + * fix(dracut.sh): improve detection of installed kernel versions (bsc#1205175) + * fix(nfs): chown using rpc default group (bsc#1204929) + elfutils -- Add support for zstd, needed to inspect kernel modules (bsc#1196510) - -- Enhance license fields: all the libraries actually have a different - license to the tools. While the tools are GPL-3.0-or-later, the - libraries are (LGPL-3.0-or-later OR GPL-2.0-or-later) - SLE bug (for tracking the above) bsc#1191310 - -- Add disable-run-deleted-test.patch in order to disable - failing test-case (boo#1189153). - -- For version 0.185, the below patches are no longer needed - (jsc#SLE-17288, jsc#SLE-17951) - libdw-check-end-of-attributes-list-consistently.patch - elflint-dont-check-section-group-without-flags-word.patch - libelf-error-if-elf_compress_gnu-is-used-on-SHF_COMPRESSED.patch - libdw-readelf-make-sure-there-is-enough-data-to-read.patch - elfutils-dont-trust-sh_entsize.patch - elflint-check-symbol-table-data-is-big-enough-before-check.patch - size-handle-recursive-elf-ar-files.patch - elflint-sanity-check-the-number-of-phdrs-and-shdrs.patch - use-the-empty-string-for-note-names-with-zero-size.patch - readelf-fix-off-by-one-sanity-check.patch - libebl-check-NT_PLATFORM-core-notes.patch - libdwfl-sanity-check-partial-core-file-dyn-data-read.patch - libelf-check-compression-before-allocate-output-buffer.patch - libdwfl-sanity-check-partial-core-file-data-reads.patch - arlib-check-that-sh_entsize-isnt-zero.patch - -- Update to version 0.185: - debuginfod-client: Simplify curl handle reuse so downloads which - return an error are retried. - elfcompress: Always exit with code 0 when the operation succeeds (even - when nothing was done). On error the exit code is now always 1. - -- Update to version 0.184: - debuginfod: Use libarchive's bsdtar as the .deb-family file unpacker. - debuginfod-client: Client caches negative results. If a query for a - file failed with 404, an empty 000 permission - file is created in the cache. This will prevent - requesting the same file for the next 10 minutes. - Client objects now carry long-lived curl handles - for outgoing connections. This makes it more - efficient for multiple sequential queries, because - the TCP connections and/or TLS state info are kept - around awhile, avoiding O(100ms) setup latencies. - libdw: handle DW_FORM_indirect when reading attributes - translations: Update Polish translation. - -- Add disable-run-readelf-self-test.patch in order to disable - a failing test-case with GCC 11 (PR27367). - -- Update to version 0.183: - debuginfod: New thread-busy metric and more detailed error metrics. - New --fdcache-mintmp and tracking of filesystem freespace. - New increased webapi concurrency while grooming. - debuginfod-client: DEBUGINFOD_SONAME macro added to debuginfod.h which - can be used to dlopen the libdebuginfod.so library. - New function debuginfod_set_verbose_fd and - DEBUGINFOD_VERBOSE environment variable. - config: profile.sh and profile.csh won't export DEBUGINFOD_URLS unless - configured --enable-debuginfod-urls[=URLS] - elflint, readelf: Recognize SHF_GNU_RETAIN. - Handle SHT_X86_64_UNWIND as valid relocation target. -- Remove config-do-not-define-DEBUGINFOD_URLS-environment-var.patch patch. - -- Enable LTO (boo#1138796) for elfutils.spec. - -- Mention elfutils-rpmlintrc as a Source. - -- Add rpmlintrc for - libdebuginfod1-dummy.s390x: E: shlib-policy-name-error (Badness: 10000) libdebuginfod1 - which is expected as libdebuginfod1 and it's dummy library do share equal - soname. -- Update to version 0.182: - backends: Support for tilegx has been removed. - config: New /etc/profile.d files to provide default $DEBUGINFOD_URLS. - debuginfod: More efficient package traversal, tolerate various errors - during scanning, grooming progress is more visible and - interruptible, more prometheus metrics. - debuginfod-client: Now supports compressed (kernel) ELF images. - libdwfl: Add ZSTD compression support. - -- Creatu dummy subpackages that can be used for build of packages - that are in bootstrap cycle. -- Add Provides for real packages. - -- Update to version 0.181: - libelf: elf_update now compensates (fixes up) a bad sh_addralign for - SHF_COMPRESSED sections. - libdebuginfod: configure now takes --enable-libdebuginfod=dummy or - - -disable-libdebuginfod for bootstrapping. - DEBUGINFOD_URLS now accepts "scheme-free" urls - (guessing at what the user meant, either http:// or file://) - readelf, elflint: Handle aarch64 bti, pac bits in dynamic table and gnu - property notes. - libdw, readelf: Recognize DW_CFA_AARCH64_negate_ra_state. Allows unwinding - on arm64 for code that is compiled for PAC (Pointer - Authentication Code) as long as it isn't enabled -- Drop upstream patch: - * 0001-tests-Add-GCOV-flags-when-necessary.patch - -- Remove cfi-fix.patch - should not be needed now. -- Remove remove-run-large-elf-file.sh.patch as it now checks for memory - size. -- Use autosetup. - -- Update to version 0.180: - elflint: Allow SHF_EXCLUDE as generic section flag when --gnu is given. - libdw, readelf: Handle GCC LTO .gnu.debuglto_ prefix. - libdw: Use correct CU to resolve file names in dwarf_decl_file. - libdwfl: Handle debugaltlink in dwfl_standard_find_debuginfo. - size: Also obey radix printing for bsd format. - nm: Explicitly print weak 'V' or 'T' and common 'C' symbols. -- Add 0001-tests-Add-GCOV-flags-when-necessary.patch in order to fix - an unresolved symbol. -- Enable LTO: boo#1138796 by adding -flto-partition=none and -Wno-error=stack-usage. - -- Update to version 0.179: - debuginfod-client: When DEBUGINFOD_PROGRESS is set and the program doesn't - install its own debuginfod_progressfn_t show download - progress on stderr. - DEBUGINFOD_TIMEOUT is now defined as seconds to get at - least 100K, defaults to 90 seconds. - Default to $XDG_CACHE_HOME/debuginfod_client. - New functions debuginfod_set_user_data, - debuginfod_get_user_data, debuginfod_get_url and - debuginfod_add_http_header. - Support for file:// URLs. - debuginfod: Uses libarchive directly for reading rpm archives. - Support for indexing .deb/.ddeb archives through dpkg-deb - or bsdtar. - Generic archive support through -Z EXT[=CMD]. Which can be - used for example for arch-linux pacman files by using - - Z '.tar.zst=zstdcat'. - Better logging using User-Agent and X-Forwarded-For headers. - More prometheus metrics. - Support for eliding dots or extraneous slashes in path names. - debuginfod-find: Accept /path/names in place of buildid hex. - libelf: Handle PN_XNUM in elf_getphdrnum before shdr 0 is cached - Ensure zlib resource cleanup on failure. - libdwfl: dwfl_linux_kernel_find_elf and dwfl_linux_kernel_report_offline - now find and handle a compressed vmlinuz image. - readelf, elflint: Handle PT_GNU_PROPERTY. - translations: Updated Ukrainian translation. - -- Re-add libelf1 to baselibs.conf: we still generate a - libelf-devel-32bit, which is only installable if libelf1-21bit - also exists. - -- Exclude debuginfod sub-packages and move them to elfutils-debuginfod. - -- Avoid double-shipping libdebuginfo.so.1 in two different - subpackages. Fixup RPM group. - -- Split libdebuginfod1 into libdebuginfod1 and debuginfod-client. - Add Requires for these packages. - -- Rename debuginfod-client package to libdebuginfod1 in - order to fulfil SLPP violation. - -- Fix variable references in specfile - -- Use %fillupdir macros for proper sysconfig export. - -- Update to version 0.178: - debuginfod: New server, client tool and library to index and fetch - ELF/DWARF files addressed by build-id through HTTP. - doc: There are now some manual pages for functions and tools. - backends: The libebl libraries are no longer dynamically loaded through - dlopen, but are now compiled into libdw.so directly. - readelf: -n, --notes now takes an optional "SECTION" argument. - - p and -x now also handle section numbers. - New option --dyn-sym to show just the dynamic symbol table. - libcpu: Add RISC-V disassembler. - libdw: Abbrevs and DIEs can now be read concurrently by multiple - threads through the same Dwarf handle. - libdwfl: Will try to use debuginfod when installed as fallback to - retrieve ELF and DWARF debug data files by build-id. -- remove dwelf_elf_e_machine_string.patch. -- remove unused libebl-plugins and libebl-devel subpackages -- new subpackages debuginfod-client, debuginfod-client-devel and - debuginfod added -- main package binaries are explicitely listed and man pages - for the binaries are included - -- Add remove-run-large-elf-file.sh.patch in order to remove - running run-large-elf-file.sh (it hit OOM). - -- disable-tests-with-ptrace.patch: Remove, set XFAIL_TESTS instead -- dwelf_elf_e_machine_string.patch: Avoid spurious failure - -- Modernize specfile and metadata. - -- Update to version 0.177: - elfclassify: New tool to analyze ELF objects. - readelf: Print DW_AT_data_member_location as decimal offset. - Decode DW_AT_discr_list block attributes. - libdw: Add DW_AT_GNU_numerator, DW_AT_GNU_denominator and DW_AT_GNU_bias. - libdwelf: Add dwelf_elf_e_machine_string. - dwelf_elf_begin now only returns NULL when there is an error - reading or decompressing a file. If the file is not an ELF file - an ELF handle of type ELF_K_NONE is returned. - backends: Add support for C-SKY. -- remove fix-bsc-1110929.diff and gcc9-tests-Don-t-printf-a-known-NULL-symname.patch -- Use %make_build - -- Disable LTO (boo#1138796). - -- Update License tag to GPL-3.0-or-later, as requested by legal - review. - -- Add fix-bsc-1110929.diff [bsc#1110929] - -- Add gcc9-tests-Don-t-printf-a-known-NULL-symname.patch in order to - fix boo#1120864. - -- Add elfutils.keyring and verify signature. - -- Update to version 0.176 - build: Add new --enable-install-elfh option. - Do NOT use this for system installs (it overrides glibc elf.h). - backends: riscv improved core file and return value location support. - Fixes CVE-2019-7146, CVE-2019-7148, CVE-2019-7149, CVE-2019-7150, - CVE-2019-7664, CVE-2019-7665 - -- Update to version 0.175 - readelf: Handle mutliple .debug_macro sections. - Recognize and parse GNU Property, NT_VERSION and - GNU Build Attribute ELF Notes. - strip: Handle SHT_GROUP correctly. - Add strip --reloc-debug-sections-only option. - Handle relocations against GNU compressed sections. - libdwelf: New function dwelf_elf_begin. - libcpu: Recognize bpf jump variants BPF_JLT, BPF_JLE, BPF_JSLT - and BPF_JSLE. - backends: RISCV handles ADD/SUB relocations. - Handle SHT_X86_64_UNWIND. - Fixes CVE-2018-18310, CVE-2018-18520 and CVE-2018-18521. -- remove disable-backtrace-dwarf-test.patch patch - the test - works now - -- Add disable-backtrace-dwarf-test.patch in order to work around: - https://sourceware.org/bugzilla/show_bug.cgi?id=23673. - -- Update to version 0.174 - libelf, libdw and all tools now handle extended shnum and - shstrndx correctly. - elfcompress: Don't rewrite input file if no section data needs - updating. Try harder to keep same file mode bits - (suid) on rewrite. - strip: Handle mixed (out of order) allocated/non-allocated - sections. - unstrip: Handle SHT_GROUP sections. - backends: RISCV and M68K now have backend implementations to - generate CFI based backtraces. - -- Don't make elfutils recommend elfutils-lang as elfutils-lang - already supplements elfutils. - -- Fix typo in the recommends name bsc#1104264 - -- Update to version 0.173 - More fixes for crashes and hangs found by afl-fuzz. In particular various - functions now detect and break infinite loops caused by bad DIE tree cycles. - readelf: Will now lookup the size and signedness of constant value types - to display them correctly (and not just how they were encoded). - libdw: New function dwarf_next_lines to read CU-less .debug_line data. - dwarf_begin_elf now accepts ELF files containing just .debug_line - or .debug_frame sections (which can be read without needing a DIE - tree from the .debug_info section). - Removed dwarf_getscn_info, which was never implemented. - backends: Handle BPF simple relocations. - The RISCV backends now handles ABI specific CFI and knows about - RISCV register types and names. -- add cfi-fix.patch: make build green on arm target - -- Update to versio 0.172 - No functional changes compared to 0.171. - Various bug fixes in libdw and eu-readelf dealing with bad DWARF5 data. - Thanks to running the afl fuzzer on eu-readelf and various testcases. - -- disable-tests-with-ptrace.patch: Rediff - -- Update to version 0.171 - DWARF5 and split dwarf, including GNU DebugFission, are supported now. - Data can be read from the new DWARF sections .debug_addr, .debug_line_str, - .debug_loclists, .debug_str_offsets and .debug_rnglists. Plus the new - DWARF5 and GNU DebugFission encodings of the existing .debug sections. - Also in split DWARF .dwo (DWARF object) files. This support is mostly - handled by existing functions (dwarf_getlocation*, dwarf_getsrclines, - dwarf_ranges, dwarf_form*, etc.) now returning the data from the new - sections and data formats. But some new functions have been added - to more easily get information about skeleton and split compile units - (dwarf_get_units and dwarf_cu_info), handle new attribute data - (dwarf_getabbrevattr_data) and to keep references to Dwarf_Dies - that might come from different sections or files (dwarf_die_addr_die). - Not yet supported are .dwp (Dwarf Package) and .sup (Dwarf Supplementary) - files, the .debug_names index, the .debug_cu_index and .debug_tu_index - sections. Only a single .debug_info (and .debug_types) section are - currently handled. - readelf: Handle all new DWARF5 sections. - - -debug-dump=info+ will show split unit DIEs when found. - - -dwarf-skeleton can be used when inspecting a .dwo file. - Recognizes GNU locviews with --debug-dump=loc. - libdw: New functions dwarf_die_addr_die, dwarf_get_units, - dwarf_getabbrevattr_data and dwarf_cu_info. - libdw will now try to resolve the alt file on first use of - an alt attribute FORM when not set yet with dwarf_set_alt. - dwarf_aggregate_size() now works with multi-dimensional arrays. - libdwfl: Use process_vm_readv when available instead of ptrace. - backends: Add a RISC-V backend. - There were various improvements to build on Windows. - The sha1 and md5 implementations have been removed, they weren't used. -- Remove patches: elfutils-0.170-Wpackednotaligned.patch, - elfutils-0.170-stripnothing.patch, gcc8-disable-test.patch -- make package with V=1 to print verbose command line - -- Add gcc8-disable-test.patch in order to fix boo#1084637: temporarily - disable a test-case. - -- disable-tests-with-ptrace.patch: Rediff - -- Update to version 0.170 - libdw: Added new DWARF5 attribute, tag, character encoding, language code, - calling convention, defaulted member function and macro constants - to dwarf.h. - New functions dwarf_default_lower_bound and dwarf_line_file. - dwarf_peel_type now handles DWARF5 immutable, packed and shared tags. - dwarf_getmacros now handles DWARF5 .debug_macro sections. - strip: Add -R, --remove-section=SECTION and --keep-section=SECTION. - backends: The bpf disassembler is now always build on all platforms. -- Includes changes in 0.169 - backends: Add support for EM_PPC64 GNU_ATTRIBUTES. - Frame pointer unwinding fallback support for i386, x86_64, aarch64. - translations: Update Polish translation. -- Remove obsolete 0001-backends-Add-support-for-EM_PPC64-GNU_ATTRIBUTES.patch - and ppc-machine-flags.patch -- Add elfutils-0.170-stripnothing.patch to robustify test and avoid a FAIL. -- Add elfutils-0.170-Wpackednotaligned.patch to fix build with GCC 8. - (boo#1084637) - -- Use %license (boo#1082318) - -- Restore obsolete on libebl. - -- Update package descriptions. -- Rename libebl1 to libebl-plugins as these are not linked, - but dlopened using their unversioned libebl_$ARCH.so name. -- Have libelf1 require libebl-plugins (libebl.a, which does the - dlopen call, is staticly built into libelf1). This is necessary - for pahole to display its results. [boo#1049871] - -- ppc-machine-flags.patch: support EM_PPC machine flags -- disable-tests-with-ptrace.patch: disable more tests - -- Update Git-Clone URL - -- Add 0001-backends-Add-support-for-EM_PPC64-GNU_ATTRIBUTES.patch - unconditionally in the spec file. As we can't support binary diff, - a newly added test-case is removed from the patch. - -- Add 0001-backends-Add-support-for-EM_PPC64-GNU_ATTRIBUTES.patch: - fix .gnu.attributes checking on ppc64{,le}. - -- Add missing ldconfig calls for libasm1 - -- make tests pass when user does not want debuginfo (boo#1031556) - -- Update to version 0.168: - libelf: gelf_newehdr and gelf_newehdr now return void *. - libdw: dwarf.h corrected the DW_LANG_PLI constant name (was DW_LANG_PL1). - readelf: Add optional --symbols[=SECTION] argument to select section name. -- Includes changes from 0001-Add-GCC7-Wimplicit-fallthrough-support-fixes.patch - and 0001-ar-Fix-GCC7-Wformat-length-issues.patch. -- Remove elfutils-0.137-dwarf-header-check-fix.diff which is no longer - required after a debugedit fix. - -- Add 0001-Add-GCC7-Wimplicit-fallthrough-support-fixes.patch: fix - new warning introduced in GCC 7. -- Add 0001-ar-Fix-GCC7-Wformat-length-issues.patch: fix -Wformat-length - warning introduced in GCC 7. - -- Update to version 0.167: - libasm: Add eBPF disassembler for EM_BPF files. - backends: Add m68k and BPF backends. - ld: Removed. - dwelf: Add ELF/DWARF string table creation functions. dwelf_strtab_init, - dwelf_strtab_add, dwelf_strtab_add_len, dwelf_strtab_finalize, - dwelf_strent_off, dwelf_strent_str and dwelf_strtab_free. - Support compressed sections from binutils 2.27. -- Remove patch elfutils-0.166-elfcmp-comp-gcc6.patch: included upstream. - -- disable-tests-with-ptrace.patch: disable tests that use ptrace when - running under qemu-linux-user - -- Update to version 0.166: - + config: The default program prefix for the installed tools is now - eu-. Use configure --program-prefix="" to not use a program - prefix. - + Various bugfixes. -- Drop elfutils-0.164-dt-ppc-opt.patch and - elfutils-0.164-gcc6.patch (merged upstream) -- Add patch elfutils-0.166-elfcmp-comp-gcc6.patch: fix - self-comparison error with GCC 6. -- Changes from 0.165: - + Add eu-elfcompress - + Add pkg-config files for libelf and libdw. - -- add elfutils-0.164-gcc6.patch - -- rename dt-ppc-opt.patch as elfutils-0.164-dt-ppc-opt.patch - and add reference to upstream commit id - -- dt-ppc-opt.patch: add support for DT_PPC_OPT - -- Update to version 0.164 - Drop the following patches, fixed upstream: - * elfutils-portability-0.163.patch - * elfutils-revert-portability-scanf.patch - * elfutils-uninitialized.diff - * libebl-prototype-fix.diff - Changelog: - - strip, unstrip: - * Handle ELF files with merged strtab/shstrtab tables. - * Handle missing SHF_INFO_LINK section flags. - - libelf: - * Use int64_t for offsets in libelf.h instead of loff_t. - - libdw: - * dwarf.h Add preliminary DWARF5 DW_LANG_Haskell. - - libdwfl: - * dwfl_standard_find_debuginfo now searches any subdir of the binary - path under the debuginfo root when the separate debug file couldn't - be found by build-id. - * dwfl_linux_proc_attach can now be called before any Dwfl_Modules - have been reported. -- Implement %check - -- Update to version 0.163 - Drop patch elfutils-fix-dir-traversal-vuln-in-ar-extraction.patch - Drop patch elfutils-0.148-dont-crash.diff (fixed by 9ceebe69) - Drop patch elfutils-portability-0.161.patch - Add patch elfutils-portability-0.163.patch - Changelog: - 0.163: - - Bug fixes only, no new features. - 0.162: - - libdw: Install new header elfutils/known-dwarf.h. - dwarf.h Add preliminary DWARF5 constants DW_TAG_atomic_type, - DW_LANG_Fortran03, DW_LANG_Fortran08. dwarf_peel_type now also - handles DW_TAG_atomic_type. - - addr2line: Input addresses are now always interpreted as hexadecimal - numbers, never as octal or decimal numbers. - New option -a, --addresses to print address before each entry. - New option -C, --demangle to show demangled symbols. - New option --pretty-print to print all information on one line. - - ar: CVE-2014-9447 Directory traversal vulnerability in ar extraction. - - backends: x32 support. - -- Make ebl modversion predictable to allow build-compare (bnc#916043) - -- CVE-2014-9447: elfutils: Directory traversal vulnerability (bnc#911662) - Add patch: elfutils-fix-dir-traversal-vuln-in-ar-extraction.patch - -- Update to version 0.161 - + libdw: New function dwarf_peel_type. dwarf_aggregate_size now uses - dwarf_peel_type to also provide the sizes of qualified types. - dwarf_getmacros will now serve either of .debug_macro and - .debug_macinfo transparently. New interfaces - dwarf_getmacros_off, dwarf_macro_getsrcfiles, - dwarf_macro_getparamcnt, and dwarf_macro_param are available - for more generalized inspection of macros and their parameters. - dwarf.h: Add DW_AT_GNU_deleted, DW_AT_noreturn, DW_LANG_C11, - DW_LANG_C_plus_plus_11 and DW_LANG_C_plus_plus_14. -- Remove merged patches - + elfutils-robustify.patch - + elfutils-no-po-test-build.diff - + elfutils-check-for-overflow-before-calling-malloc-to-uncompress-data.patch -- Refreshed patch (from Fedora sources) - + elfutils-portability.patch > elfutils-portability-0.161.patch -- Add a lang subpackage - -- Update homepage URL and improve RPM group classification - expat +- Security fix: + * (CVE-2022-43680, bsc#1204708) use-after free caused by overeager + destruction of a shared DTD in XML_ExternalEntityParserCreate in + out-of-memory situations + - Added patch expat-CVE-2022-43680.patch + +- Security fix: + * (CVE-2022-40674, bsc#1203438) use-after-free in the doContent + function in xmlparse.c + - Added patch expat-CVE-2022-40674.patch + +- Security fixes: + * (CVE-2022-25236, bsc#1196784) [>=2.4.5] Fix to CVE-2022-25236 + breaks biboumi, ClairMeta, jxmlease, libwbxml, + openleadr-python, rnv, xmltodict + - Added expat-CVE-2022-25236-relax-fix.patch + +- Security fixes: + * (CVE-2022-25236, bsc#1196025) Expat before 2.4.5 allows + attackers to insert namespace-separator characters into + namespace URIs + - Added expat-CVE-2022-25236.patch + * (CVE-2022-25235, bsc#1196026) xmltok_impl.c in Expat before + 2.4.5 does not check whether a UTF-8 character is valid in a + certain context. + - Added expat-CVE-2022-25235.patch + * (CVE-2022-25313, bsc#1196168) Stack exhaustion in + build_model() via uncontrolled recursion + - Added expat-CVE-2022-25313.patch + - The fix upstream introduced a regression that was later + amended in 2.4.6 version + + Added expat-CVE-2022-25313-fix-regression.patch + * (CVE-2022-25314, bsc#1196169) Integer overflow in copyString + - Added expat-CVE-2022-25314.patch + * (CVE-2022-25315, bsc#1196171) Integer overflow in storeRawNames + - Added expat-CVE-2022-25315.patch + +- Update to latest version 2.4.4 in SLE-15-SP4 [jsc#SLE-21253] + +- update to 2.4.4 (bsc#1195217, bsc#1195054): + * Security fixes: + - CVE-2022-23852 -- Fix signed integer overflow + (undefined behavior) in function XML_GetBuffer + that is also called by function XML_Parse internally) + for when XML_CONTEXT_BYTES is defined to >0 (which is both + common and default). + Impact is denial of service or more. + - CVE-2022-23990 -- Fix unsigned integer overflow in function + doProlog triggered by large content in element type + declarations when there is an element declaration handler + present (from a prior call to XML_SetElementDeclHandler). + Impact is denial of service or more. + * Bug fixes: + - xmlwf: Fix a memory leak on output file opening error + * Other changes: + - Version info bumped from 9:3:8 to 9:4:8; + see https://verbump.de/ for what these numbers do + * Drop unused file valid-xhtml10.png + +- update to 2.4.3 (bsc#1194251, bsc#1194362, bsc#1194474, + bsc#1194476, bsc#1194477, bsc#1194478, bsc#1194479, bsc#1194480): + * CVE-2021-45960 -- Fix issues with left shifts by >=29 places + resulting in + a) realloc acting as free + b) realloc allocating too few bytes + c) undefined behavior + depending on architecture and precise value + for XML documents with >=2^27+1 prefixed attributes + on a single XML tag a la + "" + where XML_ParserCreateNS is used to create the parser + (which needs argument "-n" when running xmlwf). + Impact is denial of service, or more. + * CVE-2021-46143 (ZDI-CAN-16157) -- Fix integer overflow + on variable m_groupSize in function doProlog leading + to realloc acting as free. + Impact is denial of service or more. + * CVE-2022-22822 to CVE-2022-22827 -- Prevent integer overflows + near memory allocation at multiple places. Mitre assigned + a dedicated CVE for each involved internal C function: + - CVE-2022-22822 for function addBinding + - CVE-2022-22823 for function build_model + - CVE-2022-22824 for function defineAttribute + - CVE-2022-22825 for function lookup + - CVE-2022-22826 for function nextScaffoldPart + - CVE-2022-22827 for function storeAtts + Impact is denial of service or more. + +- update to 2.4.2: + * Link againgst libm for function "isnan" + * Include expat_config.h as early as possible + * Autotools: Include files with release archives: + - buildconf.sh + - fuzz/*.c + * Autotools: Sync CMake templates + * docs: Document that function XML_GetBuffer may return NULL + when asking for a buffer of 0 (zero) bytes size + * docs: Fix return value docs for both + XML_SetBillionLaughsAttackProtection* functions + * Version info bumped from 9:1:8 to 9:2:8 + +- Update to 2.4.1 in SLE-15-SP4 [jsc#SLE-21253] + * Remove expat-CVE-2018-20843.patch upstream + +- Update to 2.4.1: + * Bug fixes: + - Autotools: Fix installed header expat_config.h for multilib + systems; regression introduced in 2.4.0 by pull request #486 + * Other changes: + - Version info bumped from 9:0:8 to 9:1:8; see + https://verbump.de/ for what these numbers do + +- Update to 2.4.0: [CVE-2013-0340 "Billion Laughs"] + * Security fixes: + - CVE-2013-0340/CWE-776 -- Protect against billion laughs attacks + (denial-of-service; flavors targeting CPU time or RAM or both, + leveraging general entities or parameter entities or both) + by tracking and limiting the input amplification factor + ( := ( + ) / ). + By conservative default, amplification up to a factor of 100.0 + is tolerated and rejection only starts after 8 MiB of output bytes + (= + ) have been processed. + The fix adds the following to the API: + - A new error code XML_ERROR_AMPLIFICATION_LIMIT_BREACH to + signals this specific condition. + - Two new API functions .. + - XML_SetBillionLaughsAttackProtectionMaximumAmplification and + - XML_SetBillionLaughsAttackProtectionActivationThreshold + .. to further tighten billion laughs protection parameters + when desired. Please see file "doc/reference.html" for details. + If you ever need to increase the defaults for non-attack XML + payload, please file a bug report with libexpat. + - Two new XML_FEATURE_* constants .. + - that can be queried using the XML_GetFeatureList function, and + - that are shown in "xmlwf -v" output. + - Two new environment variable switches .. + - EXPAT_ACCOUNTING_DEBUG=(0|1|2|3) and + - EXPAT_ENTITY_DEBUG=(0|1) + .. for runtime debugging of accounting and entity processing. + Specific behavior of these values may change in the future. + - Two new command line arguments "-a FACTOR" and "-b BYTES" + for xmlwf to further tighten billion laughs protection + parameters when desired. + If you ever need to increase the defaults for non-attack XML + payload, please file a bug report with libexpat. + * Bug fixes: + - For (non-default) compilation with -DEXPAT_MIN_SIZE=ON (CMake) + or CPPFLAGS=-DXML_MIN_SIZE (GNU Autotools): Fix segfault + for UTF-16 payloads containing CDATA sections. + - Autotools: Fix generated CMake files for non-64bit and + non-Linux platforms (e.g. macOS and MinGW in particular) + that were introduced with release 2.3.0 + * Other changes: + - xmlwf: Improve help output and the xmlwf man page + - xmlwf: Improve maintainability through some refactoring + - xmlwf: Fix man page DocBook validity + - CMake: Support absolute paths for both CMAKE_INSTALL_LIBDIR + and CMAKE_INSTALL_INCLUDEDIR + - CMake: Add support for standard variable BUILD_SHARED_LIBS + - Unexpose symbol _INTERNAL_trim_to_complete_utf8_characters + - Resolve macro HAVE_EXPAT_CONFIG_H + - Delete unused legacy helper file "conftools/PrintPath" + - doc/reference.html: Fix XHTML validity + - doc/reference.html: Replace the 90s look by OK.css + - Version info bumped from 8:0:7 to 9:0:8 due to addition of + new symbols and error codes; see https://verbump.de/ for + what these numbers do + +- Do not BuildRequire cmake: expat is part of the distro bootstrap + cycle and any additional dependency makes the ring larger. In + this case here, cmake was even only used to own a directory. + +- update to 2.3.0: + * When calling XML_ParseBuffer without a prior successful call to + XML_GetBuffer as a user, no longer trigger undefined behavior + (by adding an integer to a NULL pointer) but rather return + XML_STATUS_ERROR and set the error code to (new) code + XML_ERROR_NO_BUFFER. Found by UBSan (UndefinedBehaviorSanitizer) + of Clang 11 (but not Clang 9). + * xmlwf: Exit status 2 was used for both: + - malformed input files (documented) and + - invalid command-line arguments (undocumented). + case of invalid command-line arguments now + has its own exit status 4, resolving the ambiguity. + * Other changes + +- Update to 2.2.10: + * Bug fixes: + - Fix undefined behavior during parsing caused by pointer + arithmetic with NULL pointers + - Fix reading uninitialized variable during parsing + - xmlwf: Add missing check for malloc NULL return + * Other changes: + - xmlwf: Document exit codes in xmlwf manpage and exit with code 3 + (rather than code 1) for output errors when used with "-d DIRECTORY" + - Autotools: Use -Werror while configure tests the compiler for + supported compile flags to avoid false positives + - Autotools: Improve handling of user (C|CPP|CXX|LD)FLAGS, e.g. + ensure that they have the last word over flags added while + running ./configure + - CMake: Create libexpatw.{dll,so} and expatw.pc (with emphasis + on suffix "w") with -DEXPAT_CHAR_TYPE=(ushort|wchar_t) + - CMake: Detect and deny unsupported build combinations + involving -DEXPAT_CHAR_TYPE=(ushort|wchar_t) + - CMake: Install pre-compiled shipped xmlwf.1 manpage in case + of -DEXPAT_BUILD_DOCS=OFF + - CMake: Fix use of Expat by means of add_subdirectory + - CMake: Keep expat target name constant at "expat" (i.e. refrain + from using the target name to control build artifact filenames) + - CMake: Expose man page compilation as target "xmlwf-manpage" + - CMake: Introduce option EXPAT_BUILD_PKGCONFIG to control + generation of pkg-config file "expat.pc" + - CMake: Add minimalistic support for building binary packages + with CMake target "package"; based on CPack + - CMake: Add option -DEXPAT_OSSFUZZ_BUILD=(ON|OFF) with default + OFF to build fuzzer code against OSS-Fuzz and related + environment variable LIB_FUZZING_ENGINE + - Fix testsuite for -DEXPAT_DTD=OFF and -DEXPAT_NS=OFF + - Address compiler warnings + - Address pngcheck warnings with doc/*.png images: Version info + bumped from 7:11:6 to 7:12:6 + +- Version update to 2.2.9 + * Other changes: + - examples: Drop executable bits from elements.c + [#349] Windows: Change the name of the Windows DLLs from expat*.dll + to libexpat*.dll once more (regression from 2.2.8, first + fixed in 1.95.3, issue #61 on SourceForge today, + was issue #432456 back then); needs a fix due + case-insensitive file systems on Windows and the fact that + Perl's XML::Parser::Expat compiles into Expat.dll. + [#347] Windows: Only define _CRT_RAND_S if not defined + Version info bumped from 7:10:6 to 7:11:6 + +- Version update to 2.2.8 + * Security fixes: (CVE-2019-15903, bsc#1149429) + - CVE-2019-15903 -- Fix heap overflow triggered by XML_GetCurrentLineNumber + (or XML_GetCurrentColumnNumber), and deny internal entities closing the doctype; + * Bug fixes: + - Fix cases where XML_StopParser did not have any effect + when called from inside of an end element handler + - xmlwf: Fix exit code for operation without "-d DIRECTORY"; + previously, only "-d DIRECTORY" would give you a proper exit code: + Now both cases return exit code 2. + * Other changes: + - examples: Improve elements.c + - Autotools: Add argument --enable-xml-attr-info + - Autotools: Add arguments --with-getrandom --without-getrandom --with-sys-getrandom --without-sys-getrandom + - Autotools: Fix linking issues with "./configure LD=clang" + - Autotools: Fix "make run-xmltest" for out-of-source builds + - CMake: Pull all options from Expat <=2.2.7 into namespace + - CMake: Add argument -DEXPAT_ATTR_INFO=(ON|OFF), default OFF + - CMake: Add argument -DEXPAT_LARGE_SIZE=(ON|OFF), default OFF + - CMake: Add argument -DEXPAT_MIN_SIZE=(ON|OFF), default OFF + - CMake: Add arguments -DEXPAT_WITH_GETRANDOM=(ON|OFF|AUTO), default AUTO + - CMake: Add arguments -DEXPAT_WITH_SYS_GETRANDOM=(ON|OFF|AUTO), default AUTO + - CMake: Install expat_config.h to include directory + - CMake: Generate and install configuration files for future find_package(expat [..] CONFIG [..]) + - CMake: Now produces a summary of applied configuration + - CMake: Require C++ compiler only when tests are enabled + - CMake: Fix compilation for 16bit character types, i.e. ex -DXML_UNICODE=ON (and ex -DXML_UNICODE_WCHAR_T=ON) + - CMake: Port "make run-xmltest" from GNU Autotools to CMake + - CMake: Integrate OSS-Fuzz fuzzers, option -DEXPAT_BUILD_FUZZERS=(ON|OFF), default OFF +- Removed patches fixed in the update: + * expat-CVE-2019-15903.patch + * expat-CVE-2019-15903-tests.patch + +- Security fix (CVE-2019-15903, bsc#1149429) + * Crafted XML input results in heap-based buffer over-read by fooling + the parser into changing from DTD parsing to document parsing + * Added patches: + - expat-CVE-2019-15903.patch + - expat-CVE-2019-15903-tests.patch + +- Version update to 2.2.7 (CVE-2018-20843, bsc#1139937) + * Security fixes: + - CVE-2018-20843 - Fix extraction of namespace prefixes from + XML names; XML names with multiple colons could end up in + the wrong namespace, and take a high amount of RAM and CPU + resources while processing, opening the door to use for + denial-of-service attacks + * Other changes: + - Autotools/CMake: Utilize -fvisibility=hidden to stop + exporting non-API symbols + - Autotools: Add --without-examples and --without-tests + - Autotools: Modernize configure.ac + - Autotools: Fix check for -fvisibility=hidden for Clang + - Autotools: Fix compilation for lack of docbook2x-man + - CMake: Make libdir of pkgconfig expat.pc support multilib + - CMake: Build man page in PROJECT_BINARY_DIR not _SOURCE_DIR + - Remove fallback to bcopy, assume that memmove(3) exists +- Removed expat-2.2.6-fix-make-clean.patch + +- Add expat-2.2.6-fix-make-clean.patch +- Allow profile guided optimization again + +- Drop docbook2x dependency, the manpages are generated in + the upstream archive and this way we break buildcycle + +- Version update to 2.2.6 Sun August 12 2018 + * Bug fixes: + - Avoid doing arithmetic with NULL pointers in XML_GetBuffer + - Fix 2.2.5 regression with suspend-resume while parsing + a document like '' + * Other changes: + - Autotools: Fix docbook-related configure syntax error + - Autotools: Avoid grep option `-q` for Solaris + - Autotools: Support + ./configure DOCBOOK_TO_MAN="xmlto man --skip-validation" + - Autotools: Support DOCBOOK_TO_MAN command which produces + xmlwf.1 rather than XMLWF.1; also covers case insensitive + file systems + - Autotools: Drop -rpath option passed to libtool + - Autotools: Detect and deny SGML docbook2man as ours is XML + - Autotools/CMake: Support command db2x_docbook2man as well + - CMake: Introduce option WARNINGS_AS_ERRORS, defaults to OFF + - CMake: Introduce option MSVC_USE_STATIC_CRT, defaults to OFF + - CMake: Introduce option XML_UNICODE and XML_UNICODE_WCHAR_T, + both defaulting to OFF + - CMake: Prefer check_symbol_exists over check_function_exists + - CMake: Create the same pkg-config file as with GNU Autotools + - CMake: Use GNUInstallDirs module to set proper defaults for + install directories + - CMake: Utilize expat_config.h.cmake for XML_DEV_URANDOM + - Address compiler warnings + - Fix miscellaneous typos + +- Expand description of expat-devel. + +- Do not generate manpages from docbook +- Temporarily disable profiling due to bug in build system + +- Version update to 2.2.5 Tue October 31 2017 + * Bug fixes: + - If the parser runs out of memory, make sure its internal + state reflects the memory it actually has, not the memory + it wanted to have. + - The default handler wasn't being called when it should for + a SYSTEM or PUBLIC doctype if an entity declaration handler + was registered. + - Fix a case of mistakenly reported parsing success where + XML_StopParser was called from an element handler + - Function XML_ErrorString was returning NULL rather than + a message for code XML_ERROR_INVALID_ARGUMENT + introduced with release 2.2.1 + * Other changes: + - Add argument -N adding notation declarations + - various compiler-specific fixes + - Improve docbook2x-man detection +- drop expat-docbook.patch + * fixed in 0f5186c7b8e503c669e332d944712de010b265f3 +- switch to github for release tarballs and website + +- Version update to 2.2.4 Sat August 19 2017 + * Bug fixes: + [#115] Fix copying of partial characters for UTF-8 input + * Other changes: + [#109] Fix "make check" for non-x86 architectures that default + to unsigned type char (-128..127 rather than 0..255) + [#109] coverage.sh: Cover -funsigned-char + Autotools: Introduce --without-xmlwf argument + [#65] Autotools: Replace handwritten Makefile with GNU Automake + [#43] CMake: Auto-detect high quality entropy extractors, add new + option USE_libbsd=ON to use arc4random_buf of libbsd + [#74] CMake: Add -fno-strict-aliasing only where supported + [#114] CMake: Always honor manually set BUILD_* options + [#114] CMake: Compile man page if docbook2x-man is available, only + [#117] Include file tests/xmltest.log.expected in source tarball + (required for "make run-xmltest") + [#111] Fix some typos in documentation + Version info bumped from 7:5:6 to 7:6:6 +- Release 2.2.3 Wed August 2 2017 + * Bug fixes: + [#85] Fix a dangling pointer issue related to realloc + * Other changes: + [#91] Linux: Allow getrandom to fail if nonblocking pool has not + yet been initialized and read /dev/urandom then, instead. + This is in line with what recent Python does. + [#86] Check that a UTF-16 encoding in an XML declaration has the + right endianness + [#4] #5 #7 Recover correctly when some reallocations fail + Repair "./configure && make" for systems without any + provider of high quality entropy + and try reading /dev/urandom on those + Ensure that user-defined character encodings have converter + functions when they are needed + Fix mis-leading description of argument -c in xmlwf.1 + Rely on macro HAVE_ARC4RANDOM_BUF (rather than __CloudABI__) + for CloudABI + [#100] Fix use of SIPHASH_MAIN in siphash.h + [#23] Test suite: Fix memory leaks + Version info bumped from 7:4:6 to 7:5:6 +- Release 2.2.2 Wed July 12 2017 + * Security fixes: + [#43] Protect against compilation without any source of high + quality entropy enabled, e.g. with CMake build system; + * [MOX-006] Fix non-NULL parser parameter validation in XML_Parse; + resulted in NULL dereference, previously; + * Bug fixes: + [#69] Fix improper use of unsigned long long integer literals + * Other changes: + [#73] Start requiring a C99 compiler + [#49] Fix "==" Bashism in configure script + [#58] Address compile warnings + [#68] Fix "./buildconf.sh && ./configure" for some versions + of Dash for /bin/sh + [#72] CMake: Ease use of Expat in context of a parent project + with multiple CMakeLists.txt files + [#72] CMake: Resolve mistaken executable permissions + [#76] Address compile warning with -DNDEBUG (not recommended!) + [#77] Address compile warning about macro redefinition + * Added patch expat-docbook.patch to compile the man pages with + docbook-to-man + * Cleaned spec file with spec-cleaner + +- Allow building when do_profiling is undefined + +- Build with profiling when possible + +- Version update to 2.2.1 Sat June 17 2017 + - Security fixes: + CVE-2017-9233 / bsc#1047236 -- External entity infinite loop DoS + Details: https://libexpat.github.io/doc/cve-2017-9233/ + Commit c4bf96bb51dd2a1b0e185374362ee136fe2c9d7f + - [MOX-002] CVE-2016-9063 / bsc#1047240 -- Detect integer overflow; + (Fixed version of existing downstream patches!) + - (SF.net) #539 Fix regression from fix to CVE-2016-0718 cutting off + longer tag names; + [#25] More integer overflow detection (function poolGrow); + - [MOX-002] Detect overflow from len=INT_MAX call to XML_Parse; + - [MOX-005] #30 Use high quality entropy for hash initialization: + * arc4random_buf on BSD, systems with libbsd + (when configured with --with-libbsd), CloudABI + * RtlGenRandom on Windows XP / Server 2003 and later + * getrandom on Linux 3.17+ + In a way, that's still part of CVE-2016-5300. + https://github.com/libexpat/libexpat/pull/30/commits + - [MOX-005] For the low quality entropy extraction fallback code, + the parser instance address can no longer leak, + - [MOX-003] Prevent use of uninitialised variable; commit + - [MOX-004] a4dc944f37b664a3ca7199c624a98ee37babdb4b + Add missing parameter validation to public API functions + and dedicated error code XML_ERROR_INVALID_ARGUMENT: + - [MOX-006] * NULL checks; commits + * Negative length (XML_Parse); commit + - [MOX-002] 70db8d2538a10f4c022655d6895e4c3e78692e7f + - [MOX-001] #35 Change hash algorithm to William Ahern's version of SipHash + to go further with fixing CVE-2012-0876. + https://github.com/libexpat/libexpat/pull/39/commits + - Bug fixes: + [#32] Fix sharing of hash salt across parsers; + relevant where XML_ExternalEntityParserCreate is called + prior to XML_Parse, in particular (e.g. FBReader) + [#28] xmlwf: Auto-disable use of memory-mapping (and parsing + as a single chunk) for files larger than ~1 GB (2^30 bytes) + rather than failing with error "out of memory" + [#3] Fix double free after malloc failure in DTD code; commit + 7ae9c3d3af433cd4defe95234eae7dc8ed15637f + [#17] Fix memory leak on parser error for unbound XML attribute + prefix with new namespaces defined in the same tag; + found by Google's OSS-Fuzz; commits + xmlwf on Windows: Add missing calls to CloseHandle + - New features: + [#30] Introduced environment switch EXPAT_ENTROPY_DEBUG=1 + for runtime debugging of entropy extraction + Bump version info from 7:2:6 to 7:3:6 + +- Remove pointless --with-pic (for static only) + +- Version update to 2.2.0: + * Fixes bnc#983215 CVE-2012-6702 + * Fixes bnc#983216 CVE-2016-5300 + * Various cmake and autotools script updates + * Fix detection of utf8 character boundaries +- Remove all patches merged upstream: + * expat-2.1.1-avoid_relying_on_undef_behaviour.patch + * expat-2.1.1-parser_crashes_on_malformed_input.patch + * expat-alloc-size.patch + * expat-visibility.patch + +- add expat-2.1.1-avoid_relying_on_undef_behaviour.patch to avoid + relying on undefined behavior in the original CVE-2015-1283 fix + [bnc#980391], [bnc#983985], [CVE-2016-4472] +- add expat-2.1.1-parser_crashes_on_malformed_input.patch to fix + Expat XML parser that mishandles certain kinds of malformed input + documents [bnc#979441], [CVE-2016-0718] +- use spec-cleaner to clean specfile + +- After simplification of expat-visibility.patch, it became + uneffective as no symbols are getting hidden. add + - fvisibility=hidden to CFLAGS again. +- expat-alloc-size.patch: fix braino, realloc()-like functions + should not take __attribute__(malloc) + +- Update to version 2.1.1 + * Fixes CVE-2015-1283 — Multiple integer overflows in the + XML_GetBuffer function + * Fix potential null pointer dereference + * Symbol XML_SetHashSalt was not exported + * Output of xmlwf -h was incomplete + * Document behavior of calling XML_SetHashSalt with salt 0 + * Minor improvements to man page xmlwf(1) +- Simplify expat-visibility.patch, refresh expat-alloc-size.patch +- Drop config-guess-sub-update.patch, fixed upstream. + +- Cleanup spec file with spec-cleaner +- Remove old ppc obsoletes/provides + flac +- Fix out of bound write in append_to_verify_fifo_interleaved_ + (CVE-2021-0561 bsc#1196660): + libFlac-Exit-at-EOS-in-verify-mode.patch + +- Fix memory leak (CVE-2020-0487 bsc#1180112): + stream_decoder.c-Fix-a-memory-leak.patch + +- Fix out-of-bounds access (CVE-2020-0499 bsc#1180099): + libFLAC-bitreader.c-Fix-out-of-bounds-read.patch + +- Fix memory leak in read_metadata_vorbiscomment_() function + (CVE-2017-6888, bsc#1091045): + flac-CVE-2017-6888.patch + +- Update to version 1.3.2 + * Fix undefined behaviour using GCC/Clang UBSAN (erikd). + * General hardening via fuzz testing with AFL (erikd and + others). + * General code improvements (lvqcl, erikd and others). + * Add FLAC in MP4 specification docs (Ralph Giles). + * Fix some cppcheck warnings (erikd). + * Assume all currently used OSes support SSE2. + flac: + * Fix potential infinite loop on flac-to-flac conversion + (erikd). + * Add WAVEFORMATEXTENSIBLE to WAV (as needed) when + decoding (lvqcl). + * Only write vorbis-comments if they are non-empty. + * Error out if decoding RAW with bits != (8|16|24). + metaflac: + * Add --scan-replay-gain option. + libraries: + * CPU detection cleanup and fixes (Julian Calaby, erikd + and lvqcl). + * Fix two stream decoder bugs (Max Kellermann). + * Fix a NULL dereference bug (on a malformed file). + * Changed the LPC order guess for a slight compression + improvement, particularly for classical music + (Martijn van Beurden). + * Improved encoding speed on older Intel CPUs. + * Fixed a seeking bug when decoding certain files + (Miroslav Lichvar). + * Put an upper bound (32768) on the number of seek + points. + * Fix potential memory leaks. + * Support 64bit brword/bwword allowing + FLAC__BYTES_PER_WORD to be set to 8 (disabled by + default). + * Fix an out-of-bounds heap read. +- Refreshed flac-cflags.patch + +- Drop patch that should be upstreamed first, otherwise we will + have to keep it ofrever: + * flac-ocloexec.patch +- Drop wrong patch: + * flac-fix-pkgconfig.patch + + If using this change you get assert.h include overriden in your + project by the one from FLAC/ which is not what upstream desired + If packages fail to build they should fix their include + +- Build documentation as noarch + +- Cleanup spec file with spec-cleaner +- Update url +- Remove no longer needed patches + * flac-fix-CVE-2014-8962.patch + * flac-fix-CVE-2014-9028.patch + * 0001-getopt_long-not-broken-here.patch +- Remove following as benefit of using openssl is small + * 0001-Allow-use-of-openSSL.patch +- Add flac-cflags.patch +- Use doxygen to build documentation +- Split documentation to separate package +- Update to 1.3.1 + * Improved decoding efficiency of all bit depths but especially + so for 24 bits for IA32 architecture (lvqcl and Miroslav Lichvar). + * Faster encoding using SSE and AVX (lvqcl). + * Fixed bartlett, bartlett_hann and triangle functions. + * New apodization functions partial_tukey and punchout_tukey for + improved compression (Martijn van Beurden). + * Retuned compression presets to incorporate new apodization + functions (Martijn van Beurden). + * Fix -Wcast-align warnings on armhf architecture (Erik de + Castro Lopo). + * Help output documentation improvements. + * I/O buffering improvements on Windows to reduce disk + fragmentation when writing files. + * Only write vorbis-comments if they are non-empty. + * Fix symbol visibility in XMMS plugin. + * Many fixes and improvements across all the build systems. + * Fix CVE-2014-9028 (heap write overflow) and CVE-2014-8962 + (heap read overflow) + +- A couple of security fixes: + * flac-fix-CVE-2014-8962.patch: + arbitrary code execution by a stack overflow (CVE-2014-8962, + bnc#906831) + * flac-fix-CVE-2014-9028.patch: + Heap overflow via specially crafted .flac files (CVE-2014-9028, + bnc#907016) + +- Update to final upstream release 1.3.0 + * No user-visible changes +- More robust make install call + freetype2 -- disable brotli linkage / WOFF2 support for now to keep dependencies - as before. - -- Added patches: - * CVE-2022-27404.patch - + fixes bsc#1198830, CVE-2022-27404: Buffer Overflow - * CVE-2022-27405.patch - + fixes bsc#1198832, CVE-2022-27405: Segmentation Fault - * CVE-2022-27406.patch - + fixes bsc#1198823, CVE-2022-27406: Segmentation violation - -- Update to version 2.10.4 - * Fix a heap buffer overflow has been found in the handling of - embedded PNG bitmaps, introduced in FreeType version 2.6 - (CVE-2020-15999 bsc#1177914) - * Minor improvements to the B/W rasterizer. - * Auto-hinter support for Medefaidrin script. - * Fix various memory leaks (mainly for CFF) and other issues that - might cause crashes in rare circumstances. - -- Update to version 2.10.2 - * Support for WOFF2 fonts, add BR on pkgconfig(libbrotlidec) - * Function `FT_Get_Var_Axis_Flags' returned random data for Type 1 - MM fonts. - * Type 1 fonts with non-integer metrics are now supported by the new - (CFF) engine introduced in FreeType 2.9. - * Drop support for Python 2 in Freetype's API reference generator - * Auto-hinter support for Hanifi Rohingya - * Document the `FT2_KEEP_ALIVE' debugging environment variable. - -- Use the compiler default C std, since 2012 gcc defaults - have changed, we now only need to get rid of ANSIFLAGS, override - that variable instead. - -- Update to version 2.10.1 - * The bytecode hinting of OpenType variation fonts was flawed, since - the data in the `CVAR' table wasn't correctly applied. - * Auto-hinter support for Mongolian. - * The handling of the default character in PCF fonts as introduced - in version 2.10.0 was partially broken, causing premature abortion - of charmap iteration for many fonts. - * If `FT_Set_Named_Instance' was called with the same arguments - twice in a row, the function returned an incorrect error code the - second time. - * Direct rendering using FT_RASTER_FLAG_DIRECT crashed (bug - introduced in version 2.10.0). - * Increased precision while computing OpenType font variation - instances. - * The flattening algorithm of cubic Bezier curves was slightly - changed to make it faster. This can cause very subtle rendering - changes, which aren't noticeable by the eye, however. - * The auto-hinter now disables hinting if there are blue zones - defined for a `style' (i.e., a certain combination of a script and - its related typographic features) but the font doesn't contain any - characters needed to set up at least one blue zone. -- Add tarball signatures and freetype2.keyring - -- Update to version 2.10.0 - * A bunch of new functions has been added to access and process - COLR/CPAL data of OpenType fonts with color-layered glyphs. - * As a GSoC 2018 project, Nikhil Ramakrishnan completely - overhauled and modernized the API reference. - * The logic for computing the global ascender, descender, and - height of OpenType fonts has been slightly adjusted for - consistency. - * `TT_Set_MM_Blend' could fail if called repeatedly with the same - arguments. - * The precision of handling deltas in Variation Fonts has been - increased.The problem did only show up with multidimensional - designspaces. - * New function `FT_Library_SetLcdGeometry' to set up the geometry - of LCD subpixels. - * FreeType now uses the `defaultChar' property of PCF fonts to set - the glyph for the undefined character at glyph index 0 (as - FreeType already does for all other supported font formats). As - a consequence, the order of glyphs of a PCF font if accessed - with FreeType can be different now compared to previous - versions. - This change doesn't affect PCF font access with cmaps. - * `FT_Select_Charmap' has been changed to allow parameter value - `FT_ENCODING_NONE', which is valid for BDF, PCF, and Windows FNT - formats to access built-in cmaps that don't have a predefined - `FT_Encoding' value. - * A previously reserved field in the `FT_GlyphSlotRec' structure - now holds the glyph index. - * The usual round of fuzzer bug fixes to better reject malformed - fonts. - * `FT_Outline_New_Internal' and `FT_Outline_Done_Internal' have - been removed.These two functions were public by oversight only - and were never documented. - * A new function `FT_Error_String' returns descriptions of error - codes if configuration macro FT_CONFIG_OPTION_ERROR_STRINGS is - defined. - * `FT_Set_MM_WeightVector' and `FT_Get_MM_WeightVector' are new - functions limited to Adobe MultiMaster fonts to directly set and - get the weight vector. - -- Remove old ppc64 parts in spec file -- Refresh patches: - + bugzilla-308961-cmex-workaround.patch - + don-t-mark-libpng-as-required-library.patch - + enable-long-family-names-by-default.patch -- Enable subpixel rendering with infinality config: - + enable-subpixel-rendering.patch - + enable-infinality-subpixel-hinting.patch - -- Re-enable freetype-config, there is just too many fallouts. - -- Update to version 2.9.1 - * Type 1 fonts containing flex features were not rendered - correctly (bug introduced in version 2.9). - * CVE-2018-6942: Older FreeType versions can crash with certain - malformed variation fonts. - * Bug fix: Multiple calls to `FT_Get_MM_Var' returned garbage. - * Emboldening of bitmaps didn't work correctly sometimes, showing - various artifacts (bug introduced in version 2.8.1). - * The auto-hinter script ranges have been updated for Unicode 11. - No support for new scripts have been added, however, with the - exception of Georgian Mtavruli. -- freetype-config is now deprecated by upstream and not enabled - by default. -- Drop upstreamed patches: - * bnc1079600.patch - * psaux-flex.patch - * 0001-src-truetype-ttinterp.c-Ins_GETVARIATION-Avoid-NULL-.patch - * 0001-truetype-Better-protection-against-invalid-VF-data.patch - -- Add bnc1079600.patch: Fix several integer overflow issues in - truetype/ttinterp.c (bsc#1079600) - -- Refresh spec-file via spec-cleaner. -- Add shell script freetype2.sh in separate package - freetype2-profile-tti35 in order to be able to set TrueType - interpreter version 35 (boo#1084085). - -- Added patch: - * enable-long-family-names-by-default.patch - + Define PCF_CONFIG_OPTION_LONG_FAMILY_NAMES to obtain 2.7.1 - behaviour - -- Added patches: - * 0001-src-truetype-ttinterp.c-Ins_GETVARIATION-Avoid-NULL-.patch - + Upstream fix for bsc#1079603: Avoid NULL reference in - src/truetype/ttinterp.c - * 0001-truetype-Better-protection-against-invalid-VF-data.patch - + Upstream fix for bsc#1079601: Protection against invalid VF - data - -- Add psaux-flex.patch to fix a regression in Type1 rendering - -- Update to version 2.9 - * Advance width values of variation fonts were often wrong. - * More fixes for variation font support; you should update to - this version if you want to support them. - * As a GSoC project, Ewald Hew extended the new (Adobe) CFF - engine to handle Type 1 fonts also, thus greatly improving - the rendering of this format. This is the new default. - * A new function, `FT_Set_Named_Instance', can be used to set - or change the current named instance. - * Starting with this FreeType version, resetting variation - coordinates will return to the currently selected named - instance. Previously, FreeType returned to the base font - (i.e., no instance set). - * Some fuzzer fixes to better reject malformed fonts. - -- Update to version 2.8.1 - * B/W hinting of TrueType fonts didn't work properly if - interpreter version 38 or 40 was selected. - * Some severe problems within the handling of TrueType Variation - Fonts were found and fixed. - * Function `FT_Set_Var_Design_Coordinates' didn't correctly handle - the case with less input coordinates than axes. - * By default, FreeType now offers high quality LCD-optimized - output without resorting to ClearType techniques of resolution - tripling and filtering. In this method, called Harmony, each - color channel is generated separately after shifting the glyph - outline, capitalizing on the fact that the color grids on LCD - panels are shifted by a third of a pixel. This output is - indistinguishable from ClearType with a light 3-tap filter. - * Using the new function `FT_Get_Var_Axis_Flags', an application - can access the `flags' field of a variation axis (introduced in - OpenType version 1.8.2) - * FreeType now synthesizes a missing Unicode cmap for (older) - TrueType fonts also if glyph names are available. - * The warping option has moved from `light' to `normal' hinting - where it replaces the original hinting algorithm. The `light' - mode is now always void of any hinting in x-direction. - -- Update to version 2.8 - * Support for OpenType Variation Fonts is now complete. The last - missing part was handling the `VVAR' and `MVAR' tables, which is - available with this release. - * A new function `FT_Face_Properties' allows the control of some - module and library properties per font. Currently, the - following properties can be handled: stem darkening, LCD filter - weights, and the random seed for the `random' CFF operator. - * The PCF change to show more `colourful' family names (introduced - in version 2.7.1) was too radical; it can now be configured with - PCF_CONFIG_OPTION_LONG_FAMILY_NAMES at compile time. If - activated, it can be switched off at run time with the new pcf - property `no-long-family-names'. If the `FREETYPE_PROPERTIES' - environment variable is available, you can say - FREETYPE_PROPERTIES=pcf:no-long-family-names=1 - * Support for the following scripts has been added to the - auto-hinter. - Adlam, Avestan, Bamum, Buhid, Carian, Chakma, Coptic, Cypriot, - Deseret, Glagolitic, Gothic, Kayah, Lisu, N'Ko, Ol Chiki, Old - Turkic, Osage, Osmanya, Saurashtra, Shavian, Sundanese, Tai - Viet, Tifinagh, Unified Canadian Syllabics, Vai - * `Light' auto-hinting mode no longer uses TrueType metrics for - TrueType fonts. This bug was introduced in version 2.4.6, - causing horizontal scaling also. Almost all GNU/Linux - distributions (with Fedora as a notable exception) disabled the - corresponding patch for good reasons; chances are thus high that - you won't notice a difference. - * If a TrueType font gets loaded with FT_LOAD_NO_HINTING, FreeType - now scales the font linearly again (bug introduced in version - 2.4.6). - * Fixed CVE-2017-8105, CVE-2017-8287: Older FreeType versions - have out-of-bounds writes caused by heap-based buffer overflows - related to Type 1 fonts. (boo#1035807, boo#1036457) -- See https://sourceforge.net/projects/freetype/files/freetype2/2.8/ for - the complete changelog. - -- Update to version 2.7.1: - * IMPORTANT CHANGES - + Support for the new CFF2 font format as introduced with - OpenType 1.8 has been contributed by Dave Arnolds from Adobe. - + Preliminary support for variation fonts as specified in - OpenType 1.8 (in addition to the already existing support for - Adobe's MM and Apple's GX formats). Dave Arnolds contributed - handling of advance width change variation; more will come in - the next version. - * IMPORTANT BUG FIXES - + Handling of raw CID fonts was partially broken (bug introduced - in 2.6.4). - * MISCELLANEOUS - + Some limits for TrueType bytecode execution have been tightened - to speed up FreeType's handling of malformed fonts, in - particular to quickly abort endless loops. - + The number of twilight points can no longer be set to an - arbitrarily large value. - + The total number of jump opcode instructions (like JMPR) with - negative arguments is dynamically restricted; the same holds - for the total number of iterations in LOOPCALL opcodes. - + The dynamic limits are based on the number of points in a glyph - and the number of CVT entries. Please report if you encounter a - font where the selected values are not adequate. - + PCF family names are made more `colourful'; they now include the - foundry and information whether they contain wide characters. - For example, you no longer get `Fixed' but rather `Sony Fixed' - or `Misc Fixed Wide'. - + A new function `FT_Get_Var_Blend_Coordinates' (with its alias - name `FT_Get_MM_Blend_Coordinates') to retrieve the normalized - blend coordinates of the currently selected variation instance - has been added to the Multiple Masters interface. - + A new function `FT_Get_Var_Design_Coordinates' to retrieve the - design coordinates of the currently selected variation instance - has been added to the Multiple Masters interface. - + A new load flag `FT_LOAD_BITMAP_METRICS_ONLY' to retrieve bitmap - information without loading the (embedded) bitmap itself. - + Retrieving advance widths from bitmap strikes (using - `FT_Get_Advance' and `FT_Get_Advances') have been sped up. - + The usual round of fuzzer fixes to better reject malformed - fonts. -- Drop freetype2-bitmap-foundry.patch, merged upstream. - -- update to version 2.7: - * IMPORTANT CHANGES - + As announced earlier, the 2.7.x series now uses the new subpixel - hinting mode as the default, emulating a modern version of - ClearType. - This change inevitably leads to different rendering results, and - you might change the `TT_CONFIG_OPTION_SUBPIXEL_HINTING' - configuration option to adapt it to your taste (or use the new - `FREETYPE_PROPERTIES' environment variable). See the - corresponding entry below for version 2.6.4, which gives more - information. - + A new option `FT_CONFIG_OPTION_ENVIRONMENT_PROPERTIES' has been - introduced. If set (which is the default), an environment - variable `FREETYPE_PROPERTIES' can be used to control driver - properties. Example: - FREETYPE_PROPERTIES=truetype:interpreter-version=35 \ - cff:no-stem-darkening=1 \ - autofitter:warping=1 - This allows to select, say, the subpixel hinting mode at runtime - for a given application. See file `ftoption.h' for more. - * IMPORTANT BUG FIXES - + After loading a named instance of a GX variation font, the - `face_index' value in the returned `FT_Face' structure now - correctly holds the named instance index in the upper 16bits as - documented. - * MISCELLANEOUS - + A new macro `FT_IS_NAMED_INSTANCE' to test whether a given face - is a named instance. - + More fixes to GX font handling. - + Apple's `GETVARIATION' bytecode operator (needed for GX - variation font support) has been implemented. - + Another round of fuzzer fixes, mainly to reject invalid fonts - faster. - + Handling of raw CID fonts was broken (bug introduced in version - 2.6.4). - + The smooth rasterizer has been streamlined to make it faster by - approx. 20%. - + The `ftgrid' demo program now understands command line option - `-d' to give start-up design coordinates. - + The `ftdump' demo program has a new command line option `-p' to - dump TrueType bytecode instructions. -- removed freetype2-subpixel.patch in favor of above - FREETYPE_PROPERTIES environment variable - -- Update to version 2.6.5: - + Compilation works again on Mac OS X (bug introduced in version - 2.6.4). - + The new subpixel hinting mode is now disabled by default; it - will be enabled by default in the forthcoming 2.7.x series. - Main reason for reverting this feature is the principle of least - surprise: a sudden change in appearance of all fonts (even if - the rendering improves for almost all recent fonts) should not - be expected in a new micro version of a series. -- Rebase freetype2-subpixel.patch. - -- Upadte to version 2.6.4: - * A new subpixel hinting mode, which is now the default rendering - mode for TrueType fonts. It implements (almost everything of) - version 40 of the bytecode engine. The existing code base in - FreeType (the `Infinality code') was stripped to the bare - minimum and all configurability removed in the name of speed - and simplicity. The configurability was mainly aimed at legacy - fonts like Arial, Times New Roman, or Courier. [Legacy fonts - are fonts that modify vertical stems to achieve clean - black-and-white bitmaps.] The new mode focuses on applying a - minimal set of rules to all fonts indiscriminately so that - modern and web fonts render well while legacy fonts render - okay. Activation of the subpixel hinting support can be - controlled with the `TT_CONFIG_OPTION_SUBPIXEL_HINTING' - configuration option at compile time: If set to value 1, you - get the old Infinality mode (which was never the default due to - its slowness). Value 2 activates the new subpixel hinting mode, - and value 3 activates both. The default is value 2. At run - time, you can select the subpixel hinting mode with the - `interpreter-version' property (provided you have compiled in - the corresponding hinting mode); see `ftttdrv.h' for more. - * Support for the following scripts has been added to the - auto-hinter: Armenian, Cherokee, Ethiopic, Georgian, Gujarati, - Gurmukhi, Malayalam, Sinhala, Tamil. -- Rebase freetype2-subpixel.patch. - -- Update to version 2.6.3 - * IMPORTANT CHANGES - - Khmer, Myanmar, Bengali, and Kannada script support has been - added to the auto-hinter. - * MISCELLANEOUS - - Better support of Indic scripts like Devanagari by using a - top-to-bottom hinting flow. - - All FreeType macros starting with two underscores have been - renamed to avoid a violation of both the C and C++ standards. - Example: Header macros of the form `__FOO_H__' are now called - `FOO_H_'. In most cases, this should be completely transparent - to the user. The exception to this is `__FTERRORS_H__', which - must be sometimes undefined by the user to get FreeType error - strings: Both this form and the new `FTERRORS_H_' macro are - accepted for backwards compatibility. - - Minor improvements mainly to the Type 1 driver. - - The new CFF engine now supports all Type 2 operators except - `random'. - - The macro `_STANDALONE_', used for compiling the B/W and smooth - rasterizers as stand-alone modules, has been renamed to - `STANDALONE_', since macro names starting with an underscore and - followed by an uppercase letter are reserved in both C and C++. - - Function `FT_Library_SetLcdFilterWeights' now also activates - custom LCD filter weights (instead of just adjusting them). - - Support for `unpatented hinting' has been completely removed: - Consequently, the two functions `FT_Face_CheckTrueTypePatents' - and `FT_Face_SetUnpatentedHinting' now return always false, - doing nothing. - -- Update to version 2.6.2 - * IMPORTANT CHANGES - - The auto-hinter now supports stem darkening, to be controlled by - the new `no-stem-darkening' and `darkening-parameters' - properties. This is an experimental feature contributed by - Nikolaus Waxweiler, and the interface might change in a future - release. - - By default, stem darkening is now switched off (for both the CFF - engine and the auto-hinter). The main reason is that you need - linear alpha blending and gamma correction to get correct - rendering results, and the latter is not yet available in most - freely available rendering stacks like X11. Applying stem - darkening without proper gamma correction leads to far too dark - rendering results. - - The meaning of `FT_RENDER_MODE_LIGHT' has been slightly - modified. It now essentially means `no hinting along the - horizontal axis'; in particular, no change of glyph advance - widths. Consequently, the auto-hinter is used for all scalable - font formats except for CFF. It is planned that other - font-specific rendering engines (TrueType, Type 1) will follow. - * MISCELLANEOUS - - The default LCD filter has been changed to be normalized and - color-balanced. - - For better compatibility with FontConfig, function - `FT_Library_SetLcdFilter' accepts a new enumeration value - `FT_LCD_FILTER_LEGACY1' (which has the same meaning as - `FT_LCD_FILTER_LEGACY'). - - A large number of bugs have been detected by using the libFuzzer - framework, which should further improve handling of invalid - fonts. Thanks again to Kostya Serebryany and Bungeman! - - `TT_CONFIG_OPTION_MAX_RUNNABLE_OPCODES', a new configuration - option, controls the maximum number of executed opcodes within a - bytecode program. You don't want to change this except for very - special situations (e.g., making a library fuzzer spend less - time to handle broken fonts). - - The smooth renderer has been made faster. - -- Update to version 2.6.1 - * IMPORTANT BUG FIXES - - It turned out that for CFFs only the advance widths should be - taken from the `htmx' table, not the side bearings. This bug, - introduced in version 2.6.0, makes it necessary to upgrade if - you are using CFFs; otherwise, you get cropped glyphs with GUI - interfaces like GTK or Qt. - - Accessing Type 42 fonts returned incorrect results if the glyph - order of the embedded TrueType font differs from the glyph order - of the Type 42 charstrings table. - * IMPORTANT CHANGES - - The header file layout has been changed (again), moving all - header files except `ft2build.h' into a subdirectory tree. - Doing so reduces the possibility of header file name clashes - (e.g., FTGL's `FTGlyph.h' with FreeType's `ftglyph.h') on case - insensitive file systems like Mac OS X or Windows. - Applications that use (a) the `freetype-config' script or - FreeType's `freetype2.pc' file for pkg-config to get the include - directory for the compiler, and (b) the documented way for - header inclusion like - [#]include - [#]include FT_FREETYPE_H - ... - don't need any change to the source code. - - Simple access to named instances in GX variation fonts is now - available (in addition to the previous method via FreeType's MM - interface). In the `FT_Face' structure, bits 16-30 of the - `face_index' field hold the current named instance index for the - given face index, and bits 16-30 of `style_flags' contain the - number of instances for the given face index. `FT_Open_Face' - and friends also understand the extended bits of the face index - parameter. - You need to enable TT_CONFIG_OPTION_GX_VAR_SUPPORT for this new - feature. Otherwise, bits 16-30 of the two fields are zero (or - are ignored). - - Lao script support has been added to the auto-hinter. - * MISCELLANEOUS - - The auto-hinter's Arabic script support has been enhanced. - - Superscript-like and subscript-like glyphs as used by various - phonetic alphabets like the IPA are now better supported by the - auto-hinter. - - The TrueType bytecode interpreter now runs slightly faster. - - Improved support for builds with cmake. - - The function `FT_CeilFix' now always rounds towards plus - infinity. - - The function `FT_FloorFix' now always rounds towards minus - infinity. - - A new load flag `FT_LOAD_COMPUTE_METRICS' has been added; it - makes FreeType ignore pre-computed metrics, as needed by font - validating or font editing programs. Right now, only the - TrueType module supports it to ignore data from the `hdmx' - table. - - Another round of bug fixes to better handle broken fonts, found - by Kostya Serebryany . -- Dropping upstreamed patch Dont-use-hmtx-table-for-LSB.patch. - -- Add Dont-use-hmtx-table-for-LSB.patch: Fixes gnu#45520, cut off - fonts in gtk and qt. Taken from upstream git. - -- Update to version 2.6 - * Thread safety improvements - * Thai script support has been added to the auto-hinter. - * Arabic script support has been added to the auto-hinter. - * Following OpenType version 1.7, advance widths and side bearing - values in CFFs (wrapped in an SFNT structure) are now always - taken from the `hmtx' table. - * Following OpenType version 1.7, the PostScript font name of a - CFF font (wrapped in an SFNT structure) is now always taken from - the `name' table. This is also true for OpenType Collections - (i.e., TTCs using CFFs subfonts instead of TTFs), where it may - have a significant difference. - * Fonts natively hinted for ClearType are now supported, properly - handling selector index 3 of the INSTCTRL bytecode instruction. - * Major improvements to the GX TrueType variation font handling. - -- Merge with the version 2.5.5 from openSUSE:Factory -- Removed patches: - * CVE-2014-9656.patch - * CVE-2014-9657.patch - * CVE-2014-9658.patch - * CVE-2014-9659.patch - * CVE-2014-9660.patch - * CVE-2014-9661.patch - * CVE-2014-9662.patch - * CVE-2014-9663.patch - * CVE-2014-9664.patch - * CVE-2014-9665.patch - * CVE-2014-9666.patch - * CVE-2014-9667.patch - * CVE-2014-9668.patch - * CVE-2014-9669.patch - * CVE-2014-9670.patch - * CVE-2014-9671.patch - * CVE-2014-9672.patch - * CVE-2014-9673.patch - * CVE-2014-9674.patch - * CVE-2014-9675.patch - - Integrated in the 2.5.5 release -- Modified patches: - * don-t-mark-libpng-as-required-library.patch - * bugzilla-308961-cmex-workaround.patch - * freetype2-subpixel.patch - * freetype2-bitmap-foundry.patch - * overflow.patch - - Adapt to the new version of sources - -- Modified patch: - * CVE-2014-9671.patch - - Adapt the code to correspond to the current git master of - freetype2 (fixes bsc#933247) - -- Enable the bz2 compression in freetype2 -- Remove patch overflow.patch from freetype2.spec where it is not - applied. -- Run spec-cleaner on the spec file. - -- fixed vulnerabilities (bnc#916847, bnc#916856, bnc#916857, - bnc#916858, bnc#916859, bnc#916860, bnc#916861, bnc#916862, - bnc#916863, bnc#916864, bnc#916865, bnc#916867, bnc#916868, - bnc#916870, bnc#916871, bnc#916872, bnc#916873, bnc#916874, - bnc#916879, bnc#916881) - - CVE-2014-9656.patch - - CVE-2014-9657.patch - - CVE-2014-9658.patch - - CVE-2014-9659.patch - - CVE-2014-9660.patch - - CVE-2014-9661.patch - - CVE-2014-9662.patch - - CVE-2014-9663.patch - - CVE-2014-9664.patch - - CVE-2014-9665.patch - - CVE-2014-9666.patch - - CVE-2014-9667.patch - - CVE-2014-9668.patch - - CVE-2014-9669.patch - - CVE-2014-9670.patch - - CVE-2014-9671.patch - - CVE-2014-9672.patch - - CVE-2014-9673.patch - - CVE-2014-9674.patch - - CVE-2014-9675.patch - -- Update to version 2.5.5 - * IMPORTANT BUG FIXES - - Handling of uncompressed PCF files works again (bug - introduced in version 2.5.4). -- Drop freetype2-2.5.3-fix-pcf.patch, merged upstream - -- Update to version 2.5.4 - * IMPORTANT BUG FIXES - - A variant of vulnerability CVE-2014-2240 was identified - (cf. http://savannah.nongnu.org/bugs/?43661) and fixed - in the new CFF driver. All users should upgrade. - - The new auto-hinter code using HarfBuzz crashed for some - invalid fonts. - - Many fixes to better protect against malformed input. - * IMPORTANT CHANGES - - Full auto-hinter support of the Devanagari script. - - Experimental auto-hinter support of the Telugu script. - - CFF stem darkening behaviour can now be controlled at - build time using the eight macros - CFF_CONFIG_OPTION_DARKENING_PARAMETER_{X,Y}{1,2,3,4} . - - Some fields in the `FT_Bitmap' structure have been changed - from signed to unsigned type, which better reflects - the actual usage. It is also an additional means to - protect against malformed input. This change doesn't break - the ABI; however, it might cause compiler warnings. - * MISCELLANEOUS - - Improvements to the auto-hinter's algorithm to recognize - stems and local extrema. - - Function `FT_Get_SubGlyph_Info' always returned an error - even in case of success. - - Version 2.5.1 introduced major bugs in the cjk part of - the auto-hinter, which are now fixed. - - The `FT_Sfnt_Tag' enumeration values have been changed to - uppercase, e.g. `FT_SFNT_HEAD'. The lowercase variants - are deprecated. This is for orthogonality with all other - enumeration (and enumeration-like) values in FreeType. - - `cmake' now supports builds of FreeType as an OS X framework - and for iOS. - - Improved project files for vc2010, - introducing a property file - - The documentation generator for the API reference has been - updated to produce better HTML code (with proper CSS). - At the same time, the documentation got a better structure. - - The FT_LOAD_BITMAP_CROP flag is obsolete; it is not used - by any driver. - - The TrueType DELTAP[123] bytecode instructions now work in - subpixel hinting mode as described in the ClearType - whitepaper (i.e., for touched points in the - non-subpixel direction). - - Many small improvements to the internal arithmetic routines. -- Rebase don-t-mark-libpng-as-required-library.patch, - bugzilla-308961-cmex-workaround.patch, freetype2-subpixel.patch, - freetype2-bitmap-foundry.patch and overflow.patch -- Add freetype2-2.5.3-fix-pcf.patch from upstream to resolve - http://savannah.nongnu.org/bugs/?43774, "Freetype 2.5.4 does not - load ungzipped PCF fonts" - gdb -- Enable --with-debuginfod +- Reinstate debuginfod support for suse_version >= 1500 +- Don't recommend libdebuginfod1. + +- Patches added (backport from trunk): + * gdb-testsuite-fix-gdb.base-break-idempotent.exp-on-ppc.patch + * powerpc-fix-gdb.base-watchpoint.exp-on-power-9.patch + +- Patches removed (ok for Factory, not for SLE): + * gdb-fix-watchpoints-triggered.patch + +- Patches added (swo#29277): + * gdb-fix-assert-in-handle_jit_event.patch +- Maintenance script qa.sh: + * Add PR29706 and PR28617 kfails. + +- Add patch to fix build with readline 8.2: + * gdb-add-support-for-readline-8.2.patch + +- Patches added: + * gdb-testsuite-fix-gdb.mi-mi-sym-info.exp-on-opensuse-tumbleweed.patch +- Maintenance script qa.sh: + * Add PR26873 kfails. + +- Maintenance script qa-remote.sh: + * Make rpm matching yet more precise. +- Update patch: + * gdb-tdep-fix-powerpc-ieee-128-bit-format-arg-passing.patch +- Add patches: + * gdb-handle-pending-c-after-rl_callback_read_char.patch + * gdb-testsuite-fix-have_mpx-test.patch + * gdb-symtab-fix-handling-of-dw_tag_unspecified_type.patch + * gdb-testsuite-fix-gdb.dwarf2-dw2-unspecified-type-foo.c-with-m32.patch + +- use python3-xml if python is python3 + +- Maintenance script qa.sh: + * Generalize PR29405 kfails. +- Maintenance script qa-remote.sh: + * Make rpm matching more precise. +- Patches added: + * gdb-tdep-fix-powerpc-ieee-128-bit-format-arg-passing.patch + +- Enable debuginfod for all archs as we index all TW RPM files. +- Recommend libdebuginfod1 when one installs gdb so that + it can utilize debuginfod server by default. + +- Fix build with gcc 13 by using -Wno-error=enum-int-mismatch. + +- Maintenance script qa.sh: + * Add SLE-12/x86_64 to "known clean configs". + * Add fail for PR29405. + * Add fail for PR26915. + +- Patches added: + * gdb-testsuite-fix-gdb.threads-killed-outside.exp-on-aarch64.patch +- Maintenance script qa.sh: + * Remove PR29247 internal-error. + * Add SLE-15/aarch64 to "known clean configs". + +- Patches added: + * gdb-fix-watchpoints-triggered.patch +- Maintenance script qa.sh: + * Add kfails for PR25038, PR29253, and PR29423. + * Remove gdb.mi/mi-var-invalidate-shlib.exp kfails. +- Mention qa-local.sh, qa-remote.sh and README.qa as sources. + +- Maintenance script qa-local.sh: + * Use have_combo consistently. +- Maintenance script qa.sh: + * Add kfail_aarch64. + * Add PR29419/PR29409 kfails. + * Update PR29247 kfails. +- Patches added: + * make-gdb.ada-float-bits.exp-more-generic.patch + * gdb-testsuite-fix-gdb.ada-literals.exp-with-aarch64.patch + +- Actually apply fixup-gdb-test-bt-cfi-without-die.patch and + fixup-2-gdb-rhbz1553104-s390x-arch12-test.patch. + +- Also remove gdb-6.5-readline-long-line-crash-test.patch from + patches list in gdb.spec. + +- Patches added: + * powerpc-add-support-for-ieee-128-bit-format.patch + * powerpc-correct-the-gdb-ioctl-values-for-tcgets-tcsets-tcsetsw-and-tcsetsf.patch + * gdb-testsuite-remove-target-limits-in-gdb.base-catch-syscall.exp.patch + * powerpc-fix-for-gdb.base-eh_return.exp.patch + * fix-comparison-of-unsigned-long-int-to-int-in-record_linux_system_call.patch + * gdb-testsuite-fix-gdb.reverse-test_ioctl_tcsetsw.exp-with-libc-debuginfo.patch + * fixup-gdb-test-bt-cfi-without-die.patch + * fix-core-file-detach-crash-corefiles-29275.patch + * gdb-testsuite-fix-gdb.dwarf2-dw2-out-of-range-end-of-seq.exp-on-aarch64.patch + * gdb-testsuite-fix-gdb.base-catch-syscall.exp-without-enable-targets.patch + * gdb-testsuite-fix-gdb.base-catch-syscall.exp-with-with-expat-no.patch + * fix-for-gdb.base-solib-search.exp-test.patch +- Patch removed: + * gdb-6.7-ppc-clobbered-registers-O2-test.patch + * gdb-6.5-readline-long-line-crash-test.patch +- Patches updated: + * gdb-tdep-update-syscalls-ppc64-ppc-linux.xml.patch + * gdb-testsuite-handle-pipe2-syscall-in-gdb.base-catch-syscall.exp.patch + +- Maintenance script qa.sh: + * Add PR28504 KFAILs. + * Make .sum file matching less complex. + * Add fedora test-case kfail. +- Maintenance script qa-local.sh: + * Fix incorrect path name. +- Update comments in gdb.spec. +- Patches added: + * powerpc-update-expected-floating-point-output-for-gdb.arch-altivec-regs.exp-and-gdb.arch-vsx-regs.exp.patch + +- Patches updated: + * gdb-testsuite-support-recording-of-getrandom.patch + (add aarch64 part) +- Maintenance script qa.sh: + * Add i586 to known clean configs. + +- Patches added: + * gdb-testsuite-enable-some-test-cases-for-x86_64-m32.patch + * gdb-testsuite-fix-gdb.reverse-i387-env-reverse.exp-for-pie.patch + * gdb-testsuite-support-recording-of-getrandom.patch +- Patches updated: + * gdb-record-handle-statx-system-call.patch +- Maintenance script qa.sh: + * Allow only two summary files, for i586. + * Add i586 KFAILs. +- Maintenance script qa-local.sh: + * Add i586. + +- Maintenance script qa-local.sh: + * Fix rpm pathname. +- Maintenance script qa-remote.sh: + * Skip stale config openSUSE_Leap_15.2. +- Maintenance script qa.sh: + * Drop known clean config: Leap 15.2 x86_64. + +- Maintenance script qa-local.sh: + * Add cleanup step. + * Add "build all configs without testsuite" step. + * For "build all configs with testsuite" step, redirect output + to log and produce PASS/FAIL line, and make sure buildroot is + removed also in case of missing rpm. + * Use "--clean --trust-all-projects" for osc build commands. + * Drop openSUSE_Leap_15.2. +- Maintenance script qa.sh: + * Rename argument 6 to -local. + * Add PR29247 KFAILs. + * Update internal-error regexps. +- New maintenance script qa-remote.sh. +- Add "build all configs without testsuite" step in README.qa. +- Patches added (backport from trunk): + * gdb-testsuite-remove-attach-test-from-can_spawn_for_attach.patch +- README.qa: + * Add remote qa entry. + * Update local qa entry: + * Add notes entry. + * Other updates to match changes in qa-local.sh. + +- Fix installed but unpackaged /usr/share/info/ctf-spec.info.gz. + +- Rebase to 12.1 release (as in fedora 36 @ 89947a7): + * DBX mode is deprecated, and will be removed in GDB 13. + * GDB 12 is the last release of GDB that will support building against + Python 2. From GDB 13, it will only be possible to build GDB itself + with Python 3 support. + * Improved C++ template support: + GDB now treats functions/types involving C++ templates like it does function + overloads. Users may omit parameter lists to set breakpoints on families of + template functions, including types/functions composed of multiple template types: + (gdb) break template_func(template_1, int) + The above will set breakpoints at every function `template_func' where + the first function parameter is any template type named `template_1' and + the second function parameter is `int'. + TAB completion also gains similar improvements. + * New commands: + maint set backtrace-on-fatal-signal on|off + maint show backtrace-on-fatal-signal + This setting is 'on' by default. When 'on' GDB will print a limited + backtrace to stderr in the situation where GDB terminates with a + fatal signal. This only supported on some platforms where the + backtrace and backtrace_symbols_fd functions are available. + set source open on|off + show source open + This setting, which is on by default, controls whether GDB will try + to open source code files. Switching this off will stop GDB trying + to open and read source code files, which can be useful if the files + are located over a slow network connection. + set varsize-limit + show varsize-limit + These are now deprecated aliases for "set max-value-size" and + "show max-value-size". + task apply [all | TASK-IDS...] [FLAG]... COMMAND + Like "thread apply", but applies COMMAND to Ada tasks. + watch [...] task ID + Watchpoints can now be restricted to a specific Ada task. + maint set internal-error backtrace on|off + maint show internal-error backtrace + maint set internal-warning backtrace on|off + maint show internal-warning backtrace + GDB can now print a backtrace of itself when it encounters either an + internal-error, or an internal-warning. This is on by default for + internal-error and off by default for internal-warning. + set logging on|off + Deprecated and replaced by "set logging enabled on|off". + set logging enabled on|off + show logging enabled + These commands set or show whether logging is enabled or disabled. + exit + You can now exit GDB by using the new command "exit", in addition to + the existing "quit" command. + set debug threads on|off + show debug threads + Print additional debug messages about thread creation and deletion. + set debug linux-nat on|off + show debug linux-nat + These new commands replaced the old 'set debug lin-lwp' and 'show + debug lin-lwp' respectively. Turning this setting on prints debug + messages relating to GDB's handling of native Linux inferiors. + maint flush source-cache + Flush the contents of the source code cache. + maint set gnu-source-highlight enabled on|off + maint show gnu-source-highlight enabled + Whether GDB should use the GNU Source Highlight library for adding + styling to source code. When off, the library will not be used, even + when available. When GNU Source Highlight isn't used, or can't add + styling to a particular source file, then the Python Pygments + library will be used instead. + set suppress-cli-notifications (on|off) + show suppress-cli-notifications + This controls whether printing the notifications is suppressed for CLI. + CLI notifications occur when you change the selected context + (i.e., the current inferior, thread and/or the frame), or when + the program being debugged stops (e.g., because of hitting a + breakpoint, completing source-stepping, an interrupt, etc.). + set style disassembler enabled on|off + show style disassembler enabled + If GDB is compiled with Python support, and the Python Pygments + package is available, then, when this setting is on, disassembler + output will have styling applied. + set ada source-charset + show ada source-charset + Set the character set encoding that is assumed for Ada symbols. Valid + values for this follow the values that can be passed to the GNAT + compiler via the '-gnati' option. The default is ISO-8859-1. + * Changed commands: + print + Printing of floating-point values with base-modifying formats like + /x has been changed to display the underlying bytes of the value in + the desired base. This was GDB's documented behavior, but was never + implemented correctly. + maint packet + This command can now print a reply, if the reply includes + non-printable characters. Any non-printable characters are printed + as escaped hex, e.g. \x?? where '??' is replaces with the value of + the non-printable character. + clone-inferior + The clone-inferior command now ensures that the TTY, CMD and ARGS + settings are copied from the original inferior to the new one. + All modifications to the environment variables done using the 'set + environment' or 'unset environment' commands are also copied to the new + inferior. + set debug lin-lwp on|off + show debug lin-lwp + These commands have been removed from GDB. The new command 'set + debug linux-nat' and 'show debug linux-nat' should be used + instead. + info win + This command now includes information about the width of the tui + windows in its output. + * GDB's Ada parser now supports an extension for specifying the exact + byte contents of a floating-point literal. This can be useful for + setting floating-point registers to a precise value without loss of + precision. The syntax is an extension of the based literal syntax. + Use, e.g., "16lf#0123abcd#" -- the number of "l"s controls the width + of the floating-point type, and the "f" is the marker for floating + point. + * MI changes: + * * The '-add-inferior' with no option flags now inherits the + connection of the current inferior, this restores the behaviour of + GDB as it was prior to GDB 10. + * * The '-add-inferior' command now accepts a '--no-connection' + option, which causes the new inferior to start without a + connection. + * Python API: + * * New function gdb.add_history(), which takes a gdb.Value object + and adds the value it represents to GDB's history list. An + integer, the index of the new item in the history list, is + returned. + * * New function gdb.history_count(), which returns the number of + values in GDB's value history. + * * New gdb.events.gdb_exiting event. This event is called with a + gdb.GdbExitingEvent object which has the read-only attribute + 'exit_code', which contains the value of the GDB exit code. This + event is triggered once GDB decides it is going to exit, but + before GDB starts to clean up its internal state. + * * New function gdb.architecture_names(), which returns a list + containing all of the possible Architecture.name() values. Each + entry is a string. + * * New function gdb.Architecture.integer_type(), which returns an + integer type given a size and a signed-ness. + * * New gdb.TargetConnection object type that represents a connection + (as displayed by the 'info connections' command). A sub-class, + gdb.RemoteTargetConnection, is used to represent 'remote' and + 'extended-remote' connections. + * * The gdb.Inferior type now has a 'connection' property which is an + instance of gdb.TargetConnection, the connection used by this + inferior. This can be None if the inferior has no connection. + * * New 'gdb.events.connection_removed' event registry, which emits a + 'gdb.ConnectionEvent' when a connection is removed from GDB. + This event has a 'connection' property, a gdb.TargetConnection + object for the connection being removed. + * * New gdb.connections() function that returns a list of all + currently active connections. + * * New gdb.RemoteTargetConnection.send_packet(PACKET) method. This + is equivalent to the existing 'maint packet' CLI command; it + allows a user specified packet to be sent to the remote target. + * * New function gdb.host_charset(), returns a string, which is the + name of the current host charset. + * * New gdb.set_parameter(NAME, VALUE). This sets the gdb parameter + NAME to VALUE. + * * New gdb.with_parameter(NAME, VALUE). This returns a context + manager that temporarily sets the gdb parameter NAME to VALUE, + then resets it when the context is exited. + * * The gdb.Value.format_string method now takes a 'styling' + argument, which is a boolean. When true, the returned string can + include escape sequences to apply styling. The styling will only + be present if styling is otherwise turned on in GDB (see 'help + set styling'). When false, which is the default if the argument + is not given, then no styling is applied to the returned string. + * * New read-only attribute gdb.InferiorThread.details, which is + either a string, containing additional, target specific thread + state information, or None, if there is no such additional + information. + * * New read-only attribute gdb.Type.is_scalar, which is True for + scalar types, and False for all other types. + * * New read-only attribute gdb.Type.is_signed. This attribute + should only be read when Type.is_scalar is True, and will be True + for signed types, and False for all other types. Attempting to + read this attribute for non-scalar types will raise a ValueError. + * * It is now possible to add GDB/MI commands implemented in Python. +- Update libipt to v2.0.5. +- Patches added: + * gdb-6.3-rh-testversion-20041202.patch + * gdb-6.5-BEA-testsuite.patch + * gdb-6.6-buildid-locate-misleading-warning-missing-debuginfo-rhbz981154.patch + * gdb-6.7-charsign-test.patch + * gdb-6.8-bz466901-backtrace-full-prelinked.patch + * gdb-fix-for-gdb.base-eof-exit.exp-test-failures.patch + * gdb-improved-eof-handling-when-using-readline-7.patch + * gdb-libexec-add-index.patch + * gdb-tdep-detect-get_pc_thunk-call-in-i386-prologue.patch + * gdb-testsuite-address-test-failures-in-gdb.mi-mi-multi-commands.exp.patch + * gdb-testsuite-detect-change-instead-of-init-in-gdb.mi-mi-var-block.exp.patch + * gdb-testsuite-fix-gdb.opt-clobbered-registers-o2.exp-with-gcc-12.patch + * gdb-testsuite-fix-occasional-failure-in-gdb.mi-mi-multi-commands.exp.patch + * gdb-testsuite-fix-test-failure-when-building-against-readline-v7.patch + * gdb-testsuite-handle-older-python-in-gdb.python-py-send-packet.py.patch + * gdb-testsuite-handle-quotes-in-gdb_py_module_available.patch + * gdb-testsuite-handle-unordered-dict-in-gdb.python-py-mi-cmd.exp.patch + * gdb-testsuite-skip-gdb.fortran-namelist.exp-for-gfortran-4.8.patch + * gdb-testsuite-workaround-unnecessary-.s-file-with-gfortran-4.8.patch +- Patches dropped: + * aarch64-make-gdbserver-register-set-selection-dynamic.patch + * fix-build-with-current-gcc-el_explicit-location-always-non-null.patch + * fix-gdb.base-sigstep.exp-test-for-ppc.patch + * fix-gdb.multi-multi-term-settings.exp-race.patch + * fixup-2-gdb-6.6-buildid-locate.patch + * fixup-gdb-6.6-buildid-locate.patch + * gdb-6.3-inferior-notification-20050721.patch + * gdb-ada-fix-assert-in-ada_is_unconstrained_packed_array_type.patch + * gdb-build-add-cxx_dialect-to-cxx.patch + * gdb-build-make-c-exp.y-work-with-bison-3.8.patch + * gdb-doc-fix-print-inferior-events-default.patch + * gdb-exp-improve-error-reading-variable-message.patch + * gdb-fortran-handle-dw-at-string-length-with-loclistptr.patch + * gdb-r_version-check.patch + * gdb-rhbz1976887-field-location-kind.patch + * gdb-rhbz2012976-paper-over-fortran-lex-problems.patch + * gdb-symtab-add-call_site_eq-and-call_site_hash.patch + * gdb-symtab-c-ify-call_site.patch + * gdb-symtab-fix-htab_find_slot-call-in-read_call_site_scope.patch + * gdb-symtab-fix-segfault-in-search_one_symtab.patch + * gdb-symtab-remove-compunit_call_site_htab.patch + * gdb-symtab-use-unrelocated-addresses-in-call_site.patch + * gdb-tdep-fix-avx512-m32-support-in-gdbserver.patch + * gdb-tdep-rs6000-don-t-skip-system-call-in-skip_prologue.patch + * gdb-test-for-rhbz1976887.patch + * gdb-testsuite-add-gdb.arch-ppc64-break-on-_exit.exp.patch + * gdb-testsuite-add-gdb.opt-break-on-_exit.exp.patch + * gdb-testsuite-add-gdb.testsuite-dump-system-info.exp.patch + * gdb-testsuite-add-missing-wait-in-gdb.base-signals-state-child.exp.patch + * gdb-testsuite-add-nopie-in-two-test-cases.patch + * gdb-testsuite-detect-no-mpx-support.patch + * gdb-testsuite-disable-inferior-output-in-gdb.base-foll-vfork.exp.patch + * gdb-testsuite-don-t-error-when-trying-to-unset-last_spawn_tty_name.patch + * gdb-testsuite-factor-out-dump_info-in-gdb.testsuite-dump-system-info.exp.patch + * gdb-testsuite-fix-assembly-comments-in-gdb.dwarf2-clang-debug-names.exp.tcl.patch + * gdb-testsuite-fix-data-alignment-in-gdb.arch-i386-avx-sse-.exp.patch + * gdb-testsuite-fix-fail-in-gdb.base-annota1.exp.patch + * gdb-testsuite-fix-fail-in-gdb.tui-basic.exp.patch + * gdb-testsuite-fix-fail-in-gdb.tui-corefile-run.exp.patch + * gdb-testsuite-fix-gdb.ada-big_packed_array.exp-xfail-for-m32.patch + * gdb-testsuite-fix-gdb.arch-i386-pkru.exp-on-linux.patch + * gdb-testsuite-fix-gdb.base-annota1.exp-with-pie.patch + * gdb-testsuite-fix-gdb.base-dcache-flush.exp.patch + * gdb-testsuite-fix-gdb.gdb-selftest.exp.patch + * gdb-testsuite-fix-gdb.guile-scm-type.exp-with-gcc-4.8.patch + * gdb-testsuite-fix-gdb.python-py-events.exp.patch + * gdb-testsuite-fix-gdb.server-server-kill.exp-with-m32.patch + * gdb-testsuite-fix-gdb.threads-check-libthread-db.exp-with-glibc-2.34.patch + * gdb-testsuite-fix-gdb.threads-linux-dp.exp.patch + * gdb-testsuite-fix-gdb.threads-thread-specific-bp.exp.patch + * gdb-testsuite-fix-port-detection-in-gdb.debuginfod-fetch_src_and_symbols.exp.patch + * gdb-testsuite-fix-regexp-in-gdb.base-foll-vfork.exp.patch + * gdb-testsuite-fix-stepi-test-cases-with-unix-m32-fpie-pie.patch + * gdb-testsuite-handle-recursive-internal-problem-in-gdb_internal_error_resync.patch + * gdb-testsuite-handle-runto-fail-in-gdb.mi-mi-var-cp.exp.patch + * gdb-testsuite-handle-sigill-in-two-gdb.arch-powerpc-test-cases.patch + * gdb-testsuite-handle-supports_memtag-in-gdb.base-gdb-caching-proc.exp.patch + * gdb-testsuite-make-gdb.base-annota1.exp-more-robust.patch + * gdb-testsuite-refactor-regexp-in-gdb.base-annota1.exp.patch + * gdb-testsuite-support-fpie-fno-pie-pie-no-pie-in-gdb_compile_rust.patch + * gdb-testsuite-update-test-gdb.base-step-over-syscall.exp.patch + * gdb-testsuite-use-compiler-generated-instead-of-gas-generated-stabs.patch + * gdb-tui-fix-breakpoint-display-functionality.patch + * ibm-z-add-another-arch14-instruction.patch + * ibm-z-remove-lpswey-parameter.patch +- Patched updated: + * gdb-6.3-gstack-20050411.patch + * gdb-6.5-bz185337-resolve-tls-without-debuginfo-v2.patch + * gdb-6.6-buildid-locate-rpm-librpm-workaround.patch + * gdb-6.6-buildid-locate-rpm-scl.patch + * gdb-6.6-buildid-locate-rpm.patch + * gdb-6.6-buildid-locate-solib-missing-ids.patch + * gdb-6.6-buildid-locate.patch + * gdb-cli-add-ignore-errors-command.patch + * gdb-container-rh-pkg.patch + * gdb-core-open-vdso-warning.patch + * gdb-fedora-libncursesw.patch + * gdb-gcore-bash.patch + * gdb-linux_perf-bundle.patch + * gdb-testsuite-handle-init-errors-in-gdb.mi-user-selected-context-sync.exp.patch +- Add BuildRequires python-xml. - * Fix PR28510 kfail. - * Add kfails for gdb.arch/i386-mpx*. + * Add -sle-12 and -factory options. + * Handle *.-fPIE.-pie.sum files. + * Add KFAILs for PRs 26292, 29238, 25059, 29240, 29241, 29244, + 29245, 29160, 29196. + * Move PR27539 KFAILs from kfail_factory to kfail. +- New maintenance script qa-local.sh. +- New file README.qa. + +- Patches added (trunk backport): + * gdb-testsuite-detect-no-mpx-support.patch + * gdb-testsuite-handle-init-errors-in-gdb.mi-user-selected-context-sync.exp.patch + * gdb-add-gdb-syscalls-makefile.patch +- Patches added (ml backport): + * gdb-update-syscalls-amd64-i386-linux.xml.patch + * gdb-record-handle-statx-system-call.patch +- Patches added (to be upstreamed): + * gdb-tdep-update-syscalls-ppc64-ppc-linux.xml.patch +- Maintenance script qa.sh: + * Add another KFAIL for PR27027. + * Remove PR28461 KFAIL. + +- patches added (trunk backport): + * gdb-testsuite-make-gdb.base-annota1.exp-more-robust.patch + * gdb-testsuite-fix-gdb.base-annota1.exp-with-pie.patch +- patches added (gdb-patches ml backport): + * gdb-tdep-handle-pipe2-syscall-for-amd64.patch + * gdb-testsuite-handle-pipe2-syscall-in-gdb.base-catch-syscall.exp.patch + * gdb-tdep-support-catch-syscall-pipe2-for-i386.patch +- Maintenance script qa.sh: + * Add Leap 15.4 x86_64 to know good configs. + +- Remove dependency on binutils-gold as the package will be removed + in the future. Gold linker is unmaintained by the upstream project. + +- Fix unresolved BuildRequires fpc for Leap 15.4/i586. + +- Patch added (backport from master): + * fix-build-with-current-gcc-el_explicit-location-always-non-null.patch + +- Maintenance script qa.sh: + * Add KFAILs for PR28667. +- Fedora fixup patch added: + * fixup-gdb-6.5-bz243845-stale-testing-zombie-test.patch -- Patches dropped: - * gdb-cli-add-ignore-errors-command.patch +- gdb-r_version-check.patch: gdb: Don't assume r_ldsomap when r_version > + 1 on Linux + +- Patches added (swo#28323): + gdb-ada-fix-assert-in-ada_is_unconstrained_packed_array_type.patch + +- Patches added (swo#27028, swo#27257): + * gdb-testsuite-fix-gdb.arch-i386-pkru.exp-on-linux.patch + * gdb-tdep-fix-avx512-m32-support-in-gdbserver.patch + +- Patch added (swo#28539, bsc#1192285): + * gdb-symtab-fix-segfault-in-search_one_symtab.patch + +- Patches removed: + * gdb-testsuite-debug-gdb.arch-i386-sse.exp.patch + +- Maintenance script qa.sh: + - Drop openSUSE Leap 15.1. + - Add KFAILs for PR28617. + +- Fix SLE-12 x86_64 unresolvable by removing BuildRequire gcc-java. + +- Fix openSUSE_Factory_ARM armv7l unresolvable by not doing + BuildRequire babeltrace-devel. + +- Fix SLE-12 x86_64 unresolvable by not doing BuildRequire + babeltrace-devel. + +- Patches added (backport from master): + * gdb-testsuite-add-missing-wait-in-gdb.base-signals-state-child.exp.patch +- Add BuildRequire libsource-highlight. + +- Maintenance script qa.sh: + - Add KFAIL. +- Patches updated (increase sleep time): + * gdb-testsuite-fix-race-in-gdb.threads-detach-step-over.exp.patch +- Patches added (debug hard to reproduce failure): + * gdb-testsuite-debug-gdb.arch-i386-sse.exp.patch + +- Maintenance script qa.sh: + - Add internal-error KFAILs. + - Rewrite gdb.suse check to distinguish between: + "zypper hint printed (librpm)" and + "zypper hint printed (no librpm)". + +- Patch updated (zypper hint doesn't use librpm on SLE-11): + * gdb-testsuite-add-gdb.suse-zypper-hint.exp.patch + +- Patches added (backports from trunk): + * gdb-testsuite-add-gdb.opt-break-on-_exit.exp.patch + * gdb-tdep-rs6000-don-t-skip-system-call-in-skip_prologue.patch + * gdb-testsuite-fix-stepi-test-cases-with-unix-m32-fpie-pie.patch + * gdb-testsuite-fix-assembly-comments-in-gdb.dwarf2-clang-debug-names.exp.tcl.patch + * gdb-doc-fix-print-inferior-events-default.patch + * gdb-testsuite-fix-gdb.guile-scm-type.exp-with-gcc-4.8.patch + * gdb-testsuite-add-gdb.arch-ppc64-break-on-_exit.exp.patch + * gdb-testsuite-don-t-error-when-trying-to-unset-last_spawn_tty_name.patch + * gdb-exp-improve-error-reading-variable-message.patch + * fix-gdb.base-sigstep.exp-test-for-ppc.patch + * gdb-testsuite-fix-regexp-in-gdb.base-foll-vfork.exp.patch +- Patches added (backports from ml): + * gdb-testsuite-disable-inferior-output-in-gdb.base-foll-vfork.exp.patch +- Maintenance script qa.sh: + - Add -m32/-pie to known clean configs. + - Add kfail for PR28467. + +- Fix empty patch: + * gdb-testsuite-fix-fail-in-gdb.tui-basic.exp.patch + +- Limit SLE extra targets to SLE targets. +- Add avr-elf and pru-elf to openSUSE extra targets. + +- Maintenance script qa.sh: + * Add note. + * Add KFAIL, improve KFAIL patterns. +- Patch updated: + * gdb-testsuite-fix-data-alignment-in-gdb.arch-i386-avx-sse-.exp.patch + * gdb-testsuite-fix-race-in-gdb.threads-detach-step-over.exp.patch + +- Replace patch (patch from mailing list, fix SLE-11 apply failure): + with (now backported from release branch): + * aarch64-make-gdbserver-register-set-selection-dynamic.patch +- Patches added: + * gdb-testsuite-fix-data-alignment-in-gdb.arch-i386-avx-sse-.exp.patch + * gdb-testsuite-fix-fail-in-gdb.tui-basic.exp.patch +- Patches dropped: + * gdb-testsuite-add-checks-to-gdb.arch-i386-sse.exp.patch +- Replace patch: + * gdb-testsuite-Fix-gdb.threads-thread-specific-bp.exp.patch + with (updated version, and patchname now generated by + import-patches.sh): + * gdb-testsuite-fix-gdb.threads-thread-specific-bp.exp.patch +- Maintenance script import-patches.sh: + * Improve argument checking. + * Add usage. + * Use filterdiff to filter out ChangeLog entries. +- Maintenance script qa.sh: + * Fix usage. + * Document todo. + +- Re-enable big endian powerpc, but keep testing disabled. +- Add KFAIL for PR28553. + +- Patch added (move zypper hint test to testsuite): + * gdb-testsuite-add-gdb.suse-zypper-hint.exp.patch + +- Maintenance script qa.sh: + * Add PR28551 KFAIL. + * Add missing quotes for some KFAILs. + * Remove PR28355 KFAIL. gmmlib +- update to 22.3.1: + * Fix memory leak Destroy allocated resources for ULT + gnutls +- Fix AVX CPU feature detection for OSXSAVE [bsc#1203299] + * Fixes a SIGILL termination at the verzoupper instruction when + trying to run GnuTLS on a Linux kernel with the noxsave command + line parameter set. Relevant mostly for virutal systems. + * Upstream bug: https://gitlab.com/gnutls/gnutls/issues/1282 + * Add gnutls-clear-AVX-bits-if-it-cannot-be-queried-XSAVE.patch + +- FIPS: Set error state when jent init failed in FIPS mode [bsc#1202146] + * Add patch gnutls-FIPS-Set-error-state-when-jent-init-failed.patch + +- FIPS: Make XTS key check failure not fatal [bsc#1203779] + * Add gnutls-Make-XTS-key-check-failure-not-fatal.patch + +- FIPS: Zeroize the calculated hmac and new_hmac in the + check_binary_integrity() function. [bsc#1191021] + * Add gnutls-FIPS-Zeroize-check_binary_integrity.patch + +- FIPS: Additional modifications to the SLI. [bsc#1190698] + * Mark CMAC and GMAC and non-approved in gnutls_pbkfd2(). + * Mark HMAC keylength less than 112 bits as non-approved in + gnutls_pbkfd2(). + * Adapt the pbkdf2 selftest and the regression tests accordingly. + * Add gnutls-FIPS-SLI-pbkdf2-verify-keylengths-only-SHA.patch + +- FIPS: Port GnuTLS to use jitterentropy [bsc#1202146, jsc#SLE-24941] + * Add new dependency on jitterentropy + * Add gnutls-FIPS-jitterentropy.patch + +- Security fix: [bsc#1202020, CVE-2022-2509] + * Fixed double free during verification of pkcs7 signatures + * Add gnutls-CVE-2022-2509.patch + +- FIPS: + * Modify gnutls-FIPS-force-self-test.patch [bsc#1198979] + - gnutls_fips140_run_self_tests now properly releases fips_context + +- FIPS: + * Add gnutls_ECDSA_signing.patch [bsc#1190698] + - Check minimum keylength for symmetric key generation + - Only allows ECDSA signature with valid set of hashes + (SHA2 and SHA3) + * Add gnutls-FIPS-force-self-test.patch [bsc#1198979] + - Provides interface for running library self tests on-demand + - Upstream: https://gitlab.com/gnutls/gnutls/-/merge_requests/1598 + +- FIPS: Make sure zeroization is performed in all API functions + * Add gnutls-zeroization-API-functions.patch [bsc#1191021] + * Upsream: https://gitlab.com/gnutls/gnutls/-/merge_requests/1573 + +- FIPS: Add missing requirements for the SLI [bsc#1190698] + * Remove 3DES from FIPS approved algorithms: + - gnutls-Remove-3DES-from-FIPS-approved-algos.patch + - Upstream: https://gitlab.com/gnutls/gnutls/-/merge_requests/1570 + * DRBG service (gnutls_rnd) should be considered approved: + - gnutls-Add-missing-FIPS-service-indicator-transitions.patch + - gnutls-Add-missing-FIPS-service-indicator-transitions-tests.patch + - gnutls-pkcs12-tighten-algorithm-checks-under-FIPS.patch + - Upstream: https://gitlab.com/gnutls/gnutls/-/merge_requests/1569 + +- FIPS: Mark AES-GCM as approved in the TLS context [bsc#1194907] + * Add gnutls-FIPS-Mark-HKDF-and-AES-GCM-as-approved-when-used-in-TLS.patch + * Upstream issue: https://gitlab.com/gnutls/gnutls/issues/1311 + +- FIPS: Additional PBKDF2 requirements for KAT [bsc#1184669] + * The IG 10.3.A and SP800-132 require some minimum parameters for + the salt length, password length and iteration count. These + parameters should be also used in the KAT. + * Add gnutls-FIPS-PBKDF2-KAT-requirements.patch + * Upstream: https://gitlab.com/gnutls/gnutls/merge_requests/1561 +- Enable to run the regression tests also in FIPS mode. + +- Update to 3.7.3: [bsc#1190698, bsc#1190796] + * libgnutls: The allowlisting configuration mode has been added + to the system-wide settings. In this mode, all the algorithms + are initially marked as insecure or disabled, while the + applications can re-enable them either through the [overrides] + section of the configuration file or the new API (#1172). + * The build infrastructure no longer depends on GNU AutoGen for + generating command-line option handling, template file parsing + in certtool, and documentation generation (#773, #774). This + change also removes run-time or bundled dependency on the + libopts library, and requires Python 3.6 or later to regenerate + the distribution tarball. Note that this brings in known backward + incompatibility in command-line tools, such as long options are + now case sensitive, while previously they were treated in a case + insensitive manner: for example --RSA is no longer a valid option + of certtool. The existing scripts using GnuTLS tools may need + adjustment for this change. + * libgnutls: The tpm2-tss-engine compatible private blobs can be loaded + and used as a gnutls_privkey_t (#594). The code was originally written + for the OpenConnect VPN project by David Woodhouse. To generate such + blobs, use the tpm2tss-genkey tool from tpm2-tss-engine: + https://github.com/tpm2-software/tpm2-tss-engine/#rsa-operations + or the tpm2_encodeobject tool from unreleased tpm2-tools. + * libgnutls: The library now transparently enables Linux KTLS (kernel + TLS) when the feature is compiled in with --enable-ktls configuration + option (#1113). If the KTLS initialization fails it automatically falls + back to the user space implementation. + * certtool: The certtool command can now read the Certificate Transparency + (RFC 6962) SCT extension (#232). New API functions are also provided to + access and manipulate the extension values. + * certtool: The certtool command can now generate, manipulate, and evaluate + x25519 and x448 public keys, private keys, and certificates. + * libgnutls: Disabling a hashing algorithm through "insecure-hash" + configuration directive now also disables TLS ciphersuites that use it + as a PRF algorithm. + * libgnutls: PKCS#12 files are now created with modern algorithms by default + (!1499). Previously certtool used PKCS12-3DES-SHA1 for key derivation and + HMAC-SHA1 as an integity measure in PKCS#12. Now it uses AES-128-CBC with + PBKDF2 and SHA-256 for both key derivation and MAC algorithms, and the + default PBKDF2 iteration count has been increased to 600000. + * libgnutls: PKCS#12 keys derived using GOST algorithm now uses + HMAC_GOSTR3411_2012_512 instead of HMAC_GOSTR3411_2012_256 for integrity, + to conform with the latest TC-26 requirements (#1225). + * libgnutls: The library now provides a means to report the status + of approved cryptographic operations (!1465). To adhere to the + FIPS140-3 IG 2.4.C., this complements the existing mechanism to + prohibit the use of unapproved algorithms by making the library + unusable state. + * gnutls-cli: The gnutls-cli command now provides a --list-config + option to print the library configuration (!1508). + * libgnutls: Fixed possible race condition in + gnutls_x509_trust_list_verify_crt2 when a single trust list object + is shared among multiple threads (#1277). [GNUTLS-SA-2022-01-17, + CVSS: low] + * API and ABI modifications: + GNUTLS_PRIVKEY_FLAG_RSA_PSS_FIXED_SALT_LENGTH: new flag in + gnutls_privkey_flags_t + GNUTLS_VERIFY_RSA_PSS_FIXED_SALT_LENGTH: new flag in + gnutls_certificate_verify_flags + gnutls_ecc_curve_set_enabled: Added. + gnutls_sign_set_secure: Added. + gnutls_sign_set_secure_for_certs: Added. + gnutls_digest_set_secure: Added. + gnutls_protocol_set_enabled: Added. + gnutls_fips140_context_init: New function + gnutls_fips140_context_deinit: New function + gnutls_fips140_push_context: New function + gnutls_fips140_pop_context: New function + gnutls_fips140_get_operation_state: New function + gnutls_fips140_operation_state_t: New enum + gnutls_transport_is_ktls_enabled: New function + gnutls_get_library_configuration: New function + * Remove patches fixed in the update: + - gnutls-FIPS-module-version.patch + - gnutls-FIPS-service-indicator.patch + - gnutls-FIPS-service-indicator-public-key.patch + - gnutls-FIPS-service-indicator-symmetric-key.patch + - gnutls-FIPS-RSA-PSS-flags.patch + - gnutls-FIPS-RSA-mod-sizes.patch + +- FIPS: Fix regression tests in fips and non-fips mode [bsc#1194468] + * Add gnutls-FIPS-disable-failing-tests.patch + * Remove patches: + - gnutls-temporarily_disable_broken_guile_reauth_test.patch + - gnutls-3.6.0-disable-flaky-dtls_resume-test.patch + - disable-psk-file-test.patch + +- FIPS: Provide module identifier and version [bsc#1190796] + * Add configurable options to output the module name/identifier + (--with-fips140-module-name) and the module version + (--with-fips140-module-version). + * Add the CLI option list-config that reports the configuration + of the library. + * Add gnutls-FIPS-module-version.patch + +- FIPS: Provide a service-level indicator [bsc#1190698] + * Add support for a "service indicator" as required in + the FIPS140-3 Implementation Guidance in section 2.4.C + * Add patches: + - gnutls-FIPS-service-indicator.patch + - gnutls-FIPS-service-indicator-public-key.patch + - gnutls-FIPS-service-indicator-symmetric-key.patch + - gnutls-FIPS-RSA-PSS-flags.patch + +- FIPS: RSA KeyGen/SigGen fail with 4096 bit key sizes [bsc#1192008] + * fips: allow more RSA modulus sizes + * Add gnutls-FIPS-RSA-mod-sizes.patch + * Delete gnutls-3.6.7-fips-rsa-4096.patch + +- Drop bogus condition "> 1550": that would mean 'more recent than + Tumbleweed' which is technically impossible, as Tumbleweed is the + leading project (and the condition causes issues as Tumbleweed + needs to move away from 1550 due to CODE 15 SP5 plans). + +- Add crypto-policies support in SLE-15-SP4 [jsc#SLE-20287] + +- Account for the libnettle soname bump [jsc#SLE-19765] + +- Update to 3.7.2 in SLE-15-SP4: [jsc#SLE-19765, jsc#SLE-18139] + - Add gnutls-temporarily_disable_broken_guile_reauth_test.patch + - Rebased patches: + * disable-psk-file-test.patch + * gnutls-3.6.0-disable-flaky-dtls_resume-test.patch + * gnutls-fips_mode_enabled.patch + - Remove patches merged upstream: + * gnutls-CVE-2020-11501.patch + * gnutls-CVE-2020-13777.patch + * gnutls-CVE-2020-24659.patch + * gnutls-CVE-2021-20231.patch + * gnutls-CVE-2021-20232.patch + * gnutls-3.6.7-fips-backport_dont_truncate_output_IV.patch + * gnutls-fips_XTS_key_check.patch + * 0001-_gnutls_verify_crt_status-apply-algorithm-checks-to-.patch + * 0002-_gnutls_pkcs11_verify_crt_status-check-validity-agai.patch + * 0003-x509-trigger-fallback-verification-path-when-cert-is.patch + * 0004-tests-add-test-case-for-certificate-chain-supersedin.patch + * 0001-Add-Full-Public-Key-Check-for-DH.patch + * 0001-Add-test-to-ensure-DH-exchange-behaves-correctly.patch + * 0002-Add-test-to-ensure-ECDH-exchange-behaves-correctly.patch + * 0003-Add-plumbing-to-handle-Q-parameter-in-DH-exchanges.patch + * 0004-Always-pass-in-and-check-Q-in-TLS-1.3.patch + * 0005-Check-Q-for-FFDHE-primes-in-prime-check.patch + * 0006-Pass-down-Q-for-FFDHE-in-al-pre-TLS1.3-as-well.patch + * 0001-dh-primes-add-MODP-primes-from-RFC-3526.patch + * 0002-dhe-check-if-DH-params-in-SKE-match-the-FIPS-approve.patch + * 0001-dh-check-validity-of-Z-before-export.patch + * 0002-ecdh-check-validity-of-P-before-export.patch + * 0003-dh-primes-make-the-FIPS-approved-check-return-Q-valu.patch + * 0004-dh-perform-SP800-56A-rev3-full-pubkey-validation-on-.patch + * 0005-ecdh-perform-SP800-56A-rev3-full-pubkey-validation-o.patch + * 0001-Vendor-in-XTS-functionality-from-Nettle.patch + * 0001-pubkey-avoid-spurious-audit-messages-from-_gnutls_pu.patch + * gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch + * gnutls-3.6.7-fix-FTBFS-2024.patch + * gnutls-3.6.7-reproducible-date.patch + +- Update to version 3.7.2 + * Added Linux kernel AF_ALG based acceleration + * Fixed timing of early data exchange + * The priority string option DISABLE_TLS13_COMPAT_MODE was added + to disable TLS 1.3 middlebox compatibility mode + * The GNUTLS_NO_EXPLICIT_INIT envvar has been renamed to + GNUTLS_NO_IMPLICIT_INIT to reflect the purpose + * certtool: + * When signing a CSR, CRL distribution point (CDP) is no + longer copied from the signing CA by default + * When producing certificates and certificate requests, subject + DN components that are provided individually will now be + ordered by assumed scale + +- Add gnutls-3.6.7-fix-FTBFS-2024.patch to let tests pass after 2024 (boo#1186579) +- Add gnutls-3.6.7-reproducible-date.patch to override build date (boo#1047218) + +- Security fix: [bsc#1183456, CVE-2021-20232] + * A use after free issue in client_send_params + in lib/ext/pre_shared_key.c may lead to memory + corruption and other potential consequences. +- Add gnutls-CVE-2021-20232.patch + +- Security fix: [bsc#1183457, CVE-2021-20231] + * A use after free issue in client sending key_share extension + may lead to memory corruption and other consequences. +- Add gnutls-CVE-2021-20231.patch + +- Update to 3.7.1: + [bsc#1183456, CVE-2021-20232] [bsc#1183457, CVE-2021-20231] + * Fixed potential use-after-free in sending "key_share" and + "pre_shared_key" extensions. + * Fixed a regression in handling duplicated certs in a chain. + * Fixed sending of session ID in TLS 1.3 middlebox compatibility + mode. In that mode the client shall always send a non-zero + session ID to make the handshake resemble the TLS 1.2 + resumption; this was not true in the previous versions. + * Removed dependency on the external 'fipscheck' package, + when compiled with --enable-fips140-mode. + * Added padlock acceleration for AES-192-CBC. +- Remove patches upstream: + * gnutls-gnutls-cli-debug.patch + * gnutls-ignore-duplicate-certificates.patch + * gnutls-test-fixes.patch + +- Fix the test suite for tests/gnutls-cli-debug.sh [bsc#1171565] + * Don't unset system priority settings in gnutls-cli-debug.sh + * Upstream: gitlab.com/gnutls/gnutls/merge_requests/1387 +- Add gnutls-gnutls-cli-debug.patch + +- Fix: Test certificates in tests/testpkcs11-certs have expired + * Upstream bug: gitlab.com/gnutls/gnutls/issues/1135 +- Add gnutls-test-fixes.patch + +- gnutls_x509_trust_list_verify_crt2: ignore duplicate certificates + * Upstream bug: https://gitlab.com/gnutls/gnutls/issues/1131 +- Add gnutls-ignore-duplicate-certificates.patch + +- Update to 3.7.0 + * Depend on nettle 3.6 + * Added a new API that provides a callback function to retrieve + missing certificates from incomplete certificate chains + * Added a new API that provides a callback function to output the + complete path to the trusted root during certificate chain + verification + * OIDs exposed as gnutls_datum_t no longer account for the + terminating null bytes, while the data field is null terminated. + The affected API functions are: gnutls_ocsp_req_get_extension, + gnutls_ocsp_resp_get_response, and gnutls_ocsp_resp_get_extension + * Added a new set of API to enable QUIC implementation + * The crypto implementation override APIs deprecated in 3.6.9 are + now no-op + * Added MAGMA/KUZNYECHIK CTR-ACPKM and CMAC support + * Support for padlock has been fixed to make it work with Zhaoxin CPU + * The maximum PIN length for PKCS #11 has been increased from 31 + bytes to 255 bytes +- Remove patch fixed upstream: + * gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch +- Fix threading bug in libgnutls [bsc#1173434] + * Upstream bug: gitlab.com/gnutls/gnutls/issues/1044 + +- Avoid spurious audit messages about incompatible signature algorithms + (bsc#1172695) + * add 0001-pubkey-avoid-spurious-audit-messages-from-_gnutls_pu.patch + +- FIPS: Use 2048 bit prime in DH selftest (bsc#1176086) + * add gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch +- FIPS: Add TLS KDF selftest (bsc#1176671) + * add gnutls-FIPS-TLS_KDF_selftest.patch + +- Escape rpm command %%expand when used in comment. + +- FIPS: Use 2048 bit prime in DH selftest (bsc#1176086) + * add gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch + +- FIPS: Add TLS KDF selftest (bsc#1176671) + * add gnutls-FIPS-TLS_KDF_selftest.patch + +- Fix heap buffer overflow in handshake with no_renegotiation alert sent + * CVE-2020-24659 (bsc#1176181) +- add gnutls-CVE-2020-24659.patch + +- FIPS: Implement (EC)DH requirements from SP800-56Arev3 (bsc#1176086) +- add patches + * 0001-Add-Full-Public-Key-Check-for-DH.patch + * 0001-Add-test-to-ensure-DH-exchange-behaves-correctly.patch + * 0002-Add-test-to-ensure-ECDH-exchange-behaves-correctly.patch + * 0003-Add-plumbing-to-handle-Q-parameter-in-DH-exchanges.patch + * 0004-Always-pass-in-and-check-Q-in-TLS-1.3.patch + * 0005-Check-Q-for-FFDHE-primes-in-prime-check.patch + * 0006-Pass-down-Q-for-FFDHE-in-al-pre-TLS1.3-as-well.patch + * 0001-dh-primes-add-MODP-primes-from-RFC-3526.patch + * 0002-dhe-check-if-DH-params-in-SKE-match-the-FIPS-approve.patch + * 0001-dh-check-validity-of-Z-before-export.patch + * 0002-ecdh-check-validity-of-P-before-export.patch + * 0003-dh-primes-make-the-FIPS-approved-check-return-Q-valu.patch + * 0004-dh-perform-SP800-56A-rev3-full-pubkey-validation-on-.patch + * 0005-ecdh-perform-SP800-56A-rev3-full-pubkey-validation-o.patch +- drop obsolete gnutls-3.6.7-fips_DH_ECDH_key_tests.patch + +- Update to 3.6.15 + * libgnutls: Fixed "no_renegotiation" alert handling at incorrect timing. + [GNUTLS-SA-2020-09-04, CVSS: medium] + * libgnutls: If FIPS self-tests are failed, gnutls_fips140_mode_enabled() now + indicates that with a false return value (!1306). + * libgnutls: Under FIPS mode, the generated ECDH/DH public keys are checked + accordingly to SP800-56A rev 3 (!1295, !1299). + * libgnutls: gnutls_x509_crt_export2() now returns 0 upon success, rather than + the size of the internal base64 blob (#1025). + * libgnutls: Certificate verification failue due to OCSP must-stapling is not + honered is now correctly marked with the GNUTLS_CERT_INVALID flag + * libgnutls: The audit log message for weak hashes is no longer printed twice + * libgnutls: Fixed version negotiation when TLS 1.3 is enabled and TLS 1.2 is + disabled in the priority string. Previously, even when TLS 1.2 is explicitly + disabled with "-VERS-TLS1.2", the server still offered TLS 1.2 if TLS 1.3 is + enabled (#1054). +- drop upstreamed patches: + * gnutls-detect_nettle_so.patch + * 0001-crypto-api-always-allocate-memory-when-serializing-i.patch + +- Correctly detect gmp, nettle, and hogweed libraries (bsc#1172666) + * add gnutls-detect_nettle_so.patch + +- Fix a memory leak that could lead to a DoS attack against Samba + servers (bsc#1172663) + * add 0001-crypto-api-always-allocate-memory-when-serializing-i.patch +- Temporarily disable broken guile reauth test (bsc#1171565) + * add gnutls-temporarily_disable_broken_guile_reauth_test.patch + +- GNUTLS-SA-2020-06-03 (Fixed insecure session ticket key construction) + The TLS server would not bind the session ticket encryption key with a + value supplied by the application until the initial key rotation, allowing + attacker to bypass authentication in TLS 1.3 and recover previous + conversations in TLS 1.2 (#1011). (bsc#1172506, CVE-2020-13777) + * add patches: + + gnutls-CVE-2020-13777.patch +- Fixed handling of certificate chain with cross-signed intermediate + CA certificates (#1008). (bsc#1172461) + * add patches: + + 0001-_gnutls_verify_crt_status-apply-algorithm-checks-to-.patch + + 0002-_gnutls_pkcs11_verify_crt_status-check-validity-agai.patch + + 0003-x509-trigger-fallback-verification-path-when-cert-is.patch + + 0004-tests-add-test-case-for-certificate-chain-supersedin.patch + +- Update to 3.6.14 + * libgnutls: Fixed insecure session ticket key construction, since 3.6.4. + The TLS server would not bind the session ticket encryption key with a + value supplied by the application until the initial key rotation, allowing + attacker to bypass authentication in TLS 1.3 and recover previous + conversations in TLS 1.2 (#1011). (bsc#1172506, CVE-2020-13777) + [GNUTLS-SA-2020-06-03, CVSS: high] + * libgnutls: Fixed handling of certificate chain with cross-signed + intermediate CA certificates (#1008). (bsc#1172461) + * libgnutls: Fixed reception of empty session ticket under TLS 1.2 (#997). + * libgnutls: gnutls_x509_crt_print() is enhanced to recognizes commonName + (2.5.4.3), decodes certificate policy OIDs (!1245), and prints Authority + Key Identifier (AKI) properly (#989, #991). + * certtool: PKCS #7 attributes are now printed with symbolic names (!1246). + * libgnutls: Use accelerated AES-XTS implementation if possible (!1244). + Also both accelerated and non-accelerated implementations check key block + according to FIPS-140-2 IG A.9 (!1233). + * libgnutls: Added support for AES-SIV ciphers (#463). + * libgnutls: Added support for 192-bit AES-GCM cipher (!1267). + * libgnutls: No longer use internal symbols exported from Nettle (!1235) + * API and ABI modifications: + GNUTLS_CIPHER_AES_128_SIV: Added + GNUTLS_CIPHER_AES_256_SIV: Added + GNUTLS_CIPHER_AES_192_GCM: Added + gnutls_pkcs7_print_signature_info: Added +- Add key D605848ED7E69871: public key "Daiki Ueno " to + the keyring +- Drop gnutls-fips_correct_nettle_soversion.patch (upstream) + +- Add RSA 4096 key generation support in FIPS mode (bsc#1171422) + * add gnutls-3.6.7-fips-rsa-4096.patch + +- Don't check for /etc/system-fips which we don't have (bsc#1169992) + * add gnutls-fips_mode_enabled.patch + +- Backport AES XTS support (bsc#1168835) + * add 0001-Vendor-in-XTS-functionality-from-Nettle.patch + * add gnutls-fips_XTS_key_check.patch + +- Use correct nettle .so version when looking for a FIPS checksum + (bsc#1166635) + * add gnutls-fips_correct_nettle_soversion.patch + +- Update to 3.6.13 + * libgnutls: Fix a DTLS-protocol regression (caused by TLS1.3 support) + The DTLS client would not contribute any randomness to the DTLS negotiation, + breaking the security guarantees of the DTLS protocol (#960) + [GNUTLS-SA-2020-03-31, CVSS: high] (bsc#1168345) + * libgnutls: Added new APIs to access KDF algorithms (#813). + * libgnutls: Added new callback gnutls_keylog_func that enables a custom + logging functionality. + * libgnutls: Added support for non-null terminated usernames in PSK + negotiation (#586). + * gnutls-cli-debug: Improved support for old servers that only support + SSL 3.0. + +- Fix zero random value in DTLS client hello + (CVE-2020-11501, bsc#1168345) + * add gnutls-CVE-2020-11501.patch + +- Split off FIPS checksums into a separate libgnutls30-hmac + subpackage (bsc#1152692) + * update baselibs.conf + +- bsc#1166881 - FIPS: gnutls: cfb8 decryption issue + * No longer truncate output IV if input is shorter than block size. + * Added gnutls-3.6.7-fips-backport_dont_truncate_output_IV.patch + +- bsc#1155327 jira#SLE-9518 - FIPS: add DH key test + * Added Diffie Hellman public key verification test. + * gnutls-3.6.7-fips_DH_ECDH_key_tests.patch + +- gnutls 3.6.12 + * libgnutls: Introduced TLS session flag (gnutls_session_get_flags()) + to identify sessions that client request OCSP status request (#829). + * libgnutls: Added support for X448 key exchange (RFC 7748) and Ed448 + signature algorithm (RFC 8032) under TLS (#86). + * libgnutls: Added the default-priority-string option to system configuration; + it allows overriding the compiled-in default-priority-string. + * libgnutls: Added support for GOST CNT_IMIT ciphersuite (as defined by + draft-smyshlyaev-tls12-gost-suites-07). + By default this ciphersuite is disabled. It can be enabled by adding + +GOST to priority string. In the future this priority string may enable + other GOST ciphersuites as well. Note, that server will fail to negotiate + GOST ciphersuites if TLS 1.3 is enabled both on a server and a client. It + is recommended for now to disable TLS 1.3 in setups where GOST ciphersuites + are enabled on GnuTLS-based servers. + * libgnutls: added priority shortcuts for different GOST categories like + CIPHER-GOST-ALL, MAC-GOST-ALL, KX-GOST-ALL, SIGN-GOST-ALL, GROUP-GOST-ALL. + * libgnutls: Reject certificates with invalid time fields. That is we reject + certificates with invalid characters in Time fields, or invalid time formatting + To continue accepting the invalid form compile with --disable-strict-der-time + * libgnutls: Reject certificates which contain duplicate extensions. We were + previously printing warnings when printing such a certificate, but that is + not always sufficient to flag such certificates as invalid. Instead we now + refuse to import them (#887). + * libgnutls: If a CA is found in the trusted list, check in addition to + time validity, whether the algorithms comply to the expected level prior + to accepting it. This addresses the problem of accepting CAs which would + have been marked as insecure otherwise (#877). + * libgnutls: The min-verification-profile from system configuration applies + for all certificate verifications, not only under TLS. The configuration can + be overriden using the GNUTLS_SYSTEM_PRIORITY_FILE environment variable. + * libgnutls: The stapled OCSP certificate verification adheres to the convention + used throughout the library of setting the 'GNUTLS_CERT_INVALID' flag. + * libgnutls: On client side only send OCSP staples if they have been requested + by the server, and on server side always advertise that we support OCSP stapling + * libgnutls: Introduced the gnutls_ocsp_req_const_t which is compatible + with gnutls_ocsp_req_t but const. + * certtool: Added the --verify-profile option to set a certificate + verification profile. Use '--verify-profile low' for certificate verification + to apply the 'NORMAL' verification profile. + * certtool: The add_extension template option is considered even when generating + a certificate from a certificate request. + +- gnutls 3.6.11.1: + * libgnutls: Corrected issue with TLS 1.2 session ticket + handling as client during resumption + * libgnutls: gnutls_base64_decode2() succeeds decoding the empty + string to the empty string. This is a behavioral change of the + API but it conforms to the RFC4648 expectations + * libgnutls: Fixed AES-CFB8 implementation, when input is shorter + than the block size. Fix backported from nettle. + * certtool: CRL distribution points will be set in CA + certificates even when non self-signed + * gnutls-cli/serv: added raw public-key handling capabilities + (RFC7250). Key material can be set via the --rawpkkeyfile and + - -rawpkfile flags. + +- gnutls 3.6.10: + * Add support for deterministic ECDSA/DSA (RFC6979) + * Add functions for in-place encryption/decryption of data buffers + * server now selects the highest TLS protocol version, if TLS 1.3 + is enabled and the client advertises an older protocol version + first + * Add support for GOST 28147-89 cipher in CNT (GOST counter) mode + and MAC generation based on GOST 28147-89 (IMIT) + * certtool: when outputting an encrypted private key do not + insert the textual description of it + +- Install checksums for binary integrity verification which are + required when running in FIPS mode (bsc#1152692, jsc#SLE-9518) + +- gnutls 3.6.9: + * add support for copying digest or MAC contexts + * Mark the crypto implementation override APIs as deprecated + * Add support for AES-GMAC, as a separate to GCM, MAC algorithm + * Add support for Generalname registeredID + * The priority configuration was enhanced to allow more elaborate + system-wide configuration of the library +- includes changes from 3.6.8: + * Add support for AES-XTS cipher + * Fix calculation of Streebog digests + * During Diffie-Hellman operations in TLS, verify that the peer's + public key is on the right subgroup (y^q=1 mod p), when q is + available (under TLS 1.3 and under earlier versions when RFC7919 + parameters are used). + * Apply STD3 ASCII rules in gnutls_idna_map() to prevent + hostname/domain crafting via IDNA conversion + * certtool: allow the digital signature key usage flag in CA + certificates + * gnutls-cli/serv: add the --keymatexport and --keymatexportsize + options. These allow testing the RFC5705 using these tools +- drop patches to re-enable tests: + * disable-psk-file-test.patch + * gnutls-3.6.0-disable-flaky-dtls_resume-test.patch + +- Explicitly require libnettle 3.4.1 (bsc#1134856) + * The RSA decryption code was rewritten in GnuTLS 3.6.5 in order + to fix CVE-2018-16868, the new implementation makes use of a new + rsa_sec_decrypt() function introduced in libnettle 3.4.1 + * libnettle was recently updated to the 3.4.1 version but we need + to add explicit dependency on it to prevent missing symbol errors + with the older versions + +- Restored autoreconf in build. +- Removed gnutls-3.6.6-SUSE_SLE15_congruent_version_requirements.patch + since the version requirements of required libraries are once again + automatically determined. +- Added gnutls-3.6.7-SUSE_SLE15_guile_site_directory.patch because it is a + better patch name for handling the '--with-guile-site-dir=' problem in + 3.6.7. + +- Trim useless %if..%endif guards that do not affect the build. +- Fix language errors in description again. + +- Update gnutls to 3.6.7 + * * libgnutls, gnutls tools: Every gnutls_free() will automatically set + the free'd pointer to NULL. This prevents possible use-after-free and + double free issues. Use-after-free will be turned into NULL dereference. + The counter-measure does not extend to applications using gnutls_free(). + * * libgnutls: Fixed a memory corruption (double free) vulnerability in the + certificate verification API. Reported by Tavis Ormandy; addressed with + the change above. [GNUTLS-SA-2019-03-27, #694] [bsc#1130681] (CVE-2019-3829) + * * libgnutls: Fixed an invalid pointer access via malformed TLS1.3 async messages; + Found using tlsfuzzer. [GNUTLS-SA-2019-03-27, #704] [bsc#1130682] (CVE-2019-3836) + * * libgnutls: enforce key usage limitations on certificates more actively. + Previously we would enforce it for TLS1.2 protocol, now we enforce it + even when TLS1.3 is negotiated, or on client certificates as well. When + an inappropriate for TLS1.3 certificate is seen on the credentials structure + GnuTLS will disable TLS1.3 support for that session (#690). + * * libgnutls: the default number of tickets sent under TLS 1.3 was increased to + two. This makes it easier for clients which perform multiple connections + to the server to use the tickets sent by a default server. + * * libgnutls: enforce the equality of the two signature parameters fields in + a certificate. We were already enforcing the signature algorithm, but there + was a bug in parameter checking code. + * * libgnutls: fixed issue preventing sending and receiving from different + threads when false start was enabled (#713). + * * libgnutls: the flag GNUTLS_PKCS11_OBJ_FLAG_LOGIN_SO now implies a writable + session, as non-writeable security officer sessions are undefined in PKCS#11 + (#721). + * * libgnutls: no longer send downgrade sentinel in TLS 1.3. + Previously the sentinel value was embedded to early in version + negotiation and was sent even on TLS 1.3. It is now sent only when + TLS 1.2 or earlier is negotiated (#689). + * * gnutls-cli: Added option --logfile to redirect informational messages output. +- Disabled dane support since dane is not shipped with SLE-15 +- Changed configure script to hardware guile site directory since command-line + option '--with-guile-site-dir=' was removed from the configure script in 3.6.7. + * * Modified gnutls-3.6.6-SUSE_SLE15_congruent_version_requirements.patch +- Modified gnutls-3.6.0-disable-flaky-dtls_resume-test.patch to fix + compilation issues on PPC +- Fixed Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification + and padding oracle verification (in 3.6.5) [bsc#1118087] (CVE-2018-16868) + +- FATE#327114 - Update gnutls to 3.6.6 to support TLS 1.3 + * * libgnutls: gnutls_pubkey_import_ecc_raw() was fixed to set the number bits + on the public key (#640). + * * libgnutls: Added support for raw public-key authentication as defined in RFC7250. + Raw public-keys can be negotiated by enabling the corresponding certificate + types via the priority strings. The raw public-key mechanism must be explicitly + enabled via the GNUTLS_ENABLE_RAWPK init flag (#26, #280). + * * libgnutls: When on server or client side we are sending no extensions we do + not set an empty extensions field but we rather remove that field competely. + This solves a regression since 3.5.x and improves compatibility of the server + side with certain clients. + * * libgnutls: We no longer mark RSA keys in PKCS#11 tokens as RSA-PSS capable if + the CKA_SIGN is not set (#667). + * * libgnutls: The priority string option %NO_EXTENSIONS was improved to completely + disable extensions at all cases, while providing a functional session. This + also implies that when specified, TLS1.3 is disabled. + * * libgnutls: GNUTLS_X509_NO_WELL_DEFINED_EXPIRATION was marked as deprecated. + The previous definition was non-functional (#609). + * Removed patches: + 0001-dummy_wait-correctly-account-the-length-field-in-SHA.patch + 0002-dummy_wait-always-hash-the-same-amount-of-blocks-tha.patch + 0003-cbc_mac_verify-require-minimum-padding-under-SSL3.0.patch + 0004-hmac-sha384-and-sha256-ciphersuites-were-removed-fro.patch + * Added Patches: + * * disable failing psk-file test (race condition): + disable-psk-file-test.patch + * * Patch configure script to accept specific versions of autotools and guile + that are present in SUSE-SLE15. (A bug prevents configure from accepting + a range of compatible versions. Upstream's solution is to hardwire for + the most current versions.) + gnutls-3.6.6-SUSE_SLE15_congruent_version_requirements.patch + * Modified: + * * gnutls-3.6.0-disable-flaky-dtls_resume-test.patch +- drop no longer needed gnutls-enbale-guile-2.2.patch +- refresh disable-psk-file-test.patch + +- Update to 3.6.5 + * * libgnutls: Provide the option of transparent re-handshake/reauthentication + when the GNUTLS_AUTO_REAUTH flag is specified in gnutls_init() (#571). + * * libgnutls: Added support for TLS 1.3 zero round-trip (0-RTT) mode (#127) + * * libgnutls: The priority functions will ignore and not enable TLS1.3 if + requested with legacy TLS versions enabled but not TLS1.2. That is because + if such a priority string is used in the client side (e.g., TLS1.3+TLS1.0 enabled) + servers which do not support TLS1.3 will negotiate TLS1.2 which will be + rejected by the client as disabled (#621). + * * libgnutls: Change RSA decryption to use a new side-channel silent function. + This addresses a security issue where memory access patterns as well as timing + on the underlying Nettle rsa-decrypt function could lead to new Bleichenbacher + attacks. Side-channel resistant code is slower due to the need to mask + access and timings. When used in TLS the new functions cause RSA based + handshakes to be between 13% and 28% slower on average (Numbers are indicative, + the tests where performed on a relatively modern Intel CPU, results vary + depending on the CPU and architecture used). This change makes nettle 3.4.1 + the minimum requirement of gnutls (#630). [CVSS: medium] + * * libgnutls: gnutls_priority_init() and friends, allow the CTYPE-OPENPGP keyword + in the priority string. It is only accepted as legacy option and is ignored. + * * libgnutls: Added support for EdDSA under PKCS#11 (#417) + * * libgnutls: Added support for AES-CFB8 cipher (#357) + * * libgnutls: Added support for AES-CMAC MAC (#351) + * * libgnutls: In two previous versions GNUTLS_CIPHER_GOST28147_CPB/CPC/CPD_CFB ciphers + have incorrectly used CryptoPro-A S-BOX instead of proper (CryptoPro-B/-C/-D + S-BOXes). They are fixed now. + * * libgnutls: Added support for GOST key unmasking and unwrapped GOST private + keys parsing, as specified in R 50.1.112-2016. + * * gnutls-serv: It applies the default settings when no --priority option is given, + using gnutls_set_default_priority(). + * * p11tool: Fix initialization of security officer's PIN with the --initialize-so-pin + option (#561) + * * certtool: Add parameter --no-text that prevents certtool from outputting + text before PEM-encoded private key, public key, certificate, CRL or CSR. +- minimum required libnettle is now 3.4.1 +- refresh + * disable-psk-file-test.patch + * gnutls-3.6.0-disable-flaky-dtls_resume-test.patch + +- search for guile-2.2 during configure, part of boo#1117121 + add patches: + * gnutls-enbale-guile-2.2.patch: search for guile-2.2 + refresh patches: + * disable-psk-file-test.patch: disable psk-file in Makefile.am + +- Temporarily disable failing psk-file test (race condition) + * add disable-psk-file-test.patch + +- Version update to 3.6.4 (bsc#1111757): + * * libgnutls: Added the final (RFC8446) version numbering of the TLS1.3 protocol. + * * libgnutls: Corrected regression since 3.6.3 in the callbacks set with + gnutls_certificate_set_retrieve_function() which could not handle the case where + no certificates were returned, or the callbacks were set to NULL (see #528). + * * libgnutls: gnutls_handshake() on server returns early on handshake when no + certificate is presented by client and the gnutls_init() flag GNUTLS_ENABLE_EARLY_START + is specified. + * * libgnutls: Added session ticket key rotation on server side with TOTP. + The key set with gnutls_session_ticket_enable_server() is used as a + master key to generate time-based keys for tickets. The rotation + relates to the gnutls_db_set_cache_expiration() period. + * * libgnutls: The 'record size limit' extension is added and preferred to the + 'max record size' extension when possible. + * * libgnutls: Provide a more flexible PKCS#11 search of trust store certificates. + This addresses the problem where the CA certificate doesn't have a subject key + identifier whereas the end certificates have an authority key identifier (#569) + * * libgnutls: gnutls_privkey_export_gost_raw2(), gnutls_privkey_import_gost_raw(), + gnutls_pubkey_export_gost_raw2(), gnutls_pubkey_import_gost_raw() import + and export GOST parameters in the "native" little endian format used for these + curves. This is an intentional incompatible change with 3.6.3. + * * libgnutls: Added support for seperately negotiating client and server certificate types + as defined in RFC7250. This mechanism must be explicitly enabled via the + GNUTLS_ENABLE_CERT_TYPE_NEG flag in gnutls_init(). +- Drop upstreamed patch: + * gnutls-3.6.3-backport-upstream-fixes.patch + +- gnutls-3.6.0-disable-flaky-dtls_resume-test.patch: refresh to also patch + test/Makefile.in as autoreconf does not work + +- Backport of upstream fixes (boo#1108450) + * gnutls-3.6.3-backport-upstream-fixes.patch + Fixes taken from upstream commits: + * * 3df5b7bc8a64 ("cert-cred: fix possible segfault when resetting cert retrieval function") + * * 42945a7aab6d ("allow no certificates to be reported by the gnutls_certificate_retrieve_function callbacks") + * * 10f83e36ed92 ("hello_ext_parse: apply the test for pre-shared key ext being last on client hello") + The patch was taken from https://github.com/weechat/weechat/issues/1231 + +- Security update + Improve mitigations against Lucky 13 class of attacks + * "Just in Time" PRIME + PROBE cache-based side channel attack + can lead to plaintext recovery (CVE-2018-10846, bsc#1105460) + * HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of + wrong constant (CVE-2018-10845, bsc#1105459) + * HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not + enough dummy function calls (CVE-2018-10844, bsc#1105437) + * add patches: + 0001-dummy_wait-correctly-account-the-length-field-in-SHA.patch + 0002-dummy_wait-always-hash-the-same-amount-of-blocks-tha.patch + 0003-cbc_mac_verify-require-minimum-padding-under-SSL3.0.patch + 0004-hmac-sha384-and-sha256-ciphersuites-were-removed-fro.patch + +- Update to 3.6.3 + Fixes security issues: + CVE-2018-10846, CVE-2018-10845, CVE-2018-10844, CVE-2017-10790 + (bsc#1105437, bsc#1105460, bsc#1105459, bsc#1047002) + Other Changes: + * * libgnutls: Introduced support for draft-ietf-tls-tls13-28 + * * libgnutls: Apply compatibility settings for existing applications running with TLS1.2 or + earlier and TLS 1.3. + * * Added support for Russian Public Key Infrastructure according to RFCs 4491/4357/7836. + * * Provide a uniform cipher list across supported TLS protocols + * * The SSL 3.0 protocol is disabled on compile-time by default. + * * libgnutls: Introduced function to switch the current FIPS140-2 operational + mode + * * libgnutls: Introduced low-level function to assist applications attempting client + hello extension parsing, prior to GnuTLS' parsing of the message. + * * libgnutls: When exporting an X.509 certificate avoid re-encoding if there are no + modifications to the certificate. + * * libgnutls: on group exchange honor the %SERVER_PRECEDENCE and select the groups + which are preferred by the server. + * * Improved counter-measures for TLS CBC record padding. + * * Introduced the %FORCE_ETM priority string option. This option prevents the negotiation + of legacy CBC ciphersuites unless encrypt-then-mac is negotiated. + * * libgnutls: gnutls_privkey_import_ext4() was enhanced with the + GNUTLS_PRIVKEY_INFO_PK_ALGO_BITS flag. + * * libgnutls: gnutls_pkcs11_copy_secret_key, gnutls_pkcs11_copy_x509_privkey2, + gnutls_pkcs11_privkey_generate3 will mark objects as sensitive by default + unless GNUTLS_PKCS11_OBJ_FLAG_MARK_NOT_SENSITIVE is specified. This is an API + change for these functions which make them err towards safety. + * * libgnutls: improved aarch64 cpu features detection by using getauxval(). + * * certtool: It is now possible to specify certificate and serial CRL numbers greater + than 2**63-2 as a hex-encoded string both when prompted and in a template file. + Default certificate serial numbers are now fully random. +- don't run autoreconf to avoid pulling in gtk-doc + +- Require pkgconfig(autoopts) for building + +- Simplify the DANE support %ifdef condition + * build with DANE on openSUSE only + +- Adjust RPM groups. Drop %if..%endif guards that are idempotent. + +- build without DANE support on SLE-15, as it doesn't have unbound + (bsc#1086428) + +- add back refreshed gnutls-3.6.0-disable-flaky-dtls_resume-test.patch + the dtls-resume test still keeps randomly failing on PPC + +- remove gnutls-3.6.0-disable-flaky-dtls_resume-test.patch + patch does not apply any more and apparently the build + suceeds even if the formerly flaky testcase is run (bsc#1086579) + +- gnutls.keyring: Nikos key refreshed to be unexpired + +- GnuTLS 3.6.2: + * libgnutls: When verifying against a self signed certificate ignore issuer. + That is, ignore issuer when checking the issuer's parameters strength, + resolving issue #347 which caused self signed certificates to be + additionally marked as of insufficient security level. + * libgnutls: Corrected MTU calculation for the CBC ciphersuites. The data + MTU calculation now, it correctly accounts for the fixed overhead due to + padding (as 1 byte), while at the same time considers the rest of the + padding as part of data MTU. + * libgnutls: Address issue of loading of all PKCS#11 modules on startup + on systems with a PKCS#11 trust store (as opposed to a file trust store). + Introduced a multi-stage initialization which loads the trust modules, and + other modules are deferred for the first pure PKCS#11 request. + * libgnutls: The SRP authentication will reject any parameters outside + RFC5054. This protects any client from potential MitM due to insecure + parameters. That also brings SRP in par with the RFC7919 changes to + Diffie-Hellman. + * libgnutls: Added the 8192-bit parameters of SRP to the accepted parameters + for SRP authentication. + * libgnutls: Addressed issue in the accelerated code affecting + interoperability with versions of nettle >= 3.4. + * libgnutls: Addressed issue in the AES-GCM acceleration under aarch64. + * libgnutls: Addressed issue in the AES-CBC acceleration under ssse3 (patch by + Vitezslav Cizek). + * srptool: the --create-conf option no longer includes 1024-bit parameters. + * p11tool: Fixed the deletion of objects in batch mode. +- Dropped gnutls-check_aes_keysize.patch as it is included upstream now. + +- Use %license (boo#1082318) + +- Sanity check key size in SSSE3 AES cipher implementation (bsc#1074303) + * add gnutls-check_aes_keysize.patch + +- GnuTLS 3.6.1: + * Fix interoperability issue with openssl when safe renegotiation + was used + * gnutls_x509_crl_sign, gnutls_x509_crt_sign, + gnutls_x509_crq_sign, were modified to sign with a better + algorithm than SHA1. They will now sign with an algorithm that + corresponds to the security level of the signer's key. + * gnutls_x509_*_sign2() functions and gnutls_x509_*_privkey_sign() + accept GNUTLS_DIG_UNKNOWN (0) as a hash function option. That + will signal the function to auto-detect an appropriate hash + algorithm to use. + * Remove support for signature algorithms using SHA2-224 in TLS. + TLS 1.3 no longer uses SHA2-224 and it was never a widespread + algorithm in TLS 1.2 + * Refuse to use client certificates containing disallowed + algorithms for a session, reverting a change on 3.5.5 + * Refuse to resume a session which had a different SNI advertised + That improves RFC6066 support in server side. + * p11tool: Mark all generated objects as sensitive by default. + * p11tool: added options --sign-params and --hash. This allows + testing signature with multiple algorithms, including RSA-PSS. + +- Disable flaky dtls_resume test on Power + * add gnutls-3.6.0-disable-flaky-dtls_resume-test.patch + +- GnuTLS 3.6.0: + * Introduce a lock-free random generator which operates per- + thread and eliminates random-generator related bottlenecks in + multi-threaded operation. + * Replace the Salsa20 random generator with one based on CHACHA. + The goal is to reduce code needed in cache (CHACHA is also + used for TLS), and the number of primitives used by the + library. That does not affect the AES-DRBG random generator + used in FIPS140-2 mode. + * Add support for RSA-PSS key type as well as signatures in + certificates, and TLS key exchange + * Add support for Ed25519 signing in certificates and TLS key + exchange following draft-ietf-tls-rfc4492bis-17 + * Enable X25519 key exchange by default, following + draft-ietf-tls-rfc4492bis-17. + * Add support for Diffie-Hellman group negotiation following + RFC7919. + * Introduce various sanity checks on certificate import + * Introduce gnutls_x509_crt_set_flags(). This function can set + flags in the crt structure. The only flag supported at the + moment is GNUTLS_X509_CRT_FLAG_IGNORE_SANITY which skips the + certificate sanity checks on import. + * PKIX certificates with unknown critical extensions are rejected + on verification with status GNUTLS_CERT_UNKNOWN_CRIT_EXTENSIONS + * Refuse to generate a certificate with an illegal version, or an + illegal serial number. That is, gnutls_x509_crt_set_version() + and gnutls_x509_crt_set_serial(), will fail on input considered + to be invalid in RFC5280. + * Call to gnutls_record_send() and gnutls_record_recv() prior to + handshake being complete are now refused + * Add support for PKCS#12 files with no salt (zero length) in + their password encoding, and PKCS#12 files using SHA384 and + SHA512 as MAC. + * libgnutls: Exported functions to encode and decode DSA and ECDSA + r,s values. + * Add new callback setting function to gnutls_privkey_t for + external keys. The new function (gnutls_privkey_import_ext4), + allows signing in addition to previous algorithms (RSA PKCS#1 + 1.5, DSA, ECDSA), with RSA-PSS and Ed25519 keys. + * Introduce the %VERIFY_ALLOW_BROKEN and + %VERIFY_ALLOW_SIGN_WITH_SHA1 priority string options. These + allows enabling all broken and SHA1-based signature algorithms + in certificate verification, respectively. + * 3DES-CBC is no longer included in the default priorities list. + It has to be explicitly enabled, e.g., with a string like + "NORMAL:+3DES-CBC". + * SHA1 was marked as insecure for signing certificates. + Verification of certificates signed with SHA1 is now considered + insecure and will fail, unless flags intended to enable broken + algorithms are set. Other uses of SHA1 are still allowed. + * RIPEMD160 was marked as insecure for certificate signatures. + Verification of certificates signed with RIPEMD160 hash + algorithm is now considered insecure and will fail, unless + flags intended to enable broken algorithms are set. + * No longer enable SECP192R1 and SECP224R1 by default on TLS + handshakes. These curves were rarely used for that purpose, + provide no advantage over x25519 and were deprecated by TLS 1.3. + * Remove support for DEFLATE, or any other compression method. + * OpenPGP authentication was removed; the resulting library is ABI + compatible, with the openpgp related functions being stubs that + fail on invocation. + Drop gnutls-broken-openpgp-tests.patch, no longer required. + * Remove support for libidn (i.e., IDNA2003); gnutls can now be + compiled only with libidn2 which provides IDNA2008. + * certtool: The option '--load-ca-certificate' can now accept + PKCS#11 URLs in addition to files. + * certtool: The option '--load-crl' can now be used when + generating PKCS#12 files (i.e., in conjunction with '--to-p12' option). + * certtool: Keys with provable RSA and DSA parameters are now + only read and exported from PKCS#8 form, following + draft-mavrogiannopoulos-pkcs8-validated-parameters-00.txt. + This removes support for the previous a non-standard key format. + * certtool: Added support for generating, printing and handling + RSA-PSS and Ed25519 keys and certificates. + * certtool: the parameters --rsa, --dsa and --ecdsa to + - -generate-privkey are now deprecated, replaced by the + - -key-type option. + * p11tool: The --generate-rsa, --generate-ecc and --generate-dsa + options were replaced by the --generate-privkey option. + * psktool: Generate 256-bit keys by default. + * gnutls-server: Increase request buffer size to 16kb, and added + the --alpn and --alpn-fatal options, allowing testing of ALPN + negotiation. + * Enables FIPS 140-2 mode during build + +- Buildrequire iproute2: the test suite calls /usr/bin/ss and as + such we have to ensure to pull it in. + +- GnuTLS 3.5.15: + * libgnutls: Disable hardware acceleration on aarch64/ilp32 mode + * certtool: Keys with provable RSA and DSA parameters are now + only exported in PKCS#8 form + +- RPM group fix. Diversification of summaries. +- Avoid aims and future plans in description. Say what it does now. + +- Drop the deprecated openssl compat ; discussed and suggested by + vcizek +- Cleanup a bit with spec-cleaner + +- GnuTLS 3.5.14: + * Handle specially HSMs which request explicit authentication + * he GNUTLS_PKCS11_OBJ_FLAG_LOGIN will force a login on HSMs + * do not set leading zeros when copying integers on HSMs + * Fix issue discovering certain OCSP signers, and improved the + discovery of OCSP signer in the case where the Subject Public + Key identifier field matches + * ensure OCSP responses are saved with --save-ocsp even if + certificate verification fails. + +- GnuTLS 3.5.13: + * libgnutls: fixed issue with AES-GCM in-place encryption and + decryption in aarch64 + * libgnutls: no longer parse the ResponseID field of the status + response TLS extension. The field is not used by GnuTLS nor is + made available to calling applications. That addresses a null + pointer dereference on server side caused by packets containing + the ResponseID field. GNUTLS-SA-2017-4, bsc#1043398 + * libgnutls: tolerate certificates which do not have strict DER + time encoding. It is possible using 3rd party tools to generate + certificates with time fields that do not conform to DER + requirements. Since 3.4.x these certificates were rejected and + cannot be used with GnuTLS, however that caused problems with + existing private certificate infrastructures, which were + relying on such certificates. Tolerate reading and using these + certificates. + * minitasn1: updated to libtasn1 4.11. + * certtool: allow multiple certificates to be used in --p7-sign + with the --load-certificate option + +- GnuTLS 3.5.12: + * libgnutls: gnutls_x509_crt_check_hostname2() no longer matches + IP addresses against DNS fields of certificate (CN or DNSname). + The previous behavior was to tolerate some misconfigured + servers, but that was non-standard and skipped any IP + constraints present in higher level certificates. + * libgnutls: when converting to IDNA2008, fallback to IDNA2003 + (i.e., transitional encoding) if the domain cannot be converted. + That provides maximum compatibility with browsers like firefox + that perform the same conversion. + * libgnutls: fix issue in RSA-PSK client callback which resulted + in no username being sent to the peer + * libgnutls: fix regression causing stapled extensions in trust + modules not to be considered. + * certtool: introduced the email_protection_key option. This + option was introduced in documentation for certtool without an + implementation of it. It is a shortcut for option + 'key_purpose_oid = 1.3.6.1.5.5.7.3.4'. + * certtool: made printing of key ID and key PIN consistent + between certificates, public keys, and private keys. That is + the private key printing now uses the same format as the rest. + * gnutls-cli: introduced the --sni-hostname option. This allows + overriding the hostname advertised to the peer. + +- skip trust-store tests to avoid build cycle with + ca-certificates-mozilla, add gnutls-3.5.11-skip-trust-store-tests.patch + +- GnuTLS 3.5.11: + * gnutls.pc: do not include libtool options into Libs.private. + * libgnutls: Fixed issue when rehandshaking without a client certificate in + a session which initially used one + * libgnutls: Addressed read of 4 bytes past the end of buffer in OpenPGP + certificate parsing (bsc#1038337) + * libgnutls: Introduced locks in gnutls_pkcs11_privkey_t structure access. + That allows PKCS#11 operations such as signing to be performed with the + same object from multiple threads. + * libgnutls: when disabling OpenPGP authentication, the resulting library + is ABI compatible (will openpgp related functions being stubs that fail + on invocation). + +- call gzip -n to make build fully reproducible + +- update to 3.5.10 + * addresses GNUTLS-SA-2017-3 CVE-2017-7869 bsc#1034173 + * gnutls.pc: do not include libidn2 in Requires.private + * libgnutls: optimized access to subject alternative names (SANs) in parsed + certificates + * libgnutls: Print the key PIN value used by the HPKP protocol as per RFC7469 + when printing certificate information. + * libgnutls: gnutls_ocsp_resp_verify_direct() and gnutls_ocsp_resp_verify() + flags can be set from the gnutls_certificate_verify_flags enumeration. + This allows the functions to pass the same flags available for certificates + to the verification function (e.g., GNUTLS_VERIFY_DISABLE_TIME_CHECKS or + GNUTLS_VERIFY_ALLOW_BROKEN). + * libgnutls: gnutls_store_commitment() can accept flag + GNUTLS_SCOMMIT_FLAG_ALLOW_BROKEN. This is to allow the function to operate + in applications which use SHA1 for example, after SHA1 is deprecated. + * certtool: No longer ignore the 'add_critical_extension' template option if + the 'add_extension' option is not present. + * gnutls-cli: Added LMTP, POP3, NNTP, Sieve and PostgreSQL support to the + starttls-proto command- drop gnutls-3.5.9-pkgconfig.patch (upstream) +- drop gnutls-3.5.9-pkgconfig.patch (upstream) +- remove unknown --disable-srp flag (bsc#901857) + +- disable the deprecated OpenPGP authentication support + * see https://gitlab.com/gnutls/gnutls/issues/102 +- add gnutls-broken-openpgp-tests.patch + +- GnuTLS 3.5.9: + * libgnutls: OpenPGP references removed, functionality deprecated + * libgnutls: Improve detection of AVX support + * libgnutls: Add support for IDNA2008 with libidn2 FATE#321897 + * p11tool: re-use ID from corresponding objects when writing + certificates. + * API and ABI modifications: + gnutls_idna_map: Added + gnutls_idna_reverse_map: Added +- prevent pkgconfig issues due to libidn2 when building with GnuTLS + add gnutls-3.5.9-pkgconfig.patch + +- Version 3.5.8 (released 2016-01-09) + * libgnutls: Ensure that multiple calls to the gnutls_set_priority_* + functions will not leave the verification profiles field to an + undefined state. The last call will take precedence. + * libgnutls: Ensure that GNUTLS_E_DECRYPTION_FAIL will be returned + by PKCS#8 decryption functions when an invalid key is provided. This + addresses regression on decrypting certain PKCS#8 keys. + * libgnutls: Introduced option to override the default priority string + used by the library. The intention is to allow support of system-wide + priority strings (as set with --with-system-priority-file). The + configure option is --with-default-priority-string. + * libgnutls: Require a valid IV size on all ciphers for PKCS#8 decryption. + This prevents crashes when decrypting malformed PKCS#8 keys. + * libgnutls: Fix crash on the loading of malformed private keys with certain + parameters set to zero. + * libgnutls: Fix double free in certificate information printing. If the PKIX + extension proxy was set with a policy language set but no policy specified, + that could lead to a double free. + * libgnutls: Addressed memory leaks in client and server side error paths + (issues found using oss-fuzz project) + * libgnutls: Addressed memory leaks in X.509 certificate printing error paths + (issues found using oss-fuzz project) + * libgnutls: Addressed memory leaks and an infinite loop in OpenPGP certificate + parsing. Fixes by Alex Gaynor. (issues found using oss-fuzz project) + * libgnutls: Addressed invalid memory accesses in OpenPGP certificate parsing. + (issues found using oss-fuzz project) +- security issues fixed: GNUTLS-SA-2017-1 GNUTLS-SA-2017-2 + +- GnuTLS 3.5.7, the next stable branch, with the following + highlights: + * SHA3 as a certificate signature algorithm + * X25519 (formerly curve25519) for ephemeral EC diffie-hellman + key exchange + * TLS false start + * New APIs to access the Shawe-Taylor-based provable RSA and DSA + parameter generation + * Prevent the change of identity on rehandshakes by default + +- GnuTLS 3.4.17: + * libgnutls: Introduced time and constraints checks in the end + certificate in the gnutls_x509_crt_verify_data2() and + gnutls_pkcs7_verify_direct() functions. + * libgnutls: Set limits on the maximum number of alerts handled. + That is, applications using gnutls could be tricked into an + busy loop if the peer sends continuously alert messages. + Applications which set a maximum handshake time (via + gnutls_handshake_set_timeout) will eventually recover but + others may remain in a busy loops indefinitely. This is related + but not identical to CVE-2016-8610, due to the difference in + alert handling of the libraries (gnutls delegates that handling + to applications). boo#1005879 + * libgnutls: Enhanced the PKCS#7 parser to allow decoding old + (pre-rfc5652) structures with arbitrary encapsulated content. + * libgnutls: Backported cipher priorities order from 3.5.x branch + That adds CHACHA20-POLY1305 ciphersuite to SECURE priority + strings. + * certtool: When exporting a CRQ in DER format ensure no text data + are intermixed. + * API and ABI modifications: + gnutls_pkcs7_get_embedded_data_oid: Added +- includes changes from 3.4.16: + * libgnutls: Ensure proper cleanups on + gnutls_certificate_set_*key() failures due to key mismatch. + This prevents leaks or double freeing on such failures. + * libgnutls: Increased the maximum size of the handshake message + hash. This will allow the library to cope better with larger + packets, as the ones offered by current TLS 1.3 drafts. + * libgnutls: Allow to use client certificates despite them + containing disallowed algorithms for a session. That allows for + example a client to use DSA-SHA1 due to his old DSA + certificate, without requiring him to enable DSA-SHA1 (and thus + make it acceptable for the server's certificate). + * guile: Backported all improvements from 3.5.x branch. + * guile: Update code to the I/O port API of Guile >= 2.1.4 + This makes sure the GnuTLS bindings will work with the + forthcoming 2.2 stable series of Guile, of which 2.1 is a + preview. + +- GnuTLS 3.4.15: + * libgnutls: Corrected the comparison of the serial size in OCSP + response. Previously the OCSP certificate check wouldn't verify + the serial length and could succeed in cases it shouldn't + (GNUTLS-SA-2016-3). + * libgnutls: Fixes in gnutls_x509_crt_list_import2, which was + ignoring flags if all certificates in the list fit within the + initially allocated memory. + * libgnutls: Corrected issue which made + gnutls_certificate_get_x509_crt() to return invalid pointers + when returned more than a single certificate. + * libgnutls: Fix gnutls_pkcs12_simple_parse to always extract the + complete chain. + * libgnutls: Added support for decrypting PKCS#8 files which use + the HMAC-SHA256 as PRF. + * libgnutls: Addressed issue with PKCS#11 signature generation on + ECDSA keys. The signature is now written as unsigned integers + into the DSASignatureValue structure. Previously signed + integers could be written depending on what the underlying + module would produce. Addresses #122. +- fix build error for 13.2, 42.1 and 42.2 + +- GnuTLS 3.4.14: + * libgnutls: Address issue when utilizing the p11-kit trust store + for certificate verification (GNUTLS-SA-2016-2, boo#988276) + * libgnutls: Fixed DTLS handshake packet reconstruction. + * libgnutls: Fixed issues with PKCS#11 reading of sensitive + objects from SafeNet Network HSM + * libgnutls: Corrected the writing of PKCS#11 CKA_SERIAL_NUMBER +- drop upstreamed + 0001-tests-use-datefudge-in-name-constraints-test.patch + +- Fix a problem with expired test certificate by using datefudge + (boo#987139) + * add 0001-tests-use-datefudge-in-name-constraints-test.patch + +- Version 3.4.13 (released 2016-06-06) + * libgnutls: Consider the SSLKEYLOGFILE environment to be compatible with + NSS instead of using a separate variable; in addition append any keys to + the file instead of overwriting it. + * libgnutls: use secure_getenv() where available to obtain environment + variables. Addresses GNUTLS-SA-2016-1. +- Version 3.4.12 (released 2016-05-20) + * libgnutls: The CHACHA20-POLY1305 ciphersuite is enabled by default. This + cipher is prioritized after AES-GCM. + * libgnutls: Fixes in gnutls_privkey_import_ecc_raw(). + * libgnutls: Fixed gnutls_pkcs11_get_raw_issuer() usage with the + GNUTLS_PKCS11_OBJ_FLAG_OVERWRITE_TRUSTMOD_EXT flag. Previously that + operation could fail on certain PKCS#11 modules. + * libgnutls: gnutls_pkcs11_obj_import_url() and gnutls_x509_crt_import_url() + can accept the GNUTLS_PKCS11_OBJ_FLAG_OVERWRITE_TRUSTMOD_EXT flag. + * libgnutls: gnutls_certificate_set_key() was enhanced to import the DNS + name of the certificates if the provided names are NULL. + * libgnutls: when receiving SNI names, only save and expose to application + the supported DNS names. + * libgnutls: when importing the certificate names at the + gnutls_certificate_set* functions, only consider the CN as a fallback + if DNS names are provided via the alternative name extension. + * gnutls-cli: on OCSP verification do not fail if we have a single valid + reply. Report and reproducer by Thomas Klute. + * libgnutls: The GNUTLS_KEYLOGFILE environment variable can be used to + log session keys in client side. These session keys are compatible with + the NSS Key Log Format and can be used to decrypt the session for + debugging using wireshark. + +- enabled guile support +- removed duplicates + +- Updated to 3.4.11 + * Version 3.4.11 (released 2016-04-11) + * * libgnutls: Fixes in gnutls_record_get/set_state() with DTLS. + Reported by Fridolin Pokorny. + * * libgnutls: Fixes in DSA key generation under PKCS #11. Report and + patches by Jan Vcelak. + * * libgnutls: Corrected behavior of ALPN extension parsing during + session resumption. Report and patches by Yuriy M. Kaminskiy. + * * libgnutls: Corrected regression (since 3.4.0) in + gnutls_server_name_set() which caused it not to accept non-null- + terminated hostnames. Reported by Tim Ruehsen. + * * libgnutls: Corrected printing of the IP Adress name constraints. + * * ocsptool: use HTTP/1.0 for requests. This avoids issue with servers + serving chunk encoding which ocsptool doesn't support. Reported by + Thomas Klute. + * * certtool: do not require a CA for OCSP signing tag. This follows the + recommendations in RFC6960 in 4.2.2.2 which allow a CA to delegate + OCSP signing to another certificate without requiring it to be a CA. + Reported by Thomas Klute. + * Version 3.4.10 (released 2016-03-03) + * * libgnutls: Eliminated issues preventing buffers more than 2^32 bytes + to be used with hashing functions. + * * libgnutls: Corrected leaks and other issues in + gnutls_x509_crt_list_import(). + * * libgnutls: Fixes in DSA key handling for PKCS #11. Report and + patches by Jan Vcelak. + * * libgnutls: Several fixes to prevent relying on undefined behavior + of C (found with libubsan). + * Version 3.4.9 (released 2016-02-03) + * * libgnutls: Corrected ALPN protocol negotiation. Before GnuTLS would + negotiate the last commonly supported protocol, rather than the + first. Reported by Remi Denis-Courmont (#63). + * * libgnutls: Tolerate empty DN fields in informational output + functions. + * * libgnutls: Corrected regression causes by incorrect fix in + gnutls_x509_ext_export_key_usage() at 3.4.8 release. + +- follow the work in the unbound package and use the + libunbound-devel symbol for the buildrequires. we override it for + the distro build with libunbound-devel-mini to avoid build loops. + +- reenable dane support, require unbound-devel bsc#964346 +- split out libgnutls-dane-devel to try to avoid build cycle. + +- Update to 3.4.8 + All changes since 3.4.4: + * libgnutls: Corrected memory leak in gnutls_pubkey_import_privkey() + when used with PKCS #11 keys. + * libgnutls: For DSA and ECDSA keys in PKCS #11 objects, import + their public keys from either a public key object or a certificate. + That is, because private keys do not contain all the required + parameters for a direct import. + * libgnutls: Fixed issue when writing ECDSA private keys in PKCS #11 + tokens. + * libgnutls: Fixed out-of-bounds read in + gnutls_x509_ext_export_key_usage() + * libgnutls: The CHACHA20-POLY1305 ciphersuites were updated to + conform to draft-ietf-tls-chacha20-poly1305-02. + * libgnutls: Several fixes in PKCS #7 signing which improve + compatibility with the MacOSX tools. + * libgnutls: The max-record extension not negotiated on DTLS. This + resolves issue with the max-record being negotiated but ignored. + * certtool: Added the --p7-include-cert and --p7-show-data options. + * libgnutls: Properly require TLS 1.2 in all CBC-SHA256 and CBC-SHA384 + ciphersuites. This solves an interoperability issue with openssl. + * libgnutls: Corrected the setting of salt size in + gnutls_pkcs12_mac_info(). + * libgnutls: On a rehandshake allow switching from anonymous to ECDHE + and DHE ciphersuites. + * libgnutls: Corrected regression from 3.3.x which prevented + ARCFOUR128 from using arbitrary key sizes. + * libgnutls: Added GNUTLS_SKIP_GLOBAL_INIT macro to allow programs + skipping the implicit global initialization. + * gnutls.pc: Don't include libtool specific options to link flags. + * tools: Better support for FTP AUTH TLS negotiation + * libgnutls: Added new simple verification functions. That avoids the + need to install a callback to perform certificate verification. See + doc/examples/ex-client-x509.c for usage. + * libgnutls: Introduced the security parameter 'future' which is at + the 256-bit level of security, and 'ultra' was aligned to its + documented size at 192-bits. + * libgnutls: When writing a certificate into a PKCS #11 token, ensure + that CKA_SERIAL_NUMBER and CKA_ISSUER are written. + * libgnutls: Allow the presence of legacy ciphers and key exchanges in + priority strings and consider them a no-op. + * libgnutls: Handle the extended master secret as a mandatory + extension. That fixes incompatibility issues with Chromium (#45). + * libgnutls: Added the ability to copy a public key into a PKCS #11 + token. + * tools: Added support for LDAP and XMPP negotiation for STARTTLS. + * p11tool: Allow writing a public key into a PKCS #11 token. + * certtool: Key generation security level was switched to HIGH. That + is, by default the tool generates 3072 bit keys for RSA and DSA. + * libgnutls: When re-importing CRLs to a trust list ensure that there + no duplicate entries. + * certtool: Removed any arbitrary limits imposed on input file sizes + and maximum number of certificates imported. + * certtool: Allow specifying fixed dates on CRL generation. + * gnutls-cli-debug: Added check for inappropriate fallback support + (RFC7507). + +- Update to 3.4.4 + This update contains a fix for a denial of service vulnerability: + * Allow the parsing of very long DNs. Also fixes double free + in DN decoding [GNUTLS-SA-2015-3]. boo#941794 CVE-2015-6251 + Other changes: + * Add high level API (gnutls_prf_rfc5705) to access the PRF as + specified by RFC5705. + * Link to trousers (TPM library) dynamically when this + functionality is requested. (disabled in SUSE package) + * Fix issue with server side sending the status request extension + even when not requested. + * Add support for RFC7507 by introducing the %FALLBACK_SCSV + priority string option. + * gnutls_pkcs11_privkey_generate2() will store the generated + public key, unless the GNUTLS_PKCS11_OBJ_FLAG_NO_STORE_PUBKEY + flag is specified. + * Correct regression from 3.4.3 in loading PKCS #8 keys as fallback. + * API and ABI modifications: + gnutls_prf_rfc5705: Added + gnutls_hex_encode2: Added + gnutls_hex_decode2: Added +- build with autogen for libopts compatibility +- fix failures in test suite, add upstream commits + 0001-certtool-lifted-limits-on-file-size-to-load.patch + 0002-certtool-eliminated-memory-leaks-due-to-new-cert-loa.patch + +- update to 3.4.3 + * * libgnutls: Follow closely RFC5280 recommendations and use UTCTime for + dates prior to 2050. + * * libgnutls: Force 16-byte alignment to all input to ciphers (previously it + was done only when cryptodev was enabled). + * * libgnutls: Removed support for pthread_atfork() as it has undefined + semantics when used with dlopen(), and may lead to a crash. + * * libgnutls: corrected failure when importing plain files + with gnutls_x509_privkey_import2(), and a password was provided. + * * libgnutls: Don't reject certificates if a CA has the URI or IP address + name constraints, and the end certificate doesn't have an IP address + name or a URI set. + * * libgnutls: set and read the hint in DHE-PSK and ECDHE-PSK ciphersuites. + * * p11tool: Added --list-token-urls option, and print the token module name + in list-tokens. + * * libgnutls: DTLS blocking API is more robust against infinite blocking, + and will notify of more possible timeouts. + * * libgnutls: corrected regression with Camellia-256-GCM cipher. Reported + by Manuel Pegourie-Gonnard. + * * libgnutls: Introduced the GNUTLS_NO_SIGNAL flag to gnutls_init(). That + allows to disable SIGPIPE for writes done within gnutls. + * * libgnutls: Enhanced the PKCS #7 API to allow signing and verification + of structures. API moved to gnutls/pkcs7.h header. + * * certtool: Added options to generate PKCS #7 bundles and signed + structures. +- includes changes from 3.4.2: + * DTLS blocking API is more robust against infinite blocking, + and will notify of more possible timeouts. + * Correct regression with Camellia-256-GCM cipher. + * Introduce the GNUTLS_NO_SIGNAL flag to gnutls_init(). That + allows to disable SIGPIPE for writes done within gnutls. + * Enhance the PKCS #7 API to allow signing and verification + of structures. Move API to gnutls/pkcs7.h header. + * certtool: Added options to generate PKCS #7 bundles and signed + structures. + +- disable testsuite run against valgrind on aarch64 + +- Updated to 3.4.1 (released 2015-05-03) + * * libgnutls: gnutls_certificate_get_ours: will return the certificate even + if a callback was used to send it. + * * libgnutls: Check for invalid length in the X.509 version field. Without + the check certificates with invalid length would be detected as having an + arbitrary version. Reported by Hanno Böck. + * * libgnutls: Handle DNS name constraints with a leading dot. Patch by + Fotis Loukos. + * * libgnutls: Updated system-keys support for windows to compile in more + versions of mingw. Patch by Tim Kosse. + * * libgnutls: Fix for MD5 downgrade in TLS 1.2 signatures. Reported by + Karthikeyan Bhargavan [GNUTLS-SA-2015-2]. bsc#929690 + * * libgnutls: Reverted: The gnutls_handshake() process will enforce a timeout + by default. That caused issues with non-blocking programs. + * * certtool: It can generate SHA256 key IDs. + * * gnutls-cli: fixed crash in --benchmark-ciphers. Reported by James Cloos. + * * API and ABI modifications: gnutls_x509_crt_get_pk_ecc_raw: Added +- gnutls-fix-double-mans.patch: fixed upstream + +- Disable buggy valgrind on armv7l + +- updated to 3.4.0 (released 2015-04-08) + * * libgnutls: Added support for AES-CCM and AES-CCM-8 (RFC6655 and RFC7251) + ciphersuites. The former are enabled by default, the latter need to be + explicitly enabled, since they reduce the overall security level. + * * libgnutls: Added support for Chacha20-Poly1305 ciphersuites following + draft-mavrogiannopoulos-chacha-tls-05 and draft-irtf-cfrg-chacha20-poly1305-10. + That is currently provided as technology preview and is not enabled by + default, since there are no assigned ciphersuite points by IETF and there + is no guarrantee of compatibility between draft versions. The ciphersuite + priority string to enable it is "+CHACHA20-POLY1305". + * * libgnutls: Added support for encrypt-then-authenticate in CBC + ciphersuites (RFC7366 -taking into account its errata text). This is + enabled by default and can be disabled using the %NO_ETM priority + string. + * * libgnutls: Added support for the extended master secret + (triple-handshake fix) following draft-ietf-tls-session-hash-02. + * * libgnutls: Added a new simple and hard to misuse AEAD API (crypto.h). + * * libgnutls: SSL 3.0 is no longer included in the default priorities + list. It has to be explicitly enabled, e.g., with a string like + "NORMAL:+VERS-SSL3.0". + * * libgnutls: ARCFOUR (RC4) is no longer included in the default priorities + list. It has to be explicitly enabled, e.g., with a string like + "NORMAL:+ARCFOUR-128". + * * libgnutls: DSA signatures and DHE-DSS are no longer included in the + default priorities list. They have to be explicitly enabled, e.g., with + a string like "NORMAL:+DHE-DSS:+SIGN-DSA-SHA256:+SIGN-DSA-SHA1". The + DSA ciphersuites were dropped because they had no deployment at all + on the internet, to justify their inclusion. + * * libgnutls: The priority string EXPORT was completely removed. The string + was already defunc as support for the EXPORT ciphersuites was removed in + GnuTLS 3.2.0. + * * libgnutls: Added API to utilize system specific private keys in + "gnutls/system-keys.h". It is currently provided as technology preview + and is restricted to windows CNG keys. + * * libgnutls: gnutls_x509_crt_check_hostname() and friends will use + RFC6125 comparison of hostnames. That introduces a dependency on libidn. + * * libgnutls: Depend on p11-kit 0.23.1 to comply with the final + PKCS #11 URLs draft (draft-pechanec-pkcs11uri-21). + * * libgnutls: Depend on nettle 3.1. + * * libgnutls: Use getrandom() or getentropy() when available. That + avoids the complexity of file descriptor handling and issues with + applications closing all open file descriptors on startup. + * * libgnutls: Use pthread_atfork() to detect fork when available. + * * libgnutls: The gnutls_handshake() process will enforce a timeout by + default. + * * libgnutls: If a key purpose (extended key usage) is specified for verification, + it is applied into intermediate certificates. The verification result + GNUTLS_CERT_PURPOSE_MISMATCH is also introduced. + * * libgnutls: When gnutls_certificate_set_x509_key_file2() is used in + combination with PKCS #11, or TPM URLs, it will utilize the provided + password as PIN if required. That removes the requirement for the + application to set a callback for PINs in that case. + * * libgnutls: priority strings VERS-TLS-ALL and VERS-DTLS-ALL are + restricted to the corresponding protocols only, and the VERS-ALL + string is introduced to catch all possible protocols. + * * libgnutls: Added helper functions to obtain information on PKCS #8 + structures. + * * libgnutls: Certificate chains which are provided to gnutls_certificate_credentials_t + will automatically be sorted instead of failing with GNUTLS_E_CERTIFICATE_LIST_UNSORTED. + * * libgnutls: Added functions to export and set the record state. That + allows for gnutls_record_send() and recv() to be offloaded (to kernel, + hardware or any other subsystem). + * * libgnutls: Added the ability to register application specific URL + types, which express certificates and keys using gnutls_register_custom_url(). + * * libgnutls: Added API to override existing ciphers, digests and MACs, e.g., + to override AES-GCM using a system-specific accelerator. That is, (crypto.h) + gnutls_crypto_register_cipher(), gnutls_crypto_register_aead_cipher(), + gnutls_crypto_register_mac(), and gnutls_crypto_register_digest(). + * * libgnutls: Added gnutls_ext_register() to register custom extensions. + Contributed by Thierry Quemerais. + * * libgnutls: Added gnutls_supplemental_register() to register custom + supplemental data handshake messages. Contributed by Thierry Quemerais. + * * libgnutls-openssl: it is no longer built by default. + * * certtool: Added --p8-info option, which will print PKCS #8 information + even if the password is not available. + * * certtool: --key-info option will print PKCS #8 encryption information + when available. + * * certtool: Added the --key-id and --fingerprint options. + * * certtool: Added the --verify-hostname, --verify-email and --verify-purpose + options to be used in certificate chain verification, to simulate verification + for specific hostname and key purpose (extended key usage). + * * certtool: --p12-info option will print PKCS #12 MAC and cipher information + when available. + * * certtool: it will print the A-label (ACE) names in addition to UTF-8. + * * p11tool: added options --set-id and --set-label. + * * gnutls-cli: added options --priority-list and --save-cert. + * * guile: Deprecated priority API has been removed. The old priority API, + which had been deprecated for some time, is now gone; use 'set-session-priorities!' + instead. + * * guile: Remove RSA parameters and related procedures. This API had been + deprecated. + * * guile: Fix compilation on MinGW. Previously only the static version of the + 'guile-gnutls-v-2' library would be built, preventing dynamic loading from Guile. + +- updated to 3.3.13 (released 2015-03-30) + * * libgnutls: When retrieving OCTET STRINGS from PKCS #12 ContentInfo + structures use BER to decode them (requires libtasn1 4.3). That allows + to decode some more complex structures. + * * libgnutls: When an end-certificate with no name is present and there + are CA name constraints, don't reject the certificate. This follows RFC5280 + advice closely. Reported by Fotis Loukos. + * * libgnutls: Fixed handling of supplemental data with types > 255. + Patch by Thierry Quemerais. + * * libgnutls: Fixed double free in the parsing of CRL distribution points certificate + extension. Reported by Robert Święcki. + * * libgnutls: Fixed a two-byte stack overflow in DTLS 0.9 protocol. That + protocol is not enabled by default (used by openconnect VPN). + * * libgnutls: The maximum user data send size is set to be the same for + block and non-block ciphersuites. This addresses a regression with wine: + https://bugs.winehq.org/show_bug.cgi?id=37500 + * * libgnutls: When generating PKCS #11 keys, set CKA_ID, CKA_SIGN, + and CKA_DECRYPT when needed. + * * libgnutls: Allow names with zero size to be set using + gnutls_server_name_set(). That will disable the Server Name Indication. + Resolves issue with wine: https://gitlab.com/gnutls/gnutls/issues/2 +- new main library major version .so.30 +- requires new libnettle >= 3.1, p11-kit-devel >= 0.23.1 +- Now need to configure --enable-openssl-compatibility (might go away) +- added gnutls-fix-double-mans.patch: avoid double installing manpages +- dropped gnutls-3.0.26-skip-test-fwrite.patch: does not seem to be needed + anymore +- install_info_delete moved from %postun to %preun + +- for DANE support, use bcond_with +- for tpm support, same +- note p11-kit >= 0.20.7 requirement +- note libtasn1 3.9 requirement (built-in lib used otherwise) + +- disable trousers and unbound again for now, as it causes too long + build cycles. + +- added unbound-devel (for DANE) and trousers-devel (for TPM support) +- removed now upstreamed gnutls-implement-trust-store-dir-3.2.8.diff +- libgnutls-dane0 new library added +- updated to 3.3.13 (released 2015-02-25) + * * libgnutls: Enable AESNI in GCM on x86 + * * libgnutls: Fixes in DTLS message handling + * * libgnutls: Check certificate algorithm consistency, i.e., + check whether the signatureAlgorithm field matches the signature + field inside TBSCertificate. + * * gnutls-cli: Fixes in OCSP verification. +- Version 3.3.12 (released 2015-01-17) + * * libgnutls: When negotiating TLS use the lowest enabled version in + the client hello, rather than the lowest supported. In addition, do + not use SSL 3.0 as a version in the TLS record layer, unless SSL 3.0 + is the only protocol supported. That addresses issues with servers that + immediately drop the connection when the encounter SSL 3.0 as the record + version number. See: + http://lists.gnutls.org/pipermail/gnutls-help/2014-November/003673.html + * * libgnutls: Corrected encoding and decoding of ANSI X9.62 parameters. + * * libgnutls: Handle zero length plaintext for VIA PadLock functions. + This solves a potential crash on AES encryption for small size plaintext. + Patch by Matthias-Christian Ott. + * * libgnutls: In DTLS don't combine multiple packets which exceed MTU. + Reported by Andreas Schultz. https://savannah.gnu.org/support/?108715 + * * libgnutls: In DTLS decode all handshake packets present in a record + packet, in a single pass. Reported by Andreas Schultz. + https://savannah.gnu.org/support/?108712 + * * libgnutls: When importing a CA file with a PKCS #11 URL, simply + import the certificates, if the URL specifies objects, rather than + treating it as trust module. + * * libgnutls: When importing a PKCS #11 URL and we know the type of + object we are importing, don't require the object type in the URL. + * * libgnutls: fixed openpgp authentication when gnutls_certificate_set_retrieve_function2 + was used by the server. + * * certtool: --pubkey-info will also attempt to load a public key from stdin. + * * gnutls-cli: Added --starttls-proto option. That allows to specify a + protocol for starttls negotiation. +- Version 3.3.11 (released 2014-12-11) + * * libgnutls: Corrected regression introduced in 3.3.9 related to + session renegotiation. Reported by Dan Winship. + * * libgnutls: Corrected parsing issue with OCSP responses. +- Version 3.3.10 (released 2014-11-10) + * * libgnutls: Refuse to import v1 or v2 certificates that contain + extensions. + * * libgnutls: Fixes in usage of PKCS #11 token callback + * * libgnutls: Fixed bug in gnutls_x509_trust_list_get_issuer() when used + with a PKCS #11 trust module and without the GNUTLS_TL_GET_COPY flag. + Reported by David Woodhouse. + * * libgnutls: Removed superfluous random generator refresh on every call + of gnutls_deinit(). That reduces load and usage of /dev/urandom. + * * libgnutls: Corrected issue in export of ECC parameters to X9.63 format. + Reported by Sean Burford [GNUTLS-SA-2014-5]. + * * libgnutls: When gnutls_global_init() is called for a second time, it + will check whether the /dev/urandom fd kept is still open and matches + the original one. That behavior works around issues with servers that + close all file descriptors. + * * libgnutls: Corrected behavior with PKCS #11 objects that are marked + as CKA_ALWAYS_AUTHENTICATE. + * * certtool: The default cipher for PKCS #12 structures is 3des-pkcs12. + That option is more compatible than AES or RC4. +- Version 3.3.9 (released 2014-10-13) + * * libgnutls: Fixes in the transparent import of PKCS #11 certificates. + Reported by Joseph Peruski. + * * libgnutls: Fixed issue with unexpected non-fatal errors resetting the + handshake's hash buffer, in applications using the heartbeat extension + or DTLS. Reported by Joeri de Ruiter. + * * libgnutls: When both a trust module and additional CAs are present + account the latter as well; reported by David Woodhouse. + * * libgnutls: added GNUTLS_TL_GET_COPY flag for + gnutls_x509_trust_list_get_issuer(). That allows the function to be used + in a thread safe way when PKCS #11 trust modules are in use. + * * libgnutls: fix issue in DTLS retransmission when session tickets + were in use; reported by Manuel Pégourié-Gonnard. + * * libgnutls-dane: Do not require the CA on a ca match to be direct CA. + * * libgnutls: Prevent abort() in library if getrusage() fails. Try to + detect instead which of RUSAGE_THREAD and RUSAGE_SELF would work. + * * guile: new 'set-session-server-name!' procedure; see the manual for + details. + * * certtool: The authority key identifier will be set in a certificate only + if the CA's subject key identifier is set. +- Version 3.3.8 (released 2014-09-18) + * * libgnutls: Updates in the name constraints checks. No name constraints + will be checked for intermediate certificates. As our support for name + constraints is limited to e-mail addresses in DNS names, it is pointless + to check them on intermediate certificates. + * * libgnutls: Fixed issues in PKCS #11 object listing. Previously multiple + object listing would fail completely if a single object could not be exported. + * * libgnutls: Improved the performance of PKCS #11 object listing/retrieving, + by retrieving them in large batches. Report and suggestion by David + Woodhouse. + * * libgnutls: Fixed issue with certificates being sanitized by gnutls prior + to signature verification. That resulted to certain non-DER compliant modifications + of valid certificates, being corrected by libtasn1's parser and restructured as + the original. Issue found and reported by Antti Karjalainen and Matti Kamunen from + Codenomicon. + * * libgnutls: Fixes in gnutls_x509_crt_set_dn() and friends to properly handle + strings with embedded spaces and escaped commas. + * * libgnutls: when comparing a CA certificate with the trusted list compare + the name and key only instead of the whole certificate. That is to handle + cases where a CA certificate was superceded by a different one with the same + name and the same key. + * * libgnutls: when verifying a certificate against a p11-kit trusted + module, use the attached extensions in the module to override the CA's + extensions (that requires p11-kit 0.20.7). + * * libgnutls: In DTLS prevent sending zero-size fragments in certain cases + of MTU split. Reported by Manuel Pégourié-Gonnard. + * * libgnutls: Added gnutls_x509_trust_list_verify_crt2() which allows + verifying using a hostname and a purpose (extended key usage). That + enhances PKCS #11 trust module verification, as it can now check the purpose + when this function is used. + * * libgnutls: Corrected gnutls_x509_crl_verify() which would always report + a CRL signature as invalid. Reported by Armin Burgmeier. + * * libgnutls: added option --disable-padlock to allow disabling the padlock + CPU acceleration. + * * p11tool: when listing tokens, list their type as well. + * * p11tool: when listing objects from a trust module print any attached + extensions on certificates. +- Version 3.3.7 (released 2014-08-24) + * * libgnutls: Added function to export the public key of a PKCS #11 + private key. Contributed by Wolfgang Meyer zu Bergsten. + * * libgnutls: Explicitly set the exponent in PKCS #11 key generation. + That improves compatibility with certain PKCS #11 modules. Contributed by + Wolfgang Meyer zu Bergsten. + * * libgnutls: When generating a PKCS #11 private key allow setting + the WRAP/UNWRAP flags. Contributed by Wolfgang Meyer zu Bergsten. + * * libgnutls: gnutls_pkcs11_privkey_t will always hold an open session + to the key. + * * libgnutls: bundle replacements of inet_pton and inet_aton if not + available. + * * libgnutls: initialize parameters variable on PKCS #8 decryption. + * * libgnutls: gnutls_pkcs12_verify_mac() will not fail in other than SHA1 + algorithms. + * * libgnutls: gnutls_x509_crt_check_hostname() will follow the RFC6125 + requirement of checking the Common Name (CN) part of DN only if there is + a single CN present in the certificate. + * * libgnutls: The environment variable GNUTLS_FORCE_FIPS_MODE can be used + to force the FIPS mode, when set to 1. + * * libgnutls: In DTLS ignore only errors that relate to unexpected packets + and decryption failures. + * * p11tool: Added --info parameter. + * * certtool: Added --mark-wrap parameter. + * * danetool: --check will attempt to retrieve the server's certificate + chain and verify against it. + * * danetool/gnutls-cli-debug: Added --app-proto parameters which can + be used to enforce starttls (currently only SMTP and IMAP) on the connection. + * * danetool: Added openssl linking exception, to allow linking + with libunbound. +- Version 3.3.6 (released 2014-07-23) + * * libgnutls: Use inet_ntop to print IP addresses when available + * * libgnutls: gnutls_x509_crt_check_hostname and friends will also check + IP addresses, and match documented behavior. Reported by David Woodhouse. + * * libgnutls: DSA key generation in FIPS140-2 mode doesn't allow 1024 + bit parameters. + * * libgnutls: fixed issue in gnutls_pkcs11_reinit() which prevented tokens + being usable after a reinitialization. + * * libgnutls: fixed PKCS #11 private key operations after a fork. + * * libgnutls: fixed PKCS #11 ECDSA key generation. + * * libgnutls: The GNUTLS_CPUID_OVERRIDE environment variable can be used to + explicitly enable/disable the use of certain CPU capabilities. Note that CPU + detection cannot be overriden, i.e., VIA options cannot be enabled on an Intel + CPU. The currently available options are: + 0x1: Disable all run-time detected optimizations + 0x2: Enable AES-NI + 0x4: Enable SSSE3 + 0x8: Enable PCLMUL + 0x100000: Enable VIA padlock + 0x200000: Enable VIA PHE + 0x400000: Enable VIA PHE SHA512 + * * libdane: added dane_query_to_raw_tlsa(); patch by Simon Arlott. + * * p11tool: use GNUTLS_SO_PIN to read the security officer's PIN if set. + * * p11tool: ask for label when one isn't provided. + * * p11tool: added --batch parameter to disable any interactivity. + * * p11tool: will not implicitly enable so-login for certain types of + objects. That avoids issues with tokens that require different login + types. + * * certtool/p11tool: Added the --curve parameter which allows to explicitly + specify the curve to use. +- Version 3.3.5 (released 2014-06-26) + * * libgnutls: Added gnutls_record_recv_packet() and gnutls_packet_deinit(). + These functions provide a variant of gnutls_record_recv() that avoids + the final memcpy of data. + * * libgnutls: gnutls_x509_crl_iter_crt_serial() was added as a + faster variant of gnutls_x509_crl_get_crt_serial() when coping with + very large structures. + * * libgnutls: When the decoding of a printable DN element fails, then treat + it as unknown and print its hex value rather than failing. That works around + an issue in a TURKTRST root certificate which improperly encodes the + X520countryName element. + * * libgnutls: gnutls_x509_trust_list_add_trust_file() will return the number + of certificates present in a PKCS #11 token when loading it. + * * libgnutls: Allow the post client hello callback to put the handshake on + hold, by returning GNUTLS_E_AGAIN or GNUTLS_E_INTERRUPTED. + * * certtool: option --to-p12 will now consider --load-ca-certificate + * * certtol: Added option to specify the PKCS #12 friendly name on command line. + * * p11tool: Allow marking a certificate copied to a token as a CA. +- Version 3.3.4 (released 2014-05-31) + * * libgnutls: Updated Andy Polyakov's assembly code. That prevents a + crash on certain CPUs. +- Version 3.3.3 (released 2014-05-30) + * * libgnutls: Eliminated memory corruption issue in Server Hello parsing. + Issue reported by Joonas Kuorilehto of Codenomicon. + * * libgnutls: gnutls_global_set_mutex() was modified to operate with the + new initialization process. + * * libgnutls: Increased the maximum certificate size buffer + in the PKCS #11 subsystem. + * * libgnutls: Check the return code of getpwuid_r() instead of relying + on the result value. That avoids issue in certain systems, when using + tofu authentication and the home path cannot be determined. Issue reported + by Viktor Dukhovni. + * * libgnutls-dane: Improved dane_verify_session_crt(), which now attempts to + create a full chain. This addresses points from https://savannah.gnu.org/support/index.php?108552 + * * gnutls-cli: --dane will only check the end certificate if PKIX validation + has been disabled. + * * gnutls-cli: --benchmark-soft-ciphers has been removed. That option cannot + be emulated with the implicit initialization of gnutls. + * * certtool: Allow multiple organizations and organizational unit names to + be specified in a template. + * * certtool: Warn when invalid configuration options are set to a template. + * * ocsptool: Include path in ocsp request. This resolves #108582 + (https://savannah.gnu.org/support/?108582), reported by Matt McCutchen. +- Version 3.3.2 (released 2014-05-06) + * * libgnutls: Added the 'very weak' certificate verification profile + that corresponds to 64-bit security level. + * * libgnutls: Corrected file descriptor leak on random generator + initialization. + * * libgnutls: Corrected file descriptor leak on PSK password file + reading. Issue identified using the Codenomicon TLS test suite. + * * libgnutls: Avoid deinitialization if initialization has failed. + * * libgnutls: null-terminate othername alternative names. + * * libgnutls: gnutls_x509_trust_list_get_issuer() will operate correctly + on a PKCS #11 trust list. + * * libgnutls: Several small bug fixes identified using valgrind and + the Codenomicon TLS test suite. + * * libgnutls-dane: Accept a certificate using DANE if there is at least one + entry that matches the certificate. Patch by simon [at] arlott.org. + * * libgnutls-guile: Fixed compilation issue. + * * certtool: Allow exporting a CRL on DER format. + * * certtool: The ECDSA keys generated by default use the SECP256R1 curve + which is supported more widely than the previously used SECP224R1. +- Version 3.3.1 (released 2014-04-19) + * * libgnutls: Enforce more strict checks to heartbeat messages + concerning padding and payload. Suggested by Peter Dettman. + * * libgnutls: Allow decoding PKCS #8 files with ECC parameters + from openssl. + * * libgnutls: Several small bug fixes found by coverity. + * * libgnutls: The conditionally available self-test functions + were moved to self-test.h. + * * libgnutls: Fixed issue with the check of incoming data when two + different recv and send pointers have been specified. Reported and + investigated by JMRecio. + * * libgnutls: Fixed issue in the RSA-PSK key exchange, which would + result to illegal memory access if a server hint was provided. Reported + by André Klitzing. + * * libgnutls: Fixed client memory leak in the PSK key exchange, if a + server hint was provided. + * * libgnutls: Corrected the *get_*_othername_oid() functions. +- Version 3.3.0 (released 2014-04-10) + * * libgnutls: The initialization of the library was moved to a + constructor. That is, gnutls_global_init() is no longer required + unless linking with a static library or a system that does not + support library constructors. + * * libgnutls: static libraries are not built by default. + * * libgnutls: PKCS #11 initialization is delayed to first usage. + That avoids long delays in gnutls initialization due to broken PKCS #11 + modules. + * * libgnutls: The PKCS #11 subsystem is re-initialized "automatically" + on the first PKCS #11 API call after a fork. + * * libgnutls: certificate verification profiles were introduced + that can be specified as flags to verification functions. They + are enumerations in gnutls_certificate_verification_profiles_t + and can be converted to flags for use in a verification function + using GNUTLS_PROFILE_TO_VFLAGS(). + * * libgnutls: Added the ability to read system-specific initial + keywords, if they are prefixed with '@'. That allows a compile-time + specified configuration file to be used to read pre-configured priority + strings from. That can be used to impose system specific policies. + * * libgnutls: Increased the default security level of priority + strings (NORMAL and PFS strings require at minimum a 1008 DH prime), + and set a verification profile by default. The LEGACY keyword is + introduced to set the old defaults. + * * libgnutls: Added support for the name constraints PKIX extension. + Currently only DNS names and e-mails are supported (no URIs, IPs + or DNs). + * * libgnutls: Security parameter SEC_PARAM_NORMAL was renamed to + SEC_PARAM_MEDIUM to avoid confusion with the priority string NORMAL. + * * libgnutls: Added new API in x509-ext.h to handle X.509 extensions. + This API handles the X.509 extensions in isolation, allowing to parse + similarly formatted extensions stored in other structures. + * * libgnutls: When generating DSA keys the macro GNUTLS_SUBGROUP_TO_BITS + can be used to specify a particular subgroup as the number of bits in + gnutls_privkey_generate; e.g., GNUTLS_SUBGROUP_TO_BITS(2048, 256). + * * libgnutls: DH parameter generation is now delegated to nettle. + That unfortunately has the side-effect that DH parameters longer than + 3072 bits, cannot be generated (not without a nettle update). + * * libgnutls: Separated nonce RNG from the main RNG. The nonce + random number generator is based on salsa20/12. + * * libgnutls: The buffer alignment provided to crypto backend is + enforced to be 16-byte aligned, when compiled with cryptodev + support. That allows certain cryptodev drivers to operate more + efficiently. + * * libgnutls: Return error when a public/private key pair that doesn't + match is set into a credentials structure. + * * libgnutls: Depend on p11-kit 0.20.0 or later. + * * libgnutls: The new padding (%NEW_PADDING) experimental TLS extension has + been removed. It was not approved by IETF. + * * libgnutls: The experimental xssl library is removed from the gnutls + distribution. + * * libgnutls: Reduced the number of gnulib modules used in the main library. + * * libgnutls: Added priority string %DISABLE_WILDCARDS. + * * libgnutls: Added the more extensible verification function + gnutls_certificate_verify_peers(), that allows checking, in addition + to a peer's DNS hostname, for the key purpose of the end certificate + (via PKIX extended key usage). + * * certtool: Timestamps for serial numbers were increased to 8 bytes, + and in batch mode to 12 (appended with 4 random bytes). + * * certtool: When no CRL number is provided (or value set to -1), then + a time-based number will be used, similarly to the serial generation + number in certificates. + * * certtool: Print the SHA256 fingerprint of a certificate in addition + to SHA1. + * * libgnutls: Added --enable-fips140-mode configuration option (unsupported). + That option enables (when running on FIPS140-enabled system): + o RSA, DSA and DH key generation as in FIPS-186-4 (using provable primes) + o The DRBG-CTR-AES256 deterministic random generator from SP800-90A. + o Self-tests on initialization on ciphers/MACs, public key algorithms + and the random generator. + o HMAC-SHA256 verification of the library on load. + o MD5 is included for TLS purposes but cannot be used by the high level + hashing functions. + o All ciphers except AES are disabled. + o All MACs and hashes except GCM and SHA are disabled (e.g., HMAC-MD5). + o All keys (temporal and long term) are zeroized after use. + o Security levels are adjusted to the FIPS140-2 recommendations (rather + than ECRYPT). + +- build with PIE for commandline tools + +- Updated to 3.2.21 (released 2014-12-11) + - libgnutls: Corrected regression introduced in 3.2.19 related to + session renegotiation. Reported by Dan Winship. + - libgnutls: Corrected parsing issue with OCSP responses. + +- Updated to 3.2.20 (released 2014-11-10) + * * libgnutls: Removed superfluous random generator refresh on every + call of gnutls_deinit(). That reduces load and usage of /dev/urandom. + * * libgnutls: Corrected issue in export of ECC parameters to X9.63 + format. Reported by Sean Burford [GNUTLS-SA-2014-5]. + (CVE-2014-8564 bnc#904603) +- Updated to 3.2.19 (released 2014-10-13) + * * libgnutls: Fixes in the transparent import of PKCS #11 certificates. + Reported by Joseph Peruski. + * * libgnutls: Fixed issue with unexpected non-fatal errors resetting the + handshake's hash buffer, in applications using the heartbeat extension + or DTLS. Reported by Joeri de Ruiter. + * * libgnutls: fix issue in DTLS retransmission when session tickets were + in use; reported by Manuel Pégourié-Gonnard. + * * libgnutls: Prevent abort() in library if getrusage() fails. Try to + detect instead which of RUSAGE_THREAD and RUSAGE_SELF would work. + * * guile: new 'set-session-server-name!' procedure; see the manual + for details. + ipset -- add ipset-6.36_service_names_for_ports.patch to fix parsing - service names for ports. Parsing is attempted both for numbers - and service names and the temporary stored error message - triggered to reset the state parameters about the set - [bsc#1122853] +- Tumbleweed is not affected by the following SLE issues: + bsc#1122853 + +- Update to release 7.15 + * netfilter: ipset: Fix maximal range check in + hash_ipportnet4_uadt() + +- Update to release 7.14 + * Allow specifying protocols by number + * Limit the maximum range of consecutive elements to add/delete + +- Update to release 7.11 + * Argument parsing buffer overflow in ipset_parse_argv fixed + +- Update to release 7.10 + * Fix shift-out-of-bounds in htable_bits() + +- Update to release 7.9 + * Enable memory accounting for ipset allocations + * Expose the initval hash parameter to userspace + * Add bucketsize parameter to all hash types + * Support the -exist flag with the destroy command + +- Update to release 7.6 + * Add checking system_power_efficient_wq in the source tree. + +- Update to release 7.5 + * netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO + is present. + * netfilter: xt_set: Do not restrict --map-set to the + mangle table. + +- Update to release 7.4 + * Wildcard support for the "hash:net,iface" type. + +- Update to new upstream release 7.3 + * Fix rename concurrency with listing, which can result broken + list/save results. + * ipset: Copy the right MAC address in bitmap:ip,mac and + hash:ip,mac sets. + * ipset: Actually allow destination MAC address for hash:ip,mac + sets too. + +- Update to new upstream release 7.2 + * ipset: Fix memory accounting for hash types on resize + +- Update to new upstream release 7.1 + * Correct the manpage about the sort option + * Implement sorting for hash types in the ipset tool + * Fix to list/save into file specified by option +- Remove ipset-file.diff (merged) + +- Add ipset-file.diff [boo#1116432]. + +- Update to new upstream release 7.0 + * A new internal protocol version between the kernel and + userspace is used. This is required in order to support two + new functions and the extendend LIST operation, which makes + possible to run ipset in every case entirely over netlink, + without the need to use getsockopt(). + * The userspace library was reworked so it can be embedded + without calling the binary. + +- Update to new upstream release 6.38 + * Fix parsing service names for ports. -- Update to new upstream release 6.23 - * Order create and add options in manpage so that generic ones - come first - * Centralise generic create options (family, hashsize, maxelem) - on top of man page in the generic options section. - * Add description of hash:mac set type to man page. - * Add missing space for skbinfo option synopsis. - * Support updating extensions when the set is full -- Drop sovers.diff (no longer needed) - -- Update to new upstream release 6.22 - * includes the new set type hash:mac - * The new skbinfo extension makes possible to store fw mark, tc - class and/or hardware queue parameters together with the set - elements and then attach them to the matchig packets by the SET - target. -- Add sovers.diff to counter missing symbol errors - -- Update to new upstream release 6.21.1 - * add userspace support for forceadd - * fix ifname "physdev:" prefix parsing - * print mark & mark mask in hex rather then decimal - * add markmask for hash:ip,mark data type - * add hash:ip,mark data type to ipset - * Fix all set output from list/save when set with counters in use. - * ipset: Fix malformed output from list/save for ICMP types in port - field - * ipset: fix timeout data type size (Nikolay Martynov) - -- Update to new upstream release 6.20.1 - * build fixes for kernel 3.8 and the userspace library -- Remove 0001-build-fix-incorrect-library-versioning.patch (merged) - -- Add 0001-build-fix-incorrect-library-versioning.patch - -- Update to new upstream release 6.20 - * netns support - * new set types: hash:net,net and hash:net,port,net - * new extension: "comment", for annotation of set elements -- Drop sles11.diff (no longer needed, upstream has better fix) - -- Update to new upstream release 6.19 - * This release adds per-element byte and packet counters for every - set type. (Matching these will be available in iptables-1.4.19.) - -- Update to new upstream release 6.18 - * bitmap:ip,mac: fix listing with timeout - * hash:*net*: nomatch flag not excluded on set resize - * list:set: update reference counter when last element pushed off - -- Update to new upstream release 6.17 - * Fix revision printing in XML mode - * Correct "Suspicious condition (assignment + comparison)" - * Fix error path when protocol number is used with port range - * Interactive mode error after syntax error - * New utilities: ipset_bash_completion, ipset_list - * Ensure ip_set_max is not set to IPSET_INVALID_ID - * Resolve corrupted timeout values on set resize - * Resolve "Directory not empty" error message - -- Update to new upstream release 6.16.1 - * Fix RCU handling when the number of maximal sets are increased - * netfilter: ipset: fix netiface set name overflow -- Remove 0001-build-support-for-Linux-3.7-UAPI.patch, merged upstream -- Remove 0001-build-Linux-3.7-netlink-fun.patch, merged upstream - -- Update to new upstream release 6.15 - * Userspace changes: - * Use gethostbyname2 instead of getaddrinfo - * Support protocol numbers as well, not only protocol names - * Kernel part changes: - * Increase the number of maximal sets automatically as needed - * Fix range bug in hash:ip,port,net -- Add 0001-build-support-for-Linux-3.7-UAPI.patch -- Add 0001-build-Linux-3.7-netlink-fun.patch - -- Update to new upstream release 6.14 - * Internal CIDR bookkeeping was broken and would lead to mismatches - when the number of different sized networks are greater than the - smallest CIDR value - * Support to match elements marked with "nomatch" in hash:*net* sets - * Add /0 network support to hash:net,iface type - -- Update to new upstream release 6.13 - * more restrictive command-line parser - * documentation updates w.r.t. src/dst for hash:net,iface - * allow saving to/restoring from a file without shell redirection - * kernel: hash:net,iface: fix interface comparison - * timeout fixing bug broke SET target special timeout value, fixed - -- Update to new upstream release 6.12 - * Report syntax error messages immediately - * Add dynamic module support to ipset userspace tool - * Fix timeout value overflow bug at large timeout parameters - * gcc 4.7 support - -- Update to new upstream release 6.11 - * libipset is now complete; ipset is just a frontend - * Log warning when a hash type of set gets full - * Exceptions support added to hash:*net* types - * hash:net,iface timeout bug fixed - * Support hostnames and service names with dash - -- Populate ipset package on build.opensuse.org after disabling - ipset-genl compilation in xtables-addons - iputils +- Update to version 20221126 + https://github.com/iputils/iputils/releases/tag/20221126 +- Update configure variables (ninfod, rarpd and rdisc were removed from + upstream in next release => remove -DBUILD_NINFOD=false -DBUILD_RARPD=false + - DBUILD_RDISC=false) +- Remove 2 backported fixes from this release + 0001-ping-Add-SA_RESTART-to-sa_flags.patch + 0002-ping-Make-ping_rts-struct-static.patch + +- Backport 2 fixes for bsc#1203957: + 0001-ping-Add-SA_RESTART-to-sa_flags.patch + 0002-ping-Make-ping_rts-struct-static.patch + +- rarpd and rdisc tools are now disabled again [jsc#SLE-23521] + jitterentropy +- jitterentropy-split-internal-header.patch: + Hide the non-GNUC constructs that are library internal from the + exported header. (bsc#1202870) + +- updated to 3.4.0 + * enhancement: add API call jent_set_fips_failure_callback as requested by Daniel Ojalvo + * fix: Change the SHA-3 integration: The entropy pool is now a SHA-3 state. + It is filled with the time delta containing entropy and auxiliary data that does not contain entropy using a SHA update operation. The auxiliary data is calculated by a SHA-3 hashing of some varying state data. The time delta that contains entropy is measured about the SHA-3 hasing of the auxiliary data. This satisfies FIPS 140-3 IG D.K resolutions 4, 6, and 8. + * enhancement: add CMake support by Andrew Hopkins +- updated to 3.3.1 + * fix: bug fix in initialization logic by Vladis Dronov + * fix: use __asm__ instead of asm to suit the C11 standard +- added a -devel-static package to be able to link it static. + +- Trim conjecture from descriptions. + +- add a userspace jitter entropy generator library + kdump +- Make the kdump-save.service reboot after kdump-save is finished + (bsc#1204000) + +- fix renaming of qeth interfaces (bsc#1204743, bsc#1144337) +- ppc64: rebuild initrd image after migration (bsc#1191410) + kernel-default +- Refresh + patches.suse/xfs-move-recovery-needed-state-updates-to-xfs_log_mo.patch. + Fix following error in x86_64/debug build: + ../fs/xfs/xfs_log.c:781:19: error: implicit declaration of function 'XLOG_FORCED_SHUTDOWN'; did you mean 'XFS_FORCED_SHUTDOWN'? [-Werror=implicit-function-declaration] +- commit cafaa30 + +- NFSD: Cap rsize_bop result based on send buffer size + (bsc#1205128 CVE-2022-43945). +- NFSD: Protect against send buffer overflow in NFSv3 READ + (bsc#1205128 CVE-2022-43945). +- NFSD: Protect against send buffer overflow in NFSv2 READ + (bsc#1205128 CVE-2022-43945). +- NFSD: Protect against send buffer overflow in NFSv3 READDIR + (bsc#1205128 CVE-2022-43945). +- NFSD: Protect against send buffer overflow in NFSv2 READDIR + (bsc#1205128 CVE-2022-43945). +- SUNRPC: Fix svcxdr_init_encode's buflen calculation (bsc#1205128 + CVE-2022-43945). +- SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation + (bsc#1205128 CVE-2022-43945). +- commit dd4f720 + +- hyperv: simplify and rename generate_guest_id (bsc#1189965). +- drm/hyperv: Fix an error handling path in hyperv_vmbus_probe() (git-fixes). +- Drivers: hv: Create debugfs file with hyper-v balloon usage information (git-fixes). +- Drivers: hv: vm_bus: Handle vmbus rescind calls after vmbus is suspended (git-fixes). +- drm/hyperv-drm: Include framebuffer and EDID headers (git-fixes). +- drm/hyperv : Removing the restruction of VRAM allocation with PCI bar size (git-fixes). +- scsi: storvsc: Correct reporting of Hyper-V I/O size limits (git-fixes). +- HID: hyperv: Correctly access fields declared as __le16 (git-fixes). +- hv_balloon: Fix balloon_probe() and balloon_remove() error handling (git-fixes). +- Drivers: hv: vmbus: Refactor the ring-buffer iterator functions (git-fixes). +- Drivers: hv: vmbus: Rework use of DMA_BIT_MASK(64) (git-fixes). +- commit 8f5f32b + +- xfs: reserve quota for dir expansion when linking/unlinking + files (bsc#1205616). +- commit 1330e05 + +- dmaengine: idxd: Only call idxd_enable_system_pasid() if + succeeded in enabling SVA feature (jsc#PED-2681). +- commit 66991d9 + +- dmaengine: idxd: Do not enable user type Work Queue without + Shared Virtual Addressing (jsc#PED-2681). +- dmaengine: idxd: Separate user and kernel pasid enabling + (jsc#PED-2681). +- dmaengine: idxd: don't load pasid config until needed + (jsc#PED-2681). +- commit 65564cd + +- add another bug reference to some hyperv changes (bsc#1205617). +- commit 0b5e3d4 + +- net/smc: kABI workarounds for struct smc_sock (git-fixes). +- commit d9f52e8 + +- scsi: mpt3sas: re-do lost mpt3sas DMA mask fix (jsc#PED_1491). +- scsi: mpt3sas: Don't change DMA mask while reallocating pools + (jsc#PED_1491). +- commit 54e2dce + +- scsi: mpt3sas: Revert "scsi: mpt3sas: Fix ioc->base_readl() use" + (jsc#PED_1491). +- scsi: mpt3sas: Revert "scsi: mpt3sas: Fix writel() use" + (jsc#PED_1491). +- scsi: mpt3sas: Update driver version to 43.100.00.00 + (jsc#PED_1491). +- scsi: mpt3sas: Increase cmd_per_lun to 128 (jsc#PED_1491). +- scsi: mpt3sas: Fix trace buffer registration failed + (jsc#PED_1491). +- scsi: mpt3sas: Prevent error handler escalation when device + removed (jsc#PED_1491). +- scsi: mpt3sas: Disable MPI2_FUNCTION_FW_DOWNLOAD for ATTO + devices (jsc#PED_1491). +- scsi: mpt3sas: Add support for ATTO ExpressSAS H12xx GT devices + (jsc#PED_1491). +- scsi: mpt3sas: Remove flush_scheduled_work() call + (jsc#PED_1491). +- scsi: mpt3sas: Fix whitespace and spelling mistake + (jsc#PED_1491). +- scsi: mpt3sas: Fix typo in comment (jsc#PED_1491). +- scsi: mpt3sas: Fix out-of-bounds compiler warning + (jsc#PED_1491). +- scsi: mpt3sas: Update driver version to 42.100.00.00 + (jsc#PED_1491). +- scsi: mpt3sas: Fix junk chars displayed while printing ChipName + (jsc#PED_1491). +- scsi: mpt3sas: Fix adapter replyPostRegisterIndex declaration + (jsc#PED_1491). +- scsi: mpt3sas: Fix event callback log_code value handling + (jsc#PED_1491). +- scsi: mpt3sas: Fix ioc->base_readl() use (jsc#PED_1491). +- scsi: mpt3sas: Fix writel() use (jsc#PED_1491). +- scsi: mpt3sas: Fix _ctl_set_task_mid() TaskMID check + (jsc#PED_1491). +- scsi: mpt3sas: Fail reset operation if config request timed out + (jsc#PED_1491). +- scsi: mpt3sas: Fix mpt3sas_check_same_4gb_region() kdoc comment + (jsc#PED_1491). +- scsi: mpt3sas: Remove scsi_dma_map() error messages + (jsc#PED_1491). +- scsi: mpt3sas: Convert to flexible arrays (jsc#PED_1491). +- scsi: mpt3sas: Update persistent trigger pages from sysfs + interface (jsc#PED_1491). +- scsi: mpt3sas: Use irq_set_affinity_and_hint() (jsc#PED_1491). +- scsi: mpt3sas: Make mpt3sas_dev_attrs static (jsc#PED_1491). +- commit dde21ab + +- scsi: smartpqi: Update version to 2.1.18-045 (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Update copyright to current year (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add ctrl ready timeout module parameter + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Update deleting a LUN via sysfs (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix RAID map race condition (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Stop logging spurious PQI reset failures + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add PCI IDs for Lenovo controllers + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add PCI ID for Adaptec SmartHBA 2100-8i + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix PCI control linkdown system hang + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add driver support for multi-LUN devices + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Close write read holes (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add PCI IDs for ramaxel controllers + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add controller fw version to console log + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix typo in comment (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Stop using the SCSI pointer (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix unused variable pqi_pm_ops for clang + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Update version to 2.1.14-035 (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix lsscsi -t SAS addresses (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix hibernate and suspend (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix BUILD_BUG_ON() statements (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix NUMA node not updated during init + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Expose SAS address for SATA drives + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Speed up RAID 10 sequential reads + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix kdump issue when controller is locked up + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Update volume size after expansion + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Avoid drive spin-down during suspend + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Resolve delay issue with PQI_HZ value + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix a typo in func pqi_aio_submit_io() + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix a name typo and cleanup code (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Quickly propagate path failures to SCSI midlayer + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Eliminate drive spin down on warm boot + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Enable SATA NCQ priority in sysfs + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix rmmod stack trace (jsc#PED-1557, bsc#1201855). +- commit 0ad94d4 + +- Refresh + patches.suse/scsi-qedf-Populate-sysfs-attributes-for-vport.patch. +- commit 4269315 + +- scsi: megaraid_sas: Use struct_size() in code related to struct + MR_PD_CFG_SEQ_NUM_SYNC (jsc#PED-1490). +- scsi: megaraid_sas: Replace one-element array with + flexible-array member in MR_PD_CFG_SEQ_NUM_SYNC (jsc#PED-1490). +- scsi: megaraid_sas: Replace one-element array with + flexible-array member in MR_DRV_RAID_MAP (jsc#PED-1490). +- scsi: megaraid_sas: Replace one-element array with + flexible-array member in MR_FW_RAID_MAP_DYNAMIC (jsc#PED-1490). +- commit 0683c19 + +- scsi: megaraid: Convert sysfs snprintf() to sysfs_emit() + (jsc#PED-1490). +- scsi: megaraid_sas: Use struct_size() in code related to struct + MR_FW_RAID_MAP (jsc#PED-1490). +- scsi: megaraid_sas: Replace one-element array with + flexible-array member in MR_FW_RAID_MAP (jsc#PED-1490). +- scsi: megaraid: Remove redundant assignment to variable + mfiStatus (jsc#PED-1490). +- commit c25a799 + +- scsi: megaraid_sas: Remove unnecessary kfree() (jsc#PED-1490). +- scsi: megaraid_sas: Fix double kfree() (jsc#PED-1490). +- scsi: megaraid_sas: Remove redundant variable cmd_type + (jsc#PED-1490). +- scsi: megaraid: Remove the static variable initialisation + (jsc#PED-1490). +- scsi: megaraid_sas: Clean up some inconsistent indenting + (jsc#PED-1490). +- scsi: megaraid_sas: Remove redundant memset() statement + (jsc#PED-1490). +- scsi: megaraid_sas: Remove unnecessary memset (jsc#PED-1490). +- scsi: megaraid_sas: Target with invalid LUN ID is deleted + during scan (jsc#PED-1490). +- scsi: megasas: Clean up some inconsistent indenting + (jsc#PED-1490). +- scsi: megasas: Stop using the SCSI pointer (jsc#PED-1490). +- scsi: megaraid: Fix a kernel-doc warning (jsc#PED-1490). +- scsi: megaraid_sas: Use irq_set_affinity_and_hint() + (jsc#PED-1490). +- commit d8c27e2 + +- scsi: hpsa: Simplify {clear|set}_bit() parameters + (jsc#PED-1558). +- scsi: hpsa: Use the bitmap API to allocate bitmaps + (jsc#PED-1558). +- scsi: hpsa: Remove an unused variable in + hpsa_update_scsi_devices() (jsc#PED-1558). +- commit 7a7e8b5 + +- PM: runtime: Redefine pm_runtime_release_supplier() (git-fixes). +- commit 53e36dd + +- efi: x86: Set the NX-compatibility flag in the PE header + (bsc#1205588). +- commit 05aa191 + +- blacklist.conf: kABI +- commit f550bb4 + +- tracing: kprobe: Fix potential null-ptr-deref on trace_array + in kprobe_event_gen_test_exit() (git-fixes). +- commit dc34c13 + +- tracing: kprobe: Fix potential null-ptr-deref on + trace_event_file in kprobe_event_gen_test_exit() (git-fixes). +- commit 23caa81 + +- tracing: Fix wild-memory-access in register_synth_event() + (git-fixes). +- commit 9bbef30 + +- tracing: Fix memory leak in test_gen_synth_cmd() and + test_empty_synth_event() (git-fixes). +- commit 68dace2 + +- ftrace: Fix null pointer dereference in ftrace_add_mod() + (git-fixes). +- commit 2e9b117 + +- ring_buffer: Do not deactivate non-existant pages (git-fixes). +- commit 0458d7a + +- ftrace: Optimize the allocation for mcount entries (git-fixes). +- commit 5b2b25a + +- ftrace: Fix the possible incorrect kernel message (git-fixes). +- commit 7323c8c + +- tracing: Fix memory leak in tracing_read_pipe() (git-fixes). +- commit 690c08a + +- net/smc: kABI workarounds for struct smc_link (git-fixes). +- commit 0cbe94a + +- ring-buffer: Include dropped pages in counting dirty patches + (git-fixes). +- commit 11920bc + +- blacklist.conf: duplicate +- commit ddd82f9 + +- powerpc/kvm: Fix kvm_use_magic_page (bsc#1156395). +- Refresh patches.suse/gup-Turn-fault_in_pages_-readable-writeable-into-fault_in_-readable-writeable.patch. +- commit aec526a + +- x86/fpu: Include vmalloc.h for vzalloc() (git-fixes). +- blacklist.conf: revert blacklisting of 868c250bb463 +- commit 34cf832 + +- blacklist.conf: duplicate +- commit dcdcbbd + +- tcp: make tcp_read_sock() more robust (jsc#PED-1368). +- bpf, sockmap: Do not ignore orig_len parameter (jsc#PED-1368). +- bpf: Add schedule points in batch ops (jsc#PED-1368). +- commit 1d3696a + +- MIPS: Loongson: Use hwmon_device_register_with_groups() to + register hwmon (git-fixes). +- commit 16f21a3 + +- tracing/ring-buffer: Have polling block on watermark + (git-fixes). +- commit 5c3e4d5 + +- powerpc/pseries/vas: Declare pseries_vas_fault_thread_fn() + as static (bsc#1194869). +- commit 02a3582 + +- platform: chrome: Split trace include file (git-fixes). +- commit 4e9d9ce + +- ftrace: Fix use-after-free for dynamic ftrace_ops (git-fixes). +- commit f98b221 + +- blacklist.conf: kABI +- commit 431bd9c + +- blacklist.conf: duplicate +- commit 53c7bfc + +- platform/x86/intel: hid: add quirk to support Surface Go 3 + (git-fixes). +- commit 23ccaa2 + +- selftests: bpf: Check bpf_msg_push_data return value + (jsc#PED-1368). +- bpf: Fix a bpf_timer initialization issue (jsc#PED-1368). +- commit 6da0cef + +- blacklist.conf: too intrusive +- commit 67ad270 + +- bpf: Emit bpf_timer in vmlinux BTF (jsc#PED-1368). +- selftests/bpf: Add test for bpf_timer overwriting crash + (jsc#PED-1368). +- bpf: Fix crash due to incorrect copy_map_value (jsc#PED-1368). +- bpf: Do not try bpf_msg_push_data with len 0 (jsc#PED-1368). +- tools/resolve_btfids: Do not print any commands when building + silently (jsc#PED-1368). +- bpf: Use VM_MAP instead of VM_ALLOC for ringbuf (jsc#PED-1368). +- tools headers UAPI: remove stale lirc.h (jsc#PED-1368). +- bpf: Fix possible race in inc_misses_counter (jsc#PED-1368). +- bpf: Fix renaming task_getsecid_subj->current_getsecid_subj + (jsc#PED-1368). +- powerpc64/bpf: Limit 'ldbrx' to processors compliant with ISA + v2.06 (jsc#PED-1368). +- tools/bpf: Rename 'struct event' to avoid naming conflict + (jsc#PED-1368). +- powerpc32/bpf: Fix codegen for bpf-to-bpf calls (jsc#PED-1368). +- bpf: Guard against accessing NULL pt_regs in + bpf_get_task_stack() (jsc#PED-1368). +- bpf, selftests: Add ringbuf memory type confusion test + (jsc#PED-1368). +- bpf: Fix ringbuf memory type confusion when passing to helpers + (jsc#PED-1368). +- blacklist.conf: revert blacklisting of "bpf: Fix ringbuf memory type + confusion when passing to helpers" +- Refresh patches.suse/bpf-Add-check_func_arg_reg_off-function.patch +- bpf: Fix incorrect integer literal used for marking scratched + stack (jsc#PED-1368). +- bpf/selftests: Add check for updating XDP bpf_link with wrong + program type (jsc#PED-1368). +- bpf/selftests: convert xdp_link test to ASSERT_* macros + (jsc#PED-1368). +- xdp: check prog type before updating BPF link (jsc#PED-1368). +- bpf: Fix mount source show for bpffs (jsc#PED-1368). +- tools/bpf/bpftool/skeleton: replace bpf_probe_read_kernel with + bpf_probe_read_kernel_str to get task comm (jsc#PED-1368). +- samples/bpf/test_overhead_kprobe_kern: replace + bpf_probe_read_kernel with bpf_probe_read_kernel_str to get + task comm (jsc#PED-1368). +- bpf ppc32: Access only if addr is kernel address (jsc#PED-1368). +- bpf ppc32: Add BPF_PROBE_MEM support for JIT (jsc#PED-1368). +- bpf ppc64: Access only if addr is kernel address (jsc#PED-1368). +- bpf ppc64: Add BPF_PROBE_MEM support for JIT (jsc#PED-1368). +- powerpc/ppc-opcode: introduce PPC_RAW_BRANCH() macro + (jsc#PED-1368). +- bpf powerpc: refactor JIT compiler code (jsc#PED-1368). +- bpf powerpc: Remove extra_pass from bpf_jit_build_body() + (jsc#PED-1368). +- bpf powerpc: Remove unused SEEN_STACK (jsc#PED-1368). +- bpf: selftests: Add bind retry for post_bind{4, 6} + (jsc#PED-1368). +- bpf: selftests: Use C99 initializers in test_sock.c + (jsc#PED-1368). +- net: bpf: Handle return value of + BPF_CGROUP_RUN_PROG_INET{4,6}_POST_BIND() (jsc#PED-1368). +- bpf/selftests: Test bpf_d_path on rdonly_mem (jsc#PED-1368). +- libbpf: Add documentation for bpf_map batch operations + (jsc#PED-1368). +- selftests/bpf: Don't rely on preserving volatile in PT_REGS + macros in loop3 (jsc#PED-1368). +- xdp: Add xdp_do_redirect_frame() for pre-computed xdp_frames + (jsc#PED-1368). +- xdp: Move conversion to xdp_frame out of map functions + (jsc#PED-1368). +- page_pool: Store the XDP mem id (jsc#PED-1368). +- page_pool: Add callback to init pages when they are allocated + (jsc#PED-1368). +- xdp: Allow registering memory model without rxq reference + (jsc#PED-1368). +- samples/bpf: xdpsock: Add timestamp for Tx-only operation + (jsc#PED-1368). +- samples/bpf: xdpsock: Add time-out for cleaning Tx + (jsc#PED-1368). +- samples/bpf: xdpsock: Add sched policy and priority support + (jsc#PED-1368). +- samples/bpf: xdpsock: Add cyclic TX operation capability + (jsc#PED-1368). +- samples/bpf: xdpsock: Add clockid selection support + (jsc#PED-1368). +- samples/bpf: xdpsock: Add Dest and Src MAC setting for Tx-only + operation (jsc#PED-1368). +- samples/bpf: xdpsock: Add VLAN support for Tx-only operation + (jsc#PED-1368). +- libbpf 1.0: Deprecate bpf_object__find_map_by_offset() API + (jsc#PED-1368). +- libbpf 1.0: Deprecate bpf_map__is_offload_neutral() + (jsc#PED-1368). +- libbpf: Support repeated legacy kprobes on same function + (jsc#PED-1368). +- libbpf: Use probe_name for legacy kprobe (jsc#PED-1368). +- libbpf: Deprecate bpf_perf_event_read_simple() API + (jsc#PED-1368). +- bpf: Add SO_RCVBUF/SO_SNDBUF in _bpf_getsockopt() + (jsc#PED-1368). +- bpf: Fix SO_RCVBUF/SO_SNDBUF handling in _bpf_setsockopt() + (jsc#PED-1368). +- bpf: Fix verifier support for validation of async callbacks + (jsc#PED-1368). +- bpf, docs: Fully document the JMP mode modifiers (jsc#PED-1368). +- bpf, docs: Fully document the JMP opcodes (jsc#PED-1368). +- bpf, docs: Fully document the ALU opcodes (jsc#PED-1368). +- bpf, docs: Document the opcode classes (jsc#PED-1368). +- bpf, docs: Add subsections for ALU and JMP instructions + (jsc#PED-1368). +- bpf, docs: Add a setion to explain the basic instruction + encoding (jsc#PED-1368). +- bpf, selftests: Add verifier test for mem_or_null register + with offset (jsc#PED-1368). +- bpf: Don't promote bogus looking registers after null check + (jsc#PED-1368). +- bpf, sockmap: Fix double bpf_prog_put on error case in map_link + (jsc#PED-1368). +- bpf, sockmap: Fix return codes from tcp_bpf_recvmsg_parser() + (jsc#PED-1368). +- bpf, arm64: Use emit_addr_mov_i64() for BPF_PSEUDO_FUNC + (jsc#PED-1368). +- bpf/selftests: Fix namespace mount setup in tc_redirect + (jsc#PED-1368). +- bpftool: Probe for instruction set extensions (jsc#PED-1368). +- bpftool: Probe for bounded loop support (jsc#PED-1368). +- bpftool: Refactor misc. feature probe (jsc#PED-1368). +- bpf: Fix typo in a comment in bpf lpm_trie (jsc#PED-1368). +- bpf, docs: Move the packet access instructions last in + instruction-set.rst (jsc#PED-1368). +- bpf, docs: Generate nicer tables for instruction encodings + (jsc#PED-1368). +- bpf, docs: Split the comparism to classic BPF from + instruction-set.rst (jsc#PED-1368). +- bpf, docs: Fix verifier references (jsc#PED-1368). +- bpf: Invert the dependency between bpf-netns.h and netns/bpf.h + (jsc#PED-1368). +- net: Add includes masked by netdevice.h including uapi/bpf.h + (jsc#PED-1368). +- bpf/selftests: Update local storage selftest for sleepable + programs (jsc#PED-1368). +- bpf: Allow bpf_local_storage to be used by sleepable programs + (jsc#PED-1368). +- bpf: Add missing map_get_next_key method to bloom filter map + (jsc#PED-1368). +- libbpf: Improve LINUX_VERSION_CODE detection (jsc#PED-1368). +- libbpf: Use 100-character limit to make bpf_tracing.h easier + to read (jsc#PED-1368). +- libbpf: Normalize PT_REGS_xxx() macro definitions + (jsc#PED-1368). +- selftests/bpf: Add btf_dump__new to test_cpp (jsc#PED-1368). +- libbpf: Do not use btf_dump__new() macro in C++ mode + (jsc#PED-1368). +- bpftool: Enable line buffering for stdout (jsc#PED-1368). +- bpf: Use struct_size() helper (jsc#PED-1368). +- selftests/bpf: Correct the INDEX address in vmtest.sh + (jsc#PED-1368). +- bpf: Extend kfunc with PTR_TO_CTX, PTR_TO_MEM argument support + (jsc#PED-1368). +- Refresh patches.suse/bpf-Fix-PTR_TO_BTF_ID-var_off-check.patch +- Refresh patches.suse/bpf-Fix-crash-due-to-out-of-bounds-access-into-reg2b.patch +- Refresh patches.suse/bpf-Generalize-check_ctx_reg-for-reuse-with-other-ty.patch +- commit 5734c73 + +- powerpc/boot: Explicitly disable usage of SPE instructions + (bsc#1156395). +- commit 7c94cdb + +- blacklist.conf: Add fixes for unsupported platforms +- commit 10ca02b + +- net: smsc95xx: add support for Microchip EVB-LAN8670-USB + (git-fixes). +- commit af40ba9 + +- usbnet: smsc95xx: Don't reset PHY behind PHY driver's back + (git-fixes). +- commit b693ef6 + +- usb: smsc: use eth_hw_addr_set() (git-fixes). +- commit 67dd1e9 + +- powerpc/64: Fix build failure with allyesconfig in + book3s_64_entry.S (bsc#1194869). +- commit 6d56eff + +- bpftool: Reimplement large insn size limit feature probing + (jsc#PED-1368). +- selftests/bpf: Add libbpf feature-probing API selftests + (jsc#PED-1368). +- libbpf: Rework feature-probing APIs (jsc#PED-1368). +- Only output backtracking information in log level 2 + (jsc#PED-1368). +- bpf: Right align verifier states in verifier logs + (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- bpf: Only print scratched registers and stack slots to verifier + logs (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- commit 652bd0c + +- selftests/bpf: Replace all uses of bpf_load_btf() with + bpf_btf_load() (jsc#PED-1368). +- libbpf: Deprecate bpf_object__load_xattr() (jsc#PED-1368). +- commit ed13628 + +- treewide: Add missing includes masked by cgroup -> bpf + dependency (jsc#PED-1368). +- commit dafa543 + +- bpf: Remove the cgroup -> bpf header dependecy (jsc#PED-1368). +- add missing bpf-cgroup.h includes (jsc#PED-1368). +- add includes masked by cgroup -> bpf dependency (jsc#PED-1368). +- selftests/bpf: Enable cross-building with clang (jsc#PED-1368). +- tools/runqslower: Enable cross-building with clang + (jsc#PED-1368). +- bpftool: Enable cross-building with clang (jsc#PED-1368). +- tools/libbpf: Enable cross-building with clang (jsc#PED-1368). +- tools/resolve_btfids: Support cross-building the kernel with + clang (jsc#PED-1368). +- tools: Help cross-building with clang (jsc#PED-1368). +- libbpf: Avoid reading past ELF data section end when copying + license (jsc#PED-1368). +- libbpf: Mark bpf_object__find_program_by_title API deprecated + (jsc#PED-1368). +- tools/perf: Stop using bpf_object__find_program_by_title API + (jsc#PED-1368). +- samples/bpf: Stop using bpf_object__find_program_by_title API + (jsc#PED-1368). +- selftests/bpf: Stop using bpf_object__find_program_by_title API + (jsc#PED-1368). +- selftests/bpf: Remove explicit setrlimit(RLIMIT_MEMLOCK) + in main selftests (jsc#PED-1368). +- libbpf: Auto-bump RLIMIT_MEMLOCK if kernel needs it for BPF + (jsc#PED-1368). +- libbpf: Add sane strncpy alternative and use it internally + (jsc#PED-1368). +- libbpf: Fix potential uninit memory read (jsc#PED-1368). +- libbpf: Add doc comments for bpf_program__(un)pin() + (jsc#PED-1368). +- selftests/bpf: Fix segfault in bpf_tcp_ca (jsc#PED-1368). +- selftests/bpf: Add tests for get_func_[arg|ret|arg_cnt] helpers + (jsc#PED-1368). +- bpf: Add get_func_[arg|ret|arg_cnt] helpers (jsc#PED-1368). +- bpf, x64: Replace some stack_size usage with offset variables + (jsc#PED-1368). +- selftests/bpf: Add test to access int ptr argument in tracing + program (jsc#PED-1368). +- bpf: Allow access to int pointer arguments in tracing programs + (jsc#PED-1368). +- libbpf: Don't validate TYPE_ID relo's original imm value + (jsc#PED-1368). +- selftests/bpf: Remove last bpf_create_map_xattr from + test_verifier (jsc#PED-1368). +- bpf: Silence coverity false positive warning (jsc#PED-1368). +- bpf: Use kmemdup() to replace kmalloc + memcpy (jsc#PED-1368). +- selftests/bpf: Add test cases for bpf_strncmp() (jsc#PED-1368). +- selftests/bpf: Add benchmark for bpf_strncmp() helper + (jsc#PED-1368). +- selftests/bpf: Fix checkpatch error on empty function parameter + (jsc#PED-1368). +- bpf: Add bpf_strncmp helper (jsc#PED-1368). +- libbpf: Fix gen_loader assumption on number of programs + (jsc#PED-1368). +- libbpf: Add "bool skipped" to struct bpf_map (jsc#PED-1368). +- libbpf: Fix typo in btf__dedup@LIBBPF_0.0.2 definition + (jsc#PED-1368). +- bpftool: Switch bpf_object__load_xattr() to bpf_object__load() + (jsc#PED-1368). +- selftests/bpf: Remove the only use of deprecated + bpf_object__load_xattr() (jsc#PED-1368). +- selftests/bpf: Add test for libbpf's custom log_buf behavior + (jsc#PED-1368). +- commit 5e271be + +- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch: + (bsc#1205521). +- commit a75b0e8 + +- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch: + (bsc#1205521). +- commit de88f7d + +- ath10k: fix pointer arithmetic error in trace call (git-fixes). +- commit eb74c76 + +- VDUSE: fix documentation underline warning (git-fixes). +- commit 82c2eb1 + +- ath10k: abstract htt_rx_desc structure (git-fixes). +- commit ce63216 + +- mac80211: limit bandwidth in HE capabilities (git-fixes). +- commit 07f026a + +- ALSA: memalloc: Try dma_alloc_noncontiguous() at first + (git-fixes). +- commit 88c27ac + +- usb: typec: tipd: Prevent uninitialized event{1,2} in IRQ + handler (git-fixes). +- ASoC: SOF: topology: No need to assign core ID if token parsing + failed (git-fixes). +- ALSA: memalloc: Don't fall back for SG-buffer with IOMMU + (git-fixes). +- usb: gadget: aspeed: Fix probe regression (git-fixes). +- nouveau: fix migrate_to_ram() for faulting page (git-fixes). +- xhci: Fix null pointer dereference in remove if xHC has only + one roothub (git-fixes). +- thunderbolt: Check router generation before connecting xHCI + (git-fixes). +- usb: xhci_plat_remove: avoid NULL dereference (git-fixes). +- xhci: Fix null pointer dereference in resume if xhci has only + one roothub (git-fixes). +- USB: gadget: Fix return of -EBUSY (git-fixes). +- dmaengine: tegra: Fix build error without IOMMU_API (git-fixes). +- PCI/IOV: Fix wrong kernel-doc identifier (git-fixes). +- usb: core: Unregister device on component_add() failure + (git-fixes). +- pcmcia: hide the MAC address helpers if !NET (git-fixes). +- arch: Remove leftovers from prism54 wireless driver (git-fixes). +- usb: typec: ucsi: Only check the contract if there is a + connection (git-fixes). +- libata: libahci: declare ahci_shost_attr_group as static + (git-fixes). +- commit 92b4a5a + +- ALSA: hda/realtek: Add quirk for ASUS Zenbook using CS35L41 + (git-fixes). +- commit c6c293f + +- ASoC: soc-utils: Remove __exit for snd_soc_util_exit() + (git-fixes). +- commit 287b2ba + +- Input: i8042 - fix leaking of platform device on module removal + (git-fixes). +- Input: iforce - invert valid length check when fetching device + IDs (git-fixes). +- drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker() + (git-fixes). +- drm/drv: Fix potential memory leak in drm_dev_init() + (git-fixes). +- drm/panel: simple: set bpc field for logic technologies displays + (git-fixes). +- drm/vc4: kms: Fix IS_ERR() vs NULL check for vc4_kms + (git-fixes). +- usb: chipidea: fix deadlock in ci_otg_del_timer (git-fixes). +- usb: typec: mux: Enter safe mode only when pins need to be + reconfigured (git-fixes). +- Revert "usb: dwc3: disable USB core PHY management" (git-fixes). +- serial: 8250: Flush DMA Rx on RLSI (git-fixes). +- serial: 8250: Fall back to non-DMA Rx if IIR_RDI occurs + (git-fixes). +- tty: n_gsm: fix sleep-in-atomic-context bug in gsm_control_send + (git-fixes). +- Revert "tty: n_gsm: replace kicktimer with delayed_work" + (git-fixes). +- Revert "tty: n_gsm: avoid call of sleeping functions from + atomic context" (git-fixes). +- serial: imx: Add missing .thaw_noirq hook (git-fixes). +- tty: serial: fsl_lpuart: don't break the on-going transfer + when global reset (git-fixes). +- serial: 8250: omap: Flush PM QOS work on remove (git-fixes). +- serial: 8250: omap: Fix unpaired pm_runtime_put_sync() in + omap8250_remove() (git-fixes). +- serial: 8250_omap: remove wait loop from Errata i202 workaround + (git-fixes). +- firmware: coreboot: Register bus in module init (git-fixes). +- slimbus: stream: correct presence rate frequencies (git-fixes). +- parport_pc: Avoid FIFO port location truncation (git-fixes). +- siox: fix possible memory leak in siox_device_add() (git-fixes). +- misc/vmw_vmci: fix an infoleak in + vmci_host_do_receive_datagram() (git-fixes). +- speakup: fix a segfault caused by switching consoles + (git-fixes). +- iio: adc: at91_adc: fix possible memory leak in + at91_adc_allocate_trigger() (git-fixes). +- iio: adc: mp2629: fix potential array out of bound access + (git-fixes). +- iio: adc: mp2629: fix wrong comparison of channel (git-fixes). +- iio: pressure: ms5611: changed hardcoded SPI speed to value + limited (git-fixes). +- iio: trigger: sysfs: fix possible memory leak in + iio_sysfs_trig_init() (git-fixes). +- ASoC: tas2764: Fix set_tdm_slot in case of single slot + (git-fixes). +- ASoC: tas2770: Fix set_tdm_slot in case of single slot + (git-fixes). +- ASoC: core: Fix use-after-free in snd_soc_exit() (git-fixes). +- mmc: sdhci-pci: Fix possible memory leak caused by missing + pci_dev_put() (git-fixes). +- mmc: core: properly select voltage range without power cycle + (git-fixes). +- commit 5d6506d + +- net/smc: Fix possible leaked pernet namespace in smc_init() + (git-fixes). +- net/smc: Fix an error code in smc_lgr_create() (git-fixes). +- net/smc: Fix possible access to freed memory in link clear + (git-fixes). +- net/smc: Fix slab-out-of-bounds issue in fallback (git-fixes). +- net/smc: Only save the original clcsock callback functions + (git-fixes). +- net/smc: Fix sock leak when release after smc_shutdown() + (git-fixes). +- net/smc: send directly on setting TCP_NODELAY (git-fixes). +- net/smc: Send directly when TCP_CORK is cleared (git-fixes). +- net/smc: Avoid overwriting the copies of clcsock callback + functions (git-fixes). +- net/smc: Forward wakeup to smc socket waitqueue after fallback + (git-fixes). +- commit a5aa4ad + +- PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (git-fixes). +- x86/hyperv: fix invalid writes to MSRs during root partition kexec (git-fixes). +- clocksource/drivers/hyperv: add data structure for reference TSC MSR (git-fixes). +- Drivers: hv: fix repeated words in comments (git-fixes). +- HID: hyperv: fix possible memory leak in mousevsc_probe() (git-fixes). +- drm/hyperv: Add ratelimit on error message (git-fixes). +- scsi: storvsc: remove an extraneous "to" in a comment (git-fixes). +- Drivers: hv: vmbus: Don't wait for the ACPI device upon initialization (git-fixes). +- Drivers: hv: vmbus: Use PCI_VENDOR_ID_MICROSOFT for better discoverability (git-fixes). +- Drivers: hv: vmbus: Fix kernel-doc (git-fixes). +- drm/hyperv: Don't overwrite dirt_needed value set by host (git-fixes). +- Drivers: hv: vmbus: Optimize vmbus_on_event (git-fixes). +- scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes). +- Drivers: hv: Never allocate anything besides framebuffer from framebuffer memory region (git-fixes). +- Drivers: hv: Always reserve framebuffer region for Gen1 VMs (git-fixes). +- PCI: Move PCI_VENDOR_ID_MICROSOFT/PCI_DEVICE_ID_HYPERV_VIDEO definitions to pci_ids.h (git-fixes). +- tools: hv: kvp: remove unnecessary (void*) conversions (git-fixes). +- Drivers: hv: remove duplicate word in a comment (git-fixes). +- tools: hv: Remove an extraneous "the" (git-fixes). +- scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes). +- Drivers: hv: vmbus: Release cpu lock in error case (git-fixes). +- Drivers: hv: Fix syntax errors in comments (git-fixes). +- scsi: storvsc: Fix typo in comment (git-fixes). +- Drivers: hv: vmbus: fix typo in comment (git-fixes). +- PCI: hv: Add validation for untrusted Hyper-V values (git-fixes). +- x86/hyperv: Disable hardlockup detector by default in Hyper-V guests (git-fixes). +- Drivers: hv: vmbus: Accept hv_sock offers in isolated guests (git-fixes). +- hv_sock: Add validation for untrusted Hyper-V values (git-fixes). +- hv_sock: Copy packets sent by Hyper-V out of the ring buffer (git-fixes). +- hv_sock: Check hv_pkt_iter_first_raw()'s return value (git-fixes). +- Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes). +- hv_netvsc: Fix potential dereference of NULL pointer (git-fixes). +- hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (git-fixes). +- net: hyperv: remove use of bpf_op_t (git-fixes). +- commit 5a5a746 + +- Refresh patches.suse/io_uring-fix-io_try_cancel_userdata-race-for-iowq.patch + (bsc#1205572) +- commit 1bf2e5b + +- Update kabi files. Update using the released November MU kernel + 5.14.21-150400.24.33.2 +- commit b0daa6c + +- s390/uaccess: introduce bit field for OAC specifier + (jsc#PED-579). +- Refresh + patches.suse/s390-uaccess-add-missing-EX_TABLE-entries-to-__clear_user. +- commit 871823b + +- KVM: s390: selftest: Test suppression indication on key prot + exception (jsc#PED-579). +- KVM: s390: Don't indicate suppression on dirtying, failing memop + (jsc#PED-579). +- KVM: s390: Fix lockdep issue in vm memop (jsc#PED-579). +- KVM: s390: selftests: Add error memop tests (jsc#PED-579). +- KVM: s390: selftests: Add more copy memop tests (jsc#PED-579). +- KVM: s390: selftests: Add named stages for memop test + (jsc#PED-579). +- KVM: s390: selftests: Add macro as abstraction for MEM_OP + (jsc#PED-579). +- KVM: s390: selftests: Split memop tests (jsc#PED-579). +- KVM: s390: Add missing vm MEM_OP size check (jsc#PED-579). +- KVM: s390: Clarify key argument for MEM_OP in api docs + (jsc#PED-579). +- selftests: kvm: Check whether SIDA memop fails for normal guests + (jsc#PED-579). +- KVM: s390: Update api documentation for memop ioctl + (jsc#PED-579). +- KVM: s390: Add capability for storage key extension of MEM_OP + IOCTL (jsc#PED-579). +- KVM: s390: Rename existing vcpu memop functions (jsc#PED-579). +- KVM: s390: Add vm IOCTL for key checked guest absolute memory + access (jsc#PED-579). +- KVM: s390: Add optional storage key checking to MEMOP IOCTL + (jsc#PED-579). +- KVM: s390: selftests: Test TEST PROTECTION emulation + (jsc#PED-579). +- KVM: s390: handle_tprot: Honor storage keys (jsc#PED-579). +- KVM: s390: Honor storage keys when accessing guest memory + (jsc#PED-579). +- s390/uaccess: Add copy_from/to_user_key functions (jsc#PED-579). +- s390/uaccess: fix compile error (jsc#PED-579). +- KVM: s390: gaccess: Cleanup access to guest pages (jsc#PED-579). +- KVM: s390: gaccess: Refactor access address range check + (jsc#PED-579). +- KVM: s390: gaccess: Refactor gpa and length calculation + (jsc#PED-579). +- KVM: s390: Function documentation fixes (jsc#PED-579). +- commit 66cff37 + +- sched: Clear ttwu_pending after enqueue_task() (git fixes + (sched/core)). +- commit 8216675 + +- soc: imx8m: Enable OCOTP clock before reading the register + (git-fixes). +- arm64: dts: imx8mn: Fix NAND controller size-cells (git-fixes). +- arm64: dts: imx8mm: Fix NAND controller size-cells (git-fixes). +- ARM: dts: imx7: Fix NAND controller size-cells (git-fixes). +- arm64: dts: qcom: sm8350-hdk: Specify which LDO modes are + allowed (git-fixes). +- arm64: dts: qcom: sm8250-xperia-edo: Specify which LDO modes + are allowed (git-fixes). +- arm64: dts: qcom: sm8150-xperia-kumano: Specify which LDO + modes are allowed (git-fixes). +- arm64: dts: qcom: sa8155p-adp: Specify which LDO modes are + allowed (git-fixes). +- net: thunderbolt: Fix error handling in tbnet_init() + (git-fixes). +- net/x25: Fix skb leak in x25_lapb_receive_frame() (git-fixes). +- bridge: switchdev: Fix memory leaks when changing VLAN protocol + (git-fixes). +- net: phy: marvell: add sleep time after enabling the loopback + bit (git-fixes). +- mISDN: fix misuse of put_device() in mISDN_register_device() + (git-fixes). +- mISDN: fix possible memory leak in mISDN_dsp_element_register() + (git-fixes). +- commit f0f96f8 + +- soundwire: intel: Initialize clock stop timeout (bsc#1205507). +- commit ed7ad85 + +- io_uring: IRQ rw completion batching (bsc#1205205). +- io_uring: batch task work locking (bsc#1205205). +- io_uring: flush completions for fallbacks (bsc#1205205). +- commit e122d49 + +- io_uring: add clarifying comment for io_cqring_ev_posted() + (bsc#1205205). +- io_uring: fix lack of protection for compl_nr (bsc#1205205). +- io_uring: Add register support for non-4k PAGE_SIZE + (bsc#1205205). +- io_uring: extend task put optimisations (bsc#1205205). +- io_uring: add comments on why PF_EXITING checking is safe + (bsc#1205205). +- io_uring: fix io_timeout_remove locking (bsc#1205205). +- io_uring: improve same wq polling (bsc#1205205). +- io_uring: reuse io_req_complete_post() (bsc#1205205). +- io_uring: better encapsulate buffer select for rw (bsc#1205205). +- commit 4eedcb8 + +- io_uring: fix io_timeout_remove locking (git-fixes). +- io_uring: correct __must_hold annotation (git-fixes). +- commit afa1999 + +- scsi: mpi3mr: Delete a stray tab (jsc#PED-1446). +- scsi: mpi3mr: Unlock on error path (jsc#PED-1446). +- scsi: mpi3mr: Reduce VD queue depth on detecting throttling + (jsc#PED-1446). +- scsi: mpi3mr: Resource Based Metering (jsc#PED-1446). +- scsi: mpi3mr: Increase cmd_per_lun to 128 (jsc#PED-1446). +- scsi: mpi3mr: Enable shared host tagset (jsc#PED-1446). +- scsi: mpi3mr: Fix kernel-doc (jsc#PED-1446). +- scsi: mpi3mr: Rework mrioc->bsg_device model to fix warnings + (jsc#PED-1446). +- scsi: mpi3mr: Add target device related sysfs attributes + (jsc#PED-1446). +- scsi: mpi3mr: Add shost related sysfs attributes (jsc#PED-1446). +- scsi: mpi3mr: Return error if dma_alloc_coherent() fails + (jsc#PED-1446). +- scsi: mpi3mr: Fix a NULL vs IS_ERR() bug in mpi3mr_bsg_init() + (jsc#PED-1446). +- scsi: mpi3mr: Return I/Os to an unrecoverable HBA with DID_ERROR + (jsc#PED-1446). +- scsi: mpi3mr: Hidden drives not removed during soft reset + (jsc#PED-1446). +- scsi: mpi3mr: Increase I/O timeout value to 60s (jsc#PED-1446). +- scsi: mpi3mr: Update driver version to 8.0.0.69.0 + (jsc#PED-1446). +- scsi: mpi3mr: Add support for NVMe passthrough (jsc#PED-1446). +- scsi: mpi3mr: Expose adapter state to sysfs (jsc#PED-1446). +- scsi: mpi3mr: Add support for PEL commands (jsc#PED-1446). +- scsi: mpi3mr: Add support for MPT commands (jsc#PED-1446). +- scsi: mpi3mr: Move data structures/definitions from MPI headers + to uapi header (jsc#PED-1446). +- scsi: mpi3mr: Add support for driver commands (jsc#PED-1446). +- scsi: mpi3mr: Add bsg device support (jsc#PED-1446). +- scsi: mpi3mr: Fix flushing !WQ_MEM_RECLAIM events warning + (jsc#PED-1446). +- scsi: mpi3mr: Bump driver version to 8.0.0.68.0 (jsc#PED-1446). +- scsi: mpi3mr: Fix memory leaks (jsc#PED-1446). +- scsi: mpi3mr: Update the copyright year (jsc#PED-1446). +- scsi: mpi3mr: Fix reporting of actual data transfer size + (jsc#PED-1446). +- scsi: mpi3mr: Fix cmnd getting marked as in use forever + (jsc#PED-1446). +- scsi: mpi3mr: Fix hibernation issue (jsc#PED-1446). +- scsi: mpi3mr: Update MPI3 headers (jsc#PED-1446). +- scsi: mpi3mr: Fix printing of pending I/O count (jsc#PED-1446). +- scsi: mpi3mr: Fix deadlock while canceling the fw event + (jsc#PED-1446). +- commit 38ffa24 + +- treewide: Replace zero-length arrays with flexible-array members + (jsc#PED-1446). +- Refresh patches.suse/scsi-qla2xxx-edif-bsg-refactor.patch. +- commit b341c8c + +- Update metadata references +- commit 48537d5 + +- KVM: SVM: move guest vmsave/vmload back to assembly (git-fixes). +- commit 64aefe3 + +- KVM: SVM: retrieve VMCB from assembly (git-fixes). +- commit fdd0aa2 + +- blk-mq: Properly init requests from blk_mq_alloc_request_hctx() + (git-fixes). +- rbd: fix possible memory leak in rbd_sysfs_init() (git-fixes). +- blk-wbt: call rq_qos_add() after wb_normal is initialized + (git-fixes). +- block: blk_queue_enter() / __bio_queue_enter() must return + - EAGAIN for nowait (git-fixes). +- blk-mq: fix io hung due to missing commit_rqs (git-fixes). +- block/rnbd-srv: Set keep_id to true after mutex_trylock + (git-fixes). +- blktrace: Trace remapped requests correctly (git-fixes). +- blk-mq: don't create hctx debugfs dir until q->debugfs_dir is + created (git-fixes). +- block: add bio_start_io_acct_time() to control start_time + (git-fixes). +- blk-cgroup: fix missing put device in error path from + blkg_conf_pref() (git-fixes). +- commit 58eed28 + +- nbd: Fix incorrect error handle when first_minor is illegal + in nbd_dev_add (git-fixes). +- Refresh for the above change, + patches.suse/0002-nbd-fix-possible-overflow-on-first_minor-in-nbd_dev_.patch. +- commit 8281951 + +- KVM: SVM: adjust register allocation for __svm_vcpu_run() + (git-fixes). +- commit 7b25718 + +- KVM: SVM: replace regs argument of __svm_vcpu_run() with + vcpu_svm (git-fixes). +- commit 7867341 + +- KVM: x86: use a separate asm-offsets.c file (git-fixes). +- commit 0602ab1 + +- KVM: x86: Hide IA32_PLATFORM_DCA_CAP[31:0] from the guest + (git-fixes). +- commit 499c3ca + +- drm/amdkfd: Migrate in CPU page fault use current mm + (git-fixes). +- commit f476661 + +- pinctrl: devicetree: fix null pointer dereferencing in + pinctrl_dt_to_map (git-fixes). +- pinctrl: rockchip: list all pins in a possible mux route for + PX30 (git-fixes). +- platform/surface: aggregator: Do not check for repeated + unsequenced packets (git-fixes). +- platform/x86/intel: pmc: Don't unconditionally attach Intel + PMC when virtualized (git-fixes). +- arm64: efi: Fix handling of misaligned runtime regions and + drop warning (git-fixes). +- ata: libata-scsi: fix SYNCHRONIZE CACHE (16) command failure + (git-fixes). +- nilfs2: fix use-after-free bug of ns_writer on remount + (git-fixes). +- mmc: sdhci_am654: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). +- mmc: sdhci-tegra: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). +- mms: sdhci-esdhc-imx: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). +- mmc: sdhci-of-arasan: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). +- mmc: cqhci: Provide helper for resetting both SDHCI and CQHCI + (git-fixes). +- ALSA: hda: fix potential memleak in 'add_widget_node' + (git-fixes). +- ALSA: hda/realtek: Add Positivo C6300 model quirk (git-fixes). +- ALSA: usb-audio: Add DSD support for Accuphase DAC-60 + (git-fixes). +- ALSA: usb-audio: Add quirk entry for M-Audio Micro (git-fixes). +- ALSA: hda/hdmi - enable runtime pm for more AMD display audio + (git-fixes). +- ALSA: hda/ca0132: add quirk for EVGA Z390 DARK (git-fixes). +- drm/amdgpu: disable BACO on special BEIGE_GOBY card (git-fixes). +- wifi: ath11k: avoid deadlock during regulatory update in + ath11k_regd_update() (git-fixes). +- platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi + (git-fixes). +- drm/amdkfd: Fix NULL pointer dereference in svm_migrate_to_ram() + (git-fixes). +- thunderbolt: Add DP OUT resource when DP tunnel is discovered + (git-fixes). +- drm/amdkfd: handle CPU fault on COW mapping (git-fixes). +- drm/amdkfd: avoid recursive lock in migrations back to RAM + (git-fixes). +- commit 438c140 + +- KVM: x86: Treat #DBs from the emulator as fault-like (code + and DR7.GD=1) (git-fixes). +- commit 89491ed + +- libbpf: Add per-program log buffer setter and getter + (jsc#PED-1368). +- libbpf: Preserve kernel error code and remove kprobe prog type + guessing (jsc#PED-1368). +- libbpf: Improve logging around BPF program loading + (jsc#PED-1368). +- libbpf: Allow passing user log setting through + bpf_object_open_opts (jsc#PED-1368). +- libbpf: Allow passing preallocated log_buf when loading BTF + into kernel (jsc#PED-1368). +- libbpf: Add OPTS-based bpf_btf_load() API (jsc#PED-1368). +- libbpf: Fix bpf_prog_load() log_buf logic for log_level 0 + (jsc#PED-1368). +- samples/bpf: Remove unneeded variable (jsc#PED-1368). +- bpf: Remove redundant assignment to pointer t (jsc#PED-1368). +- selftests/bpf: Fix a compilation warning (jsc#PED-1368). +- samples: bpf: Fix 'unknown warning group' build warning on Clang + (jsc#PED-1368). +- samples: bpf: Fix xdp_sample_user.o linking with Clang + (jsc#PED-1368). +- bpf: Silence purge_cand_cache build warning (jsc#PED-1368). +- libbpf: Add doc comments in libbpf.h (jsc#PED-1368). +- libbpf: Fix trivial typo (jsc#PED-1368). +- bpftool: Add debug mode for gen_loader (jsc#PED-1368). +- bpf: Fix the test_task_vma selftest to support output shorter + than 1 kB (jsc#PED-1368). +- libbpf: Reduce bpf_core_apply_relo_insn() stack usage + (jsc#PED-1368). +- libbpf: Deprecate bpf_prog_load_xattr() API (jsc#PED-1368). +- samples/bpf: Get rid of deprecated libbpf API uses + (jsc#PED-1368). +- samples/bpf: Clean up samples/bpf build failes (jsc#PED-1368). +- selftests/bpf: Remove all the uses of deprecated + bpf_prog_load_xattr() (jsc#PED-1368). +- selftests/bpf: Mute xdpxceiver.c's deprecation warnings + (jsc#PED-1368). +- selftests/bpf: Remove recently reintroduced legacy btf__dedup() + use (jsc#PED-1368). +- bpftool: Migrate off of deprecated bpf_create_map_xattr() API + (jsc#PED-1368). +- libbpf: Add API to get/set log_level at per-program level + (jsc#PED-1368). +- libbpf: Use __u32 fields in bpf_map_create_opts (jsc#PED-1368). +- selftests/bpf: Update test names for xchg and cmpxchg + (jsc#PED-1368). +- selftests/bpf: Build testing_helpers.o out of tree + (jsc#PED-1368). +- selftests/bpf: Add CO-RE relocations to verifier scale test + (jsc#PED-1368). +- selftests/bpf: Revert CO-RE removal in test_ksyms_weak + (jsc#PED-1368). +- selftests/bpf: Additional test for CO-RE in the kernel + (jsc#PED-1368). +- selftests/bpf: Convert map_ptr_kern test to use light skeleton + (jsc#PED-1368). +- selftests/bpf: Improve inner_map test coverage (jsc#PED-1368). +- selftests/bpf: Add lskel version of kfunc test (jsc#PED-1368). +- libbpf: Clean gen_loader's attach kind (jsc#PED-1368). +- libbpf: Support init of inner maps in light skeleton + (jsc#PED-1368). +- libbpf: Use CO-RE in the kernel in light skeleton + (jsc#PED-1368). +- bpf: Add bpf_core_add_cands() and wire it into + bpf_core_apply_relo_insn() (jsc#PED-1368). +- libbpf: Cleanup struct bpf_core_cand (jsc#PED-1368). +- commit 8a4479c + +- KVM: x86: Report error when setting CPUID if Hyper-V allocation + fails (git-fixes). +- commit 335e5aa + +- virtio-blk: Use blk_validate_block_size() to validate block size + (git-fixes). +- block: drop unused includes in (git-fixes). +- commit a549255 + +- blacklist.conf: add commits suggested by git-fixes which won't be backported +- commit d1fe12d + +- KVM: SVM: Disable SEV-ES support if MMIO caching is disable + (git-fixes). +- commit d6a15a7 + +- KVM: x86/mmu: fix memoryleak in kvm_mmu_vendor_module_init() + (git-fixes). +- commit ce66979 + +- KVM: nVMX: Attempt to load PERF_GLOBAL_CTRL on nVMX xfer iff + it exists (git-fixes). +- commit 3387324 + +- KVM: VMX: Add helper to check if the guest PMU has + PERF_GLOBAL_CTRL (git-fixes). +- commit 1b36b28 + +- blacklist.conf: don't deprecate bpf_program__get_prog_info_linear +- commit 0b5cdb8 + +- nvdimm/blk: Fix title level (jsc#PED-1689, jsc#PED-1690). +- commit 5555a12 + +- scsi: mpi3mr: Fix formatting problems in some kernel-doc + comments (jsc#PED-1446). +- scsi: mpi3mr: Fix some spelling mistakes (jsc#PED-1446). +- scsi: mpi3mr: Bump driver version to 8.0.0.61.0 (jsc#PED-1446). +- scsi: mpi3mr: Fixes around reply request queues (jsc#PED-1446). +- scsi: mpi3mr: Enhanced Task Management Support Reply handling + (jsc#PED-1446). +- scsi: mpi3mr: Use TM response codes from MPI3 headers + (jsc#PED-1446). +- commit b2509ba + +- scsi: mpi3mr: Add io_uring interface support in I/O-polled mode + (jsc#PED-1446). +- Refresh + patches.suse/scsi-mpi3mr-Schedule-IRQ-kthreads-only-on-non-RT-kernels.patch. +- commit b6105c2 + +- scsi: mpi3mr: Print cable mngnt and temp threshold events + (jsc#PED-1446). +- scsi: mpi3mr: Support Prepare for Reset event (jsc#PED-1446). +- commit 589f645 + +- scsi: mpi3mr: Add Event acknowledgment logic (jsc#PED-1446). +- scsi: mpi3mr: Gracefully handle online FW update operation + (jsc#PED-1446). +- scsi: mpi3mr: Detect async reset that occurred in firmware + (jsc#PED-1446). +- scsi: mpi3mr: Add IOC reinit function (jsc#PED-1446). +- scsi: mpi3mr: Handle offline FW activation in graceful manner + (jsc#PED-1446). +- scsi: mpi3mr: Code refactor of IOC init - part2 (jsc#PED-1446). +- scsi: mpi3mr: Code refactor of IOC init - part1 (jsc#PED-1446). +- scsi: mpi3mr: Fault IOC when internal command gets timeout + (jsc#PED-1446). +- scsi: mpi3mr: Display IOC firmware package version + (jsc#PED-1446). +- scsi: mpi3mr: Handle unaligned PLL in unmap cmnds + (jsc#PED-1446). +- scsi: mpi3mr: Increase internal cmnds timeout to 60s + (jsc#PED-1446). +- scsi: mpi3mr: Do access status validation before adding devices + (jsc#PED-1446). +- scsi: mpi3mr: Add support for PCIe Managed Switch SES device + (jsc#PED-1446). +- scsi: mpi3mr: Update MPI3 headers - part2 (jsc#PED-1446). +- scsi: mpi3mr: Update MPI3 headers - part1 (jsc#PED-1446). +- scsi: mpi3mr: Don't reset IOC if cmnds flush with reset status + (jsc#PED-1446). +- scsi: mpi3mr: Replace spin_lock() with spin_lock_irqsave() + (jsc#PED-1446). +- scsi: mpi3mr: Add debug APIs based on logging_level bits + (jsc#PED-1446). +- scsi: mpi3mr: Use scnprintf() instead of snprintf() + (jsc#PED-1446). +- scsi: mpi3mr: Clean up mpi3mr_print_ioc_info() (jsc#PED-1446). +- commit 528c787 + +- KVM: VMX: Mark all PERF_GLOBAL_(OVF)_CTRL bits reserved if + there's no vPMU (git-fixes). +- commit 3ada3ae + +- tcp: Fix data races around icsk->icsk_af_ops (CVE-2022-3566 + bsc#1204405). +- commit f7cc985 + +- ipv6: Fix data races around sk->sk_prot (CVE-2022-3567 + bsc#1204414). +- ipv6: annotate some data-races around sk->sk_prot (CVE-2022-3567 + bsc#1204414). +- commit 654a4f7 + +- KVM: nVMX: Rename handle_vm{on,off}() to handle_vmx{on,off}() + (git-fixes). +- commit 7218ba7 + +- KVM: nVMX: Always enable TSC scaling for L2 when it was enabled + for L1 (git-fixes). +- commit b0f3ab9 + +- KVM: x86: Fully initialize 'struct kvm_lapic_irq' in + kvm_pv_kick_cpu_op() (git-fixes). +- commit 81fd9e6 + +- KVM: x86: Signal #GP, not -EPERM, on bad WRMSR(MCi_CTL/STATUS) + (git-fixes). +- commit 1a1eab3 + +- KVM: SVM: Stuff next_rip on emulated INT3 injection if NRIPS + is supported (git-fixes). +- commit e7e1382 + +- KVM: SEV: Mark nested locking of vcpu->lock (git-fixes). +- commit 5f6bf6f + +- KVM: x86/svm: Account for family 17h event renumberings in + amd_pmc_perf_hw_id (git-fixes). +- commit e3ae104 + +- KVM: x86: avoid loading a vCPU after .vm_destroy was called + (git-fixes). +- commit 29af845 + +- KVM: Move wiping of the kvm->vcpus array to common code + (git-fixes). +- commit 9720dc5 + +- s390/pci: add missing EX_TABLE entries to + __pcistg_mio_inuser()/__pcilg_mio_inuser() (bsc#1205427 + LTC#200502). +- s390/futex: add missing EX_TABLE entry to __futex_atomic_op() + (bsc#1205427 LTC#200502). +- s390/uaccess: add missing EX_TABLE entries to __clear_user(), + copy_in_user_mvcos(), copy_in_user_mvc(), clear_user_xc() + and __strnlen_user() (bsc#1205428 LTC#200501). +- commit ad7cfae + +- nilfs2: fix deadlock in nilfs_count_free_blocks() (git-fixes). +- dmaengine: at_hdmac: Check return code of + dma_async_device_register (git-fixes). +- dmaengine: at_hdmac: Fix impossible condition (git-fixes). +- dmaengine: at_hdmac: Don't allow CPU to reorder channel enable + (git-fixes). +- dmaengine: at_hdmac: Fix completion of unissued descriptor in + case of errors (git-fixes). +- dmaengine: at_hdmac: Fix descriptor handling when issuing it + to hardware (git-fixes). +- spi: stm32: Print summary 'callbacks suppressed' message + (git-fixes). +- mmc: sdhci-esdhc-imx: use the correct host caps for + MMC_CAP_8_BIT_DATA (git-fixes). +- drm/i915/dmabuf: fix sg_table handling in map_dma_buf + (git-fixes). +- drm/vc4: Fix missing platform_unregister_drivers() call in + vc4_drm_register() (git-fixes). +- nilfs2: replace WARN_ONs by nilfs_error for checkpoint + acquisition failure (git-fixes). +- commit f7fc242 + +- dmaengine: at_hdmac: Fix concurrency over the active list + (git-fixes). +- dmaengine: at_hdmac: Free the memset buf without holding the + chan lock (git-fixes). +- dmaengine: at_hdmac: Fix concurrency over descriptor + (git-fixes). +- dmaengine: at_hdmac: Fix concurrency problems by removing + atc_complete_all() (git-fixes). +- dmaengine: at_hdmac: Protect atchan->status with the channel + lock (git-fixes). +- dmaengine: at_hdmac: Do not call the complete callback on + device_terminate_all (git-fixes). +- dmaengine: at_hdmac: Fix premature completion of desc in + issue_pending (git-fixes). +- dmaengine: at_hdmac: Start transfer for cyclic channels in + issue_pending (git-fixes). +- dmaengine: at_hdmac: Don't start transactions at tx_submit level + (git-fixes). +- dmaengine: at_hdmac: Fix at_lli struct definition (git-fixes). +- commit 718fc6d + +- KVM: x86/pmu: Update AMD PMC sample period to fix guest + NMI-watchdog (git-fixes). +- commit d582f6e + +- ata: libata-transport: fix error handling in ata_tdev_add() + (git-fixes). +- ata: libata-transport: fix error handling in ata_tlink_add() + (git-fixes). +- ata: libata-transport: fix error handling in ata_tport_add() + (git-fixes). +- ata: libata-transport: fix double ata_host_put() in + ata_tport_add() (git-fixes). +- dmaengine: ti: k3-udma-glue: fix memory leak when register + device fail (git-fixes). +- dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove() + (git-fixes). +- dmaengine: pxa_dma: use platform_get_irq_optional (git-fixes). +- commit 3e58402 + +- x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473). +- commit d022167 + +- KVM: x86: Use __try_cmpxchg_user() to emulate atomic accesses + (git-fixes). +- commit af8969b + +- KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits + (git-fixes). +- commit 4c10c2f + +- bpf: Pass a set of bpf_core_relo-s to prog_load command + (jsc#PED-1368). +- Refresh patches.suse/x86-speculation-include-unprivileged-ebpf-status-in-spectre-v2-mitigation-reporting.patch +- bpf: Define enum bpf_core_relo_kind as uapi (jsc#PED-1368). +- bpf: Prepare relo_core.c for kernel duty (jsc#PED-1368). +- bpf: Rename btf_member accessors (jsc#PED-1368). +- libbpf: Replace btf__type_by_id() with btf_type_by_id() + (jsc#PED-1368). +- samples: bpf: Fix conflicting types in fds_example + (jsc#PED-1368). +- bpf: Clean-up bpf_verifier_vlog() for BPF_LOG_KERNEL log level + (jsc#PED-1368). +- libbpf: Avoid reload of imm for weak, unresolved, repeating ksym + (jsc#PED-1368). +- libbpf: Avoid double stores for success/failure case of ksym + relocations (jsc#PED-1368). +- bpf: Change bpf_kallsyms_lookup_name size type to + ARG_CONST_SIZE_OR_ZERO (jsc#PED-1368). +- selftest/bpf/benchs: Add bpf_loop benchmark (jsc#PED-1368). +- selftests/bpf: Measure bpf_loop verifier performance + (jsc#PED-1368). +- selftests/bpf: Add bpf_loop test (jsc#PED-1368). +- bpf: Add bpf_loop helper (jsc#PED-1368). +- bpf, docs: Split general purpose eBPF documentation out of + filter.rst (jsc#PED-1368). +- bpf, docs: Move handling of maps to Documentation/bpf/maps.rst + (jsc#PED-1368). +- bpf, docs: Prune all references to "internal BPF" + (jsc#PED-1368). +- bpf: Remove a redundant comment on bpf_prog_free (jsc#PED-1368). +- x86, bpf: Cleanup the top of file header in bpf_jit_comp.c + (jsc#PED-1368). +- libbpf: Remove duplicate assignments (jsc#PED-1368). +- libbpf: Silence uninitialized warning/error in + btf_dump_dump_type_data (jsc#PED-1368). +- selftests/bpf: Test BPF_MAP_TYPE_PROG_ARRAY static + initialization (jsc#PED-1368). +- libbpf: Support static initialization of BPF_MAP_TYPE_PROG_ARRAY + (jsc#PED-1368). +- bpf, mips: Fix build errors about __NR_bpf undeclared + (jsc#PED-1368). +- selftests/bpf: Fix misaligned accesses in xdp and xdp_bpf2bpf + tests (jsc#PED-1368). +- selftests/bpf: Fix misaligned memory accesses in xdp_bonding + test (jsc#PED-1368). +- selftests/bpf: Prevent out-of-bounds stack access in test_bpffs + (jsc#PED-1368). +- selftests/bpf: Fix misaligned memory access in queue_stack_map + test (jsc#PED-1368). +- selftests/bpf: Prevent misaligned memory access in + get_stack_raw_tp test (jsc#PED-1368). +- selftests/bpf: Fix possible NULL passed to memcpy() with zero + size (jsc#PED-1368). +- selftests/bpf: Fix UBSan complaint about signed __int128 + overflow (jsc#PED-1368). +- libbpf: Fix using invalidated memory in bpf_linker + (jsc#PED-1368). +- libbpf: Fix glob_syms memory leak in bpf_linker (jsc#PED-1368). +- libbpf: Don't call libc APIs with NULL pointers (jsc#PED-1368). +- libbpf: Fix potential misaligned memory access in btf_ext__new() + (jsc#PED-1368). +- tools/resolve_btf_ids: Close ELF file on error (jsc#PED-1368). +- selftests/bpf: Migrate selftests to bpf_map_create() + (jsc#PED-1368). +- libbpf: Prevent deprecation warnings in xsk.c (jsc#PED-1368). +- libbpf: Use bpf_map_create() consistently internally + (jsc#PED-1368). +- libbpf: Unify low-level map creation APIs w/ new + bpf_map_create() (jsc#PED-1368). +- selftests/bpf: Mix legacy (maps) and modern (vars) BPF in one + test (jsc#PED-1368). +- libbpf: Load global data maps lazily on legacy kernels + (jsc#PED-1368). +- selftests/bpf: Fix trivial typo (jsc#PED-1368). +- libbpf: Change bpf_program__set_extra_flags to + bpf_program__set_flags (jsc#PED-1368). +- selftests/bpf: Add btf_dedup case with duplicated structs + within CU (jsc#PED-1368). +- libbpf: Accommodate DWARF/compiler bug with duplicated structs + (jsc#PED-1368). +- libbpf: Add runtime APIs to query libbpf version (jsc#PED-1368). +- selfetests/bpf: Adapt vmtest.sh to s390 libbpf CI changes + (jsc#PED-1368). +- selftests/bpf: Fix xdpxceiver failures for no hugepages + (jsc#PED-1368). +- skbuff: Move conditional preprocessor directives out of struct + sk_buff (jsc#PED-1368). +- selftests/bpf: Test RENAME_EXCHANGE and RENAME_NOREPLACE on + bpffs (jsc#PED-1368). +- commit 30264f0 + +- x86/futex: Remove .fixup usage (git-fixes). +- commit 687839d + +- ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy + Book Pro 360 (bsc#1205100). +- ALSA: hda/realtek: fix speakers for Samsung Galaxy Book Pro + (bsc#1205100). +- commit ca2ce49 + +- bpf, docs: Fix ordering of bpf documentation (jsc#PED-1368). +- libbpf: Rename libbpf documentation index file (jsc#PED-1368). +- commit fd082d1 + +- x86/extable: Extend extable functionality (git-fixes). +- commit 28f726d + +- bpf, docs: Rename bpf_lsm.rst to prog_lsm.rst (jsc#PED-1368). +- bpf, docs: Change underline in btf to match style guide + (jsc#PED-1368). +- selftests/bpf: Mark variable as static (jsc#PED-1368). +- selftests/bpf: Variable naming fix (jsc#PED-1368). +- selftests/bpf: Move summary line after the error logs + (jsc#PED-1368). +- selftests/bpf: Add uprobe triggering overhead benchmarks + (jsc#PED-1368). +- bpf: Change value of MAX_TAIL_CALL_CNT from 32 to 33 + (jsc#PED-1368). +- selftests/bpf: Configure dir paths via env in + test_bpftool_synctypes.py (jsc#PED-1368). +- bpftool: Update doc (use susbtitutions) and + test_bpftool_synctypes.py (jsc#PED-1368). +- bpftool: Add SPDX tags to RST documentation files + (jsc#PED-1368). +- selftests/bpf: Add a dedup selftest with equivalent structure + types (jsc#PED-1368). +- libbpf: Fix a couple of missed btf_type_tag handling in btf.c + (jsc#PED-1368). +- bpftool: Add current libbpf_strict mode to version output + (jsc#PED-1368). +- bpftool: Use libbpf_get_error() to check error (jsc#PED-1368). +- bpftool: Fix mixed indentation in documentation (jsc#PED-1368). +- bpftool: Update the lists of names for maps and prog-attach + types (jsc#PED-1368). +- bpftool: Fix indent in option lists in the documentation + (jsc#PED-1368). +- selftests/bpf: Fix a tautological-constant-out-of-range-compare + compiler warning (jsc#PED-1368). +- selftests/bpf: Fix an unused-but-set-variable compiler warning + (jsc#PED-1368). +- bpf: Introduce btf_tracing_ids (jsc#PED-1368). +- bpf: Extend BTF_ID_LIST_GLOBAL with parameter for number of IDs + (jsc#PED-1368). +- bpftool: Enable libbpf's strict mode by default (jsc#PED-1368). +- docs/bpf: Update documentation for BTF_KIND_TYPE_TAG support + (jsc#PED-1368). +- selftests/bpf: Clarify llvm dependency with btf_tag selftest + (jsc#PED-1368). +- selftests/bpf: Add a C test for btf_type_tag (jsc#PED-1368). +- selftests/bpf: Rename progs/tag.c to progs/btf_decl_tag.c + (jsc#PED-1368). +- selftests/bpf: Test BTF_KIND_DECL_TAG for deduplication + (jsc#PED-1368). +- selftests/bpf: Add BTF_KIND_TYPE_TAG unit tests (jsc#PED-1368). +- selftests/bpf: Test libbpf API function btf__add_type_tag() + (jsc#PED-1368). +- bpftool: Support BTF_KIND_TYPE_TAG (jsc#PED-1368). +- libbpf: Support BTF_KIND_TYPE_TAG (jsc#PED-1368). +- bpf: Support BTF_KIND_TYPE_TAG for btf_type_tag attributes + (jsc#PED-1368). +- bpftool: Update btf_dump__new() and perf_buffer__new_raw() + calls (jsc#PED-1368). +- tools/runqslower: Update perf_buffer__new() calls + (jsc#PED-1368). +- selftests/bpf: Update btf_dump__new() uses to v1.0+ variant + (jsc#PED-1368). +- selftests/bpf: Migrate all deprecated perf_buffer uses + (jsc#PED-1368). +- libbpf: Make perf_buffer__new() use OPTS-based interface + (jsc#PED-1368). +- libbpf: Ensure btf_dump__new() and btf_dump_opts are + future-proof (jsc#PED-1368). +- libbpf: Turn btf_dedup_opts into OPTS-based struct + (jsc#PED-1368). +- selftests/bpf: Minor cleanups and normalization of Makefile + (jsc#PED-1368). +- bpftool: Normalize compile rules to specify output file last + (jsc#PED-1368). +- selftests/bpf: Fix bpf_prog_test_load() logic to pass extra + log level (jsc#PED-1368). +- libbpf: Add ability to get/set per-program load flags + (jsc#PED-1368). +- selftests/bpf: Add tests for accessing ingress_ifindex in + bpf_sk_lookup (jsc#PED-1368). +- bpf: Add ingress_ifindex to bpf_sk_lookup (jsc#PED-1368). +- bpftool: Fix SPDX tag for Makefiles and .gitignore + (jsc#PED-1368). +- Refresh patches.suse/bpftool-Remove-inclusion-of-utilities.mak-from-Makef.patch +- libbpf: Compile using -std=gnu89 (jsc#PED-1368). +- selftests/bpf: Add exception handling selftests for tp_bpf + program (jsc#PED-1368). +- selftests/bpf: Add tests for bpf_find_vma (jsc#PED-1368). +- bpf: Introduce helper bpf_find_vma (jsc#PED-1368). +- selftests/bpf: Fix bpf_object leak in skb_ctx selftest + (jsc#PED-1368). +- selftests/bpf: Destroy XDP link correctly (jsc#PED-1368). +- selftests/bpf: Avoid duplicate btf__parse() call (jsc#PED-1368). +- selftests/bpf: Clean up btf and btf_dump in dump_datasec test + (jsc#PED-1368). +- selftests/bpf: Free inner strings index in btf selftest + (jsc#PED-1368). +- selftests/bpf: Free per-cpu values array in bpf_iter selftest + (jsc#PED-1368). +- selftests/bpf: Fix memory leaks in btf_type_c_dump() helper + (jsc#PED-1368). +- selftests/bpf: Pass sanitizer flags to linker through LDFLAGS + (jsc#PED-1368). +- selftests/bpf: Use explicit bpf_test_load_program() helper calls + (jsc#PED-1368). +- selftests/bpf: Use explicit bpf_prog_test_load() calls + everywhere (jsc#PED-1368). +- selftests/bpf: Merge test_stub.c into testing_helpers.c + (jsc#PED-1368). +- selftests/bpf: Convert legacy prog load APIs to bpf_prog_load() + (jsc#PED-1368). +- selftests/bpf: Fix non-strict SEC() program sections + (jsc#PED-1368). +- libbpf: Remove deprecation attribute from struct + bpf_prog_prep_result (jsc#PED-1368). +- bpftool: Stop using deprecated bpf_load_program() + (jsc#PED-1368). +- libbpf: Stop using to-be-deprecated APIs (jsc#PED-1368). +- libbpf: Remove internal use of deprecated bpf_prog_load() + variants (jsc#PED-1368). +- libbpf: Unify low-level BPF_PROG_LOAD APIs into bpf_prog_load() + (jsc#PED-1368). +- libbpf: Pass number of prog load attempts explicitly + (jsc#PED-1368). +- libbpf: Rename DECLARE_LIBBPF_OPTS into LIBBPF_OPTS + (jsc#PED-1368). +- libbpf: Fix non-C89 loop variable declaration in gen_loader.c + (jsc#PED-1368). +- libbpf: Deprecate bpf_program__load() API (jsc#PED-1368). +- libbpf: Improve ELF relo sanitization (jsc#PED-1368). +- libbpf: Fix section counting logic (jsc#PED-1368). +- libbpf: Validate that .BTF and .BTF.ext sections contain data + (jsc#PED-1368). +- libbpf: Improve sanity checking during BTF fix up + (jsc#PED-1368). +- libbpf: Detect corrupted ELF symbols section (jsc#PED-1368). +- bpftool: Use bpf_obj_get_info_by_fd directly (jsc#PED-1368). +- bpftool: Migrate -1 err checks of libbpf fn calls + (jsc#PED-1368). +- bpf: Document BPF licensing (jsc#PED-1368). +- commit d7e0919 + +- x86/microcode/AMD: Apply the patch early on every logical thread + (bsc#1205264). +- commit 6805cb3 + +- x86/uaccess: Implement macros for CMPXCHG on user addresses + (git-fixes). +- commit 680ab7c + +- Kconfig: Add option for asm goto w/ tied outputs to workaround + clang-13 bug (git-fixes). +- Refresh config. +- commit 7888244 + +- KVM: x86/pmu: Fix and isolate TSX-specific performance event + logic (git-fixes). +- commit e13feb1 + +- kABI: Fix kABI after "KVM: x86/pmu: Use different raw event + masks for AMD and Intel" (git-fixes). +- commit d086901 + +- KVM: x86/pmu: Use different raw event masks for AMD and Intel + (git-fixes). +- commit fd5bd7c + +- xen/gntdev: Accommodate VMA splitting (git-fixes). +- commit 0745691 + +- KVM: x86/mmu: WARN if old _or_ new SPTE is REMOVED in non-atomic + path (git-fixes). +- commit bc980a8 + +- KVM: x86/mmu: Fix wrong/misleading comments in TDP MMU fast zap + (git-fixes). +- commit d3e6160 + +- blacklist.conf: add fcb732d8f8cf ("KVM: x86/xen: Fix runstate + updates to be atomic when preempting vCPU") +- commit d42ecb5 + +- blacklist.conf: add 55749769fe60 ("KVM: x86: Fix wall clock writes + in Xen shared_info not to mark page dirty") +- commit 08e6ef4 + +- KVM: x86: Mask off reserved bits in CPUID.80000001H (git-fixes). +- commit a7fc31c + +- nvdimm/region: Delete nd_blk_region infrastructure + (jsc#PED-1689, jsc#PED-1690). +- ACPI: NFIT: Remove block aperture support (jsc#PED-1689, + jsc#PED-1690). +- nvdimm/namespace: Delete nd_namespace_blk (jsc#PED-1689, + jsc#PED-1690). +- nvdimm/namespace: Delete blk namespace consideration in shared + paths (jsc#PED-1689, jsc#PED-1690). +- nvdimm/blk: Delete the block-aperture window driver + (jsc#PED-1689, jsc#PED-1690). +- nvdimm/region: Fix default alignment for small regions + (jsc#PED-1689, jsc#PED-1690). +- libnvdimm/labels: Add uuid helpers (jsc#PED-1689, jsc#PED-1690). +- libnvdimm/labels: Introduce label setter helpers (jsc#PED-1689, + jsc#PED-1690). +- libnvdimm/labels: Add isetcookie validation helper + (jsc#PED-1689, jsc#PED-1690). +- libnvdimm/labels: Introduce getters for namespace label fields + (jsc#PED-1689, jsc#PED-1690). +- commit f3a7636 + +- KVM: x86: emulator: update the emulation mode after CR0 write + (git-fixes). +- commit f0c4a2c + +- KVM: x86: emulator: update the emulation mode after rsm + (git-fixes). +- commit debb42a + +- KVM: x86: emulator: introduce emulator_recalc_and_set_mode + (git-fixes). +- commit a9da797 + +- blacklist.conf: add xsk entry that was reverted +- commit 8c1c3d4 + +- KVM: x86: emulator: em_sysexit should update ctxt->mode + (git-fixes). +- commit e252f98 + +- KVM: VMX: fully disable SGX if SECONDARY_EXEC_ENCLS_EXITING + unavailable (git-fixes). +- commit f452678 + +- KVM: x86: Mask off reserved bits in CPUID.8000001AH (git-fixes). +- commit c7494f8 + +- KVM: x86: Mask off reserved bits in CPUID.80000008H (git-fixes). +- commit b042017 + +- KVM: x86: Mask off reserved bits in CPUID.80000006H (git-fixes). +- commit ce5ff67 + +- KVM: VMX: Drop bits 31:16 when shoving exception error code + into VMCS (git-fixes). +- commit e0caade + +- Update patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch + Patch (44b3834b2eed5 "arm64: errata: Remove AES hwcap for COMPAT tasks") added + new workaround identifier. Remove one placeholder to keep kABI intact. +- commit e23b992 + +- xsk: Initialise xskb free_list_node (jsc#PED-1368). +- selftests/bpf: Fix OOB write in test_verifier (jsc#PED-1368). +- bpf: Add selftests to cover packet access corner cases + (jsc#PED-1368). +- bpf: Fix the off-by-two error in range markings (jsc#PED-1368). +- tools/resolve_btfids: Skip unresolved symbol warning for empty + BTF sets (jsc#PED-1368). +- bpf: Fix bpf_check_mod_kfunc_call for built-in modules + (jsc#PED-1368). +- bpf: Make CONFIG_DEBUG_INFO_BTF depend upon CONFIG_BPF_SYSCALL + (jsc#PED-1368). +- bpf, sockmap: Re-evaluate proto ops when psock is removed from + sockmap (jsc#PED-1368). +- bpf, sockmap: Attach map progs to psock early for feature probes + (jsc#PED-1368). +- selftests/bpf: Add tests for restricted helpers (jsc#PED-1368). +- bpf: Forbid bpf_ktime_get_coarse_ns and bpf_timer_* in tracing + progs (jsc#PED-1368). +- libbpf: Perform map fd cleanup for gen_loader in case of error + (jsc#PED-1368). +- tools/runqslower: Fix cross-build (jsc#PED-1368). +- bpf: Fix inner map state pruning regression (jsc#PED-1368). +- bpf, sockmap: Use stricter sk state checks in sk_lookup_assign + (jsc#PED-1368). +- bpf: selftest: Trigger a DCE on the whole subprog + (jsc#PED-1368). +- riscv, bpf: Fix RV32 broken build, and silence RV64 warning + (jsc#PED-1368). +- bpftool: Install libbpf headers for the bootstrap version, + too (jsc#PED-1368). +- bpf: Do not reject when the stack read size is different from + the tracked scalar size (jsc#PED-1368). +- selftests/bpf: Make netcnt selftests serial to avoid spurious + failures (jsc#PED-1368). +- selftests/bpf: Convert test_bpffs to ASSERT macros + (jsc#PED-1368). +- libfs: Support RENAME_EXCHANGE in simple_rename() + (jsc#PED-1368). +- libfs: Move shmem_exchange to simple_rename_exchange + (jsc#PED-1368). +- scripts: documentation-file-ref-check: fix bpf selftests path + (jsc#PED-1368). +- libbpf: Deprecate AF_XDP support (jsc#PED-1368). +- selftests/bpf: Add a testcase for 64-bit bounds propagation + issue (jsc#PED-1368). +- bpf: Add missing map_delete_elem method to bloom filter map + (jsc#PED-1368). +- selftests/bpf: Add bloom map success test for userspace calls + (jsc#PED-1368). +- bpf: Add alignment padding for "map_extra" + consolidate holes + (jsc#PED-1368). +- Refresh patches.suse/kABI-padding-for-bpf.patch +- bpf: Bloom filter map naming fixups (jsc#PED-1368). +- selftests/bpf: Add test cases for struct_ops prog + (jsc#PED-1368). +- bpf: Add dummy BPF STRUCT_OPS for test purpose (jsc#PED-1368). +- bpf: Factor out helpers for ctx access checking (jsc#PED-1368). +- bpf: Factor out a helper to prepare trampoline for struct_ops + prog (jsc#PED-1368). +- riscv, libbpf: Add RISC-V (RV64) support to bpf_tracing.h + (jsc#PED-1368). +- tools, build: Add RISC-V to HOSTARCH parsing (jsc#PED-1368). +- riscv, bpf: Increase the maximum number of iterations + (jsc#PED-1368). +- selftests, bpf: Add one test for sockmap with strparser + (jsc#PED-1368). +- selftests, bpf: Fix test_txmsg_ingress_parser error + (jsc#PED-1368). +- selftests/bpf: Add weak/typeless ksym test for light skeleton + (jsc#PED-1368). +- Refresh patches.suse/bpf-selftests-Test-PTR_TO_RDONLY_MEM.patch +- libbpf: Use O_CLOEXEC uniformly when opening fds (jsc#PED-1368). +- libbpf: Ensure that BPF syscall fds are never 0, 1, or 2 + (jsc#PED-1368). +- libbpf: Add weak ksym support to gen_loader (jsc#PED-1368). +- libbpf: Add typeless ksym support to gen_loader (jsc#PED-1368). +- bpf: Add bpf_kallsyms_lookup_name helper (jsc#PED-1368). +- bpf/benchs: Add benchmarks for comparing hashmap lookups w/ + vs. w/out bloom filter (jsc#PED-1368). +- bpf/benchs: Add benchmark tests for bloom filter throughput + + false positive (jsc#PED-1368). +- selftests/bpf: Add bloom filter map test cases (jsc#PED-1368). +- libbpf: Add "map_extra" as a per-map-type extra flag + (jsc#PED-1368). +- bpf: Add bloom filter map implementation (jsc#PED-1368). +- riscv, bpf: Add BPF exception tables (jsc#PED-1368). +- selftests/bpf: Adding a namespace reset for tc_redirect + (jsc#PED-1368). +- selftests/bpf: Fix attach_probe in parallel mode (jsc#PED-1368). +- selfetests/bpf: Update vmtest.sh defaults (jsc#PED-1368). +- bpf: Use u64_stats_t in struct bpf_prog_stats (jsc#PED-1368). +- libbpf: Deprecate bpf_objects_list (jsc#PED-1368). +- selftests/bpf: Guess function end for test_get_branch_snapshot + (jsc#PED-1368). +- selftests/bpf: Skip all serial_test_get_branch_snapshot in vm + (jsc#PED-1368). +- selftests/seccomp: Use __BYTE_ORDER__ (jsc#PED-1368). +- samples: seccomp: Use __BYTE_ORDER__ (jsc#PED-1368). +- selftests/bpf: Use __BYTE_ORDER__ (jsc#PED-1368). +- libbpf: Use __BYTE_ORDER__ (jsc#PED-1368). +- libbpf: Deprecate ambiguously-named bpf_program__size() API + (jsc#PED-1368). +- libbpf: Deprecate multi-instance bpf_program APIs + (jsc#PED-1368). +- libbpf: Add ability to fetch bpf_program's underlying + instructions (jsc#PED-1368). +- libbpf: Fix off-by-one bug in bpf_core_apply_relo() + (jsc#PED-1368). +- bpftool: Switch to libbpf's hashmap for PIDs/names references + (jsc#PED-1368). +- bpftool: Switch to libbpf's hashmap for programs/maps in BTF + listing (jsc#PED-1368). +- bpftool: Switch to libbpf's hashmap for pinned paths of BPF + objects (jsc#PED-1368). +- bpftool: Do not expose and init hash maps for pinned path in + main.c (jsc#PED-1368). +- bpftool: Remove Makefile dep. on $(LIBBPF) for + $(LIBBPF_INTERNAL_HDRS) (jsc#PED-1368). +- selftests/bpf: Split out bpf_verif_scale selftests into multiple + tests (jsc#PED-1368). +- selftests/bpf: Mark tc_redirect selftest as serial + (jsc#PED-1368). +- selftests/bpf: Support multiple tests per file (jsc#PED-1368). +- selftests/bpf: Normalize selftest entry points (jsc#PED-1368). +- docs/bpf: Update documentation for BTF_KIND_DECL_TAG typedef + support (jsc#PED-1368). +- selftests/bpf: Add BTF_KIND_DECL_TAG typedef example in tag.c + (jsc#PED-1368). +- selftests/bpf: Test deduplication for BTF_KIND_DECL_TAG typedef + (jsc#PED-1368). +- selftests/bpf: Add BTF_KIND_DECL_TAG typedef unit tests + (jsc#PED-1368). +- bpf: Add BTF_KIND_DECL_TAG typedef support (jsc#PED-1368). +- selftests/bpf: Fix flow dissector tests (jsc#PED-1368). +- libbpf: Use func name when pinning programs with + LIBBPF_STRICT_SEC_NAME (jsc#PED-1368). +- bpf, tests: Add more LD_IMM64 tests (jsc#PED-1368). +- libbpf: Add legacy uprobe attaching support (jsc#PED-1368). +- libbpf: Refactor and simplify legacy kprobe code (jsc#PED-1368). +- selftests/bpf: Adopt attach_probe selftest to work on old + kernels (jsc#PED-1368). +- libbpf: Fix memory leak in legacy kprobe attach logic + (jsc#PED-1368). +- commit f05c9f9 + +- arm64: errata: Remove AES hwcap for COMPAT tasks (git-fixes) + Enable CONFIG_ARM64_ERRATUM_1742098 in arm64/default +- commit fbe1536 + +- arm64: Fix bit-shifting UB in the MIDR_CPU_MODEL() macro (git-fixes) +- commit c70ddd5 + +- arm64: fix rodata=full again (git-fixes) +- commit 62260a8 + +- selftests/bpf: Switch to new btf__type_cnt/btf__raw_data APIs + (jsc#PED-1368). +- bpftool: Switch to new btf__type_cnt API (jsc#PED-1368). +- tools/resolve_btfids: Switch to new btf__type_cnt API + (jsc#PED-1368). +- perf bpf: Switch to new btf__raw_data API (jsc#PED-1368). +- libbpf: Add btf__type_cnt() and btf__raw_data() APIs + (jsc#PED-1368). +- selftests/bpf: Make perf_buffer selftests work on 4.9 kernel + again (jsc#PED-1368). +- libbpf: Fix the use of aligned attribute (jsc#PED-1368). +- selftests/bpf: Switch to ".bss"/".rodata"/".data" lookups for + internal maps (jsc#PED-1368). +- libbpf: Simplify look up by name of internal maps + (jsc#PED-1368). +- selftests/bpf: Demonstrate use of custom .rodata/.data sections + (jsc#PED-1368). +- libbpf: Support multiple .rodata.* and .data.* BPF maps + (jsc#PED-1368). +- bpftool: Improve skeleton generation for data maps without + DATASEC type (jsc#PED-1368). +- bpftool: Support multiple .rodata/.data internal maps in + skeleton (jsc#PED-1368). +- libbpf: Remove assumptions about uniqueness of + .rodata/.data/.bss maps (jsc#PED-1368). +- libbpf: Use Elf64-specific types explicitly for dealing with + ELF (jsc#PED-1368). +- libbpf: Extract ELF processing state into separate struct + (jsc#PED-1368). +- libbpf: Deprecate btf__finalize_data() and move it into libbpf.c + (jsc#PED-1368). +- selftests/bpf: Use nanosleep tracepoint in perf buffer test + (jsc#PED-1368). +- selftests/bpf: Fix possible/online index mismatch in perf_buffer + test (jsc#PED-1368). +- selftests/bpf: Add verif_stats test (jsc#PED-1368). +- bpf: Add verified_insns to bpf_prog_info and fdinfo + (jsc#PED-1368). +- libbpf: Fix ptr_is_aligned() usages (jsc#PED-1368). +- selftests/bpf: Test bpf_skc_to_unix_sock() helper + (jsc#PED-1368). +- bpf: Add bpf_skc_to_unix_sock() helper (jsc#PED-1368). +- samples: bpf: Suppress readelf stderr when probing for BTF + support (jsc#PED-1368). +- net: bpf: Switch over to memdup_user() (jsc#PED-1368). +- libbpf: Fix dumping non-aligned __int128 (jsc#PED-1368). +- libbpf: Fix dumping big-endian bitfields (jsc#PED-1368). +- selftests/bpf: Use cpu_number only on arches that have it + (jsc#PED-1368). +- bpf/preload: Clean up .gitignore and "clean-files" target + (jsc#PED-1368). +- bpf: Silence Coverity warning for find_kfunc_desc_btf + (jsc#PED-1368). +- bpftool: Turn check on zlib from a phony target into a + conditional error (jsc#PED-1368). +- bpftool: Do not FORCE-build libbpf (jsc#PED-1368). +- selftests/bpf: Switch sk_lookup selftests to strict + SEC("sk_lookup") use (jsc#PED-1368). +- libbpf: Add opt-in strict BPF program section name handling + logic (jsc#PED-1368). +- libbpf: Complete SEC() table unification for + BPF_APROG_SEC/BPF_EAPROG_SEC (jsc#PED-1368). +- libbpf: Refactor ELF section handler definitions (jsc#PED-1368). +- libbpf: Reduce reliance of attach_fns on sec_def internals + (jsc#PED-1368). +- libbpf: Refactor internal sec_def handling to enable + pluggability (jsc#PED-1368). +- Refresh patches.suse/libbpf-Support-kernel-module-function-calls.patch +- selftests/bpf: Normalize all the rest SEC() uses (jsc#PED-1368). +- selftests/bpf: Switch SEC("classifier*") usage to a strict + SEC("tc") (jsc#PED-1368). +- commit 6e3d638 + +- bpftool: Fix install for libbpf's internal header(s) + (jsc#PED-1368). +- libbpf: Remove Makefile warnings on out-of-sync + netlink.h/if_link.h (jsc#PED-1368). +- bpf: Rename BTF_KIND_TAG to BTF_KIND_DECL_TAG (jsc#PED-1368). +- selfetest/bpf: Make some tests serial (jsc#PED-1368). +- selftests/bpf: Fix pid check in fexit_sleep test (jsc#PED-1368). +- selftests/bpf: Adding pid filtering for atomics test + (jsc#PED-1368). +- selftests/bpf: Make cgroup_v1v2 use its own port (jsc#PED-1368). +- selftests/bpf: Fix race condition in enable_stats + (jsc#PED-1368). +- selftests/bpf: Add per worker cgroup suffix (jsc#PED-1368). +- selftests/bpf: Allow some tests to be executed in sequence + (jsc#PED-1368). +- selftests/bpf: Add parallelism to test_progs (jsc#PED-1368). +- bpf: Support writable context for bare tracepoint + (jsc#PED-1368). +- bpftool: Add install-bin target to install binary only + (jsc#PED-1368). +- selftests/bpf: Better clean up for runqslower in + test_bpftool_build.sh (jsc#PED-1368). +- samples/bpf: Do not FORCE-recompile libbpf (jsc#PED-1368). +- samples/bpf: Install libbpf headers when building + (jsc#PED-1368). +- samples/bpf: Update .gitignore (jsc#PED-1368). +- bpf: iterators: Install libbpf headers when building + (jsc#PED-1368). +- bpf: preload: Install libbpf headers when building + (jsc#PED-1368). +- tools/runqslower: Install libbpf headers when building + (jsc#PED-1368). +- tools/resolve_btfids: Install libbpf headers when building + (jsc#PED-1368). +- bpftool: Install libbpf headers instead of including the dir + (jsc#PED-1368). +- Refresh patches.suse/bpftool-Remove-useless-include-to-perf-sys.h-from-ma.patch +- libbpf: Skip re-installing headers file if source is older + than target (jsc#PED-1368). +- selftests/bpf: Remove SEC("version") from test progs + (jsc#PED-1368). +- selftests/bpf: Skip the second half of get_branch_snapshot in vm + (jsc#PED-1368). +- selftests/bpf: Switch to new bpf_object__next_{map,program} + APIs (jsc#PED-1368). +- libbpf: Deprecate bpf_{map,program}__{prev,next} APIs since v0.7 + (jsc#PED-1368). +- libbpf: Add API documentation convention guidelines + (jsc#PED-1368). +- bpf: Use $(pound) instead of \# in Makefiles (jsc#PED-1368). +- selftests/bpf: Test new btf__add_btf() API (jsc#PED-1368). +- selftests/bpf: Refactor btf_write selftest to reuse BTF + generation logic (jsc#PED-1368). +- libbpf: Add API that copies all BTF types from one BTF object + to another (jsc#PED-1368). +- bpf: Avoid retpoline for bpf_for_each_map_elem (jsc#PED-1368). +- bpf: selftests: Add selftests for module kfunc support + (jsc#PED-1368). +- libbpf: Update gen_loader to emit BTF_KIND_FUNC relocations + (jsc#PED-1368). +- libbpf: Resolve invalid weak kfunc calls with imm = 0, off = + 0 (jsc#PED-1368). +- libbpf: Support kernel module function calls (jsc#PED-1368). +- bpf: Enable TCP congestion control kfunc from modules + (jsc#PED-1368). +- tools: Allow specifying base BTF file in resolve_btfids + (jsc#PED-1368). +- bpf: btf: Introduce helpers for dynamic BTF set registration + (jsc#PED-1368). +- bpf: Be conservative while processing invalid kfunc calls + (jsc#PED-1368). +- bpf: Introduce BPF support for kernel module function calls + (jsc#PED-1368). +- Refresh patches.suse/bpf-Stop-caching-subprog-index-in-the-bpf_pseudo_fun.patch +- Refresh patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch +- selftests/bpf: Use BTF-defined key/value for map definitions + (jsc#PED-1368). +- libbpf: Support uniform BTF-defined key/value specification + across all BPF maps (jsc#PED-1368). +- bpf/tests: Add test of LDX_MEM with operand aliasing + (jsc#PED-1368). +- bpf/tests: Add test of ALU shifts with operand register aliasing + (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of BPF_ATOMIC register + combinations (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of ALU register combinations + (jsc#PED-1368). +- bpf/tests: Minor restructuring of ALU tests (jsc#PED-1368). +- bpf/tests: Add more tests for ALU and ATOMIC register clobbering + (jsc#PED-1368). +- bpf/tests: Add tests to check source register zero-extension + (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of BPF_ATOMIC magnitudes + (jsc#PED-1368). +- bpf/tests: Add zero-extension checks in BPF_ATOMIC tests + (jsc#PED-1368). +- bpf/tests: Add tests of BPF_LDX and BPF_STX with small sizes + (jsc#PED-1368). +- selftests/bpf: Use kselftest skip code for skipped tests + (jsc#PED-1368). +- libbpf: Properly ignore STT_SECTION symbols in legacy map + definitions (jsc#PED-1368). +- bpf: Do not invoke the XDP dispatcher for PROG_RUN with single + repeat (jsc#PED-1368). +- libbpf: Make gen_loader data aligned (jsc#PED-1368). +- bpf: selftests: Fix fd cleanup in get_branch_snapshot + (jsc#PED-1368). +- xsk: Fix clang build error in __xp_alloc (jsc#PED-1368). +- selftests/bpf: Fix probe_user test failure with clang build + kernel (jsc#PED-1368). +- bpf: Replace callers of BPF_CAST_CALL with proper function + typedef (jsc#PED-1368). +- bpf: Replace "want address" users of BPF_CAST_CALL with + BPF_CALL_IMM (jsc#PED-1368). +- selftests/bpf: Normalize XDP section names in selftests + (jsc#PED-1368). +- Refresh patches.suse/selftests-bpf-xdp_redirect_multi-Limit-the-tests-in-.patch +- libbpf: Add "tc" SEC_DEF which is a better name for "classifier" + (jsc#PED-1368). +- bpf/tests: Add tail call limit test with external function call + (jsc#PED-1368). +- bpf/tests: Fix error in tail call limit tests (jsc#PED-1368). +- bpf/tests: Add more BPF_END byte order conversion tests + (jsc#PED-1368). +- bpf/tests: Expand branch conversion JIT test (jsc#PED-1368). +- bpf/tests: Add JMP tests with degenerate conditional + (jsc#PED-1368). +- bpf/tests: Add JMP tests with small offsets (jsc#PED-1368). +- bpf/tests: Add test case flag for verifier zero-extension + (jsc#PED-1368). +- bpf/tests: Add exhaustive test of LD_IMM64 immediate magnitudes + (jsc#PED-1368). +- bpf/tests: Add staggered JMP and JMP32 tests (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of JMP operand magnitudes + (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of ALU operand magnitudes + (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of ALU shift values + (jsc#PED-1368). +- bpf/tests: Reduce memory footprint of test suite (jsc#PED-1368). +- bpf/tests: Allow different number of runs per test case + (jsc#PED-1368). +- libbpf: Ignore STT_SECTION symbols in 'maps' section + (jsc#PED-1368). +- bpf: selftest: Add verifier tests for <8-byte scalar spill + and refill (jsc#PED-1368). +- bpf: selftest: A bpf prog that has a 32bit scalar spill + (jsc#PED-1368). +- bpf: Support <8-byte scalar spill and refill (jsc#PED-1368). +- bpf: Check the other end of slot_type for STACK_SPILL + (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- bpf: Clarify data_len param in bpf_snprintf and bpf_seq_printf + comments (jsc#PED-1368). +- selftests/bpf: Add trace_vprintk test prog (jsc#PED-1368). +- selftests/bpf: Migrate prog_tests/trace_printk CHECKs to ASSERTs + (jsc#PED-1368). +- bpftool: Only probe trace_vprintk feature in 'full' mode + (jsc#PED-1368). +- libbpf: Use static const fmt string in __bpf_printk + (jsc#PED-1368). +- libbpf: Modify bpf_printk to choose helper based on arg count + (jsc#PED-1368). +- bpf: Add bpf_trace_vprintk helper (jsc#PED-1368). +- selftests/bpf: Stop using bpf_program__load (jsc#PED-1368). +- bpf: Merge printk and seq_printf VARARG max macros + (jsc#PED-1368). +- bpf, tests: Add tail call test suite (jsc#PED-1368). +- bpf, tests: Add tests for BPF_CMPXCHG (jsc#PED-1368). +- bpf, tests: Add tests for atomic operations (jsc#PED-1368). +- bpf, tests: Add test for 32-bit context pointer argument passing + (jsc#PED-1368). +- bpf, tests: Add branch conversion JIT test (jsc#PED-1368). +- bpf, tests: Add word-order tests for load/store of double words + (jsc#PED-1368). +- bpf, tests: Add tests for ALU operations implemented with + function calls (jsc#PED-1368). +- bpf, tests: Add more ALU64 BPF_MUL tests (jsc#PED-1368). +- bpf, tests: Add more BPF_LSH/RSH/ARSH tests for ALU64 + (jsc#PED-1368). +- bpf, tests: Add more ALU32 tests for BPF_LSH/RSH/ARSH + (jsc#PED-1368). +- bpf, tests: Add more tests of ALU32 and ALU64 bitwise operations + (jsc#PED-1368). +- bpf, tests: Fix typos in test case descriptions (jsc#PED-1368). +- bpf, tests: Add BPF_MOV tests for zero and sign extension + (jsc#PED-1368). +- bpf, tests: Add BPF_JMP32 test cases (jsc#PED-1368). +- commit da02160 + +- selftests: xsk: Add frame_headroom test (jsc#PED-1368). +- selftests: xsk: Change interleaving of packets in unaligned mode + (jsc#PED-1368). +- selftests: xsk: Add single packet test (jsc#PED-1368). +- selftests: xsk: Introduce pacing of traffic (jsc#PED-1368). +- selftests: xsk: Fix socket creation retry (jsc#PED-1368). +- selftests: xsk: Put the same buffer only once in the fill ring + (jsc#PED-1368). +- selftests: xsk: Fix missing initialization (jsc#PED-1368). +- xsk: Get rid of unused entry in struct xdp_buff_xsk + (jsc#PED-1368). +- selftests/bpf: Fix a few compiler warnings (jsc#PED-1368). +- libbpf: Constify all high-level program attach APIs + (jsc#PED-1368). +- libbpf: Schedule open_opts.attach_prog_fd deprecation since v0.7 + (jsc#PED-1368). +- selftests/bpf: Switch fexit_bpf2bpf selftest to + set_attach_target() API (jsc#PED-1368). +- libbpf: Allow skipping attach_func_name in + bpf_program__set_attach_target() (jsc#PED-1368). +- libbpf: Deprecated bpf_object_open_opts.relaxed_core_relocs + (jsc#PED-1368). +- selftests/bpf: Stop using relaxed_core_relocs which has no + effect (jsc#PED-1368). +- libbpf: Use pre-setup sec_def in libbpf_find_attach_btf_id() + (jsc#PED-1368). +- bpf: Update bpf_get_smp_processor_id() documentation + (jsc#PED-1368). +- libbpf: Add sphinx code documentation comments (jsc#PED-1368). +- selftests/bpf: Skip btf_tag test if btf_tag attribute not + supported (jsc#PED-1368). +- docs/bpf: Add documentation for BTF_KIND_TAG (jsc#PED-1368). +- selftests/bpf: Add a test with a bpf program with btf_tag + attributes (jsc#PED-1368). +- selftests/bpf: Test BTF_KIND_TAG for deduplication + (jsc#PED-1368). +- selftests/bpf: Add BTF_KIND_TAG unit tests (jsc#PED-1368). +- selftests/bpf: Change NAME_NTH/IS_NAME_NTH for BTF_KIND_TAG + format (jsc#PED-1368). +- selftests/bpf: Test libbpf API function btf__add_tag() + (jsc#PED-1368). +- bpftool: Add support for BTF_KIND_TAG (jsc#PED-1368). +- libbpf: Add support for BTF_KIND_TAG (jsc#PED-1368). +- libbpf: Rename btf_{hash,equal}_int to btf_{hash,equal}_int_tag + (jsc#PED-1368). +- bpf: Support for new btf kind BTF_KIND_TAG (jsc#PED-1368). +- btf: Change BTF_KIND_* macros to enums (jsc#PED-1368). +- commit 3c45813 + +- selftests/bpf: Fix .gitignore to not ignore test_progs.c + (jsc#PED-1368). +- bpf,x64 Emit IMUL instead of MUL for x86-64 (jsc#PED-1368). +- libbpf: Minimize explicit iterator of section definition array + (jsc#PED-1368). +- libbpf: Simplify BPF program auto-attach code (jsc#PED-1368). +- libbpf: Ensure BPF prog types are set before relocations + (jsc#PED-1368). +- selftests/bpf: Update selftests to always provide "struct_ops" + SEC (jsc#PED-1368). +- libbpf: Introduce legacy kprobe events support (jsc#PED-1368). +- libbpf: Make libbpf_version.h non-auto-generated (jsc#PED-1368). +- bpf, selftests: Replicate tailcall limit test for indirect + call case (jsc#PED-1368). +- selftests/bpf: Add test for bpf_get_branch_snapshot + (jsc#PED-1368). +- bpf: Introduce helper bpf_get_branch_snapshot (jsc#PED-1368). +- perf: Enable branch record for software events (jsc#PED-1368). +- Refresh patches.suse/ACPI-Add-perf-low-power-callback.patch +- selftests/bpf: Test new __sk_buff field hwtstamp (jsc#PED-1368). +- bpf: Add hardware timestamp field to __sk_buff (jsc#PED-1368). +- commit 079b8cc + +- selftests: xsk: Add tests for 2K frame size (jsc#PED-1368). +- selftests: xsk: Add tests for invalid xsk descriptors + (jsc#PED-1368). +- selftests: xsk: Eliminate test specific if-statement in test + runner (jsc#PED-1368). +- selftests: xsk: Add test for unaligned mode (jsc#PED-1368). +- selftests: xsk: Introduce replacing the default packet stream + (jsc#PED-1368). +- selftests: xsk: Allow for invalid packets (jsc#PED-1368). +- selftests: xsk: Eliminate MAX_SOCKS define (jsc#PED-1368). +- selftests: xsx: Make pthreads local scope (jsc#PED-1368). +- selftests: xsk: Make xdp_flags and bind_flags local + (jsc#PED-1368). +- selftests: xsk: Specify number of sockets to create + (jsc#PED-1368). +- selftests: xsk: Replace second_step global variable + (jsc#PED-1368). +- selftests: xsk: Introduce rx_on and tx_on in ifobject + (jsc#PED-1368). +- selftests: xsk: Add use_poll to ifobject (jsc#PED-1368). +- selftests: xsx: Introduce test name in test spec (jsc#PED-1368). +- selftests: xsk: Make frame_size configurable (jsc#PED-1368). +- selftests: xsk: Move rxqsize into xsk_socket_info + (jsc#PED-1368). +- selftests: xsk: Move num_frames and frame_headroom to + xsk_umem_info (jsc#PED-1368). +- selftests: xsk: Introduce test specifications (jsc#PED-1368). +- selftests: xsk: Introduce type for thread function + (jsc#PED-1368). +- selftests: xsk: Simplify xsk and umem arrays (jsc#PED-1368). +- libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API + deprecations (jsc#PED-1368). +- libbpf: Fix build with latest gcc/binutils with LTO + (jsc#PED-1368). +- selftests/bpf: Add checks for X__elf_bytes() skeleton helper + (jsc#PED-1368). +- bpftool: Provide a helper method for accessing skeleton's + embedded ELF data (jsc#PED-1368). +- libbpf: Change bpf_object_skeleton data field to const pointer + (jsc#PED-1368). +- bpf: Permit ingress_ifindex in bpf_prog_test_run_xattr + (jsc#PED-1368). +- commit db25468 + +- kabi: sk_buff.scm_io_uring (bsc#1204228 CVE-2022-2602). +- commit 9a9bd27 + +- scsi: scsi_transport_sas: Fix error handling in sas_phy_add() + (git-fixes). +- scsi: megaraid_sas: Correct value passed to scsi_device_lookup() + (git-fixes). +- scsi: qedf: Populate sysfs attributes for vport (git-fixes). +- scsi: mpt3sas: Fix return value check of dma_get_required_mask() + (git-fixes). +- commit 71fe2f3 + +- intel_idle: make SPR C1 and C1E be independent (jsc#PED-1936). +- commit 6f9a5d3 + +- cpuidle: intel_idle: Drop redundant backslash at line end (jsc#PED-1936). +- commit 593da52 + +- cpufreq: intel_pstate: Support Sapphire Rapids OOB mode (jsc#PED-849). +- commit 4bf905f + +- cpufreq: intel_pstate: Handle no_turbo in frequency invariance (jsc#PED-849). +- commit 41e314e + +- intel_idle: Fix SPR C6 optimization (jsc#PED-824 jsc#PED-1936). +- commit 29ea7f2 + +- intel_idle: Fix the 'preferred_cstates' module parameter (jsc#PED-824 jsc#PED-1936). +- commit 07146fb + +- intel_idle: Add AlderLake support (jsc#PED-824). +- commit 6094f58 + +- panic, kexec: make __crash_kexec() NMI safe (git-fixes). +- kexec: turn all kexec_mutex acquisitions into trylocks + (git-fixes). +- commit 1a14cb1 + +- x86/insn-eval: Handle insn_get_opcode() failure (jsc#PED-342). +- commit 94de1a1 + +- s390/pai: Add support for PAI Extension 1 NNPA counters + (jsc#PED-1973). +- commit a366504 + +- s390: block/xpram include (bsc#1205381). +- commit ad01f4b + +- KVM: VMX: clear vmx_x86_ops.sync_pir_to_irr if APICv is disabled + (bsc#1205007). +- commit a0ddd6a + +- Update config files. +- commit 6867f80 + +- io_uring/af_unix: defer registered files gc to io_uring release + (bsc#1204228 CVE-2022-2602). +- commit 52299ff + +- scsi: aacraid: Fix undefined behavior due to shift overflowing + the constant (jsc#PED-1560). +- scsi: aacraid: Clean up some inconsistent indenting + (jsc#PED-1560). +- scsi: aacraid: Move the SCSI pointer to private command data + (jsc#PED-1560). +- commit 919bd0a + +- block: mark __bio_try_merge_page static (jsc#PED-1183). +- iomap: simplify iomap_add_to_ioend (jsc#PED-1183). +- iomap: simplify iomap_readpage_actor (jsc#PED-1183). +- commit 49fac04 + +- block: improve batched tag allocation (jsc#PED-1183). +- sbitmap: add __sbitmap_queue_get_batch() (jsc#PED-1183). +- blk-mq: optimise *end_request non-stat path (jsc#PED-1183). +- block: mark bio_truncate static (jsc#PED-1183). +- block: move bio_get_{first,last}_bvec out of bio.h + (jsc#PED-1183). +- block: move bio_full out of bio.h (jsc#PED-1183). +- block: fold bio_cur_bytes into blk_rq_cur_bytes (jsc#PED-1183). +- block: move bio_mergeable out of bio.h (jsc#PED-1183). +- block: don't include in + (jsc#PED-1183). +- block: remove BIO_BUG_ON (jsc#PED-1183). +- blk-mq: inline hot part of __blk_mq_sched_restart + (jsc#PED-1183). +- commit bda310c + +- block: inline hot paths of blk_account_io_*() (jsc#PED-1183). +- Refresh patches.suse/block-update-io_ticks-when-io-hang.patch. +- commit 190f0ed + +- block: merge block_ioctl into blkdev_ioctl (jsc#PED-1183). +- block: move the *blkdev_ioctl declarations out of blkdev.h + (jsc#PED-1183). +- block: unexport blkdev_ioctl (jsc#PED-1183). +- block: don't dereference request after flush insertion + (jsc#PED-1183). +- blk-mq: cleanup blk_mq_submit_bio (jsc#PED-1183). +- blk-mq: cleanup and rename __blk_mq_alloc_request + (jsc#PED-1183). +- block: pre-allocate requests if plug is started and is a batch + (jsc#PED-1183). +- commit d1bcd5e + +- blk-mq: Change shared sbitmap naming to shared tags + (jsc#PED-1183). +- Refresh + patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch. +- commit 9042063 + +- blk-mq: Stop using pointers for blk_mq_tags bitmap tags + (jsc#PED-1183). +- Refresh + patches.suse/bfq-Limit-number-of-requests-consumed-by-each-cgroup.patch. +- Refresh + patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch. +- commit 0b26e0b + +- blk-mq: Use shared tags for shared sbitmap support + (jsc#PED-1183). +- Refresh + patches.suse/blk-mq-don-t-free-tags-if-the-tag_set-is-used-by-oth.patch. +- Refresh + patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch. +- commit 439e1ef + +- blk-mq: Refactor and rename + blk_mq_free_map_and_{requests->rqs}() (jsc#PED-1183). +- Refresh + patches.suse/blk-mq-don-t-free-tags-if-the-tag_set-is-used-by-oth.patch. +- commit 258a969 + +- block: move struct request to blk-mq.h (jsc#PED-1183). +- Refresh + patches.suse/block-Add-a-helper-to-validate-the-block-size.patch. +- Refresh + patches.suse/block-don-t-merge-across-cgroup-boundaries-if-blkcg-.patch. +- Refresh + patches.suse/block-move-the-SECTOR_SIZE-related-definitions-to-bl.patch. +- commit 8c609f9 + +- Update config files: enable CONFIG_NET_SOCK_MSG in s390x-zfcpdump (jsc#PED-1368) +- commit 47cc0bc + +- fuse: add file_modified() to fallocate (bsc#1205332). +- fuse: fix readdir cache race (bsc#1205331). +- commit 75f741e + +- block/mq-deadline: Prioritize high-priority requests + (jsc#PED-1183). +- Refresh + patches.suse/block-fix-async_depth-sysfs-interface-for-mq-deadlin.patch. +- commit f999f8f + +- net: phy: mscc: macsec: clear encryption keys when freeing a + flow (git-fixes). +- macsec: clear encryption keys from the stack after setting up + offload (git-fixes). +- macsec: fix detection of RXSCs when toggling offloading + (git-fixes). +- macsec: fix secy->n_rx_sc accounting (git-fixes). +- macsec: delete new rxsc when offload fails (git-fixes). +- wifi: cfg80211: fix memory leak in query_regdb_file() + (git-fixes). +- wifi: cfg80211: silence a sparse RCU warning (git-fixes). +- soundwire: qcom: check for outanding writes before doing a read + (git-fixes). +- soundwire: qcom: reinit broadcast completion (git-fixes). +- phy: ralink: mt7621-pci: add sentinel to quirks table + (git-fixes). +- phy: stm32: fix an error code in probe (git-fixes). +- mtd: parsers: bcm47xxpart: Fix halfblock reads (git-fixes). +- media: v4l: subdev: Fail graciously when getting try data for + NULL state (git-fixes). +- media: meson: vdec: fix possible refcount leak in vdec_probe() + (git-fixes). +- media: dvb-frontends/drxk: initialize err to 0 (git-fixes). +- media: cros-ec-cec: limit msg.len to CEC_MAX_MSG_SIZE + (git-fixes). +- media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE (git-fixes). +- media: rkisp1: Zero v4l2_subdev_format fields in when validating + links (git-fixes). +- media: rkisp1: Use correct macro for gradient registers + (git-fixes). +- media: rkisp1: Initialize color space on resizer sink and + source pads (git-fixes). +- media: rkisp1: Don't pass the quantization to + rkisp1_csm_config() (git-fixes). +- mtd: parsers: bcm47xxpart: print correct offset on read error + (git-fixes). +- video/fbdev/stifb: Implement the stifb_fillrect() function + (git-fixes). +- commit 5883e57 + +- block: move the SECTOR_SIZE related definitions to blk_types.h + (jsc#PED-1183). +- commit 631102f + +- can: j1939: j1939_send_one(): fix missing CAN header + initialization (git-fixes). +- can: af_can: fix NULL pointer dereference in can_rx_register() + (git-fixes). +- hamradio: fix issue of dev reference count leakage in + bpq_device_event() (git-fixes). +- efi: random: Use 'ACPI reclaim' memory for random seed + (git-fixes). +- efi: random: reduce seed size to 32 bytes (git-fixes). +- drm/i915/sdvo: Setup DDC fully before output init (git-fixes). +- drm/i915/sdvo: Filter out invalid outputs more sensibly + (git-fixes). +- drm/rockchip: dsi: Force synchronous probe (git-fixes). +- Bluetooth: L2CAP: Fix attempting to access uninitialized memory + (git-fixes). +- Bluetooth: L2CAP: Fix accepting connection request for invalid + SPSM (git-fixes). +- drm/msm/hdmi: fix IRQ lifetime (git-fixes). +- i2c: xiic: Add platform module alias (git-fixes). +- ACPI: APEI: Fix integer overflow in ghes_estatus_pool_init() + (git-fixes). +- HID: saitek: add madcatz variant of MMO7 mouse device ID + (git-fixes). +- HID: playstation: add initial DualSense Edge controller support + (git-fixes). +- drm/amdgpu: set vm_update_mode=0 as default for Sienna Cichlid + in SRIOV case (git-fixes). +- drm/msm/hdmi: Remove spurious IRQF_ONESHOT flag (git-fixes). +- commit 5a3b429 + +- selftests/bpf: Fix test_core_reloc_mods on big-endian machines + (jsc#PED-1368). +- selftests/bpf: Use recv_timeout() instead of retries + (jsc#PED-1368). +- skmsg: Extract and reuse sk_msg_is_readable() (jsc#PED-1368). +- Refresh patches.suse/bpf-sockmap-Remove-unhash-handler-for-BPF-sockmap-us.patch +- net: Rename ->stream_memory_read to ->sock_is_readable + (jsc#PED-1368). +- Refresh patches.suse/bpf-sockmap-Remove-unhash-handler-for-BPF-sockmap-us.patch +- samples/bpf: Relicense bpf_insn.h as GPL-2.0-only OR + BSD-2-Clause (jsc#PED-1368). +- samples: bpf: Fix vmlinux.h generation for XDP samples + (jsc#PED-1368). +- bpf, selftests: Add test case for mixed cgroup v1/v2 + (jsc#PED-1368). +- bpf, selftests: Add cgroup v1 net_cls classid helpers + (jsc#PED-1368). +- selftests/bpf: Fix build of task_pt_regs test for arm64 + (jsc#PED-1368). +- bpf: Relicense disassembler as GPL-2.0-only OR BSD-2-Clause + (jsc#PED-1368). +- selftests/bpf: Test XDP bonding nest and unwind (jsc#PED-1368). +- perf trace: Update cmd string table to decode sys_bpf first arg + (jsc#PED-1368). +- samples: bpf: Fix uninitialized variable in xdp_redirect_cpu + (jsc#PED-1368). +- selftests/bpf: Reduce more flakyness in sockmap_listen + (jsc#PED-1368). +- bpf: Fix bpf-next builds without CONFIG_BPF_EVENTS + (jsc#PED-1368). +- bpf: selftests: Add dctcp fallback test (jsc#PED-1368). +- bpf: selftests: Add connect_to_fd_opts to network_helpers + (jsc#PED-1368). +- bpf: selftests: Add sk_state to bpf_tcp_helpers.h + (jsc#PED-1368). +- bpf: tcp: Allow bpf-tcp-cc to call bpf_(get|set)sockopt + (jsc#PED-1368). +- selftests: xsk: Preface options with opt (jsc#PED-1368). +- selftests: xsk: Make enums lower case (jsc#PED-1368). +- selftests: xsk: Generate packets from specification + (jsc#PED-1368). +- selftests: xsk: Generate packet directly in umem (jsc#PED-1368). +- selftests: xsk: Simplify cleanup of ifobjects (jsc#PED-1368). +- selftests: xsk: Decrease sending speed (jsc#PED-1368). +- selftests: xsk: Validate tx stats on tx thread (jsc#PED-1368). +- selftests: xsk: Simplify packet validation in xsk tests + (jsc#PED-1368). +- selftests: xsk: Rename worker_* functions that are not thread + entry points (jsc#PED-1368). +- selftests: xsk: Disassociate umem size with packets sent + (jsc#PED-1368). +- selftests: xsk: Remove end-of-test packet (jsc#PED-1368). +- selftests: xsk: Simplify the retry code (jsc#PED-1368). +- selftests: xsk: Return correct error codes (jsc#PED-1368). +- selftests: xsk: Remove unused variables (jsc#PED-1368). +- selftests: xsk: Remove the num_tx_packets option (jsc#PED-1368). +- selftests: xsk: Remove color mode (jsc#PED-1368). +- bpf: selftests: Add bpf_task_pt_regs() selftest (jsc#PED-1368). +- bpf: Add bpf_task_pt_regs() helper (jsc#PED-1368). +- bpf: Extend bpf_base_func_proto helpers with + bpf_get_current_task_btf() (jsc#PED-1368). +- bpf: Consolidate task_struct BTF_ID declarations (jsc#PED-1368). +- bpf: Add BTF_ID_LIST_GLOBAL_SINGLE macro (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_map_multi to XDP samples + helper (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_map_multi_kern.o to XDP + samples helper (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_map to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_map_kern.o to XDP samples + helper (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_cpu to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_cpu_kern.o to XDP samples + helper (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_kern.o to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_monitor to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_monitor_kern.o to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Add vmlinux.h generation support (jsc#PED-1368). +- samples: bpf: Add devmap_xmit tracepoint statistics support + (jsc#PED-1368). +- samples: bpf: Add BPF support for devmap_xmit tracepoint + (jsc#PED-1368). +- samples: bpf: Add cpumap tracepoint statistics support + (jsc#PED-1368). +- samples: bpf: Add BPF support for cpumap tracepoints + (jsc#PED-1368). +- samples: bpf: Add xdp_exception tracepoint statistics support + (jsc#PED-1368). +- samples: bpf: Add BPF support for xdp_exception tracepoint + (jsc#PED-1368). +- samples: bpf: Add redirect tracepoint statistics support + (jsc#PED-1368). +- samples: bpf: Add BPF support for redirect tracepoint + (jsc#PED-1368). +- samples: bpf: Add basic infrastructure for XDP samples + (jsc#PED-1368). +- tools: include: Add ethtool_drvinfo definition to UAPI header + (jsc#PED-1368). +- samples: bpf: Fix a couple of warnings (jsc#PED-1368). +- selftests/bpf: Test for get_netns_cookie (jsc#PED-1368). +- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_SK_MSG + (jsc#PED-1368). +- selftests/bpf: Exit with KSFT_SKIP if no Makefile found + (jsc#PED-1368). +- selftests/bpf: Add missing files required by test_bpftool.sh + for installing (jsc#PED-1368). +- selftests/bpf: Add default bpftool built by selftests to PATH + (jsc#PED-1368). +- selftests/bpf: Make test_doc_build.sh work from script directory + (jsc#PED-1368). +- selftests/bpf: Reduce flakyness in timer_mim (jsc#PED-1368). +- bpf: Migrate cgroup_bpf to internal cgroup_bpf_attach_type enum + (jsc#PED-1368). +- selftests/bpf: Add tests for {set|get} socket option from + setsockopt BPF (jsc#PED-1368). +- bpf: Add support for {set|get} socket options from setsockopt + BPF (jsc#PED-1368). +- selftests/bpf: Adding delay in socketmap_listen to reduce + flakyness (jsc#PED-1368). +- bpf: Fix NULL event->prog pointer access in bpf_overflow_handler + (jsc#PED-1368). +- bpf: Undo off-by-one in interpreter tail call count limit + (jsc#PED-1368). +- selftests/bpf: Test for get_netns_cookie (jsc#PED-1368). +- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_SOCK_OPS + (jsc#PED-1368). +- bpf: Remove redundant initialization of variable allow + (jsc#PED-1368). +- selftests/bpf: Replace CHECK with ASSERT_* macros in + send_signal.c (jsc#PED-1368). +- Refresh patches.suse/selftests-bpf-Fix-flaky-send_signal-test.patch +- selftests/bpf: Support glob matching for test selector + (jsc#PED-1368). +- selftests/bpf: Also print test name in subtest status message + (jsc#PED-1368). +- selftests/bpf: Skip loading bpf_testmod when using -l to list + tests (jsc#PED-1368). +- selftests/bpf: Add exponential backoff to map_delete_retriable + in test_maps (jsc#PED-1368). +- selftests/bpf: Add exponential backoff to map_update_retriable + in test_maps (jsc#PED-1368). +- selftest/bpf: Add new tests in sockmap for unix stream to tcp + (jsc#PED-1368). +- selftest/bpf: Change udp to inet in some function names + (jsc#PED-1368). +- selftest/bpf: Add tests for sockmap with unix stream type + (jsc#PED-1368). +- af_unix: Add read_sock for stream socket types (jsc#PED-1368). +- selftests/bpf: Test btf__load_vmlinux_btf/btf__load_module_btf + APIs (jsc#PED-1368). +- bpf: Reconfigure libbpf docs to remove unversioned API + (jsc#PED-1368). +- selftests/bpf: Add ref_ctr_offset selftests (jsc#PED-1368). +- libbpf: Add uprobe ref counter offset support for USDT + semaphores (jsc#PED-1368). +- selftests/bpf: Add bpf_cookie selftests for high-level APIs + (jsc#PED-1368). +- selftests/bpf: Extract uprobe-related helpers into + trace_helpers.{c,h} (jsc#PED-1368). +- selftests/bpf: Test low-level perf BPF link API (jsc#PED-1368). +- libbpf: Add bpf_cookie to perf_event, kprobe, uprobe, and tp + attach APIs (jsc#PED-1368). +- libbpf: Add bpf_cookie support to bpf_link_create() API + (jsc#PED-1368). +- libbpf: Use BPF perf link when supported by kernel + (jsc#PED-1368). +- libbpf: Remove unused bpf_link's destroy operation, but add + dealloc (jsc#PED-1368). +- bpf: Add bpf_get_attach_cookie() BPF helper to access bpf_cookie + value (jsc#PED-1368). +- bpf: Allow to specify user-provided bpf_cookie for BPF perf + links (jsc#PED-1368). +- bpf: Implement minimal BPF perf link (jsc#PED-1368). +- bpf: Refactor perf_event_set_bpf_prog() to use struct bpf_prog + input (jsc#PED-1368). +- bpf: Refactor BPF_PROG_RUN_ARRAY family of macros into functions + (jsc#PED-1368). +- bpf: Refactor BPF_PROG_RUN into a function (jsc#PED-1368). +- Refresh patches.suse/bpf-Avoid-races-in-__bpf_prog_run-for-32bit-arches.patch +- selftest/bpf: Extend the bpf_snprintf() test for "%c" + (jsc#PED-1368). +- selftest/bpf: Implement sample UNIX domain socket iterator + program (jsc#PED-1368). +- bpf: Support "%c" in bpf_bprintf_prepare() (jsc#PED-1368). +- bpf: af_unix: Implement BPF iterator for UNIX domain socket + (jsc#PED-1368). +- selftests/bpf: Verify bpf_get_netns_cookie in + BPF_PROG_TYPE_CGROUP_SOCKOPT (jsc#PED-1368). +- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_CGROUP_SOCKOPT + (jsc#PED-1368). +- libbpf: Support weak typed ksyms (jsc#PED-1368). +- Refresh patches.suse/bpf-selftests-Test-PTR_TO_RDONLY_MEM.patch +- selftests/bpf: Fix running of XDP bonding tests (jsc#PED-1368). +- net: in_irq() cleanup (jsc#PED-1368). +- selftests/bpf: Add tests for XDP bonding (jsc#PED-1368). +- net, core: Allow netdev_lower_get_next_private_rcu in bh context + (jsc#PED-1368). +- net, bonding: Add XDP support to the bonding driver + (jsc#PED-1368). +- net, core: Add support for XDP redirection to slave device + (jsc#PED-1368). +- net, bonding: Refactor bond_xmit_hash for use with xdp_buff + (jsc#PED-1368). +- samples/bpf: xdpsock: Remove forward declaration of + ip_fast_csum() (jsc#PED-1368). +- samples/bpf: xdpsock: Make the sample more useful outside the + tree (jsc#PED-1368). +- selftests/bpf: Rename reference_tracking BPF programs + (jsc#PED-1368). +- selftests/bpf: Move netcnt test under test_progs (jsc#PED-1368). +- bpf, unix: Check socket type in unix_bpf_update_proto() + (jsc#PED-1368). +- bpf: Fix off-by-one in tail call count limiting (jsc#PED-1368). +- selftests/bpf: Update bpftool's consistency script for checking + options (jsc#PED-1368). +- tools: bpftool: Complete and synchronise attach or map types + (jsc#PED-1368). +- Refresh patches.suse/tools-bpftool-Complete-metrics-list-in-bpftool-prog-.patch +- Refresh patches.suse/tools-bpftool-Document-and-add-bash-completion-for-L.patch +- Refresh patches.suse/tools-bpftool-Update-and-synchronise-option-list-in-.patch +- selftests/bpf: Check consistency between bpftool source, doc, + completion (jsc#PED-1368). +- tools: bpftool: Slightly ease bash completion updates + (jsc#PED-1368). +- libbpf: Add btf__load_vmlinux_btf/btf__load_module_btf + (jsc#PED-1368). +- tools: bpftool: Support dumping split BTF by id (jsc#PED-1368). +- libbpf: Add split BTF support for btf__load_from_kernel_by_id() + (jsc#PED-1368). +- tools: Replace btf__get_from_id() with + btf__load_from_kernel_by_id() (jsc#PED-1368). +- libbpf: Rename btf__get_from_id() as + btf__load_from_kernel_by_id() (jsc#PED-1368). +- libbpf: Rename btf__load() as btf__load_into_kernel() + (jsc#PED-1368). +- bpf: Emit better log message if bpf_iter ctx arg btf_id == 0 + (jsc#PED-1368). +- tools/resolve_btfids: Emit warnings and patch zero id for + missing symbols (jsc#PED-1368). +- bpf: Increase supported cgroup storage value size + (jsc#PED-1368). +- libbpf: Fix comment typo (jsc#PED-1368). +- samples: bpf: Add the omitted xdp samples to .gitignore + (jsc#PED-1368). +- selftests/bpf: Use ping6 only if available in tc_redirect + (jsc#PED-1368). +- libbpf: Split CO-RE logic into relo_core.c (jsc#PED-1368). +- libbpf: Move CO-RE types into relo_core.h (jsc#PED-1368). +- libbpf: Split bpf_core_apply_relo() into bpf_program independent + helper (jsc#PED-1368). +- libbpf: Cleanup the layering between CORE and bpf_program + (jsc#PED-1368). +- selftests/bpf: Document vmtest.sh dependencies (jsc#PED-1368). +- libbpf: Add bpf_map__pin_path function (jsc#PED-1368). +- bpf: selftest: Test batching and bpf_(get|set)sockopt in bpf + tcp iter (jsc#PED-1368). +- bpf: tcp: Support bpf_(get|set)sockopt in bpf tcp iter + (jsc#PED-1368). +- bpf: tcp: Bpf iter batching and lock_sock (jsc#PED-1368). +- tcp: seq_file: Replace listening_hash with lhash2 + (jsc#PED-1368). +- tcp: seq_file: Add listening_get_first() (jsc#PED-1368). +- bpf: tcp: seq_file: Remove bpf_seq_afinfo from tcp_iter_state + (jsc#PED-1368). +- tcp: seq_file: Refactor net and family matching (jsc#PED-1368). +- libbpf: Export bpf_program__attach_kprobe_opts function + (jsc#PED-1368). +- libbpf: Allow decimal offset for kprobes (jsc#PED-1368). +- libbpf: Fix func leak in attach_kprobe (jsc#PED-1368). +- selftests/bpf: Mute expected invalid map creation error msg + (jsc#PED-1368). +- bpf: Remove redundant intiialization of variable stype + (jsc#PED-1368). +- bpf: Fix pointer cast warning (jsc#PED-1368). +- libbpf: Propagate errors when retrieving enum value for typed + data display (jsc#PED-1368). +- selftests/bpf: Add __int128-specific tests for typed data dump + (jsc#PED-1368). +- libbpf: Avoid use of __int128 in typed dump display + (jsc#PED-1368). +- selftests, bpf: test_tc_tunnel.sh nc: Cannot use -p and -l + (jsc#PED-1368). +- selftests/bpf: Check inner map deletion (jsc#PED-1368). +- libbpf: Btf typed dump does not need to allocate dump data + (jsc#PED-1368). +- libbpf: Fix compilation errors on ppc64le for btf dump typed + data (jsc#PED-1368). +- libbpf: Clarify/fix unaligned data issues for btf typed dump + (jsc#PED-1368). +- selftests/bpf: Add dump type data tests to btf dump tests + (jsc#PED-1368). +- selftests/bpf: Add ASSERT_STRNEQ() variant for test_progs + (jsc#PED-1368). +- libbpf: BTF dumper support for typed data (jsc#PED-1368). +- selftests/bpf: Switch existing selftests to using open_opts + for custom BTF (jsc#PED-1368). +- libbpf: Introduce 'btf_custom_path' to 'bpf_obj_open_opts' + (jsc#PED-1368). +- selftests/bpf: Add test cases for redirection between udp and + unix (jsc#PED-1368). +- selftests/bpf: Add a test case for unix sockmap (jsc#PED-1368). +- selftests/bpf: Factor out add_to_sockmap() (jsc#PED-1368). +- selftests/bpf: Factor out udp_socketpair() (jsc#PED-1368). +- af_unix: Implement unix_dgram_bpf_recvmsg() (jsc#PED-1368). +- af_unix: Implement ->psock_update_sk_prot() (jsc#PED-1368). +- af_unix: Add a dummy ->close() for sockmap (jsc#PED-1368). +- af_unix: Set TCP_ESTABLISHED for datagram sockets too + (jsc#PED-1368). +- af_unix: Implement ->read_sock() for sockmap (jsc#PED-1368). +- sock_map: Lift socket state restriction for datagram sockets + (jsc#PED-1368). +- sock_map: Relax config dependency to CONFIG_NET (jsc#PED-1368). +- Refesh patches.suse/of-net-move-of_net-under-net.patch +- selftests/bpf: Add test for bpf_get_func_ip in kprobe+offset + probe (jsc#PED-1368). +- libbpf: Allow specification of "kprobe/function+offset" + (jsc#PED-1368). +- libbpf: Add bpf_program__attach_kprobe_opts function + (jsc#PED-1368). +- selftests/bpf: Add test for bpf_get_func_ip helper + (jsc#PED-1368). +- bpf: Add bpf_get_func_ip helper for kprobe programs + (jsc#PED-1368). +- bpf: Add bpf_get_func_ip helper for tracing programs + (jsc#PED-1368). +- bpf: Enable BPF_TRAMP_F_IP_ARG for trampolines with + call_get_func_ip (jsc#PED-1368). +- bpf, x86: Store caller's ip in trampoline stack (jsc#PED-1368). +- Refresh patches.suse/bpf-Handle-return-value-of-BPF_PROG_TYPE_STRUCT_OPS-.patch +- selftests/bpf: Add a test with bpf_timer in inner map + (jsc#PED-1368). +- selftests/bpf: Add bpf_timer test (jsc#PED-1368). +- bpf: Teach stack depth check about async callbacks + (jsc#PED-1368). +- bpf: Implement verifier support for validation of async + callbacks (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- bpf: Relax verifier recursion check (jsc#PED-1368). +- bpf: Remember BTF of inner maps (jsc#PED-1368). +- bpf: Prevent pointer mismatch in bpf_timer_init (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- Refresh patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch +- bpf: Add map side support for bpf timers (jsc#PED-1368). +- bpf: Introduce bpf timers (jsc#PED-1368). +- Refresh patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch +- Refresh patches.suse/bpf-Replace-ARG_XXX_OR_NULL-with-ARG_XXX-PTR_MAYBE_N.patch +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- Refresh patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch +- bpf: Factor out bpf_spin_lock into helpers (jsc#PED-1368). +- bpf: Prepare bpf_prog_put() to be called from irq context + (jsc#PED-1368). +- samples/bpf: xdp_redirect_cpu_user: Cpumap qsize set larger + default (jsc#PED-1368). +- bpf: Tidy xdp attach selftests (jsc#PED-1368). +- selftests/bpf: Add test for xdp_md context in BPF_PROG_TEST_RUN + (jsc#PED-1368). +- bpf: Support specifying ingress via xdp_md context in + BPF_PROG_TEST_RUN (jsc#PED-1368). +- bpf: Support input xdp_md context in BPF_PROG_TEST_RUN + (jsc#PED-1368). +- commit e693794 + +- net: phy: mxl-gpy: add temperature sensor (jsc#PED-829). +- Update config files. +- supported.conf: added lib/polynomial.ko +- commit 60a46b1 + +- x86/fpu: Drop fpregs lock before inheriting FPU permissions + (bnc#1205282). +- commit bbde2ef + +- mac80211: mesh: clean up rx_bcn_presp API (git-fixes). +- Refresh + patches.suse/mac80211-always-allocate-struct-ieee802_11_elems.patch. +- commit ffa0643 + +- blacklist.conf: cleanup designed to break kABI +- commit e1ca2ce + +- net/mlx5: Add MACsec offload Tx command support (jsc#PED-1549). +- Update config files. +- commit d527e6d + +- blacklist.conf: cleanup designed to break kABI +- commit 3471afe + +- net/mlx5e: Validate striding RQ before enabling XDP + (jsc#PED-1549). +- Refresh + patches.suse/s390-Fix-mlx5-RoCE-throuput-degradtion.patch. +- commit af8a650 + +- RDMA/rxe: Cleanup rxe_pool_entry (jsc#PED-1111). +- Refresh patches.suse/RDMA-rxe-Fix-rnr-retry-behavior.patch. +- commit 817ae4c + +- PM: core: Add EXPORT[_GPL]_SIMPLE_DEV_PM_OPS macros (git-fixes). +- commit 652c0d1 + +- RDMA/rxe: Remove qp->grp_lock and qp->grp_list (jsc#PED-1111). +- Refresh + patches.suse/RDMA-rxe-Fix-error-unwind-in-rxe_create_qp.patch. +- commit 30d623b + +- PM: core: Remove static qualifier in DEFINE_SIMPLE_DEV_PM_OPS + macro (git-fixes). +- commit 34f1483 + +- mmc: mxc: Use the new PM macros (git-fixes). +- commit 1480bad + +- mmc: jz4740: Use the new PM macros (git-fixes). +- commit 0e7751d + +- PM: runtime: Capture device status before disabling runtime PM + (git-fixes). +- commit 533efbb + +- sfc: Fix an error handling path in efx_pci_probe() + (jsc#PED-1565). +- RDMA/qedr: clean up work queue on failure in + qedr_alloc_resources() (jsc#PED-1529). +- RDMA/rxe: Fix mr leak in RESPST_ERR_RNR (jsc#PED-1111). +- net/mlx5e: Fix macsec sci endianness at rx sa update + (jsc#PED-1549). +- net/mlx5e: Fix wrong bitwise comparison usage in + macsec_fs_rx_add_rule function (jsc#PED-1549). +- net/mlx5e: Fix macsec rx security association (SA) update/delete + (jsc#PED-1549). +- net/mlx5e: Fix macsec coverity issue at rx sa update + (jsc#PED-1549). +- net/mlx5: Fix crash during sync firmware reset (jsc#PED-1549). +- net/mlx5: Update fw fatal reporter state on PCI handlers + successful recover (jsc#PED-1549). +- net/mlx5e: TC, Fix cloned flow attr instance dests are not + zeroed (jsc#PED-1549). +- net/mlx5e: TC, Reject forwarding from internal port to internal + port (jsc#PED-1549). +- net/mlx5: Fix possible use-after-free in async command interface + (jsc#PED-1549). +- net/mlx5: ASO, Create the ASO SQ with the correct timestamp + format (jsc#PED-1549). +- net/mlx5e: Update restore chain id for slow path packets + (jsc#PED-1549). +- net/mlx5e: Extend SKB room check to include PTP-SQ + (jsc#PED-1549). +- net/mlx5: DR, Fix matcher disconnect error flow (jsc#PED-1549). +- net/mlx5: Wait for firmware to enable CRS before + pci_restore_state (jsc#PED-1549). +- net/mlx5e: Do not increment ESN when updating IPsec ESN state + (jsc#PED-1549). +- i40e: Fix flow-type by setting GL_HASH_INSET registers + (jsc#PED-372). +- i40e: Fix VF hang when reset is triggered on another VF + (jsc#PED-372). +- i40e: Fix ethtool rx-flow-hash setting for X722 (jsc#PED-372). +- net/mlx5e: Cleanup MACsec uninitialization routine + (jsc#PED-1549). +- sfc: include vport_id in filter spec hash and equal() + (jsc#PED-1565). +- bnxt_en: fix memory leak in bnxt_nvm_test() (jsc#PED-1495). +- sfc: Change VF mac via PF as first preference if available + (jsc#PED-1565). +- i40e: Fix DMA mappings leak (jsc#PED-372). +- net/mlx5: Make ASO poll CQ usable in atomic context + (jsc#PED-1549). +- scsi: qedf: Populate sysfs attributes for vport (jsc#PED-1524). +- RDMA/rxe: Remove error/warning messages from packet receiver + path (jsc#PED-1111). +- RDMA/rxe: Remove redundant num_sge fields (jsc#PED-1111). +- RDMA/mlx5: Enable ATS support for MRs and umems (jsc#PED-1552). +- RDMA/mlx5: Add support for dmabuf to devx umem (jsc#PED-1552). +- RDMA/core: Add UVERBS_ATTR_RAW_FD (jsc#PED-1552). +- net/mlx5: Add IFC bits for mkey ATS (jsc#PED-1549). +- RDMA/rxe: Set pd early in mr alloc routines (jsc#PED-1111). +- RDMA/rxe: Add send_common_ack() helper (jsc#PED-1111). +- RDMA/rxe: Use members of generic struct in rxe_mr + (jsc#PED-1111). +- IB: Set IOVA/LENGTH on IB_MR in core/uverbs layers + (jsc#PED-1547). +- RDMA/mlx5: Remove duplicate assignment in umr_rereg_pas() + (jsc#PED-1552). +- RDMA/rxe: convert pr_warn to pr_debug (jsc#PED-1111). +- RDMA/rxe: use %u to print u32 variables (jsc#PED-1111). +- IB/mlx5: Support querying eswitch functions from DEVX + (jsc#PED-1552). +- RDMA/siw: Add missing Kconfig selections (jsc#PED-1503). +- RDMA/rxe: Delete error messages triggered by incoming Read + requests (jsc#PED-1111). +- RDMA/rxe: Remove the unused variable obj (jsc#PED-1111). +- RDMA/rxe: Remove an unused member from struct rxe_mr + (jsc#PED-1111). +- IB/mlx5: Remove duplicate header inclusion related to ODP + (jsc#PED-1552). +- IB/mlx5: Call io_stop_wc() after writing to WC MMIO + (jsc#PED-1552). +- net/mlx5: E-Switch, Return EBUSY if can't get mode lock + (jsc#PED-1549). +- net/mlx5: E-switch, Don't update group if qos is not enabled + (jsc#PED-1549). +- net/mlx5: E-Switch, Allow offloading fwd dest flow table with + vport (jsc#PED-1549). +- net/mlx5: Set default grace period based on function type + (jsc#PED-1549). +- net/mlx5: Start health poll at earlier stage of driver load + (jsc#PED-1549). +- net/mlx5e: Expose rx_oversize_pkts_buffer counter + (jsc#PED-1549). +- net/mlx5e: xsk: Optimize for unaligned mode with 3072-byte + frames (jsc#PED-1549). +- net/mlx5e: xsk: Print a warning in slow configurations + (jsc#PED-1549). +- net/mlx5e: xsk: Use KLM to protect frame overrun in unaligned + mode (jsc#PED-1549). +- net/mlx5e: Improve MTT/KSM alignment (jsc#PED-1549). +- net/mlx5e: xsk: Use umr_mode to calculate striding RQ parameters + (jsc#PED-1549). +- net/mlx5e: xsk: Improve need_wakeup logic (jsc#PED-1549). +- net/mlx5e: xsk: Include XSK skb_from_cqe callbacks in + INDIRECT_CALL (jsc#PED-1549). +- net/mlx5e: xsk: Set napi_id to support busy polling + (jsc#PED-1549). +- net/mlx5e: xsk: Flush RQ on XSK activation to save memory + (jsc#PED-1549). +- net/mlx5e: xsk: Use queue indices starting from 0 for XSK queues + (jsc#PED-1549). +- net/mlx5e: Introduce the mlx5e_flush_rq function (jsc#PED-1549). +- net/mlx5e: xsk: Support XDP metadata on XSK RQs (jsc#PED-1549). +- net/mlx5e: Optimize RQ page deallocation (jsc#PED-1549). +- net/mlx5e: Call mlx5e_page_release_dynamic directly where + possible (jsc#PED-1549). +- net/mlx5e: Use non-XSK page allocator in SHAMPO (jsc#PED-1549). +- net/mlx5e: xsk: Use xsk_buff_alloc_batch on striding RQ + (jsc#PED-1549). +- net/mlx5e: xsk: Use xsk_buff_alloc_batch on legacy RQ + (jsc#PED-1549). +- net/mlx5e: xsk: Split out WQE allocation for legacy XSK RQ + (jsc#PED-1549). +- net/mlx5e: Remove the outer loop when allocating legacy RQ WQEs + (jsc#PED-1549). +- net/mlx5e: xsk: Use partial batches in legacy RQ with XSK + (jsc#PED-1549). +- net/mlx5e: Use partial batches in legacy RQ (jsc#PED-1549). +- net/mlx5e: Make the wqe_index_mask calculation more exact + (jsc#PED-1549). +- net/mlx5e: Introduce wqe_index_mask for legacy RQ + (jsc#PED-1549). +- net/mlx5e: xsk: Drop the check for XSK state in mlx5e_xsk_wakeup + (jsc#PED-1549). +- net/mlx5e: xsk: Use mlx5e_trigger_napi_icosq for XSK wakeup + (jsc#PED-1549). +- net/mlx5e: Clean up and fix error flows in mlx5e_alloc_rq + (jsc#PED-1549). +- net/mlx5e: Move repeating clear_bit in + mlx5e_rx_reporter_err_rq_cqe_recover (jsc#PED-1549). +- net/mlx5e: Split out channel (de)activation in rx_res + (jsc#PED-1549). +- net/mlx5e: xsk: Remove mlx5e_xsk_page_alloc_pool (jsc#PED-1549). +- net/mlx5e: Convert struct mlx5e_alloc_unit to a union + (jsc#PED-1549). +- net/mlx5e: Remove DMA address from mlx5e_alloc_unit + (jsc#PED-1549). +- net/mlx5e: Rename mlx5e_dma_info to prepare for removal of + DMA address (jsc#PED-1549). +- net/mlx5e: Optimize the page cache reducing its size 2x + (jsc#PED-1549). +- net/mlx5e: Fix calculations for ICOSQ size (jsc#PED-1549). +- net/mlx5e: xsk: Use KSM for unaligned XSK (jsc#PED-1549). +- net/mlx5: Add MLX5_FLEXIBLE_INLEN to safely calculate cmd inlen + (jsc#PED-1549). +- net/mlx5e: Keep a separate MKey for striding RQ (jsc#PED-1549). +- net/mlx5e: xsk: Use XSK frame size as striding RQ page size + (jsc#PED-1549). +- net/mlx5e: Use runtime page_shift for striding RQ + (jsc#PED-1549). +- xsk: Expose min chunk size to drivers (jsc#PED-1549). +- net/mlx5: Fix spelling mistake "syndrom" -> "syndrome" + (jsc#PED-1549). +- bnx2: Fix spelling mistake "bufferred" -> "buffered" + (jsc#PED-1187). +- ice: Add support for VLAN priority filters in switchdev + (jsc#PED-376). +- ice: support features on new E810T variants (jsc#PED-376). +- ice: Merge pin initialization of E810 and E810T adapters + (jsc#PED-376). +- net/mlx5e: Use runtime values of striding RQ parameters in + datapath (jsc#PED-1549). +- net/mlx5e: Make dma_info array dynamic in struct mlx5e_mpw_info + (jsc#PED-1549). +- net/mlx5e: Improve the MTU change shortcut (jsc#PED-1549). +- net/mlx5e: xsk: Fix SKB headroom calculation in validation + (jsc#PED-1549). +- net/mlx5e: xsk: Remove dead code in validation (jsc#PED-1549). +- net/mlx5e: Simplify stride size calculation for linear RQ + (jsc#PED-1549). +- net/mlx5e: kTLS, Check ICOSQ WQE size in advance (jsc#PED-1549). +- net/mlx5e: Use the aligned max TX MPWQE size (jsc#PED-1549). +- net/mlx5e: Fix a typo in mlx5e_xdp_mpwqe_is_full (jsc#PED-1549). +- net/mlx5e: Use mlx5e_stop_room_for_max_wqe where appropriate + (jsc#PED-1549). +- net/mlx5e: Let mlx5e_get_sw_max_sq_mpw_wqebbs accept mdev + (jsc#PED-1549). +- net/mlx5e: Make mlx5e_verify_rx_mpwqe_strides static + (jsc#PED-1549). +- net/mlx5e: Remove unused fields from datapath structs + (jsc#PED-1549). +- net/mlx5e: Convert mlx5e_get_max_sq_wqebbs to u8 (jsc#PED-1549). +- net/mlx5: Add the log_min_mkey_entity_size capability + (jsc#PED-1549). +- net/mlx5: Remove from FPGA IFC file not-needed definitions + (jsc#PED-1549). +- net/mlx5: Remove unused structs (jsc#PED-1549). +- net/mlx5: Remove unused functions (jsc#PED-1549). +- net/mlx5: detect and enable bypass port select flow table + (jsc#PED-1549). +- net/mlx5: Lag, enable hash mode by default for all NICs + (jsc#PED-1549). +- net/mlx5: Lag, set active ports if support bypass port select + flow table (jsc#PED-1549). +- RDMA/mlx5: Don't set tx affinity when lag is in hash mode + (jsc#PED-1549). +- net/mlx5: add IFC bits for bypassing port select flow table + (jsc#PED-1549). +- net/mlx5: Add support for NPPS with real time mode + (jsc#PED-1549). +- net/mlx5: Expose NPPS related registers (jsc#PED-1549). +- net/mlx5: Query ADV_VIRTUALIZATION capabilities (jsc#PED-1549). +- net/mlx5: Introduce ifc bits for page tracker (jsc#PED-1549). +- RDMA/mlx5: Move function mlx5_core_query_ib_ppcnt() to mlx5_ib + (jsc#PED-1549). +- sfc: bare bones TC offload on EF100 (jsc#PED-1565). +- sfc: interrogate MAE capabilities at probe time (jsc#PED-1565). +- sfc: add a hashtable for offloaded TC rules (jsc#PED-1565). +- sfc: optional logging of TC offload errors (jsc#PED-1565). +- sfc: bind indirect blocks for TC offload on EF100 + (jsc#PED-1565). +- sfc: bind blocks for TC offload on EF100 (jsc#PED-1565). +- ice: reorder PF/representor devlink port register/unregister + flows (jsc#PED-376). +- macsec: don't free NULL metadata_dst (jsc#PED-1549). +- net: macsec: remove the prepare flag from the MACsec offloading + context (jsc#PED-1549). +- net/mlx5e: macsec: remove checks on the prepare phase + (jsc#PED-1549). +- net: atlantic: macsec: remove checks on the prepare phase + (jsc#PED-1549). +- net: phy: mscc: macsec: remove checks on the prepare phase + (jsc#PED-1549). +- net: macsec: remove the prepare phase when offloading + (jsc#PED-1549). +- net: atlantic: macsec: make the prepare phase a noop + (jsc#PED-1549). +- net: phy: mscc: macsec: make the prepare phase a noop + (jsc#PED-1549). +- net/mlx5e: Support MACsec offload replay window (jsc#PED-1549). +- net/mlx5e: Support MACsec offload extended packet number (EPN) + (jsc#PED-1549). +- net/mlx5e: Move MACsec initialization from profile init stage + to profile enable stage (jsc#PED-1549). +- net/mlx5e: Create advanced steering operation (ASO) object + for MACsec (jsc#PED-1549). +- net/mlx5e: Expose memory key creation (mkey) function + (jsc#PED-1549). +- net/mlx5: Add ifc bits for MACsec extended packet number (EPN) + and replay protection (jsc#PED-1549). +- net/mlx5e: Fix MACsec initial packet number (jsc#PED-1549). +- net/mlx5e: Fix MACsec initialization error path (jsc#PED-1549). +- net/mlx5: Fix fields name prefix in MACsec (jsc#PED-1549). +- net: macsec: Expose extended packet number (EPN) properties + to macsec offload (jsc#PED-1549). +- net/mlx5e: Support 256 bit keys with kTLS device offload + (jsc#PED-1549). +- bnxt_en: replace reset with config timestamps (jsc#PED-1495). +- ice: Add low latency Tx timestamp read (jsc#PED-376). +- net/mlx5e: Ensure macsec_rule is always initiailized in + macsec_fs_{r,t}x_add_rule() (jsc#PED-1549). +- ice: Add L2TPv3 hardware offload support (jsc#PED-376). +- flow_offload: Introduce flow_match_l2tpv3 (jsc#PED-376). +- flow_dissector: Add L2TPv3 dissectors (jsc#PED-376). +- net/mlx5e: Switch to kmemdup() when allocate dev_addr + (jsc#PED-1549). +- net/mlx5e: add missing error code in error path (jsc#PED-1549). +- igc: Remove IGC_MDIC_INT_EN definition (jsc#PED-375). +- drivers/net/ethernet/e1000e: check return value of e1e_rphy() + (jsc#PED-837). +- sfc: introduce shutdown entry point in efx pci driver + (jsc#PED-1565). +- iavf: Fix race between iavf_close and iavf_reset_task + (jsc#PED-835). +- i40e: add description and modify interrupts configuration + procedure (jsc#PED-372). +- i40e: Add basic support for I710 devices (jsc#PED-372). +- ice: Simplify memory allocation in ice_sched_init_port() + (jsc#PED-376). +- ice: switch: Simplify memory allocation (jsc#PED-376). +- ice: add helper function to check FW API version (jsc#PED-376). +- ice: Check if reset in progress while waiting for offsets + (jsc#PED-376). +- net/mlx5e: Add support to configure more than one macsec + offload device (jsc#PED-1549). +- net/mlx5e: Add MACsec stats support for Rx/Tx flows + (jsc#PED-1549). +- net/mlx5e: Add MACsec offload SecY support (jsc#PED-1549). +- net/mlx5e: Implement MACsec Rx data path using MACsec + skb_metadata_dst (jsc#PED-1549). +- net/mlx5e: Add MACsec RX steering rules (jsc#PED-1549). +- net/mlx5: Add MACsec Rx tables support to fs_core + (jsc#PED-1549). +- net/mlx5e: Add MACsec offload Rx command support (jsc#PED-1549). +- net/mlx5e: Implement MACsec Tx data path using MACsec + skb_metadata_dst (jsc#PED-1549). +- net/mlx5e: Add MACsec TX steering rules (jsc#PED-1549). +- net/mlx5: Add MACsec Tx tables support to fs_core + (jsc#PED-1549). +- net/mlx5: Introduce MACsec Connect-X offload hardware bits + and structures (jsc#PED-1549). +- net/mlx5: Generalize Flow Context for new crypto fields + (jsc#PED-1549). +- net/mlx5: Removed esp_id from struct mlx5_flow_act + (jsc#PED-1549). +- net/macsec: Move some code for sharing with various drivers + that implements offload (jsc#PED-1549). +- net/macsec: Add MACsec skb_metadata_dst Rx Data path support + (jsc#PED-1549). +- net/macsec: Add MACsec skb_metadata_dst Tx Data path support + (jsc#PED-1549). +- sfc: support PTP over Ethernet (jsc#PED-1565). +- sfc: support PTP over IPv6/UDP (jsc#PED-1565). +- sfc: allow more flexible way of adding filters for PTP + (jsc#PED-1565). +- net/mlx5e: Do not use err uninitialized in + mlx5e_rep_add_meta_tunnel_rule() (jsc#PED-1549). +- net/mlx4: Fix error check for dma_map_sg (jsc#PED-1548). +- mlx4: Do type_clear() for devlink ports when type_set() was + called previously (jsc#PED-1548). +- ice: Print human-friendly PHY types (jsc#PED-376). +- ice: Implement devlink port split operations (jsc#PED-376). +- ice: Add additional flags to ice_nvm_write_activate + (jsc#PED-376). +- ice: Add port option admin queue commands (jsc#PED-376). +- ice: Add support for ip TTL & ToS offload (jsc#PED-376). +- net/mlx5: TC, Add support for SF tunnel offload (jsc#PED-1549). +- net/mlx5: E-Switch, Move send to vport meta rule creation + (jsc#PED-1549). +- net/mlx5: E-Switch, Split creating fdb tables into smaller + chunks (jsc#PED-1549). +- net/mlx5: E-Switch, Add default drop rule for unmatched packets + (jsc#PED-1549). +- net/mlx5e: Completely eliminate priv from fs.h (jsc#PED-1549). +- net/mlx5e: Make all ttc functions of en_fs get fs struct as + argument (jsc#PED-1549). +- net/mlx5e: Make flow steering arfs independent of priv + (jsc#PED-1549). +- net/mlx5e: Introduce flow steering debug macros (jsc#PED-1549). +- net/mlx5e: Separate ethtool_steering from fs.h and make private + (jsc#PED-1549). +- net/mlx5e: Directly get flow_steering struct as input when + init/cleanup ethtool steering (jsc#PED-1549). +- net/mlx5e: Convert ethtool_steering member of flow_steering + struct to pointer (jsc#PED-1549). +- net/mlx5e: Drop priv argument of ptp function in en_fs + (jsc#PED-1549). +- net/mlx5e: Decouple fs_tcp from en.h (jsc#PED-1549). +- net/mlx5e: Decouple fs_tt_redirect from en.h (jsc#PED-1549). +- net/mlx5e: Introduce flow steering API (jsc#PED-1549). +- ixgbe: Manual AN-37 for troublesome link partners for X550 SFI + (jsc#PED-373). +- ixgbe: Don't call kmap() on page allocated with GFP_ATOMIC + (jsc#PED-373). +- ice: remove non-inclusive language (jsc#PED-376). +- ice: Remove ucast_shared (jsc#PED-376). +- ice: Allow 100M speeds for some devices (jsc#PED-376). +- ice: Implement FCS/CRC and VLAN stripping co-existence policy + (jsc#PED-376). +- ice: Implement control of FCS/CRC stripping (jsc#PED-376). +- igc: add xdp frags support to ndo_xdp_xmit (jsc#PED-375). +- net: macsec: Expose MACSEC_SALT_LEN definition to user space + (jsc#PED-1549). +- ice: introduce ice_ptp_reset_cached_phctime function + (jsc#PED-376). +- ice: re-arrange some static functions in ice_ptp.c + (jsc#PED-376). +- ice: track and warn when PHC update is late (jsc#PED-376). +- ice: track Tx timestamp stats similar to other Intel drivers + (jsc#PED-376). +- ice: initialize cached_phctime when creating Rx rings + (jsc#PED-376). +- ice: set tx_tstamps when creating new Tx rings via ethtool + (jsc#PED-376). +- vdpa/mlx5: Fix MQ to support non power of two num queues + (jsc#PED-1549). +- ice: xsk: drop power of 2 ring size restriction for AF_XDP + (jsc#PED-376). +- ice: xsk: change batched Tx descriptor cleaning (jsc#PED-376). +- sfc: correct filter_table_remove method for EF10 PFs + (jsc#PED-1565). +- bnxt: prevent skb UAF after handing over to PTP worker + (jsc#PED-1495). +- ice: Fix interface being down after reset with + link-down-on-close flag on (jsc#PED-376). +- ice: config netdev tc before setting queues number + (jsc#PED-376). +- ice: Fix ice_xdp_xmit() when XDP TX queue number is not + sufficient (jsc#PED-376). +- i40e: Fix set max_tx_rate when it is lower than 1 Mbps + (jsc#PED-372). +- i40e: Fix VF set max MTU size (jsc#PED-372). +- iavf: Fix set max MTU size with port VLAN and jumbo frames + (jsc#PED-835). +- iavf: Fix bad page state (jsc#PED-835). +- sfc/siena: fix null pointer dereference in efx_hard_start_xmit + (jsc#PED-1565). +- sfc/siena: fix TX channel offset when using legacy interrupts + (jsc#PED-1565). +- bnxt_en: fix flags to check for supported fw version + (jsc#PED-1495). +- sfc: fix null pointer dereference in efx_hard_start_xmit + (jsc#PED-1565). +- sfc: fix TX channel offset when using legacy interrupts + (jsc#PED-1565). +- iavf: Fix cached head and tail value for iavf_get_tx_pending + (jsc#PED-835). +- iavf: Fix change VF's mac address (jsc#PED-835). +- ice: Fix crash by keep old cfg when update TCs more than queues + (jsc#PED-376). +- ice: Don't double unplug aux on peer initiated reset + (jsc#PED-376). +- RDMA/irdma: Use s/g array in post send only when its valid + (jsc#PED-377). +- RDMA/mlx5: Fix UMR cleanup on error flow of driver init + (jsc#PED-1552). +- RDMA/mlx5: Set local port to one when accessing counters + (jsc#PED-1552). +- RDMA/mlx5: Rely on RoCE fw cap instead of devlink when setting + profile (jsc#PED-1549). +- RDMA/irdma: Fix drain SQ hang with no completion (jsc#PED-377). +- iavf: Detach device during reset task (jsc#PED-835). +- i40e: Fix kernel crash during module removal (jsc#PED-372). +- i40e: Fix ADQ rate limiting for PF (jsc#PED-372). +- ice: use bitmap_free instead of devm_kfree (jsc#PED-376). +- ice: Fix DMA mappings leak (jsc#PED-376). +- Revert "net: macsec: update SCI upon MAC address + change." (jsc#PED-1549). +- macsec: Fix traffic counters/statistics (jsc#PED-1549). +- RDMA/rxe: Split qp state for requester and completer + (jsc#PED-1111). +- RDMA/rxe: Generate error completion for error requester QP state + (jsc#PED-1111). +- RDMA/rxe: Update wqe_index for each wqe error completion + (jsc#PED-1111). +- Revert "RDMA/rxe: Create duplicate mapping tables for FMRs" + (jsc#PED-1111). +- RDMA/rxe: Replace __rxe_do_task by rxe_run_task (jsc#PED-1111). +- RDMA/rxe: Limit the number of calls to each tasklet + (jsc#PED-1111). +- RDMA/rxe: Make the tasklet exits the same (jsc#PED-1111). +- RDMA/rxe: Add rxe_is_fenced() subroutine (jsc#PED-1111). +- RDMA/rxe: Fix spelling mistake in error print (jsc#PED-1111). +- RDMA/rxe: Remove unused qp parameter (jsc#PED-1111). +- RDMA/rxe: Remove unused mask parameter (jsc#PED-1111). +- RDMA/rxe: Rename rxe_atomic_reply to atomic_reply + (jsc#PED-1111). +- RDMA/rxe: Add common rxe_prepare_res() (jsc#PED-1111). +- RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup + (jsc#PED-1111). +- RDMA/rxe: Remove unnecessary include statement (jsc#PED-1111). +- RDMA/rxe: Replace include statement (jsc#PED-1111). +- RDMA/rxe: Convert pr_warn/err to pr_debug in pyverbs + (jsc#PED-1111). +- RDMA/rxe: Merge normal and retry atomic flows (jsc#PED-1111). +- RDMA/rxe: Move atomic original value to res (jsc#PED-1111). +- RDMA/rxe: Move atomic responder res to atomic_reply + (jsc#PED-1111). +- RDMA/rxe: Add a responder state for atomic reply (jsc#PED-1111). +- RDMA/rxe: Move code to rxe_prepare_atomic_res() (jsc#PED-1111). +- RDMA/rxe: Convert read side locking to rcu (jsc#PED-1111). +- RDMA/rxe: Stop lookup of partially built objects (jsc#PED-1111). +- RDMA/rxe: Remove useless pkt parameters (jsc#PED-1111). +- RDMA/rxe: fix xa_alloc_cycle() error return value check again + (jsc#PED-1111). +- net/mlx5e: Fix wrong use of skb_tcp_all_headers() with + encapsulation (jsc#PED-1549). +- net: phy: mxl-gpy: print firmware in human readable form + (jsc#PED-829). +- net: phy: mxl-gpy: rename the FW type field name (jsc#PED-829). +- net: phy: mxl-gpy: cache PHY firmware version (jsc#PED-829). +- net: phy: mxl-gpy: fix version reporting (jsc#PED-829). +- net: phy: add support to get Master-Slave configuration + (jsc#PED-829). +- net/mlx5e: Fix matchall police parameters validation + (jsc#PED-1549). +- net/sched: act_police: allow 'continue' action offload + (jsc#PED-1549). +- macsec: fix UAF bug for real_dev (jsc#PED-1549). +- RDMA/rxe: Fix an error handling path in rxe_get_mcg() + (jsc#PED-1111). +- RDMA/rxe: Enforce IBA C11-17 (jsc#PED-1111). +- RDMA/rxe: Move mw cleanup code to rxe_mw_cleanup() + (jsc#PED-1111). +- RDMA/rxe: Move mr cleanup code to rxe_mr_cleanup() + (jsc#PED-1111). +- RDMA/rxe: Move qp cleanup code to rxe_qp_do_cleanup() + (jsc#PED-1111). +- RDMA/rxe: Check rxe_get() return value (jsc#PED-1111). +- RDMA/rxe: Add rxe_srq_cleanup() (jsc#PED-1111). +- RDMA/rxe: Remove IB_SRQ_INIT_MASK (jsc#PED-1111). +- RDMA/rxe: Skip adjusting remote addr for write in retry + operation (jsc#PED-1111). +- RDMA/rxe: Optimize the mr pool struct (jsc#PED-1111). +- RDMA/rxe: Replace paylen by payload (jsc#PED-1111). +- RDMA/rxe: Remove useless parameters for update_state() + (jsc#PED-1111). +- RDMA/rxe: Remove reliable datagram support (jsc#PED-1111). +- RDMA/rxe: Remove support for SMI QPs from rdma_rxe + (jsc#PED-1111). +- RDMA/rxe: Remove mc_grp_pool from struct rxe_dev (jsc#PED-1111). +- RDMA/rxe: Remove type 2A memory window capability + (jsc#PED-1111). +- net/sched: act_police: Add extack messages for offload failure + (jsc#PED-1549). +- net/sched: act_api: Add extack to offload_act_setup() callback + (jsc#PED-1549). +- net/sched: flower: Take verbose flag into account when logging + error messages (jsc#PED-1549). +- net/sched: matchall: Take verbose flag into account when + logging error messages (jsc#PED-1549). +- lib: add generic polynomial calculation (jsc#PED-829). +- RDMA/rxe: Change mcg_lock to a _bh lock (jsc#PED-1111). +- RDMA/rxe: Do not call dev_mc_add/del() under a spinlock + (jsc#PED-1111). +- RDMA/rxe: Recheck the MR in when generating a READ reply + (jsc#PED-1111). +- RDMA/rxe: Fix "Replace mr by rkey in responder resources" + (jsc#PED-1111). +- RDMA/rxe: Use standard names for ref counting (jsc#PED-1111). +- RDMA/rxe: Replace red-black trees by xarrays (jsc#PED-1111). +- RDMA/rxe: Shorten pool names in rxe_pool.c (jsc#PED-1111). +- RDMA/rxe: Move max_elem into rxe_type_info (jsc#PED-1111). +- RDMA/rxe: Replace obj by elem in declaration (jsc#PED-1111). +- RDMA/rxe: Delete _locked() APIs for pool objects (jsc#PED-1111). +- RDMA/rxe: Reverse the sense of RXE_POOL_NO_ALLOC (jsc#PED-1111). +- RDMA/rxe: Replace mr by rkey in responder resources + (jsc#PED-1111). +- RDMA/rxe: Remove useless argument for update_state() + (jsc#PED-1111). +- RDMA/rxe: Cleanup rxe_mcast.c (jsc#PED-1111). +- RDMA/rxe: Collect cleanup mca code in a subroutine + (jsc#PED-1111). +- RDMA/rxe: Collect mca init code in a subroutine (jsc#PED-1111). +- RDMA/rxe: Warn if mcast memory is not freed (jsc#PED-1111). +- RDMA/rxe: Remove mcg from rxe pools (jsc#PED-1111). +- RDMA/rxe: Remove key'ed object support (jsc#PED-1111). +- RDMA/rxe: Replace pool key by rxe->mcg_tree (jsc#PED-1111). +- RDMA/rxe: Replace int num_qp by atomic_t qp_num (jsc#PED-1111). +- RDMA/rxe: Replace grp by mcg, mce by mca (jsc#PED-1111). +- RDMA/rxe: Use kzmalloc/kfree for mca (jsc#PED-1111). +- RDMA/rxe: Move mcg_lock to rxe (jsc#PED-1111). +- RDMA/rxe: Revert changes from irqsave to bh locks + (jsc#PED-1111). +- RDMA/rxe: Remove rxe_drop_all_macst_groups (jsc#PED-1111). +- RDMA/rxe: Enforce IBA o10-2.2.3 (jsc#PED-1111). +- RDMA/rxe: Rename rxe_mc_grp and rxe_mc_elem (jsc#PED-1111). +- RDMA/rxe: Move rxe_mcast_attach/detach to rxe_mcast.c + (jsc#PED-1111). +- RDMA/rxe: Move rxe_mcast_add/delete to rxe_mcast.c + (jsc#PED-1111). +- RDMA/rxe: Delete useless module.h include (jsc#PED-1111). +- net: phy: exported the genphy_read_master_slave function + (jsc#PED-829). +- flow_offload: improve extack msg for user when adding invalid + filter (jsc#PED-1549). +- net: sched: avoid newline at end of message in + NL_SET_ERR_MSG_MOD (jsc#PED-1549). +- net: sched: limit TC_ACT_REPEAT loops (jsc#PED-1549). +- asm-generic: Add missing brackets for io_stop_wc macro + (jsc#PED-1552). +- hash.h: remove unused define directive (jsc#PED-1111). +- RDMA/rxe: Use the standard method to produce udp source port + (jsc#PED-1111). +- RDMA/rxe: Delete deprecated module parameters interface + (jsc#PED-1111). +- RDMA/rxe: Fix indentations and operators sytle (jsc#PED-1111). +- RDMA/rxe: Remove the unused xmit_errors member (jsc#PED-1111). +- RDMA/rxe: Remove redundant err variable (jsc#PED-1111). +- RDMA/ocrdma: Remove unneeded variable (jsc#PED-1695). +- RDMA/ocrdma: Simplify code in 'ocrdma_search_mmap()' + (jsc#PED-1695). +- RDMA/ocrdma: Use bitmap_zalloc() when applicable (jsc#PED-1695). +- RDMA/rxe: Remove some #defines from rxe_pool.h (jsc#PED-1111). +- RDMA/rxe: Remove #include "rxe_loc.h" from rxe_pool.c + (jsc#PED-1111). +- RDMA/rxe: Save object pointer in pool element (jsc#PED-1111). +- RDMA/rxe: Copy setup parameters into rxe_pool (jsc#PED-1111). +- RDMA/rxe: Replace irqsave locks with bh locks (jsc#PED-1111). +- RDMA/ocrdma: Use helper function to set GUIDs (jsc#PED-1695). +- flow_offload: fix suspicious RCU usage when offloading tc action + (jsc#PED-1549). +- asm-generic: introduce io_stop_wc() and add implementation + for ARM64 (jsc#PED-1552). +- net: phy: Remove unused including + (jsc#PED-829). +- commit fac2fda + +- x86/insn: Add AMX instructions to the x86 instruction decoder + (bnc#1205282). +- commit 4ba8580 + +- usb: gadget: uvc: decrease the interrupt load to a quarter + (git-fixes). +- commit d4215d5 + +- usb: gadget: uvc: add scatter gather support (git-fixes). +- commit 8256025 + +- usb: gadget: uvc: make uvc_num_requests depend on gadget speed + (git-fixes). +- commit 12e1352 + +- ipv6: ping: fix wrong checksum for large frames (bsc#1203183). +- commit f29a164 + +- io_uring: disable polling signalfd pollfree files (CVE-2022-3176 + bsc#1203391). +- commit ff11e05 + +- blacklist.conf: kABI +- commit 52ff77d + +- usb: typec: ucsi: acpi: Implement resume callback (git-fixes). +- commit 0b832f1 + +- blacklist.conf: prerequisites would break kABI +- commit 3f3b1f5 + +- virtio_blk: add error handling support for add_disk() + (jsc#PED-1183). +- Refresh + patches.suse/Revert-virtio-blk-Add-validation-for-block-size-in-c.patch. +- commit 5f63f70 + +- block: inherit request start time from bio for BLK_CGROUP + (jsc#PED-1183). +- block: move blk-throtl fast path inline (jsc#PED-1183). +- commit 6137b58 + +- io_uring: optimise io_prep_linked_timeout() (bnc#1205205). +- io_uring: cancel not-armed linked touts separately + (bnc#1205205). +- io_uring: simplify io_prep_linked_timeout (bnc#1205205). +- io_uring: kill REQ_F_LTIMEOUT_ACTIVE (bnc#1205205). + - Update patches.suse/io_uring-Fix-undefined-behaviour-in-io_issue_sqe.patch + - Update patches.suse/io_uring-fix-race-between-timeout-flush-and-removal.patch +- io_uring: deduplicate cancellation code (bnc#1205205). +- io_uring: kill not necessary resubmit switch (bnc#1205205). +- io_uring: optimise initial ltimeout refcounting (bnc#1205205). +- io_uring: don't inflight-track linked timeouts (bnc#1205205). + - Update patches.suse/io_uring-Fix-undefined-behaviour-in-io_issue_sqe.patch + - Update patches.suse/io_uring-fix-race-between-timeout-flush-and-removal.patch +- io_uring: optimise iowq refcounting (bnc#1205205). +- io_uring: remove files pointer in cancellation functions + (bnc#1205205). +- io_uring: extract io_uring_files_cancel() in + io_uring_task_cancel() (bnc#1205205). +- commit 8175601 + +- io_uring: optimise hot path of ltimeout prep (bnc#1205205). +- io_uring: skip request refcounting (bnc#1205205). +- io_uring: remove submission references (bnc#1205205). +- io_uring: remove req_ref_sub_and_test() (bnc#1205205). +- io_uring: move req_ref_get() and friends (bnc#1205205). +- commit a6d17c7 + +- usb: typec: ucsi: Check the connection on resume (git-fixes). +- commit 94056b2 + +- blacklist.conf: this patch would need an inordinary number of + prerequisites for a race in a corner case +- commit 4987ef8 + +- blacklist.conf: kABI +- commit 29e4b4e + +- blk-mq: Add blk_mq_alloc_map_and_rqs() (jsc#PED-1183). +- blk-mq: Add blk_mq_tag_update_sched_shared_sbitmap() + (jsc#PED-1183). +- blk-mq: Don't clear driver tags own mapping (jsc#PED-1183). +- blk-mq: Pass driver tags to blk_mq_clear_rq_mapping() + (jsc#PED-1183). +- blk-mq-sched: Rename blk_mq_sched_free_{requests -> rqs}() + (jsc#PED-1183). +- blk-mq-sched: Rename blk_mq_sched_alloc_{tags -> map_and_rqs}() + (jsc#PED-1183). +- blk-mq: Invert check in blk_mq_update_nr_requests() + (jsc#PED-1183). +- blk-mq: Relocate shared sbitmap resize in + blk_mq_update_nr_requests() (jsc#PED-1183). +- commit 8bfc591 + +- block: Rename BLKDEV_MAX_RQ -> BLKDEV_DEFAULT_RQ (jsc#PED-1183). +- Refresh patches.suse/block-Provide-blk_mq_sched_get_icq.patch. +- commit 52ac9ca + +- blk-mq: Change rqs check in blk_mq_free_rqs() (jsc#PED-1183). +- commit 386aed8 + +- block: print the current process in handle_bad_sector + (jsc#PED-1183). +- commit 3c96a17 + +- Update patch metadata for media fix (CVE-2022-3903 bsc#1205220) +- commit 899a453 + +- block/mq-deadline: Stop using per-CPU counters (jsc#PED-1183). +- block/mq-deadline: Add an invariant check (jsc#PED-1183). +- commit 8b4880d + +- block: move some macros to blkdev.h (jsc#PED-1183). +- commit 0c6d0ca + +- block: move integrity handling out of + (jsc#PED-1183). +- Refresh + patches.suse/block-don-t-merge-across-cgroup-boundaries-if-blkcg-.patch. +- Refresh + patches.suse/mm-don-t-include-linux-memremap.h-in-linux-mm.h.patch. +- commit 4916dfc + +- x86/tdx: Panic on bad configs that #VE on "private" memory + access (jsc#PED-342). +- commit a423135 + +- capabilities: fix undefined behavior in bit shift for + CAP_TO_MASK (git-fixes). +- capabilities: fix potential memleak on error path from + vfs_getxattr_alloc() (git-fixes). +- commit 9091aa0 + +- x86/tdx: Prepare for using "INFO" call for a second purpose + (jsc#PED-342). +- commit 4b44375 + +- x86/tdx: Handle load_unaligned_zeropad() page-cross to a shared + page (jsc#PED-342). +- commit 19687ce + +- x86/tdx: Clarify RIP adjustments in #VE handler (jsc#PED-342). +- commit 0259aa5 + +- block: move a few merge helpers out of + (jsc#PED-1183). +- block: drop unused includes in (jsc#PED-1183). +- block: drop unused includes in (jsc#PED-1183). +- block: move elevator.h to block/ (jsc#PED-1183). +- block: remove the struct blk_queue_ctx forward declaration + (jsc#PED-1183). +- block: remove the cmd_size field from struct request_queue + (jsc#PED-1183). +- block: remove the unused blk_queue_state enum (jsc#PED-1183). +- block: remove the unused rq_end_sector macro (jsc#PED-1183). +- sched: move the include out of + kernel/sched/sched.h (jsc#PED-1183). +- kernel: remove spurious blkdev.h includes (jsc#PED-1183). +- arch: remove spurious blkdev.h includes (jsc#PED-1183). +- mm: remove spurious blkdev.h includes (jsc#PED-1183). +- mm: don't include in + (jsc#PED-1183). +- mm: don't include in + (jsc#PED-1183). +- mm: don't include in + (jsc#PED-1183). +- commit f4c4b1a + +- dm ima: prefix ima event name related to device mapper with dm_ + (jsc#PED-1183). +- dm ima: add version info to dm related events in ima log + (jsc#PED-1183). +- dm ima: prefix dm table hashes in ima log with hash algorithm + (jsc#PED-1183). +- dm ima: measure data on device rename (jsc#PED-1183). +- dm ima: measure data on table clear (jsc#PED-1183). +- dm ima: measure data on device remove (jsc#PED-1183). +- dm ima: measure data on device resume (jsc#PED-1183). +- dm ima: measure data on table load (jsc#PED-1183). +- commit e6250e4 + +- block: warn when putting the final reference on a registered + (jsc#PED-1183). +- brd: reduce the brd_devices_mutex scope (jsc#PED-1183). +- kyber: avoid q->disk dereferences in trace points + (jsc#PED-1183). +- block: keep q_usage_counter in atomic mode after del_gendisk + (jsc#PED-1183). +- block: drain file system I/O on del_gendisk (jsc#PED-1183). +- block: split bio_queue_enter from blk_queue_enter + (jsc#PED-1183). +- block: factor out a blk_try_enter_queue helper (jsc#PED-1183). +- block: call submit_bio_checks under q_usage_counter + (jsc#PED-1183). +- commit 3c9365f + +- block: genhd: fix double kfree() in __alloc_disk_node() + (jsc#PED-1183). +- scsi: bsg: Fix device unregistration (jsc#PED-1183). +- block: hold ->invalidate_lock in blkdev_fallocate + (jsc#PED-1183). +- commit 502e581 + +- block: move fs/block_dev.c to block/bdev.c (jsc#PED-1183). +- block: split out operations on block special files + (jsc#PED-1183). +- bio: fix kerneldoc documentation for bio_alloc_kiocb() + (jsc#PED-1183). +- cdrom: update uniform CD-ROM maintainership in MAINTAINERS file + (jsc#PED-1183). +- commit 18be238 + +- sg: pass the device name to blk_trace_setup (jsc#PED-1183). +- block, bfq: cleanup the repeated declaration (jsc#PED-1183). +- block: mark blkdev_fsync static (jsc#PED-1183). +- block: refine the disk_live check in del_gendisk (jsc#PED-1183). +- mmc: sdhci-tegra: Enable MMC_CAP2_ALT_GPT_TEGRA (jsc#PED-1183). +- mmc: block: Support alternative_gpt_sector() operation + (jsc#PED-1183). +- partitions/efi: Support non-standard GPT location + (jsc#PED-1183). +- block: Add alternative_gpt_sector() operation (jsc#PED-1183). +- commit 5f12e3d + +- x86/tdx: Fix early #VE handling (jsc#PED-342). +- commit bdcffa5 + +- scsi: csiostor: Convert sysfs snprintf() to sysfs_emit() + (jsc#PED-1504). +- scsi: csio: Stop using the SCSI pointer (jsc#PED-1504). +- commit 67b0269 + +- crypto: hisilicon/qm: Set the VF QM state register + (jsc#PED-1109). +- hisi_acc_vfio_pci: Add helper to retrieve the struct pci_driver + (jsc#PED-1109). +- hisi_acc_qm: Move VF PCI device IDs to common header + (jsc#PED-1109). +- crypto: hisilicon/qm: Move few definitions to common header + (jsc#PED-1109). +- crypto: hisilicon/qm: Move the QM header to include/linux + (jsc#PED-1109). +- crypto: hisilicon/qm - fix deadlock for remove driver + (jsc#PED-1109). +- commit a420954 + +- x86/tdx: Fix RETs in TDX asm (jsc#PED-342). +- commit fce07e1 + +- bio: improve kerneldoc documentation for bio_alloc_kiocb() + (jsc#PED-1183). +- block: provide bio_clear_hipri() helper (jsc#PED-1183). +- block: use the percpu bio cache in __blkdev_direct_IO + (jsc#PED-1183). +- io_uring: enable use of bio alloc cache (jsc#PED-1183). +- block: clear BIO_PERCPU_CACHE flag if polling isn't supported + (jsc#PED-1183). +- commit bce5f8e + +- Update patches.suse/scsi-ibmvfc-Avoid-path-failures-during-live-migratio.patch + (bsc#1065729 bsc#1204810 ltc#200162). +- commit ba4e679 + +- bio: add allocation cache abstraction (jsc#PED-1183). +- Refresh + patches.suse/block-fix-rq-qos-breakage-from-skipping-rq_qos_done_.patch. +- commit 17a0991 + +- x86/tdx: Annotate a noreturn function (jsc#PED-342). +- commit 8553815 + +- fs: add kiocb alloc cache flag (jsc#PED-1183). +- bio: optimize initialization of a bio (jsc#PED-1183). +- commit 9a0b8ca + +- x86,objtool: Move the ASM_REACHABLE annotation to objtool.h + (jsc#PED-342). +- Refresh + patches.suse/objtool-Re-add-UNWIND_HINT_-SAVE_RESTORE.patch. +- commit 2f94159 + +- Update config files. +- commit 5d7c7c6 + +- block: remove CONFIG_DEBUG_BLOCK_EXT_DEVT (jsc#PED-1183). +- Refresh + patches.suse/block-Fix-the-maximum-minor-value-is-blk_alloc_ext_m.patch. +- commit 754b820 + +- block: remove a pointless call to MINOR() in device_add_disk + (jsc#PED-1183). +- commit 9543e11 + +- block: fix argument type of bio_trim() (jsc#PED-1183). +- docs: sysfs-block-device: document ncq_prio_supported + (jsc#PED-1183). +- docs: sysfs-block-device: improve ncq_prio_enable documentation + (jsc#PED-1183). +- commit fd778db + +- null_blk: add error handling support for add_disk() + (jsc#PED-1183). +- commit 3aa258a + +- x86/mm: Fix spacing within memory encryption features message + (jsc#PED-342). +- commit 881d16c + +- x86/kaslr: Fix build warning in KASLR code in boot stub + (jsc#PED-342). +- commit e3d83a1 + +- block: add error handling for device_add_disk / add_disk + (jsc#PED-1183). +- block: return errors from disk_alloc_events (jsc#PED-1183). +- block: return errors from blk_integrity_add (jsc#PED-1183). +- block: call blk_register_queue earlier in device_add_disk + (jsc#PED-1183). +- block: call blk_integrity_add earlier in device_add_disk + (jsc#PED-1183). +- block: create the bdi link earlier in device_add_disk + (jsc#PED-1183). +- block: call bdev_add later in device_add_disk (jsc#PED-1183). +- block: fold register_disk into device_add_disk (jsc#PED-1183). +- block: add a sanity check for a live disk in del_gendisk + (jsc#PED-1183). +- block: add an explicit ->disk backpointer to the request_queue + (jsc#PED-1183). +- block: hold a request_queue reference for the lifetime of + struct gendisk (jsc#PED-1183). +- block: pass a request_queue to __blk_alloc_disk (jsc#PED-1183). +- block: remove the minors argument to __alloc_disk_node + (jsc#PED-1183). +- block: remove alloc_disk and alloc_disk_node (jsc#PED-1183). +- block: cleanup the lockdep handling in *alloc_disk + (jsc#PED-1183). +- commit 46310ce + +- ext4: only allow test_dummy_encryption when supported + (bsc#1202772 bsc#1205173). +- blacklist.conf: Remove above patch from blacklist +- commit 091cd9f + +- sg: do not allocate a gendisk (jsc#PED-1183). +- commit 37d18a6 + +- st: do not allocate a gendisk (jsc#PED-1183). +- Refresh + patches.suse/scsi-scsi_ioctl-Call-scsi_cmd_ioctl-from-scsi_ioctl.patch. +- Refresh patches.suse/scsi-st-Simplify-ioctl-handling.patch. +- commit 3c5d6ed + +- Documentation/x86: Document TDX kernel architecture + (jsc#PED-342). +- commit 33bbdec + +- x86/tdx/ioapic: Add shared bit for IOAPIC base address + (jsc#PED-342). +- commit 04231d0 + +- x86/mm: Make DMA memory shared for TD guest (jsc#PED-342). +- Update config files. +- Refresh + patches.suse/x86-mm-move-protection_map-inside-the-platform.patch. +- commit 48058a1 + +- drm/i915/gvt: fix double free bug in split_2MB_gtt_entry (bsc#1204780, CVE-2022-3707) +- commit 3d29636 + +- x86/mm/cpa: Add support for TDX shared memory (jsc#PED-342). +- commit 818b3a3 + +- x86/tdx: Make pages shared in ioremap() (jsc#PED-342). +- commit 0b05d9e + +- x86/topology: Disable CPU online/offline control for TDX guests + (jsc#PED-342). +- commit 9d93879 + +- scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024 + (bsc#1156395). +- commit 32de176 + +- x86/boot: Avoid #VE during boot for TDX platforms (jsc#PED-342). +- commit 6a73875 + +- x86/boot: Set CR0.NE early and keep it set during the boot + (jsc#PED-342). +- commit 5319e24 + +- x86/acpi/x86/boot: Add multiprocessor wake-up support + (jsc#PED-342). +- commit 28d025a + +- Refresh patches.suse/scsi-ibmvfc-Do-not-wait-for-initial-device-scan.patch. + Refresh to upstream version of patch. +- commit aba4ad9 + +- x86/boot: Add a trampoline for booting APs via firmware handoff + (jsc#PED-342). +- commit d10a201 + +- Refresh sorted patches. +- commit 3d3be93 + +- x86/tdx: Wire up KVM hypercalls (jsc#PED-342). +- commit 4edd4de + +- scsi: ibmvfc: Avoid path failures during live migration + (bsc#1065729). +- commit 2f0fa7f + +- Update patches.suse/arm64-Add-AMPERE1-to-the-Spectre-BHB-affected-list.patch (git-fixes, bsc#1205153). + Add reference to bsc#1205153. +- commit 08070be + +- x86/tdx: Port I/O: Add early boot support (jsc#PED-342). +- commit ee7bb95 + +- x86/tdx: Port I/O: Add runtime hypercalls (jsc#PED-342). +- commit 6a328ea + +- x86/boot: Port I/O: Add decompression-time support for TDX + (jsc#PED-342). +- commit 959a061 + +- arm64: Add AMPERE1 to the Spectre-BHB affected list (git-fixes). +- arm64: errata: Add Cortex-A55 to the repeat tlbi list (git-fixes). + Enable CONFIG_ARM64_ERRATUM_2441007, too +- commit 57ef351 + +- ALSA: usb-audio: Remove redundant workaround for Roland quirk + (bsc#1205111). +- ALSA: usb-audio: Yet more regression for for the delayed card + registration (bsc#1205111). +- commit fdb6d05 + +- x86/boot: Port I/O: Allow to hook up alternative helpers + (jsc#PED-342). +- commit 63333dd + +- x86: Consolidate port I/O helpers (jsc#PED-342). +- commit 6e8ed87 + +- rpm/check-for-config-changes: add TOOLCHAIN_HAS_* to IGNORED_CONFIGS_RE + This new form was added in commit b8c86872d1dc (riscv: fix detection of + toolchain Zicbom support). +- commit e9f2ba6 + +- Update config files. +- commit d4d6656 + +- x86: Adjust types used in port I/O helpers (jsc#PED-342). +- commit ae6e9eb + +- x86/tdx: Detect TDX at early kernel decompression time + (jsc#PED-342). +- commit 0d313b1 + +- docs: perf: Include hns3-pmu.rst in toctree to fix 'htmldocs' + WARNING (jsc#PED-1113). +- drivers/perf: hisi: add driver for HNS3 PMU (jsc#PED-1113). +- drivers/perf: hisi: Add description for HNS3 PMU driver + (jsc#PED-1113). +- commit 924185b + +- x86/tdx: Handle in-kernel MMIO (jsc#PED-342). +- commit 0ac9a9a + +- x86/insn-eval: Introduce insn_get_modrm_reg_ptr() (jsc#PED-342). +- commit 7042e81 + +- x86/insn-eval: Introduce insn_decode_mmio() (jsc#PED-342). +- commit 098c34f + +- tracing: kprobe: Fix memory leak in + test_gen_kprobe/kretprobe_cmd() (git-fixes). +- commit 4b18e0d + +- io-wq: don't retry task_work creation failure on fatal + conditions (bnc#1205113). +- io-wq: Remove duplicate code in io_workqueue_create() + (bnc#1205113). +- io-wq: fix silly logic error in io_task_work_match() + (bnc#1205113). +- io-wq: fix cancellation on create-worker failure (bnc#1205113). +- commit f9f6f38 + +- x86/tdx: Handle CPUID via #VE (jsc#PED-342). +- commit d9569a7 + +- x86/tdx: Add MSR support for TDX guests (jsc#PED-342). +- commit c351cc8 + +- block: add back the bd_holder_dir reference in + bd_link_disk_holder (jsc#PED-1183). +- block: fix default IO priority handling (jsc#PED-1183). +- block: Introduce IOPRIO_NR_LEVELS (jsc#PED-1183). +- block: fix IOPRIO_PRIO_CLASS() and IOPRIO_PRIO_VALUE() macros + (jsc#PED-1183). +- block: change ioprio_valid() to an inline function + (jsc#PED-1183). +- block: improve ioprio class description comment (jsc#PED-1183). +- ioprio: move user space relevant ioprio bits to UAPI includes + (jsc#PED-1183). +- commit 7035d24 + +- Add suse-kernel-rpm-scriptlets to kmp buildreqs (boo#1205149) +- commit 888e01e + +- cifs: fix use-after-free on the link name (bsc#1193629). +- commit c8e18d6 + +- cifs: avoid unnecessary iteration of tcp sessions (bsc#1193629). +- commit 3b19f83 + +- cifs: always iterate smb sessions using primary channel + (bsc#1193629). +- commit 5cac47b + +- cifs: fix use-after-free caused by invalid pointer `hostname` + (bsc#1193629). +- commit 6bd980d + +- cifs: Fix pages leak when writedata alloc failed in + cifs_write_from_iter() (bsc#1193629). +- commit 4170ae6 + +- cifs: Fix pages array leak when writedata alloc failed in + cifs_writedata_alloc() (bsc#1193629). +- commit b7ff361 + +- x86/tdx: Add HLT support for TDX guests (jsc#PED-342). +- commit fa8f2ad + +- block: unexport blk_register_queue (jsc#PED-1183). +- blk-cgroup: stop using seq_get_buf (jsc#PED-1183). +- blk-cgroup: refactor blkcg_print_stat (jsc#PED-1183). +- nvme: use bvec_virt (jsc#PED-1183). +- dcssblk: use bvec_virt (jsc#PED-1183). +- dasd: use bvec_virt (jsc#PED-1183). +- ps3vram: use bvec_virt (jsc#PED-1183). +- ubd: use bvec_virt (jsc#PED-1183). +- sd: use bvec_virt (jsc#PED-1183). +- bcache: use bvec_virt (jsc#PED-1183). +- virtio_blk: use bvec_virt (jsc#PED-1183). +- rbd: use bvec_virt (jsc#PED-1183). +- squashfs: use bvec_virt (jsc#PED-1183). +- dm-integrity: use bvec_virt (jsc#PED-1183). +- dm-ebs: use bvec_virt (jsc#PED-1183). +- dm: make EBS depend on !HIGHMEM (jsc#PED-1183). +- block: use bvec_virt in bio_integrity_{process,free} + (jsc#PED-1183). +- bvec: add a bvec_virt helper (jsc#PED-1183). +- commit 1fa6c4f + +- x86/traps: Add #VE support for TDX guest (jsc#PED-342). +- commit 0845fe8 + +- block: free the extended dev_t minor later (jsc#PED-1183). +- block: pass a gendisk to bdev_resize_partition (jsc#PED-1183). +- block: pass a gendisk to bdev_del_partition (jsc#PED-1183). +- block: pass a gendisk to bdev_add_partition (jsc#PED-1183). +- block: store a gendisk in struct parsed_partitions + (jsc#PED-1183). +- block: remove GENHD_FL_UP (jsc#PED-1183). +- commit a8e4fd9 + +- bcache: move the del_gendisk call out of bcache_device_free + (jsc#PED-1183). +- Refresh + patches.suse/0001-bcache-fix-use-after-free-problem-in-bcache_device_f.patch. +- commit 1509972 + +- sx8: use the internal state machine to check if del_gendisk + needs to be called (jsc#PED-1183). +- commit fb76d3a + +- nvme: replace the GENHD_FL_UP check in nvme_mpath_shutdown_disk + (jsc#PED-1183). +- commit 415dd0f + +- Update config files for enabling CONFIG_SECONDARY_TRUSTED_KEYRING + In x86_64 config, we have enabled the CONFIG_SECONDARY_TRUSTED_KEYRING + and children kernel config since SLE12-SP4 and SLE15. But we didn't + enable it in other architectures because the original this option is + for secure boot. + In the future, the CONFIG_SECONDARY_TRUSTED_KEYRING will be used with + IMA in different architectures. So let's enable it in SLE in arm64, + armv7hl, ppc64le and s390x architectures. Then Leap or even SLE users + can use it for preparing IMA functions with secondary trusted keyring. + (bsc#1203739) +- commit 7d983f7 + +- x86/traps: Refactor exc_general_protection() (jsc#PED-342). +- commit 4d05e70 + +- block: ensure the bdi is freed after inode_detach_wb (jsc#PED-1183). - blacklist.conf: +- commit 9224fa7 + +- nvme: remove the GENHD_FL_UP check in nvme_ns_remove + (jsc#PED-1183). +- Refresh + patches.suse/nvme-fix-RCU-hole-that-allowed-for-endless-looping-i.patch. +- Refresh + patches.suse/nvme-only-call-synchronize_srcu-when-clearing-curren.patch. +- commit 5f9ae94 + +- x86/tdx: Exclude shared bit from __PHYSICAL_MASK (jsc#PED-342). +- commit 7c06d91 + +- mmc: block: cleanup gendisk creation (jsc#PED-1183). +- mmc: block: let device_add_disk create disk attributes + (jsc#PED-1183). +- commit d09b05c + +- block: remove the bd_bdi in struct block_device (jsc#PED-1183). +- block: move the bdi from the request_queue to the gendisk + (jsc#PED-1183). +- block: add a queue_has_disk helper (jsc#PED-1183). +- commit 6bd4b8b + +- block: pass a gendisk to blk_queue_update_readahead + (jsc#PED-1183). +- Refresh + patches.suse/nvme-multipath-revalidate-paths-during-rescan.patch. +- commit 0d9ee3a + +- mm: hide laptop_mode_wb_timer entirely behind the BDI API + (jsc#PED-1183). +- block: remove support for delayed queue registrations + (jsc#PED-1183). +- dm: delay registering the gendisk (jsc#PED-1183). +- dm: move setting md->type into dm_setup_md_queue (jsc#PED-1183). +- dm: cleanup cleanup_mapped_device (jsc#PED-1183). +- block: support delayed holder registration (jsc#PED-1183). +- block: look up holders by bdev (jsc#PED-1183). +- block: remove the extra kobject reference in bd_link_disk_holder + (jsc#PED-1183). +- block: make the block holder code optional (jsc#PED-1183). +- blk-mq: Introduce the BLK_MQ_F_NO_SCHED_BY_DEFAULT flag + (jsc#PED-1183). +- block: remove blk-mq-sysfs dead code (jsc#PED-1183). +- commit e8944f6 + +- loop: raise media_change event (jsc#PED-1183). +- Refresh patches.suse/loop-reduce-the-loop_ctl_mutex-scope.patch. +- commit 6fac71e + +- block: add a helper to raise a media changed event + (jsc#PED-1183). +- block: export diskseq in sysfs (jsc#PED-1183). +- block: add ioctl to read the disk sequence number + (jsc#PED-1183). +- block: export the diskseq in uevents (jsc#PED-1183). +- block: add disk sequence number (jsc#PED-1183). +- commit 08404d0 + +- x86/tdx: Extend the confidential computing API to support TDX + guests (jsc#PED-342). +- commit ee89ba2 + +- block: remove cmdline-parser.c (jsc#PED-1183). +- block: remove disk_name() (jsc#PED-1183). +- block: simplify disk name formatting in check_partition + (jsc#PED-1183). +- block: simplify printing the device names disk_stack_limits + (jsc#PED-1183). +- block: use the %pg format specifier in show_partition + (jsc#PED-1183). +- block: use the %pg format specifier in printk_all_partitions + (jsc#PED-1183). +- commit ae60bd5 + +- block: reduce stack usage in diskstats_show (jsc#PED-1183). +- Refresh patches.suse/block-update-io_ticks-when-io-hang.patch. +- commit 0a2cd44 + +- block: remove bdput (jsc#PED-1183). +- block: remove bdgrab (jsc#PED-1183). +- commit e133466 + +- loop: don't grab a reference to the block device (jsc#PED-1183). +- block: change the refcounting for partitions (jsc#PED-1183). +- block: allocate bd_meta_info later in add_partitions + (jsc#PED-1183). +- commit 2f8408c + +- block: unhash the whole device inode earlier (jsc#PED-1183). +- block: assert the locking state in delete_partition + (jsc#PED-1183). +- commit 8def158 + +- x86/tdx: Add __tdx_module_call() and __tdx_hypercall() helper + functions (jsc#PED-342). +- commit 4d36a19 + +- block: take destination bvec offsets into account in + bio_copy_data_iter (jsc#PED1183). +- commit 5428532 + +- block: use bvec_kmap_local in bio_integrity_process + (jsc#PED1183). +- block: use bvec_kmap_local in t10_pi_type1_{prepare,complete} + (jsc#PED1183). +- block: use memcpy_from_bvec in __blk_queue_bounce (jsc#PED1183). +- block: use memcpy_from_bvec in bio_copy_kern_endio_read + (jsc#PED1183). +- block: use memcpy_to_bvec in copy_to_high_bio_irq (jsc#PED1183). +- block: rewrite bio_copy_data_iter to use bvec_kmap_local and + memcpy_to_bvec (jsc#PED1183). +- block: remove bvec_kmap_irq and bvec_kunmap_irq (jsc#PED1183). +- ps3disk: use memcpy_{from,to}_bvec (jsc#PED1183). +- dm-writecache: use bvec_kmap_local instead of bvec_kmap_irq + (jsc#PED1183). +- rbd: use memzero_bvec (jsc#PED1183). +- block: use memzero_page in zero_fill_bio (jsc#PED1183). +- bvec: add memcpy_{from,to}_bvec and memzero_bvec helper + (jsc#PED1183). +- bvec: add a bvec_kmap_local helper (jsc#PED1183). +- bvec: fix the include guards for bvec.h (jsc#PED1183). +- MIPS: don't include in + (jsc#PED1183). +- commit f380fe3 + +- x86/tdx: Provide common base for SEAMCALL and TDCALL C wrappers + (jsc#PED-342). +- Refresh + patches.suse/KVM-VMX-Prevent-RSB-underflow-before-vmenter.patch. +- commit 5700a12 + +- x86/tdx: Detect running as a TDX guest in early boot + (jsc#PED-342). +- Update config files. +- Refresh patches.suse/x86-retpoline-Cleanup-some-ifdefery.patch. +- commit 4cddcd7 + +- mm/debug_vm_pgtable: drop protection_map[] usage (jsc#PED-1981). +- mm: debug_vm_pgtable: don't use __P000 directly (jsc#PED-1981). +- commit 3e71232 + +- Move upstreamed tracing patch into sorted section +- commit c9209ac + +- hv_netvsc: Fix race between VF offering and VF association + message from host (bsc#1204850). +- commit e9c6d7c + +- arm64: entry: avoid kprobe recursion (git-fixes). +- Documentation: devres: add missing I2C helper (git-fixes). +- i2c: piix4: Fix adapter not be removed in piix4_remove() + (git-fixes). +- efi/tpm: Pass correct address to memblock_reserve (git-fixes). +- arm64: dts: juno: Add thermal critical trip points (git-fixes). +- firmware: arm_scmi: Make Rx chan_setup fail on memory errors + (git-fixes). +- firmware: arm_scmi: Suppress the driver's bind attributes + (git-fixes). +- arm64: dts: ls208xa: specify clock frequencies for the MDIO + controllers (git-fixes). +- arm64: dts: ls1088a: specify clock frequencies for the MDIO + controllers (git-fixes). +- arm64: dts: lx2160a: specify clock frequencies for the MDIO + controllers (git-fixes). +- dt-bindings: power: gpcv2: add power-domains property + (git-fixes). +- arm64: dts: imx8: correct clock order (git-fixes). +- ARM: dts: imx6qdl-gw59{10,13}: fix user pushbutton GPIO offset + (git-fixes). +- commit 9fbcbe8 + +- scsi: bnx2fc: Avoid using get_cpu() in bnx2fc_cmd_alloc() + (jsc#PED-1517). +- scsi: fcoe: Use per-CPU API to update per-CPU statistics + (jsc#PED-1517). +- scsi: bnx2fc: Fix spelling mistake "mis-match" -> "mismatch" + (jsc#PED-1517). +- scsi: bnx2fc: Stop using the SCSI pointer (jsc#PED-1517). +- scsi: bnx2fc: Make use of the helper macro kthread_run() + (jsc#PED-1517). +- scsi: bnx2fc: Fix typo in comments (jsc#PED-1517). +- commit 248604a + +- x86/mm: disable instrumentations of mm/pgprot.c (jsc#PED-1981). +- commit 204bb3e + +- powerpc/mm: Support execute-only memory on the Radix MMU + (jsc#PED-1981). +- mm/mmap: drop ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- arm/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- s390/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- mm/mmap: build protect protection_map[] with + ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- x86/mm: move protection_map[] inside the platform + (jsc#PED-1981). +- arm64/mm: move protection_map[] inside the platform + (jsc#PED-1981). +- powerpc/mm: move protection_map[] inside the platform + (jsc#PED-1981). +- mm/mmap: define DECLARE_VM_GET_PAGE_PROT (jsc#PED-1981). +- mm/mmap: build protect protection_map[] with __P000 + (jsc#PED-1981). +- mm/mmap: drop arch_vm_get_page_pgprot() (jsc#PED-1981). +- mm/mmap: drop arch_filter_pgprot() (jsc#PED-1981). +- x86/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- arm64/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- powerpc/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- mm/mmap: add new config ARCH_HAS_VM_GET_PAGE_PROT + (jsc#PED-1981). +- mm/mmap: clarify protection_map[] indices (jsc#PED-1981). +- mm: generalize ARCH_HAS_FILTER_PGPROT (jsc#PED-1981). +- commit a3908cf + +- scsi: core: Remove the request member from struct scsi_cmnd + (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Use-a-structure-member-to-track-the-SCSI-command-submitter.patch. +- Refresh + patches.suse/scsi-do-not-print-reservation-conflict-for-TEST-UNIT.patch. +- commit 202c860 + +- Move upstreamed patches into sorted section +- commit 490afd7 + +- KVM: x86: Cap KVM_CAP_NR_VCPUS by KVM_CAP_MAX_VCPUS + (jsc#PED-2064). +- commit 4798ea3 + +- x86/sev: Don't use cc_platform_has() for early SEV-SNP calls + (bsc#1204970). +- x86/boot: Don't propagate uninitialized + boot_params->cc_blob_address (bsc#1204970). +- x86/boot: Fix the setup data types max limit (bsc#1204970). +- x86/compressed/64: Add identity mappings for setup_data entries + (bsc#1204970). +- x86/sev: Annotate stack change in the #VC handler (bsc#1204970). +- x86/sev: Remove duplicated assignment to variable info + (bsc#1204970). +- commit 1ad6c0c + +- KVM: x86: Drop arbitrary KVM_SOFT_MAX_VCPUS (jsc#PED-2064). +- commit 749b13f + +- kvm: rename KVM_MAX_VCPU_ID to KVM_MAX_VCPU_IDS (jsc#PED-2064). +- commit 41fefea + +- kvm: x86: Increase KVM_SOFT_MAX_VCPUS to 710 (jsc#PED-2064). +- commit 6f118a7 + +- kvm: x86: Increase MAX_VCPUS to 1024 (jsc#PED-2064). +- commit 7046326 + +- selftests/pidfd_test: Remove the erroneous ',' (git-fixes). +- vsock: fix possible infinite sleep in + vsock_connectible_wait_data() (git-fixes). +- vsock: remove the unused 'wait' in vsock_connectible_recvmsg() + (git-fixes). +- mISDN: fix possible memory leak in mISDN_register_device() + (git-fixes). +- rose: Fix NULL pointer dereference in rose_send_frame() + (git-fixes). +- nfc: nfcmrvl: Fix potential memory leak in + nfcmrvl_i2c_nci_send() (git-fixes). +- nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send() + (git-fixes). +- nfc: nxp-nci: Fix potential memory leak in nxp_nci_send() + (git-fixes). +- nfc: fdp: Fix potential memory leak in fdp_nci_send() + (git-fixes). +- xhci: Remove device endpoints from bandwidth list when freeing + the device (git-fixes). +- xhci-pci: Set runtime PM as default policy on all xHC 1.2 or + later devices (git-fixes). +- xhci: Add quirk to reset host back to default state at shutdown + (git-fixes). +- usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being + a V0.96 controller (git-fixes). +- kernfs: fix use-after-free in __kernfs_remove (git-fixes). +- serial: core: move RS485 configuration tasks from drivers into + core (git-fixes). +- commit 356bf7e + +- ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes). +- Bluetooth: virtio_bt: Use skb_put to set length (git-fixes). +- Bluetooth: L2CAP: Fix use-after-free caused by + l2cap_reassemble_sdu (git-fixes). +- isdn: mISDN: netjet: fix wrong check of device registration + (git-fixes). +- fs/binfmt_elf: Fix memory leak in load_elf_binary() (git-fixes). +- commit 9e67c0b + +- Move upstreamed BT fixes into sorted section +- commit 9cff1e2 + +- kvm: x86: Set KVM_MAX_VCPU_ID to 4*KVM_MAX_VCPUS (jsc#PED-2064). +- commit 5a21e82 + +- blacklist.conf: add 8250_mtk entry that was reverted +- commit c43b30f + +- Update config files. +- commit f8b438f + +- scsi: ufs: Request sense data asynchronously (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS. +- commit 5b785bb + +- usb: dwc3: pci: Add PCIe device ID for USB3 controller on CPU + sub-system for Alder Lake P (jsc#PED-1817). +- commit 5611b2f + +- usb: dwc3: pci: Update the macro names for USB PCIe device + ID's for Alder Lake platforms. +- commit 4db7e75 + +- usb: dwc3: pci: Add support for Intel Alder Lake (jsc#PED-1817). +- commit 7c11f19 + +- scsi: target: iscsi: Rename iscsi_conn to iscsit_conn + (jsc#PED-1509). +- scsi: target: iscsi: Rename iscsi_cmd to iscsit_cmd + (jsc#PED-1509). +- scsi: target: Add iscsi/cpus_allowed_list in configfs + (jsc#PED-1509). +- scsi: target: cxgbit: Enable Delayed ACK (jsc#PED-1509). +- scsi: target: cxgbit: Increase max DataSegmentLength + (jsc#PED-1509). +- scsi: target: Remove redundant assignment to variable ret + (jsc#PED-1509). +- commit 3c7b966 + +- blacklist.conf: added two invasive scsi fixes (jsc#PED-1509) +- commit 6611d69 + +- scsi: storvsc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit abcefb7 + +- scsi: usb-storage: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: tcm_loop: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: xen-scsifront: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: virtio_scsi: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- commit 66cf33c + +- scsi: ufs: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh patches.suse/scsi-ufs-core-scsi_get_lba-error-fix.patch. +- commit 3b3c660 + +- scsi: sym53c8xx: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: sun3_scsi: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- commit a1abc07 + +- scsi: stex: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh patches.suse/scsi-stex-Call-scsi_done-directly.patch. +- commit 3b9bdaf + +- scsi: snic: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: scsi_debug: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: qlogicpti: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: qla4xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: qla1280: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit 76b569f + +- scsi: ncr53c8xx: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: myrs: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: myrb: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: mvumi: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit 454ec4e + +- scsi: mpt3sas: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh + patches.suse/scsi-mpt3sas-Use-the-proper-SCSI-midlayer-interfaces.patch. +- commit 28339db + +- scsi: libsas: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: ips: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: ibmvscsi: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: ibmvfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: hpsa: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: hisi_sas: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- commit 40bbe2d + +- scsi: fnic: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Remove-the-done-argument-from-SCSI-queuecommand_lck-functions.patch. +- Refresh patches.suse/scsi-fnic-Call-scsi_done-directly.patch. +- Refresh patches.suse/scsi-fnic-Fix-a-tracing-statement.patch. +- commit 5d696da + +- scsi: dpt_i2o: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: cxlflash: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: aha1542: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: advansys: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: NCR5380: Use sc_data_direction instead of rq_data_dir() + (jsc#PED-1559). +- scsi: 53c700: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit 86603c7 + +- scsi: ata: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh patches.suse/scsi-ata-Call-scsi_done-directly.patch. +- commit d14876e + +- scsi: scsi_transport_spi: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: scsi_transport_fc: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: sr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: sd: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit 5ae2c44 + +- scsi: core: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Add-helper-to-return-number-of-logical-blo.patch. +- Refresh + patches.suse/scsi-core-Rename-scsi_mq_done-into-scsi_done-and-export-it.patch. +- Refresh + patches.suse/scsi-core-Use-a-structure-member-to-track-the-SCSI-command-submitter.patch. +- commit 65b943c + +- scsi: ufs: Synchronize SCSI and UFS error handling + (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-Fix-race-conditions-related-to-driver-data. +- commit c27d199 + +- usb: dwc3: core: fix some leaks in probe (git-fixes). +- commit f151478 + +- usb: dwc3: debug: show events parameters in hex (jsc#PED-1817). +- commit bfc751a + +- scsi: ufs: Optimize SCSI command processing (jsc#PED-818). +- Update + patches.suse/scsi-ufs-Retry-aborted-SCSI-commands-instead-of-comp.patch + (jsc#PED-818). +- Update + patches.suse/scsi-ufs-ufs-pci-Fix-Intel-LKF-link-stability.patch + (jsc#PED-818). +- commit 30ae188 + +- usb: dwc3: Fix bare use of unsigned checkpatch warning + (jsc#PED-1817). +- commit 909eacb + +- scsi: ufs: Inline ufshcd_outstanding_req_clear() (jsc#PED-818). +- scsi: ufs: Remove several wmb() calls (jsc#PED-818). +- commit 034dff5 + +- scsi: ufs: Improve static type checking for the host + (jsc#PED-818). +- Refresh patches.suse/scsi-ufs-Call-scsi_done-directly.patch. +- Refresh + patches.suse/scsi-ufs-Fix-a-deadlock-in-the-error-handler.patch. +- commit 83f5077 + +- usb: dwc3: add power down scale setting. +- commit 38b4418 + +- scsi: ufs: Verify UIC locking requirements at runtime + (jsc#PED-818). +- commit 3218f64 + +- scsi: ufs: Remove ufshcd_valid_tag() (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-Fix-a-deadlock-in-the-error-handler.patch. +- Refresh patches.suse/scsi-ufs-Fix-the-SCSI-abort-handler.patch. +- Refresh + patches.suse/scsi-ufs-Fix-unsigned-int-compared-with-less-than-ze.patch. +- Refresh patches.suse/scsi-ufs-Remove-dead-code.patch. +- commit 4a4a476 + +- usb: dwc3: host: Stop setting the ACPI companion (jsc#PED-1817). +- commit 40c12b1 + +- usb: dwc3: EP clear halt leading to clearing of delayed_status + (jsc#PED-1817). +- commit 41e49dd + +- USB: gadget: Add ID numbers to gadget names (jsc#PED-1817). +- commit abba912 + +- USB: gadget: Add a new bus for gadgets (jsc#PED-1817). +- commit 71557d2 + +- scsi: ufs: Rename the second ufshcd_probe_hba() argument + (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS. +- commit 81cd4a9 + +- scsi: ufs: Only include power management code if necessary + (jsc#PED-818). +- commit 7aae000 + +- scsi: ufs: Reduce power management code duplication + (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-ufs-pci-Add-support-for-Intel-ADL.patch. +- Refresh + patches.suse/scsi-ufs-ufs-pci-Add-support-for-Intel-MTL.patch. +- commit 0798fbe + +- scsi: ufs: Allow async suspend/resume callbacks (jsc#PED-1559). +- commit 859a0be + +- scsi: ufs: core: Use scsi_get_lba() to get LBA (jsc#PED-1559). +- Refresh patches.suse/scsi-ufs-core-scsi_get_lba-error-fix.patch. +- commit 53218d3 + +- scsi: ufs: Refactor ufshcd_is_intr_aggr_allowed() + (jsc#PED-1559). +- commit dd7279f + +- scsi: core: Make scsi_get_lba() return the LBA (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Add-helper-to-return-number-of-logical-blo.patch. +- commit a435c49 + +- scsi: pm8001: Remove redundant initialization of variable 'rv' + (jsc#PED-1559). +- Refresh + patches.suse/scsi-pm80xx-Update-WARN_ON-check-in-pm8001_mpi_build_cmd. +- commit 4e95793 + +- scsi: elx: efct: Remove redundant initialization of variable + (jsc#PED-1559). +- scsi: snic: Remove redundant assignment to variable ret + (jsc#PED-1559). +- commit ac4f44c + +- scsi: bsg-lib: Fix commands without data transfer in + (jsc#PED-1559). +- scsi: bsg: Fix commands without data transfer in (jsc#PED-1559). +- scsi: bsg: Move the whole request execution into the + (jsc#PED-1559). +- scsi: block: Remove the remaining SG_IO-related fields from + (jsc#PED-1559). +- scsi: block: Remove BLK_SCSI_MAX_CMDS (jsc#PED-1559). +- commit b97a71c + +- ALSA: hda: cs35l41: Utilize acpi_get_subsystem_id() + (jsc#PED-850). +- Refresh + patches.suse/ALSA-hda-cs35l41-Support-System-Suspend.patch. +- commit 8550ce4 + +- scsi: bsg: Simplify device registration (jsc#PED-1559). +- Update + patches.suse/scsi-core-Register-sysfs-attributes-earlier.patch + (jsc#PED-1559). +- commit 16ae25e + +- ALSA: hda/realtek: simplify the return of comp_bind() + (jsc#PED-850). +- ALSA: hda/hdmi: Limit the maximal count of PCM devices to 8 + (jsc#PED-850). +- ALSA: hda/hdmi: Use only dynamic PCM device allocation + (jsc#PED-850). +- ALSA: hda/ca0132 - remove the unneeded result variable + (jsc#PED-850). +- ALSA: hda/hdmi: ELD procfs - print the codec NIDs (jsc#PED-850). +- ALSA: hda/hdmi: Simplify the pcm_idx condition in + hdmi_pcm_setup_pin() (jsc#PED-850). +- ALSA: hda: add snd_hdac_stop_streams() helper (jsc#PED-850). +- ALSA: hda: cs35l41: Call put_device() in the scope of + get_device() (jsc#PED-850). +- ALSA: hda: beep: Simplify keep-power-at-enable behavior + (jsc#PED-850). +- ALSA: hda/hdmi: Replace zero-length array with + DECLARE_FLEX_ARRAY() helper (jsc#PED-850). +- ALSA: hda: cleanup definitions for multi-link registers + (jsc#PED-850). +- ALSA: hda: Remove unused defines (jsc#PED-850). +- ALSA: hda: Remove unused MAX_PIN_CONFIGS constant (jsc#PED-850). +- ALSA: hda: Always free codec on the device release + (jsc#PED-850). +- commit d98a166 + +- scsi: sr: cdrom: Move cdrom_read_cdda_bpc() into the sr + (jsc#PED-1559). +- commit 8b9b02b + +- scsi: libsas: Drop BLK_DEV_BSGLIB selection (jsc#PED-1559). +- scsi: libsas: Allow libsas to include SCSI header files + (jsc#PED-1559). +- commit dd3b173 + +- ALSA: hda: cs35l41: Fix build error unused-function + (jsc#PED-850). +- blacklist.conf: drop the backported entry +- Refresh + patches.suse/ALSA-hda-cs35l41-Support-System-Suspend.patch. +- commit 1949e96 + +- PM: core: Add new *_PM_OPS macros, deprecate old ones + (jsc#PED-850). +- PM: core: Redefine pm_ptr() macro (jsc#PED-850). +- commit 7226af8 + +- ALSA: hda/realtek: Make use of the helper + component_compare_dev_name (jsc#PED-850). +- Refresh + patches.suse/ALSA-hda-cs35l41-Remove-Set-Channel-Map-api-from-bin.patch. +- Refresh + patches.suse/ALSA-hda-cs35l41-Save-codec-object-inside-component-.patch. +- Refresh + patches.suse/ALSA-hda-realtek-More-robust-component-matching-for-.patch. +- commit 2370fb9 + +- ASoC: amd: yc: Add Lenovo Yoga Slim 7 Pro X to quirks table + (jsc#PED-850). +- ASoC: amd: yc: Add ASUS UM5302TA into DMI table (jsc#PED-850). +- ALSA: intel-dspconfig: add ES8336 support for AlderLake-PS + (jsc#PED-850). +- commit 88de70c + +- scsi: sd: Fix crashes in sd_resume_runtime() (jsc#PED-1559). +- scsi: scsi_ioctl: Unexport sg_scsi_ioctl() (jsc#PED-1559). +- scsi: scsi_ioctl: Factor SG_IO handling into a helper + (jsc#PED-1559). +- scsi: scsi_ioctl: Factor SCSI_IOCTL_GET_IDLUN handling into + a helper (jsc#PED-1559). +- scsi: scsi_ioctl: Consolidate the START STOP UNIT handling + (jsc#PED-1559). +- scsi: scsi_ioctl: Remove a very misleading comment + (jsc#PED-1559). +- scsi: core: Rename CONFIG_BLK_SCSI_REQUEST to CONFIG_SCSI_COMMON + (jsc#PED-1559). +- scsi: scsi_ioctl: Move the "block layer" SCSI ioctl handling + to drivers/scsi (jsc#PED-1559). +- scsi: scsi_ioctl: Simplify SCSI passthrough permission + (jsc#PED-1559). +- scsi: scsi_ioctl: Move scsi_command_size_tbl to scsi_common.c + (jsc#PED-1559). +- scsi: scsi_ioctl: Remove scsi_req_init() (jsc#PED-1559). +- scsi: bsg: Move bsg_scsi_ops to drivers/scsi/ (jsc#PED-1559). +- scsi: bsg: Decouple from scsi_cmd_ioctl() (jsc#PED-1559). +- scsi: block: Add a queue_max_bytes() helper (jsc#PED-1559). +- scsi: scsi_ioctl: Call scsi_cmd_ioctl() from scsi_ioctl() + (jsc#PED-1559). +- scsi: scsi_ioctl: Remove scsi_verify_blk_ioctl() (jsc#PED-1559). +- scsi: scsi_ioctl: Remove scsi_cmd_blk_ioctl() (jsc#PED-1559). +- scsi: cdrom: Remove the call to scsi_cmd_blk_ioctl() from + cdrom_ioctl() (jsc#PED-1559). +- scsi: st: Simplify ioctl handling (jsc#PED-1559). +- scsi: core: Remove scsi_compat_ioctl() (jsc#PED-1559). +- scsi: sg: Consolidate compat ioctl handling (jsc#PED-1559). +- scsi: ch: Consolidate compat ioctl handling (jsc#PED-1559). +- scsi: sd: Consolidate compat ioctl handling (jsc#PED-1559). +- scsi: sr: Consolidate compat ioctl handling (jsc#PED-1559). +- scsi: core: Add BLIST_IGN_MEDIA_CHANGE for Ultra HS-SD/MMC + (jsc#PED-1559). +- scsi: sd: REQUEST SENSE for BLIST_IGN_MEDIA_CHANGE devices in + (jsc#PED-1559). +- commit 14236ba + +- scsi: core: Add new flag BLIST_IGN_MEDIA_CHANGE (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Add-BLIST_NO_ASK_VPD_SIZE-for-some-VDASD.patch. +- Refresh + patches.suse/scsi-core-sd-Add-silence_suspend-flag-to-suppress-some-PM-messages.patch. +- Refresh + patches.suse/scsi-make-sure-that-request-queue-queiesce-and-unqui.patch. +- commit 5ec93ba + +- scsi: scsi_debug: Improve RDPROTECT/WRPROTECT handling + (jsc#PED-1559). +- scsi: scsi_debug: Remove dump_sector() (jsc#PED-1559). +- commit aedbc46 + +- IB/core: Fix a nested dead lock as part of ODP flow (git-fixes) +- commit 6f2ee60 + +- USB: gadget: Fix mistakes in UDC core kerneldoc (jsc#PED-1817). +- commit e2b3f30 + +- USB: gadget: Register udc before gadget (jsc#PED-1817). +- commit ce73342 + +- usb: Remove redundant 'flush_workqueue()' calls (jsc#PED-1817). +- commit a7fc6e6 + +- usb: gadget: udc: core: Revise comments for USB ep + enable/disable (jsc#PED-1817). +- commit fa96de3 + +- USB: gadget: udc: Remove some dead code (jsc#PED-1817). +- commit c4d776a + +- usb: gadget: udc: core: Print error code in + usb_gadget_probe_driver() (jsc#PED-1817). +- commit 172a5d3 + +- usb: gadget: aspeed: Remove repeated verbose license text + (jsc#PED-1917). +- commit 86efa6c + +- ASoC: soc-pcm.c: call __soc_pcm_close() in soc_pcm_close() + (jsc#PED-850). +- commit cff81ba + +- Refresh patches.suse/ppc64-kdump-Limit-kdump-base-to-512MB.patch + to upstream version. +- commit 0f63234 + +- ASoC: tegra20-spdif: stop setting slave_id (jsc#PED-850). +- commit 4702843 + +- ASoC: rt5640: Fix the issue of the abnormal JD2 status + (jsc#PED-850). +- ASoC: rt5640: Fix the JD voltage dropping issue (jsc#PED-850). +- ASoC: codecs: rt274: Set component to NULL on remove + (jsc#PED-850). +- ASoC: codecs: rt298: Set component to NULL on remove + (jsc#PED-850). +- ASoC: codecs: rt286: Set component to NULL on remove + (jsc#PED-850). +- ASoC: codecs: rt298: Fix jack detection (jsc#PED-850). +- ASoC: codecs: rt298: Fix NULL jack in interrupt (jsc#PED-850). +- ASoC: rt5640: Add the MICBIAS1 to the dapm routing + (jsc#PED-850). +- ASoC: codecs: soundwire: call pm_runtime_resume() in component + probe (jsc#PED-850). +- ASoC: codecs: rt274: Always init jack_detect_work (jsc#PED-850). +- ASoC: rt5640: Fix the wrong state of JD1 and JD2 (jsc#PED-850). +- ASoC: rt1308-sdw: add the default value of register 0xc320 + (jsc#PED-850). +- ASoC: rt5645: Fix the error handling of rt5645_i2c_probe() + (jsc#PED-850). +- ASoC: rt1316-sdw: Add endianness flag in + snd_soc_component_driver (jsc#PED-850). +- ASoC: rt1308-sdw: Add endianness flag in + snd_soc_component_driver (jsc#PED-850). +- ASoC: rt715-sdca: Add endianness flag in + snd_soc_component_driver (jsc#PED-850). +- ASoC: rt715: Add endianness flag in snd_soc_component_driver + (jsc#PED-850). +- ASoC: rt700: Add endianness flag in snd_soc_component_driver + (jsc#PED-850). +- ASoC: rt1019: Add endianness flag in snd_soc_component_driver + (jsc#PED-850). +- commit 0f6c8bf + +- ASoC: rt711/5682: check if bus is active before deferred jack + detection (jsc#PED-850). +- Refresh + patches.suse/ASoC-rt7-sdw-harden-jack_detect_handler.patch. +- commit dfab873 + +- ASoC: rt*: use simple i2c probe function (jsc#PED-850). +- ASoC: rt5682s: Separate the regulator consumer controls + (jsc#PED-850). +- ASoC: rt1308-sdw: get calibration params after power on + (jsc#PED-850). +- ASoC: rt5682s: Stabilize the combo jack detection (jsc#PED-850). +- ASoC: rt5640: Remove the sysclk and sysclk_src checking + (jsc#PED-850). +- ASoC: rt5682s: Fix the wrong jack type detected (jsc#PED-850). +- ASoC: rt5682s: do not block workqueue if card is unbound + (jsc#PED-850). +- ASoC: rt5682: Register wclk with its parent_hws instead of + parent_data (jsc#PED-850). +- ASoC: rt1011: revert 'I2S Reference' to SOC_ENUM_EXT + (jsc#PED-850). +- ASoC: rt5682s: use 'static' qualifier (jsc#PED-850). +- ASoC: rt5682-i2c: Use devm_clk_get_optional for optional clock + (jsc#PED-850). +- ASoC: rt5682s: Downsizing the DAC volume scale (jsc#PED-850). +- ASoC: rt1011: Fix 'I2S Reference' enum control (jsc#PED-850). +- ASoC: rt1011: Fix 'I2S Reference' enum control caused error + (jsc#PED-850). +- ASoC: rt5682s: Fix hp pop produced immediately after resuming + (jsc#PED-850). +- ASoC: rt5682s: Fix HP noise caused by SAR mode switch when + the system resumes (jsc#PED-850). +- ASoC: rt5682s: Enable ASRC auto-disable to fix pop during jack + plug-in while playback (jsc#PED-850). +- ASoC: rt5682s: Revise the macro RT5682S_PLLB_SRC_MASK + (jsc#PED-850). +- ASoC: rt5682s: Use dev_dbg instead of pr_debug (jsc#PED-850). +- ASoC: rt5682s: Remove the volatile SW reset register from + reg_default (jsc#PED-850). +- ASoC: rt5682s: make rt5682s_aif2_dai_ops and + rt5682s_soc_component_dev (jsc#PED-850). +- ASoC: rt1011: add i2s reference control for rt1011 + (jsc#PED-850). +- commit db632b2 + +- ASoC: core: Correct spelling fliped -> flipped (jsc#PED-850). +- Refresh + patches.suse/ASoC-core-Always-send-the-CPU-DAI-a-direct-clock-spe.patch. +- commit 2306d72 + +- ASoC: soc-component: Add comment for the endianness flag + (jsc#PED-850). +- Refresh + patches.suse/ASoC-soc-component-Add-legacy_dai_naming-flag.patch. +- commit 9c88bef + +- ASoC: madera: Replace kernel.h with the necessary inclusions + (jsc#PED-850). +- ASoC: core: Add new SOC_DOUBLE_SX_TLV macro (jsc#PED-850). +- ASoC: hdmi-codec: Update to modern DAI terminology + (jsc#PED-850). +- ASoC: soc.h: Add SOC_SINGLE_S_EXT_TLV macro (jsc#PED-850). +- ASoC: soc.h: Introduce SOC_DOUBLE_R_S_EXT_TLV() macro + (jsc#PED-850). +- ASoC: Intel: avs: Declare vendor tokens (jsc#PED-850). +- ASoC: soc.h: Add SOC_SINGLE_S_TLV() macro (jsc#PED-850). +- ALSA: cleanup double word in comment (jsc#PED-850). +- ASoC: rt5682s: add delay time to fix pop sound issue + (jsc#PED-850). +- ALSA: uapi: use C90 comment style instead of C99 style + (jsc#PED-850). +- ALSA: pcm: comment about relation between msbits hw parameter + and [S|U]32 formats (jsc#PED-850). +- commit f97ebfc + +- ASoC: soc-component: Remove conditional definition of debugfs + data members (jsc#PED-850). +- Refresh patches.suse/asoc-suse-kabi-padding.patch. +- commit b948484 + +- ASoC: SOF: Drop resindex_dma_base, dma_engine, dma_size from + sof_dev_desc (jsc#PED-850). +- ALSA: hda_audio_ext: fix kernel-doc (jsc#PED-850). +- commit 1783f94 + +- ALSA: hda: Once again fix regression of page allocations with + IOMMU (jsc#PED-850). +- ALSA: memalloc: Revive x86-specific WC page allocations again + (jsc#PED-850). +- ASoC: DPCM: Don't pick up BE without substream (jsc#PED-850). +- ALSA: pcm: Replace sprintf() with sysfs_emit() (jsc#PED-850). +- ALSA: core: Replace scnprintf() with sysfs_emit() (jsc#PED-850). +- ALSA: control-led: Replace sprintf() with sysfs_emit() + (jsc#PED-850). +- ALSA: pcm: Use deferred fasync helper (jsc#PED-850). +- ASoC: soc-pcm: demote warnings on non-atomic BE connection + (jsc#PED-850). +- ASoC: soc-core.c: share code for + snd_soc_of_get_dai_link_cpus/codecs() (jsc#PED-850). +- ASoC: soc-core.c: fixup snd_soc_of_get_dai_link_cpus() + (jsc#PED-850). +- ASoC: dapm: Move stereo autodisable check (jsc#PED-850). +- ASoC: topology: KUnit: Followup prototype change of + snd_soc_unregister_card() (jsc#PED-850). +- ASoC: ops: Fix integer detection for when max possible values > + 1 (jsc#PED-850). +- ASoC: ops: Fix boolean/integer detection for simple controls + (jsc#PED-850). +- ASoC: ops: Don't modify the driver's plaform_max when reading + state (jsc#PED-850). +- ASoC: Introduce 'fixup_controls' card method (jsc#PED-850). +- ASoC: soc-dai: Remove set_fmt_new callback (jsc#PED-850). +- ASoC: core: Always send the CPU DAI a direct clock specifier + (jsc#PED-850). +- ASoC: ops: Remove unneeded delay.h inclusion (jsc#PED-850). +- ASoC: ops: Clarify snd_soc_info_volsw_sx() (jsc#PED-850). +- ALSA: core: Fix missing return value comments for kernel docs + (jsc#PED-850). +- ALSA: memalloc: Fix missing return value comments for kernel + docs (jsc#PED-850). +- ALSA: control: Fix missing return value comments for kernel docs + (jsc#PED-850). +- ALSA: compress: Fix kernel doc warnings (jsc#PED-850). +- ALSA: dmaengine: Fix missing return value comments for kernel + docs (jsc#PED-850). +- ALSA: pcm: Fix missing return value comments for kernel docs + (jsc#PED-850). +- ALSA: compress: Enable kernel doc markers for some functions + (jsc#PED-850). +- ALSA: rawmidi: Take buffer refcount while draining output + (jsc#PED-850). +- ALSA: rawmidi: Check stream state at exported functions + (jsc#PED-850). +- ALSA: rawmidi: Take open_mutex around parameter changes + (jsc#PED-850). +- ALSA: rawmidi: Move lock to snd_rawmidi_substream (jsc#PED-850). +- ALSA: rawmidi: Make internal functions local static + (jsc#PED-850). +- ASoC: topology: Drop superfluous check of + CONFIG_SND_CTL_VALIDATION (jsc#PED-850). +- ALSA: memalloc: Drop x86-specific hack for WC allocations + (jsc#PED-850). +- ASoC: soc-pcm: fix BE transition for TRIGGER_START + (jsc#PED-850). +- ASoC: soc-component: Update handling to component delays + (jsc#PED-850). +- ASoC: core: Pass legacy_dai_naming flag directly (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: Use default config when none + is given (jsc#PED-850). +- ASoC: soc-core: remove always-false path (jsc#PED-850). +- ASoC: soc-pcm: improve BE transition for TRIGGER_START + (jsc#PED-850). +- ASoC: soc-pcm: improve BE transition for PAUSE_RELEASE + (jsc#PED-850). +- commit e51218e + +- ASoC: soc-utils: Add helper to calculate BCLK from TDM info + (jsc#PED-850). +- ASoC: topology: Rename soc_tplg_init_kcontrol() function + (jsc#PED-850). +- ASoC: topology: Correct error message (jsc#PED-850). +- ASoC: topology: Rename SOC_TPLG_PASS_MIXER to _CONTROL + (jsc#PED-850). +- ASoC: topology: Return bool instead of int (jsc#PED-850). +- ASoC: topology: Remove unnecessary looping (jsc#PED-850). +- ASoC: topology: Use for loop instead of while (jsc#PED-850). +- ASoC: Introduce snd_soc_of_get_dai_link_cpus (jsc#PED-850). +- ALSA: seq: replace ternary operator with max() (jsc#PED-850). +- ASoC: soc-core: add debugfs_prefix member to + snd_soc_component_driver (jsc#PED-850). +- ASoC: soc-pcm: use GFP_KERNEL when the code is sleepable + (jsc#PED-850). +- ALSA: memalloc: Add fallback SG-buffer allocations for x86 + (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: set period_bytes_min based + on maxburst (jsc#PED-850). +- ASoC: topology: Remove superfluous error prints (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: separate max_buffer_size + assignment (jsc#PED-850). +- ALSA: oss: Release temporary buffers upon errors (jsc#PED-850). +- ALSA: core: Fix typo in 'PCM Timer Interface' help + (jsc#PED-850). +- ALSA: seq: oss: fix typo (jsc#PED-850). +- ALSA: seq: oss: use kzalloc (jsc#PED-850). +- commit 9ab936f + +- ASoC: ops: Check for negative values before reading them + (jsc#PED-850). +- Refresh + patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-7f3d90a35196.patch. +- Refresh + patches.suse/ASoC-ops-Shift-tested-values-in-snd_soc_put_volsw-by.patch. +- commit 08e21d0 + +- ASoC: soc-pcm: Move debugfs removal out of spinlock + (jsc#PED-850). +- ASoC: soc-pcm: Fix DPCM lockdep warning due to nested stream + locks (jsc#PED-850). +- ASoC: topology: Fix typo (jsc#PED-850). +- ASoC: core: Add snd_soc_of_parse_pin_switches() from + simple-card-utils (jsc#PED-850). +- ASoC: dai_dma: remove slave_id field (jsc#PED-850). +- ASoC: soc-pcm: fix BE handling of PAUSE_RELEASE (jsc#PED-850). +- ASoC: soc-pcm: test refcount before triggering (jsc#PED-850). +- ASoC: soc-pcm: serialize BE triggers (jsc#PED-850). +- commit 0a8975a + +- ASoC: soc-pcm: Fix and cleanup DPCM locking (jsc#PED-850). +- ASoC: soc-pcm: align BE 'atomicity' with that of the FE + (jsc#PED-850). +- ASoC: soc-pcm: use GFP_ATOMIC for dpcm structure (jsc#PED-850). +- ASoC: soc-pcm: tidyup soc_pcm_pointer()'s delay update method + (jsc#PED-850). +- ALSA: oss: remove useless NULL check before kfree (jsc#PED-850). +- ALSA: memalloc: Unify x86 SG-buffer handling (take#3) + (jsc#PED-850). +- ASoC: Stop dummy from overriding hwparams (jsc#PED-850). +- ASoC: topology: Change topology device to card device + (jsc#PED-850). +- ASoC: topology: Use correct device for prints (jsc#PED-850). +- commit 7db64dd + +- ASoC: topology: handle endianness warning (jsc#PED-850). +- Refresh + patches.suse/ASoC-topology-Correct-error-handling-in-soc_tplg_dap.patch. +- commit 1aa23db + +- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at + dmaengine_pcm_hw_params() (jsc#PED-850). +- Refresh + patches.suse/ASoC-dmaengine-Restore-NULL-prepare_slave_config-cal.patch. +- Refresh + patches.suse/ASoC-dmaengine-do-not-use-a-NULL-prepare_slave_confi.patch. +- commit 2a6f02e + +- ASoC: topology: Check for dapm widget completeness + (jsc#PED-850). +- ASoC: topology: Add header payload_size verification + (jsc#PED-850). +- ASoC: core: Remove invalid snd_soc_component_set_jack call + (jsc#PED-850). +- ASoC: soc-core: accept zero format at + snd_soc_runtime_set_dai_fmt() (jsc#PED-850). +- ASoC: soc-core: tidyup empty function (jsc#PED-850). +- ASoC: soc-pcm: tidyup soc_pcm_hw_clean() - step2 (jsc#PED-850). +- ASoC: soc-pcm: tidyup soc_pcm_hw_clean() - step1 (jsc#PED-850). +- ASoC: soc-component: improve error reporting for register access + (jsc#PED-850). +- ASoC: dmaengine: Introduce module option + prealloc_buffer_size_kbytes (jsc#PED-850). +- ASoC: compress/component: Use + module_get_when_open/put_when_close for cstream (jsc#PED-850). +- ASoC: soc-component: Convert the mark_module to void* + (jsc#PED-850). +- ASoC: soc-topology: Move template info print + soc_tplg_dapm_widget_create() (jsc#PED-850). +- ASoC: Revert PCM trigger changes (jsc#PED-850). +- ASoC: soc-pcm: test refcount before triggering (jsc#PED-850). +- ASoC: soc-ac97: cleanup cppcheck warning (jsc#PED-850). +- ASoC: soc-component: cleanup cppcheck warning at + snd_soc_pcm_component_pm_runtime_get() (jsc#PED-850). +- ASoC: soc-jack: cleanup cppcheck warning for CONFIG_GPIOLIB + (jsc#PED-850). +- ASoC: soc-jack: cleanup cppcheck warning at + snd_soc_jack_report() (jsc#PED-850). +- ASoC: soc-dai: cleanup cppcheck warning at snd_soc_pcm_dai_new() + (jsc#PED-850). +- ASoC: soc-dai: cleanup cppcheck warning at + snd_soc_dai_link_set_capabilities() (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at + dmaengine_copy_user() (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at + dmaengine_pcm_new() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + soc_dapm_dai_stream_event() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + snd_soc_dapm_new_controls() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + snd_soc_dapm_weak_routes() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + snd_soc_dapm_add_routes() (jsc#PED-850). +- commit b5f8c2c + +- ASoC: soc-ops: cleanup cppcheck warning at snd_soc_put_xr_sx() + (jsc#PED-850). +- Refresh + patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-2b7c46369f09.patch. +- Refresh + patches.suse/ASoC-ops-Reject-out-of-bounds-values-in-snd_soc_put_-4cf28e9ae6e2.patch. +- commit 6287e8d + +- ASoC: soc-dapm: cleanup cppcheck warning at + snd_soc_dapm_del_route() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_seq_run() + (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + dapm_seq_check_event() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_new_dai_link() + (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_new_pga() + (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + dapm_set_mixer_path_status() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_connect_mux() + (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_wcache_lookup() + (jsc#PED-850). +- ASoC: soc-ops: cleanup cppcheck warning at snd_soc_get_xr_sx() + (jsc#PED-850). +- commit 426f2b5 + +- ASoC: soc-ops: cleanup cppcheck warning at + snd_soc_put_volsw_sx() (jsc#PED-850). +- Refresh + patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-7f3d90a35196.patch. +- Refresh + patches.suse/ASoC-ops-Reject-out-of-bounds-values-in-snd_soc_put_-4f1e50d6a9cf.patch. +- commit 26b601a + +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_get_dai_name() (jsc#PED-850). +- Refresh + patches.suse/ASoC-soc-core-skip-zero-num_dai-component-in-searchi.patch. +- commit 09f5c3a + +- ASoC: soc-ops: cleanup cppcheck warning at + snd_soc_limit_volume() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + snd_soc_find_dai_link() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + soc_tplg_kcontrol_elems_load() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + soc_tplg_dapm_widget_elems_load() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + soc_tplg_dai_elems_load() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + soc_tplg_process_headers() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_of_parse_audio_routing() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_of_parse_audio_simple_widgets() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_add_controls() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_unregister_component() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_daifmt_parse_format() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_set_dmi_name() (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at + dpcm_runtime_setup_be_chan() (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at dpcm_be_is_active() + (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at + soc_get_playback_capture() (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at + soc_pcm_components_close() (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at soc_pcm_apply_msb() + (jsc#PED-850). +- commit f269c98 + +- ASoC: Export DAI register and widget ctor and dctor functions + (jsc#PED-850). +- commit 7fc094d + +- ALSA: Add snd_pcm_direction_name() helper (jsc#PED-850). +- commit d9a2cc8 + +- Update config files: enable CONFIG_SND_SOC_HDA (jsc#PED-850) +- commit 7be7af9 + +- ASoC: hdac_hda: Add endianness flag in snd_soc_component_driver + (jsc#PED-850). +- ASoC: hdac_hda: Avoid unexpected match when pcm_name is "Analog" + (jsc#PED-850). +- commit 5773ce0 + +- ALSA: hda: Skip event processing for unregistered codecs + (jsc#PED-850). +- Refresh patches.suse/hdaudio-suse-kabi-padding.patch. +- commit cc04cc9 + +- ALSA: hda/hdmi: add keep-alive support for ADL-P and DG2 + (jsc#PED-850). +- Refresh + patches.suse/ALSA-hda-hdmi-Fix-the-converter-allocation-for-the-s.patch. +- Refresh + patches.suse/ALSA-hda-hdmi-change-type-for-the-assigned-variable.patch. +- commit d6b0bb5 + +- ALSA: hda: Fix crash due to jack poll in suspend (jsc#PED-850). +- Revert "ALSA: hda: Fix page fault in snd_hda_codec_shutdown()" + (jsc#PED-850). +- ASoC: codecs: Add HD-Audio codec driver (jsc#PED-850). +- ALSA: hda: Fix page fault in snd_hda_codec_shutdown() + (jsc#PED-850). +- ALSA: hda: Fix put_device() inconsistency in error path + (jsc#PED-850). +- ALSA: hda: Make device usage_count consistent across subsequent + probing (jsc#PED-850). +- ALSA: hda: Fix null-ptr-deref when i915 fails and hdmi is + denylisted (jsc#PED-850). +- ALSA: hda: MTL: add HD Audio PCI ID and HDMI codec vendor ID + (jsc#PED-850). +- ALSA: hda/via: Delete does not require return (jsc#PED-850). +- ALSA: hda/tegra: Enable Jack poll for tegra (jsc#PED-850). +- ALSA: hda: Jack detection poll in suspend state (jsc#PED-850). +- ALSA: hda/hdmi: add HDMI codec VID for Raptorlake-P + (jsc#PED-850). +- ALSA: hda: Add helper macros for DSP capable devices + (jsc#PED-850). +- ALSA: hda: Expose codec cleanup and power-save functions + (jsc#PED-850). +- ALSA: hda: Update and expose codec register procedures + (jsc#PED-850). +- ALSA: hda: Update and expose snd_hda_codec_device_init() + (jsc#PED-850). +- commit 47acdb2 + +- ALSA: hda: intel-dsp-config: add missing RaptorLake PCI IDs + (jsc#PED-850). +- ALSA: hda: Replace sprintf() with sysfs_emit() (jsc#PED-850). +- ALSA: hda: Remove unused macro definition (jsc#PED-850). +- ALSA: hda: Reset all SIE bits in INTCTL (jsc#PED-850). +- tracing: ALSA: hda: Remove string manipulation out of the fast + path (jsc#PED-850). +- ALSA: intel-dspconfig: add ES8336 support for CNL (jsc#PED-850). +- ALSA: intel-dsp-config: add more ACPI HIDs for ES83x6 devices + (jsc#PED-850). +- ALSA: hda/i915 - avoid hung task timeout in i915 wait + (jsc#PED-850). +- ALSA: hda: Add snd_hdac_ext_bus_link_at() helper (jsc#PED-850). +- ALSA: HDA: hdac_ext_stream: use consistent prefixes for + variables (jsc#PED-850). +- commit 4592dc3 + +- Add already cherry-picked IDs for ASoC fixes +- commit 1873074 + +- ASoC: SOF: Intel: pci-mtl: fix firmware name (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Free the ida when IPC fails in + sof_ipc4_widget_setup() (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195: Import namespace + SND_SOC_SOF_MTK_COMMON (jsc#PED-850). +- ASoC: amd: acp: add missing platform_device_unregister() + in acp_pci_probe() (jsc#PED-850). +- ALSA: hda: intel-nhlt: Move structs out of #define block + (jsc#PED-850). +- codecs: rt5682s: fix an incorrect NULL check on list iterator + (jsc#PED-850). +- ASoC: rt5682s: Fix crash due to out of scope stack vars + (jsc#PED-850). +- ASoC: soc-acpi: Set mach->id field on comp_ids matches + (jsc#PED-850). +- commit 36bf397 + +- ASoC: Intel: sof_sdw: add support for Dell SKU 0AFF + (jsc#PED-850). +- ASoC: SOF: Kconfig: Make IPC_MESSAGE_INJECTOR depend on + SND_SOC_SOF (jsc#PED-850). +- ASoC: SOF: Kconfig: Make IPC_FLOOD_TEST depend on SND_SOC_SOF + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: fix alh_group_ida max value + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: fix wrong use of sizeof in + sof_ipc4_widget_setup_comp_src() (jsc#PED-850). +- soundwire: qcom: remove duplicate reset control get + (jsc#PED-850). +- ASoC: Intel: fix sof_es8336 probe (jsc#PED-850). +- ASoC: SOF: Intel: hda: Fix potential buffer overflow by + snprintf() (jsc#PED-850). +- ASoC: Intel: avs: Fix potential buffer overflow by snprintf() + (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Fix clang -Wformat warning + (jsc#PED-850). +- ASoC: amd: yc: Update DMI table entries for AMD platforms + (jsc#PED-850). +- ASoC: amd: acp: Fix initialization of ext_intr_stat1 in + i2s_irq_handler() (jsc#PED-850). +- ASoC: Intel: sof_nau8825: Move quirk check to the front in + late probe (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Perform quirk check first in card + late probe (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Add support for mtl_mx98357_rt5682 + (jsc#PED-850). +- ASoC: Intel: sof_es8336: remove hard-coded SSP selection + (jsc#PED-850). +- ASoC: Intel: sof_es8336: reset the num_links during probe + (jsc#PED-850). +- ASoC: Intel: sof_es8336: add support for HDMI_In capture + (jsc#PED-850). +- ASoC: Intel: sof_es8336: ignore GpioInt when looking for + speaker/headset GPIO lines (jsc#PED-850). +- ASoC: Intel: sof_es8336: Fix GPIO quirks set via module option + (jsc#PED-850). +- ASoC: Intel: soc-acpi: Add entry for sof_es8336 in ADL match + table (jsc#PED-850). +- ASoC: Intel: sof_sdw: add support for Dell SKU 0AF0 + (jsc#PED-850). +- ASoC: SOF: dai-intel: add SOF_DAI_INTEL_SSP_CLKCTRL_MCLK_AON + bit (jsc#PED-850). +- ASoC: SOF: Add cont_update_posn to platform parameters + (jsc#PED-850). +- ASoC: SOF: Intel: hda: add sanity check on SSP index reported + by NHLT (jsc#PED-850). +- ASoC: amd: yc: Update DMI table entries (jsc#PED-850). +- ASoC: SOF: dai-intel: add SOF_DAI_INTEL_SSP_CLKCTRL_MCLK/BCLK_ES + bits (jsc#PED-850). +- commit a3024d1 + +- Update config files: update for AMD ACP (jsc#PED-850) +- commit a6ab389 + +- ASoC: Intel: avs: Use lookup table to create modules + (jsc#PED-850). +- ASoC: amd: vangogh: Use non-legacy DAI naming for cs35l41 + (jsc#PED-850). +- ASoC: amd: enable RPL Platform acp drivers build (jsc#PED-850). +- ASoC: amd: add RPL Platform pci driver pm-ops (jsc#PED-850). +- ASoC: amd: add RPL Platform init/de-init functions + (jsc#PED-850). +- ASoC: amd: add ACP PCI driver for RPL platform (jsc#PED-850). +- ASoC: amd: add RPL Platform acp header file (jsc#PED-850). +- ASoC: amd: acp: Add error handling cases (jsc#PED-850). +- ASoC: amd: acp: Modify const resource struct variable to generic + (jsc#PED-850). +- ASoC: amd: acp: Drop superfluous mmap callback (jsc#PED-850). +- ASoC: amd: acp: Modify local variables name to generic + (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: test DMA buffer first in hw_params + (jsc#PED-850). +- ASoC: SOF: probes: rename assign/free callbacks as + startup/shutdown (jsc#PED-850). +- ASoC: SOF: Intel: hda: only fixup topology name if not set + already (jsc#PED-850). +- ASoC: SOF: Intel: hda: don't set fw_filename (jsc#PED-850). +- ASoC: SOF: Intel: atom: don't keep a temporary string in + fixup_tplg_name (jsc#PED-850). +- ASoC: SOF: ipc3-loader: Print out the non matching ext_man + magic number (jsc#PED-850). +- ASoC: SOF: ipc4-topology: set domain bit based on dp domain type + (jsc#PED-850). +- ASoC: SOF: add ipc4 SRC module support (jsc#PED-850). +- ASoC: SOF: ipc4-pcm: set pcm rate to dai setting (jsc#PED-850). +- ASoC: SOF: ipc4-topology: move ida allocate/free to + widget_setup/free (jsc#PED-850). +- ASoC: SOF: Intel: MTL: remove redundant snd_sof_dsp_read() + call (jsc#PED-850). +- ASoC: SOF: mediatek: fix mt8195 StatvectorSel wrong setting + (jsc#PED-850). +- ASoC: SOF: mediatek: Revise mt8195 boot flow (jsc#PED-850). +- ASoC: amd: yc: Decrease level of error message (jsc#PED-850). +- ASoC: SOF: Intel: enable dmic handling with 2 or fewer SoundWire + links (jsc#PED-850). +- ASoC: Intel: sof_sdw: add quirk for HP Omen 16-k0005TX + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add table for HP Omen 16-k0005TX + (jsc#PED-850). +- ASoC: Intel: sof_sdw: avoid oops in error handling + (jsc#PED-850). +- ASoC: Intel: bdw_rt5677: Mark BE DAI as nonatomic (jsc#PED-850). +- ASoC: Intel: bdw_rt5650: Mark BE DAI as nonatomic (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Mark BE DAI as nonatomic (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Mark BE DAI as nonatomic (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: fix copy in + sof_msg_inject_ipc4_dfs_write() (jsc#PED-850). +- ASoC: SOF: Intel: add trigger callback into sdw_callback + (jsc#PED-850). +- soundwire: Intel: add trigger callback (jsc#PED-850). +- ASoC: amd: fix Jadeite kconfig warning and build errors + (jsc#PED-850). +- ASoC: amd: Fix error pointer dereference (jsc#PED-850). +- ASoC: SOF: Intel: hda: Correct the ROM/FW state reporting code + (jsc#PED-850). +- uapi: sof: abi: Bump SOF ABI for ext_data_length (jsc#PED-850). +- ASoC: SOF: compress: Prevent current kernel running with older + FW (jsc#PED-850). +- ASoC: SOF: Copy compress parameters into extended data + (jsc#PED-850). +- ASoC: SOF: compress: Dynamically allocate pcm params struct + (jsc#PED-850). +- ASoC: SOF: Intel: mtl: Do not process IPC reply before firmware + boot (jsc#PED-850). +- ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before + firmware boot (jsc#PED-850). +- ASoC: SOF: Intel: cnl: Do not process IPC reply before firmware + boot (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: Do snd_hdac_ext_stream_decouple() + only once (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: Drop misleading comment regarding + dma_data (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Prevent double freeing of + ipc_control_data via load_bytes (jsc#PED-850). +- ASoC: SOF: sof-client-probes: Only load the driver if IPC3 is + used (jsc#PED-850). +- ASoC: SOF: Intel: hda: Introduce skip_imr_boot flag + (jsc#PED-850). +- ASoC: SOF: topology: remove unused variable (jsc#PED-850). +- ASoC: Intel: avs: Update AVS_FW_INIT_TIMEOUT_US declaration + (jsc#PED-850). +- ASoC: Intel: avs: Lower UNLOAD_MULTIPLE_MODULES IPC timeout + (jsc#PED-850). +- ASoC: Intel: avs: Replace hardcodes with SD_CTL_STREAM_RESET + (jsc#PED-850). +- ASoC: Intel: avs: Recognize FW_CFG_RESERVED (jsc#PED-850). +- ASoC: Intel: avs: Use helper function to set up DMA + (jsc#PED-850). +- ASoC: Intel: avs: Set max DMA segment size (jsc#PED-850). +- ASoC: Intel: avs: Block IPC channel on suspend (jsc#PED-850). +- ASoC: Intel: avs: Shield LARGE_CONFIG_GETs against zero + payload_size (jsc#PED-850). +- commit aa38bc3 + +- Update config files: update for AMD MCP (jsc#PED-850) +- commit 4e8f3fb + +- ASoC: Intel: avs: Copy only as many RX bytes as necessary + (jsc#PED-850). +- ASoC: Intel: avs: Relax DSP core transition timings + (jsc#PED-850). +- ASoC: Intel: avs: Assign I2S gateway when parsing topology + (jsc#PED-850). +- ASoC: Intel: avs: Register HDAudio ext-bus operations + (jsc#PED-850). +- ASoC: amd: acp: Add legacy audio driver support for Rembrandt + platform (jsc#PED-850). +- ASoC: amd: acp: ACP code generic to support newer platforms + (jsc#PED-850). +- ASoC: amd: acp: Remove rt1019_1 codec conf from machine driver + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: free memories allocated in + sof_ipc4_get_audio_fmt (jsc#PED-850). +- ASoC: SOF: ipc4-topology: check dai->private in ipc_free() + (jsc#PED-850). +- ASoC: SOF: remove warning on ABI checks (jsc#PED-850). +- commit 22832f9 + +- Update config files: update for AMD MCP (jsc#PED-850) +- commit aca4025 + +- ASoC: Intel: sof_cs42l42: add adl_mx98360a_cs4242 board config + (jsc#PED-850). +- ASoC: Intel: sof_cs42l42: support BT offload audio + (jsc#PED-850). +- ASoC: amd: Remove duplicated include in acp-es8336.c + (jsc#PED-850). +- ASoC: amd: fix for variable set but not used warning + (jsc#PED-850). +- ASoC: amd: drop machine driver remove function (jsc#PED-850). +- ASoC: amd: remove unused header file inclusion (jsc#PED-850). +- ASoC: amd: acp-es8336: use static variables (jsc#PED-850). +- ASoC: amd: fix ACPI dependency compile errors and warnings + (jsc#PED-850). +- ASoC: Intel: avs: Fix i2s_test card name initialization + (jsc#PED-850). +- ASoC: amd: enable machine driver build for Jadeite platform + (jsc#PED-850). +- ASoC: amd: add Machine driver for Jadeite platform + (jsc#PED-850). +- ASoC: amd: add I2S MICSP instance support (jsc#PED-850). +- ASoC: SOF: Intel: byt: remove duplicating driver data retrieval + (jsc#PED-850). +- ASoC: SOF: Intel: bdw: remove duplicating driver data retrieval + (jsc#PED-850). +- ASoC: Intel: catpt: remove duplicating driver data retrieval + (jsc#PED-850). +- ASoC: Intel: avs: correct config reference for I2S test board + (jsc#PED-850). +- ASoC: Intel: avs: Remove now redundant non_legacy_dai_naming + flag (jsc#PED-850). +- ASoC: sof: Migrate to new style legacy DAI naming flag + (jsc#PED-850). +- ASoC: amd: Migrate to new style legacy DAI naming flag + (jsc#PED-850). +- ASoC: Intel: Migrate to new style legacy DAI naming flag + (jsc#PED-850). +- commit f8a95a0 + +- soundwire: intel: Migrate to new style legacy DAI naming flag + (jsc#PED-850). +- ASoC: soc-component: Add legacy_dai_naming flag (jsc#PED-850). +- ASoC: Intel: skylake: skl-pcm: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: Intel: catpt: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Remove FE DAI ops (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Improve codec_init() quality + (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Improve hw_params() debug-ability + (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Improve probe() function quality + (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Update file comments (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Update code indentation (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Reword driver name (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Reword prefixes of all driver members + (jsc#PED-850). +- ASoC: Intel: Rename broadwell source file to bdw_rt286 + (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Improve hw_params() debug-ability + (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Improve probe() function quality + (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Update file comments (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Update code indentation (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Reword driver name (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Reword prefixes of all driver members + (jsc#PED-850). +- ASoC: Intel: Rename haswell source file to hsw_rt5640 + (jsc#PED-850). +- ASoC: SOF: mediatek: Align mt8186 clock names with dt-bindings + (jsc#PED-850). +- ASoC: amd: acp: Fix error handling in .remove() (jsc#PED-850). +- ASoC: SOF: pcm: use pm_resume_and_get() on component probe + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: remap jack pins (jsc#PED-850). +- ASoC: Intel: sof_nau8825: remap jack pins (jsc#PED-850). +- ASoC: Intel: sof_da7219_max98373: remap jack pins (jsc#PED-850). +- ASoC: Intel: sof_cs42l42: remap jack pins (jsc#PED-850). +- ASoC: Intel: cml_rt1011_rt5682: remap jack pins (jsc#PED-850). +- ASoC: Intel: glk_rt5682_max98357a: remap jack pins + (jsc#PED-850). +- ASoC: Intel: bxt_da7219_max98357a: remap jack pins + (jsc#PED-850). +- ASoC: Intel: kbl_rt5663_rt5514_max98927: remap jack pins + (jsc#PED-850). +- ASoC: Intel: kbl_da7219_max98927: remap jack pins (jsc#PED-850). +- ASoC: Intel: kbl_da7219_max98357a: remap jack pins + (jsc#PED-850). +- ASoC: Intel: kbl_rt5663_max98927: remap jack pins (jsc#PED-850). +- ASoC: Intel: skl_nau88l25_ssm4567: remap jack pins + (jsc#PED-850). +- ASoC: Intel: skl_nau88l25_max98357a: remap jack pins + (jsc#PED-850). +- commit cd8bc63 + +- ASoC: codecs: rt715-sdca: remove useless assignment of ops + (jsc#PED-850). +- commit e71653e + +- ASoC: soc-card: Create jack kcontrol without pins (jsc#PED-850). +- Refresh + patches.suse/ASoC-Intel-sof_rt5682-fix-out-of-bounds-array-access.patch. +- Refresh + patches.suse/ASoC-amd-acp-Add-support-for-nau8825-and-max98360-ca.patch. +- commit 796e1db + +- ASoC: Intel: boards: sof_sdw: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: Intel: boards: hda: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc4: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: sof-client: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc4-topology remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc3-topology: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc3-loader: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: Intel: mtl: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: remove use of __func__ in dev_dbg + (jsc#PED-850). +- commit eb5209d + +- Update config files: Intel SOF updates (jsc#PED-850) +- commit 8eabe5a + +- ASoC: SOF: Intel: hda-dai: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: report error on stream not opened + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dsp: report error on power-up/down + (jsc#PED-850). +- ASoC: SOF: Intel: IPC4: enable IMR boot (jsc#PED-850). +- ASoC: Intel: Skylake: remove redundant re-assignments to + pointer array (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Fix error code in + sof_ipc4_volume_put() (jsc#PED-850). +- ASoC: SOF: Intel: Add support for MeteorLake (MTL) + (jsc#PED-850). +- ASoC: SOC: Intel: introduce cl_init callback (jsc#PED-850). +- ASoC: SOF: ipc4-topology: add SoundWire/ALH aggregation support + (jsc#PED-850). +- ASoC: SOF: Compile and runtime IPC version selection + (jsc#PED-850). +- ASoC: SOF: topology: add code to parse config params for + ACPDMIC dai (jsc#PED-850). +- ASoC: SOF: reduce default verbosity of IPC logs (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: enhance debug messages (jsc#PED-850). +- ASoC: intel: sof_sdw: add RT711 SDCA card for MTL platform + (jsc#PED-850). +- ASoC: SOF: IPC4: add sdw blob (jsc#PED-850). +- AsoC: SOF: ipc4-topology: Add dai_get_clk op (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for SSP/DMIC DAI's + (jsc#PED-850). +- ASoC: SOF: Add a new IPC op for parsing topology manifest + (jsc#PED-850). +- ASoC: SOF: Add two new structures for topology manifest data + (jsc#PED-850). +- ASoC: SOF: Intel: hda: init NHLT for IPC4 (jsc#PED-850). +- ASoC: SOF: Add ops_free (jsc#PED-850). +- ASoC: SOF: IPC4: set the BE DAI ops (jsc#PED-850). +- ASoC: SOF: ipc4-pcm: Expose sof_ipc4_set_pipeline_state() + (jsc#PED-850). +- commit 164020c + +- ASoC: SOF: ipc4-topology: Add the dai_config op (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add route_setup/route_free ops + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add widget_setup/widget_free ops + (jsc#PED-850). +- ASoC: SOF: IPC4: Add pcm ops (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add control IO ops (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add control_setup op (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for parsing mixer widgets + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for parsing and preparing + pga widgets (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add prepare op for DAI type widgets + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add prepare op for AIF type widgets + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for parsing DAI_IN/DAI_OUT + widgets (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for parsing AIF_IN/AIF_OUT + widgets (jsc#PED-850). +- ASoC: SOF: IPC4: Introduce topology ops (jsc#PED-850). +- ASoC: SOF: Add topology tokens for IPC4 (jsc#PED-850). +- ASoC: SOF: ipc4: implement pm ctx_save callback (jsc#PED-850). +- ASoC: SOF: Intel: Switch to use the generic + pm_ops.set_core_state (jsc#PED-850). +- ASoC: SOF: ipc4: Add set_core_state pm_ops implementation + (jsc#PED-850). +- ASoC: SOF: ipc3: Add set_core_state pm_ops implementation + (jsc#PED-850). +- ASoC: SOF: sof_ipc_pm_ops: Add support for DSP core power + management (jsc#PED-850). +- ASoC: SOF: make ctx_store and ctx_restore as optional + (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Return from dtrace_read if there is + no new data available (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Add helper function to update the + sdev->host_offset (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Introduce SOF_DTRACE_INITIALIZING state + (jsc#PED-850). +- ASoC: codecs: rt298: Reorganize jack detect handling + (jsc#PED-850). +- ASoC: codecs: rt286: Reorganize jack detect handling + (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: SOF: debug: Clarify the IPC timeout handling path + (jsc#PED-850). +- ASoC: Intel: Rename set_fmt_new back to set_fmt (jsc#PED-850). +- ASoC: amd: vangogh: Rename set_fmt_new back to set_fmt + (jsc#PED-850). +- ASoC: Intel: Update to use set_fmt_new callback (jsc#PED-850). +- commit f503879 + +- ASoC: amd: vangogh: Update to use set_fmt_new callback + (jsc#PED-850). +- ASoC: core: Add set_fmt_new callback that directly specifies + provider (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195 suspend check dsp idle + (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195 modify dram type as non-cache + (jsc#PED-850). +- ASoC: SOF: mediatek: Add shared_size for mediatek common chip + information (jsc#PED-850). +- ASoC: SOF: mediatek: revise mt8195 clock sequence (jsc#PED-850). +- ASoC: SOF: amd: Add SOF pm ops callback for Renoir + (jsc#PED-850). +- ASoC: Intel: broadwell: Make broadwell_disable_jack() return + void (jsc#PED-850). +- ASoC: amd: acp: Add support for rt5682s and rt1019 card with + hs instance (jsc#PED-850). +- ASoC: amd: acp: Add support for nau8825 and max98360 card + (jsc#PED-850). +- ASoC: Intel: sof_pcm512x: remove unnecessary init (jsc#PED-850). +- ASoC: Intel: boards: reset acpi_chan_package (jsc#PED-850). +- ASoC: Intel: atom: controls: remove useless initializations + (jsc#PED-850). +- ASoC: Intel: atom: sst_ipc: remove useless initializations + (jsc#PED-850). +- ASoC: Intel: atom: sst_ipc: remove redundant test (jsc#PED-850). +- ASoC: Intel: atom: sst: remove useless initialization + (jsc#PED-850). +- ASoC: Intel: avs: Add da7219 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add max98373 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add max98357a machine board (jsc#PED-850). +- ASoC: Intel: avs: Add ssm4567 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add nau8825 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add rt5682 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add rt298 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add rt286 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add rt274 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add I2S-test machine board (jsc#PED-850). +- ASoC: Intel: avs: Add DMIC machine board (jsc#PED-850). +- ASoC: Intel: avs: Add HDAudio machine board (jsc#PED-850). +- ASoC: Intel: sof_sdw: allow HDaudio/HDMI disable (jsc#PED-850). +- ASoC: Intel: boards: rename RTL1019 compatible driver to rt1019p + (jsc#PED-850). +- ASoC: SOF: Intel: add MeteorLake machines (jsc#PED-850). +- commit b5fa9c4 + +- ASoC: amd: acp: fix typo in comment (jsc#PED-850). +- soundwire: qcom: Enable software clock gating requirement flag + (jsc#PED-850). +- soundwire: qcom: Add flag for software clock gating check + (jsc#PED-850). +- soundwire: qcom: Add support for controlling audio CGCR from + HLOS (jsc#PED-850). +- soundwire: intel: use pm_runtime_resume() on component probe + (jsc#PED-850). +- soundwire: peripheral: remove useless ops pointer (jsc#PED-850). +- soundwire: revisit driver bind/unbind and callbacks + (jsc#PED-850). +- commit cf9d935 + +- ASoC: Intel: sof_rt5682: fix out-of-bounds array access + (jsc#PED-850). +- ASoC: SOF: Intel: disable IMR boot when resuming from ACPI S4 + and S5 states (jsc#PED-850). +- ASoC: SOF: pm: add definitions for S4 and S5 states + (jsc#PED-850). +- ASoC: SOF: pm: add explicit behavior for ACPI S1 and S2 + (jsc#PED-850). +- ASoC: SOF: Intel: hda: Fix compressed stream position tracking + (jsc#PED-850). +- ASoC: SOF: mediatek: Fix error code in probe (jsc#PED-850). +- ASoC: Intel: avs: Fix parsing UUIDs in topology (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Move and correct size checks in + sof_ipc3_control_load_bytes() (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: Make sure that the fw load + sequence is followed (jsc#PED-850). +- ASoC: SOF: Intel: hda-dsp: Expose hda_dsp_core_power_up() + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Fix reversed if statement + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Propagate write errors correctly + (jsc#PED-850). +- ASoC: SOF: Fix potential NULL pointer dereference (jsc#PED-850). +- ASoC: Intel: cirrus-common: fix incorrect channel mapping + (jsc#PED-850). +- soundwire: qcom: use pm_runtime_resume_and_get() (jsc#PED-850). +- soundwire: intel: use pm_runtime_resume_and_get() (jsc#PED-850). +- soundwire: cadence: use pm_runtime_resume_and_get() + (jsc#PED-850). +- soundwire: bus: use pm_runtime_resume_and_get() (jsc#PED-850). +- soundwire: qcom: return error when pm_runtime_get_sync fails + (jsc#PED-850). +- soundwire: bus: pm_runtime_request_resume on peripheral + attachment (jsc#PED-850). +- soundwire: intel: disable WAKEEN in pm_runtime resume + (jsc#PED-850). +- soundwire: cadence: recheck device0 attachment after status + change (jsc#PED-850). +- soundwire: qcom: Add compatible name for v1.6.0 (jsc#PED-850). +- soundwire: stream: Fix error return code in do_bank_switch() + (jsc#PED-850). +- soundwire: qcom: fix an error message in + swrm_wait_for_frame_gen_enabled() (jsc#PED-850). +- ASoC: Intel: avs: Fix build error on arc, m68k and sparc + (jsc#PED-850). +- ASoC: Intel: common: fix typo for tplg naming (jsc#PED-850). +- ASoC: rt5640: Do not manipulate pin "Platform Clock" if the + "Platform Clock" is not in the DAPM (jsc#PED-850). +- ASoC: SOF: amd: Fixed Build error (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Move dtrace related variables local + from sof_dev (jsc#PED-850). +- ASoC: SOF: Introduce opaque storage of private data for firmware + tracing (jsc#PED-850). +- ASoC: SOF: Modify the host trace_init parameter list to include + dmab (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Move host ops wrappers from generic + header to private (jsc#PED-850). +- ASoC: SOF: Switch to IPC generic firmware tracing (jsc#PED-850). +- ASoC: SOF: Clone the trace code to ipc3-dtrace as fw_tracing + implementation (jsc#PED-850). +- ASoC: SOF: Rename dtrace_is_supported flag to + fw_trace_is_supported (jsc#PED-850). +- ASoC: SOF: Introduce IPC independent ops for firmware tracing + support (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8195 debug dump (jsc#PED-850). +- ASoC: SOF: mediatek: Add mediatek common debug dump + (jsc#PED-850). +- ASoC: amd: acp: Set Speaker enable/disable pin through rt1019 + codec driver (jsc#PED-850). +- ASoC: SOF: sof-client-ipc-flood-test: use + pm_runtime_resume_and_get() (jsc#PED-850). +- commit 477ca2d + +- ASoC: SOF: mediatek: remove duplicate include in mt8195.c + (jsc#PED-850). +- ASoC: Intel: avs: APL-based platforms support (jsc#PED-850). +- ASoC: Intel: avs: SKL-based platforms support (jsc#PED-850). +- ASoC: Intel: avs: Power management (jsc#PED-850). +- ASoC: Intel: avs: PCI driver implementation (jsc#PED-850). +- ASoC: Intel: avs: Machine board registration (jsc#PED-850). +- ASoC: Intel: avs: Replace link_mask usage with i2s_link_mask + (jsc#PED-850). +- ASoC: Intel: avs: Event tracing (jsc#PED-850). +- ASoC: Intel: avs: D0ix power state support (jsc#PED-850). +- ASoC: Intel: avs: Prepare for firmware tracing (jsc#PED-850). +- ASoC: Intel: avs: Coredump and recovery flow (jsc#PED-850). +- ASoC: Intel: avs: HDA PCM BE operations (jsc#PED-850). +- ASoC: Intel: avs: non-HDA PCM BE operations (jsc#PED-850). +- ASoC: Intel: avs: Generic PCM FE operations (jsc#PED-850). +- ASoC: Intel: avs: Generic soc component driver (jsc#PED-850). +- ASoC: Intel: avs: Account for libraries when booting basefw + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Cap the rmaining to count in IPC4 + mode (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8186 ipc support (jsc#PED-850). +- ASoC: SOF: mediatek: Add ipc support for mt8195 (jsc#PED-850). +- ASoC: amd: vangogh: Remove duplicate include files + (jsc#PED-850). +- ASoC: SOF: Intel: HDA: Set up sof_ipc4_fw_data for IPC4 + (jsc#PED-850). +- ASoC: SOF: IPC4: Add FW loader ops (jsc#PED-850). +- ASoC: SOF: Add header for IPC4 manifest (jsc#PED-850). +- ASoC: SOF: Add IPC4 private header (jsc#PED-850). +- ASoC: SOF: Intel: HDA: Set IPC4-specific DSP ops for CaVS + platforms (jsc#PED-850). +- ASoC: SOF: amd: add missing platform_device_unregister in + acp_pci_rn_probe (jsc#PED-850). +- ASoC: Intel: sof_ssp_amp: enable capture stream from cs35l41 + (jsc#PED-850). +- ASoC: Intel: sof_ssp_amp: fix no DMIC BE Link on Chromebooks + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Add support for adl_rt1019_rt5682s + (jsc#PED-850). +- ASoC: SOF: ipc: introduce cont_update_posn in + sof_ipc_stream_params struct (jsc#PED-850). +- ASoC: SOF: sof-client: IPC flood test can only work with SOF_IPC + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Add support for IPC4 messages + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Separate the message sending + (jsc#PED-850). +- ASoC: SOF: sof-client: Add support IPC4 message sending + (jsc#PED-850). +- ASoC: SOF: sof-client: Add API to get the ipc_type + (jsc#PED-850). +- ASoC: SOF: sof-client-probes: Query the maximum IPC payload size + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Query the maximum IPC payload size + (jsc#PED-850). +- ASoC: SOF: sof-client: Add API to get the maximum IPC payload + size (jsc#PED-850). +- ASoC: SOF: trace: The dtrace is only available with SOF_IPC + (jsc#PED-850). +- ASoC: SOF: ipc4: Add support for mandatory message handling + functionality (jsc#PED-850). +- ASoC: SOF: Add initial header file for ipc4 (jsc#PED-850). +- ASoC: SOF: Add rx_data pointer to snd_sof_ipc_msg struct + (jsc#PED-850). +- ASoC: SOF: ipc3: Remove the ipc3-ops.h header file + (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Correct get_control_data for non + bytes payload (jsc#PED-850). +- ASoC: SOF: Add a prepare op to IPC topology widget ops + (jsc#PED-850). +- ASoC: SOF: clarify use of widget complete flag (jsc#PED-850). +- ASoC: SOF: topology: Skip parsing DAI link tokens if not needed + (jsc#PED-850). +- ASoC: SOF: pcm: remove unnecessary function declaration + (jsc#PED-850). +- ASoC: SOF: Add two new fields to struct snd_sof_widget + (jsc#PED-850). +- ASoC: SOF: Add a route_free op in struct sof_ipc_tplg_ops + (jsc#PED-850). +- ASoC: SOF: bump SOF_ABI_MINOR (jsc#PED-850). +- commit a12ea22 + +- ASoC: SOF: expose a couple of functions (jsc#PED-850). +- ASoC: SOF: pcm: Move the call to + snd_sof_pcm_platform_hw_params() (jsc#PED-850). +- ASoC: SOF: sof-audio: Set up widgets from source to sink + (jsc#PED-850). +- ASoC: SOF: sof-audio: reset route status before freeing widget + (jsc#PED-850). +- ASoC: SOF: Add a new op to set up volume table (jsc#PED-850). +- ASoC: SOF: loader: Call optional query_fw_configuration on + first boot (jsc#PED-850). +- ASoC: SOF: loader: Remove snd_sof_parse_module_memcpy() as it + is not used (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195: Do not set the load_module ops + (jsc#PED-850). +- ASoC: SOF: Intel: bdw/byt/pci-tng: Do not set the load_module + ops (jsc#PED-850). +- ASoC: SOF: imx: Do not set the load_module ops (jsc#PED-850). +- ASoC: SOF: amd: renoir: Do not set the load_module ops + (jsc#PED-850). +- ASoC: SOF: loader: Switch to use the fw_loader ops + (jsc#PED-850). +- ASoC: SOF: ipc: Add check for fw_loader ops (jsc#PED-850). +- ASoC: SOF: ipc3-loader: Implement firmware parsing and loading + (jsc#PED-850). +- ASoC: SOF: Introduce IPC dependent ops for firmware handling, + loading (jsc#PED-850). +- ASoC: SOF: sof-pci-dev: fix missing pci_release_regions() + on error in sof_pci_probe() (jsc#PED-850). +- ASoC: SOF: sof-client-ipc-msg-injector: use + pm_runtime_resume_and_get() (jsc#PED-850). +- ASoC: SOF: debug: use pm_runtime_resume_and_get() (jsc#PED-850). +- ASoC: SOF: control: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: SOF: mediatek: Fix allyesconfig build error (jsc#PED-850). +- ASoC: Intel: avs: Drop direct ACPI dependency (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195 change ipc timeout as 1 second + (jsc#PED-850). +- ASoC: SOF: Intel: Do not (wrongly) assume positive return + value in IMR path (jsc#PED-850). +- ASoC: Intel: atom: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: protect hw_params against successive + calls (jsc#PED-850). +- ASoC: SOF: Intel: add helper for link DMA cleanups + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: reset dma_data and release stream + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: improve suspend case (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: move code to deal with hda + dai/dailink suspend (jsc#PED-850). +- ASOC: SOF: Intel: hda-dai: add hda_dai_hw_free_ipc() helper + (jsc#PED-850). +- ASoC: SOF: sof-audio: flag errors on pipeline teardown + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: regroup dai and link DMA operations + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: split link DMA and dai operations + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: use snd_soc_dai_get_widget() helper + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: simplify hda_dai_widget_update() + prototype (jsc#PED-850). +- ASOC: SOF: Intel: hda-dai: consistent naming for HDA DAI and + HDA link DMA (jsc#PED-850). +- ASoC: SOF: Intel: Add IPC-specific dai ops for IPC3 + (jsc#PED-850). +- ASoC: SOF: remove incorrect clearing of prepared flag + (jsc#PED-850). +- ASoC: SOF: loader: Remove the old fw_ready related code + (jsc#PED-850). +- ASoC: SOF: Intel: Do not set fw_ready callback (jsc#PED-850). +- ASoC: SOF: imx: Do not set fw_ready callback (jsc#PED-850). +- ASoC: SOF: amd: Do not set fw_ready callback (jsc#PED-850). +- ASoC: SOF: Do not check for the fw_ready callback (jsc#PED-850). +- ASoC: SOF: ipc3: Add local implementation for handling fw_ready + message (jsc#PED-850). +- ASoC: SOF: mediatek: Add DSP system PM callback for mt8186 + (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8186 dsp clock support (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8186 sof fw loader and dsp ops + (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8186 hardware support (jsc#PED-850). +- ASoC: Intel: avs: Depend on SND_INTEL_DSP_CONFIG (jsc#PED-850). +- ASoC: Intel: avs: Enable AVS driver only on x86 platforms + (jsc#PED-850). +- commit f4a81b7 + +- ASoC: SOF: sof-pci-dev: don't use the community key on APL + Chromebooks (jsc#PED-850). +- Refresh + patches.suse/ASoC-SOF-pci-Change-DMI-match-info-to-support-all-Ch.patch. +- commit a625481 + +- ASoC: SOF: Intel: hda: Revisit IMR boot sequence (jsc#PED-850). +- Refresh + patches.suse/ASoC-SOF-Intel-hda-loader-Clarify-the-cl_dsp_init-fl.patch. +- commit cbf86ae + +- ASOC: SOF: pci: add ipc_type override for Intel IPC4 tests + (jsc#PED-850). +- ASoC: SOF: Intel: hda: simplify NHLT handling (jsc#PED-850). +- ASoC: SOF: topology: Check w->sname validity once in + sof_connect_dai_widget() (jsc#PED-850). +- ASoC: SOF: sof-audio: remove useless assignment (jsc#PED-850). +- ASoC: SOF: amd: Use dedicated MBOX for ACP and PSP communication + (jsc#PED-850). +- ASoC: SOF: amd: Add psp_mbox_ready() and psp_send_cmd() callback + (jsc#PED-850). +- ASoC: Intel: sof_ssp_amp: remove 'set-but-not-used' warning + (jsc#PED-850). +- ASoC: SOF: using pm_runtime_resume_and_get to simplify the code + (jsc#PED-850). +- ASoC: amd: acp: Add pm ops callback in machine driver + (jsc#PED-850). +- ASoC: SOF: Intel: add IP identifier (jsc#PED-850). +- ASoC: SOF: Intel: hda: expose some codeloader functions + (jsc#PED-850). +- ASoC: SOF: Intel: hda: Define rom_status_reg in + sof_intel_dsp_desc (jsc#PED-850). +- ASoC: SOF: Intel: hda: define check_ipc_irq op (jsc#PED-850). +- ASoC: SOF: Intel: hda: use BIT() macros for consistency + (jsc#PED-850). +- ASoC: SOF: Intel: move HDA_CL_STREAM_FORMAT definition to header + (jsc#PED-850). +- ASoC: SOF: Intel: hda: use common ops across platforms + (jsc#PED-850). +- ASoC: SOF: remove const qualifier for 'struct snd_sof_dsp_ops' + (jsc#PED-850). +- ASoC: SOF: sof-audio: preserve topology filename override in + nocodec mode (jsc#PED-850). +- ASoC: SOF: sof-pci-dev: add parameter to override topology + filename (jsc#PED-850). +- ASoC: SOF: sof-pci-dev: add parameter to override firmware + filename (jsc#PED-850). +- ASoC: SOF: add IPC-dependent file names (jsc#PED-850). +- ASoC: SOF: add default IPC capability and file paths + (jsc#PED-850). +- ASoC: SOF: add path indirection to each IPC type (jsc#PED-850). +- ASoC: SOF: add definitions for different IPC types + (jsc#PED-850). +- ASoC: Intel: avs: Configure modules according to their type + (jsc#PED-850). +- ASoC: Intel: avs: Prepare modules before bindings them + (jsc#PED-850). +- ASoC: Intel: avs: Arm paths after creating them (jsc#PED-850). +- ASoC: Intel: avs: Path state management (jsc#PED-850). +- ASoC: Intel: avs: Path creation and freeing (jsc#PED-850). +- ASoC: Intel: avs: Declare path and its components (jsc#PED-850). +- ASoC: Intel: avs: Support link_mask formatted string + (jsc#PED-850). +- ASoC: Intel: avs: Add topology loading operations (jsc#PED-850). +- ASoC: Intel: avs: Parse path and path templates tuples + (jsc#PED-850). +- ASoC: Intel: avs: Parse pipeline and module tuples + (jsc#PED-850). +- ASoC: Intel: avs: Parse pplcfg and binding tuples (jsc#PED-850). +- ASoC: Intel: avs: Parse module-extension tuples (jsc#PED-850). +- ASoC: Intel: avs: Add topology parsing infrastructure + (jsc#PED-850). +- ASoC: SOF: Kconfig: Make SND_SOC_SOF_HDA_PROBES tristate + (jsc#PED-850). +- commit e038201 + +- ASoC: SOF: Intel: Check the bar size before remapping + (jsc#PED-850). +- ASoC: SOF: ipc: Move the ipc_set_get_comp_data() local to + ipc3-control (jsc#PED-850). +- ASoC: SOF: sof-audio: Use the widget_kcontrol_setup ops for + kcontrol set up (jsc#PED-850). +- ASoC: SOF: Add widget_kcontrol_setup control ops for IPC3 + (jsc#PED-850). +- ASoC: SOF: ipc: Switch over to use the rx_msg ops (jsc#PED-850). +- ASoC: SOF: ipc: Switch over to use the tx_msg and set_get_data + ops (jsc#PED-850). +- ASoC: SOF: ipc: Use the get_reply ops in snd_sof_ipc_get_reply() + (jsc#PED-850). +- ASoC: SOF: ipc: Add check for mandatory IPC message handling + ops (jsc#PED-850). +- ASoC: SOF: ipc: Separate the ops checks by functions/topics + (jsc#PED-850). +- ASoC: SOF: ipc3: Implement rx_msg IPC ops (jsc#PED-850). +- ASoC: SOF: ipc3: Implement the get_reply IPC ops (jsc#PED-850). +- ASoC: SOF: ipc3: Implement the set_get_data IPC ops + (jsc#PED-850). +- ASoC: SOF: ipc3: Use sof_ipc3_tx_msg() internally for message + sending (jsc#PED-850). +- ASoC: SOF: ipc3: Implement the tx_msg IPC ops (jsc#PED-850). +- ASoC: SOF: Add high level IPC IO callback definitions to ipc_ops + (jsc#PED-850). +- ASoC: SOF: Add helper function to prepare and send an IPC + message (jsc#PED-850). +- ASoC: amd: Add support for enabling DMIC on acp6x via _DSD + (jsc#PED-850). +- ASoC: amd: Add driver data to acp6x machine driver + (jsc#PED-850). +- ASoC: amd: yc: add new YC platform varaint support + (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195 add shutdown callback (jsc#PED-850). +- ASoC: SOF: OF: Add shutdown callback for SOF OF device + (jsc#PED-850). +- ASoC: SOF: topology: Avoid open coded arithmetic in memory + allocation (jsc#PED-850). +- ASoC: Intel: boards: Use temporary variable for struct device + (jsc#PED-850). +- ASoC: SOF: Remove redundant return statements (jsc#PED-850). +- ASoC: SOF: Remove header from struct snd_sof_ipc_msg + (jsc#PED-850). +- ASoC: SOF: Drop 'header' parameter from tx_message() API + (jsc#PED-850). +- ASoC: SOF: ipc: Use msg->reply_data directly in + snd_sof_ipc_get_reply() (jsc#PED-850). +- ASoC: SOF: disable dma trace in s0ix (jsc#PED-850). +- ASoC: SOF: extend the interface to stop DMA trace (jsc#PED-850). +- ASoC: SOF: Drop support for mapped control data (jsc#PED-850). +- ASoC: SOF: ipc: Use ipc->max_payload_size for message/reply + size checking (jsc#PED-850). +- ASoC: SOF: ipc: Add max_payload_size field in struct snd_sof_ipc + (jsc#PED-850). +- ASoC: SOF: Remove dmab and dmab_bdl from snd_sof_dev struct + (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: Use local snd_dma_buffer + (jsc#PED-850). +- ASoC: Intel: catpt: Drop redundant enum constant (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Set scontrol->priv to NULL after + freeing it (jsc#PED-850). +- ASoC: intel: atom: Remove superfluous flush_scheduled_work() + (jsc#PED-850). +- ASoC: SOF: topology: use new sound control LED layer + (jsc#PED-850). +- commit 96cf6fb + +- ASoC: Intel: sof_es8336: Add a quirk for Huawei Matebook D15 + (jsc#PED-850). +- ASoC: Intel: sof_es8336: add a quirk for headset at mic1 port + (jsc#PED-850). +- ASoC: Intel: sof_es8336: support a separate gpio to control + headphone (jsc#PED-850). +- ASoC: Intel: sof_es8336: simplify speaker gpio naming + (jsc#PED-850). +- ASoC: SOF: topology: Fix memory leak in sof_control_load() + (jsc#PED-850). +- ASoC: SOF: topology: cleanup dailinks on widget unload + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Add support for max98360a speaker + amp on SSP2 (jsc#PED-850). +- ASoC: SOF: topology: Fix memory leak of scontrol->name + (jsc#PED-850). +- soundwire: qcom: use __maybe_unused for swrm_runtime_resume() + (jsc#PED-850). +- soundwire: qcom: constify static struct qcom_swrm_data global + variables (jsc#PED-850). +- soundwire: qcom: add in-band wake up interrupt support + (jsc#PED-850). +- soundwire: qcom: add runtime pm support (jsc#PED-850). +- soundwire: stream: make enable/disable/deprepare idempotent + (jsc#PED-850). +- soundwire: stream: sdw_stream_add_ functions can be called + multiple times (jsc#PED-850). +- soundwire: stream: introduce sdw_slave_rt_find() helper + (jsc#PED-850). +- soundwire: stream: separate alloc and config within + sdw_stream_add_xxx() (jsc#PED-850). +- soundwire: stream: move list addition to sdw_slave_alloc_rt() + (jsc#PED-850). +- soundwire: stream: rename and move master/slave_rt_free routines + (jsc#PED-850). +- soundwire: stream: group sdw_stream_ functions (jsc#PED-850). +- soundwire: stream: split sdw_alloc_slave_rt() in alloc and + config (jsc#PED-850). +- soundwire: stream: move sdw_alloc_slave_rt() before 'master' + helpers (jsc#PED-850). +- soundwire: stream: split sdw_alloc_master_rt() in alloc and + config (jsc#PED-850). +- soundwire: stream: simplify sdw_alloc_master_rt() (jsc#PED-850). +- soundwire: stream: group sdw_port and sdw_master/slave_port + functions (jsc#PED-850). +- soundwire: stream: add 'slave' prefix for port range checks + (jsc#PED-850). +- soundwire: stream: split alloc and config in two functions + (jsc#PED-850). +- soundwire: stream: split port allocation and configuration loops + (jsc#PED-850). +- soundwire: stream: add alloc/config/free helpers for ports + (jsc#PED-850). +- soundwire: stream: simplify check on port range (jsc#PED-850). +- soundwire: stream: add slave runtime to list earlier + (jsc#PED-850). +- soundwire: stream: remove unused parameter in + sdw_stream_add_slave (jsc#PED-850). +- soundwire: Replace acpi_bus_get_device() (jsc#PED-850). +- soundwire: bus: add dev_warn() messages to track UNATTACHED + devices (jsc#PED-850). +- ASoC: SOF: Add a new dai_get_clk topology IPC op (jsc#PED-850). +- ASoC: SOF: topology: Add ops for setting up and tearing down + pipelines (jsc#PED-850). +- ASoC: SOF: expose sof_route_setup() (jsc#PED-850). +- commit 82a7627 + +- ASoC: SOF: Add dai_link_fixup PCM op for IPC3 (jsc#PED-850). +- ASoC: SOF: Add trigger PCM op for IPC3 (jsc#PED-850). +- ASoC: SOF: Define hw_params PCM op for IPC3 (jsc#PED-850). +- ASoC: SOF: Introduce IPC3 PCM hw_free op (jsc#PED-850). +- ASoC: SOF: pcm: expose the sof_pcm_setup_connected_widgets() + function (jsc#PED-850). +- ASoC: SOF: Introduce IPC-specific PCM ops (jsc#PED-850). +- ASoC: SOF: Add bytes_ext control IPC ops for IPC3 (jsc#PED-850). +- ASoC: SOF: Add bytes_get/put control IPC ops for IPC3 + (jsc#PED-850). +- ASoC: SOF: Add enum_get/put control ops for IPC3 (jsc#PED-850). +- ASoC: SOF: Add switch get/put IPC3 ops (jsc#PED-850). +- ASoC: SOF: Add volume_get/put IPC3 ops (jsc#PED-850). +- ASoC: SOF: Add IPC3 topology control ops (jsc#PED-850). +- ASoC: SOF: Introduce IPC ops for kcontrol IO (jsc#PED-850). +- ASoC: SOF: Make sof_suspend/resume IPC agnostic (jsc#PED-850). +- ASoC: SOF: Make sof_widget_setup/free IPC agnostic + (jsc#PED-850). +- ASoC: SOF: set up scheduler widget before all other widgets + in the pipeline (jsc#PED-850). +- ASoC: SOF: topology: Use kmemdup() to replace kzalloc + memcpy + (jsc#PED-850). +- ASoC: SOF: topology: remove snd_sof_complete_pipeline() + (jsc#PED-850). +- ASoC: SOF: topology: Make widget binding IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make control parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make DAI widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make route setup IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make effect widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make siggen widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make asrc widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make src widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make mux/demux widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make mixer widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make pga widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make buffer widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make scheduler widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: Introduce IPC3 ops (jsc#PED-850). +- ASoC: SOF: topology: Add helper function for processing tuple + arrays (jsc#PED-850). +- ASoC: SOF: IPC: Introduce IPC ops (jsc#PED-850). +- ASoC: SOF: Introduce struct snd_sof_dai_link (jsc#PED-850). +- ASoC: SOF: Remove ipc_pcm_params() ops (jsc#PED-850). +- ASoC: SOF: imx: Convert to use the generic + set_stream_data_offset ops (jsc#PED-850). +- ASoC: SOF: Intel: Convert to use the generic + set_stream_data_offset ops (jsc#PED-850). +- ASoC: SOF: Intel: hda-ipc: Add hda_set_stream_data_offset() + (jsc#PED-850). +- ASoC: SOF: stream-ipc: Add sof_set_stream_data_offset() + (jsc#PED-850). +- ASoC: SOF: Mark snd_sof_dsp_ops.ipc_pcm_params() callback + optional (jsc#PED-850). +- ASoC: SOF: Introduce optional callback to configure stream + data offset (jsc#PED-850). +- ASoC: SOF: pcm: Remove sof_pcm_dsp_params() wrapper + (jsc#PED-850). +- ASoC: SOF: Make pcm_hw_params snd_sof_dsp_ops callback IPC + neutral (jsc#PED-850). +- ASoC: SOF: sof-priv: Remove stale + snd_sof_ipc_stream_pcm_params() declaration (jsc#PED-850). +- ASoC: Intel: soc-acpi: Add entry for rt711-sdca-sdw in ADL + match table (jsc#PED-850). +- ASoC: SOF: Intel: add topology overwrite for Taniks + (jsc#PED-850). +- ASoC: SOF: trace: Use proper DMA direction for the trace data + buffer (jsc#PED-850). +- ASoC: SOF: compress: fix null check after dereference + (jsc#PED-850). +- ASoC: Intel: avs: Code loading over HDA (jsc#PED-850). +- commit 951b46c + +- Update config files: keep AVS config off (jsc#PED-850) +- commit 3fd2397 + +- ASoC: Intel: avs: Code loading over CLDMA (jsc#PED-850). +- ASoC: Intel: avs: Implement CLDMA transfer (jsc#PED-850). +- ASoC: Intel: avs: General code loading flow (jsc#PED-850). +- ASoC: Intel: avs: Dynamic firmware resources management + (jsc#PED-850). +- ASoC: Intel: avs: Declare module configuration types + (jsc#PED-850). +- ASoC: Intel: avs: Firmware resources management utilities + (jsc#PED-850). +- ASoC: Intel: avs: Add basefw runtime-parameter requests + (jsc#PED-850). +- ASoC: Intel: avs: Add ROM requests (jsc#PED-850). +- ASoC: Intel: avs: Add power management requests (jsc#PED-850). +- ASoC: Intel: avs: Add module management requests (jsc#PED-850). +- ASoC: Intel: avs: Add pipeline management requests + (jsc#PED-850). +- ASoC: Intel: avs: Add code loading requests (jsc#PED-850). +- ASoC: Intel: avs: Inter process communication (jsc#PED-850). +- ASoC: Intel: Introduce AVS driver (jsc#PED-850). +- ASoC: SOF: move definition of snd_sof_ipc to header file + (jsc#PED-850). +- ASoC: SOF: make struct snd_sof_dai IPC agnostic (jsc#PED-850). +- ASoC: SOF: topology: Rename arguments in sof_parse_tokens() + (jsc#PED-850). +- ASoC: SOF: topology: Rename arguments in sof_parse_token_sets() + (jsc#PED-850). +- ASoC: SOF: topology: Modify signature for token parsing + functions (jsc#PED-850). +- ASoC: SOF: Add a tuples array to struct snd_sof_widget + (jsc#PED-850). +- ASoC: SOF: topology: make sof_route_load() IPC agnostic + (jsc#PED-850). +- ASoC: SOF: make struct snd_sof_widget IPC agnostic + (jsc#PED-850). +- ASoC: Intel: bytcht_es8316: move comment to the right place + (jsc#PED-850). +- ASoC: Intel: sof_es8336: add cfg-dmics component for UCM support + (jsc#PED-850). +- ASoC: Intel: sof_es8336: extend machine driver to support + ES8326 codec (jsc#PED-850). +- ASoC: Intel: sof_es8336: add support for JD inverted quirk + (jsc#PED-850). +- ASoC: Intel: sof_es8336: move comment to the right place + (jsc#PED-850). +- ASoC: Intel: sof_es8336: log all quirks (jsc#PED-850). +- ASoC: Intel: sof_es8336: use NHLT information to set dmic and + SSP (jsc#PED-850). +- ASoC: Intel: Revert "ASoC: Intel: sof_es8336: add quirk for + Huawei D15 2021" (jsc#PED-850). +- commit 7695000 + +- ASoC: Intel: sof_es8336: get codec device with ACPI instead + of bus search (jsc#PED-850). +- ASoC: Intel: sof_es8336: make gpio optional (jsc#PED-850). +- ASoC: Intel: soc-acpi: add ESSX8336 support on Cannon Lake + machines (jsc#PED-850). +- ASoC: Intel: soc-acpi: add more ACPI HIDs for ES83x6 devices + (jsc#PED-850). +- ASoC: Intel: soc-acpi: quirk topology filename dynamically + (jsc#PED-850). +- ASoC: SOF: Intel: hda: report SSP link mask to machine driver + (jsc#PED-850). +- ALSA: intel-nhlt: add helper to detect SSP link mask + (jsc#PED-850). +- ASoC: SOF: Intel: hda: retrieve DMIC number for I2S boards + (jsc#PED-850). +- ASoC: soc-acpi: add information on I2S/TDM link mask + (jsc#PED-850). +- ASoC: soc-acpi: fix kernel-doc descriptor (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Use devm_kzalloc() for the + rx_buffer (jsc#PED-850). +- ASoC: SOF: amd: Remove unneeded semicolon (jsc#PED-850). +- commit 83f31ef + +- Update config files: another Intel/AMD ASoC updates (jsc#PED-850) +- commit dd56303 + +- ASoC: Intel: boards: fix randconfig issue (jsc#PED-850). +- ASoC: SOF: change comp_dai to a pointer in struct snd_sof_dai + (jsc#PED-850). +- ASoC: SOF: topology: expose some get_token ops (jsc#PED-850). +- ASoC: SOF: topology: Modify the get_token op for string tokens + (jsc#PED-850). +- ASoC: SOF: topology: Drop the size parameter from struct + sof_topology_token (jsc#PED-850). +- ASoC: SOF: topology: remove redundant code in + sof_link_afe_load() (jsc#PED-850). +- ASoC: SOF: sof-audio: removed unused function (jsc#PED-850). +- ASoC: SOF: set swidget's core for scheduler widget + (jsc#PED-850). +- ASoC: SOF: simplify snd_sof_device_remove() (jsc#PED-850). +- ASoC: SOF: remove snd_sof_pipeline_find() (jsc#PED-850). +- ASoC: amd: acp3x: Fix signedness bug in acp3x (jsc#PED-850). +- ASoC: amd: acp5x-pcm-dma: Fix signedness bug (jsc#PED-850). +- ASoC: Intel: catpt: use asoc_substream_to_rtd() (jsc#PED-850). +- ASoC: SOF: Intel: hda: clarify operator precedence + (jsc#PED-850). +- ASoC: SOF: debug: clarify operator precedence (jsc#PED-850). +- ASoC: SOF: fix 32 signed bit overflow (jsc#PED-850). +- ASoC: SOF: amd: Increase ACP_HW_SEM_RETRY_COUNT value + (jsc#PED-850). +- ASoC: SOF: amd: Move group register configuration to acp-loader + (jsc#PED-850). +- ASoC: SOF: amd: Use semaphore register to synchronize ipc's irq + (jsc#PED-850). +- ASoC: SOF: amd: Flush cache after ATU_BASE_ADDR_GRP register + update (jsc#PED-850). +- ASoC: SOF: amd: Do not set ipc_pcm_params ops as it is optional + (jsc#PED-850). +- ASoC: SOF: amd: acp-pcm: Take buffer information directly from + runtime (jsc#PED-850). +- ASoC: Intel: boards: add GPIOLIB dependency where missed + (jsc#PED-850). +- ASoC: Intel: boards: remove explicit dependency on GPIOLIB + when DMIC is used" (jsc#PED-850). +- ASoC: amd: vg: fix signedness bug in acp5x_audio_probe() + (jsc#PED-850). +- ASoC: amd: pcm-dma: Fix signedness bug in acp3x_audio_probe() + (jsc#PED-850). +- ASoC: amd: pcm-dma: Fix signedness bug in acp_pdm_audio_probe() + (jsc#PED-850). +- ASoC: amd: acp: Fix signedness bug in renoir_audio_probe() + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add entries in ADL match table + (jsc#PED-850). +- ASoC: Intel: sof_ssp_amp: rename driver and support cs35l41 + amplifier (jsc#PED-850). +- commit ef4d791 + +- Update config files: Intel SOF updates (jsc#PED-850) +- commit 40ca354 + +- ASoC: Intel: cirrus-common: support cs35l41 amplifier + (jsc#PED-850). +- ASoC: Intel: sof_rt1308: move rt1308 code to common module + (jsc#PED-850). +- ASoC: Intel: boards: create sof-realtek-common module + (jsc#PED-850). +- ASoC: Intel: add RT1308 I2S machine driver and HDMI-in capture + via I2S support (jsc#PED-850). +- ASoC: Intel: boards: fix spelling in comments (jsc#PED-850). +- ASoC: soc-acpi: remove sof_fw_filename (jsc#PED-850). +- ASoC: amd: use asoc_substream_to_rtd() (jsc#PED-850). +- ASoC: amd: vangogh: fix uninitialized symbol warning in machine + driver (jsc#PED-850). +- ASoC: amd: vg: remove warnings and errors pointed out by + checkpatch pl (jsc#PED-850). +- ASoC: amd: vg: update DAI link name (jsc#PED-850). +- ASoC: amd: pcm-dma: Use platform_get_irq() to get the interrupt + (jsc#PED-850). +- ASoC: acp: check the return value of devm_kzalloc() in + acp_legacy_dai_links_create() (jsc#PED-850). +- ASoC: SOF: sof-priv: Drop duplicate sof_compressed_ops + declaration (jsc#PED-850). +- ASoC: amd: Use platform_get_irq_byname() to get the interrupt + (jsc#PED-850). +- ASoC: SOF: Declare sof_compress_ops in sof-priv.h (jsc#PED-850). +- ASoC: amd: acp: Add DMIC machine driver ops (jsc#PED-850). +- ASoC: amd: acp-legacy: Add legacy card support for new machines + (jsc#PED-850). +- ASoC: amd: acp: Change card name for Guybrush Machine + (jsc#PED-850). +- ASoC: SOF: pcm: Add compress_ops for SOF platform component + driver (jsc#PED-850). +- ASoC: SOF: Intel: Add topology overwrite for Felwinter + (jsc#PED-850). +- ASoC: Intel: sof_es8336: add quirk for Huawei D15 2021 + (jsc#PED-850). +- ASoC: SOF: Replace zero-length array with flexible-array member + (jsc#PED-850). +- ASoC: SOF: core: unregister clients and machine drivers in + .shutdown (jsc#PED-850). +- ASoC: SOF: Makefile: Fix randconfig sof-client build when + SND_SOC_SOF=y (jsc#PED-850). +- ASoC: SOF: compr: Mark snd_compress_ops static (jsc#PED-850). +- ASoC: Intel: bytcr_wm5102: use GFP_KERNEL (jsc#PED-850). +- ASoC: SOF: Convert the generic probe support to SOF client + (jsc#PED-850). +- ASoC: SOF: Convert the generic IPC message injector into SOF + client (jsc#PED-850). +- ASoC: SOF: Convert the generic IPC flood test into SOF client + (jsc#PED-850). +- ASoC: SOF: sof-client: Add support for clients not managed by + pm framework (jsc#PED-850). +- commit 1703e8b + +- Update config files: AMD ACP configs (jsc#PED-850) +- commit d87a85e + +- ASoC: SOF: Introduce IPC SOF client support (jsc#PED-850). +- ASoC: SOF: Split up utils.c into sof-utils and iomem-utils + (jsc#PED-850). +- ASoC: SOF: ipc: Read and pass the whole message to handlers + for IPC events (jsc#PED-850). +- ASoC: SOF: Move the definition of enum sof_dsp_power_states + to global header (jsc#PED-850). +- ASoC: SOF: Drop unused DSP power states: D3_HOT and D3_COLD + (jsc#PED-850). +- ASoC: SOF: Intel: hdac_ext_stream: consistent prefixes for + variables/members (jsc#PED-850). +- ASoC: SOF: dma-trace: Pass pointer to params_ext struct in + trace_init() (jsc#PED-850). +- ASoC: SOF: intel: hda-trace: Pass the dma buffer pointer to + hda_dsp_trace_prepare (jsc#PED-850). +- ASoC: SOF: compr: Add compress ops implementation (jsc#PED-850). +- ASoC: amd: renoir: Add check for acp configuration flags + (jsc#PED-850). +- ASoC: amd: acp: acp-legacy: Add DMIC dai link support for Renoir + (jsc#PED-850). +- ASoC: amd: acp: Add ACP init()/deinit() callback for Renoir + (jsc#PED-850). +- ASoC: amd: acp: Add generic PCI driver module for ACP device + (jsc#PED-850). +- ASoC: amd: acp: Add PDM controller based dmic dai for Renoir + (jsc#PED-850). +- ASoC: amd: acp: Add generic support for PDM controller on ACP + (jsc#PED-850). +- ASoC: SOF: ipc: Do not allocate buffer for msg_data + (jsc#PED-850). +- ASoC: SOF: ipc: Drop header parameter from + sof_ipc_tx_message_unlocked() (jsc#PED-850). +- ASoC: SOF: Intel: cnl: Use pm_gate->hdr.cmd in + cnl_compact_ipc_compress() (jsc#PED-850). +- ASoC: SOF: trace: Simplify count adjustment in trace_read + (jsc#PED-850). +- ASoC: SOF: Intel: hda: Remove link assignment limitation + (jsc#PED-850). +- commit 5f8f1de + +- ASoC: Intel: sof_rt5682: Add support for platform without + amplifier (jsc#PED-850). +- ASoC: Intel: sof_rt5682: add support for systems without i915 + audio (jsc#PED-850). +- ASoC: SOF: Intel: Compare sdw adr directly (jsc#PED-850). +- ASoC: SOF: add flag to disable IMR restore to sof_debug + (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: add IMR restore support + (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: add SSP helper (jsc#PED-850). +- ASoC: SOF: Intel: use inclusive language for SSP clocks + (jsc#PED-850). +- ASoC: SOF: add _D3_PERSISTENT flag to fw_ready message + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: add 512FS MCLK clock configuration + (jsc#PED-850). +- ASoC: amd: sof-mach: Add support for RT5682S and RT1019 card + (jsc#PED-850). +- ASoC: Intel: soc-acpi-byt: Add new WM5102 ACPI HID + (jsc#PED-850). +- ASoC: amd: vg: update acp init and deinit sequence + (jsc#PED-850). +- ASoC: amd: vg: apply sample bits pcm constraint (jsc#PED-850). +- ASoC: amd: vg: update platform clock control sequence + (jsc#PED-850). +- ASoC: amd: vangogh: refactor i2s master mode clock sequence code + (jsc#PED-850). +- ASoC: amd: acp: Set gpio_spkr_en to None for max speaker + amplifer in machine driver (jsc#PED-850). +- ASoC: amd: acp-mach: Fix Left and Right rt1019 amp devices + (jsc#PED-850). +- ASoC: amd: acp: acp-mach: Change default RT1019 amp dev id + (jsc#PED-850). +- ASoC: amd: acp: Power on/off the speaker enable gpio pin based + on DAPM callback (jsc#PED-850). +- ASoC: amd: acp: Remove duplicate dependency in Kconfig + (jsc#PED-850). +- commit 75e005d + +- ASoC: amd: acp-config: Update sof_tplg_filename for SOF machines + (jsc#PED-850). +- ASoC: amd: acp-config: Enable SOF audio for Google chrome boards + (jsc#PED-850). +- ASoC: AMD: fix depend/select mistake on SND_AMD_ACP_CONFIG + (jsc#PED-850). +- ASoC: amd: Convert to new style DAI format definitions + (jsc#PED-850). +- ASoC: AMD: acp-config: fix missing dependency on SND_SOC_ACPI + (jsc#PED-850). +- ASoC: amd: acp6x-pdm-dma: Constify static snd_soc_dai_ops + (jsc#PED-850). +- ASoC: amd: Fix dependency for SPI master (jsc#PED-850). +- ASoC: amd: acp-pcm-dma: add .delay support (jsc#PED-850). +- ASoC: amd: acp-config: Remove legacy acpi based machine struct + (jsc#PED-850). +- commit 17b7741 + +- soundwire: qcom: remove redundant version number read + (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Add support for external GPIO + jack-detect (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Support retrieving the codec IRQ + from the AMCR0F28 ACPI dev (jsc#PED-850). +- commit 3629d01 + +- ASoC: rt5640: Add support for boards with an external + jack-detect GPIO (jsc#PED-850). +- ASoC: rt5640: Allow snd_soc_component_set_jack() to override + the codec IRQ (jsc#PED-850). +- ASoC: rt5640: Change jack_work to a delayed_work (jsc#PED-850). +- ASoC: rt5640: Fix possible NULL pointer deref on resume + (jsc#PED-850). +- ASoC: rt5640: Fix the wrong state of the JD in the HDA header + (jsc#PED-850). +- ASoC: rt5640: Add the HDA header support (jsc#PED-850). +- ASoC: rt5640: Add the binding include file for the HDA header + support (jsc#PED-850). +- ASoC: codecs: Fix spelling mistake "Unsupport" -> "Unsupported" + (jsc#PED-850). +- commit 5e31cbb + +- soundwire: intel: remove PDM support (jsc#PED-850). +- soundwire: intel: remove unnecessary init (jsc#PED-850). +- ASoC: Intel/SOF: use set_stream() instead of set_tdm_slots() + for HDAudio (jsc#PED-850). +- ASoC/SoundWire: dai: expand 'stream' concept beyond SoundWire + (jsc#PED-850). +- soundwire: intel: improve suspend flows (jsc#PED-850). +- ASoC/soundwire: intel: simplify callbacks for params/hw_free + (jsc#PED-850). +- ASOC: SOF: Intel: use snd_soc_dai_get_widget() (jsc#PED-850). +- ASoC: SOF: Intel: hda: Use DEBUG log level for optional prints + (jsc#PED-850). +- ASoC: SOF: debug: Use DEBUG log level for optional prints + (jsc#PED-850). +- ASoC: SOF: Add clarifying comments for sof_core_debug and DSP + dump flags (jsc#PED-850). +- ASoC: SOF: Rename snd_sof_get_status() and add kernel log + level parameter (jsc#PED-850). +- ASoC: SOF: dsp_arch_ops: add kernel log level parameter for + oops and stack (jsc#PED-850). +- ASoC: SOF: ops: Always print DSP Panic message but use different + message (jsc#PED-850). +- ASoc: SOF: core: Update the FW boot state transition diagram + (jsc#PED-850). +- ASoC: SOF: pm: Force DSP off on suspend in BOOT_FAILED state + also (jsc#PED-850). +- ASoC: SOF: Set SOF_FW_BOOT_FAILED in case we have failure + during boot (jsc#PED-850). +- ASoC: SOF: ipc: Only allow sending of an IPC in + SOF_FW_BOOT_COMPLETE state (jsc#PED-850). +- ASoC: SOF: Rename 'enum snd_sof_fw_state' to 'enum sof_fw_state' + (jsc#PED-850). +- ASoC: SOF: Move the definition of enum snd_sof_fw_state to + global header (jsc#PED-850). +- ASoC: SOF: Introduce new firmware state: SOF_FW_BOOT_READY_OK + (jsc#PED-850). +- ASoC: SOF: Introduce new firmware state: SOF_FW_CRASHED + (jsc#PED-850). +- ASoC: SOF: Add a 'message' parameter to snd_sof_dsp_dbg_dump() + (jsc#PED-850). +- ASoC: SOF: Add 'non_recoverable' parameter to + snd_sof_dsp_panic() (jsc#PED-850). +- ASoC: SOF: Use sof_debug_check_flag() instead of sof_core_debug + directly (jsc#PED-850). +- ASoC: SOF: core: Add simple wrapper to check flags in + sof_core_debug (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: Avoid re-defining the + HDA_FW_BOOT_ATTEMPTS (jsc#PED-850). +- ASoC: SOF: ops: Use dev_warn() if the panic offsets differ + (jsc#PED-850). +- ASoC: SOF: AMD: simplify return status handling (jsc#PED-850). +- ASoC: Intel: catpt: Streamline locals declaration for + PCM-functions (jsc#PED-850). +- ASoC: Intel: catpt: Reduce size of catpt_component_open() + (jsc#PED-850). +- ipc: debug: Add shared memory heap to memory scan (jsc#PED-850). +- ASoC: SOF: ipc: Add null pointer check for substream->runtime + (jsc#PED-850). +- ASoC: SOF: avoid casting "const" attribute away (jsc#PED-850). +- ASoC: SOF: Intel: hda: remove support for RESUME in platform + trigger (jsc#PED-850). +- ASoC: SOF: Intel: hda: remove support for RESUME trigger + (jsc#PED-850). +- ASoC: SOF: pcm: remove support for RESUME trigger (jsc#PED-850). +- commit 3f0d25e + +- ASoC: SOF: Kconfig: Make the SOF_DEVELOPER_SUPPORT depend on + SND_SOC_SOF (jsc#PED-850). +- ASoC: SOF: topology: read back control data from DSP + (jsc#PED-850). +- ASoC: SOF: Drop ctrl_type parameter for + snd_sof_ipc_set_get_comp_data() (jsc#PED-850). +- ASoC: SOF: control: Do not handle control notification with + component type (jsc#PED-850). +- ASoC: SOF: sof-audio: Drop the `cmd` member from struct + snd_sof_control (jsc#PED-850). +- ASoC: SOF: Drop ctrl_cmd parameter for + snd_sof_ipc_set_get_comp_data() (jsc#PED-850). +- ASoC: SOF: topology: Set control_data->cmd alongside + scontrol->cmd (jsc#PED-850). +- ASoC: SOF: Drop ipc_cmd parameter for + snd_sof_ipc_set_get_comp_data() (jsc#PED-850). +- ASoC: SOF: ipc: Rename send parameter in + snd_sof_ipc_set_get_comp_data() (jsc#PED-850). +- ASoC: SOF: OF: Avoid reverse module dependency (jsc#PED-850). +- ASoC: SOF: sof-probes: Constify sof_probe_compr_ops + (jsc#PED-850). +- ASoC: SOF: Remove pm_runtime_put_autosuspend() for SOF OF device + (jsc#PED-850). +- ASoC: SOF: Intel: add comment on JasperLake support + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: remove unused fields (jsc#PED-850). +- ASoC: SOF: Intel: hda: add quirks for HDAudio DMA position + information (jsc#PED-850). +- ASoC: SOF: hda-stream: only enable DPIB if needed (jsc#PED-850). +- ASoC: SOF: Intel: hda-ctrl: apply symmetry for DPIB + (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: limit PROCEN workaround + (jsc#PED-850). +- ASoC: SOF: Intel: ICL: move ICL-specific ops to icl.c + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Move rt1015 speaker amp to common file + (jsc#PED-850). +- commit 1dca21d + +- ASoC: Intel: boards: add 'static' qualifiers for max98390 routes + (jsc#PED-850). +- ASoC: SOF: Intel: fix build issue related to CODEC_PROBE_ENTRIES + (jsc#PED-850). +- ASoC: Intel: boards: add max98390 2/4 speakers support + (jsc#PED-850). +- ASoC: intel: boards: bytcht*: Constify static snd_soc_ops + (jsc#PED-850). +- ASoC: Intel: hda_dsp_common: don't multiline PCM topology + warning (jsc#PED-850). +- ASoC: intel: sst-mfld-platform-pcm: add .delay support + (jsc#PED-850). +- ASoC: soc-component: add snd_soc_pcm_component_delay() + (jsc#PED-850). +- ASoC: soc-dai: update snd_soc_dai_delay() to + snd_soc_pcm_dai_delay() (jsc#PED-850). +- ASoC: SOF: Intel: hda: send DAI_CONFIG IPC during pause + (jsc#PED-850). +- ASoC: SOF: IPC: dai: Expand DAI_CONFIG IPC flags (jsc#PED-850). +- ASoC: SOF: align the hw_free sequence with stop (jsc#PED-850). +- ASoC: SOF: pcm: move the check for prepared flag (jsc#PED-850). +- ASoC: SOF: Add a helper for freeing PCM stream (jsc#PED-850). +- ASoC: SOF: call platform hw_free for paused streams during + suspend (jsc#PED-850). +- ASoC: SOF: pcm: invoke platform hw_free for STOP/SUSPEND + triggers (jsc#PED-850). +- ASoC: SOF: Intel: hda: reset stream before coupling host and + link DMA's (jsc#PED-850). +- ASoC: SOF: Intel: hda: Add a helper function for stream reset + (jsc#PED-850). +- ASoC: SOF: Intel: hda: clear stream before freeing the DAI + widget (jsc#PED-850). +- ASoC: SOF: mediatek: Use %pR/%pa to print resources/physical + addresses (jsc#PED-850). +- ASoC: SOF: mediatek: Add missing of_node_put() in + platform_parse_resource() (jsc#PED-850). +- ASoC: SOF: Intel: add .ack support for HDaudio platforms + (jsc#PED-850). +- ASoC: SOF: pcm: add .ack callback support (jsc#PED-850). +- ALSA: pcm: introduce INFO_NO_REWINDS flag (jsc#PED-850). +- ALSA: pcm: unconditionally check if appl_ptr is in 0..boundary + range (jsc#PED-850). +- ASoC: soc-component: add snd_soc_component_is_codec() + (jsc#PED-850). +- commit 157062a + +- ASoC: SOF: handle paused streams during system suspend + (jsc#PED-850). +- ASoC: SOF: topology: don't use list_for_each_entry_reverse() + (jsc#PED-850). +- ASoC: SOF: sof-audio: setup sched widgets during pipeline + complete step (jsc#PED-850). +- ASoC: SOF: imx8m: Implement reset callback (jsc#PED-850). +- ASoC: SOF: imx8m: Implement DSP start (jsc#PED-850). +- ASoC: SOF: imx8m: Add runtime PM / System PM support + (jsc#PED-850). +- ASoC: SOF: imx8: Add runtime PM / System PM support + (jsc#PED-850). +- ASoC: SOF: imx: Add code to manage DSP related clocks + (jsc#PED-850). +- ASoC: SOF: Intel: hda: free DAI widget during stop and suspend + (jsc#PED-850). +- ASoC: SOF: add support for dynamic pipelines with multi-core + (jsc#PED-850). +- ASoC: SOF: hda: don't use the core op for power up/power down + (jsc#PED-850). +- ASoC: SOF: free widgets in sof_tear_down_pipelines() for static + pipelines (jsc#PED-850). +- ASoC: SOF: topology: remove sof_load_pipeline_ipc() + (jsc#PED-850). +- ASoC: SOF: Intel: CNL/ICL/APL: set core_get/core_put ops + (jsc#PED-850). +- ASoC: SOF: Intel: TGL: set core_get/put ops (jsc#PED-850). +- ASoC: SOF: Add ops for core_get and core_put (jsc#PED-850). +- ASoC: SOF: Introduce num_cores and ref count per core + (jsc#PED-850). +- ASoC: SOF: Intel: hda: expose get_chip_info() (jsc#PED-850). +- ASoC: SOF: sof-pci-dev: use community key on all Up boards + (jsc#PED-850). +- ASoC: SOF: mediatek: Add DSP system PM callback for mt8195 + (jsc#PED-850). +- commit 513c226 + +- ASoC: SOF: topology: Add support for Mediatek AFE DAI + (jsc#PED-850). +- Refresh + patches.suse/ASoC-SOF-topology-remove-redundant-code.patch. +- commit dd56536 + +- ASoC: SOF: mediatek: Add mt8195 dsp clock support (jsc#PED-850). +- ASoC: SOF: mediatek: Add dai driver dsp ops callback for mt8195 + (jsc#PED-850). +- ASoC: SOF: Add mt8195 device descriptor (jsc#PED-850). +- ASoC: SOF: mediatek: Add fw loader and mt8195 dsp ops to load + firmware (jsc#PED-850). +- ASoC: SOF: tokens: add token for Mediatek AFE (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8195 hardware support (jsc#PED-850). +- ASoC: SOF: amd: Add support for SOF firmware authentication + (jsc#PED-850). +- ASoC: SOF: amd: Add trace logger support (jsc#PED-850). +- ASoC: SOF: topology: Add support for AMD ACP DAIs (jsc#PED-850). +- ASoC: SOF: amd: Add Renoir PCI driver interface (jsc#PED-850). +- ASoC: amd: Add module to determine ACP configuration + (jsc#PED-850). +- commit 69a6968 + +- Update config files: update AMD ACP configs (jsc#PED-850) +- commit e5979cc + +- ASoC: amd: fix uninitialized variable in snd_acp6x_probe() + (jsc#PED-850). +- ASoC: amd: acp: select CONFIG_SND_SOC_ACPI (jsc#PED-850). +- ASoC: fix unmet dependencies on GPIOLIB for SND_SOC_DMIC + (jsc#PED-850). +- ASoC: amd: acp: fix Kconfig dependencies (jsc#PED-850). +- ASoC: nau8825: add clock management for power saving + (jsc#PED-850). +- ASoC: nau8825: add set_jack coponment support (jsc#PED-850). +- ASoC: nau8821: fix kernel-doc (jsc#PED-850). +- ASoC: amd: acp: Fix return value check in acp_machine_select() + (jsc#PED-850). +- ASoC: amd: acp: SND_SOC_AMD_ACP_COMMON should depend on X86 && + PCI (jsc#PED-850). +- ASoC: amd: acp: SND_SOC_AMD_{LEGACY_MACH,SOF_MACH} should + depend on X86 && PCI && I2C (jsc#PED-850). +- ASoC: amd: acp: Wrap AMD Audio ACP components in + SND_SOC_AMD_ACP_COMMON (jsc#PED-850). +- ASoC: amd: acp: Add acp_machine struct for renoir platform + (jsc#PED-850). +- ASoC: amd: acp: Add support for RT5682-VS codec (jsc#PED-850). +- ASoC: amd: acp: Add support for Maxim amplifier codec + (jsc#PED-850). +- ASoC: amd: acp: Add SOF audio support on Chrome board + (jsc#PED-850). +- ASoC: amd: acp: Add legacy sound card support for Chrome audio + (jsc#PED-850). +- ASoC: amd: acp: Add generic machine driver support for ACP cards + (jsc#PED-850). +- ASoC: amd: acp: Add callback for machine driver on ACP + (jsc#PED-850). +- ASoC: amd: acp: Add I2S support on Renoir platform + (jsc#PED-850). +- ASoC: amd: Add common framework to support I2S on ACP SOC + (jsc#PED-850). +- ASoC: amd: enable Yellow Carp platform machine driver build + (jsc#PED-850). +- ASoC: amd: add YC machine driver using dmic (jsc#PED-850). +- ASoC: amd: create platform device for acp6x machine driver + (jsc#PED-850). +- ASoC: amd: enable Yellow carp acp6x drivers build (jsc#PED-850). +- ASoC: amd: add acp6x pdm driver pm ops (jsc#PED-850). +- ASoC: amd: add acp6x pci driver pm ops (jsc#PED-850). +- ASoC: amd: add acp6x pdm driver dma ops (jsc#PED-850). +- ASoC: amd: add acp6x irq handler (jsc#PED-850). +- ASoC: amd: add acp6x pdm platform driver (jsc#PED-850). +- ASoC: amd: add platform devices for acp6x pdm driver and dmic + driver (jsc#PED-850). +- ASoC: amd: add acp6x init/de-init functions (jsc#PED-850). +- ASoC: amd: add Yellow Carp ACP PCI driver (jsc#PED-850). +- ASoC: amd: add Yellow Carp ACP6x IP register header + (jsc#PED-850). +- ASoC: amd: enable vangogh platform machine driver build + (jsc#PED-850). +- ASoC: amd: add vangogh machine driver (jsc#PED-850). +- ASoc: amd: create platform device for VG machine driver + (jsc#PED-850). +- ASoC: amd: vangogh: constify static struct snd_soc_dai_ops + (jsc#PED-850). +- ASoC: amd: Kconfig: Select fch clock support with machine driver + (jsc#PED-850). +- ASoC: amd: acp-rt5645: Constify static snd_soc_ops + (jsc#PED-850). +- ASoC: nau8824: Fix NAU8824_JACK_LOGIC define (jsc#PED-850). +- ASoC: nau8821: new driver (jsc#PED-850). +- ASoC: amd: acp: declare and add prefix to 'bt_uart_enable' + symbol (jsc#PED-850). +- commit 9624970 + +- Update config files: Drop unused SOF for arm, updates for NAU8825 and AMD (jsc#PED-850) +- commit 31abee1 + +- ASoC: SOF: amd: Add machine driver dsp ops for Renoir platform + (jsc#PED-850). +- ASoC: SOF: amd: Add PCM stream callback for Renoir dai's + (jsc#PED-850). +- ASoC: SOF: amd: Add dai driver dsp ops callback for Renoir + (jsc#PED-850). +- ASoC: SOF: amd: Add IPC support for ACP IP block (jsc#PED-850). +- ASoC: SOF: amd: Add fw loader and renoir dsp ops to load + firmware (jsc#PED-850). +- ASoC: SOF: amd: Add helper callbacks for ACP's DMA configuration + (jsc#PED-850). +- ASoC: SOF: amd: Add Renoir ACP HW support (jsc#PED-850). +- ASoC: SOF: debug: Add support for IPC message injection + (jsc#PED-850). +- ASoC: SOF: intel: Use the generic helper to get the reply + (jsc#PED-850). +- ASoC: SOF: imx: Use the generic helper to get the reply + (jsc#PED-850). +- commit a9ab47f + +- ALSA: Replace acpi_bus_get_device() (jsc#PED-850). +- ALSA: hda: intel-dsp-config: reorder the config table + (jsc#PED-850). +- ALSA: hda: intel-dsp-config: add JasperLake support + (jsc#PED-850). +- ASoC: SOF: utils: Add generic function to get the reply for + a tx message (jsc#PED-850). +- ASoC: SOF: i.MX: simplify Kconfig (jsc#PED-850). +- ASoC: SOF: core: Unregister machine driver before IPC and + debugfs (jsc#PED-850). +- ASoC: Intel: add sof-nau8825 machine driver (jsc#PED-850). +- ASoC: intel: sof_sdw: add link adr order check (jsc#PED-850). +- ASoC: intel: sof_sdw: remove get_next_be_id (jsc#PED-850). +- ASoC: intel: sof_sdw: remove sof_sdw_mic_codec_mockup_init + (jsc#PED-850). +- ASoC: intel: sof_sdw: remove SOF_RT715_DAI_ID_FIX quirk + (jsc#PED-850). +- ASoC: intel: sof_sdw: move DMIC link id overwrite to + create_sdw_dailink (jsc#PED-850). +- ASoC: intel: sof_sdw: Use a fixed DAI link id for AMP + (jsc#PED-850). +- ASoC: intel: sof_sdw: rename be_index/link_id to link_index + (jsc#PED-850). +- ASoC: Intel: sof_sdw: add SKU for Dell Latitude 9520 + (jsc#PED-850). +- ASoC: intel: sof_sdw: return the original error number + (jsc#PED-850). +- ASoC: SOF: trace: send DMA_TRACE_FREE IPC during release + (jsc#PED-850). +- ASoC: SOF: IPC: update ipc_log_header() (jsc#PED-850). +- ASoC: SOF: IPC: Add new IPC command to free trace DMA + (jsc#PED-850). +- ALSA/ASoC: hda: move/rename snd_hdac_ext_stop_streams to + hdac_stream.c (jsc#PED-850). +- ASoC: Intel: Skylake: Use NHLT API to search for blob + (jsc#PED-850). +- ALSA: hda: Simplify DMIC-in-NHLT check (jsc#PED-850). +- ALSA: hda: Fill gaps in NHLT endpoint-interface (jsc#PED-850). +- soundwire: intel: Use auxiliary_device driver data helpers + (jsc#PED-850). +- commit df611ff + +- ASoC: SOF: Intel: Retry codec probing if it fails (jsc#PED-850). +- ASoC: SOF: hda: reset DAI widget before reconfiguring it + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add entry for ESSX8336 on CML + (jsc#PED-850). +- ASoC: SOF: build compression interface into snd_sof.ko + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B12 product + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add SKU 0B29 SoundWire configuration + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B29 product + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add SKU 0B13 SoundWire configuration + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B13 product + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B11 product + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B00 and 0B01 products + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add SKU 0AF3 SoundWire configuration + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0AF3 product + (jsc#PED-850). +- ASoC: SOF:control: Fix variable type in + snd_sof_refresh_control() (jsc#PED-850). +- soundwire: qcom: add debugfs entry for soundwire register dump + (jsc#PED-850). +- ASoC: Intel: soc-acpi: use const for all uses of + snd_soc_acpi_codecs (jsc#PED-850). +- ASoC: Intel: soc-acpi-cht: shrink tables using compatible IDs + (jsc#PED-850). +- ASoC: Intel: soc-acpi-byt: shrink tables using compatible IDs + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: use comp_ids to enumerate rt5682s + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: detect codec variant in probe function + (jsc#PED-850). +- ASoC: soc-acpi: add comp_ids field for machine driver matching + (jsc#PED-850). +- ASoC: Intel: glk_rt5682_max98357a: support ALC5682I-VS codec + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add entry for ESSX8336 on JSL + (jsc#PED-850). +- ASoC: fix unmet dependency on GPIOLIB for SND_SOC_MAX98357A + (jsc#PED-850). +- ASoC: Intel: bytcr_rt5651: Utilize dev_err_probe() to avoid + log saturation (jsc#PED-850). +- ASoC: Intel: bytcr_rt5651: use devm_clk_get_optional() for mclk + (jsc#PED-850). +- ASoC: Intel: bytcr_rt5651: Use temporary variable for struct + device (jsc#PED-850). +- ASoC: Intel: bytcr_rt5651: Get platform data via + dev_get_platdata() (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Utilize dev_err_probe() to avoid + log saturation (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: use devm_clk_get_optional() for mclk + (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Use temporary variable for struct + device (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Get platform data via + dev_get_platdata() (jsc#PED-850). +- ASoC: SOF: prepare code to allocate IPC messages in fw_ready + (jsc#PED-850). +- ASoC: SOF: Introduce fragment elapsed notification API + (jsc#PED-850). +- commit a990efc + +- ASoC: SOF: imx: Use newly introduced generic IPC stream ops + (jsc#PED-850). +- ASoC: SOF: Make Intel IPC stream ops generic (jsc#PED-850). +- ASoC: SOF: Introduce snd_sof_mailbox_read / + snd_sof_mailbox_write callbacks (jsc#PED-850). +- ASoC: SOF: Intel: hda: Dump registers and stack when + SOF_DBG_DUMP_REGS is set (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: Drop SOF_DBG_DUMP_REGS flag from + dbg_dump calls (jsc#PED-850). +- ASoC: SOF: loader: Drop SOF_DBG_DUMP_REGS flag when firmware + start fails (jsc#PED-850). +- ASoC: SOF: core: Clean up snd_sof_get_status() prints + (jsc#PED-850). +- ASoC: SOF: intel: hda: Drop 'error' prefix from error dump + functions (jsc#PED-850). +- ASoC: SOF: Introduce macro to set the firmware state + (jsc#PED-850). +- ASoC: SOF: ops: Force DSP panic dumps to be printed + (jsc#PED-850). +- ASoC: SOF: ipc: Re-enable dumps after successful IPC tx + (jsc#PED-850). +- ASoC: SOF: debug: Print out the fw_state along with the DSP dump + (jsc#PED-850). +- ASoC: SOF: Drop SOF_DBG_DUMP_FORCE_ERR_LEVEL and + sof_dev_dbg_or_err (jsc#PED-850). +- ASoC: SOF: intel: hda-loader: Use snd_sof_dsp_dbg_dump() + for DSP dump (jsc#PED-850). +- ASoC: SOF: debug: Add SOF_DBG_DUMP_OPTIONAL flag for DSP dumping + (jsc#PED-850). +- ASoC: SOF: debug/ops: Move the IPC and DSP dump functions out + from the header (jsc#PED-850). +- ASoC: SOF: intel: atom: No need to do a DSP dump in atom_run() + (jsc#PED-850). +- ASoC: SOF: loader: Print the DSP dump if boot fails + (jsc#PED-850). +- ASoC: SOF: Print the dbg_dump and ipc_dump once to reduce + kernel log noise (jsc#PED-850). +- ASoC: SOF: ipc and dsp dump: Add markers for better visibility + (jsc#PED-850). +- commit 5397d18 + +- Update config files: enabled for SOF es8336 and rt5682s (jsc#PED-850) +- commit 9447c50 + +- ASoC: SOF: debug: Swap the dsp_dump and ipc_dump sequence for + fw_exception (jsc#PED-850). +- ASoC: SOF: core: debug: force all processing on primary core + (jsc#PED-850). +- ASoC: SOF: pipelines: Harmonize all functions to use struct + snd_sof_dev (jsc#PED-850). +- ASoC: Intel: add machine driver for SOF+ES8336 (jsc#PED-850). +- ASoC: Intel: soc-acpi: apl/glk/tgl: add entry for devices + based on ES8336 codec (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: improve SSP DAI handling for dynamic + pipelines (jsc#PED-850). +- ASoC: SOF: Intel: hda: add new flags for DAI_CONFIG + (jsc#PED-850). +- ASoC: SOF: dai: include new flags for DAI_CONFIG (jsc#PED-850). +- ASoC: SOF: dai: mirror group_id definition added in firmware + (jsc#PED-850). +- ASoC: SOF: topology: return error if sof_connect_dai_widget() + fails (jsc#PED-850). +- ASoC: SOF: topology: allow for dynamic pipelines override for + debug (jsc#PED-850). +- ASoC: SOF: topology: show clks_control value in dynamic debug + (jsc#PED-850). +- commit 9734d36 + +- ASoC: SOF: OF: Add fw_path and tplg_path parameters + (jsc#PED-850). +- ASoC: Intel: cht_bsw_nau8824: Set card.components string + (jsc#PED-850). +- ASoC: nau8824: Add a nau8824_components() helper (jsc#PED-850). +- ASoC: SOF: topology: Add kernel parameter for topology + verification (jsc#PED-850). +- ASoC: SOF: Add support for dynamic pipelines (jsc#PED-850). +- ASoC: SOF: Intel: hda: make sure DAI widget is set up before + IPC (jsc#PED-850). +- ASoC: SOF: Introduce widget use_count (jsc#PED-850). +- ASoC: SOF: Don't set up widgets during topology parsing + (jsc#PED-850). +- ASoC: SOF: restore kcontrols for widget during set up + (jsc#PED-850). +- ASoC: SOF: Add new fields to snd_sof_route (jsc#PED-850). +- AsoC: dapm: export a couple of functions (jsc#PED-850). +- ASoC: SOF: sof-audio: add helpers for widgets, kcontrols and + dai config set up (jsc#PED-850). +- ASoC: SOF: topology: Add new token for dynamic pipeline + (jsc#PED-850). +- ASoC: SOF: control: Add access field in struct snd_sof_control + (jsc#PED-850). +- ASoC: topology: change the complete op in snd_soc_tplg_ops to + return int (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Add support for max98360a speaker amp + (jsc#PED-850). +- ASoC: SOF: Change SND_SOC_SOF_TOPLEVEL from config to menuconfig + (jsc#PED-850). +- ASoC: intel: sof_rt5682: update platform device name for Maxim + amplifier (jsc#PED-850). +- ASoC: SOF: ipc: Make the error prints consistent in + tx_wait_done() (jsc#PED-850). +- ASoC: SOF: prefix some terse and cryptic dev_dbg() with __func__ + (jsc#PED-850). +- ASoC: SOF: add error handling to snd_sof_ipc_msg_data() + (jsc#PED-850). +- ASoC: SOF: imx: add header file for ops (jsc#PED-850). +- ASoC: SOF: pm: fix a stale comment (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: Print stream name on + STREAM_SD_OFFSET timeout (jsc#PED-850). +- ASoC: Intel: boards: Update to modern clocking terminology + (jsc#PED-850). +- ASoC: SOF: Remove struct sof_ops_table and sof_get_ops() macro + (jsc#PED-850). +- ASoC: SOF: ipc: Print 0x prefix for errors in + ipc_trace/stream_message() (jsc#PED-850). +- ASoC: SOF: ipc: Clarify the parameter name for + ipc_trace_message() (jsc#PED-850). +- ASoC: SOF: Rename sof_arch_ops to dsp_arch_ops (jsc#PED-850). +- ASoC: SOF: ipc: Remove redundant error check from + sof_ipc_tx_message_unlocked (jsc#PED-850). +- ASoC: SOF: sof-probes: Correct the function names used for + snd_soc_cdai_ops (jsc#PED-850). +- ASoC: SOF: Intel: Rename hda-compress.c to hda-probes.c + (jsc#PED-850). +- commit 6acbd79 + +- ASoC: SOF: probe: Merge and clean up the probe and compress + files (jsc#PED-850). +- ASoC: SOF: compress: move and export sof_probe_compr_ops + (jsc#PED-850). +- ASoC: SOF: pcm: Remove non existent CONFIG_SND_SOC_SOF_COMPRESS + reference (jsc#PED-850). +- ASoC: SOF: ipc: Add probe message logging to ipc_log_header() + (jsc#PED-850). +- ASoC: SOF: imx8m: add SAI1 info (jsc#PED-850). +- ASoC: SOF: core: Move probe work related code under a single if + () branch (jsc#PED-850). +- ASoC: SOF: debug: No need to export the + snd_sof_debugfs_io_item() (jsc#PED-850). +- ASoC: SOF: loader: Use the generic ops for region debugfs + handling (jsc#PED-850). +- ASoC: SOF: Intel: Provide debugfs_add_region_item ops for core + (jsc#PED-850). +- ASoC: SOF: imx: Provide debugfs_add_region_item ops for core + (jsc#PED-850). +- ASoC: SOF: debug: Add generic API and ops for DSP regions + (jsc#PED-850). +- ASoC: SOF: core: Do not use 'bar' as parameter for + block_read/write (jsc#PED-850). +- ASoC: SOF: loader: No need to export snd_sof_fw_parse_ext_data() + (jsc#PED-850). +- ASoC: SOF: imx: Do not initialize the snd_sof_dsp_ops.read64 + (jsc#PED-850). +- ASoC: SOF: ipc: Remove snd_sof_dsp_mailbox_init() (jsc#PED-850). +- ASoC: SOF: Intel: bdw: Set the mailbox offset directly in + bdw_probe (jsc#PED-850). +- ASoC: SOF: intel: Do no initialize resindex_dma_base + (jsc#PED-850). +- ASoC: SOF: Intel: hda: Relocate inline definitions from hda.h + to hda.c for sdw (jsc#PED-850). +- ASoC: SOF: Intel: hda: Remove boot_firmware skl and iccmax_icl + declarations (jsc#PED-850). +- ASoC: SOF: Intel: hda-dsp: Declare locally used functions as + static (jsc#PED-850). +- ASoC: intel: sof_rt5682: support jsl_rt5682s_mx98360a board + (jsc#PED-850). +- ASoC: intel: sof_rt5682: support jsl_rt5682s_rt1015 board + (jsc#PED-850). +- ASoC: intel: sof_rt5682: support jsl_rt5682s_rt1015p board + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: support ALC5682I-VS codec + (jsc#PED-850). +- ASoC: SOF: loader: load_firmware callback is mandatory, treat + it like that (jsc#PED-850). +- ASoC: SOF: Handle control change notification from firmware + (jsc#PED-850). +- ASoC: SOF: control: fix a typo in put operations for kcontrol + (jsc#PED-850). +- ASoC: rt5682s: Add driver for ALC5682I-VS codec (jsc#PED-850). +- ASoC: SOF: core: allow module parameter to override dma trace + Kconfig (jsc#PED-850). +- ASoC: Intel: Move soc_intel_is_foo() helpers to a generic header + (jsc#PED-850). +- commit bb7be03 + +- xfs: convert XLOG_FORCED_SHUTDOWN() to xlog_is_shutdown() + (git-fixes). +- commit ab97572 + +- xfs: fix xfs_ifree() error handling to not leak perag ref + (git-fixes). +- commit 2b17a84 + +- s390/cpumf: add new extended counter set for IBM z16 + (jsc#PED-606). +- commit 34faf97 + +- cifs: update internal module number (bsc#1193629). +- commit 4202154 + +- cifs: fix memory leaks in session setup (bsc#1193629). +- commit 5c729d0 + +- cifs: drop the lease for cached directories on rmdir or rename + (bsc#1193629). +- commit 46e0f22 + +- smb3: interface count displayed incorrectly (bsc#1193629). +- commit e073a89 + +- cifs: Fix memory leak when build ntlmssp negotiate blob failed + (bsc#1193629). +- commit 7afbdb6 + +- cifs: set rc to -ENOENT if we can not get a dentry for the + cached dir (bsc#1193629). +- commit 328e60a + +- cifs: use LIST_HEAD() and list_move() to simplify code + (bsc#1193629). +- commit e5c0c94 + +- cifs: Fix xid leak in cifs_get_file_info_unix() (bsc#1193629). +- commit a50e886 + +- cifs: Fix xid leak in cifs_ses_add_channel() (bsc#1193629). +- commit 45683eb + +- cifs: Fix xid leak in cifs_flock() (bsc#1193629). +- commit d234b14 + +- cifs: Fix xid leak in cifs_copy_file_range() (bsc#1193629). +- commit f56cd1f + +- cifs: Fix xid leak in cifs_create() (bsc#1193629). +- commit a1d5012 + +- smb3: improve SMB3 change notification support (bsc#1193629). +- commit 8a4313f + +- cifs: lease key is uninitialized in two additional functions + when smb1 (bsc#1193629). +- commit 181d702 + +- cifs: lease key is uninitialized in smb1 paths (bsc#1193629). +- commit 395fb1f + +- smb3: must initialize two ACL struct fields to zero + (bsc#1193629). +- commit 2dfd980 + +- cifs: fix double-fault crash during ntlmssp (bsc#1193629). +- commit 958d087 + +- cifs: fix static checker warning (bsc#1193629). +- commit 6695ea2 + +- cifs: use ALIGN() and round_up() macros (bsc#1193629). +- commit b4d4efd + +- cifs: find and use the dentry for cached non-root directories + also (bsc#1193629). +- commit 14482fe + +- cifs: enable caching of directories for which a lease is held + (bsc#1193629). +- commit cc4f4c4 + +- cifs: prevent copying past input buffer boundaries + (bsc#1193629). +- commit 9130844 + +- cifs: fix uninitialised var in smb2_compound_op() (bsc#1193629). +- commit bdc0943 + +- cifs: improve symlink handling for smb2+ (bsc#1193629). +- commit 0b6be9d + +- smb3: clarify multichannel warning (bsc#1193629). +- commit 96b1224 + +- cifs: fix skipping to incorrect offset in emit_cached_dirents + (bsc#1193629). +- commit 6750b0a + +- smb3: fix oops in calculating shash_setkey (bsc#1193629). +- commit fdb4064 + +- cifs: secmech: use shash_desc directly, remove sdesc + (bsc#1193629). +- commit d652300 + +- smb3: rename encryption/decryption TFMs (bsc#1193629). +- commit 074ff14 + +- cifs: replace kfree() with kfree_sensitive() for sensitive data + (bsc#1193629). +- commit a9c83e0 + +- cifs: remove initialization value (bsc#1193629). +- commit 650b157 + +- cifs: Replace a couple of one-element arrays with flexible-array + members (bsc#1193629). +- commit 2e6a4d1 + +- smb3: do not log confusing message when server returns no + network interfaces (bsc#1193629). +- commit fe343ed + +- cifs: store a pointer to a fid in the cfid structure instead + of the struct (bsc#1193629). +- commit 4bc719f + +- cifs: improve handlecaching (bsc#1193629). +- commit 460040b + +- cifs: Make tcon contain a wrapper structure cached_fids instead + of cached_fid (bsc#1193629). +- commit 999f1a7 + +- smb3: add dynamic trace points for tree disconnect + (bsc#1193629). +- commit c71b282 + +- Fix formatting of client smbdirect RDMA logging (bsc#1193629). +- commit bc2ae55 + +- Handle variable number of SGEs in client smbdirect send + (bsc#1193629). +- commit af0f632 + +- Reduce client smbdirect max receive segment size (bsc#1193629). +- commit e36b32c + +- Decrease the number of SMB3 smbdirect client SGEs (bsc#1193629). +- commit 1c625b9 + +- cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message + (bsc#1193629). +- commit 174687c + +- cifs: destage dirty pages before re-reading them for cache=none + (bsc#1193629). +- commit 9eab309 + +- cifs: return correct error in ->calc_signature() (bsc#1193629). +- commit 0ace108 + +- cifs: misc: fix spelling typo in comment (bsc#1193629). +- commit 0177a68 + +- cifs: update internal module number (bsc#1193629). +- commit a83e618 + +- cifs: add missing spinlock around tcon refcount (bsc#1193629). +- commit a915086 + +- cifs: always initialize struct msghdr smb_msg completely + (bsc#1193629). +- commit 7ba2dbe + +- cifs: don't send down the destination address to sendmsg for + a SOCK_STREAM (bsc#1193629). +- commit cc67d16 + +- cifs: revalidate mapping when doing direct writes (bsc#1193629). +- commit 3e6da03 + +- cifs: fix small mempool leak in SMB2_negotiate() (bsc#1193629). +- commit 9ad1214 + +- smb3: use filemap_write_and_wait_range instead of + filemap_write_and_wait (bsc#1193629). +- commit 569211d + +- smb3: fix temporary data corruption in insert range + (bsc#1193629). +- commit 4153b9f + +- smb3: fix temporary data corruption in collapse range + (bsc#1193629). +- commit e11095d + +- smb3: Move the flush out of smb2_copychunk_range() into its + callers (bsc#1193629). +- commit 7cc3491 + +- cifs: Add helper function to check smb1+ server (bsc#1193629). +- commit 8d3cf57 + +- cifs: Use help macro to get the mid header size (bsc#1193629). +- commit 56cfb79 + +- cifs: Use help macro to get the header preamble size + (bsc#1193629). +- commit a32d0c7 + +- cifs: skip extra NULL byte in filenames (bsc#1193629). +- commit 3c2966f + +- smb3: missing inode locks in punch hole (bsc#1193629). +- commit d5ef2ce + +- smb3: missing inode locks in zero range (bsc#1193629). +- commit 67739d5 + +- cifs: move from strlcpy with unused retval to strscpy + (bsc#1193629). +- commit 1545859 + +- cifs: Fix memory leak on the deferred close (bsc#1193629). +- commit 0e66dd6 + +- cifs: remove useless parameter 'is_fsctl' from SMB2_ioctl() + (bsc#1193629). +- commit e09b402 + +- cifs: remove unused server parameter from calc_smb_size() + (bsc#1193629). +- commit 3f30130 + +- cifs: Do not access tcon->cfids->cfid directly from + is_path_accessible (bsc#1193629). +- commit 7188f4f + +- cifs: Add constructor/destructors for tcon->cfid (bsc#1193629). +- commit 7eb31f4 + +- SMB3: fix lease break timeout when multiple deferred close + handles for the same file (bsc#1193629). +- commit 7267460 + +- smb3: allow deferred close timeout to be configurable + (bsc#1193629). +- commit 19f7caa + +- cifs: Do not use tcon->cfid directly, use the cfid we get from + open_cached_dir (bsc#1193629). +- commit 25de0c1 + +- cifs: Move cached-dir functions into a separate file + (bsc#1193629). +- commit fc0e55e + +- cifs: fix lock length calculation (bsc#1193629). +- commit 2661e11 + +- cifs: update internal module number (bsc#1193629). +- commit 53f5daf + +- cifs: alloc_mid function should be marked as static + (bsc#1193629). +- commit f066ea5 + +- cifs: remove "cifs_" prefix from init/destroy mids functions + (bsc#1193629). +- commit 21e261c + +- cifs: remove useless DeleteMidQEntry() (bsc#1193629). +- commit b684635 + +- cifs: when insecure legacy is disabled shrink amount of SMB1 + code (bsc#1193629). +- commit 96f98e3 + +- cifs: fix wrong unlock before return from cifs_tree_connect() + (bsc#1193629). +- commit ca24a6e + +- cifs: avoid use of global locks for high contention data + (bsc#1193629). +- commit 003b496 + +- cifs: remove remaining build warnings (bsc#1193629). +- commit 2a6d64f + +- cifs: list_for_each() -> list_for_each_entry() (bsc#1193629). +- commit 98f1884 + +- smb2: small refactor in smb2_check_message() (bsc#1193629). +- commit 2913774 + +- cifs: remove minor build warning (bsc#1193629). +- commit 9dd2f9e + +- cifs: remove some camelCase and also some static build warnings + (bsc#1193629). +- commit 7a903b5 + +- cifs: remove unnecessary (void*) conversions (bsc#1193629). +- commit 352182a + +- cifs: remove unnecessary type castings (bsc#1193629). +- commit e2ea7fd + +- cifs: remove redundant initialization to variable + mnt_sign_enabled (bsc#1193629). +- commit 8c39800 + +- smb3: check xattr value length earlier (bsc#1193629). +- commit 87cd516 + +- smb3: workaround negprot bug in some Samba servers + (bsc#1193629). +- commit 031af61 + +- cifs: remove unnecessary locking of chan_lock while freeing + session (bsc#1193629). +- commit 0303046 + +- cifs: fix race condition with delayed threads (bsc#1193629). +- commit 491d550 + +- cifs: update cifs_ses::ip_addr after failover (bsc#1193629). +- commit 9ed4aa9 + +- cifs: avoid deadlocks while updating iface (bsc#1193629). +- commit 3a5c612 + +- cifs: periodically query network interfaces from server + (bsc#1193629). +- commit dd3e063 + +- cifs: during reconnect, update interface if necessary + (bsc#1193629). +- commit 8dea5e1 + +- cifs: change iface_list from array to sorted linked list + (bsc#1193629). +- commit 1b05ccf + +- smb3: use netname when available on secondary channels + (bsc#1193629). +- commit 6d17daa + +- smb3: fix empty netname context on secondary channels + (bsc#1193629). +- commit 51fad96 + +- cifs: when a channel is not found for server, log its connection + id (bsc#1193629). +- commit 1b306b2 + +- smb3: add trace point for SMB2_set_eof (bsc#1193629). +- commit c6da1d3 + +- cifs: populate empty hostnames for extra channels (bsc#1193629). +- commit f2f92b2 + +- cifs: return errors during session setup during reconnects + (bsc#1193629). +- commit d557671 + +- smb3: remove unneeded null check in cifs_readdir (bsc#1193629). +- commit 7eaa3dc + +- cifs: cache the dirents for entries in a cached directory + (bsc#1193629). +- commit 0ddb648 + +- cifs: truncate the inode and mapping when we simulate fcollapse + (bsc#1193629). +- commit 3b07034 + +- blacklist.conf: Add reverted patch + d11219ad53dc amdgpu: disable powerpc support for the newer display engine + c653c591789b drm/amdgpu: Re-enable DCN for 64-bit powerpc +- commit 15ec992 + +- xfs: fix perag reference leak on iteration race with growfs + (git-fixes). +- commit fc22ca3 + +- SCSI: scsi_probe_lun: retry INQUIRY after timeout (bsc#1189297). +- commit 623bb84 + kernel-kvmsmall +- Refresh + patches.suse/xfs-move-recovery-needed-state-updates-to-xfs_log_mo.patch. + Fix following error in x86_64/debug build: + ../fs/xfs/xfs_log.c:781:19: error: implicit declaration of function 'XLOG_FORCED_SHUTDOWN'; did you mean 'XFS_FORCED_SHUTDOWN'? [-Werror=implicit-function-declaration] +- commit cafaa30 + +- NFSD: Cap rsize_bop result based on send buffer size + (bsc#1205128 CVE-2022-43945). +- NFSD: Protect against send buffer overflow in NFSv3 READ + (bsc#1205128 CVE-2022-43945). +- NFSD: Protect against send buffer overflow in NFSv2 READ + (bsc#1205128 CVE-2022-43945). +- NFSD: Protect against send buffer overflow in NFSv3 READDIR + (bsc#1205128 CVE-2022-43945). +- NFSD: Protect against send buffer overflow in NFSv2 READDIR + (bsc#1205128 CVE-2022-43945). +- SUNRPC: Fix svcxdr_init_encode's buflen calculation (bsc#1205128 + CVE-2022-43945). +- SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation + (bsc#1205128 CVE-2022-43945). +- commit dd4f720 + +- hyperv: simplify and rename generate_guest_id (bsc#1189965). +- drm/hyperv: Fix an error handling path in hyperv_vmbus_probe() (git-fixes). +- Drivers: hv: Create debugfs file with hyper-v balloon usage information (git-fixes). +- Drivers: hv: vm_bus: Handle vmbus rescind calls after vmbus is suspended (git-fixes). +- drm/hyperv-drm: Include framebuffer and EDID headers (git-fixes). +- drm/hyperv : Removing the restruction of VRAM allocation with PCI bar size (git-fixes). +- scsi: storvsc: Correct reporting of Hyper-V I/O size limits (git-fixes). +- HID: hyperv: Correctly access fields declared as __le16 (git-fixes). +- hv_balloon: Fix balloon_probe() and balloon_remove() error handling (git-fixes). +- Drivers: hv: vmbus: Refactor the ring-buffer iterator functions (git-fixes). +- Drivers: hv: vmbus: Rework use of DMA_BIT_MASK(64) (git-fixes). +- commit 8f5f32b + +- xfs: reserve quota for dir expansion when linking/unlinking + files (bsc#1205616). +- commit 1330e05 + +- dmaengine: idxd: Only call idxd_enable_system_pasid() if + succeeded in enabling SVA feature (jsc#PED-2681). +- commit 66991d9 + +- dmaengine: idxd: Do not enable user type Work Queue without + Shared Virtual Addressing (jsc#PED-2681). +- dmaengine: idxd: Separate user and kernel pasid enabling + (jsc#PED-2681). +- dmaengine: idxd: don't load pasid config until needed + (jsc#PED-2681). +- commit 65564cd + +- add another bug reference to some hyperv changes (bsc#1205617). +- commit 0b5e3d4 + +- net/smc: kABI workarounds for struct smc_sock (git-fixes). +- commit d9f52e8 + +- scsi: mpt3sas: re-do lost mpt3sas DMA mask fix (jsc#PED_1491). +- scsi: mpt3sas: Don't change DMA mask while reallocating pools + (jsc#PED_1491). +- commit 54e2dce + +- scsi: mpt3sas: Revert "scsi: mpt3sas: Fix ioc->base_readl() use" + (jsc#PED_1491). +- scsi: mpt3sas: Revert "scsi: mpt3sas: Fix writel() use" + (jsc#PED_1491). +- scsi: mpt3sas: Update driver version to 43.100.00.00 + (jsc#PED_1491). +- scsi: mpt3sas: Increase cmd_per_lun to 128 (jsc#PED_1491). +- scsi: mpt3sas: Fix trace buffer registration failed + (jsc#PED_1491). +- scsi: mpt3sas: Prevent error handler escalation when device + removed (jsc#PED_1491). +- scsi: mpt3sas: Disable MPI2_FUNCTION_FW_DOWNLOAD for ATTO + devices (jsc#PED_1491). +- scsi: mpt3sas: Add support for ATTO ExpressSAS H12xx GT devices + (jsc#PED_1491). +- scsi: mpt3sas: Remove flush_scheduled_work() call + (jsc#PED_1491). +- scsi: mpt3sas: Fix whitespace and spelling mistake + (jsc#PED_1491). +- scsi: mpt3sas: Fix typo in comment (jsc#PED_1491). +- scsi: mpt3sas: Fix out-of-bounds compiler warning + (jsc#PED_1491). +- scsi: mpt3sas: Update driver version to 42.100.00.00 + (jsc#PED_1491). +- scsi: mpt3sas: Fix junk chars displayed while printing ChipName + (jsc#PED_1491). +- scsi: mpt3sas: Fix adapter replyPostRegisterIndex declaration + (jsc#PED_1491). +- scsi: mpt3sas: Fix event callback log_code value handling + (jsc#PED_1491). +- scsi: mpt3sas: Fix ioc->base_readl() use (jsc#PED_1491). +- scsi: mpt3sas: Fix writel() use (jsc#PED_1491). +- scsi: mpt3sas: Fix _ctl_set_task_mid() TaskMID check + (jsc#PED_1491). +- scsi: mpt3sas: Fail reset operation if config request timed out + (jsc#PED_1491). +- scsi: mpt3sas: Fix mpt3sas_check_same_4gb_region() kdoc comment + (jsc#PED_1491). +- scsi: mpt3sas: Remove scsi_dma_map() error messages + (jsc#PED_1491). +- scsi: mpt3sas: Convert to flexible arrays (jsc#PED_1491). +- scsi: mpt3sas: Update persistent trigger pages from sysfs + interface (jsc#PED_1491). +- scsi: mpt3sas: Use irq_set_affinity_and_hint() (jsc#PED_1491). +- scsi: mpt3sas: Make mpt3sas_dev_attrs static (jsc#PED_1491). +- commit dde21ab + +- scsi: smartpqi: Update version to 2.1.18-045 (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Update copyright to current year (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add ctrl ready timeout module parameter + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Update deleting a LUN via sysfs (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix RAID map race condition (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Stop logging spurious PQI reset failures + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add PCI IDs for Lenovo controllers + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add PCI ID for Adaptec SmartHBA 2100-8i + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix PCI control linkdown system hang + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add driver support for multi-LUN devices + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Close write read holes (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add PCI IDs for ramaxel controllers + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Add controller fw version to console log + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix typo in comment (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Stop using the SCSI pointer (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix unused variable pqi_pm_ops for clang + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Update version to 2.1.14-035 (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix lsscsi -t SAS addresses (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix hibernate and suspend (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix BUILD_BUG_ON() statements (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix NUMA node not updated during init + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Expose SAS address for SATA drives + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Speed up RAID 10 sequential reads + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix kdump issue when controller is locked up + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Update volume size after expansion + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Avoid drive spin-down during suspend + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Resolve delay issue with PQI_HZ value + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix a typo in func pqi_aio_submit_io() + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix a name typo and cleanup code (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Quickly propagate path failures to SCSI midlayer + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Eliminate drive spin down on warm boot + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Enable SATA NCQ priority in sysfs + (jsc#PED-1557, bsc#1201855). +- scsi: smartpqi: Fix rmmod stack trace (jsc#PED-1557, bsc#1201855). +- commit 0ad94d4 + +- Refresh + patches.suse/scsi-qedf-Populate-sysfs-attributes-for-vport.patch. +- commit 4269315 + +- scsi: megaraid_sas: Use struct_size() in code related to struct + MR_PD_CFG_SEQ_NUM_SYNC (jsc#PED-1490). +- scsi: megaraid_sas: Replace one-element array with + flexible-array member in MR_PD_CFG_SEQ_NUM_SYNC (jsc#PED-1490). +- scsi: megaraid_sas: Replace one-element array with + flexible-array member in MR_DRV_RAID_MAP (jsc#PED-1490). +- scsi: megaraid_sas: Replace one-element array with + flexible-array member in MR_FW_RAID_MAP_DYNAMIC (jsc#PED-1490). +- commit 0683c19 + +- scsi: megaraid: Convert sysfs snprintf() to sysfs_emit() + (jsc#PED-1490). +- scsi: megaraid_sas: Use struct_size() in code related to struct + MR_FW_RAID_MAP (jsc#PED-1490). +- scsi: megaraid_sas: Replace one-element array with + flexible-array member in MR_FW_RAID_MAP (jsc#PED-1490). +- scsi: megaraid: Remove redundant assignment to variable + mfiStatus (jsc#PED-1490). +- commit c25a799 + +- scsi: megaraid_sas: Remove unnecessary kfree() (jsc#PED-1490). +- scsi: megaraid_sas: Fix double kfree() (jsc#PED-1490). +- scsi: megaraid_sas: Remove redundant variable cmd_type + (jsc#PED-1490). +- scsi: megaraid: Remove the static variable initialisation + (jsc#PED-1490). +- scsi: megaraid_sas: Clean up some inconsistent indenting + (jsc#PED-1490). +- scsi: megaraid_sas: Remove redundant memset() statement + (jsc#PED-1490). +- scsi: megaraid_sas: Remove unnecessary memset (jsc#PED-1490). +- scsi: megaraid_sas: Target with invalid LUN ID is deleted + during scan (jsc#PED-1490). +- scsi: megasas: Clean up some inconsistent indenting + (jsc#PED-1490). +- scsi: megasas: Stop using the SCSI pointer (jsc#PED-1490). +- scsi: megaraid: Fix a kernel-doc warning (jsc#PED-1490). +- scsi: megaraid_sas: Use irq_set_affinity_and_hint() + (jsc#PED-1490). +- commit d8c27e2 + +- scsi: hpsa: Simplify {clear|set}_bit() parameters + (jsc#PED-1558). +- scsi: hpsa: Use the bitmap API to allocate bitmaps + (jsc#PED-1558). +- scsi: hpsa: Remove an unused variable in + hpsa_update_scsi_devices() (jsc#PED-1558). +- commit 7a7e8b5 + +- PM: runtime: Redefine pm_runtime_release_supplier() (git-fixes). +- commit 53e36dd + +- efi: x86: Set the NX-compatibility flag in the PE header + (bsc#1205588). +- commit 05aa191 + +- blacklist.conf: kABI +- commit f550bb4 + +- tracing: kprobe: Fix potential null-ptr-deref on trace_array + in kprobe_event_gen_test_exit() (git-fixes). +- commit dc34c13 + +- tracing: kprobe: Fix potential null-ptr-deref on + trace_event_file in kprobe_event_gen_test_exit() (git-fixes). +- commit 23caa81 + +- tracing: Fix wild-memory-access in register_synth_event() + (git-fixes). +- commit 9bbef30 + +- tracing: Fix memory leak in test_gen_synth_cmd() and + test_empty_synth_event() (git-fixes). +- commit 68dace2 + +- ftrace: Fix null pointer dereference in ftrace_add_mod() + (git-fixes). +- commit 2e9b117 + +- ring_buffer: Do not deactivate non-existant pages (git-fixes). +- commit 0458d7a + +- ftrace: Optimize the allocation for mcount entries (git-fixes). +- commit 5b2b25a + +- ftrace: Fix the possible incorrect kernel message (git-fixes). +- commit 7323c8c + +- tracing: Fix memory leak in tracing_read_pipe() (git-fixes). +- commit 690c08a + +- net/smc: kABI workarounds for struct smc_link (git-fixes). +- commit 0cbe94a + +- ring-buffer: Include dropped pages in counting dirty patches + (git-fixes). +- commit 11920bc + +- blacklist.conf: duplicate +- commit ddd82f9 + +- powerpc/kvm: Fix kvm_use_magic_page (bsc#1156395). +- Refresh patches.suse/gup-Turn-fault_in_pages_-readable-writeable-into-fault_in_-readable-writeable.patch. +- commit aec526a + +- x86/fpu: Include vmalloc.h for vzalloc() (git-fixes). +- blacklist.conf: revert blacklisting of 868c250bb463 +- commit 34cf832 + +- blacklist.conf: duplicate +- commit dcdcbbd + +- tcp: make tcp_read_sock() more robust (jsc#PED-1368). +- bpf, sockmap: Do not ignore orig_len parameter (jsc#PED-1368). +- bpf: Add schedule points in batch ops (jsc#PED-1368). +- commit 1d3696a + +- MIPS: Loongson: Use hwmon_device_register_with_groups() to + register hwmon (git-fixes). +- commit 16f21a3 + +- tracing/ring-buffer: Have polling block on watermark + (git-fixes). +- commit 5c3e4d5 + +- powerpc/pseries/vas: Declare pseries_vas_fault_thread_fn() + as static (bsc#1194869). +- commit 02a3582 + +- platform: chrome: Split trace include file (git-fixes). +- commit 4e9d9ce + +- ftrace: Fix use-after-free for dynamic ftrace_ops (git-fixes). +- commit f98b221 + +- blacklist.conf: kABI +- commit 431bd9c + +- blacklist.conf: duplicate +- commit 53c7bfc + +- platform/x86/intel: hid: add quirk to support Surface Go 3 + (git-fixes). +- commit 23ccaa2 + +- selftests: bpf: Check bpf_msg_push_data return value + (jsc#PED-1368). +- bpf: Fix a bpf_timer initialization issue (jsc#PED-1368). +- commit 6da0cef + +- blacklist.conf: too intrusive +- commit 67ad270 + +- bpf: Emit bpf_timer in vmlinux BTF (jsc#PED-1368). +- selftests/bpf: Add test for bpf_timer overwriting crash + (jsc#PED-1368). +- bpf: Fix crash due to incorrect copy_map_value (jsc#PED-1368). +- bpf: Do not try bpf_msg_push_data with len 0 (jsc#PED-1368). +- tools/resolve_btfids: Do not print any commands when building + silently (jsc#PED-1368). +- bpf: Use VM_MAP instead of VM_ALLOC for ringbuf (jsc#PED-1368). +- tools headers UAPI: remove stale lirc.h (jsc#PED-1368). +- bpf: Fix possible race in inc_misses_counter (jsc#PED-1368). +- bpf: Fix renaming task_getsecid_subj->current_getsecid_subj + (jsc#PED-1368). +- powerpc64/bpf: Limit 'ldbrx' to processors compliant with ISA + v2.06 (jsc#PED-1368). +- tools/bpf: Rename 'struct event' to avoid naming conflict + (jsc#PED-1368). +- powerpc32/bpf: Fix codegen for bpf-to-bpf calls (jsc#PED-1368). +- bpf: Guard against accessing NULL pt_regs in + bpf_get_task_stack() (jsc#PED-1368). +- bpf, selftests: Add ringbuf memory type confusion test + (jsc#PED-1368). +- bpf: Fix ringbuf memory type confusion when passing to helpers + (jsc#PED-1368). +- blacklist.conf: revert blacklisting of "bpf: Fix ringbuf memory type + confusion when passing to helpers" +- Refresh patches.suse/bpf-Add-check_func_arg_reg_off-function.patch +- bpf: Fix incorrect integer literal used for marking scratched + stack (jsc#PED-1368). +- bpf/selftests: Add check for updating XDP bpf_link with wrong + program type (jsc#PED-1368). +- bpf/selftests: convert xdp_link test to ASSERT_* macros + (jsc#PED-1368). +- xdp: check prog type before updating BPF link (jsc#PED-1368). +- bpf: Fix mount source show for bpffs (jsc#PED-1368). +- tools/bpf/bpftool/skeleton: replace bpf_probe_read_kernel with + bpf_probe_read_kernel_str to get task comm (jsc#PED-1368). +- samples/bpf/test_overhead_kprobe_kern: replace + bpf_probe_read_kernel with bpf_probe_read_kernel_str to get + task comm (jsc#PED-1368). +- bpf ppc32: Access only if addr is kernel address (jsc#PED-1368). +- bpf ppc32: Add BPF_PROBE_MEM support for JIT (jsc#PED-1368). +- bpf ppc64: Access only if addr is kernel address (jsc#PED-1368). +- bpf ppc64: Add BPF_PROBE_MEM support for JIT (jsc#PED-1368). +- powerpc/ppc-opcode: introduce PPC_RAW_BRANCH() macro + (jsc#PED-1368). +- bpf powerpc: refactor JIT compiler code (jsc#PED-1368). +- bpf powerpc: Remove extra_pass from bpf_jit_build_body() + (jsc#PED-1368). +- bpf powerpc: Remove unused SEEN_STACK (jsc#PED-1368). +- bpf: selftests: Add bind retry for post_bind{4, 6} + (jsc#PED-1368). +- bpf: selftests: Use C99 initializers in test_sock.c + (jsc#PED-1368). +- net: bpf: Handle return value of + BPF_CGROUP_RUN_PROG_INET{4,6}_POST_BIND() (jsc#PED-1368). +- bpf/selftests: Test bpf_d_path on rdonly_mem (jsc#PED-1368). +- libbpf: Add documentation for bpf_map batch operations + (jsc#PED-1368). +- selftests/bpf: Don't rely on preserving volatile in PT_REGS + macros in loop3 (jsc#PED-1368). +- xdp: Add xdp_do_redirect_frame() for pre-computed xdp_frames + (jsc#PED-1368). +- xdp: Move conversion to xdp_frame out of map functions + (jsc#PED-1368). +- page_pool: Store the XDP mem id (jsc#PED-1368). +- page_pool: Add callback to init pages when they are allocated + (jsc#PED-1368). +- xdp: Allow registering memory model without rxq reference + (jsc#PED-1368). +- samples/bpf: xdpsock: Add timestamp for Tx-only operation + (jsc#PED-1368). +- samples/bpf: xdpsock: Add time-out for cleaning Tx + (jsc#PED-1368). +- samples/bpf: xdpsock: Add sched policy and priority support + (jsc#PED-1368). +- samples/bpf: xdpsock: Add cyclic TX operation capability + (jsc#PED-1368). +- samples/bpf: xdpsock: Add clockid selection support + (jsc#PED-1368). +- samples/bpf: xdpsock: Add Dest and Src MAC setting for Tx-only + operation (jsc#PED-1368). +- samples/bpf: xdpsock: Add VLAN support for Tx-only operation + (jsc#PED-1368). +- libbpf 1.0: Deprecate bpf_object__find_map_by_offset() API + (jsc#PED-1368). +- libbpf 1.0: Deprecate bpf_map__is_offload_neutral() + (jsc#PED-1368). +- libbpf: Support repeated legacy kprobes on same function + (jsc#PED-1368). +- libbpf: Use probe_name for legacy kprobe (jsc#PED-1368). +- libbpf: Deprecate bpf_perf_event_read_simple() API + (jsc#PED-1368). +- bpf: Add SO_RCVBUF/SO_SNDBUF in _bpf_getsockopt() + (jsc#PED-1368). +- bpf: Fix SO_RCVBUF/SO_SNDBUF handling in _bpf_setsockopt() + (jsc#PED-1368). +- bpf: Fix verifier support for validation of async callbacks + (jsc#PED-1368). +- bpf, docs: Fully document the JMP mode modifiers (jsc#PED-1368). +- bpf, docs: Fully document the JMP opcodes (jsc#PED-1368). +- bpf, docs: Fully document the ALU opcodes (jsc#PED-1368). +- bpf, docs: Document the opcode classes (jsc#PED-1368). +- bpf, docs: Add subsections for ALU and JMP instructions + (jsc#PED-1368). +- bpf, docs: Add a setion to explain the basic instruction + encoding (jsc#PED-1368). +- bpf, selftests: Add verifier test for mem_or_null register + with offset (jsc#PED-1368). +- bpf: Don't promote bogus looking registers after null check + (jsc#PED-1368). +- bpf, sockmap: Fix double bpf_prog_put on error case in map_link + (jsc#PED-1368). +- bpf, sockmap: Fix return codes from tcp_bpf_recvmsg_parser() + (jsc#PED-1368). +- bpf, arm64: Use emit_addr_mov_i64() for BPF_PSEUDO_FUNC + (jsc#PED-1368). +- bpf/selftests: Fix namespace mount setup in tc_redirect + (jsc#PED-1368). +- bpftool: Probe for instruction set extensions (jsc#PED-1368). +- bpftool: Probe for bounded loop support (jsc#PED-1368). +- bpftool: Refactor misc. feature probe (jsc#PED-1368). +- bpf: Fix typo in a comment in bpf lpm_trie (jsc#PED-1368). +- bpf, docs: Move the packet access instructions last in + instruction-set.rst (jsc#PED-1368). +- bpf, docs: Generate nicer tables for instruction encodings + (jsc#PED-1368). +- bpf, docs: Split the comparism to classic BPF from + instruction-set.rst (jsc#PED-1368). +- bpf, docs: Fix verifier references (jsc#PED-1368). +- bpf: Invert the dependency between bpf-netns.h and netns/bpf.h + (jsc#PED-1368). +- net: Add includes masked by netdevice.h including uapi/bpf.h + (jsc#PED-1368). +- bpf/selftests: Update local storage selftest for sleepable + programs (jsc#PED-1368). +- bpf: Allow bpf_local_storage to be used by sleepable programs + (jsc#PED-1368). +- bpf: Add missing map_get_next_key method to bloom filter map + (jsc#PED-1368). +- libbpf: Improve LINUX_VERSION_CODE detection (jsc#PED-1368). +- libbpf: Use 100-character limit to make bpf_tracing.h easier + to read (jsc#PED-1368). +- libbpf: Normalize PT_REGS_xxx() macro definitions + (jsc#PED-1368). +- selftests/bpf: Add btf_dump__new to test_cpp (jsc#PED-1368). +- libbpf: Do not use btf_dump__new() macro in C++ mode + (jsc#PED-1368). +- bpftool: Enable line buffering for stdout (jsc#PED-1368). +- bpf: Use struct_size() helper (jsc#PED-1368). +- selftests/bpf: Correct the INDEX address in vmtest.sh + (jsc#PED-1368). +- bpf: Extend kfunc with PTR_TO_CTX, PTR_TO_MEM argument support + (jsc#PED-1368). +- Refresh patches.suse/bpf-Fix-PTR_TO_BTF_ID-var_off-check.patch +- Refresh patches.suse/bpf-Fix-crash-due-to-out-of-bounds-access-into-reg2b.patch +- Refresh patches.suse/bpf-Generalize-check_ctx_reg-for-reuse-with-other-ty.patch +- commit 5734c73 + +- powerpc/boot: Explicitly disable usage of SPE instructions + (bsc#1156395). +- commit 7c94cdb + +- blacklist.conf: Add fixes for unsupported platforms +- commit 10ca02b + +- net: smsc95xx: add support for Microchip EVB-LAN8670-USB + (git-fixes). +- commit af40ba9 + +- usbnet: smsc95xx: Don't reset PHY behind PHY driver's back + (git-fixes). +- commit b693ef6 + +- usb: smsc: use eth_hw_addr_set() (git-fixes). +- commit 67dd1e9 + +- powerpc/64: Fix build failure with allyesconfig in + book3s_64_entry.S (bsc#1194869). +- commit 6d56eff + +- bpftool: Reimplement large insn size limit feature probing + (jsc#PED-1368). +- selftests/bpf: Add libbpf feature-probing API selftests + (jsc#PED-1368). +- libbpf: Rework feature-probing APIs (jsc#PED-1368). +- Only output backtracking information in log level 2 + (jsc#PED-1368). +- bpf: Right align verifier states in verifier logs + (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- bpf: Only print scratched registers and stack slots to verifier + logs (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- commit 652bd0c + +- selftests/bpf: Replace all uses of bpf_load_btf() with + bpf_btf_load() (jsc#PED-1368). +- libbpf: Deprecate bpf_object__load_xattr() (jsc#PED-1368). +- commit ed13628 + +- treewide: Add missing includes masked by cgroup -> bpf + dependency (jsc#PED-1368). +- commit dafa543 + +- bpf: Remove the cgroup -> bpf header dependecy (jsc#PED-1368). +- add missing bpf-cgroup.h includes (jsc#PED-1368). +- add includes masked by cgroup -> bpf dependency (jsc#PED-1368). +- selftests/bpf: Enable cross-building with clang (jsc#PED-1368). +- tools/runqslower: Enable cross-building with clang + (jsc#PED-1368). +- bpftool: Enable cross-building with clang (jsc#PED-1368). +- tools/libbpf: Enable cross-building with clang (jsc#PED-1368). +- tools/resolve_btfids: Support cross-building the kernel with + clang (jsc#PED-1368). +- tools: Help cross-building with clang (jsc#PED-1368). +- libbpf: Avoid reading past ELF data section end when copying + license (jsc#PED-1368). +- libbpf: Mark bpf_object__find_program_by_title API deprecated + (jsc#PED-1368). +- tools/perf: Stop using bpf_object__find_program_by_title API + (jsc#PED-1368). +- samples/bpf: Stop using bpf_object__find_program_by_title API + (jsc#PED-1368). +- selftests/bpf: Stop using bpf_object__find_program_by_title API + (jsc#PED-1368). +- selftests/bpf: Remove explicit setrlimit(RLIMIT_MEMLOCK) + in main selftests (jsc#PED-1368). +- libbpf: Auto-bump RLIMIT_MEMLOCK if kernel needs it for BPF + (jsc#PED-1368). +- libbpf: Add sane strncpy alternative and use it internally + (jsc#PED-1368). +- libbpf: Fix potential uninit memory read (jsc#PED-1368). +- libbpf: Add doc comments for bpf_program__(un)pin() + (jsc#PED-1368). +- selftests/bpf: Fix segfault in bpf_tcp_ca (jsc#PED-1368). +- selftests/bpf: Add tests for get_func_[arg|ret|arg_cnt] helpers + (jsc#PED-1368). +- bpf: Add get_func_[arg|ret|arg_cnt] helpers (jsc#PED-1368). +- bpf, x64: Replace some stack_size usage with offset variables + (jsc#PED-1368). +- selftests/bpf: Add test to access int ptr argument in tracing + program (jsc#PED-1368). +- bpf: Allow access to int pointer arguments in tracing programs + (jsc#PED-1368). +- libbpf: Don't validate TYPE_ID relo's original imm value + (jsc#PED-1368). +- selftests/bpf: Remove last bpf_create_map_xattr from + test_verifier (jsc#PED-1368). +- bpf: Silence coverity false positive warning (jsc#PED-1368). +- bpf: Use kmemdup() to replace kmalloc + memcpy (jsc#PED-1368). +- selftests/bpf: Add test cases for bpf_strncmp() (jsc#PED-1368). +- selftests/bpf: Add benchmark for bpf_strncmp() helper + (jsc#PED-1368). +- selftests/bpf: Fix checkpatch error on empty function parameter + (jsc#PED-1368). +- bpf: Add bpf_strncmp helper (jsc#PED-1368). +- libbpf: Fix gen_loader assumption on number of programs + (jsc#PED-1368). +- libbpf: Add "bool skipped" to struct bpf_map (jsc#PED-1368). +- libbpf: Fix typo in btf__dedup@LIBBPF_0.0.2 definition + (jsc#PED-1368). +- bpftool: Switch bpf_object__load_xattr() to bpf_object__load() + (jsc#PED-1368). +- selftests/bpf: Remove the only use of deprecated + bpf_object__load_xattr() (jsc#PED-1368). +- selftests/bpf: Add test for libbpf's custom log_buf behavior + (jsc#PED-1368). +- commit 5e271be + +- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch: + (bsc#1205521). +- commit a75b0e8 + +- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch: + (bsc#1205521). +- commit de88f7d + +- ath10k: fix pointer arithmetic error in trace call (git-fixes). +- commit eb74c76 + +- VDUSE: fix documentation underline warning (git-fixes). +- commit 82c2eb1 + +- ath10k: abstract htt_rx_desc structure (git-fixes). +- commit ce63216 + +- mac80211: limit bandwidth in HE capabilities (git-fixes). +- commit 07f026a + +- ALSA: memalloc: Try dma_alloc_noncontiguous() at first + (git-fixes). +- commit 88c27ac + +- usb: typec: tipd: Prevent uninitialized event{1,2} in IRQ + handler (git-fixes). +- ASoC: SOF: topology: No need to assign core ID if token parsing + failed (git-fixes). +- ALSA: memalloc: Don't fall back for SG-buffer with IOMMU + (git-fixes). +- usb: gadget: aspeed: Fix probe regression (git-fixes). +- nouveau: fix migrate_to_ram() for faulting page (git-fixes). +- xhci: Fix null pointer dereference in remove if xHC has only + one roothub (git-fixes). +- thunderbolt: Check router generation before connecting xHCI + (git-fixes). +- usb: xhci_plat_remove: avoid NULL dereference (git-fixes). +- xhci: Fix null pointer dereference in resume if xhci has only + one roothub (git-fixes). +- USB: gadget: Fix return of -EBUSY (git-fixes). +- dmaengine: tegra: Fix build error without IOMMU_API (git-fixes). +- PCI/IOV: Fix wrong kernel-doc identifier (git-fixes). +- usb: core: Unregister device on component_add() failure + (git-fixes). +- pcmcia: hide the MAC address helpers if !NET (git-fixes). +- arch: Remove leftovers from prism54 wireless driver (git-fixes). +- usb: typec: ucsi: Only check the contract if there is a + connection (git-fixes). +- libata: libahci: declare ahci_shost_attr_group as static + (git-fixes). +- commit 92b4a5a + +- ALSA: hda/realtek: Add quirk for ASUS Zenbook using CS35L41 + (git-fixes). +- commit c6c293f + +- ASoC: soc-utils: Remove __exit for snd_soc_util_exit() + (git-fixes). +- commit 287b2ba + +- Input: i8042 - fix leaking of platform device on module removal + (git-fixes). +- Input: iforce - invert valid length check when fetching device + IDs (git-fixes). +- drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker() + (git-fixes). +- drm/drv: Fix potential memory leak in drm_dev_init() + (git-fixes). +- drm/panel: simple: set bpc field for logic technologies displays + (git-fixes). +- drm/vc4: kms: Fix IS_ERR() vs NULL check for vc4_kms + (git-fixes). +- usb: chipidea: fix deadlock in ci_otg_del_timer (git-fixes). +- usb: typec: mux: Enter safe mode only when pins need to be + reconfigured (git-fixes). +- Revert "usb: dwc3: disable USB core PHY management" (git-fixes). +- serial: 8250: Flush DMA Rx on RLSI (git-fixes). +- serial: 8250: Fall back to non-DMA Rx if IIR_RDI occurs + (git-fixes). +- tty: n_gsm: fix sleep-in-atomic-context bug in gsm_control_send + (git-fixes). +- Revert "tty: n_gsm: replace kicktimer with delayed_work" + (git-fixes). +- Revert "tty: n_gsm: avoid call of sleeping functions from + atomic context" (git-fixes). +- serial: imx: Add missing .thaw_noirq hook (git-fixes). +- tty: serial: fsl_lpuart: don't break the on-going transfer + when global reset (git-fixes). +- serial: 8250: omap: Flush PM QOS work on remove (git-fixes). +- serial: 8250: omap: Fix unpaired pm_runtime_put_sync() in + omap8250_remove() (git-fixes). +- serial: 8250_omap: remove wait loop from Errata i202 workaround + (git-fixes). +- firmware: coreboot: Register bus in module init (git-fixes). +- slimbus: stream: correct presence rate frequencies (git-fixes). +- parport_pc: Avoid FIFO port location truncation (git-fixes). +- siox: fix possible memory leak in siox_device_add() (git-fixes). +- misc/vmw_vmci: fix an infoleak in + vmci_host_do_receive_datagram() (git-fixes). +- speakup: fix a segfault caused by switching consoles + (git-fixes). +- iio: adc: at91_adc: fix possible memory leak in + at91_adc_allocate_trigger() (git-fixes). +- iio: adc: mp2629: fix potential array out of bound access + (git-fixes). +- iio: adc: mp2629: fix wrong comparison of channel (git-fixes). +- iio: pressure: ms5611: changed hardcoded SPI speed to value + limited (git-fixes). +- iio: trigger: sysfs: fix possible memory leak in + iio_sysfs_trig_init() (git-fixes). +- ASoC: tas2764: Fix set_tdm_slot in case of single slot + (git-fixes). +- ASoC: tas2770: Fix set_tdm_slot in case of single slot + (git-fixes). +- ASoC: core: Fix use-after-free in snd_soc_exit() (git-fixes). +- mmc: sdhci-pci: Fix possible memory leak caused by missing + pci_dev_put() (git-fixes). +- mmc: core: properly select voltage range without power cycle + (git-fixes). +- commit 5d6506d + +- net/smc: Fix possible leaked pernet namespace in smc_init() + (git-fixes). +- net/smc: Fix an error code in smc_lgr_create() (git-fixes). +- net/smc: Fix possible access to freed memory in link clear + (git-fixes). +- net/smc: Fix slab-out-of-bounds issue in fallback (git-fixes). +- net/smc: Only save the original clcsock callback functions + (git-fixes). +- net/smc: Fix sock leak when release after smc_shutdown() + (git-fixes). +- net/smc: send directly on setting TCP_NODELAY (git-fixes). +- net/smc: Send directly when TCP_CORK is cleared (git-fixes). +- net/smc: Avoid overwriting the copies of clcsock callback + functions (git-fixes). +- net/smc: Forward wakeup to smc socket waitqueue after fallback + (git-fixes). +- commit a5aa4ad + +- PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (git-fixes). +- x86/hyperv: fix invalid writes to MSRs during root partition kexec (git-fixes). +- clocksource/drivers/hyperv: add data structure for reference TSC MSR (git-fixes). +- Drivers: hv: fix repeated words in comments (git-fixes). +- HID: hyperv: fix possible memory leak in mousevsc_probe() (git-fixes). +- drm/hyperv: Add ratelimit on error message (git-fixes). +- scsi: storvsc: remove an extraneous "to" in a comment (git-fixes). +- Drivers: hv: vmbus: Don't wait for the ACPI device upon initialization (git-fixes). +- Drivers: hv: vmbus: Use PCI_VENDOR_ID_MICROSOFT for better discoverability (git-fixes). +- Drivers: hv: vmbus: Fix kernel-doc (git-fixes). +- drm/hyperv: Don't overwrite dirt_needed value set by host (git-fixes). +- Drivers: hv: vmbus: Optimize vmbus_on_event (git-fixes). +- scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes). +- Drivers: hv: Never allocate anything besides framebuffer from framebuffer memory region (git-fixes). +- Drivers: hv: Always reserve framebuffer region for Gen1 VMs (git-fixes). +- PCI: Move PCI_VENDOR_ID_MICROSOFT/PCI_DEVICE_ID_HYPERV_VIDEO definitions to pci_ids.h (git-fixes). +- tools: hv: kvp: remove unnecessary (void*) conversions (git-fixes). +- Drivers: hv: remove duplicate word in a comment (git-fixes). +- tools: hv: Remove an extraneous "the" (git-fixes). +- scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes). +- Drivers: hv: vmbus: Release cpu lock in error case (git-fixes). +- Drivers: hv: Fix syntax errors in comments (git-fixes). +- scsi: storvsc: Fix typo in comment (git-fixes). +- Drivers: hv: vmbus: fix typo in comment (git-fixes). +- PCI: hv: Add validation for untrusted Hyper-V values (git-fixes). +- x86/hyperv: Disable hardlockup detector by default in Hyper-V guests (git-fixes). +- Drivers: hv: vmbus: Accept hv_sock offers in isolated guests (git-fixes). +- hv_sock: Add validation for untrusted Hyper-V values (git-fixes). +- hv_sock: Copy packets sent by Hyper-V out of the ring buffer (git-fixes). +- hv_sock: Check hv_pkt_iter_first_raw()'s return value (git-fixes). +- Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes). +- hv_netvsc: Fix potential dereference of NULL pointer (git-fixes). +- hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (git-fixes). +- net: hyperv: remove use of bpf_op_t (git-fixes). +- commit 5a5a746 + +- Refresh patches.suse/io_uring-fix-io_try_cancel_userdata-race-for-iowq.patch + (bsc#1205572) +- commit 1bf2e5b + +- Update kabi files. Update using the released November MU kernel + 5.14.21-150400.24.33.2 +- commit b0daa6c + +- s390/uaccess: introduce bit field for OAC specifier + (jsc#PED-579). +- Refresh + patches.suse/s390-uaccess-add-missing-EX_TABLE-entries-to-__clear_user. +- commit 871823b + +- KVM: s390: selftest: Test suppression indication on key prot + exception (jsc#PED-579). +- KVM: s390: Don't indicate suppression on dirtying, failing memop + (jsc#PED-579). +- KVM: s390: Fix lockdep issue in vm memop (jsc#PED-579). +- KVM: s390: selftests: Add error memop tests (jsc#PED-579). +- KVM: s390: selftests: Add more copy memop tests (jsc#PED-579). +- KVM: s390: selftests: Add named stages for memop test + (jsc#PED-579). +- KVM: s390: selftests: Add macro as abstraction for MEM_OP + (jsc#PED-579). +- KVM: s390: selftests: Split memop tests (jsc#PED-579). +- KVM: s390: Add missing vm MEM_OP size check (jsc#PED-579). +- KVM: s390: Clarify key argument for MEM_OP in api docs + (jsc#PED-579). +- selftests: kvm: Check whether SIDA memop fails for normal guests + (jsc#PED-579). +- KVM: s390: Update api documentation for memop ioctl + (jsc#PED-579). +- KVM: s390: Add capability for storage key extension of MEM_OP + IOCTL (jsc#PED-579). +- KVM: s390: Rename existing vcpu memop functions (jsc#PED-579). +- KVM: s390: Add vm IOCTL for key checked guest absolute memory + access (jsc#PED-579). +- KVM: s390: Add optional storage key checking to MEMOP IOCTL + (jsc#PED-579). +- KVM: s390: selftests: Test TEST PROTECTION emulation + (jsc#PED-579). +- KVM: s390: handle_tprot: Honor storage keys (jsc#PED-579). +- KVM: s390: Honor storage keys when accessing guest memory + (jsc#PED-579). +- s390/uaccess: Add copy_from/to_user_key functions (jsc#PED-579). +- s390/uaccess: fix compile error (jsc#PED-579). +- KVM: s390: gaccess: Cleanup access to guest pages (jsc#PED-579). +- KVM: s390: gaccess: Refactor access address range check + (jsc#PED-579). +- KVM: s390: gaccess: Refactor gpa and length calculation + (jsc#PED-579). +- KVM: s390: Function documentation fixes (jsc#PED-579). +- commit 66cff37 + +- sched: Clear ttwu_pending after enqueue_task() (git fixes + (sched/core)). +- commit 8216675 + +- soc: imx8m: Enable OCOTP clock before reading the register + (git-fixes). +- arm64: dts: imx8mn: Fix NAND controller size-cells (git-fixes). +- arm64: dts: imx8mm: Fix NAND controller size-cells (git-fixes). +- ARM: dts: imx7: Fix NAND controller size-cells (git-fixes). +- arm64: dts: qcom: sm8350-hdk: Specify which LDO modes are + allowed (git-fixes). +- arm64: dts: qcom: sm8250-xperia-edo: Specify which LDO modes + are allowed (git-fixes). +- arm64: dts: qcom: sm8150-xperia-kumano: Specify which LDO + modes are allowed (git-fixes). +- arm64: dts: qcom: sa8155p-adp: Specify which LDO modes are + allowed (git-fixes). +- net: thunderbolt: Fix error handling in tbnet_init() + (git-fixes). +- net/x25: Fix skb leak in x25_lapb_receive_frame() (git-fixes). +- bridge: switchdev: Fix memory leaks when changing VLAN protocol + (git-fixes). +- net: phy: marvell: add sleep time after enabling the loopback + bit (git-fixes). +- mISDN: fix misuse of put_device() in mISDN_register_device() + (git-fixes). +- mISDN: fix possible memory leak in mISDN_dsp_element_register() + (git-fixes). +- commit f0f96f8 + +- soundwire: intel: Initialize clock stop timeout (bsc#1205507). +- commit ed7ad85 + +- io_uring: IRQ rw completion batching (bsc#1205205). +- io_uring: batch task work locking (bsc#1205205). +- io_uring: flush completions for fallbacks (bsc#1205205). +- commit e122d49 + +- io_uring: add clarifying comment for io_cqring_ev_posted() + (bsc#1205205). +- io_uring: fix lack of protection for compl_nr (bsc#1205205). +- io_uring: Add register support for non-4k PAGE_SIZE + (bsc#1205205). +- io_uring: extend task put optimisations (bsc#1205205). +- io_uring: add comments on why PF_EXITING checking is safe + (bsc#1205205). +- io_uring: fix io_timeout_remove locking (bsc#1205205). +- io_uring: improve same wq polling (bsc#1205205). +- io_uring: reuse io_req_complete_post() (bsc#1205205). +- io_uring: better encapsulate buffer select for rw (bsc#1205205). +- commit 4eedcb8 + +- io_uring: fix io_timeout_remove locking (git-fixes). +- io_uring: correct __must_hold annotation (git-fixes). +- commit afa1999 + +- scsi: mpi3mr: Delete a stray tab (jsc#PED-1446). +- scsi: mpi3mr: Unlock on error path (jsc#PED-1446). +- scsi: mpi3mr: Reduce VD queue depth on detecting throttling + (jsc#PED-1446). +- scsi: mpi3mr: Resource Based Metering (jsc#PED-1446). +- scsi: mpi3mr: Increase cmd_per_lun to 128 (jsc#PED-1446). +- scsi: mpi3mr: Enable shared host tagset (jsc#PED-1446). +- scsi: mpi3mr: Fix kernel-doc (jsc#PED-1446). +- scsi: mpi3mr: Rework mrioc->bsg_device model to fix warnings + (jsc#PED-1446). +- scsi: mpi3mr: Add target device related sysfs attributes + (jsc#PED-1446). +- scsi: mpi3mr: Add shost related sysfs attributes (jsc#PED-1446). +- scsi: mpi3mr: Return error if dma_alloc_coherent() fails + (jsc#PED-1446). +- scsi: mpi3mr: Fix a NULL vs IS_ERR() bug in mpi3mr_bsg_init() + (jsc#PED-1446). +- scsi: mpi3mr: Return I/Os to an unrecoverable HBA with DID_ERROR + (jsc#PED-1446). +- scsi: mpi3mr: Hidden drives not removed during soft reset + (jsc#PED-1446). +- scsi: mpi3mr: Increase I/O timeout value to 60s (jsc#PED-1446). +- scsi: mpi3mr: Update driver version to 8.0.0.69.0 + (jsc#PED-1446). +- scsi: mpi3mr: Add support for NVMe passthrough (jsc#PED-1446). +- scsi: mpi3mr: Expose adapter state to sysfs (jsc#PED-1446). +- scsi: mpi3mr: Add support for PEL commands (jsc#PED-1446). +- scsi: mpi3mr: Add support for MPT commands (jsc#PED-1446). +- scsi: mpi3mr: Move data structures/definitions from MPI headers + to uapi header (jsc#PED-1446). +- scsi: mpi3mr: Add support for driver commands (jsc#PED-1446). +- scsi: mpi3mr: Add bsg device support (jsc#PED-1446). +- scsi: mpi3mr: Fix flushing !WQ_MEM_RECLAIM events warning + (jsc#PED-1446). +- scsi: mpi3mr: Bump driver version to 8.0.0.68.0 (jsc#PED-1446). +- scsi: mpi3mr: Fix memory leaks (jsc#PED-1446). +- scsi: mpi3mr: Update the copyright year (jsc#PED-1446). +- scsi: mpi3mr: Fix reporting of actual data transfer size + (jsc#PED-1446). +- scsi: mpi3mr: Fix cmnd getting marked as in use forever + (jsc#PED-1446). +- scsi: mpi3mr: Fix hibernation issue (jsc#PED-1446). +- scsi: mpi3mr: Update MPI3 headers (jsc#PED-1446). +- scsi: mpi3mr: Fix printing of pending I/O count (jsc#PED-1446). +- scsi: mpi3mr: Fix deadlock while canceling the fw event + (jsc#PED-1446). +- commit 38ffa24 + +- treewide: Replace zero-length arrays with flexible-array members + (jsc#PED-1446). +- Refresh patches.suse/scsi-qla2xxx-edif-bsg-refactor.patch. +- commit b341c8c + +- Update metadata references +- commit 48537d5 + +- KVM: SVM: move guest vmsave/vmload back to assembly (git-fixes). +- commit 64aefe3 + +- KVM: SVM: retrieve VMCB from assembly (git-fixes). +- commit fdd0aa2 + +- blk-mq: Properly init requests from blk_mq_alloc_request_hctx() + (git-fixes). +- rbd: fix possible memory leak in rbd_sysfs_init() (git-fixes). +- blk-wbt: call rq_qos_add() after wb_normal is initialized + (git-fixes). +- block: blk_queue_enter() / __bio_queue_enter() must return + - EAGAIN for nowait (git-fixes). +- blk-mq: fix io hung due to missing commit_rqs (git-fixes). +- block/rnbd-srv: Set keep_id to true after mutex_trylock + (git-fixes). +- blktrace: Trace remapped requests correctly (git-fixes). +- blk-mq: don't create hctx debugfs dir until q->debugfs_dir is + created (git-fixes). +- block: add bio_start_io_acct_time() to control start_time + (git-fixes). +- blk-cgroup: fix missing put device in error path from + blkg_conf_pref() (git-fixes). +- commit 58eed28 + +- nbd: Fix incorrect error handle when first_minor is illegal + in nbd_dev_add (git-fixes). +- Refresh for the above change, + patches.suse/0002-nbd-fix-possible-overflow-on-first_minor-in-nbd_dev_.patch. +- commit 8281951 + +- KVM: SVM: adjust register allocation for __svm_vcpu_run() + (git-fixes). +- commit 7b25718 + +- KVM: SVM: replace regs argument of __svm_vcpu_run() with + vcpu_svm (git-fixes). +- commit 7867341 + +- KVM: x86: use a separate asm-offsets.c file (git-fixes). +- commit 0602ab1 + +- KVM: x86: Hide IA32_PLATFORM_DCA_CAP[31:0] from the guest + (git-fixes). +- commit 499c3ca + +- drm/amdkfd: Migrate in CPU page fault use current mm + (git-fixes). +- commit f476661 + +- pinctrl: devicetree: fix null pointer dereferencing in + pinctrl_dt_to_map (git-fixes). +- pinctrl: rockchip: list all pins in a possible mux route for + PX30 (git-fixes). +- platform/surface: aggregator: Do not check for repeated + unsequenced packets (git-fixes). +- platform/x86/intel: pmc: Don't unconditionally attach Intel + PMC when virtualized (git-fixes). +- arm64: efi: Fix handling of misaligned runtime regions and + drop warning (git-fixes). +- ata: libata-scsi: fix SYNCHRONIZE CACHE (16) command failure + (git-fixes). +- nilfs2: fix use-after-free bug of ns_writer on remount + (git-fixes). +- mmc: sdhci_am654: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). +- mmc: sdhci-tegra: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). +- mms: sdhci-esdhc-imx: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). +- mmc: sdhci-of-arasan: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). +- mmc: cqhci: Provide helper for resetting both SDHCI and CQHCI + (git-fixes). +- ALSA: hda: fix potential memleak in 'add_widget_node' + (git-fixes). +- ALSA: hda/realtek: Add Positivo C6300 model quirk (git-fixes). +- ALSA: usb-audio: Add DSD support for Accuphase DAC-60 + (git-fixes). +- ALSA: usb-audio: Add quirk entry for M-Audio Micro (git-fixes). +- ALSA: hda/hdmi - enable runtime pm for more AMD display audio + (git-fixes). +- ALSA: hda/ca0132: add quirk for EVGA Z390 DARK (git-fixes). +- drm/amdgpu: disable BACO on special BEIGE_GOBY card (git-fixes). +- wifi: ath11k: avoid deadlock during regulatory update in + ath11k_regd_update() (git-fixes). +- platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi + (git-fixes). +- drm/amdkfd: Fix NULL pointer dereference in svm_migrate_to_ram() + (git-fixes). +- thunderbolt: Add DP OUT resource when DP tunnel is discovered + (git-fixes). +- drm/amdkfd: handle CPU fault on COW mapping (git-fixes). +- drm/amdkfd: avoid recursive lock in migrations back to RAM + (git-fixes). +- commit 438c140 + +- KVM: x86: Treat #DBs from the emulator as fault-like (code + and DR7.GD=1) (git-fixes). +- commit 89491ed + +- libbpf: Add per-program log buffer setter and getter + (jsc#PED-1368). +- libbpf: Preserve kernel error code and remove kprobe prog type + guessing (jsc#PED-1368). +- libbpf: Improve logging around BPF program loading + (jsc#PED-1368). +- libbpf: Allow passing user log setting through + bpf_object_open_opts (jsc#PED-1368). +- libbpf: Allow passing preallocated log_buf when loading BTF + into kernel (jsc#PED-1368). +- libbpf: Add OPTS-based bpf_btf_load() API (jsc#PED-1368). +- libbpf: Fix bpf_prog_load() log_buf logic for log_level 0 + (jsc#PED-1368). +- samples/bpf: Remove unneeded variable (jsc#PED-1368). +- bpf: Remove redundant assignment to pointer t (jsc#PED-1368). +- selftests/bpf: Fix a compilation warning (jsc#PED-1368). +- samples: bpf: Fix 'unknown warning group' build warning on Clang + (jsc#PED-1368). +- samples: bpf: Fix xdp_sample_user.o linking with Clang + (jsc#PED-1368). +- bpf: Silence purge_cand_cache build warning (jsc#PED-1368). +- libbpf: Add doc comments in libbpf.h (jsc#PED-1368). +- libbpf: Fix trivial typo (jsc#PED-1368). +- bpftool: Add debug mode for gen_loader (jsc#PED-1368). +- bpf: Fix the test_task_vma selftest to support output shorter + than 1 kB (jsc#PED-1368). +- libbpf: Reduce bpf_core_apply_relo_insn() stack usage + (jsc#PED-1368). +- libbpf: Deprecate bpf_prog_load_xattr() API (jsc#PED-1368). +- samples/bpf: Get rid of deprecated libbpf API uses + (jsc#PED-1368). +- samples/bpf: Clean up samples/bpf build failes (jsc#PED-1368). +- selftests/bpf: Remove all the uses of deprecated + bpf_prog_load_xattr() (jsc#PED-1368). +- selftests/bpf: Mute xdpxceiver.c's deprecation warnings + (jsc#PED-1368). +- selftests/bpf: Remove recently reintroduced legacy btf__dedup() + use (jsc#PED-1368). +- bpftool: Migrate off of deprecated bpf_create_map_xattr() API + (jsc#PED-1368). +- libbpf: Add API to get/set log_level at per-program level + (jsc#PED-1368). +- libbpf: Use __u32 fields in bpf_map_create_opts (jsc#PED-1368). +- selftests/bpf: Update test names for xchg and cmpxchg + (jsc#PED-1368). +- selftests/bpf: Build testing_helpers.o out of tree + (jsc#PED-1368). +- selftests/bpf: Add CO-RE relocations to verifier scale test + (jsc#PED-1368). +- selftests/bpf: Revert CO-RE removal in test_ksyms_weak + (jsc#PED-1368). +- selftests/bpf: Additional test for CO-RE in the kernel + (jsc#PED-1368). +- selftests/bpf: Convert map_ptr_kern test to use light skeleton + (jsc#PED-1368). +- selftests/bpf: Improve inner_map test coverage (jsc#PED-1368). +- selftests/bpf: Add lskel version of kfunc test (jsc#PED-1368). +- libbpf: Clean gen_loader's attach kind (jsc#PED-1368). +- libbpf: Support init of inner maps in light skeleton + (jsc#PED-1368). +- libbpf: Use CO-RE in the kernel in light skeleton + (jsc#PED-1368). +- bpf: Add bpf_core_add_cands() and wire it into + bpf_core_apply_relo_insn() (jsc#PED-1368). +- libbpf: Cleanup struct bpf_core_cand (jsc#PED-1368). +- commit 8a4479c + +- KVM: x86: Report error when setting CPUID if Hyper-V allocation + fails (git-fixes). +- commit 335e5aa + +- virtio-blk: Use blk_validate_block_size() to validate block size + (git-fixes). +- block: drop unused includes in (git-fixes). +- commit a549255 + +- blacklist.conf: add commits suggested by git-fixes which won't be backported +- commit d1fe12d + +- KVM: SVM: Disable SEV-ES support if MMIO caching is disable + (git-fixes). +- commit d6a15a7 + +- KVM: x86/mmu: fix memoryleak in kvm_mmu_vendor_module_init() + (git-fixes). +- commit ce66979 + +- KVM: nVMX: Attempt to load PERF_GLOBAL_CTRL on nVMX xfer iff + it exists (git-fixes). +- commit 3387324 + +- KVM: VMX: Add helper to check if the guest PMU has + PERF_GLOBAL_CTRL (git-fixes). +- commit 1b36b28 + +- blacklist.conf: don't deprecate bpf_program__get_prog_info_linear +- commit 0b5cdb8 + +- nvdimm/blk: Fix title level (jsc#PED-1689, jsc#PED-1690). +- commit 5555a12 + +- scsi: mpi3mr: Fix formatting problems in some kernel-doc + comments (jsc#PED-1446). +- scsi: mpi3mr: Fix some spelling mistakes (jsc#PED-1446). +- scsi: mpi3mr: Bump driver version to 8.0.0.61.0 (jsc#PED-1446). +- scsi: mpi3mr: Fixes around reply request queues (jsc#PED-1446). +- scsi: mpi3mr: Enhanced Task Management Support Reply handling + (jsc#PED-1446). +- scsi: mpi3mr: Use TM response codes from MPI3 headers + (jsc#PED-1446). +- commit b2509ba + +- scsi: mpi3mr: Add io_uring interface support in I/O-polled mode + (jsc#PED-1446). +- Refresh + patches.suse/scsi-mpi3mr-Schedule-IRQ-kthreads-only-on-non-RT-kernels.patch. +- commit b6105c2 + +- scsi: mpi3mr: Print cable mngnt and temp threshold events + (jsc#PED-1446). +- scsi: mpi3mr: Support Prepare for Reset event (jsc#PED-1446). +- commit 589f645 + +- scsi: mpi3mr: Add Event acknowledgment logic (jsc#PED-1446). +- scsi: mpi3mr: Gracefully handle online FW update operation + (jsc#PED-1446). +- scsi: mpi3mr: Detect async reset that occurred in firmware + (jsc#PED-1446). +- scsi: mpi3mr: Add IOC reinit function (jsc#PED-1446). +- scsi: mpi3mr: Handle offline FW activation in graceful manner + (jsc#PED-1446). +- scsi: mpi3mr: Code refactor of IOC init - part2 (jsc#PED-1446). +- scsi: mpi3mr: Code refactor of IOC init - part1 (jsc#PED-1446). +- scsi: mpi3mr: Fault IOC when internal command gets timeout + (jsc#PED-1446). +- scsi: mpi3mr: Display IOC firmware package version + (jsc#PED-1446). +- scsi: mpi3mr: Handle unaligned PLL in unmap cmnds + (jsc#PED-1446). +- scsi: mpi3mr: Increase internal cmnds timeout to 60s + (jsc#PED-1446). +- scsi: mpi3mr: Do access status validation before adding devices + (jsc#PED-1446). +- scsi: mpi3mr: Add support for PCIe Managed Switch SES device + (jsc#PED-1446). +- scsi: mpi3mr: Update MPI3 headers - part2 (jsc#PED-1446). +- scsi: mpi3mr: Update MPI3 headers - part1 (jsc#PED-1446). +- scsi: mpi3mr: Don't reset IOC if cmnds flush with reset status + (jsc#PED-1446). +- scsi: mpi3mr: Replace spin_lock() with spin_lock_irqsave() + (jsc#PED-1446). +- scsi: mpi3mr: Add debug APIs based on logging_level bits + (jsc#PED-1446). +- scsi: mpi3mr: Use scnprintf() instead of snprintf() + (jsc#PED-1446). +- scsi: mpi3mr: Clean up mpi3mr_print_ioc_info() (jsc#PED-1446). +- commit 528c787 + +- KVM: VMX: Mark all PERF_GLOBAL_(OVF)_CTRL bits reserved if + there's no vPMU (git-fixes). +- commit 3ada3ae + +- tcp: Fix data races around icsk->icsk_af_ops (CVE-2022-3566 + bsc#1204405). +- commit f7cc985 + +- ipv6: Fix data races around sk->sk_prot (CVE-2022-3567 + bsc#1204414). +- ipv6: annotate some data-races around sk->sk_prot (CVE-2022-3567 + bsc#1204414). +- commit 654a4f7 + +- KVM: nVMX: Rename handle_vm{on,off}() to handle_vmx{on,off}() + (git-fixes). +- commit 7218ba7 + +- KVM: nVMX: Always enable TSC scaling for L2 when it was enabled + for L1 (git-fixes). +- commit b0f3ab9 + +- KVM: x86: Fully initialize 'struct kvm_lapic_irq' in + kvm_pv_kick_cpu_op() (git-fixes). +- commit 81fd9e6 + +- KVM: x86: Signal #GP, not -EPERM, on bad WRMSR(MCi_CTL/STATUS) + (git-fixes). +- commit 1a1eab3 + +- KVM: SVM: Stuff next_rip on emulated INT3 injection if NRIPS + is supported (git-fixes). +- commit e7e1382 + +- KVM: SEV: Mark nested locking of vcpu->lock (git-fixes). +- commit 5f6bf6f + +- KVM: x86/svm: Account for family 17h event renumberings in + amd_pmc_perf_hw_id (git-fixes). +- commit e3ae104 + +- KVM: x86: avoid loading a vCPU after .vm_destroy was called + (git-fixes). +- commit 29af845 + +- KVM: Move wiping of the kvm->vcpus array to common code + (git-fixes). +- commit 9720dc5 + +- s390/pci: add missing EX_TABLE entries to + __pcistg_mio_inuser()/__pcilg_mio_inuser() (bsc#1205427 + LTC#200502). +- s390/futex: add missing EX_TABLE entry to __futex_atomic_op() + (bsc#1205427 LTC#200502). +- s390/uaccess: add missing EX_TABLE entries to __clear_user(), + copy_in_user_mvcos(), copy_in_user_mvc(), clear_user_xc() + and __strnlen_user() (bsc#1205428 LTC#200501). +- commit ad7cfae + +- nilfs2: fix deadlock in nilfs_count_free_blocks() (git-fixes). +- dmaengine: at_hdmac: Check return code of + dma_async_device_register (git-fixes). +- dmaengine: at_hdmac: Fix impossible condition (git-fixes). +- dmaengine: at_hdmac: Don't allow CPU to reorder channel enable + (git-fixes). +- dmaengine: at_hdmac: Fix completion of unissued descriptor in + case of errors (git-fixes). +- dmaengine: at_hdmac: Fix descriptor handling when issuing it + to hardware (git-fixes). +- spi: stm32: Print summary 'callbacks suppressed' message + (git-fixes). +- mmc: sdhci-esdhc-imx: use the correct host caps for + MMC_CAP_8_BIT_DATA (git-fixes). +- drm/i915/dmabuf: fix sg_table handling in map_dma_buf + (git-fixes). +- drm/vc4: Fix missing platform_unregister_drivers() call in + vc4_drm_register() (git-fixes). +- nilfs2: replace WARN_ONs by nilfs_error for checkpoint + acquisition failure (git-fixes). +- commit f7fc242 + +- dmaengine: at_hdmac: Fix concurrency over the active list + (git-fixes). +- dmaengine: at_hdmac: Free the memset buf without holding the + chan lock (git-fixes). +- dmaengine: at_hdmac: Fix concurrency over descriptor + (git-fixes). +- dmaengine: at_hdmac: Fix concurrency problems by removing + atc_complete_all() (git-fixes). +- dmaengine: at_hdmac: Protect atchan->status with the channel + lock (git-fixes). +- dmaengine: at_hdmac: Do not call the complete callback on + device_terminate_all (git-fixes). +- dmaengine: at_hdmac: Fix premature completion of desc in + issue_pending (git-fixes). +- dmaengine: at_hdmac: Start transfer for cyclic channels in + issue_pending (git-fixes). +- dmaengine: at_hdmac: Don't start transactions at tx_submit level + (git-fixes). +- dmaengine: at_hdmac: Fix at_lli struct definition (git-fixes). +- commit 718fc6d + +- KVM: x86/pmu: Update AMD PMC sample period to fix guest + NMI-watchdog (git-fixes). +- commit d582f6e + +- ata: libata-transport: fix error handling in ata_tdev_add() + (git-fixes). +- ata: libata-transport: fix error handling in ata_tlink_add() + (git-fixes). +- ata: libata-transport: fix error handling in ata_tport_add() + (git-fixes). +- ata: libata-transport: fix double ata_host_put() in + ata_tport_add() (git-fixes). +- dmaengine: ti: k3-udma-glue: fix memory leak when register + device fail (git-fixes). +- dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove() + (git-fixes). +- dmaengine: pxa_dma: use platform_get_irq_optional (git-fixes). +- commit 3e58402 + +- x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473). +- commit d022167 + +- KVM: x86: Use __try_cmpxchg_user() to emulate atomic accesses + (git-fixes). +- commit af8969b + +- KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits + (git-fixes). +- commit 4c10c2f + +- bpf: Pass a set of bpf_core_relo-s to prog_load command + (jsc#PED-1368). +- Refresh patches.suse/x86-speculation-include-unprivileged-ebpf-status-in-spectre-v2-mitigation-reporting.patch +- bpf: Define enum bpf_core_relo_kind as uapi (jsc#PED-1368). +- bpf: Prepare relo_core.c for kernel duty (jsc#PED-1368). +- bpf: Rename btf_member accessors (jsc#PED-1368). +- libbpf: Replace btf__type_by_id() with btf_type_by_id() + (jsc#PED-1368). +- samples: bpf: Fix conflicting types in fds_example + (jsc#PED-1368). +- bpf: Clean-up bpf_verifier_vlog() for BPF_LOG_KERNEL log level + (jsc#PED-1368). +- libbpf: Avoid reload of imm for weak, unresolved, repeating ksym + (jsc#PED-1368). +- libbpf: Avoid double stores for success/failure case of ksym + relocations (jsc#PED-1368). +- bpf: Change bpf_kallsyms_lookup_name size type to + ARG_CONST_SIZE_OR_ZERO (jsc#PED-1368). +- selftest/bpf/benchs: Add bpf_loop benchmark (jsc#PED-1368). +- selftests/bpf: Measure bpf_loop verifier performance + (jsc#PED-1368). +- selftests/bpf: Add bpf_loop test (jsc#PED-1368). +- bpf: Add bpf_loop helper (jsc#PED-1368). +- bpf, docs: Split general purpose eBPF documentation out of + filter.rst (jsc#PED-1368). +- bpf, docs: Move handling of maps to Documentation/bpf/maps.rst + (jsc#PED-1368). +- bpf, docs: Prune all references to "internal BPF" + (jsc#PED-1368). +- bpf: Remove a redundant comment on bpf_prog_free (jsc#PED-1368). +- x86, bpf: Cleanup the top of file header in bpf_jit_comp.c + (jsc#PED-1368). +- libbpf: Remove duplicate assignments (jsc#PED-1368). +- libbpf: Silence uninitialized warning/error in + btf_dump_dump_type_data (jsc#PED-1368). +- selftests/bpf: Test BPF_MAP_TYPE_PROG_ARRAY static + initialization (jsc#PED-1368). +- libbpf: Support static initialization of BPF_MAP_TYPE_PROG_ARRAY + (jsc#PED-1368). +- bpf, mips: Fix build errors about __NR_bpf undeclared + (jsc#PED-1368). +- selftests/bpf: Fix misaligned accesses in xdp and xdp_bpf2bpf + tests (jsc#PED-1368). +- selftests/bpf: Fix misaligned memory accesses in xdp_bonding + test (jsc#PED-1368). +- selftests/bpf: Prevent out-of-bounds stack access in test_bpffs + (jsc#PED-1368). +- selftests/bpf: Fix misaligned memory access in queue_stack_map + test (jsc#PED-1368). +- selftests/bpf: Prevent misaligned memory access in + get_stack_raw_tp test (jsc#PED-1368). +- selftests/bpf: Fix possible NULL passed to memcpy() with zero + size (jsc#PED-1368). +- selftests/bpf: Fix UBSan complaint about signed __int128 + overflow (jsc#PED-1368). +- libbpf: Fix using invalidated memory in bpf_linker + (jsc#PED-1368). +- libbpf: Fix glob_syms memory leak in bpf_linker (jsc#PED-1368). +- libbpf: Don't call libc APIs with NULL pointers (jsc#PED-1368). +- libbpf: Fix potential misaligned memory access in btf_ext__new() + (jsc#PED-1368). +- tools/resolve_btf_ids: Close ELF file on error (jsc#PED-1368). +- selftests/bpf: Migrate selftests to bpf_map_create() + (jsc#PED-1368). +- libbpf: Prevent deprecation warnings in xsk.c (jsc#PED-1368). +- libbpf: Use bpf_map_create() consistently internally + (jsc#PED-1368). +- libbpf: Unify low-level map creation APIs w/ new + bpf_map_create() (jsc#PED-1368). +- selftests/bpf: Mix legacy (maps) and modern (vars) BPF in one + test (jsc#PED-1368). +- libbpf: Load global data maps lazily on legacy kernels + (jsc#PED-1368). +- selftests/bpf: Fix trivial typo (jsc#PED-1368). +- libbpf: Change bpf_program__set_extra_flags to + bpf_program__set_flags (jsc#PED-1368). +- selftests/bpf: Add btf_dedup case with duplicated structs + within CU (jsc#PED-1368). +- libbpf: Accommodate DWARF/compiler bug with duplicated structs + (jsc#PED-1368). +- libbpf: Add runtime APIs to query libbpf version (jsc#PED-1368). +- selfetests/bpf: Adapt vmtest.sh to s390 libbpf CI changes + (jsc#PED-1368). +- selftests/bpf: Fix xdpxceiver failures for no hugepages + (jsc#PED-1368). +- skbuff: Move conditional preprocessor directives out of struct + sk_buff (jsc#PED-1368). +- selftests/bpf: Test RENAME_EXCHANGE and RENAME_NOREPLACE on + bpffs (jsc#PED-1368). +- commit 30264f0 + +- x86/futex: Remove .fixup usage (git-fixes). +- commit 687839d + +- ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy + Book Pro 360 (bsc#1205100). +- ALSA: hda/realtek: fix speakers for Samsung Galaxy Book Pro + (bsc#1205100). +- commit ca2ce49 + +- bpf, docs: Fix ordering of bpf documentation (jsc#PED-1368). +- libbpf: Rename libbpf documentation index file (jsc#PED-1368). +- commit fd082d1 + +- x86/extable: Extend extable functionality (git-fixes). +- commit 28f726d + +- bpf, docs: Rename bpf_lsm.rst to prog_lsm.rst (jsc#PED-1368). +- bpf, docs: Change underline in btf to match style guide + (jsc#PED-1368). +- selftests/bpf: Mark variable as static (jsc#PED-1368). +- selftests/bpf: Variable naming fix (jsc#PED-1368). +- selftests/bpf: Move summary line after the error logs + (jsc#PED-1368). +- selftests/bpf: Add uprobe triggering overhead benchmarks + (jsc#PED-1368). +- bpf: Change value of MAX_TAIL_CALL_CNT from 32 to 33 + (jsc#PED-1368). +- selftests/bpf: Configure dir paths via env in + test_bpftool_synctypes.py (jsc#PED-1368). +- bpftool: Update doc (use susbtitutions) and + test_bpftool_synctypes.py (jsc#PED-1368). +- bpftool: Add SPDX tags to RST documentation files + (jsc#PED-1368). +- selftests/bpf: Add a dedup selftest with equivalent structure + types (jsc#PED-1368). +- libbpf: Fix a couple of missed btf_type_tag handling in btf.c + (jsc#PED-1368). +- bpftool: Add current libbpf_strict mode to version output + (jsc#PED-1368). +- bpftool: Use libbpf_get_error() to check error (jsc#PED-1368). +- bpftool: Fix mixed indentation in documentation (jsc#PED-1368). +- bpftool: Update the lists of names for maps and prog-attach + types (jsc#PED-1368). +- bpftool: Fix indent in option lists in the documentation + (jsc#PED-1368). +- selftests/bpf: Fix a tautological-constant-out-of-range-compare + compiler warning (jsc#PED-1368). +- selftests/bpf: Fix an unused-but-set-variable compiler warning + (jsc#PED-1368). +- bpf: Introduce btf_tracing_ids (jsc#PED-1368). +- bpf: Extend BTF_ID_LIST_GLOBAL with parameter for number of IDs + (jsc#PED-1368). +- bpftool: Enable libbpf's strict mode by default (jsc#PED-1368). +- docs/bpf: Update documentation for BTF_KIND_TYPE_TAG support + (jsc#PED-1368). +- selftests/bpf: Clarify llvm dependency with btf_tag selftest + (jsc#PED-1368). +- selftests/bpf: Add a C test for btf_type_tag (jsc#PED-1368). +- selftests/bpf: Rename progs/tag.c to progs/btf_decl_tag.c + (jsc#PED-1368). +- selftests/bpf: Test BTF_KIND_DECL_TAG for deduplication + (jsc#PED-1368). +- selftests/bpf: Add BTF_KIND_TYPE_TAG unit tests (jsc#PED-1368). +- selftests/bpf: Test libbpf API function btf__add_type_tag() + (jsc#PED-1368). +- bpftool: Support BTF_KIND_TYPE_TAG (jsc#PED-1368). +- libbpf: Support BTF_KIND_TYPE_TAG (jsc#PED-1368). +- bpf: Support BTF_KIND_TYPE_TAG for btf_type_tag attributes + (jsc#PED-1368). +- bpftool: Update btf_dump__new() and perf_buffer__new_raw() + calls (jsc#PED-1368). +- tools/runqslower: Update perf_buffer__new() calls + (jsc#PED-1368). +- selftests/bpf: Update btf_dump__new() uses to v1.0+ variant + (jsc#PED-1368). +- selftests/bpf: Migrate all deprecated perf_buffer uses + (jsc#PED-1368). +- libbpf: Make perf_buffer__new() use OPTS-based interface + (jsc#PED-1368). +- libbpf: Ensure btf_dump__new() and btf_dump_opts are + future-proof (jsc#PED-1368). +- libbpf: Turn btf_dedup_opts into OPTS-based struct + (jsc#PED-1368). +- selftests/bpf: Minor cleanups and normalization of Makefile + (jsc#PED-1368). +- bpftool: Normalize compile rules to specify output file last + (jsc#PED-1368). +- selftests/bpf: Fix bpf_prog_test_load() logic to pass extra + log level (jsc#PED-1368). +- libbpf: Add ability to get/set per-program load flags + (jsc#PED-1368). +- selftests/bpf: Add tests for accessing ingress_ifindex in + bpf_sk_lookup (jsc#PED-1368). +- bpf: Add ingress_ifindex to bpf_sk_lookup (jsc#PED-1368). +- bpftool: Fix SPDX tag for Makefiles and .gitignore + (jsc#PED-1368). +- Refresh patches.suse/bpftool-Remove-inclusion-of-utilities.mak-from-Makef.patch +- libbpf: Compile using -std=gnu89 (jsc#PED-1368). +- selftests/bpf: Add exception handling selftests for tp_bpf + program (jsc#PED-1368). +- selftests/bpf: Add tests for bpf_find_vma (jsc#PED-1368). +- bpf: Introduce helper bpf_find_vma (jsc#PED-1368). +- selftests/bpf: Fix bpf_object leak in skb_ctx selftest + (jsc#PED-1368). +- selftests/bpf: Destroy XDP link correctly (jsc#PED-1368). +- selftests/bpf: Avoid duplicate btf__parse() call (jsc#PED-1368). +- selftests/bpf: Clean up btf and btf_dump in dump_datasec test + (jsc#PED-1368). +- selftests/bpf: Free inner strings index in btf selftest + (jsc#PED-1368). +- selftests/bpf: Free per-cpu values array in bpf_iter selftest + (jsc#PED-1368). +- selftests/bpf: Fix memory leaks in btf_type_c_dump() helper + (jsc#PED-1368). +- selftests/bpf: Pass sanitizer flags to linker through LDFLAGS + (jsc#PED-1368). +- selftests/bpf: Use explicit bpf_test_load_program() helper calls + (jsc#PED-1368). +- selftests/bpf: Use explicit bpf_prog_test_load() calls + everywhere (jsc#PED-1368). +- selftests/bpf: Merge test_stub.c into testing_helpers.c + (jsc#PED-1368). +- selftests/bpf: Convert legacy prog load APIs to bpf_prog_load() + (jsc#PED-1368). +- selftests/bpf: Fix non-strict SEC() program sections + (jsc#PED-1368). +- libbpf: Remove deprecation attribute from struct + bpf_prog_prep_result (jsc#PED-1368). +- bpftool: Stop using deprecated bpf_load_program() + (jsc#PED-1368). +- libbpf: Stop using to-be-deprecated APIs (jsc#PED-1368). +- libbpf: Remove internal use of deprecated bpf_prog_load() + variants (jsc#PED-1368). +- libbpf: Unify low-level BPF_PROG_LOAD APIs into bpf_prog_load() + (jsc#PED-1368). +- libbpf: Pass number of prog load attempts explicitly + (jsc#PED-1368). +- libbpf: Rename DECLARE_LIBBPF_OPTS into LIBBPF_OPTS + (jsc#PED-1368). +- libbpf: Fix non-C89 loop variable declaration in gen_loader.c + (jsc#PED-1368). +- libbpf: Deprecate bpf_program__load() API (jsc#PED-1368). +- libbpf: Improve ELF relo sanitization (jsc#PED-1368). +- libbpf: Fix section counting logic (jsc#PED-1368). +- libbpf: Validate that .BTF and .BTF.ext sections contain data + (jsc#PED-1368). +- libbpf: Improve sanity checking during BTF fix up + (jsc#PED-1368). +- libbpf: Detect corrupted ELF symbols section (jsc#PED-1368). +- bpftool: Use bpf_obj_get_info_by_fd directly (jsc#PED-1368). +- bpftool: Migrate -1 err checks of libbpf fn calls + (jsc#PED-1368). +- bpf: Document BPF licensing (jsc#PED-1368). +- commit d7e0919 + +- x86/microcode/AMD: Apply the patch early on every logical thread + (bsc#1205264). +- commit 6805cb3 + +- x86/uaccess: Implement macros for CMPXCHG on user addresses + (git-fixes). +- commit 680ab7c + +- Kconfig: Add option for asm goto w/ tied outputs to workaround + clang-13 bug (git-fixes). +- Refresh config. +- commit 7888244 + +- KVM: x86/pmu: Fix and isolate TSX-specific performance event + logic (git-fixes). +- commit e13feb1 + +- kABI: Fix kABI after "KVM: x86/pmu: Use different raw event + masks for AMD and Intel" (git-fixes). +- commit d086901 + +- KVM: x86/pmu: Use different raw event masks for AMD and Intel + (git-fixes). +- commit fd5bd7c + +- xen/gntdev: Accommodate VMA splitting (git-fixes). +- commit 0745691 + +- KVM: x86/mmu: WARN if old _or_ new SPTE is REMOVED in non-atomic + path (git-fixes). +- commit bc980a8 + +- KVM: x86/mmu: Fix wrong/misleading comments in TDP MMU fast zap + (git-fixes). +- commit d3e6160 + +- blacklist.conf: add fcb732d8f8cf ("KVM: x86/xen: Fix runstate + updates to be atomic when preempting vCPU") +- commit d42ecb5 + +- blacklist.conf: add 55749769fe60 ("KVM: x86: Fix wall clock writes + in Xen shared_info not to mark page dirty") +- commit 08e6ef4 + +- KVM: x86: Mask off reserved bits in CPUID.80000001H (git-fixes). +- commit a7fc31c + +- nvdimm/region: Delete nd_blk_region infrastructure + (jsc#PED-1689, jsc#PED-1690). +- ACPI: NFIT: Remove block aperture support (jsc#PED-1689, + jsc#PED-1690). +- nvdimm/namespace: Delete nd_namespace_blk (jsc#PED-1689, + jsc#PED-1690). +- nvdimm/namespace: Delete blk namespace consideration in shared + paths (jsc#PED-1689, jsc#PED-1690). +- nvdimm/blk: Delete the block-aperture window driver + (jsc#PED-1689, jsc#PED-1690). +- nvdimm/region: Fix default alignment for small regions + (jsc#PED-1689, jsc#PED-1690). +- libnvdimm/labels: Add uuid helpers (jsc#PED-1689, jsc#PED-1690). +- libnvdimm/labels: Introduce label setter helpers (jsc#PED-1689, + jsc#PED-1690). +- libnvdimm/labels: Add isetcookie validation helper + (jsc#PED-1689, jsc#PED-1690). +- libnvdimm/labels: Introduce getters for namespace label fields + (jsc#PED-1689, jsc#PED-1690). +- commit f3a7636 + +- KVM: x86: emulator: update the emulation mode after CR0 write + (git-fixes). +- commit f0c4a2c + +- KVM: x86: emulator: update the emulation mode after rsm + (git-fixes). +- commit debb42a + +- KVM: x86: emulator: introduce emulator_recalc_and_set_mode + (git-fixes). +- commit a9da797 + +- blacklist.conf: add xsk entry that was reverted +- commit 8c1c3d4 + +- KVM: x86: emulator: em_sysexit should update ctxt->mode + (git-fixes). +- commit e252f98 + +- KVM: VMX: fully disable SGX if SECONDARY_EXEC_ENCLS_EXITING + unavailable (git-fixes). +- commit f452678 + +- KVM: x86: Mask off reserved bits in CPUID.8000001AH (git-fixes). +- commit c7494f8 + +- KVM: x86: Mask off reserved bits in CPUID.80000008H (git-fixes). +- commit b042017 + +- KVM: x86: Mask off reserved bits in CPUID.80000006H (git-fixes). +- commit ce5ff67 + +- KVM: VMX: Drop bits 31:16 when shoving exception error code + into VMCS (git-fixes). +- commit e0caade + +- Update patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch + Patch (44b3834b2eed5 "arm64: errata: Remove AES hwcap for COMPAT tasks") added + new workaround identifier. Remove one placeholder to keep kABI intact. +- commit e23b992 + +- xsk: Initialise xskb free_list_node (jsc#PED-1368). +- selftests/bpf: Fix OOB write in test_verifier (jsc#PED-1368). +- bpf: Add selftests to cover packet access corner cases + (jsc#PED-1368). +- bpf: Fix the off-by-two error in range markings (jsc#PED-1368). +- tools/resolve_btfids: Skip unresolved symbol warning for empty + BTF sets (jsc#PED-1368). +- bpf: Fix bpf_check_mod_kfunc_call for built-in modules + (jsc#PED-1368). +- bpf: Make CONFIG_DEBUG_INFO_BTF depend upon CONFIG_BPF_SYSCALL + (jsc#PED-1368). +- bpf, sockmap: Re-evaluate proto ops when psock is removed from + sockmap (jsc#PED-1368). +- bpf, sockmap: Attach map progs to psock early for feature probes + (jsc#PED-1368). +- selftests/bpf: Add tests for restricted helpers (jsc#PED-1368). +- bpf: Forbid bpf_ktime_get_coarse_ns and bpf_timer_* in tracing + progs (jsc#PED-1368). +- libbpf: Perform map fd cleanup for gen_loader in case of error + (jsc#PED-1368). +- tools/runqslower: Fix cross-build (jsc#PED-1368). +- bpf: Fix inner map state pruning regression (jsc#PED-1368). +- bpf, sockmap: Use stricter sk state checks in sk_lookup_assign + (jsc#PED-1368). +- bpf: selftest: Trigger a DCE on the whole subprog + (jsc#PED-1368). +- riscv, bpf: Fix RV32 broken build, and silence RV64 warning + (jsc#PED-1368). +- bpftool: Install libbpf headers for the bootstrap version, + too (jsc#PED-1368). +- bpf: Do not reject when the stack read size is different from + the tracked scalar size (jsc#PED-1368). +- selftests/bpf: Make netcnt selftests serial to avoid spurious + failures (jsc#PED-1368). +- selftests/bpf: Convert test_bpffs to ASSERT macros + (jsc#PED-1368). +- libfs: Support RENAME_EXCHANGE in simple_rename() + (jsc#PED-1368). +- libfs: Move shmem_exchange to simple_rename_exchange + (jsc#PED-1368). +- scripts: documentation-file-ref-check: fix bpf selftests path + (jsc#PED-1368). +- libbpf: Deprecate AF_XDP support (jsc#PED-1368). +- selftests/bpf: Add a testcase for 64-bit bounds propagation + issue (jsc#PED-1368). +- bpf: Add missing map_delete_elem method to bloom filter map + (jsc#PED-1368). +- selftests/bpf: Add bloom map success test for userspace calls + (jsc#PED-1368). +- bpf: Add alignment padding for "map_extra" + consolidate holes + (jsc#PED-1368). +- Refresh patches.suse/kABI-padding-for-bpf.patch +- bpf: Bloom filter map naming fixups (jsc#PED-1368). +- selftests/bpf: Add test cases for struct_ops prog + (jsc#PED-1368). +- bpf: Add dummy BPF STRUCT_OPS for test purpose (jsc#PED-1368). +- bpf: Factor out helpers for ctx access checking (jsc#PED-1368). +- bpf: Factor out a helper to prepare trampoline for struct_ops + prog (jsc#PED-1368). +- riscv, libbpf: Add RISC-V (RV64) support to bpf_tracing.h + (jsc#PED-1368). +- tools, build: Add RISC-V to HOSTARCH parsing (jsc#PED-1368). +- riscv, bpf: Increase the maximum number of iterations + (jsc#PED-1368). +- selftests, bpf: Add one test for sockmap with strparser + (jsc#PED-1368). +- selftests, bpf: Fix test_txmsg_ingress_parser error + (jsc#PED-1368). +- selftests/bpf: Add weak/typeless ksym test for light skeleton + (jsc#PED-1368). +- Refresh patches.suse/bpf-selftests-Test-PTR_TO_RDONLY_MEM.patch +- libbpf: Use O_CLOEXEC uniformly when opening fds (jsc#PED-1368). +- libbpf: Ensure that BPF syscall fds are never 0, 1, or 2 + (jsc#PED-1368). +- libbpf: Add weak ksym support to gen_loader (jsc#PED-1368). +- libbpf: Add typeless ksym support to gen_loader (jsc#PED-1368). +- bpf: Add bpf_kallsyms_lookup_name helper (jsc#PED-1368). +- bpf/benchs: Add benchmarks for comparing hashmap lookups w/ + vs. w/out bloom filter (jsc#PED-1368). +- bpf/benchs: Add benchmark tests for bloom filter throughput + + false positive (jsc#PED-1368). +- selftests/bpf: Add bloom filter map test cases (jsc#PED-1368). +- libbpf: Add "map_extra" as a per-map-type extra flag + (jsc#PED-1368). +- bpf: Add bloom filter map implementation (jsc#PED-1368). +- riscv, bpf: Add BPF exception tables (jsc#PED-1368). +- selftests/bpf: Adding a namespace reset for tc_redirect + (jsc#PED-1368). +- selftests/bpf: Fix attach_probe in parallel mode (jsc#PED-1368). +- selfetests/bpf: Update vmtest.sh defaults (jsc#PED-1368). +- bpf: Use u64_stats_t in struct bpf_prog_stats (jsc#PED-1368). +- libbpf: Deprecate bpf_objects_list (jsc#PED-1368). +- selftests/bpf: Guess function end for test_get_branch_snapshot + (jsc#PED-1368). +- selftests/bpf: Skip all serial_test_get_branch_snapshot in vm + (jsc#PED-1368). +- selftests/seccomp: Use __BYTE_ORDER__ (jsc#PED-1368). +- samples: seccomp: Use __BYTE_ORDER__ (jsc#PED-1368). +- selftests/bpf: Use __BYTE_ORDER__ (jsc#PED-1368). +- libbpf: Use __BYTE_ORDER__ (jsc#PED-1368). +- libbpf: Deprecate ambiguously-named bpf_program__size() API + (jsc#PED-1368). +- libbpf: Deprecate multi-instance bpf_program APIs + (jsc#PED-1368). +- libbpf: Add ability to fetch bpf_program's underlying + instructions (jsc#PED-1368). +- libbpf: Fix off-by-one bug in bpf_core_apply_relo() + (jsc#PED-1368). +- bpftool: Switch to libbpf's hashmap for PIDs/names references + (jsc#PED-1368). +- bpftool: Switch to libbpf's hashmap for programs/maps in BTF + listing (jsc#PED-1368). +- bpftool: Switch to libbpf's hashmap for pinned paths of BPF + objects (jsc#PED-1368). +- bpftool: Do not expose and init hash maps for pinned path in + main.c (jsc#PED-1368). +- bpftool: Remove Makefile dep. on $(LIBBPF) for + $(LIBBPF_INTERNAL_HDRS) (jsc#PED-1368). +- selftests/bpf: Split out bpf_verif_scale selftests into multiple + tests (jsc#PED-1368). +- selftests/bpf: Mark tc_redirect selftest as serial + (jsc#PED-1368). +- selftests/bpf: Support multiple tests per file (jsc#PED-1368). +- selftests/bpf: Normalize selftest entry points (jsc#PED-1368). +- docs/bpf: Update documentation for BTF_KIND_DECL_TAG typedef + support (jsc#PED-1368). +- selftests/bpf: Add BTF_KIND_DECL_TAG typedef example in tag.c + (jsc#PED-1368). +- selftests/bpf: Test deduplication for BTF_KIND_DECL_TAG typedef + (jsc#PED-1368). +- selftests/bpf: Add BTF_KIND_DECL_TAG typedef unit tests + (jsc#PED-1368). +- bpf: Add BTF_KIND_DECL_TAG typedef support (jsc#PED-1368). +- selftests/bpf: Fix flow dissector tests (jsc#PED-1368). +- libbpf: Use func name when pinning programs with + LIBBPF_STRICT_SEC_NAME (jsc#PED-1368). +- bpf, tests: Add more LD_IMM64 tests (jsc#PED-1368). +- libbpf: Add legacy uprobe attaching support (jsc#PED-1368). +- libbpf: Refactor and simplify legacy kprobe code (jsc#PED-1368). +- selftests/bpf: Adopt attach_probe selftest to work on old + kernels (jsc#PED-1368). +- libbpf: Fix memory leak in legacy kprobe attach logic + (jsc#PED-1368). +- commit f05c9f9 + +- arm64: errata: Remove AES hwcap for COMPAT tasks (git-fixes) + Enable CONFIG_ARM64_ERRATUM_1742098 in arm64/default +- commit fbe1536 + +- arm64: Fix bit-shifting UB in the MIDR_CPU_MODEL() macro (git-fixes) +- commit c70ddd5 + +- arm64: fix rodata=full again (git-fixes) +- commit 62260a8 + +- selftests/bpf: Switch to new btf__type_cnt/btf__raw_data APIs + (jsc#PED-1368). +- bpftool: Switch to new btf__type_cnt API (jsc#PED-1368). +- tools/resolve_btfids: Switch to new btf__type_cnt API + (jsc#PED-1368). +- perf bpf: Switch to new btf__raw_data API (jsc#PED-1368). +- libbpf: Add btf__type_cnt() and btf__raw_data() APIs + (jsc#PED-1368). +- selftests/bpf: Make perf_buffer selftests work on 4.9 kernel + again (jsc#PED-1368). +- libbpf: Fix the use of aligned attribute (jsc#PED-1368). +- selftests/bpf: Switch to ".bss"/".rodata"/".data" lookups for + internal maps (jsc#PED-1368). +- libbpf: Simplify look up by name of internal maps + (jsc#PED-1368). +- selftests/bpf: Demonstrate use of custom .rodata/.data sections + (jsc#PED-1368). +- libbpf: Support multiple .rodata.* and .data.* BPF maps + (jsc#PED-1368). +- bpftool: Improve skeleton generation for data maps without + DATASEC type (jsc#PED-1368). +- bpftool: Support multiple .rodata/.data internal maps in + skeleton (jsc#PED-1368). +- libbpf: Remove assumptions about uniqueness of + .rodata/.data/.bss maps (jsc#PED-1368). +- libbpf: Use Elf64-specific types explicitly for dealing with + ELF (jsc#PED-1368). +- libbpf: Extract ELF processing state into separate struct + (jsc#PED-1368). +- libbpf: Deprecate btf__finalize_data() and move it into libbpf.c + (jsc#PED-1368). +- selftests/bpf: Use nanosleep tracepoint in perf buffer test + (jsc#PED-1368). +- selftests/bpf: Fix possible/online index mismatch in perf_buffer + test (jsc#PED-1368). +- selftests/bpf: Add verif_stats test (jsc#PED-1368). +- bpf: Add verified_insns to bpf_prog_info and fdinfo + (jsc#PED-1368). +- libbpf: Fix ptr_is_aligned() usages (jsc#PED-1368). +- selftests/bpf: Test bpf_skc_to_unix_sock() helper + (jsc#PED-1368). +- bpf: Add bpf_skc_to_unix_sock() helper (jsc#PED-1368). +- samples: bpf: Suppress readelf stderr when probing for BTF + support (jsc#PED-1368). +- net: bpf: Switch over to memdup_user() (jsc#PED-1368). +- libbpf: Fix dumping non-aligned __int128 (jsc#PED-1368). +- libbpf: Fix dumping big-endian bitfields (jsc#PED-1368). +- selftests/bpf: Use cpu_number only on arches that have it + (jsc#PED-1368). +- bpf/preload: Clean up .gitignore and "clean-files" target + (jsc#PED-1368). +- bpf: Silence Coverity warning for find_kfunc_desc_btf + (jsc#PED-1368). +- bpftool: Turn check on zlib from a phony target into a + conditional error (jsc#PED-1368). +- bpftool: Do not FORCE-build libbpf (jsc#PED-1368). +- selftests/bpf: Switch sk_lookup selftests to strict + SEC("sk_lookup") use (jsc#PED-1368). +- libbpf: Add opt-in strict BPF program section name handling + logic (jsc#PED-1368). +- libbpf: Complete SEC() table unification for + BPF_APROG_SEC/BPF_EAPROG_SEC (jsc#PED-1368). +- libbpf: Refactor ELF section handler definitions (jsc#PED-1368). +- libbpf: Reduce reliance of attach_fns on sec_def internals + (jsc#PED-1368). +- libbpf: Refactor internal sec_def handling to enable + pluggability (jsc#PED-1368). +- Refresh patches.suse/libbpf-Support-kernel-module-function-calls.patch +- selftests/bpf: Normalize all the rest SEC() uses (jsc#PED-1368). +- selftests/bpf: Switch SEC("classifier*") usage to a strict + SEC("tc") (jsc#PED-1368). +- commit 6e3d638 + +- bpftool: Fix install for libbpf's internal header(s) + (jsc#PED-1368). +- libbpf: Remove Makefile warnings on out-of-sync + netlink.h/if_link.h (jsc#PED-1368). +- bpf: Rename BTF_KIND_TAG to BTF_KIND_DECL_TAG (jsc#PED-1368). +- selfetest/bpf: Make some tests serial (jsc#PED-1368). +- selftests/bpf: Fix pid check in fexit_sleep test (jsc#PED-1368). +- selftests/bpf: Adding pid filtering for atomics test + (jsc#PED-1368). +- selftests/bpf: Make cgroup_v1v2 use its own port (jsc#PED-1368). +- selftests/bpf: Fix race condition in enable_stats + (jsc#PED-1368). +- selftests/bpf: Add per worker cgroup suffix (jsc#PED-1368). +- selftests/bpf: Allow some tests to be executed in sequence + (jsc#PED-1368). +- selftests/bpf: Add parallelism to test_progs (jsc#PED-1368). +- bpf: Support writable context for bare tracepoint + (jsc#PED-1368). +- bpftool: Add install-bin target to install binary only + (jsc#PED-1368). +- selftests/bpf: Better clean up for runqslower in + test_bpftool_build.sh (jsc#PED-1368). +- samples/bpf: Do not FORCE-recompile libbpf (jsc#PED-1368). +- samples/bpf: Install libbpf headers when building + (jsc#PED-1368). +- samples/bpf: Update .gitignore (jsc#PED-1368). +- bpf: iterators: Install libbpf headers when building + (jsc#PED-1368). +- bpf: preload: Install libbpf headers when building + (jsc#PED-1368). +- tools/runqslower: Install libbpf headers when building + (jsc#PED-1368). +- tools/resolve_btfids: Install libbpf headers when building + (jsc#PED-1368). +- bpftool: Install libbpf headers instead of including the dir + (jsc#PED-1368). +- Refresh patches.suse/bpftool-Remove-useless-include-to-perf-sys.h-from-ma.patch +- libbpf: Skip re-installing headers file if source is older + than target (jsc#PED-1368). +- selftests/bpf: Remove SEC("version") from test progs + (jsc#PED-1368). +- selftests/bpf: Skip the second half of get_branch_snapshot in vm + (jsc#PED-1368). +- selftests/bpf: Switch to new bpf_object__next_{map,program} + APIs (jsc#PED-1368). +- libbpf: Deprecate bpf_{map,program}__{prev,next} APIs since v0.7 + (jsc#PED-1368). +- libbpf: Add API documentation convention guidelines + (jsc#PED-1368). +- bpf: Use $(pound) instead of \# in Makefiles (jsc#PED-1368). +- selftests/bpf: Test new btf__add_btf() API (jsc#PED-1368). +- selftests/bpf: Refactor btf_write selftest to reuse BTF + generation logic (jsc#PED-1368). +- libbpf: Add API that copies all BTF types from one BTF object + to another (jsc#PED-1368). +- bpf: Avoid retpoline for bpf_for_each_map_elem (jsc#PED-1368). +- bpf: selftests: Add selftests for module kfunc support + (jsc#PED-1368). +- libbpf: Update gen_loader to emit BTF_KIND_FUNC relocations + (jsc#PED-1368). +- libbpf: Resolve invalid weak kfunc calls with imm = 0, off = + 0 (jsc#PED-1368). +- libbpf: Support kernel module function calls (jsc#PED-1368). +- bpf: Enable TCP congestion control kfunc from modules + (jsc#PED-1368). +- tools: Allow specifying base BTF file in resolve_btfids + (jsc#PED-1368). +- bpf: btf: Introduce helpers for dynamic BTF set registration + (jsc#PED-1368). +- bpf: Be conservative while processing invalid kfunc calls + (jsc#PED-1368). +- bpf: Introduce BPF support for kernel module function calls + (jsc#PED-1368). +- Refresh patches.suse/bpf-Stop-caching-subprog-index-in-the-bpf_pseudo_fun.patch +- Refresh patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch +- selftests/bpf: Use BTF-defined key/value for map definitions + (jsc#PED-1368). +- libbpf: Support uniform BTF-defined key/value specification + across all BPF maps (jsc#PED-1368). +- bpf/tests: Add test of LDX_MEM with operand aliasing + (jsc#PED-1368). +- bpf/tests: Add test of ALU shifts with operand register aliasing + (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of BPF_ATOMIC register + combinations (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of ALU register combinations + (jsc#PED-1368). +- bpf/tests: Minor restructuring of ALU tests (jsc#PED-1368). +- bpf/tests: Add more tests for ALU and ATOMIC register clobbering + (jsc#PED-1368). +- bpf/tests: Add tests to check source register zero-extension + (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of BPF_ATOMIC magnitudes + (jsc#PED-1368). +- bpf/tests: Add zero-extension checks in BPF_ATOMIC tests + (jsc#PED-1368). +- bpf/tests: Add tests of BPF_LDX and BPF_STX with small sizes + (jsc#PED-1368). +- selftests/bpf: Use kselftest skip code for skipped tests + (jsc#PED-1368). +- libbpf: Properly ignore STT_SECTION symbols in legacy map + definitions (jsc#PED-1368). +- bpf: Do not invoke the XDP dispatcher for PROG_RUN with single + repeat (jsc#PED-1368). +- libbpf: Make gen_loader data aligned (jsc#PED-1368). +- bpf: selftests: Fix fd cleanup in get_branch_snapshot + (jsc#PED-1368). +- xsk: Fix clang build error in __xp_alloc (jsc#PED-1368). +- selftests/bpf: Fix probe_user test failure with clang build + kernel (jsc#PED-1368). +- bpf: Replace callers of BPF_CAST_CALL with proper function + typedef (jsc#PED-1368). +- bpf: Replace "want address" users of BPF_CAST_CALL with + BPF_CALL_IMM (jsc#PED-1368). +- selftests/bpf: Normalize XDP section names in selftests + (jsc#PED-1368). +- Refresh patches.suse/selftests-bpf-xdp_redirect_multi-Limit-the-tests-in-.patch +- libbpf: Add "tc" SEC_DEF which is a better name for "classifier" + (jsc#PED-1368). +- bpf/tests: Add tail call limit test with external function call + (jsc#PED-1368). +- bpf/tests: Fix error in tail call limit tests (jsc#PED-1368). +- bpf/tests: Add more BPF_END byte order conversion tests + (jsc#PED-1368). +- bpf/tests: Expand branch conversion JIT test (jsc#PED-1368). +- bpf/tests: Add JMP tests with degenerate conditional + (jsc#PED-1368). +- bpf/tests: Add JMP tests with small offsets (jsc#PED-1368). +- bpf/tests: Add test case flag for verifier zero-extension + (jsc#PED-1368). +- bpf/tests: Add exhaustive test of LD_IMM64 immediate magnitudes + (jsc#PED-1368). +- bpf/tests: Add staggered JMP and JMP32 tests (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of JMP operand magnitudes + (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of ALU operand magnitudes + (jsc#PED-1368). +- bpf/tests: Add exhaustive tests of ALU shift values + (jsc#PED-1368). +- bpf/tests: Reduce memory footprint of test suite (jsc#PED-1368). +- bpf/tests: Allow different number of runs per test case + (jsc#PED-1368). +- libbpf: Ignore STT_SECTION symbols in 'maps' section + (jsc#PED-1368). +- bpf: selftest: Add verifier tests for <8-byte scalar spill + and refill (jsc#PED-1368). +- bpf: selftest: A bpf prog that has a 32bit scalar spill + (jsc#PED-1368). +- bpf: Support <8-byte scalar spill and refill (jsc#PED-1368). +- bpf: Check the other end of slot_type for STACK_SPILL + (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- bpf: Clarify data_len param in bpf_snprintf and bpf_seq_printf + comments (jsc#PED-1368). +- selftests/bpf: Add trace_vprintk test prog (jsc#PED-1368). +- selftests/bpf: Migrate prog_tests/trace_printk CHECKs to ASSERTs + (jsc#PED-1368). +- bpftool: Only probe trace_vprintk feature in 'full' mode + (jsc#PED-1368). +- libbpf: Use static const fmt string in __bpf_printk + (jsc#PED-1368). +- libbpf: Modify bpf_printk to choose helper based on arg count + (jsc#PED-1368). +- bpf: Add bpf_trace_vprintk helper (jsc#PED-1368). +- selftests/bpf: Stop using bpf_program__load (jsc#PED-1368). +- bpf: Merge printk and seq_printf VARARG max macros + (jsc#PED-1368). +- bpf, tests: Add tail call test suite (jsc#PED-1368). +- bpf, tests: Add tests for BPF_CMPXCHG (jsc#PED-1368). +- bpf, tests: Add tests for atomic operations (jsc#PED-1368). +- bpf, tests: Add test for 32-bit context pointer argument passing + (jsc#PED-1368). +- bpf, tests: Add branch conversion JIT test (jsc#PED-1368). +- bpf, tests: Add word-order tests for load/store of double words + (jsc#PED-1368). +- bpf, tests: Add tests for ALU operations implemented with + function calls (jsc#PED-1368). +- bpf, tests: Add more ALU64 BPF_MUL tests (jsc#PED-1368). +- bpf, tests: Add more BPF_LSH/RSH/ARSH tests for ALU64 + (jsc#PED-1368). +- bpf, tests: Add more ALU32 tests for BPF_LSH/RSH/ARSH + (jsc#PED-1368). +- bpf, tests: Add more tests of ALU32 and ALU64 bitwise operations + (jsc#PED-1368). +- bpf, tests: Fix typos in test case descriptions (jsc#PED-1368). +- bpf, tests: Add BPF_MOV tests for zero and sign extension + (jsc#PED-1368). +- bpf, tests: Add BPF_JMP32 test cases (jsc#PED-1368). +- commit da02160 + +- selftests: xsk: Add frame_headroom test (jsc#PED-1368). +- selftests: xsk: Change interleaving of packets in unaligned mode + (jsc#PED-1368). +- selftests: xsk: Add single packet test (jsc#PED-1368). +- selftests: xsk: Introduce pacing of traffic (jsc#PED-1368). +- selftests: xsk: Fix socket creation retry (jsc#PED-1368). +- selftests: xsk: Put the same buffer only once in the fill ring + (jsc#PED-1368). +- selftests: xsk: Fix missing initialization (jsc#PED-1368). +- xsk: Get rid of unused entry in struct xdp_buff_xsk + (jsc#PED-1368). +- selftests/bpf: Fix a few compiler warnings (jsc#PED-1368). +- libbpf: Constify all high-level program attach APIs + (jsc#PED-1368). +- libbpf: Schedule open_opts.attach_prog_fd deprecation since v0.7 + (jsc#PED-1368). +- selftests/bpf: Switch fexit_bpf2bpf selftest to + set_attach_target() API (jsc#PED-1368). +- libbpf: Allow skipping attach_func_name in + bpf_program__set_attach_target() (jsc#PED-1368). +- libbpf: Deprecated bpf_object_open_opts.relaxed_core_relocs + (jsc#PED-1368). +- selftests/bpf: Stop using relaxed_core_relocs which has no + effect (jsc#PED-1368). +- libbpf: Use pre-setup sec_def in libbpf_find_attach_btf_id() + (jsc#PED-1368). +- bpf: Update bpf_get_smp_processor_id() documentation + (jsc#PED-1368). +- libbpf: Add sphinx code documentation comments (jsc#PED-1368). +- selftests/bpf: Skip btf_tag test if btf_tag attribute not + supported (jsc#PED-1368). +- docs/bpf: Add documentation for BTF_KIND_TAG (jsc#PED-1368). +- selftests/bpf: Add a test with a bpf program with btf_tag + attributes (jsc#PED-1368). +- selftests/bpf: Test BTF_KIND_TAG for deduplication + (jsc#PED-1368). +- selftests/bpf: Add BTF_KIND_TAG unit tests (jsc#PED-1368). +- selftests/bpf: Change NAME_NTH/IS_NAME_NTH for BTF_KIND_TAG + format (jsc#PED-1368). +- selftests/bpf: Test libbpf API function btf__add_tag() + (jsc#PED-1368). +- bpftool: Add support for BTF_KIND_TAG (jsc#PED-1368). +- libbpf: Add support for BTF_KIND_TAG (jsc#PED-1368). +- libbpf: Rename btf_{hash,equal}_int to btf_{hash,equal}_int_tag + (jsc#PED-1368). +- bpf: Support for new btf kind BTF_KIND_TAG (jsc#PED-1368). +- btf: Change BTF_KIND_* macros to enums (jsc#PED-1368). +- commit 3c45813 + +- selftests/bpf: Fix .gitignore to not ignore test_progs.c + (jsc#PED-1368). +- bpf,x64 Emit IMUL instead of MUL for x86-64 (jsc#PED-1368). +- libbpf: Minimize explicit iterator of section definition array + (jsc#PED-1368). +- libbpf: Simplify BPF program auto-attach code (jsc#PED-1368). +- libbpf: Ensure BPF prog types are set before relocations + (jsc#PED-1368). +- selftests/bpf: Update selftests to always provide "struct_ops" + SEC (jsc#PED-1368). +- libbpf: Introduce legacy kprobe events support (jsc#PED-1368). +- libbpf: Make libbpf_version.h non-auto-generated (jsc#PED-1368). +- bpf, selftests: Replicate tailcall limit test for indirect + call case (jsc#PED-1368). +- selftests/bpf: Add test for bpf_get_branch_snapshot + (jsc#PED-1368). +- bpf: Introduce helper bpf_get_branch_snapshot (jsc#PED-1368). +- perf: Enable branch record for software events (jsc#PED-1368). +- Refresh patches.suse/ACPI-Add-perf-low-power-callback.patch +- selftests/bpf: Test new __sk_buff field hwtstamp (jsc#PED-1368). +- bpf: Add hardware timestamp field to __sk_buff (jsc#PED-1368). +- commit 079b8cc + +- selftests: xsk: Add tests for 2K frame size (jsc#PED-1368). +- selftests: xsk: Add tests for invalid xsk descriptors + (jsc#PED-1368). +- selftests: xsk: Eliminate test specific if-statement in test + runner (jsc#PED-1368). +- selftests: xsk: Add test for unaligned mode (jsc#PED-1368). +- selftests: xsk: Introduce replacing the default packet stream + (jsc#PED-1368). +- selftests: xsk: Allow for invalid packets (jsc#PED-1368). +- selftests: xsk: Eliminate MAX_SOCKS define (jsc#PED-1368). +- selftests: xsx: Make pthreads local scope (jsc#PED-1368). +- selftests: xsk: Make xdp_flags and bind_flags local + (jsc#PED-1368). +- selftests: xsk: Specify number of sockets to create + (jsc#PED-1368). +- selftests: xsk: Replace second_step global variable + (jsc#PED-1368). +- selftests: xsk: Introduce rx_on and tx_on in ifobject + (jsc#PED-1368). +- selftests: xsk: Add use_poll to ifobject (jsc#PED-1368). +- selftests: xsx: Introduce test name in test spec (jsc#PED-1368). +- selftests: xsk: Make frame_size configurable (jsc#PED-1368). +- selftests: xsk: Move rxqsize into xsk_socket_info + (jsc#PED-1368). +- selftests: xsk: Move num_frames and frame_headroom to + xsk_umem_info (jsc#PED-1368). +- selftests: xsk: Introduce test specifications (jsc#PED-1368). +- selftests: xsk: Introduce type for thread function + (jsc#PED-1368). +- selftests: xsk: Simplify xsk and umem arrays (jsc#PED-1368). +- libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API + deprecations (jsc#PED-1368). +- libbpf: Fix build with latest gcc/binutils with LTO + (jsc#PED-1368). +- selftests/bpf: Add checks for X__elf_bytes() skeleton helper + (jsc#PED-1368). +- bpftool: Provide a helper method for accessing skeleton's + embedded ELF data (jsc#PED-1368). +- libbpf: Change bpf_object_skeleton data field to const pointer + (jsc#PED-1368). +- bpf: Permit ingress_ifindex in bpf_prog_test_run_xattr + (jsc#PED-1368). +- commit db25468 + +- kabi: sk_buff.scm_io_uring (bsc#1204228 CVE-2022-2602). +- commit 9a9bd27 + +- scsi: scsi_transport_sas: Fix error handling in sas_phy_add() + (git-fixes). +- scsi: megaraid_sas: Correct value passed to scsi_device_lookup() + (git-fixes). +- scsi: qedf: Populate sysfs attributes for vport (git-fixes). +- scsi: mpt3sas: Fix return value check of dma_get_required_mask() + (git-fixes). +- commit 71fe2f3 + +- intel_idle: make SPR C1 and C1E be independent (jsc#PED-1936). +- commit 6f9a5d3 + +- cpuidle: intel_idle: Drop redundant backslash at line end (jsc#PED-1936). +- commit 593da52 + +- cpufreq: intel_pstate: Support Sapphire Rapids OOB mode (jsc#PED-849). +- commit 4bf905f + +- cpufreq: intel_pstate: Handle no_turbo in frequency invariance (jsc#PED-849). +- commit 41e314e + +- intel_idle: Fix SPR C6 optimization (jsc#PED-824 jsc#PED-1936). +- commit 29ea7f2 + +- intel_idle: Fix the 'preferred_cstates' module parameter (jsc#PED-824 jsc#PED-1936). +- commit 07146fb + +- intel_idle: Add AlderLake support (jsc#PED-824). +- commit 6094f58 + +- panic, kexec: make __crash_kexec() NMI safe (git-fixes). +- kexec: turn all kexec_mutex acquisitions into trylocks + (git-fixes). +- commit 1a14cb1 + +- x86/insn-eval: Handle insn_get_opcode() failure (jsc#PED-342). +- commit 94de1a1 + +- s390/pai: Add support for PAI Extension 1 NNPA counters + (jsc#PED-1973). +- commit a366504 + +- s390: block/xpram include (bsc#1205381). +- commit ad01f4b + +- KVM: VMX: clear vmx_x86_ops.sync_pir_to_irr if APICv is disabled + (bsc#1205007). +- commit a0ddd6a + +- Update config files. +- commit 6867f80 + +- io_uring/af_unix: defer registered files gc to io_uring release + (bsc#1204228 CVE-2022-2602). +- commit 52299ff + +- scsi: aacraid: Fix undefined behavior due to shift overflowing + the constant (jsc#PED-1560). +- scsi: aacraid: Clean up some inconsistent indenting + (jsc#PED-1560). +- scsi: aacraid: Move the SCSI pointer to private command data + (jsc#PED-1560). +- commit 919bd0a + +- block: mark __bio_try_merge_page static (jsc#PED-1183). +- iomap: simplify iomap_add_to_ioend (jsc#PED-1183). +- iomap: simplify iomap_readpage_actor (jsc#PED-1183). +- commit 49fac04 + +- block: improve batched tag allocation (jsc#PED-1183). +- sbitmap: add __sbitmap_queue_get_batch() (jsc#PED-1183). +- blk-mq: optimise *end_request non-stat path (jsc#PED-1183). +- block: mark bio_truncate static (jsc#PED-1183). +- block: move bio_get_{first,last}_bvec out of bio.h + (jsc#PED-1183). +- block: move bio_full out of bio.h (jsc#PED-1183). +- block: fold bio_cur_bytes into blk_rq_cur_bytes (jsc#PED-1183). +- block: move bio_mergeable out of bio.h (jsc#PED-1183). +- block: don't include in + (jsc#PED-1183). +- block: remove BIO_BUG_ON (jsc#PED-1183). +- blk-mq: inline hot part of __blk_mq_sched_restart + (jsc#PED-1183). +- commit bda310c + +- block: inline hot paths of blk_account_io_*() (jsc#PED-1183). +- Refresh patches.suse/block-update-io_ticks-when-io-hang.patch. +- commit 190f0ed + +- block: merge block_ioctl into blkdev_ioctl (jsc#PED-1183). +- block: move the *blkdev_ioctl declarations out of blkdev.h + (jsc#PED-1183). +- block: unexport blkdev_ioctl (jsc#PED-1183). +- block: don't dereference request after flush insertion + (jsc#PED-1183). +- blk-mq: cleanup blk_mq_submit_bio (jsc#PED-1183). +- blk-mq: cleanup and rename __blk_mq_alloc_request + (jsc#PED-1183). +- block: pre-allocate requests if plug is started and is a batch + (jsc#PED-1183). +- commit d1bcd5e + +- blk-mq: Change shared sbitmap naming to shared tags + (jsc#PED-1183). +- Refresh + patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch. +- commit 9042063 + +- blk-mq: Stop using pointers for blk_mq_tags bitmap tags + (jsc#PED-1183). +- Refresh + patches.suse/bfq-Limit-number-of-requests-consumed-by-each-cgroup.patch. +- Refresh + patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch. +- commit 0b26e0b + +- blk-mq: Use shared tags for shared sbitmap support + (jsc#PED-1183). +- Refresh + patches.suse/blk-mq-don-t-free-tags-if-the-tag_set-is-used-by-oth.patch. +- Refresh + patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch. +- commit 439e1ef + +- blk-mq: Refactor and rename + blk_mq_free_map_and_{requests->rqs}() (jsc#PED-1183). +- Refresh + patches.suse/blk-mq-don-t-free-tags-if-the-tag_set-is-used-by-oth.patch. +- commit 258a969 + +- block: move struct request to blk-mq.h (jsc#PED-1183). +- Refresh + patches.suse/block-Add-a-helper-to-validate-the-block-size.patch. +- Refresh + patches.suse/block-don-t-merge-across-cgroup-boundaries-if-blkcg-.patch. +- Refresh + patches.suse/block-move-the-SECTOR_SIZE-related-definitions-to-bl.patch. +- commit 8c609f9 + +- Update config files: enable CONFIG_NET_SOCK_MSG in s390x-zfcpdump (jsc#PED-1368) +- commit 47cc0bc + +- fuse: add file_modified() to fallocate (bsc#1205332). +- fuse: fix readdir cache race (bsc#1205331). +- commit 75f741e + +- block/mq-deadline: Prioritize high-priority requests + (jsc#PED-1183). +- Refresh + patches.suse/block-fix-async_depth-sysfs-interface-for-mq-deadlin.patch. +- commit f999f8f + +- net: phy: mscc: macsec: clear encryption keys when freeing a + flow (git-fixes). +- macsec: clear encryption keys from the stack after setting up + offload (git-fixes). +- macsec: fix detection of RXSCs when toggling offloading + (git-fixes). +- macsec: fix secy->n_rx_sc accounting (git-fixes). +- macsec: delete new rxsc when offload fails (git-fixes). +- wifi: cfg80211: fix memory leak in query_regdb_file() + (git-fixes). +- wifi: cfg80211: silence a sparse RCU warning (git-fixes). +- soundwire: qcom: check for outanding writes before doing a read + (git-fixes). +- soundwire: qcom: reinit broadcast completion (git-fixes). +- phy: ralink: mt7621-pci: add sentinel to quirks table + (git-fixes). +- phy: stm32: fix an error code in probe (git-fixes). +- mtd: parsers: bcm47xxpart: Fix halfblock reads (git-fixes). +- media: v4l: subdev: Fail graciously when getting try data for + NULL state (git-fixes). +- media: meson: vdec: fix possible refcount leak in vdec_probe() + (git-fixes). +- media: dvb-frontends/drxk: initialize err to 0 (git-fixes). +- media: cros-ec-cec: limit msg.len to CEC_MAX_MSG_SIZE + (git-fixes). +- media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE (git-fixes). +- media: rkisp1: Zero v4l2_subdev_format fields in when validating + links (git-fixes). +- media: rkisp1: Use correct macro for gradient registers + (git-fixes). +- media: rkisp1: Initialize color space on resizer sink and + source pads (git-fixes). +- media: rkisp1: Don't pass the quantization to + rkisp1_csm_config() (git-fixes). +- mtd: parsers: bcm47xxpart: print correct offset on read error + (git-fixes). +- video/fbdev/stifb: Implement the stifb_fillrect() function + (git-fixes). +- commit 5883e57 + +- block: move the SECTOR_SIZE related definitions to blk_types.h + (jsc#PED-1183). +- commit 631102f + +- can: j1939: j1939_send_one(): fix missing CAN header + initialization (git-fixes). +- can: af_can: fix NULL pointer dereference in can_rx_register() + (git-fixes). +- hamradio: fix issue of dev reference count leakage in + bpq_device_event() (git-fixes). +- efi: random: Use 'ACPI reclaim' memory for random seed + (git-fixes). +- efi: random: reduce seed size to 32 bytes (git-fixes). +- drm/i915/sdvo: Setup DDC fully before output init (git-fixes). +- drm/i915/sdvo: Filter out invalid outputs more sensibly + (git-fixes). +- drm/rockchip: dsi: Force synchronous probe (git-fixes). +- Bluetooth: L2CAP: Fix attempting to access uninitialized memory + (git-fixes). +- Bluetooth: L2CAP: Fix accepting connection request for invalid + SPSM (git-fixes). +- drm/msm/hdmi: fix IRQ lifetime (git-fixes). +- i2c: xiic: Add platform module alias (git-fixes). +- ACPI: APEI: Fix integer overflow in ghes_estatus_pool_init() + (git-fixes). +- HID: saitek: add madcatz variant of MMO7 mouse device ID + (git-fixes). +- HID: playstation: add initial DualSense Edge controller support + (git-fixes). +- drm/amdgpu: set vm_update_mode=0 as default for Sienna Cichlid + in SRIOV case (git-fixes). +- drm/msm/hdmi: Remove spurious IRQF_ONESHOT flag (git-fixes). +- commit 5a3b429 + +- selftests/bpf: Fix test_core_reloc_mods on big-endian machines + (jsc#PED-1368). +- selftests/bpf: Use recv_timeout() instead of retries + (jsc#PED-1368). +- skmsg: Extract and reuse sk_msg_is_readable() (jsc#PED-1368). +- Refresh patches.suse/bpf-sockmap-Remove-unhash-handler-for-BPF-sockmap-us.patch +- net: Rename ->stream_memory_read to ->sock_is_readable + (jsc#PED-1368). +- Refresh patches.suse/bpf-sockmap-Remove-unhash-handler-for-BPF-sockmap-us.patch +- samples/bpf: Relicense bpf_insn.h as GPL-2.0-only OR + BSD-2-Clause (jsc#PED-1368). +- samples: bpf: Fix vmlinux.h generation for XDP samples + (jsc#PED-1368). +- bpf, selftests: Add test case for mixed cgroup v1/v2 + (jsc#PED-1368). +- bpf, selftests: Add cgroup v1 net_cls classid helpers + (jsc#PED-1368). +- selftests/bpf: Fix build of task_pt_regs test for arm64 + (jsc#PED-1368). +- bpf: Relicense disassembler as GPL-2.0-only OR BSD-2-Clause + (jsc#PED-1368). +- selftests/bpf: Test XDP bonding nest and unwind (jsc#PED-1368). +- perf trace: Update cmd string table to decode sys_bpf first arg + (jsc#PED-1368). +- samples: bpf: Fix uninitialized variable in xdp_redirect_cpu + (jsc#PED-1368). +- selftests/bpf: Reduce more flakyness in sockmap_listen + (jsc#PED-1368). +- bpf: Fix bpf-next builds without CONFIG_BPF_EVENTS + (jsc#PED-1368). +- bpf: selftests: Add dctcp fallback test (jsc#PED-1368). +- bpf: selftests: Add connect_to_fd_opts to network_helpers + (jsc#PED-1368). +- bpf: selftests: Add sk_state to bpf_tcp_helpers.h + (jsc#PED-1368). +- bpf: tcp: Allow bpf-tcp-cc to call bpf_(get|set)sockopt + (jsc#PED-1368). +- selftests: xsk: Preface options with opt (jsc#PED-1368). +- selftests: xsk: Make enums lower case (jsc#PED-1368). +- selftests: xsk: Generate packets from specification + (jsc#PED-1368). +- selftests: xsk: Generate packet directly in umem (jsc#PED-1368). +- selftests: xsk: Simplify cleanup of ifobjects (jsc#PED-1368). +- selftests: xsk: Decrease sending speed (jsc#PED-1368). +- selftests: xsk: Validate tx stats on tx thread (jsc#PED-1368). +- selftests: xsk: Simplify packet validation in xsk tests + (jsc#PED-1368). +- selftests: xsk: Rename worker_* functions that are not thread + entry points (jsc#PED-1368). +- selftests: xsk: Disassociate umem size with packets sent + (jsc#PED-1368). +- selftests: xsk: Remove end-of-test packet (jsc#PED-1368). +- selftests: xsk: Simplify the retry code (jsc#PED-1368). +- selftests: xsk: Return correct error codes (jsc#PED-1368). +- selftests: xsk: Remove unused variables (jsc#PED-1368). +- selftests: xsk: Remove the num_tx_packets option (jsc#PED-1368). +- selftests: xsk: Remove color mode (jsc#PED-1368). +- bpf: selftests: Add bpf_task_pt_regs() selftest (jsc#PED-1368). +- bpf: Add bpf_task_pt_regs() helper (jsc#PED-1368). +- bpf: Extend bpf_base_func_proto helpers with + bpf_get_current_task_btf() (jsc#PED-1368). +- bpf: Consolidate task_struct BTF_ID declarations (jsc#PED-1368). +- bpf: Add BTF_ID_LIST_GLOBAL_SINGLE macro (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_map_multi to XDP samples + helper (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_map_multi_kern.o to XDP + samples helper (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_map to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_map_kern.o to XDP samples + helper (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_cpu to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_cpu_kern.o to XDP samples + helper (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_redirect_kern.o to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_monitor to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Convert xdp_monitor_kern.o to XDP samples helper + (jsc#PED-1368). +- samples: bpf: Add vmlinux.h generation support (jsc#PED-1368). +- samples: bpf: Add devmap_xmit tracepoint statistics support + (jsc#PED-1368). +- samples: bpf: Add BPF support for devmap_xmit tracepoint + (jsc#PED-1368). +- samples: bpf: Add cpumap tracepoint statistics support + (jsc#PED-1368). +- samples: bpf: Add BPF support for cpumap tracepoints + (jsc#PED-1368). +- samples: bpf: Add xdp_exception tracepoint statistics support + (jsc#PED-1368). +- samples: bpf: Add BPF support for xdp_exception tracepoint + (jsc#PED-1368). +- samples: bpf: Add redirect tracepoint statistics support + (jsc#PED-1368). +- samples: bpf: Add BPF support for redirect tracepoint + (jsc#PED-1368). +- samples: bpf: Add basic infrastructure for XDP samples + (jsc#PED-1368). +- tools: include: Add ethtool_drvinfo definition to UAPI header + (jsc#PED-1368). +- samples: bpf: Fix a couple of warnings (jsc#PED-1368). +- selftests/bpf: Test for get_netns_cookie (jsc#PED-1368). +- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_SK_MSG + (jsc#PED-1368). +- selftests/bpf: Exit with KSFT_SKIP if no Makefile found + (jsc#PED-1368). +- selftests/bpf: Add missing files required by test_bpftool.sh + for installing (jsc#PED-1368). +- selftests/bpf: Add default bpftool built by selftests to PATH + (jsc#PED-1368). +- selftests/bpf: Make test_doc_build.sh work from script directory + (jsc#PED-1368). +- selftests/bpf: Reduce flakyness in timer_mim (jsc#PED-1368). +- bpf: Migrate cgroup_bpf to internal cgroup_bpf_attach_type enum + (jsc#PED-1368). +- selftests/bpf: Add tests for {set|get} socket option from + setsockopt BPF (jsc#PED-1368). +- bpf: Add support for {set|get} socket options from setsockopt + BPF (jsc#PED-1368). +- selftests/bpf: Adding delay in socketmap_listen to reduce + flakyness (jsc#PED-1368). +- bpf: Fix NULL event->prog pointer access in bpf_overflow_handler + (jsc#PED-1368). +- bpf: Undo off-by-one in interpreter tail call count limit + (jsc#PED-1368). +- selftests/bpf: Test for get_netns_cookie (jsc#PED-1368). +- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_SOCK_OPS + (jsc#PED-1368). +- bpf: Remove redundant initialization of variable allow + (jsc#PED-1368). +- selftests/bpf: Replace CHECK with ASSERT_* macros in + send_signal.c (jsc#PED-1368). +- Refresh patches.suse/selftests-bpf-Fix-flaky-send_signal-test.patch +- selftests/bpf: Support glob matching for test selector + (jsc#PED-1368). +- selftests/bpf: Also print test name in subtest status message + (jsc#PED-1368). +- selftests/bpf: Skip loading bpf_testmod when using -l to list + tests (jsc#PED-1368). +- selftests/bpf: Add exponential backoff to map_delete_retriable + in test_maps (jsc#PED-1368). +- selftests/bpf: Add exponential backoff to map_update_retriable + in test_maps (jsc#PED-1368). +- selftest/bpf: Add new tests in sockmap for unix stream to tcp + (jsc#PED-1368). +- selftest/bpf: Change udp to inet in some function names + (jsc#PED-1368). +- selftest/bpf: Add tests for sockmap with unix stream type + (jsc#PED-1368). +- af_unix: Add read_sock for stream socket types (jsc#PED-1368). +- selftests/bpf: Test btf__load_vmlinux_btf/btf__load_module_btf + APIs (jsc#PED-1368). +- bpf: Reconfigure libbpf docs to remove unversioned API + (jsc#PED-1368). +- selftests/bpf: Add ref_ctr_offset selftests (jsc#PED-1368). +- libbpf: Add uprobe ref counter offset support for USDT + semaphores (jsc#PED-1368). +- selftests/bpf: Add bpf_cookie selftests for high-level APIs + (jsc#PED-1368). +- selftests/bpf: Extract uprobe-related helpers into + trace_helpers.{c,h} (jsc#PED-1368). +- selftests/bpf: Test low-level perf BPF link API (jsc#PED-1368). +- libbpf: Add bpf_cookie to perf_event, kprobe, uprobe, and tp + attach APIs (jsc#PED-1368). +- libbpf: Add bpf_cookie support to bpf_link_create() API + (jsc#PED-1368). +- libbpf: Use BPF perf link when supported by kernel + (jsc#PED-1368). +- libbpf: Remove unused bpf_link's destroy operation, but add + dealloc (jsc#PED-1368). +- bpf: Add bpf_get_attach_cookie() BPF helper to access bpf_cookie + value (jsc#PED-1368). +- bpf: Allow to specify user-provided bpf_cookie for BPF perf + links (jsc#PED-1368). +- bpf: Implement minimal BPF perf link (jsc#PED-1368). +- bpf: Refactor perf_event_set_bpf_prog() to use struct bpf_prog + input (jsc#PED-1368). +- bpf: Refactor BPF_PROG_RUN_ARRAY family of macros into functions + (jsc#PED-1368). +- bpf: Refactor BPF_PROG_RUN into a function (jsc#PED-1368). +- Refresh patches.suse/bpf-Avoid-races-in-__bpf_prog_run-for-32bit-arches.patch +- selftest/bpf: Extend the bpf_snprintf() test for "%c" + (jsc#PED-1368). +- selftest/bpf: Implement sample UNIX domain socket iterator + program (jsc#PED-1368). +- bpf: Support "%c" in bpf_bprintf_prepare() (jsc#PED-1368). +- bpf: af_unix: Implement BPF iterator for UNIX domain socket + (jsc#PED-1368). +- selftests/bpf: Verify bpf_get_netns_cookie in + BPF_PROG_TYPE_CGROUP_SOCKOPT (jsc#PED-1368). +- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_CGROUP_SOCKOPT + (jsc#PED-1368). +- libbpf: Support weak typed ksyms (jsc#PED-1368). +- Refresh patches.suse/bpf-selftests-Test-PTR_TO_RDONLY_MEM.patch +- selftests/bpf: Fix running of XDP bonding tests (jsc#PED-1368). +- net: in_irq() cleanup (jsc#PED-1368). +- selftests/bpf: Add tests for XDP bonding (jsc#PED-1368). +- net, core: Allow netdev_lower_get_next_private_rcu in bh context + (jsc#PED-1368). +- net, bonding: Add XDP support to the bonding driver + (jsc#PED-1368). +- net, core: Add support for XDP redirection to slave device + (jsc#PED-1368). +- net, bonding: Refactor bond_xmit_hash for use with xdp_buff + (jsc#PED-1368). +- samples/bpf: xdpsock: Remove forward declaration of + ip_fast_csum() (jsc#PED-1368). +- samples/bpf: xdpsock: Make the sample more useful outside the + tree (jsc#PED-1368). +- selftests/bpf: Rename reference_tracking BPF programs + (jsc#PED-1368). +- selftests/bpf: Move netcnt test under test_progs (jsc#PED-1368). +- bpf, unix: Check socket type in unix_bpf_update_proto() + (jsc#PED-1368). +- bpf: Fix off-by-one in tail call count limiting (jsc#PED-1368). +- selftests/bpf: Update bpftool's consistency script for checking + options (jsc#PED-1368). +- tools: bpftool: Complete and synchronise attach or map types + (jsc#PED-1368). +- Refresh patches.suse/tools-bpftool-Complete-metrics-list-in-bpftool-prog-.patch +- Refresh patches.suse/tools-bpftool-Document-and-add-bash-completion-for-L.patch +- Refresh patches.suse/tools-bpftool-Update-and-synchronise-option-list-in-.patch +- selftests/bpf: Check consistency between bpftool source, doc, + completion (jsc#PED-1368). +- tools: bpftool: Slightly ease bash completion updates + (jsc#PED-1368). +- libbpf: Add btf__load_vmlinux_btf/btf__load_module_btf + (jsc#PED-1368). +- tools: bpftool: Support dumping split BTF by id (jsc#PED-1368). +- libbpf: Add split BTF support for btf__load_from_kernel_by_id() + (jsc#PED-1368). +- tools: Replace btf__get_from_id() with + btf__load_from_kernel_by_id() (jsc#PED-1368). +- libbpf: Rename btf__get_from_id() as + btf__load_from_kernel_by_id() (jsc#PED-1368). +- libbpf: Rename btf__load() as btf__load_into_kernel() + (jsc#PED-1368). +- bpf: Emit better log message if bpf_iter ctx arg btf_id == 0 + (jsc#PED-1368). +- tools/resolve_btfids: Emit warnings and patch zero id for + missing symbols (jsc#PED-1368). +- bpf: Increase supported cgroup storage value size + (jsc#PED-1368). +- libbpf: Fix comment typo (jsc#PED-1368). +- samples: bpf: Add the omitted xdp samples to .gitignore + (jsc#PED-1368). +- selftests/bpf: Use ping6 only if available in tc_redirect + (jsc#PED-1368). +- libbpf: Split CO-RE logic into relo_core.c (jsc#PED-1368). +- libbpf: Move CO-RE types into relo_core.h (jsc#PED-1368). +- libbpf: Split bpf_core_apply_relo() into bpf_program independent + helper (jsc#PED-1368). +- libbpf: Cleanup the layering between CORE and bpf_program + (jsc#PED-1368). +- selftests/bpf: Document vmtest.sh dependencies (jsc#PED-1368). +- libbpf: Add bpf_map__pin_path function (jsc#PED-1368). +- bpf: selftest: Test batching and bpf_(get|set)sockopt in bpf + tcp iter (jsc#PED-1368). +- bpf: tcp: Support bpf_(get|set)sockopt in bpf tcp iter + (jsc#PED-1368). +- bpf: tcp: Bpf iter batching and lock_sock (jsc#PED-1368). +- tcp: seq_file: Replace listening_hash with lhash2 + (jsc#PED-1368). +- tcp: seq_file: Add listening_get_first() (jsc#PED-1368). +- bpf: tcp: seq_file: Remove bpf_seq_afinfo from tcp_iter_state + (jsc#PED-1368). +- tcp: seq_file: Refactor net and family matching (jsc#PED-1368). +- libbpf: Export bpf_program__attach_kprobe_opts function + (jsc#PED-1368). +- libbpf: Allow decimal offset for kprobes (jsc#PED-1368). +- libbpf: Fix func leak in attach_kprobe (jsc#PED-1368). +- selftests/bpf: Mute expected invalid map creation error msg + (jsc#PED-1368). +- bpf: Remove redundant intiialization of variable stype + (jsc#PED-1368). +- bpf: Fix pointer cast warning (jsc#PED-1368). +- libbpf: Propagate errors when retrieving enum value for typed + data display (jsc#PED-1368). +- selftests/bpf: Add __int128-specific tests for typed data dump + (jsc#PED-1368). +- libbpf: Avoid use of __int128 in typed dump display + (jsc#PED-1368). +- selftests, bpf: test_tc_tunnel.sh nc: Cannot use -p and -l + (jsc#PED-1368). +- selftests/bpf: Check inner map deletion (jsc#PED-1368). +- libbpf: Btf typed dump does not need to allocate dump data + (jsc#PED-1368). +- libbpf: Fix compilation errors on ppc64le for btf dump typed + data (jsc#PED-1368). +- libbpf: Clarify/fix unaligned data issues for btf typed dump + (jsc#PED-1368). +- selftests/bpf: Add dump type data tests to btf dump tests + (jsc#PED-1368). +- selftests/bpf: Add ASSERT_STRNEQ() variant for test_progs + (jsc#PED-1368). +- libbpf: BTF dumper support for typed data (jsc#PED-1368). +- selftests/bpf: Switch existing selftests to using open_opts + for custom BTF (jsc#PED-1368). +- libbpf: Introduce 'btf_custom_path' to 'bpf_obj_open_opts' + (jsc#PED-1368). +- selftests/bpf: Add test cases for redirection between udp and + unix (jsc#PED-1368). +- selftests/bpf: Add a test case for unix sockmap (jsc#PED-1368). +- selftests/bpf: Factor out add_to_sockmap() (jsc#PED-1368). +- selftests/bpf: Factor out udp_socketpair() (jsc#PED-1368). +- af_unix: Implement unix_dgram_bpf_recvmsg() (jsc#PED-1368). +- af_unix: Implement ->psock_update_sk_prot() (jsc#PED-1368). +- af_unix: Add a dummy ->close() for sockmap (jsc#PED-1368). +- af_unix: Set TCP_ESTABLISHED for datagram sockets too + (jsc#PED-1368). +- af_unix: Implement ->read_sock() for sockmap (jsc#PED-1368). +- sock_map: Lift socket state restriction for datagram sockets + (jsc#PED-1368). +- sock_map: Relax config dependency to CONFIG_NET (jsc#PED-1368). +- Refesh patches.suse/of-net-move-of_net-under-net.patch +- selftests/bpf: Add test for bpf_get_func_ip in kprobe+offset + probe (jsc#PED-1368). +- libbpf: Allow specification of "kprobe/function+offset" + (jsc#PED-1368). +- libbpf: Add bpf_program__attach_kprobe_opts function + (jsc#PED-1368). +- selftests/bpf: Add test for bpf_get_func_ip helper + (jsc#PED-1368). +- bpf: Add bpf_get_func_ip helper for kprobe programs + (jsc#PED-1368). +- bpf: Add bpf_get_func_ip helper for tracing programs + (jsc#PED-1368). +- bpf: Enable BPF_TRAMP_F_IP_ARG for trampolines with + call_get_func_ip (jsc#PED-1368). +- bpf, x86: Store caller's ip in trampoline stack (jsc#PED-1368). +- Refresh patches.suse/bpf-Handle-return-value-of-BPF_PROG_TYPE_STRUCT_OPS-.patch +- selftests/bpf: Add a test with bpf_timer in inner map + (jsc#PED-1368). +- selftests/bpf: Add bpf_timer test (jsc#PED-1368). +- bpf: Teach stack depth check about async callbacks + (jsc#PED-1368). +- bpf: Implement verifier support for validation of async + callbacks (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- bpf: Relax verifier recursion check (jsc#PED-1368). +- bpf: Remember BTF of inner maps (jsc#PED-1368). +- bpf: Prevent pointer mismatch in bpf_timer_init (jsc#PED-1368). +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- Refresh patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch +- bpf: Add map side support for bpf timers (jsc#PED-1368). +- bpf: Introduce bpf timers (jsc#PED-1368). +- Refresh patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch +- Refresh patches.suse/bpf-Replace-ARG_XXX_OR_NULL-with-ARG_XXX-PTR_MAYBE_N.patch +- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch +- Refresh patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch +- bpf: Factor out bpf_spin_lock into helpers (jsc#PED-1368). +- bpf: Prepare bpf_prog_put() to be called from irq context + (jsc#PED-1368). +- samples/bpf: xdp_redirect_cpu_user: Cpumap qsize set larger + default (jsc#PED-1368). +- bpf: Tidy xdp attach selftests (jsc#PED-1368). +- selftests/bpf: Add test for xdp_md context in BPF_PROG_TEST_RUN + (jsc#PED-1368). +- bpf: Support specifying ingress via xdp_md context in + BPF_PROG_TEST_RUN (jsc#PED-1368). +- bpf: Support input xdp_md context in BPF_PROG_TEST_RUN + (jsc#PED-1368). +- commit e693794 + +- net: phy: mxl-gpy: add temperature sensor (jsc#PED-829). +- Update config files. +- supported.conf: added lib/polynomial.ko +- commit 60a46b1 + +- x86/fpu: Drop fpregs lock before inheriting FPU permissions + (bnc#1205282). +- commit bbde2ef + +- mac80211: mesh: clean up rx_bcn_presp API (git-fixes). +- Refresh + patches.suse/mac80211-always-allocate-struct-ieee802_11_elems.patch. +- commit ffa0643 + +- blacklist.conf: cleanup designed to break kABI +- commit e1ca2ce + +- net/mlx5: Add MACsec offload Tx command support (jsc#PED-1549). +- Update config files. +- commit d527e6d + +- blacklist.conf: cleanup designed to break kABI +- commit 3471afe + +- net/mlx5e: Validate striding RQ before enabling XDP + (jsc#PED-1549). +- Refresh + patches.suse/s390-Fix-mlx5-RoCE-throuput-degradtion.patch. +- commit af8a650 + +- RDMA/rxe: Cleanup rxe_pool_entry (jsc#PED-1111). +- Refresh patches.suse/RDMA-rxe-Fix-rnr-retry-behavior.patch. +- commit 817ae4c + +- PM: core: Add EXPORT[_GPL]_SIMPLE_DEV_PM_OPS macros (git-fixes). +- commit 652c0d1 + +- RDMA/rxe: Remove qp->grp_lock and qp->grp_list (jsc#PED-1111). +- Refresh + patches.suse/RDMA-rxe-Fix-error-unwind-in-rxe_create_qp.patch. +- commit 30d623b + +- PM: core: Remove static qualifier in DEFINE_SIMPLE_DEV_PM_OPS + macro (git-fixes). +- commit 34f1483 + +- mmc: mxc: Use the new PM macros (git-fixes). +- commit 1480bad + +- mmc: jz4740: Use the new PM macros (git-fixes). +- commit 0e7751d + +- PM: runtime: Capture device status before disabling runtime PM + (git-fixes). +- commit 533efbb + +- sfc: Fix an error handling path in efx_pci_probe() + (jsc#PED-1565). +- RDMA/qedr: clean up work queue on failure in + qedr_alloc_resources() (jsc#PED-1529). +- RDMA/rxe: Fix mr leak in RESPST_ERR_RNR (jsc#PED-1111). +- net/mlx5e: Fix macsec sci endianness at rx sa update + (jsc#PED-1549). +- net/mlx5e: Fix wrong bitwise comparison usage in + macsec_fs_rx_add_rule function (jsc#PED-1549). +- net/mlx5e: Fix macsec rx security association (SA) update/delete + (jsc#PED-1549). +- net/mlx5e: Fix macsec coverity issue at rx sa update + (jsc#PED-1549). +- net/mlx5: Fix crash during sync firmware reset (jsc#PED-1549). +- net/mlx5: Update fw fatal reporter state on PCI handlers + successful recover (jsc#PED-1549). +- net/mlx5e: TC, Fix cloned flow attr instance dests are not + zeroed (jsc#PED-1549). +- net/mlx5e: TC, Reject forwarding from internal port to internal + port (jsc#PED-1549). +- net/mlx5: Fix possible use-after-free in async command interface + (jsc#PED-1549). +- net/mlx5: ASO, Create the ASO SQ with the correct timestamp + format (jsc#PED-1549). +- net/mlx5e: Update restore chain id for slow path packets + (jsc#PED-1549). +- net/mlx5e: Extend SKB room check to include PTP-SQ + (jsc#PED-1549). +- net/mlx5: DR, Fix matcher disconnect error flow (jsc#PED-1549). +- net/mlx5: Wait for firmware to enable CRS before + pci_restore_state (jsc#PED-1549). +- net/mlx5e: Do not increment ESN when updating IPsec ESN state + (jsc#PED-1549). +- i40e: Fix flow-type by setting GL_HASH_INSET registers + (jsc#PED-372). +- i40e: Fix VF hang when reset is triggered on another VF + (jsc#PED-372). +- i40e: Fix ethtool rx-flow-hash setting for X722 (jsc#PED-372). +- net/mlx5e: Cleanup MACsec uninitialization routine + (jsc#PED-1549). +- sfc: include vport_id in filter spec hash and equal() + (jsc#PED-1565). +- bnxt_en: fix memory leak in bnxt_nvm_test() (jsc#PED-1495). +- sfc: Change VF mac via PF as first preference if available + (jsc#PED-1565). +- i40e: Fix DMA mappings leak (jsc#PED-372). +- net/mlx5: Make ASO poll CQ usable in atomic context + (jsc#PED-1549). +- scsi: qedf: Populate sysfs attributes for vport (jsc#PED-1524). +- RDMA/rxe: Remove error/warning messages from packet receiver + path (jsc#PED-1111). +- RDMA/rxe: Remove redundant num_sge fields (jsc#PED-1111). +- RDMA/mlx5: Enable ATS support for MRs and umems (jsc#PED-1552). +- RDMA/mlx5: Add support for dmabuf to devx umem (jsc#PED-1552). +- RDMA/core: Add UVERBS_ATTR_RAW_FD (jsc#PED-1552). +- net/mlx5: Add IFC bits for mkey ATS (jsc#PED-1549). +- RDMA/rxe: Set pd early in mr alloc routines (jsc#PED-1111). +- RDMA/rxe: Add send_common_ack() helper (jsc#PED-1111). +- RDMA/rxe: Use members of generic struct in rxe_mr + (jsc#PED-1111). +- IB: Set IOVA/LENGTH on IB_MR in core/uverbs layers + (jsc#PED-1547). +- RDMA/mlx5: Remove duplicate assignment in umr_rereg_pas() + (jsc#PED-1552). +- RDMA/rxe: convert pr_warn to pr_debug (jsc#PED-1111). +- RDMA/rxe: use %u to print u32 variables (jsc#PED-1111). +- IB/mlx5: Support querying eswitch functions from DEVX + (jsc#PED-1552). +- RDMA/siw: Add missing Kconfig selections (jsc#PED-1503). +- RDMA/rxe: Delete error messages triggered by incoming Read + requests (jsc#PED-1111). +- RDMA/rxe: Remove the unused variable obj (jsc#PED-1111). +- RDMA/rxe: Remove an unused member from struct rxe_mr + (jsc#PED-1111). +- IB/mlx5: Remove duplicate header inclusion related to ODP + (jsc#PED-1552). +- IB/mlx5: Call io_stop_wc() after writing to WC MMIO + (jsc#PED-1552). +- net/mlx5: E-Switch, Return EBUSY if can't get mode lock + (jsc#PED-1549). +- net/mlx5: E-switch, Don't update group if qos is not enabled + (jsc#PED-1549). +- net/mlx5: E-Switch, Allow offloading fwd dest flow table with + vport (jsc#PED-1549). +- net/mlx5: Set default grace period based on function type + (jsc#PED-1549). +- net/mlx5: Start health poll at earlier stage of driver load + (jsc#PED-1549). +- net/mlx5e: Expose rx_oversize_pkts_buffer counter + (jsc#PED-1549). +- net/mlx5e: xsk: Optimize for unaligned mode with 3072-byte + frames (jsc#PED-1549). +- net/mlx5e: xsk: Print a warning in slow configurations + (jsc#PED-1549). +- net/mlx5e: xsk: Use KLM to protect frame overrun in unaligned + mode (jsc#PED-1549). +- net/mlx5e: Improve MTT/KSM alignment (jsc#PED-1549). +- net/mlx5e: xsk: Use umr_mode to calculate striding RQ parameters + (jsc#PED-1549). +- net/mlx5e: xsk: Improve need_wakeup logic (jsc#PED-1549). +- net/mlx5e: xsk: Include XSK skb_from_cqe callbacks in + INDIRECT_CALL (jsc#PED-1549). +- net/mlx5e: xsk: Set napi_id to support busy polling + (jsc#PED-1549). +- net/mlx5e: xsk: Flush RQ on XSK activation to save memory + (jsc#PED-1549). +- net/mlx5e: xsk: Use queue indices starting from 0 for XSK queues + (jsc#PED-1549). +- net/mlx5e: Introduce the mlx5e_flush_rq function (jsc#PED-1549). +- net/mlx5e: xsk: Support XDP metadata on XSK RQs (jsc#PED-1549). +- net/mlx5e: Optimize RQ page deallocation (jsc#PED-1549). +- net/mlx5e: Call mlx5e_page_release_dynamic directly where + possible (jsc#PED-1549). +- net/mlx5e: Use non-XSK page allocator in SHAMPO (jsc#PED-1549). +- net/mlx5e: xsk: Use xsk_buff_alloc_batch on striding RQ + (jsc#PED-1549). +- net/mlx5e: xsk: Use xsk_buff_alloc_batch on legacy RQ + (jsc#PED-1549). +- net/mlx5e: xsk: Split out WQE allocation for legacy XSK RQ + (jsc#PED-1549). +- net/mlx5e: Remove the outer loop when allocating legacy RQ WQEs + (jsc#PED-1549). +- net/mlx5e: xsk: Use partial batches in legacy RQ with XSK + (jsc#PED-1549). +- net/mlx5e: Use partial batches in legacy RQ (jsc#PED-1549). +- net/mlx5e: Make the wqe_index_mask calculation more exact + (jsc#PED-1549). +- net/mlx5e: Introduce wqe_index_mask for legacy RQ + (jsc#PED-1549). +- net/mlx5e: xsk: Drop the check for XSK state in mlx5e_xsk_wakeup + (jsc#PED-1549). +- net/mlx5e: xsk: Use mlx5e_trigger_napi_icosq for XSK wakeup + (jsc#PED-1549). +- net/mlx5e: Clean up and fix error flows in mlx5e_alloc_rq + (jsc#PED-1549). +- net/mlx5e: Move repeating clear_bit in + mlx5e_rx_reporter_err_rq_cqe_recover (jsc#PED-1549). +- net/mlx5e: Split out channel (de)activation in rx_res + (jsc#PED-1549). +- net/mlx5e: xsk: Remove mlx5e_xsk_page_alloc_pool (jsc#PED-1549). +- net/mlx5e: Convert struct mlx5e_alloc_unit to a union + (jsc#PED-1549). +- net/mlx5e: Remove DMA address from mlx5e_alloc_unit + (jsc#PED-1549). +- net/mlx5e: Rename mlx5e_dma_info to prepare for removal of + DMA address (jsc#PED-1549). +- net/mlx5e: Optimize the page cache reducing its size 2x + (jsc#PED-1549). +- net/mlx5e: Fix calculations for ICOSQ size (jsc#PED-1549). +- net/mlx5e: xsk: Use KSM for unaligned XSK (jsc#PED-1549). +- net/mlx5: Add MLX5_FLEXIBLE_INLEN to safely calculate cmd inlen + (jsc#PED-1549). +- net/mlx5e: Keep a separate MKey for striding RQ (jsc#PED-1549). +- net/mlx5e: xsk: Use XSK frame size as striding RQ page size + (jsc#PED-1549). +- net/mlx5e: Use runtime page_shift for striding RQ + (jsc#PED-1549). +- xsk: Expose min chunk size to drivers (jsc#PED-1549). +- net/mlx5: Fix spelling mistake "syndrom" -> "syndrome" + (jsc#PED-1549). +- bnx2: Fix spelling mistake "bufferred" -> "buffered" + (jsc#PED-1187). +- ice: Add support for VLAN priority filters in switchdev + (jsc#PED-376). +- ice: support features on new E810T variants (jsc#PED-376). +- ice: Merge pin initialization of E810 and E810T adapters + (jsc#PED-376). +- net/mlx5e: Use runtime values of striding RQ parameters in + datapath (jsc#PED-1549). +- net/mlx5e: Make dma_info array dynamic in struct mlx5e_mpw_info + (jsc#PED-1549). +- net/mlx5e: Improve the MTU change shortcut (jsc#PED-1549). +- net/mlx5e: xsk: Fix SKB headroom calculation in validation + (jsc#PED-1549). +- net/mlx5e: xsk: Remove dead code in validation (jsc#PED-1549). +- net/mlx5e: Simplify stride size calculation for linear RQ + (jsc#PED-1549). +- net/mlx5e: kTLS, Check ICOSQ WQE size in advance (jsc#PED-1549). +- net/mlx5e: Use the aligned max TX MPWQE size (jsc#PED-1549). +- net/mlx5e: Fix a typo in mlx5e_xdp_mpwqe_is_full (jsc#PED-1549). +- net/mlx5e: Use mlx5e_stop_room_for_max_wqe where appropriate + (jsc#PED-1549). +- net/mlx5e: Let mlx5e_get_sw_max_sq_mpw_wqebbs accept mdev + (jsc#PED-1549). +- net/mlx5e: Make mlx5e_verify_rx_mpwqe_strides static + (jsc#PED-1549). +- net/mlx5e: Remove unused fields from datapath structs + (jsc#PED-1549). +- net/mlx5e: Convert mlx5e_get_max_sq_wqebbs to u8 (jsc#PED-1549). +- net/mlx5: Add the log_min_mkey_entity_size capability + (jsc#PED-1549). +- net/mlx5: Remove from FPGA IFC file not-needed definitions + (jsc#PED-1549). +- net/mlx5: Remove unused structs (jsc#PED-1549). +- net/mlx5: Remove unused functions (jsc#PED-1549). +- net/mlx5: detect and enable bypass port select flow table + (jsc#PED-1549). +- net/mlx5: Lag, enable hash mode by default for all NICs + (jsc#PED-1549). +- net/mlx5: Lag, set active ports if support bypass port select + flow table (jsc#PED-1549). +- RDMA/mlx5: Don't set tx affinity when lag is in hash mode + (jsc#PED-1549). +- net/mlx5: add IFC bits for bypassing port select flow table + (jsc#PED-1549). +- net/mlx5: Add support for NPPS with real time mode + (jsc#PED-1549). +- net/mlx5: Expose NPPS related registers (jsc#PED-1549). +- net/mlx5: Query ADV_VIRTUALIZATION capabilities (jsc#PED-1549). +- net/mlx5: Introduce ifc bits for page tracker (jsc#PED-1549). +- RDMA/mlx5: Move function mlx5_core_query_ib_ppcnt() to mlx5_ib + (jsc#PED-1549). +- sfc: bare bones TC offload on EF100 (jsc#PED-1565). +- sfc: interrogate MAE capabilities at probe time (jsc#PED-1565). +- sfc: add a hashtable for offloaded TC rules (jsc#PED-1565). +- sfc: optional logging of TC offload errors (jsc#PED-1565). +- sfc: bind indirect blocks for TC offload on EF100 + (jsc#PED-1565). +- sfc: bind blocks for TC offload on EF100 (jsc#PED-1565). +- ice: reorder PF/representor devlink port register/unregister + flows (jsc#PED-376). +- macsec: don't free NULL metadata_dst (jsc#PED-1549). +- net: macsec: remove the prepare flag from the MACsec offloading + context (jsc#PED-1549). +- net/mlx5e: macsec: remove checks on the prepare phase + (jsc#PED-1549). +- net: atlantic: macsec: remove checks on the prepare phase + (jsc#PED-1549). +- net: phy: mscc: macsec: remove checks on the prepare phase + (jsc#PED-1549). +- net: macsec: remove the prepare phase when offloading + (jsc#PED-1549). +- net: atlantic: macsec: make the prepare phase a noop + (jsc#PED-1549). +- net: phy: mscc: macsec: make the prepare phase a noop + (jsc#PED-1549). +- net/mlx5e: Support MACsec offload replay window (jsc#PED-1549). +- net/mlx5e: Support MACsec offload extended packet number (EPN) + (jsc#PED-1549). +- net/mlx5e: Move MACsec initialization from profile init stage + to profile enable stage (jsc#PED-1549). +- net/mlx5e: Create advanced steering operation (ASO) object + for MACsec (jsc#PED-1549). +- net/mlx5e: Expose memory key creation (mkey) function + (jsc#PED-1549). +- net/mlx5: Add ifc bits for MACsec extended packet number (EPN) + and replay protection (jsc#PED-1549). +- net/mlx5e: Fix MACsec initial packet number (jsc#PED-1549). +- net/mlx5e: Fix MACsec initialization error path (jsc#PED-1549). +- net/mlx5: Fix fields name prefix in MACsec (jsc#PED-1549). +- net: macsec: Expose extended packet number (EPN) properties + to macsec offload (jsc#PED-1549). +- net/mlx5e: Support 256 bit keys with kTLS device offload + (jsc#PED-1549). +- bnxt_en: replace reset with config timestamps (jsc#PED-1495). +- ice: Add low latency Tx timestamp read (jsc#PED-376). +- net/mlx5e: Ensure macsec_rule is always initiailized in + macsec_fs_{r,t}x_add_rule() (jsc#PED-1549). +- ice: Add L2TPv3 hardware offload support (jsc#PED-376). +- flow_offload: Introduce flow_match_l2tpv3 (jsc#PED-376). +- flow_dissector: Add L2TPv3 dissectors (jsc#PED-376). +- net/mlx5e: Switch to kmemdup() when allocate dev_addr + (jsc#PED-1549). +- net/mlx5e: add missing error code in error path (jsc#PED-1549). +- igc: Remove IGC_MDIC_INT_EN definition (jsc#PED-375). +- drivers/net/ethernet/e1000e: check return value of e1e_rphy() + (jsc#PED-837). +- sfc: introduce shutdown entry point in efx pci driver + (jsc#PED-1565). +- iavf: Fix race between iavf_close and iavf_reset_task + (jsc#PED-835). +- i40e: add description and modify interrupts configuration + procedure (jsc#PED-372). +- i40e: Add basic support for I710 devices (jsc#PED-372). +- ice: Simplify memory allocation in ice_sched_init_port() + (jsc#PED-376). +- ice: switch: Simplify memory allocation (jsc#PED-376). +- ice: add helper function to check FW API version (jsc#PED-376). +- ice: Check if reset in progress while waiting for offsets + (jsc#PED-376). +- net/mlx5e: Add support to configure more than one macsec + offload device (jsc#PED-1549). +- net/mlx5e: Add MACsec stats support for Rx/Tx flows + (jsc#PED-1549). +- net/mlx5e: Add MACsec offload SecY support (jsc#PED-1549). +- net/mlx5e: Implement MACsec Rx data path using MACsec + skb_metadata_dst (jsc#PED-1549). +- net/mlx5e: Add MACsec RX steering rules (jsc#PED-1549). +- net/mlx5: Add MACsec Rx tables support to fs_core + (jsc#PED-1549). +- net/mlx5e: Add MACsec offload Rx command support (jsc#PED-1549). +- net/mlx5e: Implement MACsec Tx data path using MACsec + skb_metadata_dst (jsc#PED-1549). +- net/mlx5e: Add MACsec TX steering rules (jsc#PED-1549). +- net/mlx5: Add MACsec Tx tables support to fs_core + (jsc#PED-1549). +- net/mlx5: Introduce MACsec Connect-X offload hardware bits + and structures (jsc#PED-1549). +- net/mlx5: Generalize Flow Context for new crypto fields + (jsc#PED-1549). +- net/mlx5: Removed esp_id from struct mlx5_flow_act + (jsc#PED-1549). +- net/macsec: Move some code for sharing with various drivers + that implements offload (jsc#PED-1549). +- net/macsec: Add MACsec skb_metadata_dst Rx Data path support + (jsc#PED-1549). +- net/macsec: Add MACsec skb_metadata_dst Tx Data path support + (jsc#PED-1549). +- sfc: support PTP over Ethernet (jsc#PED-1565). +- sfc: support PTP over IPv6/UDP (jsc#PED-1565). +- sfc: allow more flexible way of adding filters for PTP + (jsc#PED-1565). +- net/mlx5e: Do not use err uninitialized in + mlx5e_rep_add_meta_tunnel_rule() (jsc#PED-1549). +- net/mlx4: Fix error check for dma_map_sg (jsc#PED-1548). +- mlx4: Do type_clear() for devlink ports when type_set() was + called previously (jsc#PED-1548). +- ice: Print human-friendly PHY types (jsc#PED-376). +- ice: Implement devlink port split operations (jsc#PED-376). +- ice: Add additional flags to ice_nvm_write_activate + (jsc#PED-376). +- ice: Add port option admin queue commands (jsc#PED-376). +- ice: Add support for ip TTL & ToS offload (jsc#PED-376). +- net/mlx5: TC, Add support for SF tunnel offload (jsc#PED-1549). +- net/mlx5: E-Switch, Move send to vport meta rule creation + (jsc#PED-1549). +- net/mlx5: E-Switch, Split creating fdb tables into smaller + chunks (jsc#PED-1549). +- net/mlx5: E-Switch, Add default drop rule for unmatched packets + (jsc#PED-1549). +- net/mlx5e: Completely eliminate priv from fs.h (jsc#PED-1549). +- net/mlx5e: Make all ttc functions of en_fs get fs struct as + argument (jsc#PED-1549). +- net/mlx5e: Make flow steering arfs independent of priv + (jsc#PED-1549). +- net/mlx5e: Introduce flow steering debug macros (jsc#PED-1549). +- net/mlx5e: Separate ethtool_steering from fs.h and make private + (jsc#PED-1549). +- net/mlx5e: Directly get flow_steering struct as input when + init/cleanup ethtool steering (jsc#PED-1549). +- net/mlx5e: Convert ethtool_steering member of flow_steering + struct to pointer (jsc#PED-1549). +- net/mlx5e: Drop priv argument of ptp function in en_fs + (jsc#PED-1549). +- net/mlx5e: Decouple fs_tcp from en.h (jsc#PED-1549). +- net/mlx5e: Decouple fs_tt_redirect from en.h (jsc#PED-1549). +- net/mlx5e: Introduce flow steering API (jsc#PED-1549). +- ixgbe: Manual AN-37 for troublesome link partners for X550 SFI + (jsc#PED-373). +- ixgbe: Don't call kmap() on page allocated with GFP_ATOMIC + (jsc#PED-373). +- ice: remove non-inclusive language (jsc#PED-376). +- ice: Remove ucast_shared (jsc#PED-376). +- ice: Allow 100M speeds for some devices (jsc#PED-376). +- ice: Implement FCS/CRC and VLAN stripping co-existence policy + (jsc#PED-376). +- ice: Implement control of FCS/CRC stripping (jsc#PED-376). +- igc: add xdp frags support to ndo_xdp_xmit (jsc#PED-375). +- net: macsec: Expose MACSEC_SALT_LEN definition to user space + (jsc#PED-1549). +- ice: introduce ice_ptp_reset_cached_phctime function + (jsc#PED-376). +- ice: re-arrange some static functions in ice_ptp.c + (jsc#PED-376). +- ice: track and warn when PHC update is late (jsc#PED-376). +- ice: track Tx timestamp stats similar to other Intel drivers + (jsc#PED-376). +- ice: initialize cached_phctime when creating Rx rings + (jsc#PED-376). +- ice: set tx_tstamps when creating new Tx rings via ethtool + (jsc#PED-376). +- vdpa/mlx5: Fix MQ to support non power of two num queues + (jsc#PED-1549). +- ice: xsk: drop power of 2 ring size restriction for AF_XDP + (jsc#PED-376). +- ice: xsk: change batched Tx descriptor cleaning (jsc#PED-376). +- sfc: correct filter_table_remove method for EF10 PFs + (jsc#PED-1565). +- bnxt: prevent skb UAF after handing over to PTP worker + (jsc#PED-1495). +- ice: Fix interface being down after reset with + link-down-on-close flag on (jsc#PED-376). +- ice: config netdev tc before setting queues number + (jsc#PED-376). +- ice: Fix ice_xdp_xmit() when XDP TX queue number is not + sufficient (jsc#PED-376). +- i40e: Fix set max_tx_rate when it is lower than 1 Mbps + (jsc#PED-372). +- i40e: Fix VF set max MTU size (jsc#PED-372). +- iavf: Fix set max MTU size with port VLAN and jumbo frames + (jsc#PED-835). +- iavf: Fix bad page state (jsc#PED-835). +- sfc/siena: fix null pointer dereference in efx_hard_start_xmit + (jsc#PED-1565). +- sfc/siena: fix TX channel offset when using legacy interrupts + (jsc#PED-1565). +- bnxt_en: fix flags to check for supported fw version + (jsc#PED-1495). +- sfc: fix null pointer dereference in efx_hard_start_xmit + (jsc#PED-1565). +- sfc: fix TX channel offset when using legacy interrupts + (jsc#PED-1565). +- iavf: Fix cached head and tail value for iavf_get_tx_pending + (jsc#PED-835). +- iavf: Fix change VF's mac address (jsc#PED-835). +- ice: Fix crash by keep old cfg when update TCs more than queues + (jsc#PED-376). +- ice: Don't double unplug aux on peer initiated reset + (jsc#PED-376). +- RDMA/irdma: Use s/g array in post send only when its valid + (jsc#PED-377). +- RDMA/mlx5: Fix UMR cleanup on error flow of driver init + (jsc#PED-1552). +- RDMA/mlx5: Set local port to one when accessing counters + (jsc#PED-1552). +- RDMA/mlx5: Rely on RoCE fw cap instead of devlink when setting + profile (jsc#PED-1549). +- RDMA/irdma: Fix drain SQ hang with no completion (jsc#PED-377). +- iavf: Detach device during reset task (jsc#PED-835). +- i40e: Fix kernel crash during module removal (jsc#PED-372). +- i40e: Fix ADQ rate limiting for PF (jsc#PED-372). +- ice: use bitmap_free instead of devm_kfree (jsc#PED-376). +- ice: Fix DMA mappings leak (jsc#PED-376). +- Revert "net: macsec: update SCI upon MAC address + change." (jsc#PED-1549). +- macsec: Fix traffic counters/statistics (jsc#PED-1549). +- RDMA/rxe: Split qp state for requester and completer + (jsc#PED-1111). +- RDMA/rxe: Generate error completion for error requester QP state + (jsc#PED-1111). +- RDMA/rxe: Update wqe_index for each wqe error completion + (jsc#PED-1111). +- Revert "RDMA/rxe: Create duplicate mapping tables for FMRs" + (jsc#PED-1111). +- RDMA/rxe: Replace __rxe_do_task by rxe_run_task (jsc#PED-1111). +- RDMA/rxe: Limit the number of calls to each tasklet + (jsc#PED-1111). +- RDMA/rxe: Make the tasklet exits the same (jsc#PED-1111). +- RDMA/rxe: Add rxe_is_fenced() subroutine (jsc#PED-1111). +- RDMA/rxe: Fix spelling mistake in error print (jsc#PED-1111). +- RDMA/rxe: Remove unused qp parameter (jsc#PED-1111). +- RDMA/rxe: Remove unused mask parameter (jsc#PED-1111). +- RDMA/rxe: Rename rxe_atomic_reply to atomic_reply + (jsc#PED-1111). +- RDMA/rxe: Add common rxe_prepare_res() (jsc#PED-1111). +- RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup + (jsc#PED-1111). +- RDMA/rxe: Remove unnecessary include statement (jsc#PED-1111). +- RDMA/rxe: Replace include statement (jsc#PED-1111). +- RDMA/rxe: Convert pr_warn/err to pr_debug in pyverbs + (jsc#PED-1111). +- RDMA/rxe: Merge normal and retry atomic flows (jsc#PED-1111). +- RDMA/rxe: Move atomic original value to res (jsc#PED-1111). +- RDMA/rxe: Move atomic responder res to atomic_reply + (jsc#PED-1111). +- RDMA/rxe: Add a responder state for atomic reply (jsc#PED-1111). +- RDMA/rxe: Move code to rxe_prepare_atomic_res() (jsc#PED-1111). +- RDMA/rxe: Convert read side locking to rcu (jsc#PED-1111). +- RDMA/rxe: Stop lookup of partially built objects (jsc#PED-1111). +- RDMA/rxe: Remove useless pkt parameters (jsc#PED-1111). +- RDMA/rxe: fix xa_alloc_cycle() error return value check again + (jsc#PED-1111). +- net/mlx5e: Fix wrong use of skb_tcp_all_headers() with + encapsulation (jsc#PED-1549). +- net: phy: mxl-gpy: print firmware in human readable form + (jsc#PED-829). +- net: phy: mxl-gpy: rename the FW type field name (jsc#PED-829). +- net: phy: mxl-gpy: cache PHY firmware version (jsc#PED-829). +- net: phy: mxl-gpy: fix version reporting (jsc#PED-829). +- net: phy: add support to get Master-Slave configuration + (jsc#PED-829). +- net/mlx5e: Fix matchall police parameters validation + (jsc#PED-1549). +- net/sched: act_police: allow 'continue' action offload + (jsc#PED-1549). +- macsec: fix UAF bug for real_dev (jsc#PED-1549). +- RDMA/rxe: Fix an error handling path in rxe_get_mcg() + (jsc#PED-1111). +- RDMA/rxe: Enforce IBA C11-17 (jsc#PED-1111). +- RDMA/rxe: Move mw cleanup code to rxe_mw_cleanup() + (jsc#PED-1111). +- RDMA/rxe: Move mr cleanup code to rxe_mr_cleanup() + (jsc#PED-1111). +- RDMA/rxe: Move qp cleanup code to rxe_qp_do_cleanup() + (jsc#PED-1111). +- RDMA/rxe: Check rxe_get() return value (jsc#PED-1111). +- RDMA/rxe: Add rxe_srq_cleanup() (jsc#PED-1111). +- RDMA/rxe: Remove IB_SRQ_INIT_MASK (jsc#PED-1111). +- RDMA/rxe: Skip adjusting remote addr for write in retry + operation (jsc#PED-1111). +- RDMA/rxe: Optimize the mr pool struct (jsc#PED-1111). +- RDMA/rxe: Replace paylen by payload (jsc#PED-1111). +- RDMA/rxe: Remove useless parameters for update_state() + (jsc#PED-1111). +- RDMA/rxe: Remove reliable datagram support (jsc#PED-1111). +- RDMA/rxe: Remove support for SMI QPs from rdma_rxe + (jsc#PED-1111). +- RDMA/rxe: Remove mc_grp_pool from struct rxe_dev (jsc#PED-1111). +- RDMA/rxe: Remove type 2A memory window capability + (jsc#PED-1111). +- net/sched: act_police: Add extack messages for offload failure + (jsc#PED-1549). +- net/sched: act_api: Add extack to offload_act_setup() callback + (jsc#PED-1549). +- net/sched: flower: Take verbose flag into account when logging + error messages (jsc#PED-1549). +- net/sched: matchall: Take verbose flag into account when + logging error messages (jsc#PED-1549). +- lib: add generic polynomial calculation (jsc#PED-829). +- RDMA/rxe: Change mcg_lock to a _bh lock (jsc#PED-1111). +- RDMA/rxe: Do not call dev_mc_add/del() under a spinlock + (jsc#PED-1111). +- RDMA/rxe: Recheck the MR in when generating a READ reply + (jsc#PED-1111). +- RDMA/rxe: Fix "Replace mr by rkey in responder resources" + (jsc#PED-1111). +- RDMA/rxe: Use standard names for ref counting (jsc#PED-1111). +- RDMA/rxe: Replace red-black trees by xarrays (jsc#PED-1111). +- RDMA/rxe: Shorten pool names in rxe_pool.c (jsc#PED-1111). +- RDMA/rxe: Move max_elem into rxe_type_info (jsc#PED-1111). +- RDMA/rxe: Replace obj by elem in declaration (jsc#PED-1111). +- RDMA/rxe: Delete _locked() APIs for pool objects (jsc#PED-1111). +- RDMA/rxe: Reverse the sense of RXE_POOL_NO_ALLOC (jsc#PED-1111). +- RDMA/rxe: Replace mr by rkey in responder resources + (jsc#PED-1111). +- RDMA/rxe: Remove useless argument for update_state() + (jsc#PED-1111). +- RDMA/rxe: Cleanup rxe_mcast.c (jsc#PED-1111). +- RDMA/rxe: Collect cleanup mca code in a subroutine + (jsc#PED-1111). +- RDMA/rxe: Collect mca init code in a subroutine (jsc#PED-1111). +- RDMA/rxe: Warn if mcast memory is not freed (jsc#PED-1111). +- RDMA/rxe: Remove mcg from rxe pools (jsc#PED-1111). +- RDMA/rxe: Remove key'ed object support (jsc#PED-1111). +- RDMA/rxe: Replace pool key by rxe->mcg_tree (jsc#PED-1111). +- RDMA/rxe: Replace int num_qp by atomic_t qp_num (jsc#PED-1111). +- RDMA/rxe: Replace grp by mcg, mce by mca (jsc#PED-1111). +- RDMA/rxe: Use kzmalloc/kfree for mca (jsc#PED-1111). +- RDMA/rxe: Move mcg_lock to rxe (jsc#PED-1111). +- RDMA/rxe: Revert changes from irqsave to bh locks + (jsc#PED-1111). +- RDMA/rxe: Remove rxe_drop_all_macst_groups (jsc#PED-1111). +- RDMA/rxe: Enforce IBA o10-2.2.3 (jsc#PED-1111). +- RDMA/rxe: Rename rxe_mc_grp and rxe_mc_elem (jsc#PED-1111). +- RDMA/rxe: Move rxe_mcast_attach/detach to rxe_mcast.c + (jsc#PED-1111). +- RDMA/rxe: Move rxe_mcast_add/delete to rxe_mcast.c + (jsc#PED-1111). +- RDMA/rxe: Delete useless module.h include (jsc#PED-1111). +- net: phy: exported the genphy_read_master_slave function + (jsc#PED-829). +- flow_offload: improve extack msg for user when adding invalid + filter (jsc#PED-1549). +- net: sched: avoid newline at end of message in + NL_SET_ERR_MSG_MOD (jsc#PED-1549). +- net: sched: limit TC_ACT_REPEAT loops (jsc#PED-1549). +- asm-generic: Add missing brackets for io_stop_wc macro + (jsc#PED-1552). +- hash.h: remove unused define directive (jsc#PED-1111). +- RDMA/rxe: Use the standard method to produce udp source port + (jsc#PED-1111). +- RDMA/rxe: Delete deprecated module parameters interface + (jsc#PED-1111). +- RDMA/rxe: Fix indentations and operators sytle (jsc#PED-1111). +- RDMA/rxe: Remove the unused xmit_errors member (jsc#PED-1111). +- RDMA/rxe: Remove redundant err variable (jsc#PED-1111). +- RDMA/ocrdma: Remove unneeded variable (jsc#PED-1695). +- RDMA/ocrdma: Simplify code in 'ocrdma_search_mmap()' + (jsc#PED-1695). +- RDMA/ocrdma: Use bitmap_zalloc() when applicable (jsc#PED-1695). +- RDMA/rxe: Remove some #defines from rxe_pool.h (jsc#PED-1111). +- RDMA/rxe: Remove #include "rxe_loc.h" from rxe_pool.c + (jsc#PED-1111). +- RDMA/rxe: Save object pointer in pool element (jsc#PED-1111). +- RDMA/rxe: Copy setup parameters into rxe_pool (jsc#PED-1111). +- RDMA/rxe: Replace irqsave locks with bh locks (jsc#PED-1111). +- RDMA/ocrdma: Use helper function to set GUIDs (jsc#PED-1695). +- flow_offload: fix suspicious RCU usage when offloading tc action + (jsc#PED-1549). +- asm-generic: introduce io_stop_wc() and add implementation + for ARM64 (jsc#PED-1552). +- net: phy: Remove unused including + (jsc#PED-829). +- commit fac2fda + +- x86/insn: Add AMX instructions to the x86 instruction decoder + (bnc#1205282). +- commit 4ba8580 + +- usb: gadget: uvc: decrease the interrupt load to a quarter + (git-fixes). +- commit d4215d5 + +- usb: gadget: uvc: add scatter gather support (git-fixes). +- commit 8256025 + +- usb: gadget: uvc: make uvc_num_requests depend on gadget speed + (git-fixes). +- commit 12e1352 + +- ipv6: ping: fix wrong checksum for large frames (bsc#1203183). +- commit f29a164 + +- io_uring: disable polling signalfd pollfree files (CVE-2022-3176 + bsc#1203391). +- commit ff11e05 + +- blacklist.conf: kABI +- commit 52ff77d + +- usb: typec: ucsi: acpi: Implement resume callback (git-fixes). +- commit 0b832f1 + +- blacklist.conf: prerequisites would break kABI +- commit 3f3b1f5 + +- virtio_blk: add error handling support for add_disk() + (jsc#PED-1183). +- Refresh + patches.suse/Revert-virtio-blk-Add-validation-for-block-size-in-c.patch. +- commit 5f63f70 + +- block: inherit request start time from bio for BLK_CGROUP + (jsc#PED-1183). +- block: move blk-throtl fast path inline (jsc#PED-1183). +- commit 6137b58 + +- io_uring: optimise io_prep_linked_timeout() (bnc#1205205). +- io_uring: cancel not-armed linked touts separately + (bnc#1205205). +- io_uring: simplify io_prep_linked_timeout (bnc#1205205). +- io_uring: kill REQ_F_LTIMEOUT_ACTIVE (bnc#1205205). + - Update patches.suse/io_uring-Fix-undefined-behaviour-in-io_issue_sqe.patch + - Update patches.suse/io_uring-fix-race-between-timeout-flush-and-removal.patch +- io_uring: deduplicate cancellation code (bnc#1205205). +- io_uring: kill not necessary resubmit switch (bnc#1205205). +- io_uring: optimise initial ltimeout refcounting (bnc#1205205). +- io_uring: don't inflight-track linked timeouts (bnc#1205205). + - Update patches.suse/io_uring-Fix-undefined-behaviour-in-io_issue_sqe.patch + - Update patches.suse/io_uring-fix-race-between-timeout-flush-and-removal.patch +- io_uring: optimise iowq refcounting (bnc#1205205). +- io_uring: remove files pointer in cancellation functions + (bnc#1205205). +- io_uring: extract io_uring_files_cancel() in + io_uring_task_cancel() (bnc#1205205). +- commit 8175601 + +- io_uring: optimise hot path of ltimeout prep (bnc#1205205). +- io_uring: skip request refcounting (bnc#1205205). +- io_uring: remove submission references (bnc#1205205). +- io_uring: remove req_ref_sub_and_test() (bnc#1205205). +- io_uring: move req_ref_get() and friends (bnc#1205205). +- commit a6d17c7 + +- usb: typec: ucsi: Check the connection on resume (git-fixes). +- commit 94056b2 + +- blacklist.conf: this patch would need an inordinary number of + prerequisites for a race in a corner case +- commit 4987ef8 + +- blacklist.conf: kABI +- commit 29e4b4e + +- blk-mq: Add blk_mq_alloc_map_and_rqs() (jsc#PED-1183). +- blk-mq: Add blk_mq_tag_update_sched_shared_sbitmap() + (jsc#PED-1183). +- blk-mq: Don't clear driver tags own mapping (jsc#PED-1183). +- blk-mq: Pass driver tags to blk_mq_clear_rq_mapping() + (jsc#PED-1183). +- blk-mq-sched: Rename blk_mq_sched_free_{requests -> rqs}() + (jsc#PED-1183). +- blk-mq-sched: Rename blk_mq_sched_alloc_{tags -> map_and_rqs}() + (jsc#PED-1183). +- blk-mq: Invert check in blk_mq_update_nr_requests() + (jsc#PED-1183). +- blk-mq: Relocate shared sbitmap resize in + blk_mq_update_nr_requests() (jsc#PED-1183). +- commit 8bfc591 + +- block: Rename BLKDEV_MAX_RQ -> BLKDEV_DEFAULT_RQ (jsc#PED-1183). +- Refresh patches.suse/block-Provide-blk_mq_sched_get_icq.patch. +- commit 52ac9ca + +- blk-mq: Change rqs check in blk_mq_free_rqs() (jsc#PED-1183). +- commit 386aed8 + +- block: print the current process in handle_bad_sector + (jsc#PED-1183). +- commit 3c96a17 + +- Update patch metadata for media fix (CVE-2022-3903 bsc#1205220) +- commit 899a453 + +- block/mq-deadline: Stop using per-CPU counters (jsc#PED-1183). +- block/mq-deadline: Add an invariant check (jsc#PED-1183). +- commit 8b4880d + +- block: move some macros to blkdev.h (jsc#PED-1183). +- commit 0c6d0ca + +- block: move integrity handling out of + (jsc#PED-1183). +- Refresh + patches.suse/block-don-t-merge-across-cgroup-boundaries-if-blkcg-.patch. +- Refresh + patches.suse/mm-don-t-include-linux-memremap.h-in-linux-mm.h.patch. +- commit 4916dfc + +- x86/tdx: Panic on bad configs that #VE on "private" memory + access (jsc#PED-342). +- commit a423135 + +- capabilities: fix undefined behavior in bit shift for + CAP_TO_MASK (git-fixes). +- capabilities: fix potential memleak on error path from + vfs_getxattr_alloc() (git-fixes). +- commit 9091aa0 + +- x86/tdx: Prepare for using "INFO" call for a second purpose + (jsc#PED-342). +- commit 4b44375 + +- x86/tdx: Handle load_unaligned_zeropad() page-cross to a shared + page (jsc#PED-342). +- commit 19687ce + +- x86/tdx: Clarify RIP adjustments in #VE handler (jsc#PED-342). +- commit 0259aa5 + +- block: move a few merge helpers out of + (jsc#PED-1183). +- block: drop unused includes in (jsc#PED-1183). +- block: drop unused includes in (jsc#PED-1183). +- block: move elevator.h to block/ (jsc#PED-1183). +- block: remove the struct blk_queue_ctx forward declaration + (jsc#PED-1183). +- block: remove the cmd_size field from struct request_queue + (jsc#PED-1183). +- block: remove the unused blk_queue_state enum (jsc#PED-1183). +- block: remove the unused rq_end_sector macro (jsc#PED-1183). +- sched: move the include out of + kernel/sched/sched.h (jsc#PED-1183). +- kernel: remove spurious blkdev.h includes (jsc#PED-1183). +- arch: remove spurious blkdev.h includes (jsc#PED-1183). +- mm: remove spurious blkdev.h includes (jsc#PED-1183). +- mm: don't include in + (jsc#PED-1183). +- mm: don't include in + (jsc#PED-1183). +- mm: don't include in + (jsc#PED-1183). +- commit f4c4b1a + +- dm ima: prefix ima event name related to device mapper with dm_ + (jsc#PED-1183). +- dm ima: add version info to dm related events in ima log + (jsc#PED-1183). +- dm ima: prefix dm table hashes in ima log with hash algorithm + (jsc#PED-1183). +- dm ima: measure data on device rename (jsc#PED-1183). +- dm ima: measure data on table clear (jsc#PED-1183). +- dm ima: measure data on device remove (jsc#PED-1183). +- dm ima: measure data on device resume (jsc#PED-1183). +- dm ima: measure data on table load (jsc#PED-1183). +- commit e6250e4 + +- block: warn when putting the final reference on a registered + (jsc#PED-1183). +- brd: reduce the brd_devices_mutex scope (jsc#PED-1183). +- kyber: avoid q->disk dereferences in trace points + (jsc#PED-1183). +- block: keep q_usage_counter in atomic mode after del_gendisk + (jsc#PED-1183). +- block: drain file system I/O on del_gendisk (jsc#PED-1183). +- block: split bio_queue_enter from blk_queue_enter + (jsc#PED-1183). +- block: factor out a blk_try_enter_queue helper (jsc#PED-1183). +- block: call submit_bio_checks under q_usage_counter + (jsc#PED-1183). +- commit 3c9365f + +- block: genhd: fix double kfree() in __alloc_disk_node() + (jsc#PED-1183). +- scsi: bsg: Fix device unregistration (jsc#PED-1183). +- block: hold ->invalidate_lock in blkdev_fallocate + (jsc#PED-1183). +- commit 502e581 + +- block: move fs/block_dev.c to block/bdev.c (jsc#PED-1183). +- block: split out operations on block special files + (jsc#PED-1183). +- bio: fix kerneldoc documentation for bio_alloc_kiocb() + (jsc#PED-1183). +- cdrom: update uniform CD-ROM maintainership in MAINTAINERS file + (jsc#PED-1183). +- commit 18be238 + +- sg: pass the device name to blk_trace_setup (jsc#PED-1183). +- block, bfq: cleanup the repeated declaration (jsc#PED-1183). +- block: mark blkdev_fsync static (jsc#PED-1183). +- block: refine the disk_live check in del_gendisk (jsc#PED-1183). +- mmc: sdhci-tegra: Enable MMC_CAP2_ALT_GPT_TEGRA (jsc#PED-1183). +- mmc: block: Support alternative_gpt_sector() operation + (jsc#PED-1183). +- partitions/efi: Support non-standard GPT location + (jsc#PED-1183). +- block: Add alternative_gpt_sector() operation (jsc#PED-1183). +- commit 5f12e3d + +- x86/tdx: Fix early #VE handling (jsc#PED-342). +- commit bdcffa5 + +- scsi: csiostor: Convert sysfs snprintf() to sysfs_emit() + (jsc#PED-1504). +- scsi: csio: Stop using the SCSI pointer (jsc#PED-1504). +- commit 67b0269 + +- crypto: hisilicon/qm: Set the VF QM state register + (jsc#PED-1109). +- hisi_acc_vfio_pci: Add helper to retrieve the struct pci_driver + (jsc#PED-1109). +- hisi_acc_qm: Move VF PCI device IDs to common header + (jsc#PED-1109). +- crypto: hisilicon/qm: Move few definitions to common header + (jsc#PED-1109). +- crypto: hisilicon/qm: Move the QM header to include/linux + (jsc#PED-1109). +- crypto: hisilicon/qm - fix deadlock for remove driver + (jsc#PED-1109). +- commit a420954 + +- x86/tdx: Fix RETs in TDX asm (jsc#PED-342). +- commit fce07e1 + +- bio: improve kerneldoc documentation for bio_alloc_kiocb() + (jsc#PED-1183). +- block: provide bio_clear_hipri() helper (jsc#PED-1183). +- block: use the percpu bio cache in __blkdev_direct_IO + (jsc#PED-1183). +- io_uring: enable use of bio alloc cache (jsc#PED-1183). +- block: clear BIO_PERCPU_CACHE flag if polling isn't supported + (jsc#PED-1183). +- commit bce5f8e + +- Update patches.suse/scsi-ibmvfc-Avoid-path-failures-during-live-migratio.patch + (bsc#1065729 bsc#1204810 ltc#200162). +- commit ba4e679 + +- bio: add allocation cache abstraction (jsc#PED-1183). +- Refresh + patches.suse/block-fix-rq-qos-breakage-from-skipping-rq_qos_done_.patch. +- commit 17a0991 + +- x86/tdx: Annotate a noreturn function (jsc#PED-342). +- commit 8553815 + +- fs: add kiocb alloc cache flag (jsc#PED-1183). +- bio: optimize initialization of a bio (jsc#PED-1183). +- commit 9a0b8ca + +- x86,objtool: Move the ASM_REACHABLE annotation to objtool.h + (jsc#PED-342). +- Refresh + patches.suse/objtool-Re-add-UNWIND_HINT_-SAVE_RESTORE.patch. +- commit 2f94159 + +- Update config files. +- commit 5d7c7c6 + +- block: remove CONFIG_DEBUG_BLOCK_EXT_DEVT (jsc#PED-1183). +- Refresh + patches.suse/block-Fix-the-maximum-minor-value-is-blk_alloc_ext_m.patch. +- commit 754b820 + +- block: remove a pointless call to MINOR() in device_add_disk + (jsc#PED-1183). +- commit 9543e11 + +- block: fix argument type of bio_trim() (jsc#PED-1183). +- docs: sysfs-block-device: document ncq_prio_supported + (jsc#PED-1183). +- docs: sysfs-block-device: improve ncq_prio_enable documentation + (jsc#PED-1183). +- commit fd778db + +- null_blk: add error handling support for add_disk() + (jsc#PED-1183). +- commit 3aa258a + +- x86/mm: Fix spacing within memory encryption features message + (jsc#PED-342). +- commit 881d16c + +- x86/kaslr: Fix build warning in KASLR code in boot stub + (jsc#PED-342). +- commit e3d83a1 + +- block: add error handling for device_add_disk / add_disk + (jsc#PED-1183). +- block: return errors from disk_alloc_events (jsc#PED-1183). +- block: return errors from blk_integrity_add (jsc#PED-1183). +- block: call blk_register_queue earlier in device_add_disk + (jsc#PED-1183). +- block: call blk_integrity_add earlier in device_add_disk + (jsc#PED-1183). +- block: create the bdi link earlier in device_add_disk + (jsc#PED-1183). +- block: call bdev_add later in device_add_disk (jsc#PED-1183). +- block: fold register_disk into device_add_disk (jsc#PED-1183). +- block: add a sanity check for a live disk in del_gendisk + (jsc#PED-1183). +- block: add an explicit ->disk backpointer to the request_queue + (jsc#PED-1183). +- block: hold a request_queue reference for the lifetime of + struct gendisk (jsc#PED-1183). +- block: pass a request_queue to __blk_alloc_disk (jsc#PED-1183). +- block: remove the minors argument to __alloc_disk_node + (jsc#PED-1183). +- block: remove alloc_disk and alloc_disk_node (jsc#PED-1183). +- block: cleanup the lockdep handling in *alloc_disk + (jsc#PED-1183). +- commit 46310ce + +- ext4: only allow test_dummy_encryption when supported + (bsc#1202772 bsc#1205173). +- blacklist.conf: Remove above patch from blacklist +- commit 091cd9f + +- sg: do not allocate a gendisk (jsc#PED-1183). +- commit 37d18a6 + +- st: do not allocate a gendisk (jsc#PED-1183). +- Refresh + patches.suse/scsi-scsi_ioctl-Call-scsi_cmd_ioctl-from-scsi_ioctl.patch. +- Refresh patches.suse/scsi-st-Simplify-ioctl-handling.patch. +- commit 3c5d6ed + +- Documentation/x86: Document TDX kernel architecture + (jsc#PED-342). +- commit 33bbdec + +- x86/tdx/ioapic: Add shared bit for IOAPIC base address + (jsc#PED-342). +- commit 04231d0 + +- x86/mm: Make DMA memory shared for TD guest (jsc#PED-342). +- Update config files. +- Refresh + patches.suse/x86-mm-move-protection_map-inside-the-platform.patch. +- commit 48058a1 + +- drm/i915/gvt: fix double free bug in split_2MB_gtt_entry (bsc#1204780, CVE-2022-3707) +- commit 3d29636 + +- x86/mm/cpa: Add support for TDX shared memory (jsc#PED-342). +- commit 818b3a3 + +- x86/tdx: Make pages shared in ioremap() (jsc#PED-342). +- commit 0b05d9e + +- x86/topology: Disable CPU online/offline control for TDX guests + (jsc#PED-342). +- commit 9d93879 + +- scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024 + (bsc#1156395). +- commit 32de176 + +- x86/boot: Avoid #VE during boot for TDX platforms (jsc#PED-342). +- commit 6a73875 + +- x86/boot: Set CR0.NE early and keep it set during the boot + (jsc#PED-342). +- commit 5319e24 + +- x86/acpi/x86/boot: Add multiprocessor wake-up support + (jsc#PED-342). +- commit 28d025a + +- Refresh patches.suse/scsi-ibmvfc-Do-not-wait-for-initial-device-scan.patch. + Refresh to upstream version of patch. +- commit aba4ad9 + +- x86/boot: Add a trampoline for booting APs via firmware handoff + (jsc#PED-342). +- commit d10a201 + +- Refresh sorted patches. +- commit 3d3be93 + +- x86/tdx: Wire up KVM hypercalls (jsc#PED-342). +- commit 4edd4de + +- scsi: ibmvfc: Avoid path failures during live migration + (bsc#1065729). +- commit 2f0fa7f + +- Update patches.suse/arm64-Add-AMPERE1-to-the-Spectre-BHB-affected-list.patch (git-fixes, bsc#1205153). + Add reference to bsc#1205153. +- commit 08070be + +- x86/tdx: Port I/O: Add early boot support (jsc#PED-342). +- commit ee7bb95 + +- x86/tdx: Port I/O: Add runtime hypercalls (jsc#PED-342). +- commit 6a328ea + +- x86/boot: Port I/O: Add decompression-time support for TDX + (jsc#PED-342). +- commit 959a061 + +- arm64: Add AMPERE1 to the Spectre-BHB affected list (git-fixes). +- arm64: errata: Add Cortex-A55 to the repeat tlbi list (git-fixes). + Enable CONFIG_ARM64_ERRATUM_2441007, too +- commit 57ef351 + +- ALSA: usb-audio: Remove redundant workaround for Roland quirk + (bsc#1205111). +- ALSA: usb-audio: Yet more regression for for the delayed card + registration (bsc#1205111). +- commit fdb6d05 + +- x86/boot: Port I/O: Allow to hook up alternative helpers + (jsc#PED-342). +- commit 63333dd + +- x86: Consolidate port I/O helpers (jsc#PED-342). +- commit 6e8ed87 + +- rpm/check-for-config-changes: add TOOLCHAIN_HAS_* to IGNORED_CONFIGS_RE + This new form was added in commit b8c86872d1dc (riscv: fix detection of + toolchain Zicbom support). +- commit e9f2ba6 + +- Update config files. +- commit d4d6656 + +- x86: Adjust types used in port I/O helpers (jsc#PED-342). +- commit ae6e9eb + +- x86/tdx: Detect TDX at early kernel decompression time + (jsc#PED-342). +- commit 0d313b1 + +- docs: perf: Include hns3-pmu.rst in toctree to fix 'htmldocs' + WARNING (jsc#PED-1113). +- drivers/perf: hisi: add driver for HNS3 PMU (jsc#PED-1113). +- drivers/perf: hisi: Add description for HNS3 PMU driver + (jsc#PED-1113). +- commit 924185b + +- x86/tdx: Handle in-kernel MMIO (jsc#PED-342). +- commit 0ac9a9a + +- x86/insn-eval: Introduce insn_get_modrm_reg_ptr() (jsc#PED-342). +- commit 7042e81 + +- x86/insn-eval: Introduce insn_decode_mmio() (jsc#PED-342). +- commit 098c34f + +- tracing: kprobe: Fix memory leak in + test_gen_kprobe/kretprobe_cmd() (git-fixes). +- commit 4b18e0d + +- io-wq: don't retry task_work creation failure on fatal + conditions (bnc#1205113). +- io-wq: Remove duplicate code in io_workqueue_create() + (bnc#1205113). +- io-wq: fix silly logic error in io_task_work_match() + (bnc#1205113). +- io-wq: fix cancellation on create-worker failure (bnc#1205113). +- commit f9f6f38 + +- x86/tdx: Handle CPUID via #VE (jsc#PED-342). +- commit d9569a7 + +- x86/tdx: Add MSR support for TDX guests (jsc#PED-342). +- commit c351cc8 + +- block: add back the bd_holder_dir reference in + bd_link_disk_holder (jsc#PED-1183). +- block: fix default IO priority handling (jsc#PED-1183). +- block: Introduce IOPRIO_NR_LEVELS (jsc#PED-1183). +- block: fix IOPRIO_PRIO_CLASS() and IOPRIO_PRIO_VALUE() macros + (jsc#PED-1183). +- block: change ioprio_valid() to an inline function + (jsc#PED-1183). +- block: improve ioprio class description comment (jsc#PED-1183). +- ioprio: move user space relevant ioprio bits to UAPI includes + (jsc#PED-1183). +- commit 7035d24 + +- Add suse-kernel-rpm-scriptlets to kmp buildreqs (boo#1205149) +- commit 888e01e + +- cifs: fix use-after-free on the link name (bsc#1193629). +- commit c8e18d6 + +- cifs: avoid unnecessary iteration of tcp sessions (bsc#1193629). +- commit 3b19f83 + +- cifs: always iterate smb sessions using primary channel + (bsc#1193629). +- commit 5cac47b + +- cifs: fix use-after-free caused by invalid pointer `hostname` + (bsc#1193629). +- commit 6bd980d + +- cifs: Fix pages leak when writedata alloc failed in + cifs_write_from_iter() (bsc#1193629). +- commit 4170ae6 + +- cifs: Fix pages array leak when writedata alloc failed in + cifs_writedata_alloc() (bsc#1193629). +- commit b7ff361 + +- x86/tdx: Add HLT support for TDX guests (jsc#PED-342). +- commit fa8f2ad + +- block: unexport blk_register_queue (jsc#PED-1183). +- blk-cgroup: stop using seq_get_buf (jsc#PED-1183). +- blk-cgroup: refactor blkcg_print_stat (jsc#PED-1183). +- nvme: use bvec_virt (jsc#PED-1183). +- dcssblk: use bvec_virt (jsc#PED-1183). +- dasd: use bvec_virt (jsc#PED-1183). +- ps3vram: use bvec_virt (jsc#PED-1183). +- ubd: use bvec_virt (jsc#PED-1183). +- sd: use bvec_virt (jsc#PED-1183). +- bcache: use bvec_virt (jsc#PED-1183). +- virtio_blk: use bvec_virt (jsc#PED-1183). +- rbd: use bvec_virt (jsc#PED-1183). +- squashfs: use bvec_virt (jsc#PED-1183). +- dm-integrity: use bvec_virt (jsc#PED-1183). +- dm-ebs: use bvec_virt (jsc#PED-1183). +- dm: make EBS depend on !HIGHMEM (jsc#PED-1183). +- block: use bvec_virt in bio_integrity_{process,free} + (jsc#PED-1183). +- bvec: add a bvec_virt helper (jsc#PED-1183). +- commit 1fa6c4f + +- x86/traps: Add #VE support for TDX guest (jsc#PED-342). +- commit 0845fe8 + +- block: free the extended dev_t minor later (jsc#PED-1183). +- block: pass a gendisk to bdev_resize_partition (jsc#PED-1183). +- block: pass a gendisk to bdev_del_partition (jsc#PED-1183). +- block: pass a gendisk to bdev_add_partition (jsc#PED-1183). +- block: store a gendisk in struct parsed_partitions + (jsc#PED-1183). +- block: remove GENHD_FL_UP (jsc#PED-1183). +- commit a8e4fd9 + +- bcache: move the del_gendisk call out of bcache_device_free + (jsc#PED-1183). +- Refresh + patches.suse/0001-bcache-fix-use-after-free-problem-in-bcache_device_f.patch. +- commit 1509972 + +- sx8: use the internal state machine to check if del_gendisk + needs to be called (jsc#PED-1183). +- commit fb76d3a + +- nvme: replace the GENHD_FL_UP check in nvme_mpath_shutdown_disk + (jsc#PED-1183). +- commit 415dd0f + +- Update config files for enabling CONFIG_SECONDARY_TRUSTED_KEYRING + In x86_64 config, we have enabled the CONFIG_SECONDARY_TRUSTED_KEYRING + and children kernel config since SLE12-SP4 and SLE15. But we didn't + enable it in other architectures because the original this option is + for secure boot. + In the future, the CONFIG_SECONDARY_TRUSTED_KEYRING will be used with + IMA in different architectures. So let's enable it in SLE in arm64, + armv7hl, ppc64le and s390x architectures. Then Leap or even SLE users + can use it for preparing IMA functions with secondary trusted keyring. + (bsc#1203739) +- commit 7d983f7 + +- x86/traps: Refactor exc_general_protection() (jsc#PED-342). +- commit 4d05e70 + +- block: ensure the bdi is freed after inode_detach_wb (jsc#PED-1183). - blacklist.conf: +- commit 9224fa7 + +- nvme: remove the GENHD_FL_UP check in nvme_ns_remove + (jsc#PED-1183). +- Refresh + patches.suse/nvme-fix-RCU-hole-that-allowed-for-endless-looping-i.patch. +- Refresh + patches.suse/nvme-only-call-synchronize_srcu-when-clearing-curren.patch. +- commit 5f9ae94 + +- x86/tdx: Exclude shared bit from __PHYSICAL_MASK (jsc#PED-342). +- commit 7c06d91 + +- mmc: block: cleanup gendisk creation (jsc#PED-1183). +- mmc: block: let device_add_disk create disk attributes + (jsc#PED-1183). +- commit d09b05c + +- block: remove the bd_bdi in struct block_device (jsc#PED-1183). +- block: move the bdi from the request_queue to the gendisk + (jsc#PED-1183). +- block: add a queue_has_disk helper (jsc#PED-1183). +- commit 6bd4b8b + +- block: pass a gendisk to blk_queue_update_readahead + (jsc#PED-1183). +- Refresh + patches.suse/nvme-multipath-revalidate-paths-during-rescan.patch. +- commit 0d9ee3a + +- mm: hide laptop_mode_wb_timer entirely behind the BDI API + (jsc#PED-1183). +- block: remove support for delayed queue registrations + (jsc#PED-1183). +- dm: delay registering the gendisk (jsc#PED-1183). +- dm: move setting md->type into dm_setup_md_queue (jsc#PED-1183). +- dm: cleanup cleanup_mapped_device (jsc#PED-1183). +- block: support delayed holder registration (jsc#PED-1183). +- block: look up holders by bdev (jsc#PED-1183). +- block: remove the extra kobject reference in bd_link_disk_holder + (jsc#PED-1183). +- block: make the block holder code optional (jsc#PED-1183). +- blk-mq: Introduce the BLK_MQ_F_NO_SCHED_BY_DEFAULT flag + (jsc#PED-1183). +- block: remove blk-mq-sysfs dead code (jsc#PED-1183). +- commit e8944f6 + +- loop: raise media_change event (jsc#PED-1183). +- Refresh patches.suse/loop-reduce-the-loop_ctl_mutex-scope.patch. +- commit 6fac71e + +- block: add a helper to raise a media changed event + (jsc#PED-1183). +- block: export diskseq in sysfs (jsc#PED-1183). +- block: add ioctl to read the disk sequence number + (jsc#PED-1183). +- block: export the diskseq in uevents (jsc#PED-1183). +- block: add disk sequence number (jsc#PED-1183). +- commit 08404d0 + +- x86/tdx: Extend the confidential computing API to support TDX + guests (jsc#PED-342). +- commit ee89ba2 + +- block: remove cmdline-parser.c (jsc#PED-1183). +- block: remove disk_name() (jsc#PED-1183). +- block: simplify disk name formatting in check_partition + (jsc#PED-1183). +- block: simplify printing the device names disk_stack_limits + (jsc#PED-1183). +- block: use the %pg format specifier in show_partition + (jsc#PED-1183). +- block: use the %pg format specifier in printk_all_partitions + (jsc#PED-1183). +- commit ae60bd5 + +- block: reduce stack usage in diskstats_show (jsc#PED-1183). +- Refresh patches.suse/block-update-io_ticks-when-io-hang.patch. +- commit 0a2cd44 + +- block: remove bdput (jsc#PED-1183). +- block: remove bdgrab (jsc#PED-1183). +- commit e133466 + +- loop: don't grab a reference to the block device (jsc#PED-1183). +- block: change the refcounting for partitions (jsc#PED-1183). +- block: allocate bd_meta_info later in add_partitions + (jsc#PED-1183). +- commit 2f8408c + +- block: unhash the whole device inode earlier (jsc#PED-1183). +- block: assert the locking state in delete_partition + (jsc#PED-1183). +- commit 8def158 + +- x86/tdx: Add __tdx_module_call() and __tdx_hypercall() helper + functions (jsc#PED-342). +- commit 4d36a19 + +- block: take destination bvec offsets into account in + bio_copy_data_iter (jsc#PED1183). +- commit 5428532 + +- block: use bvec_kmap_local in bio_integrity_process + (jsc#PED1183). +- block: use bvec_kmap_local in t10_pi_type1_{prepare,complete} + (jsc#PED1183). +- block: use memcpy_from_bvec in __blk_queue_bounce (jsc#PED1183). +- block: use memcpy_from_bvec in bio_copy_kern_endio_read + (jsc#PED1183). +- block: use memcpy_to_bvec in copy_to_high_bio_irq (jsc#PED1183). +- block: rewrite bio_copy_data_iter to use bvec_kmap_local and + memcpy_to_bvec (jsc#PED1183). +- block: remove bvec_kmap_irq and bvec_kunmap_irq (jsc#PED1183). +- ps3disk: use memcpy_{from,to}_bvec (jsc#PED1183). +- dm-writecache: use bvec_kmap_local instead of bvec_kmap_irq + (jsc#PED1183). +- rbd: use memzero_bvec (jsc#PED1183). +- block: use memzero_page in zero_fill_bio (jsc#PED1183). +- bvec: add memcpy_{from,to}_bvec and memzero_bvec helper + (jsc#PED1183). +- bvec: add a bvec_kmap_local helper (jsc#PED1183). +- bvec: fix the include guards for bvec.h (jsc#PED1183). +- MIPS: don't include in + (jsc#PED1183). +- commit f380fe3 + +- x86/tdx: Provide common base for SEAMCALL and TDCALL C wrappers + (jsc#PED-342). +- Refresh + patches.suse/KVM-VMX-Prevent-RSB-underflow-before-vmenter.patch. +- commit 5700a12 + +- x86/tdx: Detect running as a TDX guest in early boot + (jsc#PED-342). +- Update config files. +- Refresh patches.suse/x86-retpoline-Cleanup-some-ifdefery.patch. +- commit 4cddcd7 + +- mm/debug_vm_pgtable: drop protection_map[] usage (jsc#PED-1981). +- mm: debug_vm_pgtable: don't use __P000 directly (jsc#PED-1981). +- commit 3e71232 + +- Move upstreamed tracing patch into sorted section +- commit c9209ac + +- hv_netvsc: Fix race between VF offering and VF association + message from host (bsc#1204850). +- commit e9c6d7c + +- arm64: entry: avoid kprobe recursion (git-fixes). +- Documentation: devres: add missing I2C helper (git-fixes). +- i2c: piix4: Fix adapter not be removed in piix4_remove() + (git-fixes). +- efi/tpm: Pass correct address to memblock_reserve (git-fixes). +- arm64: dts: juno: Add thermal critical trip points (git-fixes). +- firmware: arm_scmi: Make Rx chan_setup fail on memory errors + (git-fixes). +- firmware: arm_scmi: Suppress the driver's bind attributes + (git-fixes). +- arm64: dts: ls208xa: specify clock frequencies for the MDIO + controllers (git-fixes). +- arm64: dts: ls1088a: specify clock frequencies for the MDIO + controllers (git-fixes). +- arm64: dts: lx2160a: specify clock frequencies for the MDIO + controllers (git-fixes). +- dt-bindings: power: gpcv2: add power-domains property + (git-fixes). +- arm64: dts: imx8: correct clock order (git-fixes). +- ARM: dts: imx6qdl-gw59{10,13}: fix user pushbutton GPIO offset + (git-fixes). +- commit 9fbcbe8 + +- scsi: bnx2fc: Avoid using get_cpu() in bnx2fc_cmd_alloc() + (jsc#PED-1517). +- scsi: fcoe: Use per-CPU API to update per-CPU statistics + (jsc#PED-1517). +- scsi: bnx2fc: Fix spelling mistake "mis-match" -> "mismatch" + (jsc#PED-1517). +- scsi: bnx2fc: Stop using the SCSI pointer (jsc#PED-1517). +- scsi: bnx2fc: Make use of the helper macro kthread_run() + (jsc#PED-1517). +- scsi: bnx2fc: Fix typo in comments (jsc#PED-1517). +- commit 248604a + +- x86/mm: disable instrumentations of mm/pgprot.c (jsc#PED-1981). +- commit 204bb3e + +- powerpc/mm: Support execute-only memory on the Radix MMU + (jsc#PED-1981). +- mm/mmap: drop ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- arm/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- s390/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- mm/mmap: build protect protection_map[] with + ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- x86/mm: move protection_map[] inside the platform + (jsc#PED-1981). +- arm64/mm: move protection_map[] inside the platform + (jsc#PED-1981). +- powerpc/mm: move protection_map[] inside the platform + (jsc#PED-1981). +- mm/mmap: define DECLARE_VM_GET_PAGE_PROT (jsc#PED-1981). +- mm/mmap: build protect protection_map[] with __P000 + (jsc#PED-1981). +- mm/mmap: drop arch_vm_get_page_pgprot() (jsc#PED-1981). +- mm/mmap: drop arch_filter_pgprot() (jsc#PED-1981). +- x86/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- arm64/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- powerpc/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981). +- mm/mmap: add new config ARCH_HAS_VM_GET_PAGE_PROT + (jsc#PED-1981). +- mm/mmap: clarify protection_map[] indices (jsc#PED-1981). +- mm: generalize ARCH_HAS_FILTER_PGPROT (jsc#PED-1981). +- commit a3908cf + +- scsi: core: Remove the request member from struct scsi_cmnd + (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Use-a-structure-member-to-track-the-SCSI-command-submitter.patch. +- Refresh + patches.suse/scsi-do-not-print-reservation-conflict-for-TEST-UNIT.patch. +- commit 202c860 + +- Move upstreamed patches into sorted section +- commit 490afd7 + +- KVM: x86: Cap KVM_CAP_NR_VCPUS by KVM_CAP_MAX_VCPUS + (jsc#PED-2064). +- commit 4798ea3 + +- x86/sev: Don't use cc_platform_has() for early SEV-SNP calls + (bsc#1204970). +- x86/boot: Don't propagate uninitialized + boot_params->cc_blob_address (bsc#1204970). +- x86/boot: Fix the setup data types max limit (bsc#1204970). +- x86/compressed/64: Add identity mappings for setup_data entries + (bsc#1204970). +- x86/sev: Annotate stack change in the #VC handler (bsc#1204970). +- x86/sev: Remove duplicated assignment to variable info + (bsc#1204970). +- commit 1ad6c0c + +- KVM: x86: Drop arbitrary KVM_SOFT_MAX_VCPUS (jsc#PED-2064). +- commit 749b13f + +- kvm: rename KVM_MAX_VCPU_ID to KVM_MAX_VCPU_IDS (jsc#PED-2064). +- commit 41fefea + +- kvm: x86: Increase KVM_SOFT_MAX_VCPUS to 710 (jsc#PED-2064). +- commit 6f118a7 + +- kvm: x86: Increase MAX_VCPUS to 1024 (jsc#PED-2064). +- commit 7046326 + +- selftests/pidfd_test: Remove the erroneous ',' (git-fixes). +- vsock: fix possible infinite sleep in + vsock_connectible_wait_data() (git-fixes). +- vsock: remove the unused 'wait' in vsock_connectible_recvmsg() + (git-fixes). +- mISDN: fix possible memory leak in mISDN_register_device() + (git-fixes). +- rose: Fix NULL pointer dereference in rose_send_frame() + (git-fixes). +- nfc: nfcmrvl: Fix potential memory leak in + nfcmrvl_i2c_nci_send() (git-fixes). +- nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send() + (git-fixes). +- nfc: nxp-nci: Fix potential memory leak in nxp_nci_send() + (git-fixes). +- nfc: fdp: Fix potential memory leak in fdp_nci_send() + (git-fixes). +- xhci: Remove device endpoints from bandwidth list when freeing + the device (git-fixes). +- xhci-pci: Set runtime PM as default policy on all xHC 1.2 or + later devices (git-fixes). +- xhci: Add quirk to reset host back to default state at shutdown + (git-fixes). +- usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being + a V0.96 controller (git-fixes). +- kernfs: fix use-after-free in __kernfs_remove (git-fixes). +- serial: core: move RS485 configuration tasks from drivers into + core (git-fixes). +- commit 356bf7e + +- ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes). +- Bluetooth: virtio_bt: Use skb_put to set length (git-fixes). +- Bluetooth: L2CAP: Fix use-after-free caused by + l2cap_reassemble_sdu (git-fixes). +- isdn: mISDN: netjet: fix wrong check of device registration + (git-fixes). +- fs/binfmt_elf: Fix memory leak in load_elf_binary() (git-fixes). +- commit 9e67c0b + +- Move upstreamed BT fixes into sorted section +- commit 9cff1e2 + +- kvm: x86: Set KVM_MAX_VCPU_ID to 4*KVM_MAX_VCPUS (jsc#PED-2064). +- commit 5a21e82 + +- blacklist.conf: add 8250_mtk entry that was reverted +- commit c43b30f + +- Update config files. +- commit f8b438f + +- scsi: ufs: Request sense data asynchronously (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS. +- commit 5b785bb + +- usb: dwc3: pci: Add PCIe device ID for USB3 controller on CPU + sub-system for Alder Lake P (jsc#PED-1817). +- commit 5611b2f + +- usb: dwc3: pci: Update the macro names for USB PCIe device + ID's for Alder Lake platforms. +- commit 4db7e75 + +- usb: dwc3: pci: Add support for Intel Alder Lake (jsc#PED-1817). +- commit 7c11f19 + +- scsi: target: iscsi: Rename iscsi_conn to iscsit_conn + (jsc#PED-1509). +- scsi: target: iscsi: Rename iscsi_cmd to iscsit_cmd + (jsc#PED-1509). +- scsi: target: Add iscsi/cpus_allowed_list in configfs + (jsc#PED-1509). +- scsi: target: cxgbit: Enable Delayed ACK (jsc#PED-1509). +- scsi: target: cxgbit: Increase max DataSegmentLength + (jsc#PED-1509). +- scsi: target: Remove redundant assignment to variable ret + (jsc#PED-1509). +- commit 3c7b966 + +- blacklist.conf: added two invasive scsi fixes (jsc#PED-1509) +- commit 6611d69 + +- scsi: storvsc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit abcefb7 + +- scsi: usb-storage: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: tcm_loop: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: xen-scsifront: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: virtio_scsi: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- commit 66cf33c + +- scsi: ufs: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh patches.suse/scsi-ufs-core-scsi_get_lba-error-fix.patch. +- commit 3b3c660 + +- scsi: sym53c8xx: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: sun3_scsi: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- commit a1abc07 + +- scsi: stex: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh patches.suse/scsi-stex-Call-scsi_done-directly.patch. +- commit 3b9bdaf + +- scsi: snic: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: scsi_debug: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: qlogicpti: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: qla4xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: qla1280: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit 76b569f + +- scsi: ncr53c8xx: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: myrs: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: myrb: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: mvumi: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit 454ec4e + +- scsi: mpt3sas: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh + patches.suse/scsi-mpt3sas-Use-the-proper-SCSI-midlayer-interfaces.patch. +- commit 28339db + +- scsi: libsas: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: ips: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: ibmvscsi: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: ibmvfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: hpsa: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: hisi_sas: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- commit 40bbe2d + +- scsi: fnic: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Remove-the-done-argument-from-SCSI-queuecommand_lck-functions.patch. +- Refresh patches.suse/scsi-fnic-Call-scsi_done-directly.patch. +- Refresh patches.suse/scsi-fnic-Fix-a-tracing-statement.patch. +- commit 5d696da + +- scsi: dpt_i2o: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: cxlflash: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: aha1542: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: advansys: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: NCR5380: Use sc_data_direction instead of rq_data_dir() + (jsc#PED-1559). +- scsi: 53c700: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit 86603c7 + +- scsi: ata: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh patches.suse/scsi-ata-Call-scsi_done-directly.patch. +- commit d14876e + +- scsi: scsi_transport_spi: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: scsi_transport_fc: Use scsi_cmd_to_rq() instead of + scsi_cmnd.request (jsc#PED-1559). +- scsi: sr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- scsi: sd: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- commit 5ae2c44 + +- scsi: core: Use scsi_cmd_to_rq() instead of scsi_cmnd.request + (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Add-helper-to-return-number-of-logical-blo.patch. +- Refresh + patches.suse/scsi-core-Rename-scsi_mq_done-into-scsi_done-and-export-it.patch. +- Refresh + patches.suse/scsi-core-Use-a-structure-member-to-track-the-SCSI-command-submitter.patch. +- commit 65b943c + +- scsi: ufs: Synchronize SCSI and UFS error handling + (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-Fix-race-conditions-related-to-driver-data. +- commit c27d199 + +- usb: dwc3: core: fix some leaks in probe (git-fixes). +- commit f151478 + +- usb: dwc3: debug: show events parameters in hex (jsc#PED-1817). +- commit bfc751a + +- scsi: ufs: Optimize SCSI command processing (jsc#PED-818). +- Update + patches.suse/scsi-ufs-Retry-aborted-SCSI-commands-instead-of-comp.patch + (jsc#PED-818). +- Update + patches.suse/scsi-ufs-ufs-pci-Fix-Intel-LKF-link-stability.patch + (jsc#PED-818). +- commit 30ae188 + +- usb: dwc3: Fix bare use of unsigned checkpatch warning + (jsc#PED-1817). +- commit 909eacb + +- scsi: ufs: Inline ufshcd_outstanding_req_clear() (jsc#PED-818). +- scsi: ufs: Remove several wmb() calls (jsc#PED-818). +- commit 034dff5 + +- scsi: ufs: Improve static type checking for the host + (jsc#PED-818). +- Refresh patches.suse/scsi-ufs-Call-scsi_done-directly.patch. +- Refresh + patches.suse/scsi-ufs-Fix-a-deadlock-in-the-error-handler.patch. +- commit 83f5077 + +- usb: dwc3: add power down scale setting. +- commit 38b4418 + +- scsi: ufs: Verify UIC locking requirements at runtime + (jsc#PED-818). +- commit 3218f64 + +- scsi: ufs: Remove ufshcd_valid_tag() (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-Fix-a-deadlock-in-the-error-handler.patch. +- Refresh patches.suse/scsi-ufs-Fix-the-SCSI-abort-handler.patch. +- Refresh + patches.suse/scsi-ufs-Fix-unsigned-int-compared-with-less-than-ze.patch. +- Refresh patches.suse/scsi-ufs-Remove-dead-code.patch. +- commit 4a4a476 + +- usb: dwc3: host: Stop setting the ACPI companion (jsc#PED-1817). +- commit 40c12b1 + +- usb: dwc3: EP clear halt leading to clearing of delayed_status + (jsc#PED-1817). +- commit 41e49dd + +- USB: gadget: Add ID numbers to gadget names (jsc#PED-1817). +- commit abba912 + +- USB: gadget: Add a new bus for gadgets (jsc#PED-1817). +- commit 71557d2 + +- scsi: ufs: Rename the second ufshcd_probe_hba() argument + (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS. +- commit 81cd4a9 + +- scsi: ufs: Only include power management code if necessary + (jsc#PED-818). +- commit 7aae000 + +- scsi: ufs: Reduce power management code duplication + (jsc#PED-818). +- Refresh + patches.suse/scsi-ufs-ufs-pci-Add-support-for-Intel-ADL.patch. +- Refresh + patches.suse/scsi-ufs-ufs-pci-Add-support-for-Intel-MTL.patch. +- commit 0798fbe + +- scsi: ufs: Allow async suspend/resume callbacks (jsc#PED-1559). +- commit 859a0be + +- scsi: ufs: core: Use scsi_get_lba() to get LBA (jsc#PED-1559). +- Refresh patches.suse/scsi-ufs-core-scsi_get_lba-error-fix.patch. +- commit 53218d3 + +- scsi: ufs: Refactor ufshcd_is_intr_aggr_allowed() + (jsc#PED-1559). +- commit dd7279f + +- scsi: core: Make scsi_get_lba() return the LBA (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Add-helper-to-return-number-of-logical-blo.patch. +- commit a435c49 + +- scsi: pm8001: Remove redundant initialization of variable 'rv' + (jsc#PED-1559). +- Refresh + patches.suse/scsi-pm80xx-Update-WARN_ON-check-in-pm8001_mpi_build_cmd. +- commit 4e95793 + +- scsi: elx: efct: Remove redundant initialization of variable + (jsc#PED-1559). +- scsi: snic: Remove redundant assignment to variable ret + (jsc#PED-1559). +- commit ac4f44c + +- scsi: bsg-lib: Fix commands without data transfer in + (jsc#PED-1559). +- scsi: bsg: Fix commands without data transfer in (jsc#PED-1559). +- scsi: bsg: Move the whole request execution into the + (jsc#PED-1559). +- scsi: block: Remove the remaining SG_IO-related fields from + (jsc#PED-1559). +- scsi: block: Remove BLK_SCSI_MAX_CMDS (jsc#PED-1559). +- commit b97a71c + +- ALSA: hda: cs35l41: Utilize acpi_get_subsystem_id() + (jsc#PED-850). +- Refresh + patches.suse/ALSA-hda-cs35l41-Support-System-Suspend.patch. +- commit 8550ce4 + +- scsi: bsg: Simplify device registration (jsc#PED-1559). +- Update + patches.suse/scsi-core-Register-sysfs-attributes-earlier.patch + (jsc#PED-1559). +- commit 16ae25e + +- ALSA: hda/realtek: simplify the return of comp_bind() + (jsc#PED-850). +- ALSA: hda/hdmi: Limit the maximal count of PCM devices to 8 + (jsc#PED-850). +- ALSA: hda/hdmi: Use only dynamic PCM device allocation + (jsc#PED-850). +- ALSA: hda/ca0132 - remove the unneeded result variable + (jsc#PED-850). +- ALSA: hda/hdmi: ELD procfs - print the codec NIDs (jsc#PED-850). +- ALSA: hda/hdmi: Simplify the pcm_idx condition in + hdmi_pcm_setup_pin() (jsc#PED-850). +- ALSA: hda: add snd_hdac_stop_streams() helper (jsc#PED-850). +- ALSA: hda: cs35l41: Call put_device() in the scope of + get_device() (jsc#PED-850). +- ALSA: hda: beep: Simplify keep-power-at-enable behavior + (jsc#PED-850). +- ALSA: hda/hdmi: Replace zero-length array with + DECLARE_FLEX_ARRAY() helper (jsc#PED-850). +- ALSA: hda: cleanup definitions for multi-link registers + (jsc#PED-850). +- ALSA: hda: Remove unused defines (jsc#PED-850). +- ALSA: hda: Remove unused MAX_PIN_CONFIGS constant (jsc#PED-850). +- ALSA: hda: Always free codec on the device release + (jsc#PED-850). +- commit d98a166 + +- scsi: sr: cdrom: Move cdrom_read_cdda_bpc() into the sr + (jsc#PED-1559). +- commit 8b9b02b + +- scsi: libsas: Drop BLK_DEV_BSGLIB selection (jsc#PED-1559). +- scsi: libsas: Allow libsas to include SCSI header files + (jsc#PED-1559). +- commit dd3b173 + +- ALSA: hda: cs35l41: Fix build error unused-function + (jsc#PED-850). +- blacklist.conf: drop the backported entry +- Refresh + patches.suse/ALSA-hda-cs35l41-Support-System-Suspend.patch. +- commit 1949e96 + +- PM: core: Add new *_PM_OPS macros, deprecate old ones + (jsc#PED-850). +- PM: core: Redefine pm_ptr() macro (jsc#PED-850). +- commit 7226af8 + +- ALSA: hda/realtek: Make use of the helper + component_compare_dev_name (jsc#PED-850). +- Refresh + patches.suse/ALSA-hda-cs35l41-Remove-Set-Channel-Map-api-from-bin.patch. +- Refresh + patches.suse/ALSA-hda-cs35l41-Save-codec-object-inside-component-.patch. +- Refresh + patches.suse/ALSA-hda-realtek-More-robust-component-matching-for-.patch. +- commit 2370fb9 + +- ASoC: amd: yc: Add Lenovo Yoga Slim 7 Pro X to quirks table + (jsc#PED-850). +- ASoC: amd: yc: Add ASUS UM5302TA into DMI table (jsc#PED-850). +- ALSA: intel-dspconfig: add ES8336 support for AlderLake-PS + (jsc#PED-850). +- commit 88de70c + +- scsi: sd: Fix crashes in sd_resume_runtime() (jsc#PED-1559). +- scsi: scsi_ioctl: Unexport sg_scsi_ioctl() (jsc#PED-1559). +- scsi: scsi_ioctl: Factor SG_IO handling into a helper + (jsc#PED-1559). +- scsi: scsi_ioctl: Factor SCSI_IOCTL_GET_IDLUN handling into + a helper (jsc#PED-1559). +- scsi: scsi_ioctl: Consolidate the START STOP UNIT handling + (jsc#PED-1559). +- scsi: scsi_ioctl: Remove a very misleading comment + (jsc#PED-1559). +- scsi: core: Rename CONFIG_BLK_SCSI_REQUEST to CONFIG_SCSI_COMMON + (jsc#PED-1559). +- scsi: scsi_ioctl: Move the "block layer" SCSI ioctl handling + to drivers/scsi (jsc#PED-1559). +- scsi: scsi_ioctl: Simplify SCSI passthrough permission + (jsc#PED-1559). +- scsi: scsi_ioctl: Move scsi_command_size_tbl to scsi_common.c + (jsc#PED-1559). +- scsi: scsi_ioctl: Remove scsi_req_init() (jsc#PED-1559). +- scsi: bsg: Move bsg_scsi_ops to drivers/scsi/ (jsc#PED-1559). +- scsi: bsg: Decouple from scsi_cmd_ioctl() (jsc#PED-1559). +- scsi: block: Add a queue_max_bytes() helper (jsc#PED-1559). +- scsi: scsi_ioctl: Call scsi_cmd_ioctl() from scsi_ioctl() + (jsc#PED-1559). +- scsi: scsi_ioctl: Remove scsi_verify_blk_ioctl() (jsc#PED-1559). +- scsi: scsi_ioctl: Remove scsi_cmd_blk_ioctl() (jsc#PED-1559). +- scsi: cdrom: Remove the call to scsi_cmd_blk_ioctl() from + cdrom_ioctl() (jsc#PED-1559). +- scsi: st: Simplify ioctl handling (jsc#PED-1559). +- scsi: core: Remove scsi_compat_ioctl() (jsc#PED-1559). +- scsi: sg: Consolidate compat ioctl handling (jsc#PED-1559). +- scsi: ch: Consolidate compat ioctl handling (jsc#PED-1559). +- scsi: sd: Consolidate compat ioctl handling (jsc#PED-1559). +- scsi: sr: Consolidate compat ioctl handling (jsc#PED-1559). +- scsi: core: Add BLIST_IGN_MEDIA_CHANGE for Ultra HS-SD/MMC + (jsc#PED-1559). +- scsi: sd: REQUEST SENSE for BLIST_IGN_MEDIA_CHANGE devices in + (jsc#PED-1559). +- commit 14236ba + +- scsi: core: Add new flag BLIST_IGN_MEDIA_CHANGE (jsc#PED-1559). +- Refresh + patches.suse/scsi-core-Add-BLIST_NO_ASK_VPD_SIZE-for-some-VDASD.patch. +- Refresh + patches.suse/scsi-core-sd-Add-silence_suspend-flag-to-suppress-some-PM-messages.patch. +- Refresh + patches.suse/scsi-make-sure-that-request-queue-queiesce-and-unqui.patch. +- commit 5ec93ba + +- scsi: scsi_debug: Improve RDPROTECT/WRPROTECT handling + (jsc#PED-1559). +- scsi: scsi_debug: Remove dump_sector() (jsc#PED-1559). +- commit aedbc46 + +- IB/core: Fix a nested dead lock as part of ODP flow (git-fixes) +- commit 6f2ee60 + +- USB: gadget: Fix mistakes in UDC core kerneldoc (jsc#PED-1817). +- commit e2b3f30 + +- USB: gadget: Register udc before gadget (jsc#PED-1817). +- commit ce73342 + +- usb: Remove redundant 'flush_workqueue()' calls (jsc#PED-1817). +- commit a7fc6e6 + +- usb: gadget: udc: core: Revise comments for USB ep + enable/disable (jsc#PED-1817). +- commit fa96de3 + +- USB: gadget: udc: Remove some dead code (jsc#PED-1817). +- commit c4d776a + +- usb: gadget: udc: core: Print error code in + usb_gadget_probe_driver() (jsc#PED-1817). +- commit 172a5d3 + +- usb: gadget: aspeed: Remove repeated verbose license text + (jsc#PED-1917). +- commit 86efa6c + +- ASoC: soc-pcm.c: call __soc_pcm_close() in soc_pcm_close() + (jsc#PED-850). +- commit cff81ba + +- Refresh patches.suse/ppc64-kdump-Limit-kdump-base-to-512MB.patch + to upstream version. +- commit 0f63234 + +- ASoC: tegra20-spdif: stop setting slave_id (jsc#PED-850). +- commit 4702843 + +- ASoC: rt5640: Fix the issue of the abnormal JD2 status + (jsc#PED-850). +- ASoC: rt5640: Fix the JD voltage dropping issue (jsc#PED-850). +- ASoC: codecs: rt274: Set component to NULL on remove + (jsc#PED-850). +- ASoC: codecs: rt298: Set component to NULL on remove + (jsc#PED-850). +- ASoC: codecs: rt286: Set component to NULL on remove + (jsc#PED-850). +- ASoC: codecs: rt298: Fix jack detection (jsc#PED-850). +- ASoC: codecs: rt298: Fix NULL jack in interrupt (jsc#PED-850). +- ASoC: rt5640: Add the MICBIAS1 to the dapm routing + (jsc#PED-850). +- ASoC: codecs: soundwire: call pm_runtime_resume() in component + probe (jsc#PED-850). +- ASoC: codecs: rt274: Always init jack_detect_work (jsc#PED-850). +- ASoC: rt5640: Fix the wrong state of JD1 and JD2 (jsc#PED-850). +- ASoC: rt1308-sdw: add the default value of register 0xc320 + (jsc#PED-850). +- ASoC: rt5645: Fix the error handling of rt5645_i2c_probe() + (jsc#PED-850). +- ASoC: rt1316-sdw: Add endianness flag in + snd_soc_component_driver (jsc#PED-850). +- ASoC: rt1308-sdw: Add endianness flag in + snd_soc_component_driver (jsc#PED-850). +- ASoC: rt715-sdca: Add endianness flag in + snd_soc_component_driver (jsc#PED-850). +- ASoC: rt715: Add endianness flag in snd_soc_component_driver + (jsc#PED-850). +- ASoC: rt700: Add endianness flag in snd_soc_component_driver + (jsc#PED-850). +- ASoC: rt1019: Add endianness flag in snd_soc_component_driver + (jsc#PED-850). +- commit 0f6c8bf + +- ASoC: rt711/5682: check if bus is active before deferred jack + detection (jsc#PED-850). +- Refresh + patches.suse/ASoC-rt7-sdw-harden-jack_detect_handler.patch. +- commit dfab873 + +- ASoC: rt*: use simple i2c probe function (jsc#PED-850). +- ASoC: rt5682s: Separate the regulator consumer controls + (jsc#PED-850). +- ASoC: rt1308-sdw: get calibration params after power on + (jsc#PED-850). +- ASoC: rt5682s: Stabilize the combo jack detection (jsc#PED-850). +- ASoC: rt5640: Remove the sysclk and sysclk_src checking + (jsc#PED-850). +- ASoC: rt5682s: Fix the wrong jack type detected (jsc#PED-850). +- ASoC: rt5682s: do not block workqueue if card is unbound + (jsc#PED-850). +- ASoC: rt5682: Register wclk with its parent_hws instead of + parent_data (jsc#PED-850). +- ASoC: rt1011: revert 'I2S Reference' to SOC_ENUM_EXT + (jsc#PED-850). +- ASoC: rt5682s: use 'static' qualifier (jsc#PED-850). +- ASoC: rt5682-i2c: Use devm_clk_get_optional for optional clock + (jsc#PED-850). +- ASoC: rt5682s: Downsizing the DAC volume scale (jsc#PED-850). +- ASoC: rt1011: Fix 'I2S Reference' enum control (jsc#PED-850). +- ASoC: rt1011: Fix 'I2S Reference' enum control caused error + (jsc#PED-850). +- ASoC: rt5682s: Fix hp pop produced immediately after resuming + (jsc#PED-850). +- ASoC: rt5682s: Fix HP noise caused by SAR mode switch when + the system resumes (jsc#PED-850). +- ASoC: rt5682s: Enable ASRC auto-disable to fix pop during jack + plug-in while playback (jsc#PED-850). +- ASoC: rt5682s: Revise the macro RT5682S_PLLB_SRC_MASK + (jsc#PED-850). +- ASoC: rt5682s: Use dev_dbg instead of pr_debug (jsc#PED-850). +- ASoC: rt5682s: Remove the volatile SW reset register from + reg_default (jsc#PED-850). +- ASoC: rt5682s: make rt5682s_aif2_dai_ops and + rt5682s_soc_component_dev (jsc#PED-850). +- ASoC: rt1011: add i2s reference control for rt1011 + (jsc#PED-850). +- commit db632b2 + +- ASoC: core: Correct spelling fliped -> flipped (jsc#PED-850). +- Refresh + patches.suse/ASoC-core-Always-send-the-CPU-DAI-a-direct-clock-spe.patch. +- commit 2306d72 + +- ASoC: soc-component: Add comment for the endianness flag + (jsc#PED-850). +- Refresh + patches.suse/ASoC-soc-component-Add-legacy_dai_naming-flag.patch. +- commit 9c88bef + +- ASoC: madera: Replace kernel.h with the necessary inclusions + (jsc#PED-850). +- ASoC: core: Add new SOC_DOUBLE_SX_TLV macro (jsc#PED-850). +- ASoC: hdmi-codec: Update to modern DAI terminology + (jsc#PED-850). +- ASoC: soc.h: Add SOC_SINGLE_S_EXT_TLV macro (jsc#PED-850). +- ASoC: soc.h: Introduce SOC_DOUBLE_R_S_EXT_TLV() macro + (jsc#PED-850). +- ASoC: Intel: avs: Declare vendor tokens (jsc#PED-850). +- ASoC: soc.h: Add SOC_SINGLE_S_TLV() macro (jsc#PED-850). +- ALSA: cleanup double word in comment (jsc#PED-850). +- ASoC: rt5682s: add delay time to fix pop sound issue + (jsc#PED-850). +- ALSA: uapi: use C90 comment style instead of C99 style + (jsc#PED-850). +- ALSA: pcm: comment about relation between msbits hw parameter + and [S|U]32 formats (jsc#PED-850). +- commit f97ebfc + +- ASoC: soc-component: Remove conditional definition of debugfs + data members (jsc#PED-850). +- Refresh patches.suse/asoc-suse-kabi-padding.patch. +- commit b948484 + +- ASoC: SOF: Drop resindex_dma_base, dma_engine, dma_size from + sof_dev_desc (jsc#PED-850). +- ALSA: hda_audio_ext: fix kernel-doc (jsc#PED-850). +- commit 1783f94 + +- ALSA: hda: Once again fix regression of page allocations with + IOMMU (jsc#PED-850). +- ALSA: memalloc: Revive x86-specific WC page allocations again + (jsc#PED-850). +- ASoC: DPCM: Don't pick up BE without substream (jsc#PED-850). +- ALSA: pcm: Replace sprintf() with sysfs_emit() (jsc#PED-850). +- ALSA: core: Replace scnprintf() with sysfs_emit() (jsc#PED-850). +- ALSA: control-led: Replace sprintf() with sysfs_emit() + (jsc#PED-850). +- ALSA: pcm: Use deferred fasync helper (jsc#PED-850). +- ASoC: soc-pcm: demote warnings on non-atomic BE connection + (jsc#PED-850). +- ASoC: soc-core.c: share code for + snd_soc_of_get_dai_link_cpus/codecs() (jsc#PED-850). +- ASoC: soc-core.c: fixup snd_soc_of_get_dai_link_cpus() + (jsc#PED-850). +- ASoC: dapm: Move stereo autodisable check (jsc#PED-850). +- ASoC: topology: KUnit: Followup prototype change of + snd_soc_unregister_card() (jsc#PED-850). +- ASoC: ops: Fix integer detection for when max possible values > + 1 (jsc#PED-850). +- ASoC: ops: Fix boolean/integer detection for simple controls + (jsc#PED-850). +- ASoC: ops: Don't modify the driver's plaform_max when reading + state (jsc#PED-850). +- ASoC: Introduce 'fixup_controls' card method (jsc#PED-850). +- ASoC: soc-dai: Remove set_fmt_new callback (jsc#PED-850). +- ASoC: core: Always send the CPU DAI a direct clock specifier + (jsc#PED-850). +- ASoC: ops: Remove unneeded delay.h inclusion (jsc#PED-850). +- ASoC: ops: Clarify snd_soc_info_volsw_sx() (jsc#PED-850). +- ALSA: core: Fix missing return value comments for kernel docs + (jsc#PED-850). +- ALSA: memalloc: Fix missing return value comments for kernel + docs (jsc#PED-850). +- ALSA: control: Fix missing return value comments for kernel docs + (jsc#PED-850). +- ALSA: compress: Fix kernel doc warnings (jsc#PED-850). +- ALSA: dmaengine: Fix missing return value comments for kernel + docs (jsc#PED-850). +- ALSA: pcm: Fix missing return value comments for kernel docs + (jsc#PED-850). +- ALSA: compress: Enable kernel doc markers for some functions + (jsc#PED-850). +- ALSA: rawmidi: Take buffer refcount while draining output + (jsc#PED-850). +- ALSA: rawmidi: Check stream state at exported functions + (jsc#PED-850). +- ALSA: rawmidi: Take open_mutex around parameter changes + (jsc#PED-850). +- ALSA: rawmidi: Move lock to snd_rawmidi_substream (jsc#PED-850). +- ALSA: rawmidi: Make internal functions local static + (jsc#PED-850). +- ASoC: topology: Drop superfluous check of + CONFIG_SND_CTL_VALIDATION (jsc#PED-850). +- ALSA: memalloc: Drop x86-specific hack for WC allocations + (jsc#PED-850). +- ASoC: soc-pcm: fix BE transition for TRIGGER_START + (jsc#PED-850). +- ASoC: soc-component: Update handling to component delays + (jsc#PED-850). +- ASoC: core: Pass legacy_dai_naming flag directly (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: Use default config when none + is given (jsc#PED-850). +- ASoC: soc-core: remove always-false path (jsc#PED-850). +- ASoC: soc-pcm: improve BE transition for TRIGGER_START + (jsc#PED-850). +- ASoC: soc-pcm: improve BE transition for PAUSE_RELEASE + (jsc#PED-850). +- commit e51218e + +- ASoC: soc-utils: Add helper to calculate BCLK from TDM info + (jsc#PED-850). +- ASoC: topology: Rename soc_tplg_init_kcontrol() function + (jsc#PED-850). +- ASoC: topology: Correct error message (jsc#PED-850). +- ASoC: topology: Rename SOC_TPLG_PASS_MIXER to _CONTROL + (jsc#PED-850). +- ASoC: topology: Return bool instead of int (jsc#PED-850). +- ASoC: topology: Remove unnecessary looping (jsc#PED-850). +- ASoC: topology: Use for loop instead of while (jsc#PED-850). +- ASoC: Introduce snd_soc_of_get_dai_link_cpus (jsc#PED-850). +- ALSA: seq: replace ternary operator with max() (jsc#PED-850). +- ASoC: soc-core: add debugfs_prefix member to + snd_soc_component_driver (jsc#PED-850). +- ASoC: soc-pcm: use GFP_KERNEL when the code is sleepable + (jsc#PED-850). +- ALSA: memalloc: Add fallback SG-buffer allocations for x86 + (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: set period_bytes_min based + on maxburst (jsc#PED-850). +- ASoC: topology: Remove superfluous error prints (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: separate max_buffer_size + assignment (jsc#PED-850). +- ALSA: oss: Release temporary buffers upon errors (jsc#PED-850). +- ALSA: core: Fix typo in 'PCM Timer Interface' help + (jsc#PED-850). +- ALSA: seq: oss: fix typo (jsc#PED-850). +- ALSA: seq: oss: use kzalloc (jsc#PED-850). +- commit 9ab936f + +- ASoC: ops: Check for negative values before reading them + (jsc#PED-850). +- Refresh + patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-7f3d90a35196.patch. +- Refresh + patches.suse/ASoC-ops-Shift-tested-values-in-snd_soc_put_volsw-by.patch. +- commit 08e21d0 + +- ASoC: soc-pcm: Move debugfs removal out of spinlock + (jsc#PED-850). +- ASoC: soc-pcm: Fix DPCM lockdep warning due to nested stream + locks (jsc#PED-850). +- ASoC: topology: Fix typo (jsc#PED-850). +- ASoC: core: Add snd_soc_of_parse_pin_switches() from + simple-card-utils (jsc#PED-850). +- ASoC: dai_dma: remove slave_id field (jsc#PED-850). +- ASoC: soc-pcm: fix BE handling of PAUSE_RELEASE (jsc#PED-850). +- ASoC: soc-pcm: test refcount before triggering (jsc#PED-850). +- ASoC: soc-pcm: serialize BE triggers (jsc#PED-850). +- commit 0a8975a + +- ASoC: soc-pcm: Fix and cleanup DPCM locking (jsc#PED-850). +- ASoC: soc-pcm: align BE 'atomicity' with that of the FE + (jsc#PED-850). +- ASoC: soc-pcm: use GFP_ATOMIC for dpcm structure (jsc#PED-850). +- ASoC: soc-pcm: tidyup soc_pcm_pointer()'s delay update method + (jsc#PED-850). +- ALSA: oss: remove useless NULL check before kfree (jsc#PED-850). +- ALSA: memalloc: Unify x86 SG-buffer handling (take#3) + (jsc#PED-850). +- ASoC: Stop dummy from overriding hwparams (jsc#PED-850). +- ASoC: topology: Change topology device to card device + (jsc#PED-850). +- ASoC: topology: Use correct device for prints (jsc#PED-850). +- commit 7db64dd + +- ASoC: topology: handle endianness warning (jsc#PED-850). +- Refresh + patches.suse/ASoC-topology-Correct-error-handling-in-soc_tplg_dap.patch. +- commit 1aa23db + +- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at + dmaengine_pcm_hw_params() (jsc#PED-850). +- Refresh + patches.suse/ASoC-dmaengine-Restore-NULL-prepare_slave_config-cal.patch. +- Refresh + patches.suse/ASoC-dmaengine-do-not-use-a-NULL-prepare_slave_confi.patch. +- commit 2a6f02e + +- ASoC: topology: Check for dapm widget completeness + (jsc#PED-850). +- ASoC: topology: Add header payload_size verification + (jsc#PED-850). +- ASoC: core: Remove invalid snd_soc_component_set_jack call + (jsc#PED-850). +- ASoC: soc-core: accept zero format at + snd_soc_runtime_set_dai_fmt() (jsc#PED-850). +- ASoC: soc-core: tidyup empty function (jsc#PED-850). +- ASoC: soc-pcm: tidyup soc_pcm_hw_clean() - step2 (jsc#PED-850). +- ASoC: soc-pcm: tidyup soc_pcm_hw_clean() - step1 (jsc#PED-850). +- ASoC: soc-component: improve error reporting for register access + (jsc#PED-850). +- ASoC: dmaengine: Introduce module option + prealloc_buffer_size_kbytes (jsc#PED-850). +- ASoC: compress/component: Use + module_get_when_open/put_when_close for cstream (jsc#PED-850). +- ASoC: soc-component: Convert the mark_module to void* + (jsc#PED-850). +- ASoC: soc-topology: Move template info print + soc_tplg_dapm_widget_create() (jsc#PED-850). +- ASoC: Revert PCM trigger changes (jsc#PED-850). +- ASoC: soc-pcm: test refcount before triggering (jsc#PED-850). +- ASoC: soc-ac97: cleanup cppcheck warning (jsc#PED-850). +- ASoC: soc-component: cleanup cppcheck warning at + snd_soc_pcm_component_pm_runtime_get() (jsc#PED-850). +- ASoC: soc-jack: cleanup cppcheck warning for CONFIG_GPIOLIB + (jsc#PED-850). +- ASoC: soc-jack: cleanup cppcheck warning at + snd_soc_jack_report() (jsc#PED-850). +- ASoC: soc-dai: cleanup cppcheck warning at snd_soc_pcm_dai_new() + (jsc#PED-850). +- ASoC: soc-dai: cleanup cppcheck warning at + snd_soc_dai_link_set_capabilities() (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at + dmaengine_copy_user() (jsc#PED-850). +- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at + dmaengine_pcm_new() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + soc_dapm_dai_stream_event() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + snd_soc_dapm_new_controls() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + snd_soc_dapm_weak_routes() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + snd_soc_dapm_add_routes() (jsc#PED-850). +- commit b5f8c2c + +- ASoC: soc-ops: cleanup cppcheck warning at snd_soc_put_xr_sx() + (jsc#PED-850). +- Refresh + patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-2b7c46369f09.patch. +- Refresh + patches.suse/ASoC-ops-Reject-out-of-bounds-values-in-snd_soc_put_-4cf28e9ae6e2.patch. +- commit 6287e8d + +- ASoC: soc-dapm: cleanup cppcheck warning at + snd_soc_dapm_del_route() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_seq_run() + (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + dapm_seq_check_event() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_new_dai_link() + (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_new_pga() + (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at + dapm_set_mixer_path_status() (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_connect_mux() + (jsc#PED-850). +- ASoC: soc-dapm: cleanup cppcheck warning at dapm_wcache_lookup() + (jsc#PED-850). +- ASoC: soc-ops: cleanup cppcheck warning at snd_soc_get_xr_sx() + (jsc#PED-850). +- commit 426f2b5 + +- ASoC: soc-ops: cleanup cppcheck warning at + snd_soc_put_volsw_sx() (jsc#PED-850). +- Refresh + patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-7f3d90a35196.patch. +- Refresh + patches.suse/ASoC-ops-Reject-out-of-bounds-values-in-snd_soc_put_-4f1e50d6a9cf.patch. +- commit 26b601a + +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_get_dai_name() (jsc#PED-850). +- Refresh + patches.suse/ASoC-soc-core-skip-zero-num_dai-component-in-searchi.patch. +- commit 09f5c3a + +- ASoC: soc-ops: cleanup cppcheck warning at + snd_soc_limit_volume() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + snd_soc_find_dai_link() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + soc_tplg_kcontrol_elems_load() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + soc_tplg_dapm_widget_elems_load() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + soc_tplg_dai_elems_load() (jsc#PED-850). +- ASoC: soc-topology: cleanup cppcheck warning at + soc_tplg_process_headers() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_of_parse_audio_routing() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_of_parse_audio_simple_widgets() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_add_controls() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_unregister_component() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_daifmt_parse_format() (jsc#PED-850). +- ASoC: soc-core: cleanup cppcheck warning at + snd_soc_set_dmi_name() (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at + dpcm_runtime_setup_be_chan() (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at dpcm_be_is_active() + (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at + soc_get_playback_capture() (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at + soc_pcm_components_close() (jsc#PED-850). +- ASoC: soc-pcm: cleanup cppcheck warning at soc_pcm_apply_msb() + (jsc#PED-850). +- commit f269c98 + +- ASoC: Export DAI register and widget ctor and dctor functions + (jsc#PED-850). +- commit 7fc094d + +- ALSA: Add snd_pcm_direction_name() helper (jsc#PED-850). +- commit d9a2cc8 + +- Update config files: enable CONFIG_SND_SOC_HDA (jsc#PED-850) +- commit 7be7af9 + +- ASoC: hdac_hda: Add endianness flag in snd_soc_component_driver + (jsc#PED-850). +- ASoC: hdac_hda: Avoid unexpected match when pcm_name is "Analog" + (jsc#PED-850). +- commit 5773ce0 + +- ALSA: hda: Skip event processing for unregistered codecs + (jsc#PED-850). +- Refresh patches.suse/hdaudio-suse-kabi-padding.patch. +- commit cc04cc9 + +- ALSA: hda/hdmi: add keep-alive support for ADL-P and DG2 + (jsc#PED-850). +- Refresh + patches.suse/ALSA-hda-hdmi-Fix-the-converter-allocation-for-the-s.patch. +- Refresh + patches.suse/ALSA-hda-hdmi-change-type-for-the-assigned-variable.patch. +- commit d6b0bb5 + +- ALSA: hda: Fix crash due to jack poll in suspend (jsc#PED-850). +- Revert "ALSA: hda: Fix page fault in snd_hda_codec_shutdown()" + (jsc#PED-850). +- ASoC: codecs: Add HD-Audio codec driver (jsc#PED-850). +- ALSA: hda: Fix page fault in snd_hda_codec_shutdown() + (jsc#PED-850). +- ALSA: hda: Fix put_device() inconsistency in error path + (jsc#PED-850). +- ALSA: hda: Make device usage_count consistent across subsequent + probing (jsc#PED-850). +- ALSA: hda: Fix null-ptr-deref when i915 fails and hdmi is + denylisted (jsc#PED-850). +- ALSA: hda: MTL: add HD Audio PCI ID and HDMI codec vendor ID + (jsc#PED-850). +- ALSA: hda/via: Delete does not require return (jsc#PED-850). +- ALSA: hda/tegra: Enable Jack poll for tegra (jsc#PED-850). +- ALSA: hda: Jack detection poll in suspend state (jsc#PED-850). +- ALSA: hda/hdmi: add HDMI codec VID for Raptorlake-P + (jsc#PED-850). +- ALSA: hda: Add helper macros for DSP capable devices + (jsc#PED-850). +- ALSA: hda: Expose codec cleanup and power-save functions + (jsc#PED-850). +- ALSA: hda: Update and expose codec register procedures + (jsc#PED-850). +- ALSA: hda: Update and expose snd_hda_codec_device_init() + (jsc#PED-850). +- commit 47acdb2 + +- ALSA: hda: intel-dsp-config: add missing RaptorLake PCI IDs + (jsc#PED-850). +- ALSA: hda: Replace sprintf() with sysfs_emit() (jsc#PED-850). +- ALSA: hda: Remove unused macro definition (jsc#PED-850). +- ALSA: hda: Reset all SIE bits in INTCTL (jsc#PED-850). +- tracing: ALSA: hda: Remove string manipulation out of the fast + path (jsc#PED-850). +- ALSA: intel-dspconfig: add ES8336 support for CNL (jsc#PED-850). +- ALSA: intel-dsp-config: add more ACPI HIDs for ES83x6 devices + (jsc#PED-850). +- ALSA: hda/i915 - avoid hung task timeout in i915 wait + (jsc#PED-850). +- ALSA: hda: Add snd_hdac_ext_bus_link_at() helper (jsc#PED-850). +- ALSA: HDA: hdac_ext_stream: use consistent prefixes for + variables (jsc#PED-850). +- commit 4592dc3 + +- Add already cherry-picked IDs for ASoC fixes +- commit 1873074 + +- ASoC: SOF: Intel: pci-mtl: fix firmware name (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Free the ida when IPC fails in + sof_ipc4_widget_setup() (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195: Import namespace + SND_SOC_SOF_MTK_COMMON (jsc#PED-850). +- ASoC: amd: acp: add missing platform_device_unregister() + in acp_pci_probe() (jsc#PED-850). +- ALSA: hda: intel-nhlt: Move structs out of #define block + (jsc#PED-850). +- codecs: rt5682s: fix an incorrect NULL check on list iterator + (jsc#PED-850). +- ASoC: rt5682s: Fix crash due to out of scope stack vars + (jsc#PED-850). +- ASoC: soc-acpi: Set mach->id field on comp_ids matches + (jsc#PED-850). +- commit 36bf397 + +- ASoC: Intel: sof_sdw: add support for Dell SKU 0AFF + (jsc#PED-850). +- ASoC: SOF: Kconfig: Make IPC_MESSAGE_INJECTOR depend on + SND_SOC_SOF (jsc#PED-850). +- ASoC: SOF: Kconfig: Make IPC_FLOOD_TEST depend on SND_SOC_SOF + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: fix alh_group_ida max value + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: fix wrong use of sizeof in + sof_ipc4_widget_setup_comp_src() (jsc#PED-850). +- soundwire: qcom: remove duplicate reset control get + (jsc#PED-850). +- ASoC: Intel: fix sof_es8336 probe (jsc#PED-850). +- ASoC: SOF: Intel: hda: Fix potential buffer overflow by + snprintf() (jsc#PED-850). +- ASoC: Intel: avs: Fix potential buffer overflow by snprintf() + (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Fix clang -Wformat warning + (jsc#PED-850). +- ASoC: amd: yc: Update DMI table entries for AMD platforms + (jsc#PED-850). +- ASoC: amd: acp: Fix initialization of ext_intr_stat1 in + i2s_irq_handler() (jsc#PED-850). +- ASoC: Intel: sof_nau8825: Move quirk check to the front in + late probe (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Perform quirk check first in card + late probe (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Add support for mtl_mx98357_rt5682 + (jsc#PED-850). +- ASoC: Intel: sof_es8336: remove hard-coded SSP selection + (jsc#PED-850). +- ASoC: Intel: sof_es8336: reset the num_links during probe + (jsc#PED-850). +- ASoC: Intel: sof_es8336: add support for HDMI_In capture + (jsc#PED-850). +- ASoC: Intel: sof_es8336: ignore GpioInt when looking for + speaker/headset GPIO lines (jsc#PED-850). +- ASoC: Intel: sof_es8336: Fix GPIO quirks set via module option + (jsc#PED-850). +- ASoC: Intel: soc-acpi: Add entry for sof_es8336 in ADL match + table (jsc#PED-850). +- ASoC: Intel: sof_sdw: add support for Dell SKU 0AF0 + (jsc#PED-850). +- ASoC: SOF: dai-intel: add SOF_DAI_INTEL_SSP_CLKCTRL_MCLK_AON + bit (jsc#PED-850). +- ASoC: SOF: Add cont_update_posn to platform parameters + (jsc#PED-850). +- ASoC: SOF: Intel: hda: add sanity check on SSP index reported + by NHLT (jsc#PED-850). +- ASoC: amd: yc: Update DMI table entries (jsc#PED-850). +- ASoC: SOF: dai-intel: add SOF_DAI_INTEL_SSP_CLKCTRL_MCLK/BCLK_ES + bits (jsc#PED-850). +- commit a3024d1 + +- Update config files: update for AMD ACP (jsc#PED-850) +- commit a6ab389 + +- ASoC: Intel: avs: Use lookup table to create modules + (jsc#PED-850). +- ASoC: amd: vangogh: Use non-legacy DAI naming for cs35l41 + (jsc#PED-850). +- ASoC: amd: enable RPL Platform acp drivers build (jsc#PED-850). +- ASoC: amd: add RPL Platform pci driver pm-ops (jsc#PED-850). +- ASoC: amd: add RPL Platform init/de-init functions + (jsc#PED-850). +- ASoC: amd: add ACP PCI driver for RPL platform (jsc#PED-850). +- ASoC: amd: add RPL Platform acp header file (jsc#PED-850). +- ASoC: amd: acp: Add error handling cases (jsc#PED-850). +- ASoC: amd: acp: Modify const resource struct variable to generic + (jsc#PED-850). +- ASoC: amd: acp: Drop superfluous mmap callback (jsc#PED-850). +- ASoC: amd: acp: Modify local variables name to generic + (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: test DMA buffer first in hw_params + (jsc#PED-850). +- ASoC: SOF: probes: rename assign/free callbacks as + startup/shutdown (jsc#PED-850). +- ASoC: SOF: Intel: hda: only fixup topology name if not set + already (jsc#PED-850). +- ASoC: SOF: Intel: hda: don't set fw_filename (jsc#PED-850). +- ASoC: SOF: Intel: atom: don't keep a temporary string in + fixup_tplg_name (jsc#PED-850). +- ASoC: SOF: ipc3-loader: Print out the non matching ext_man + magic number (jsc#PED-850). +- ASoC: SOF: ipc4-topology: set domain bit based on dp domain type + (jsc#PED-850). +- ASoC: SOF: add ipc4 SRC module support (jsc#PED-850). +- ASoC: SOF: ipc4-pcm: set pcm rate to dai setting (jsc#PED-850). +- ASoC: SOF: ipc4-topology: move ida allocate/free to + widget_setup/free (jsc#PED-850). +- ASoC: SOF: Intel: MTL: remove redundant snd_sof_dsp_read() + call (jsc#PED-850). +- ASoC: SOF: mediatek: fix mt8195 StatvectorSel wrong setting + (jsc#PED-850). +- ASoC: SOF: mediatek: Revise mt8195 boot flow (jsc#PED-850). +- ASoC: amd: yc: Decrease level of error message (jsc#PED-850). +- ASoC: SOF: Intel: enable dmic handling with 2 or fewer SoundWire + links (jsc#PED-850). +- ASoC: Intel: sof_sdw: add quirk for HP Omen 16-k0005TX + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add table for HP Omen 16-k0005TX + (jsc#PED-850). +- ASoC: Intel: sof_sdw: avoid oops in error handling + (jsc#PED-850). +- ASoC: Intel: bdw_rt5677: Mark BE DAI as nonatomic (jsc#PED-850). +- ASoC: Intel: bdw_rt5650: Mark BE DAI as nonatomic (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Mark BE DAI as nonatomic (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Mark BE DAI as nonatomic (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: fix copy in + sof_msg_inject_ipc4_dfs_write() (jsc#PED-850). +- ASoC: SOF: Intel: add trigger callback into sdw_callback + (jsc#PED-850). +- soundwire: Intel: add trigger callback (jsc#PED-850). +- ASoC: amd: fix Jadeite kconfig warning and build errors + (jsc#PED-850). +- ASoC: amd: Fix error pointer dereference (jsc#PED-850). +- ASoC: SOF: Intel: hda: Correct the ROM/FW state reporting code + (jsc#PED-850). +- uapi: sof: abi: Bump SOF ABI for ext_data_length (jsc#PED-850). +- ASoC: SOF: compress: Prevent current kernel running with older + FW (jsc#PED-850). +- ASoC: SOF: Copy compress parameters into extended data + (jsc#PED-850). +- ASoC: SOF: compress: Dynamically allocate pcm params struct + (jsc#PED-850). +- ASoC: SOF: Intel: mtl: Do not process IPC reply before firmware + boot (jsc#PED-850). +- ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before + firmware boot (jsc#PED-850). +- ASoC: SOF: Intel: cnl: Do not process IPC reply before firmware + boot (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: Do snd_hdac_ext_stream_decouple() + only once (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: Drop misleading comment regarding + dma_data (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Prevent double freeing of + ipc_control_data via load_bytes (jsc#PED-850). +- ASoC: SOF: sof-client-probes: Only load the driver if IPC3 is + used (jsc#PED-850). +- ASoC: SOF: Intel: hda: Introduce skip_imr_boot flag + (jsc#PED-850). +- ASoC: SOF: topology: remove unused variable (jsc#PED-850). +- ASoC: Intel: avs: Update AVS_FW_INIT_TIMEOUT_US declaration + (jsc#PED-850). +- ASoC: Intel: avs: Lower UNLOAD_MULTIPLE_MODULES IPC timeout + (jsc#PED-850). +- ASoC: Intel: avs: Replace hardcodes with SD_CTL_STREAM_RESET + (jsc#PED-850). +- ASoC: Intel: avs: Recognize FW_CFG_RESERVED (jsc#PED-850). +- ASoC: Intel: avs: Use helper function to set up DMA + (jsc#PED-850). +- ASoC: Intel: avs: Set max DMA segment size (jsc#PED-850). +- ASoC: Intel: avs: Block IPC channel on suspend (jsc#PED-850). +- ASoC: Intel: avs: Shield LARGE_CONFIG_GETs against zero + payload_size (jsc#PED-850). +- commit aa38bc3 + +- Update config files: update for AMD MCP (jsc#PED-850) +- commit 4e8f3fb + +- ASoC: Intel: avs: Copy only as many RX bytes as necessary + (jsc#PED-850). +- ASoC: Intel: avs: Relax DSP core transition timings + (jsc#PED-850). +- ASoC: Intel: avs: Assign I2S gateway when parsing topology + (jsc#PED-850). +- ASoC: Intel: avs: Register HDAudio ext-bus operations + (jsc#PED-850). +- ASoC: amd: acp: Add legacy audio driver support for Rembrandt + platform (jsc#PED-850). +- ASoC: amd: acp: ACP code generic to support newer platforms + (jsc#PED-850). +- ASoC: amd: acp: Remove rt1019_1 codec conf from machine driver + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: free memories allocated in + sof_ipc4_get_audio_fmt (jsc#PED-850). +- ASoC: SOF: ipc4-topology: check dai->private in ipc_free() + (jsc#PED-850). +- ASoC: SOF: remove warning on ABI checks (jsc#PED-850). +- commit 22832f9 + +- Update config files: update for AMD MCP (jsc#PED-850) +- commit aca4025 + +- ASoC: Intel: sof_cs42l42: add adl_mx98360a_cs4242 board config + (jsc#PED-850). +- ASoC: Intel: sof_cs42l42: support BT offload audio + (jsc#PED-850). +- ASoC: amd: Remove duplicated include in acp-es8336.c + (jsc#PED-850). +- ASoC: amd: fix for variable set but not used warning + (jsc#PED-850). +- ASoC: amd: drop machine driver remove function (jsc#PED-850). +- ASoC: amd: remove unused header file inclusion (jsc#PED-850). +- ASoC: amd: acp-es8336: use static variables (jsc#PED-850). +- ASoC: amd: fix ACPI dependency compile errors and warnings + (jsc#PED-850). +- ASoC: Intel: avs: Fix i2s_test card name initialization + (jsc#PED-850). +- ASoC: amd: enable machine driver build for Jadeite platform + (jsc#PED-850). +- ASoC: amd: add Machine driver for Jadeite platform + (jsc#PED-850). +- ASoC: amd: add I2S MICSP instance support (jsc#PED-850). +- ASoC: SOF: Intel: byt: remove duplicating driver data retrieval + (jsc#PED-850). +- ASoC: SOF: Intel: bdw: remove duplicating driver data retrieval + (jsc#PED-850). +- ASoC: Intel: catpt: remove duplicating driver data retrieval + (jsc#PED-850). +- ASoC: Intel: avs: correct config reference for I2S test board + (jsc#PED-850). +- ASoC: Intel: avs: Remove now redundant non_legacy_dai_naming + flag (jsc#PED-850). +- ASoC: sof: Migrate to new style legacy DAI naming flag + (jsc#PED-850). +- ASoC: amd: Migrate to new style legacy DAI naming flag + (jsc#PED-850). +- ASoC: Intel: Migrate to new style legacy DAI naming flag + (jsc#PED-850). +- commit f8a95a0 + +- soundwire: intel: Migrate to new style legacy DAI naming flag + (jsc#PED-850). +- ASoC: soc-component: Add legacy_dai_naming flag (jsc#PED-850). +- ASoC: Intel: skylake: skl-pcm: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: Intel: catpt: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Remove FE DAI ops (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Improve codec_init() quality + (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Improve hw_params() debug-ability + (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Improve probe() function quality + (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Update file comments (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Update code indentation (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Reword driver name (jsc#PED-850). +- ASoC: Intel: bdw_rt286: Reword prefixes of all driver members + (jsc#PED-850). +- ASoC: Intel: Rename broadwell source file to bdw_rt286 + (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Improve hw_params() debug-ability + (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Improve probe() function quality + (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Update file comments (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Update code indentation (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Reword driver name (jsc#PED-850). +- ASoC: Intel: hsw_rt5640: Reword prefixes of all driver members + (jsc#PED-850). +- ASoC: Intel: Rename haswell source file to hsw_rt5640 + (jsc#PED-850). +- ASoC: SOF: mediatek: Align mt8186 clock names with dt-bindings + (jsc#PED-850). +- ASoC: amd: acp: Fix error handling in .remove() (jsc#PED-850). +- ASoC: SOF: pcm: use pm_resume_and_get() on component probe + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: remap jack pins (jsc#PED-850). +- ASoC: Intel: sof_nau8825: remap jack pins (jsc#PED-850). +- ASoC: Intel: sof_da7219_max98373: remap jack pins (jsc#PED-850). +- ASoC: Intel: sof_cs42l42: remap jack pins (jsc#PED-850). +- ASoC: Intel: cml_rt1011_rt5682: remap jack pins (jsc#PED-850). +- ASoC: Intel: glk_rt5682_max98357a: remap jack pins + (jsc#PED-850). +- ASoC: Intel: bxt_da7219_max98357a: remap jack pins + (jsc#PED-850). +- ASoC: Intel: kbl_rt5663_rt5514_max98927: remap jack pins + (jsc#PED-850). +- ASoC: Intel: kbl_da7219_max98927: remap jack pins (jsc#PED-850). +- ASoC: Intel: kbl_da7219_max98357a: remap jack pins + (jsc#PED-850). +- ASoC: Intel: kbl_rt5663_max98927: remap jack pins (jsc#PED-850). +- ASoC: Intel: skl_nau88l25_ssm4567: remap jack pins + (jsc#PED-850). +- ASoC: Intel: skl_nau88l25_max98357a: remap jack pins + (jsc#PED-850). +- commit cd8bc63 + +- ASoC: codecs: rt715-sdca: remove useless assignment of ops + (jsc#PED-850). +- commit e71653e + +- ASoC: soc-card: Create jack kcontrol without pins (jsc#PED-850). +- Refresh + patches.suse/ASoC-Intel-sof_rt5682-fix-out-of-bounds-array-access.patch. +- Refresh + patches.suse/ASoC-amd-acp-Add-support-for-nau8825-and-max98360-ca.patch. +- commit 796e1db + +- ASoC: Intel: boards: sof_sdw: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: Intel: boards: hda: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc4: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: sof-client: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc4-topology remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc3-topology: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc3-loader: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: Intel: mtl: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: remove use of __func__ in dev_dbg + (jsc#PED-850). +- commit eb5209d + +- Update config files: Intel SOF updates (jsc#PED-850) +- commit 8eabe5a + +- ASoC: SOF: Intel: hda-dai: remove use of __func__ in dev_dbg + (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: report error on stream not opened + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dsp: report error on power-up/down + (jsc#PED-850). +- ASoC: SOF: Intel: IPC4: enable IMR boot (jsc#PED-850). +- ASoC: Intel: Skylake: remove redundant re-assignments to + pointer array (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Fix error code in + sof_ipc4_volume_put() (jsc#PED-850). +- ASoC: SOF: Intel: Add support for MeteorLake (MTL) + (jsc#PED-850). +- ASoC: SOC: Intel: introduce cl_init callback (jsc#PED-850). +- ASoC: SOF: ipc4-topology: add SoundWire/ALH aggregation support + (jsc#PED-850). +- ASoC: SOF: Compile and runtime IPC version selection + (jsc#PED-850). +- ASoC: SOF: topology: add code to parse config params for + ACPDMIC dai (jsc#PED-850). +- ASoC: SOF: reduce default verbosity of IPC logs (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: enhance debug messages (jsc#PED-850). +- ASoC: intel: sof_sdw: add RT711 SDCA card for MTL platform + (jsc#PED-850). +- ASoC: SOF: IPC4: add sdw blob (jsc#PED-850). +- AsoC: SOF: ipc4-topology: Add dai_get_clk op (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for SSP/DMIC DAI's + (jsc#PED-850). +- ASoC: SOF: Add a new IPC op for parsing topology manifest + (jsc#PED-850). +- ASoC: SOF: Add two new structures for topology manifest data + (jsc#PED-850). +- ASoC: SOF: Intel: hda: init NHLT for IPC4 (jsc#PED-850). +- ASoC: SOF: Add ops_free (jsc#PED-850). +- ASoC: SOF: IPC4: set the BE DAI ops (jsc#PED-850). +- ASoC: SOF: ipc4-pcm: Expose sof_ipc4_set_pipeline_state() + (jsc#PED-850). +- commit 164020c + +- ASoC: SOF: ipc4-topology: Add the dai_config op (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add route_setup/route_free ops + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add widget_setup/widget_free ops + (jsc#PED-850). +- ASoC: SOF: IPC4: Add pcm ops (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add control IO ops (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add control_setup op (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for parsing mixer widgets + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for parsing and preparing + pga widgets (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add prepare op for DAI type widgets + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add prepare op for AIF type widgets + (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for parsing DAI_IN/DAI_OUT + widgets (jsc#PED-850). +- ASoC: SOF: ipc4-topology: Add support for parsing AIF_IN/AIF_OUT + widgets (jsc#PED-850). +- ASoC: SOF: IPC4: Introduce topology ops (jsc#PED-850). +- ASoC: SOF: Add topology tokens for IPC4 (jsc#PED-850). +- ASoC: SOF: ipc4: implement pm ctx_save callback (jsc#PED-850). +- ASoC: SOF: Intel: Switch to use the generic + pm_ops.set_core_state (jsc#PED-850). +- ASoC: SOF: ipc4: Add set_core_state pm_ops implementation + (jsc#PED-850). +- ASoC: SOF: ipc3: Add set_core_state pm_ops implementation + (jsc#PED-850). +- ASoC: SOF: sof_ipc_pm_ops: Add support for DSP core power + management (jsc#PED-850). +- ASoC: SOF: make ctx_store and ctx_restore as optional + (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Return from dtrace_read if there is + no new data available (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Add helper function to update the + sdev->host_offset (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Introduce SOF_DTRACE_INITIALIZING state + (jsc#PED-850). +- ASoC: codecs: rt298: Reorganize jack detect handling + (jsc#PED-850). +- ASoC: codecs: rt286: Reorganize jack detect handling + (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: SOF: debug: Clarify the IPC timeout handling path + (jsc#PED-850). +- ASoC: Intel: Rename set_fmt_new back to set_fmt (jsc#PED-850). +- ASoC: amd: vangogh: Rename set_fmt_new back to set_fmt + (jsc#PED-850). +- ASoC: Intel: Update to use set_fmt_new callback (jsc#PED-850). +- commit f503879 + +- ASoC: amd: vangogh: Update to use set_fmt_new callback + (jsc#PED-850). +- ASoC: core: Add set_fmt_new callback that directly specifies + provider (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195 suspend check dsp idle + (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195 modify dram type as non-cache + (jsc#PED-850). +- ASoC: SOF: mediatek: Add shared_size for mediatek common chip + information (jsc#PED-850). +- ASoC: SOF: mediatek: revise mt8195 clock sequence (jsc#PED-850). +- ASoC: SOF: amd: Add SOF pm ops callback for Renoir + (jsc#PED-850). +- ASoC: Intel: broadwell: Make broadwell_disable_jack() return + void (jsc#PED-850). +- ASoC: amd: acp: Add support for rt5682s and rt1019 card with + hs instance (jsc#PED-850). +- ASoC: amd: acp: Add support for nau8825 and max98360 card + (jsc#PED-850). +- ASoC: Intel: sof_pcm512x: remove unnecessary init (jsc#PED-850). +- ASoC: Intel: boards: reset acpi_chan_package (jsc#PED-850). +- ASoC: Intel: atom: controls: remove useless initializations + (jsc#PED-850). +- ASoC: Intel: atom: sst_ipc: remove useless initializations + (jsc#PED-850). +- ASoC: Intel: atom: sst_ipc: remove redundant test (jsc#PED-850). +- ASoC: Intel: atom: sst: remove useless initialization + (jsc#PED-850). +- ASoC: Intel: avs: Add da7219 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add max98373 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add max98357a machine board (jsc#PED-850). +- ASoC: Intel: avs: Add ssm4567 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add nau8825 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add rt5682 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add rt298 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add rt286 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add rt274 machine board (jsc#PED-850). +- ASoC: Intel: avs: Add I2S-test machine board (jsc#PED-850). +- ASoC: Intel: avs: Add DMIC machine board (jsc#PED-850). +- ASoC: Intel: avs: Add HDAudio machine board (jsc#PED-850). +- ASoC: Intel: sof_sdw: allow HDaudio/HDMI disable (jsc#PED-850). +- ASoC: Intel: boards: rename RTL1019 compatible driver to rt1019p + (jsc#PED-850). +- ASoC: SOF: Intel: add MeteorLake machines (jsc#PED-850). +- commit b5fa9c4 + +- ASoC: amd: acp: fix typo in comment (jsc#PED-850). +- soundwire: qcom: Enable software clock gating requirement flag + (jsc#PED-850). +- soundwire: qcom: Add flag for software clock gating check + (jsc#PED-850). +- soundwire: qcom: Add support for controlling audio CGCR from + HLOS (jsc#PED-850). +- soundwire: intel: use pm_runtime_resume() on component probe + (jsc#PED-850). +- soundwire: peripheral: remove useless ops pointer (jsc#PED-850). +- soundwire: revisit driver bind/unbind and callbacks + (jsc#PED-850). +- commit cf9d935 + +- ASoC: Intel: sof_rt5682: fix out-of-bounds array access + (jsc#PED-850). +- ASoC: SOF: Intel: disable IMR boot when resuming from ACPI S4 + and S5 states (jsc#PED-850). +- ASoC: SOF: pm: add definitions for S4 and S5 states + (jsc#PED-850). +- ASoC: SOF: pm: add explicit behavior for ACPI S1 and S2 + (jsc#PED-850). +- ASoC: SOF: Intel: hda: Fix compressed stream position tracking + (jsc#PED-850). +- ASoC: SOF: mediatek: Fix error code in probe (jsc#PED-850). +- ASoC: Intel: avs: Fix parsing UUIDs in topology (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Move and correct size checks in + sof_ipc3_control_load_bytes() (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: Make sure that the fw load + sequence is followed (jsc#PED-850). +- ASoC: SOF: Intel: hda-dsp: Expose hda_dsp_core_power_up() + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Fix reversed if statement + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Propagate write errors correctly + (jsc#PED-850). +- ASoC: SOF: Fix potential NULL pointer dereference (jsc#PED-850). +- ASoC: Intel: cirrus-common: fix incorrect channel mapping + (jsc#PED-850). +- soundwire: qcom: use pm_runtime_resume_and_get() (jsc#PED-850). +- soundwire: intel: use pm_runtime_resume_and_get() (jsc#PED-850). +- soundwire: cadence: use pm_runtime_resume_and_get() + (jsc#PED-850). +- soundwire: bus: use pm_runtime_resume_and_get() (jsc#PED-850). +- soundwire: qcom: return error when pm_runtime_get_sync fails + (jsc#PED-850). +- soundwire: bus: pm_runtime_request_resume on peripheral + attachment (jsc#PED-850). +- soundwire: intel: disable WAKEEN in pm_runtime resume + (jsc#PED-850). +- soundwire: cadence: recheck device0 attachment after status + change (jsc#PED-850). +- soundwire: qcom: Add compatible name for v1.6.0 (jsc#PED-850). +- soundwire: stream: Fix error return code in do_bank_switch() + (jsc#PED-850). +- soundwire: qcom: fix an error message in + swrm_wait_for_frame_gen_enabled() (jsc#PED-850). +- ASoC: Intel: avs: Fix build error on arc, m68k and sparc + (jsc#PED-850). +- ASoC: Intel: common: fix typo for tplg naming (jsc#PED-850). +- ASoC: rt5640: Do not manipulate pin "Platform Clock" if the + "Platform Clock" is not in the DAPM (jsc#PED-850). +- ASoC: SOF: amd: Fixed Build error (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Move dtrace related variables local + from sof_dev (jsc#PED-850). +- ASoC: SOF: Introduce opaque storage of private data for firmware + tracing (jsc#PED-850). +- ASoC: SOF: Modify the host trace_init parameter list to include + dmab (jsc#PED-850). +- ASoC: SOF: ipc3-dtrace: Move host ops wrappers from generic + header to private (jsc#PED-850). +- ASoC: SOF: Switch to IPC generic firmware tracing (jsc#PED-850). +- ASoC: SOF: Clone the trace code to ipc3-dtrace as fw_tracing + implementation (jsc#PED-850). +- ASoC: SOF: Rename dtrace_is_supported flag to + fw_trace_is_supported (jsc#PED-850). +- ASoC: SOF: Introduce IPC independent ops for firmware tracing + support (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8195 debug dump (jsc#PED-850). +- ASoC: SOF: mediatek: Add mediatek common debug dump + (jsc#PED-850). +- ASoC: amd: acp: Set Speaker enable/disable pin through rt1019 + codec driver (jsc#PED-850). +- ASoC: SOF: sof-client-ipc-flood-test: use + pm_runtime_resume_and_get() (jsc#PED-850). +- commit 477ca2d + +- ASoC: SOF: mediatek: remove duplicate include in mt8195.c + (jsc#PED-850). +- ASoC: Intel: avs: APL-based platforms support (jsc#PED-850). +- ASoC: Intel: avs: SKL-based platforms support (jsc#PED-850). +- ASoC: Intel: avs: Power management (jsc#PED-850). +- ASoC: Intel: avs: PCI driver implementation (jsc#PED-850). +- ASoC: Intel: avs: Machine board registration (jsc#PED-850). +- ASoC: Intel: avs: Replace link_mask usage with i2s_link_mask + (jsc#PED-850). +- ASoC: Intel: avs: Event tracing (jsc#PED-850). +- ASoC: Intel: avs: D0ix power state support (jsc#PED-850). +- ASoC: Intel: avs: Prepare for firmware tracing (jsc#PED-850). +- ASoC: Intel: avs: Coredump and recovery flow (jsc#PED-850). +- ASoC: Intel: avs: HDA PCM BE operations (jsc#PED-850). +- ASoC: Intel: avs: non-HDA PCM BE operations (jsc#PED-850). +- ASoC: Intel: avs: Generic PCM FE operations (jsc#PED-850). +- ASoC: Intel: avs: Generic soc component driver (jsc#PED-850). +- ASoC: Intel: avs: Account for libraries when booting basefw + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Cap the rmaining to count in IPC4 + mode (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8186 ipc support (jsc#PED-850). +- ASoC: SOF: mediatek: Add ipc support for mt8195 (jsc#PED-850). +- ASoC: amd: vangogh: Remove duplicate include files + (jsc#PED-850). +- ASoC: SOF: Intel: HDA: Set up sof_ipc4_fw_data for IPC4 + (jsc#PED-850). +- ASoC: SOF: IPC4: Add FW loader ops (jsc#PED-850). +- ASoC: SOF: Add header for IPC4 manifest (jsc#PED-850). +- ASoC: SOF: Add IPC4 private header (jsc#PED-850). +- ASoC: SOF: Intel: HDA: Set IPC4-specific DSP ops for CaVS + platforms (jsc#PED-850). +- ASoC: SOF: amd: add missing platform_device_unregister in + acp_pci_rn_probe (jsc#PED-850). +- ASoC: Intel: sof_ssp_amp: enable capture stream from cs35l41 + (jsc#PED-850). +- ASoC: Intel: sof_ssp_amp: fix no DMIC BE Link on Chromebooks + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Add support for adl_rt1019_rt5682s + (jsc#PED-850). +- ASoC: SOF: ipc: introduce cont_update_posn in + sof_ipc_stream_params struct (jsc#PED-850). +- ASoC: SOF: sof-client: IPC flood test can only work with SOF_IPC + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Add support for IPC4 messages + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Separate the message sending + (jsc#PED-850). +- ASoC: SOF: sof-client: Add support IPC4 message sending + (jsc#PED-850). +- ASoC: SOF: sof-client: Add API to get the ipc_type + (jsc#PED-850). +- ASoC: SOF: sof-client-probes: Query the maximum IPC payload size + (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Query the maximum IPC payload size + (jsc#PED-850). +- ASoC: SOF: sof-client: Add API to get the maximum IPC payload + size (jsc#PED-850). +- ASoC: SOF: trace: The dtrace is only available with SOF_IPC + (jsc#PED-850). +- ASoC: SOF: ipc4: Add support for mandatory message handling + functionality (jsc#PED-850). +- ASoC: SOF: Add initial header file for ipc4 (jsc#PED-850). +- ASoC: SOF: Add rx_data pointer to snd_sof_ipc_msg struct + (jsc#PED-850). +- ASoC: SOF: ipc3: Remove the ipc3-ops.h header file + (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Correct get_control_data for non + bytes payload (jsc#PED-850). +- ASoC: SOF: Add a prepare op to IPC topology widget ops + (jsc#PED-850). +- ASoC: SOF: clarify use of widget complete flag (jsc#PED-850). +- ASoC: SOF: topology: Skip parsing DAI link tokens if not needed + (jsc#PED-850). +- ASoC: SOF: pcm: remove unnecessary function declaration + (jsc#PED-850). +- ASoC: SOF: Add two new fields to struct snd_sof_widget + (jsc#PED-850). +- ASoC: SOF: Add a route_free op in struct sof_ipc_tplg_ops + (jsc#PED-850). +- ASoC: SOF: bump SOF_ABI_MINOR (jsc#PED-850). +- commit a12ea22 + +- ASoC: SOF: expose a couple of functions (jsc#PED-850). +- ASoC: SOF: pcm: Move the call to + snd_sof_pcm_platform_hw_params() (jsc#PED-850). +- ASoC: SOF: sof-audio: Set up widgets from source to sink + (jsc#PED-850). +- ASoC: SOF: sof-audio: reset route status before freeing widget + (jsc#PED-850). +- ASoC: SOF: Add a new op to set up volume table (jsc#PED-850). +- ASoC: SOF: loader: Call optional query_fw_configuration on + first boot (jsc#PED-850). +- ASoC: SOF: loader: Remove snd_sof_parse_module_memcpy() as it + is not used (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195: Do not set the load_module ops + (jsc#PED-850). +- ASoC: SOF: Intel: bdw/byt/pci-tng: Do not set the load_module + ops (jsc#PED-850). +- ASoC: SOF: imx: Do not set the load_module ops (jsc#PED-850). +- ASoC: SOF: amd: renoir: Do not set the load_module ops + (jsc#PED-850). +- ASoC: SOF: loader: Switch to use the fw_loader ops + (jsc#PED-850). +- ASoC: SOF: ipc: Add check for fw_loader ops (jsc#PED-850). +- ASoC: SOF: ipc3-loader: Implement firmware parsing and loading + (jsc#PED-850). +- ASoC: SOF: Introduce IPC dependent ops for firmware handling, + loading (jsc#PED-850). +- ASoC: SOF: sof-pci-dev: fix missing pci_release_regions() + on error in sof_pci_probe() (jsc#PED-850). +- ASoC: SOF: sof-client-ipc-msg-injector: use + pm_runtime_resume_and_get() (jsc#PED-850). +- ASoC: SOF: debug: use pm_runtime_resume_and_get() (jsc#PED-850). +- ASoC: SOF: control: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: SOF: mediatek: Fix allyesconfig build error (jsc#PED-850). +- ASoC: Intel: avs: Drop direct ACPI dependency (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195 change ipc timeout as 1 second + (jsc#PED-850). +- ASoC: SOF: Intel: Do not (wrongly) assume positive return + value in IMR path (jsc#PED-850). +- ASoC: Intel: atom: use pm_runtime_resume_and_get() + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: protect hw_params against successive + calls (jsc#PED-850). +- ASoC: SOF: Intel: add helper for link DMA cleanups + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: reset dma_data and release stream + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: improve suspend case (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: move code to deal with hda + dai/dailink suspend (jsc#PED-850). +- ASOC: SOF: Intel: hda-dai: add hda_dai_hw_free_ipc() helper + (jsc#PED-850). +- ASoC: SOF: sof-audio: flag errors on pipeline teardown + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: regroup dai and link DMA operations + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: split link DMA and dai operations + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: use snd_soc_dai_get_widget() helper + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: simplify hda_dai_widget_update() + prototype (jsc#PED-850). +- ASOC: SOF: Intel: hda-dai: consistent naming for HDA DAI and + HDA link DMA (jsc#PED-850). +- ASoC: SOF: Intel: Add IPC-specific dai ops for IPC3 + (jsc#PED-850). +- ASoC: SOF: remove incorrect clearing of prepared flag + (jsc#PED-850). +- ASoC: SOF: loader: Remove the old fw_ready related code + (jsc#PED-850). +- ASoC: SOF: Intel: Do not set fw_ready callback (jsc#PED-850). +- ASoC: SOF: imx: Do not set fw_ready callback (jsc#PED-850). +- ASoC: SOF: amd: Do not set fw_ready callback (jsc#PED-850). +- ASoC: SOF: Do not check for the fw_ready callback (jsc#PED-850). +- ASoC: SOF: ipc3: Add local implementation for handling fw_ready + message (jsc#PED-850). +- ASoC: SOF: mediatek: Add DSP system PM callback for mt8186 + (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8186 dsp clock support (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8186 sof fw loader and dsp ops + (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8186 hardware support (jsc#PED-850). +- ASoC: Intel: avs: Depend on SND_INTEL_DSP_CONFIG (jsc#PED-850). +- ASoC: Intel: avs: Enable AVS driver only on x86 platforms + (jsc#PED-850). +- commit f4a81b7 + +- ASoC: SOF: sof-pci-dev: don't use the community key on APL + Chromebooks (jsc#PED-850). +- Refresh + patches.suse/ASoC-SOF-pci-Change-DMI-match-info-to-support-all-Ch.patch. +- commit a625481 + +- ASoC: SOF: Intel: hda: Revisit IMR boot sequence (jsc#PED-850). +- Refresh + patches.suse/ASoC-SOF-Intel-hda-loader-Clarify-the-cl_dsp_init-fl.patch. +- commit cbf86ae + +- ASOC: SOF: pci: add ipc_type override for Intel IPC4 tests + (jsc#PED-850). +- ASoC: SOF: Intel: hda: simplify NHLT handling (jsc#PED-850). +- ASoC: SOF: topology: Check w->sname validity once in + sof_connect_dai_widget() (jsc#PED-850). +- ASoC: SOF: sof-audio: remove useless assignment (jsc#PED-850). +- ASoC: SOF: amd: Use dedicated MBOX for ACP and PSP communication + (jsc#PED-850). +- ASoC: SOF: amd: Add psp_mbox_ready() and psp_send_cmd() callback + (jsc#PED-850). +- ASoC: Intel: sof_ssp_amp: remove 'set-but-not-used' warning + (jsc#PED-850). +- ASoC: SOF: using pm_runtime_resume_and_get to simplify the code + (jsc#PED-850). +- ASoC: amd: acp: Add pm ops callback in machine driver + (jsc#PED-850). +- ASoC: SOF: Intel: add IP identifier (jsc#PED-850). +- ASoC: SOF: Intel: hda: expose some codeloader functions + (jsc#PED-850). +- ASoC: SOF: Intel: hda: Define rom_status_reg in + sof_intel_dsp_desc (jsc#PED-850). +- ASoC: SOF: Intel: hda: define check_ipc_irq op (jsc#PED-850). +- ASoC: SOF: Intel: hda: use BIT() macros for consistency + (jsc#PED-850). +- ASoC: SOF: Intel: move HDA_CL_STREAM_FORMAT definition to header + (jsc#PED-850). +- ASoC: SOF: Intel: hda: use common ops across platforms + (jsc#PED-850). +- ASoC: SOF: remove const qualifier for 'struct snd_sof_dsp_ops' + (jsc#PED-850). +- ASoC: SOF: sof-audio: preserve topology filename override in + nocodec mode (jsc#PED-850). +- ASoC: SOF: sof-pci-dev: add parameter to override topology + filename (jsc#PED-850). +- ASoC: SOF: sof-pci-dev: add parameter to override firmware + filename (jsc#PED-850). +- ASoC: SOF: add IPC-dependent file names (jsc#PED-850). +- ASoC: SOF: add default IPC capability and file paths + (jsc#PED-850). +- ASoC: SOF: add path indirection to each IPC type (jsc#PED-850). +- ASoC: SOF: add definitions for different IPC types + (jsc#PED-850). +- ASoC: Intel: avs: Configure modules according to their type + (jsc#PED-850). +- ASoC: Intel: avs: Prepare modules before bindings them + (jsc#PED-850). +- ASoC: Intel: avs: Arm paths after creating them (jsc#PED-850). +- ASoC: Intel: avs: Path state management (jsc#PED-850). +- ASoC: Intel: avs: Path creation and freeing (jsc#PED-850). +- ASoC: Intel: avs: Declare path and its components (jsc#PED-850). +- ASoC: Intel: avs: Support link_mask formatted string + (jsc#PED-850). +- ASoC: Intel: avs: Add topology loading operations (jsc#PED-850). +- ASoC: Intel: avs: Parse path and path templates tuples + (jsc#PED-850). +- ASoC: Intel: avs: Parse pipeline and module tuples + (jsc#PED-850). +- ASoC: Intel: avs: Parse pplcfg and binding tuples (jsc#PED-850). +- ASoC: Intel: avs: Parse module-extension tuples (jsc#PED-850). +- ASoC: Intel: avs: Add topology parsing infrastructure + (jsc#PED-850). +- ASoC: SOF: Kconfig: Make SND_SOC_SOF_HDA_PROBES tristate + (jsc#PED-850). +- commit e038201 + +- ASoC: SOF: Intel: Check the bar size before remapping + (jsc#PED-850). +- ASoC: SOF: ipc: Move the ipc_set_get_comp_data() local to + ipc3-control (jsc#PED-850). +- ASoC: SOF: sof-audio: Use the widget_kcontrol_setup ops for + kcontrol set up (jsc#PED-850). +- ASoC: SOF: Add widget_kcontrol_setup control ops for IPC3 + (jsc#PED-850). +- ASoC: SOF: ipc: Switch over to use the rx_msg ops (jsc#PED-850). +- ASoC: SOF: ipc: Switch over to use the tx_msg and set_get_data + ops (jsc#PED-850). +- ASoC: SOF: ipc: Use the get_reply ops in snd_sof_ipc_get_reply() + (jsc#PED-850). +- ASoC: SOF: ipc: Add check for mandatory IPC message handling + ops (jsc#PED-850). +- ASoC: SOF: ipc: Separate the ops checks by functions/topics + (jsc#PED-850). +- ASoC: SOF: ipc3: Implement rx_msg IPC ops (jsc#PED-850). +- ASoC: SOF: ipc3: Implement the get_reply IPC ops (jsc#PED-850). +- ASoC: SOF: ipc3: Implement the set_get_data IPC ops + (jsc#PED-850). +- ASoC: SOF: ipc3: Use sof_ipc3_tx_msg() internally for message + sending (jsc#PED-850). +- ASoC: SOF: ipc3: Implement the tx_msg IPC ops (jsc#PED-850). +- ASoC: SOF: Add high level IPC IO callback definitions to ipc_ops + (jsc#PED-850). +- ASoC: SOF: Add helper function to prepare and send an IPC + message (jsc#PED-850). +- ASoC: amd: Add support for enabling DMIC on acp6x via _DSD + (jsc#PED-850). +- ASoC: amd: Add driver data to acp6x machine driver + (jsc#PED-850). +- ASoC: amd: yc: add new YC platform varaint support + (jsc#PED-850). +- ASoC: SOF: mediatek: mt8195 add shutdown callback (jsc#PED-850). +- ASoC: SOF: OF: Add shutdown callback for SOF OF device + (jsc#PED-850). +- ASoC: SOF: topology: Avoid open coded arithmetic in memory + allocation (jsc#PED-850). +- ASoC: Intel: boards: Use temporary variable for struct device + (jsc#PED-850). +- ASoC: SOF: Remove redundant return statements (jsc#PED-850). +- ASoC: SOF: Remove header from struct snd_sof_ipc_msg + (jsc#PED-850). +- ASoC: SOF: Drop 'header' parameter from tx_message() API + (jsc#PED-850). +- ASoC: SOF: ipc: Use msg->reply_data directly in + snd_sof_ipc_get_reply() (jsc#PED-850). +- ASoC: SOF: disable dma trace in s0ix (jsc#PED-850). +- ASoC: SOF: extend the interface to stop DMA trace (jsc#PED-850). +- ASoC: SOF: Drop support for mapped control data (jsc#PED-850). +- ASoC: SOF: ipc: Use ipc->max_payload_size for message/reply + size checking (jsc#PED-850). +- ASoC: SOF: ipc: Add max_payload_size field in struct snd_sof_ipc + (jsc#PED-850). +- ASoC: SOF: Remove dmab and dmab_bdl from snd_sof_dev struct + (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: Use local snd_dma_buffer + (jsc#PED-850). +- ASoC: Intel: catpt: Drop redundant enum constant (jsc#PED-850). +- ASoC: SOF: ipc3-topology: Set scontrol->priv to NULL after + freeing it (jsc#PED-850). +- ASoC: intel: atom: Remove superfluous flush_scheduled_work() + (jsc#PED-850). +- ASoC: SOF: topology: use new sound control LED layer + (jsc#PED-850). +- commit 96cf6fb + +- ASoC: Intel: sof_es8336: Add a quirk for Huawei Matebook D15 + (jsc#PED-850). +- ASoC: Intel: sof_es8336: add a quirk for headset at mic1 port + (jsc#PED-850). +- ASoC: Intel: sof_es8336: support a separate gpio to control + headphone (jsc#PED-850). +- ASoC: Intel: sof_es8336: simplify speaker gpio naming + (jsc#PED-850). +- ASoC: SOF: topology: Fix memory leak in sof_control_load() + (jsc#PED-850). +- ASoC: SOF: topology: cleanup dailinks on widget unload + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Add support for max98360a speaker + amp on SSP2 (jsc#PED-850). +- ASoC: SOF: topology: Fix memory leak of scontrol->name + (jsc#PED-850). +- soundwire: qcom: use __maybe_unused for swrm_runtime_resume() + (jsc#PED-850). +- soundwire: qcom: constify static struct qcom_swrm_data global + variables (jsc#PED-850). +- soundwire: qcom: add in-band wake up interrupt support + (jsc#PED-850). +- soundwire: qcom: add runtime pm support (jsc#PED-850). +- soundwire: stream: make enable/disable/deprepare idempotent + (jsc#PED-850). +- soundwire: stream: sdw_stream_add_ functions can be called + multiple times (jsc#PED-850). +- soundwire: stream: introduce sdw_slave_rt_find() helper + (jsc#PED-850). +- soundwire: stream: separate alloc and config within + sdw_stream_add_xxx() (jsc#PED-850). +- soundwire: stream: move list addition to sdw_slave_alloc_rt() + (jsc#PED-850). +- soundwire: stream: rename and move master/slave_rt_free routines + (jsc#PED-850). +- soundwire: stream: group sdw_stream_ functions (jsc#PED-850). +- soundwire: stream: split sdw_alloc_slave_rt() in alloc and + config (jsc#PED-850). +- soundwire: stream: move sdw_alloc_slave_rt() before 'master' + helpers (jsc#PED-850). +- soundwire: stream: split sdw_alloc_master_rt() in alloc and + config (jsc#PED-850). +- soundwire: stream: simplify sdw_alloc_master_rt() (jsc#PED-850). +- soundwire: stream: group sdw_port and sdw_master/slave_port + functions (jsc#PED-850). +- soundwire: stream: add 'slave' prefix for port range checks + (jsc#PED-850). +- soundwire: stream: split alloc and config in two functions + (jsc#PED-850). +- soundwire: stream: split port allocation and configuration loops + (jsc#PED-850). +- soundwire: stream: add alloc/config/free helpers for ports + (jsc#PED-850). +- soundwire: stream: simplify check on port range (jsc#PED-850). +- soundwire: stream: add slave runtime to list earlier + (jsc#PED-850). +- soundwire: stream: remove unused parameter in + sdw_stream_add_slave (jsc#PED-850). +- soundwire: Replace acpi_bus_get_device() (jsc#PED-850). +- soundwire: bus: add dev_warn() messages to track UNATTACHED + devices (jsc#PED-850). +- ASoC: SOF: Add a new dai_get_clk topology IPC op (jsc#PED-850). +- ASoC: SOF: topology: Add ops for setting up and tearing down + pipelines (jsc#PED-850). +- ASoC: SOF: expose sof_route_setup() (jsc#PED-850). +- commit 82a7627 + +- ASoC: SOF: Add dai_link_fixup PCM op for IPC3 (jsc#PED-850). +- ASoC: SOF: Add trigger PCM op for IPC3 (jsc#PED-850). +- ASoC: SOF: Define hw_params PCM op for IPC3 (jsc#PED-850). +- ASoC: SOF: Introduce IPC3 PCM hw_free op (jsc#PED-850). +- ASoC: SOF: pcm: expose the sof_pcm_setup_connected_widgets() + function (jsc#PED-850). +- ASoC: SOF: Introduce IPC-specific PCM ops (jsc#PED-850). +- ASoC: SOF: Add bytes_ext control IPC ops for IPC3 (jsc#PED-850). +- ASoC: SOF: Add bytes_get/put control IPC ops for IPC3 + (jsc#PED-850). +- ASoC: SOF: Add enum_get/put control ops for IPC3 (jsc#PED-850). +- ASoC: SOF: Add switch get/put IPC3 ops (jsc#PED-850). +- ASoC: SOF: Add volume_get/put IPC3 ops (jsc#PED-850). +- ASoC: SOF: Add IPC3 topology control ops (jsc#PED-850). +- ASoC: SOF: Introduce IPC ops for kcontrol IO (jsc#PED-850). +- ASoC: SOF: Make sof_suspend/resume IPC agnostic (jsc#PED-850). +- ASoC: SOF: Make sof_widget_setup/free IPC agnostic + (jsc#PED-850). +- ASoC: SOF: set up scheduler widget before all other widgets + in the pipeline (jsc#PED-850). +- ASoC: SOF: topology: Use kmemdup() to replace kzalloc + memcpy + (jsc#PED-850). +- ASoC: SOF: topology: remove snd_sof_complete_pipeline() + (jsc#PED-850). +- ASoC: SOF: topology: Make widget binding IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make control parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make DAI widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make route setup IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make effect widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make siggen widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make asrc widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make src widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make mux/demux widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make mixer widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make pga widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make buffer widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: topology: Make scheduler widget parsing IPC agnostic + (jsc#PED-850). +- ASoC: SOF: Introduce IPC3 ops (jsc#PED-850). +- ASoC: SOF: topology: Add helper function for processing tuple + arrays (jsc#PED-850). +- ASoC: SOF: IPC: Introduce IPC ops (jsc#PED-850). +- ASoC: SOF: Introduce struct snd_sof_dai_link (jsc#PED-850). +- ASoC: SOF: Remove ipc_pcm_params() ops (jsc#PED-850). +- ASoC: SOF: imx: Convert to use the generic + set_stream_data_offset ops (jsc#PED-850). +- ASoC: SOF: Intel: Convert to use the generic + set_stream_data_offset ops (jsc#PED-850). +- ASoC: SOF: Intel: hda-ipc: Add hda_set_stream_data_offset() + (jsc#PED-850). +- ASoC: SOF: stream-ipc: Add sof_set_stream_data_offset() + (jsc#PED-850). +- ASoC: SOF: Mark snd_sof_dsp_ops.ipc_pcm_params() callback + optional (jsc#PED-850). +- ASoC: SOF: Introduce optional callback to configure stream + data offset (jsc#PED-850). +- ASoC: SOF: pcm: Remove sof_pcm_dsp_params() wrapper + (jsc#PED-850). +- ASoC: SOF: Make pcm_hw_params snd_sof_dsp_ops callback IPC + neutral (jsc#PED-850). +- ASoC: SOF: sof-priv: Remove stale + snd_sof_ipc_stream_pcm_params() declaration (jsc#PED-850). +- ASoC: Intel: soc-acpi: Add entry for rt711-sdca-sdw in ADL + match table (jsc#PED-850). +- ASoC: SOF: Intel: add topology overwrite for Taniks + (jsc#PED-850). +- ASoC: SOF: trace: Use proper DMA direction for the trace data + buffer (jsc#PED-850). +- ASoC: SOF: compress: fix null check after dereference + (jsc#PED-850). +- ASoC: Intel: avs: Code loading over HDA (jsc#PED-850). +- commit 951b46c + +- Update config files: keep AVS config off (jsc#PED-850) +- commit 3fd2397 + +- ASoC: Intel: avs: Code loading over CLDMA (jsc#PED-850). +- ASoC: Intel: avs: Implement CLDMA transfer (jsc#PED-850). +- ASoC: Intel: avs: General code loading flow (jsc#PED-850). +- ASoC: Intel: avs: Dynamic firmware resources management + (jsc#PED-850). +- ASoC: Intel: avs: Declare module configuration types + (jsc#PED-850). +- ASoC: Intel: avs: Firmware resources management utilities + (jsc#PED-850). +- ASoC: Intel: avs: Add basefw runtime-parameter requests + (jsc#PED-850). +- ASoC: Intel: avs: Add ROM requests (jsc#PED-850). +- ASoC: Intel: avs: Add power management requests (jsc#PED-850). +- ASoC: Intel: avs: Add module management requests (jsc#PED-850). +- ASoC: Intel: avs: Add pipeline management requests + (jsc#PED-850). +- ASoC: Intel: avs: Add code loading requests (jsc#PED-850). +- ASoC: Intel: avs: Inter process communication (jsc#PED-850). +- ASoC: Intel: Introduce AVS driver (jsc#PED-850). +- ASoC: SOF: move definition of snd_sof_ipc to header file + (jsc#PED-850). +- ASoC: SOF: make struct snd_sof_dai IPC agnostic (jsc#PED-850). +- ASoC: SOF: topology: Rename arguments in sof_parse_tokens() + (jsc#PED-850). +- ASoC: SOF: topology: Rename arguments in sof_parse_token_sets() + (jsc#PED-850). +- ASoC: SOF: topology: Modify signature for token parsing + functions (jsc#PED-850). +- ASoC: SOF: Add a tuples array to struct snd_sof_widget + (jsc#PED-850). +- ASoC: SOF: topology: make sof_route_load() IPC agnostic + (jsc#PED-850). +- ASoC: SOF: make struct snd_sof_widget IPC agnostic + (jsc#PED-850). +- ASoC: Intel: bytcht_es8316: move comment to the right place + (jsc#PED-850). +- ASoC: Intel: sof_es8336: add cfg-dmics component for UCM support + (jsc#PED-850). +- ASoC: Intel: sof_es8336: extend machine driver to support + ES8326 codec (jsc#PED-850). +- ASoC: Intel: sof_es8336: add support for JD inverted quirk + (jsc#PED-850). +- ASoC: Intel: sof_es8336: move comment to the right place + (jsc#PED-850). +- ASoC: Intel: sof_es8336: log all quirks (jsc#PED-850). +- ASoC: Intel: sof_es8336: use NHLT information to set dmic and + SSP (jsc#PED-850). +- ASoC: Intel: Revert "ASoC: Intel: sof_es8336: add quirk for + Huawei D15 2021" (jsc#PED-850). +- commit 7695000 + +- ASoC: Intel: sof_es8336: get codec device with ACPI instead + of bus search (jsc#PED-850). +- ASoC: Intel: sof_es8336: make gpio optional (jsc#PED-850). +- ASoC: Intel: soc-acpi: add ESSX8336 support on Cannon Lake + machines (jsc#PED-850). +- ASoC: Intel: soc-acpi: add more ACPI HIDs for ES83x6 devices + (jsc#PED-850). +- ASoC: Intel: soc-acpi: quirk topology filename dynamically + (jsc#PED-850). +- ASoC: SOF: Intel: hda: report SSP link mask to machine driver + (jsc#PED-850). +- ALSA: intel-nhlt: add helper to detect SSP link mask + (jsc#PED-850). +- ASoC: SOF: Intel: hda: retrieve DMIC number for I2S boards + (jsc#PED-850). +- ASoC: soc-acpi: add information on I2S/TDM link mask + (jsc#PED-850). +- ASoC: soc-acpi: fix kernel-doc descriptor (jsc#PED-850). +- ASoC: SOF: ipc-msg-injector: Use devm_kzalloc() for the + rx_buffer (jsc#PED-850). +- ASoC: SOF: amd: Remove unneeded semicolon (jsc#PED-850). +- commit 83f31ef + +- Update config files: another Intel/AMD ASoC updates (jsc#PED-850) +- commit dd56303 + +- ASoC: Intel: boards: fix randconfig issue (jsc#PED-850). +- ASoC: SOF: change comp_dai to a pointer in struct snd_sof_dai + (jsc#PED-850). +- ASoC: SOF: topology: expose some get_token ops (jsc#PED-850). +- ASoC: SOF: topology: Modify the get_token op for string tokens + (jsc#PED-850). +- ASoC: SOF: topology: Drop the size parameter from struct + sof_topology_token (jsc#PED-850). +- ASoC: SOF: topology: remove redundant code in + sof_link_afe_load() (jsc#PED-850). +- ASoC: SOF: sof-audio: removed unused function (jsc#PED-850). +- ASoC: SOF: set swidget's core for scheduler widget + (jsc#PED-850). +- ASoC: SOF: simplify snd_sof_device_remove() (jsc#PED-850). +- ASoC: SOF: remove snd_sof_pipeline_find() (jsc#PED-850). +- ASoC: amd: acp3x: Fix signedness bug in acp3x (jsc#PED-850). +- ASoC: amd: acp5x-pcm-dma: Fix signedness bug (jsc#PED-850). +- ASoC: Intel: catpt: use asoc_substream_to_rtd() (jsc#PED-850). +- ASoC: SOF: Intel: hda: clarify operator precedence + (jsc#PED-850). +- ASoC: SOF: debug: clarify operator precedence (jsc#PED-850). +- ASoC: SOF: fix 32 signed bit overflow (jsc#PED-850). +- ASoC: SOF: amd: Increase ACP_HW_SEM_RETRY_COUNT value + (jsc#PED-850). +- ASoC: SOF: amd: Move group register configuration to acp-loader + (jsc#PED-850). +- ASoC: SOF: amd: Use semaphore register to synchronize ipc's irq + (jsc#PED-850). +- ASoC: SOF: amd: Flush cache after ATU_BASE_ADDR_GRP register + update (jsc#PED-850). +- ASoC: SOF: amd: Do not set ipc_pcm_params ops as it is optional + (jsc#PED-850). +- ASoC: SOF: amd: acp-pcm: Take buffer information directly from + runtime (jsc#PED-850). +- ASoC: Intel: boards: add GPIOLIB dependency where missed + (jsc#PED-850). +- ASoC: Intel: boards: remove explicit dependency on GPIOLIB + when DMIC is used" (jsc#PED-850). +- ASoC: amd: vg: fix signedness bug in acp5x_audio_probe() + (jsc#PED-850). +- ASoC: amd: pcm-dma: Fix signedness bug in acp3x_audio_probe() + (jsc#PED-850). +- ASoC: amd: pcm-dma: Fix signedness bug in acp_pdm_audio_probe() + (jsc#PED-850). +- ASoC: amd: acp: Fix signedness bug in renoir_audio_probe() + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add entries in ADL match table + (jsc#PED-850). +- ASoC: Intel: sof_ssp_amp: rename driver and support cs35l41 + amplifier (jsc#PED-850). +- commit ef4d791 + +- Update config files: Intel SOF updates (jsc#PED-850) +- commit 40ca354 + +- ASoC: Intel: cirrus-common: support cs35l41 amplifier + (jsc#PED-850). +- ASoC: Intel: sof_rt1308: move rt1308 code to common module + (jsc#PED-850). +- ASoC: Intel: boards: create sof-realtek-common module + (jsc#PED-850). +- ASoC: Intel: add RT1308 I2S machine driver and HDMI-in capture + via I2S support (jsc#PED-850). +- ASoC: Intel: boards: fix spelling in comments (jsc#PED-850). +- ASoC: soc-acpi: remove sof_fw_filename (jsc#PED-850). +- ASoC: amd: use asoc_substream_to_rtd() (jsc#PED-850). +- ASoC: amd: vangogh: fix uninitialized symbol warning in machine + driver (jsc#PED-850). +- ASoC: amd: vg: remove warnings and errors pointed out by + checkpatch pl (jsc#PED-850). +- ASoC: amd: vg: update DAI link name (jsc#PED-850). +- ASoC: amd: pcm-dma: Use platform_get_irq() to get the interrupt + (jsc#PED-850). +- ASoC: acp: check the return value of devm_kzalloc() in + acp_legacy_dai_links_create() (jsc#PED-850). +- ASoC: SOF: sof-priv: Drop duplicate sof_compressed_ops + declaration (jsc#PED-850). +- ASoC: amd: Use platform_get_irq_byname() to get the interrupt + (jsc#PED-850). +- ASoC: SOF: Declare sof_compress_ops in sof-priv.h (jsc#PED-850). +- ASoC: amd: acp: Add DMIC machine driver ops (jsc#PED-850). +- ASoC: amd: acp-legacy: Add legacy card support for new machines + (jsc#PED-850). +- ASoC: amd: acp: Change card name for Guybrush Machine + (jsc#PED-850). +- ASoC: SOF: pcm: Add compress_ops for SOF platform component + driver (jsc#PED-850). +- ASoC: SOF: Intel: Add topology overwrite for Felwinter + (jsc#PED-850). +- ASoC: Intel: sof_es8336: add quirk for Huawei D15 2021 + (jsc#PED-850). +- ASoC: SOF: Replace zero-length array with flexible-array member + (jsc#PED-850). +- ASoC: SOF: core: unregister clients and machine drivers in + .shutdown (jsc#PED-850). +- ASoC: SOF: Makefile: Fix randconfig sof-client build when + SND_SOC_SOF=y (jsc#PED-850). +- ASoC: SOF: compr: Mark snd_compress_ops static (jsc#PED-850). +- ASoC: Intel: bytcr_wm5102: use GFP_KERNEL (jsc#PED-850). +- ASoC: SOF: Convert the generic probe support to SOF client + (jsc#PED-850). +- ASoC: SOF: Convert the generic IPC message injector into SOF + client (jsc#PED-850). +- ASoC: SOF: Convert the generic IPC flood test into SOF client + (jsc#PED-850). +- ASoC: SOF: sof-client: Add support for clients not managed by + pm framework (jsc#PED-850). +- commit 1703e8b + +- Update config files: AMD ACP configs (jsc#PED-850) +- commit d87a85e + +- ASoC: SOF: Introduce IPC SOF client support (jsc#PED-850). +- ASoC: SOF: Split up utils.c into sof-utils and iomem-utils + (jsc#PED-850). +- ASoC: SOF: ipc: Read and pass the whole message to handlers + for IPC events (jsc#PED-850). +- ASoC: SOF: Move the definition of enum sof_dsp_power_states + to global header (jsc#PED-850). +- ASoC: SOF: Drop unused DSP power states: D3_HOT and D3_COLD + (jsc#PED-850). +- ASoC: SOF: Intel: hdac_ext_stream: consistent prefixes for + variables/members (jsc#PED-850). +- ASoC: SOF: dma-trace: Pass pointer to params_ext struct in + trace_init() (jsc#PED-850). +- ASoC: SOF: intel: hda-trace: Pass the dma buffer pointer to + hda_dsp_trace_prepare (jsc#PED-850). +- ASoC: SOF: compr: Add compress ops implementation (jsc#PED-850). +- ASoC: amd: renoir: Add check for acp configuration flags + (jsc#PED-850). +- ASoC: amd: acp: acp-legacy: Add DMIC dai link support for Renoir + (jsc#PED-850). +- ASoC: amd: acp: Add ACP init()/deinit() callback for Renoir + (jsc#PED-850). +- ASoC: amd: acp: Add generic PCI driver module for ACP device + (jsc#PED-850). +- ASoC: amd: acp: Add PDM controller based dmic dai for Renoir + (jsc#PED-850). +- ASoC: amd: acp: Add generic support for PDM controller on ACP + (jsc#PED-850). +- ASoC: SOF: ipc: Do not allocate buffer for msg_data + (jsc#PED-850). +- ASoC: SOF: ipc: Drop header parameter from + sof_ipc_tx_message_unlocked() (jsc#PED-850). +- ASoC: SOF: Intel: cnl: Use pm_gate->hdr.cmd in + cnl_compact_ipc_compress() (jsc#PED-850). +- ASoC: SOF: trace: Simplify count adjustment in trace_read + (jsc#PED-850). +- ASoC: SOF: Intel: hda: Remove link assignment limitation + (jsc#PED-850). +- commit 5f8f1de + +- ASoC: Intel: sof_rt5682: Add support for platform without + amplifier (jsc#PED-850). +- ASoC: Intel: sof_rt5682: add support for systems without i915 + audio (jsc#PED-850). +- ASoC: SOF: Intel: Compare sdw adr directly (jsc#PED-850). +- ASoC: SOF: add flag to disable IMR restore to sof_debug + (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: add IMR restore support + (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: add SSP helper (jsc#PED-850). +- ASoC: SOF: Intel: use inclusive language for SSP clocks + (jsc#PED-850). +- ASoC: SOF: add _D3_PERSISTENT flag to fw_ready message + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: add 512FS MCLK clock configuration + (jsc#PED-850). +- ASoC: amd: sof-mach: Add support for RT5682S and RT1019 card + (jsc#PED-850). +- ASoC: Intel: soc-acpi-byt: Add new WM5102 ACPI HID + (jsc#PED-850). +- ASoC: amd: vg: update acp init and deinit sequence + (jsc#PED-850). +- ASoC: amd: vg: apply sample bits pcm constraint (jsc#PED-850). +- ASoC: amd: vg: update platform clock control sequence + (jsc#PED-850). +- ASoC: amd: vangogh: refactor i2s master mode clock sequence code + (jsc#PED-850). +- ASoC: amd: acp: Set gpio_spkr_en to None for max speaker + amplifer in machine driver (jsc#PED-850). +- ASoC: amd: acp-mach: Fix Left and Right rt1019 amp devices + (jsc#PED-850). +- ASoC: amd: acp: acp-mach: Change default RT1019 amp dev id + (jsc#PED-850). +- ASoC: amd: acp: Power on/off the speaker enable gpio pin based + on DAPM callback (jsc#PED-850). +- ASoC: amd: acp: Remove duplicate dependency in Kconfig + (jsc#PED-850). +- commit 75e005d + +- ASoC: amd: acp-config: Update sof_tplg_filename for SOF machines + (jsc#PED-850). +- ASoC: amd: acp-config: Enable SOF audio for Google chrome boards + (jsc#PED-850). +- ASoC: AMD: fix depend/select mistake on SND_AMD_ACP_CONFIG + (jsc#PED-850). +- ASoC: amd: Convert to new style DAI format definitions + (jsc#PED-850). +- ASoC: AMD: acp-config: fix missing dependency on SND_SOC_ACPI + (jsc#PED-850). +- ASoC: amd: acp6x-pdm-dma: Constify static snd_soc_dai_ops + (jsc#PED-850). +- ASoC: amd: Fix dependency for SPI master (jsc#PED-850). +- ASoC: amd: acp-pcm-dma: add .delay support (jsc#PED-850). +- ASoC: amd: acp-config: Remove legacy acpi based machine struct + (jsc#PED-850). +- commit 17b7741 + +- soundwire: qcom: remove redundant version number read + (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Add support for external GPIO + jack-detect (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Support retrieving the codec IRQ + from the AMCR0F28 ACPI dev (jsc#PED-850). +- commit 3629d01 + +- ASoC: rt5640: Add support for boards with an external + jack-detect GPIO (jsc#PED-850). +- ASoC: rt5640: Allow snd_soc_component_set_jack() to override + the codec IRQ (jsc#PED-850). +- ASoC: rt5640: Change jack_work to a delayed_work (jsc#PED-850). +- ASoC: rt5640: Fix possible NULL pointer deref on resume + (jsc#PED-850). +- ASoC: rt5640: Fix the wrong state of the JD in the HDA header + (jsc#PED-850). +- ASoC: rt5640: Add the HDA header support (jsc#PED-850). +- ASoC: rt5640: Add the binding include file for the HDA header + support (jsc#PED-850). +- ASoC: codecs: Fix spelling mistake "Unsupport" -> "Unsupported" + (jsc#PED-850). +- commit 5e31cbb + +- soundwire: intel: remove PDM support (jsc#PED-850). +- soundwire: intel: remove unnecessary init (jsc#PED-850). +- ASoC: Intel/SOF: use set_stream() instead of set_tdm_slots() + for HDAudio (jsc#PED-850). +- ASoC/SoundWire: dai: expand 'stream' concept beyond SoundWire + (jsc#PED-850). +- soundwire: intel: improve suspend flows (jsc#PED-850). +- ASoC/soundwire: intel: simplify callbacks for params/hw_free + (jsc#PED-850). +- ASOC: SOF: Intel: use snd_soc_dai_get_widget() (jsc#PED-850). +- ASoC: SOF: Intel: hda: Use DEBUG log level for optional prints + (jsc#PED-850). +- ASoC: SOF: debug: Use DEBUG log level for optional prints + (jsc#PED-850). +- ASoC: SOF: Add clarifying comments for sof_core_debug and DSP + dump flags (jsc#PED-850). +- ASoC: SOF: Rename snd_sof_get_status() and add kernel log + level parameter (jsc#PED-850). +- ASoC: SOF: dsp_arch_ops: add kernel log level parameter for + oops and stack (jsc#PED-850). +- ASoC: SOF: ops: Always print DSP Panic message but use different + message (jsc#PED-850). +- ASoc: SOF: core: Update the FW boot state transition diagram + (jsc#PED-850). +- ASoC: SOF: pm: Force DSP off on suspend in BOOT_FAILED state + also (jsc#PED-850). +- ASoC: SOF: Set SOF_FW_BOOT_FAILED in case we have failure + during boot (jsc#PED-850). +- ASoC: SOF: ipc: Only allow sending of an IPC in + SOF_FW_BOOT_COMPLETE state (jsc#PED-850). +- ASoC: SOF: Rename 'enum snd_sof_fw_state' to 'enum sof_fw_state' + (jsc#PED-850). +- ASoC: SOF: Move the definition of enum snd_sof_fw_state to + global header (jsc#PED-850). +- ASoC: SOF: Introduce new firmware state: SOF_FW_BOOT_READY_OK + (jsc#PED-850). +- ASoC: SOF: Introduce new firmware state: SOF_FW_CRASHED + (jsc#PED-850). +- ASoC: SOF: Add a 'message' parameter to snd_sof_dsp_dbg_dump() + (jsc#PED-850). +- ASoC: SOF: Add 'non_recoverable' parameter to + snd_sof_dsp_panic() (jsc#PED-850). +- ASoC: SOF: Use sof_debug_check_flag() instead of sof_core_debug + directly (jsc#PED-850). +- ASoC: SOF: core: Add simple wrapper to check flags in + sof_core_debug (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: Avoid re-defining the + HDA_FW_BOOT_ATTEMPTS (jsc#PED-850). +- ASoC: SOF: ops: Use dev_warn() if the panic offsets differ + (jsc#PED-850). +- ASoC: SOF: AMD: simplify return status handling (jsc#PED-850). +- ASoC: Intel: catpt: Streamline locals declaration for + PCM-functions (jsc#PED-850). +- ASoC: Intel: catpt: Reduce size of catpt_component_open() + (jsc#PED-850). +- ipc: debug: Add shared memory heap to memory scan (jsc#PED-850). +- ASoC: SOF: ipc: Add null pointer check for substream->runtime + (jsc#PED-850). +- ASoC: SOF: avoid casting "const" attribute away (jsc#PED-850). +- ASoC: SOF: Intel: hda: remove support for RESUME in platform + trigger (jsc#PED-850). +- ASoC: SOF: Intel: hda: remove support for RESUME trigger + (jsc#PED-850). +- ASoC: SOF: pcm: remove support for RESUME trigger (jsc#PED-850). +- commit 3f0d25e + +- ASoC: SOF: Kconfig: Make the SOF_DEVELOPER_SUPPORT depend on + SND_SOC_SOF (jsc#PED-850). +- ASoC: SOF: topology: read back control data from DSP + (jsc#PED-850). +- ASoC: SOF: Drop ctrl_type parameter for + snd_sof_ipc_set_get_comp_data() (jsc#PED-850). +- ASoC: SOF: control: Do not handle control notification with + component type (jsc#PED-850). +- ASoC: SOF: sof-audio: Drop the `cmd` member from struct + snd_sof_control (jsc#PED-850). +- ASoC: SOF: Drop ctrl_cmd parameter for + snd_sof_ipc_set_get_comp_data() (jsc#PED-850). +- ASoC: SOF: topology: Set control_data->cmd alongside + scontrol->cmd (jsc#PED-850). +- ASoC: SOF: Drop ipc_cmd parameter for + snd_sof_ipc_set_get_comp_data() (jsc#PED-850). +- ASoC: SOF: ipc: Rename send parameter in + snd_sof_ipc_set_get_comp_data() (jsc#PED-850). +- ASoC: SOF: OF: Avoid reverse module dependency (jsc#PED-850). +- ASoC: SOF: sof-probes: Constify sof_probe_compr_ops + (jsc#PED-850). +- ASoC: SOF: Remove pm_runtime_put_autosuspend() for SOF OF device + (jsc#PED-850). +- ASoC: SOF: Intel: add comment on JasperLake support + (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: remove unused fields (jsc#PED-850). +- ASoC: SOF: Intel: hda: add quirks for HDAudio DMA position + information (jsc#PED-850). +- ASoC: SOF: hda-stream: only enable DPIB if needed (jsc#PED-850). +- ASoC: SOF: Intel: hda-ctrl: apply symmetry for DPIB + (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: limit PROCEN workaround + (jsc#PED-850). +- ASoC: SOF: Intel: ICL: move ICL-specific ops to icl.c + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Move rt1015 speaker amp to common file + (jsc#PED-850). +- commit 1dca21d + +- ASoC: Intel: boards: add 'static' qualifiers for max98390 routes + (jsc#PED-850). +- ASoC: SOF: Intel: fix build issue related to CODEC_PROBE_ENTRIES + (jsc#PED-850). +- ASoC: Intel: boards: add max98390 2/4 speakers support + (jsc#PED-850). +- ASoC: intel: boards: bytcht*: Constify static snd_soc_ops + (jsc#PED-850). +- ASoC: Intel: hda_dsp_common: don't multiline PCM topology + warning (jsc#PED-850). +- ASoC: intel: sst-mfld-platform-pcm: add .delay support + (jsc#PED-850). +- ASoC: soc-component: add snd_soc_pcm_component_delay() + (jsc#PED-850). +- ASoC: soc-dai: update snd_soc_dai_delay() to + snd_soc_pcm_dai_delay() (jsc#PED-850). +- ASoC: SOF: Intel: hda: send DAI_CONFIG IPC during pause + (jsc#PED-850). +- ASoC: SOF: IPC: dai: Expand DAI_CONFIG IPC flags (jsc#PED-850). +- ASoC: SOF: align the hw_free sequence with stop (jsc#PED-850). +- ASoC: SOF: pcm: move the check for prepared flag (jsc#PED-850). +- ASoC: SOF: Add a helper for freeing PCM stream (jsc#PED-850). +- ASoC: SOF: call platform hw_free for paused streams during + suspend (jsc#PED-850). +- ASoC: SOF: pcm: invoke platform hw_free for STOP/SUSPEND + triggers (jsc#PED-850). +- ASoC: SOF: Intel: hda: reset stream before coupling host and + link DMA's (jsc#PED-850). +- ASoC: SOF: Intel: hda: Add a helper function for stream reset + (jsc#PED-850). +- ASoC: SOF: Intel: hda: clear stream before freeing the DAI + widget (jsc#PED-850). +- ASoC: SOF: mediatek: Use %pR/%pa to print resources/physical + addresses (jsc#PED-850). +- ASoC: SOF: mediatek: Add missing of_node_put() in + platform_parse_resource() (jsc#PED-850). +- ASoC: SOF: Intel: add .ack support for HDaudio platforms + (jsc#PED-850). +- ASoC: SOF: pcm: add .ack callback support (jsc#PED-850). +- ALSA: pcm: introduce INFO_NO_REWINDS flag (jsc#PED-850). +- ALSA: pcm: unconditionally check if appl_ptr is in 0..boundary + range (jsc#PED-850). +- ASoC: soc-component: add snd_soc_component_is_codec() + (jsc#PED-850). +- commit 157062a + +- ASoC: SOF: handle paused streams during system suspend + (jsc#PED-850). +- ASoC: SOF: topology: don't use list_for_each_entry_reverse() + (jsc#PED-850). +- ASoC: SOF: sof-audio: setup sched widgets during pipeline + complete step (jsc#PED-850). +- ASoC: SOF: imx8m: Implement reset callback (jsc#PED-850). +- ASoC: SOF: imx8m: Implement DSP start (jsc#PED-850). +- ASoC: SOF: imx8m: Add runtime PM / System PM support + (jsc#PED-850). +- ASoC: SOF: imx8: Add runtime PM / System PM support + (jsc#PED-850). +- ASoC: SOF: imx: Add code to manage DSP related clocks + (jsc#PED-850). +- ASoC: SOF: Intel: hda: free DAI widget during stop and suspend + (jsc#PED-850). +- ASoC: SOF: add support for dynamic pipelines with multi-core + (jsc#PED-850). +- ASoC: SOF: hda: don't use the core op for power up/power down + (jsc#PED-850). +- ASoC: SOF: free widgets in sof_tear_down_pipelines() for static + pipelines (jsc#PED-850). +- ASoC: SOF: topology: remove sof_load_pipeline_ipc() + (jsc#PED-850). +- ASoC: SOF: Intel: CNL/ICL/APL: set core_get/core_put ops + (jsc#PED-850). +- ASoC: SOF: Intel: TGL: set core_get/put ops (jsc#PED-850). +- ASoC: SOF: Add ops for core_get and core_put (jsc#PED-850). +- ASoC: SOF: Introduce num_cores and ref count per core + (jsc#PED-850). +- ASoC: SOF: Intel: hda: expose get_chip_info() (jsc#PED-850). +- ASoC: SOF: sof-pci-dev: use community key on all Up boards + (jsc#PED-850). +- ASoC: SOF: mediatek: Add DSP system PM callback for mt8195 + (jsc#PED-850). +- commit 513c226 + +- ASoC: SOF: topology: Add support for Mediatek AFE DAI + (jsc#PED-850). +- Refresh + patches.suse/ASoC-SOF-topology-remove-redundant-code.patch. +- commit dd56536 + +- ASoC: SOF: mediatek: Add mt8195 dsp clock support (jsc#PED-850). +- ASoC: SOF: mediatek: Add dai driver dsp ops callback for mt8195 + (jsc#PED-850). +- ASoC: SOF: Add mt8195 device descriptor (jsc#PED-850). +- ASoC: SOF: mediatek: Add fw loader and mt8195 dsp ops to load + firmware (jsc#PED-850). +- ASoC: SOF: tokens: add token for Mediatek AFE (jsc#PED-850). +- ASoC: SOF: mediatek: Add mt8195 hardware support (jsc#PED-850). +- ASoC: SOF: amd: Add support for SOF firmware authentication + (jsc#PED-850). +- ASoC: SOF: amd: Add trace logger support (jsc#PED-850). +- ASoC: SOF: topology: Add support for AMD ACP DAIs (jsc#PED-850). +- ASoC: SOF: amd: Add Renoir PCI driver interface (jsc#PED-850). +- ASoC: amd: Add module to determine ACP configuration + (jsc#PED-850). +- commit 69a6968 + +- Update config files: update AMD ACP configs (jsc#PED-850) +- commit e5979cc + +- ASoC: amd: fix uninitialized variable in snd_acp6x_probe() + (jsc#PED-850). +- ASoC: amd: acp: select CONFIG_SND_SOC_ACPI (jsc#PED-850). +- ASoC: fix unmet dependencies on GPIOLIB for SND_SOC_DMIC + (jsc#PED-850). +- ASoC: amd: acp: fix Kconfig dependencies (jsc#PED-850). +- ASoC: nau8825: add clock management for power saving + (jsc#PED-850). +- ASoC: nau8825: add set_jack coponment support (jsc#PED-850). +- ASoC: nau8821: fix kernel-doc (jsc#PED-850). +- ASoC: amd: acp: Fix return value check in acp_machine_select() + (jsc#PED-850). +- ASoC: amd: acp: SND_SOC_AMD_ACP_COMMON should depend on X86 && + PCI (jsc#PED-850). +- ASoC: amd: acp: SND_SOC_AMD_{LEGACY_MACH,SOF_MACH} should + depend on X86 && PCI && I2C (jsc#PED-850). +- ASoC: amd: acp: Wrap AMD Audio ACP components in + SND_SOC_AMD_ACP_COMMON (jsc#PED-850). +- ASoC: amd: acp: Add acp_machine struct for renoir platform + (jsc#PED-850). +- ASoC: amd: acp: Add support for RT5682-VS codec (jsc#PED-850). +- ASoC: amd: acp: Add support for Maxim amplifier codec + (jsc#PED-850). +- ASoC: amd: acp: Add SOF audio support on Chrome board + (jsc#PED-850). +- ASoC: amd: acp: Add legacy sound card support for Chrome audio + (jsc#PED-850). +- ASoC: amd: acp: Add generic machine driver support for ACP cards + (jsc#PED-850). +- ASoC: amd: acp: Add callback for machine driver on ACP + (jsc#PED-850). +- ASoC: amd: acp: Add I2S support on Renoir platform + (jsc#PED-850). +- ASoC: amd: Add common framework to support I2S on ACP SOC + (jsc#PED-850). +- ASoC: amd: enable Yellow Carp platform machine driver build + (jsc#PED-850). +- ASoC: amd: add YC machine driver using dmic (jsc#PED-850). +- ASoC: amd: create platform device for acp6x machine driver + (jsc#PED-850). +- ASoC: amd: enable Yellow carp acp6x drivers build (jsc#PED-850). +- ASoC: amd: add acp6x pdm driver pm ops (jsc#PED-850). +- ASoC: amd: add acp6x pci driver pm ops (jsc#PED-850). +- ASoC: amd: add acp6x pdm driver dma ops (jsc#PED-850). +- ASoC: amd: add acp6x irq handler (jsc#PED-850). +- ASoC: amd: add acp6x pdm platform driver (jsc#PED-850). +- ASoC: amd: add platform devices for acp6x pdm driver and dmic + driver (jsc#PED-850). +- ASoC: amd: add acp6x init/de-init functions (jsc#PED-850). +- ASoC: amd: add Yellow Carp ACP PCI driver (jsc#PED-850). +- ASoC: amd: add Yellow Carp ACP6x IP register header + (jsc#PED-850). +- ASoC: amd: enable vangogh platform machine driver build + (jsc#PED-850). +- ASoC: amd: add vangogh machine driver (jsc#PED-850). +- ASoc: amd: create platform device for VG machine driver + (jsc#PED-850). +- ASoC: amd: vangogh: constify static struct snd_soc_dai_ops + (jsc#PED-850). +- ASoC: amd: Kconfig: Select fch clock support with machine driver + (jsc#PED-850). +- ASoC: amd: acp-rt5645: Constify static snd_soc_ops + (jsc#PED-850). +- ASoC: nau8824: Fix NAU8824_JACK_LOGIC define (jsc#PED-850). +- ASoC: nau8821: new driver (jsc#PED-850). +- ASoC: amd: acp: declare and add prefix to 'bt_uart_enable' + symbol (jsc#PED-850). +- commit 9624970 + +- Update config files: Drop unused SOF for arm, updates for NAU8825 and AMD (jsc#PED-850) +- commit 31abee1 + +- ASoC: SOF: amd: Add machine driver dsp ops for Renoir platform + (jsc#PED-850). +- ASoC: SOF: amd: Add PCM stream callback for Renoir dai's + (jsc#PED-850). +- ASoC: SOF: amd: Add dai driver dsp ops callback for Renoir + (jsc#PED-850). +- ASoC: SOF: amd: Add IPC support for ACP IP block (jsc#PED-850). +- ASoC: SOF: amd: Add fw loader and renoir dsp ops to load + firmware (jsc#PED-850). +- ASoC: SOF: amd: Add helper callbacks for ACP's DMA configuration + (jsc#PED-850). +- ASoC: SOF: amd: Add Renoir ACP HW support (jsc#PED-850). +- ASoC: SOF: debug: Add support for IPC message injection + (jsc#PED-850). +- ASoC: SOF: intel: Use the generic helper to get the reply + (jsc#PED-850). +- ASoC: SOF: imx: Use the generic helper to get the reply + (jsc#PED-850). +- commit a9ab47f + +- ALSA: Replace acpi_bus_get_device() (jsc#PED-850). +- ALSA: hda: intel-dsp-config: reorder the config table + (jsc#PED-850). +- ALSA: hda: intel-dsp-config: add JasperLake support + (jsc#PED-850). +- ASoC: SOF: utils: Add generic function to get the reply for + a tx message (jsc#PED-850). +- ASoC: SOF: i.MX: simplify Kconfig (jsc#PED-850). +- ASoC: SOF: core: Unregister machine driver before IPC and + debugfs (jsc#PED-850). +- ASoC: Intel: add sof-nau8825 machine driver (jsc#PED-850). +- ASoC: intel: sof_sdw: add link adr order check (jsc#PED-850). +- ASoC: intel: sof_sdw: remove get_next_be_id (jsc#PED-850). +- ASoC: intel: sof_sdw: remove sof_sdw_mic_codec_mockup_init + (jsc#PED-850). +- ASoC: intel: sof_sdw: remove SOF_RT715_DAI_ID_FIX quirk + (jsc#PED-850). +- ASoC: intel: sof_sdw: move DMIC link id overwrite to + create_sdw_dailink (jsc#PED-850). +- ASoC: intel: sof_sdw: Use a fixed DAI link id for AMP + (jsc#PED-850). +- ASoC: intel: sof_sdw: rename be_index/link_id to link_index + (jsc#PED-850). +- ASoC: Intel: sof_sdw: add SKU for Dell Latitude 9520 + (jsc#PED-850). +- ASoC: intel: sof_sdw: return the original error number + (jsc#PED-850). +- ASoC: SOF: trace: send DMA_TRACE_FREE IPC during release + (jsc#PED-850). +- ASoC: SOF: IPC: update ipc_log_header() (jsc#PED-850). +- ASoC: SOF: IPC: Add new IPC command to free trace DMA + (jsc#PED-850). +- ALSA/ASoC: hda: move/rename snd_hdac_ext_stop_streams to + hdac_stream.c (jsc#PED-850). +- ASoC: Intel: Skylake: Use NHLT API to search for blob + (jsc#PED-850). +- ALSA: hda: Simplify DMIC-in-NHLT check (jsc#PED-850). +- ALSA: hda: Fill gaps in NHLT endpoint-interface (jsc#PED-850). +- soundwire: intel: Use auxiliary_device driver data helpers + (jsc#PED-850). +- commit df611ff + +- ASoC: SOF: Intel: Retry codec probing if it fails (jsc#PED-850). +- ASoC: SOF: hda: reset DAI widget before reconfiguring it + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add entry for ESSX8336 on CML + (jsc#PED-850). +- ASoC: SOF: build compression interface into snd_sof.ko + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B12 product + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add SKU 0B29 SoundWire configuration + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B29 product + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add SKU 0B13 SoundWire configuration + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B13 product + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B11 product + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0B00 and 0B01 products + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add SKU 0AF3 SoundWire configuration + (jsc#PED-850). +- ASoC: Intel: sof_sdw: Add support for SKU 0AF3 product + (jsc#PED-850). +- ASoC: SOF:control: Fix variable type in + snd_sof_refresh_control() (jsc#PED-850). +- soundwire: qcom: add debugfs entry for soundwire register dump + (jsc#PED-850). +- ASoC: Intel: soc-acpi: use const for all uses of + snd_soc_acpi_codecs (jsc#PED-850). +- ASoC: Intel: soc-acpi-cht: shrink tables using compatible IDs + (jsc#PED-850). +- ASoC: Intel: soc-acpi-byt: shrink tables using compatible IDs + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: use comp_ids to enumerate rt5682s + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: detect codec variant in probe function + (jsc#PED-850). +- ASoC: soc-acpi: add comp_ids field for machine driver matching + (jsc#PED-850). +- ASoC: Intel: glk_rt5682_max98357a: support ALC5682I-VS codec + (jsc#PED-850). +- ASoC: Intel: soc-acpi: add entry for ESSX8336 on JSL + (jsc#PED-850). +- ASoC: fix unmet dependency on GPIOLIB for SND_SOC_MAX98357A + (jsc#PED-850). +- ASoC: Intel: bytcr_rt5651: Utilize dev_err_probe() to avoid + log saturation (jsc#PED-850). +- ASoC: Intel: bytcr_rt5651: use devm_clk_get_optional() for mclk + (jsc#PED-850). +- ASoC: Intel: bytcr_rt5651: Use temporary variable for struct + device (jsc#PED-850). +- ASoC: Intel: bytcr_rt5651: Get platform data via + dev_get_platdata() (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Utilize dev_err_probe() to avoid + log saturation (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: use devm_clk_get_optional() for mclk + (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Use temporary variable for struct + device (jsc#PED-850). +- ASoC: Intel: bytcr_rt5640: Get platform data via + dev_get_platdata() (jsc#PED-850). +- ASoC: SOF: prepare code to allocate IPC messages in fw_ready + (jsc#PED-850). +- ASoC: SOF: Introduce fragment elapsed notification API + (jsc#PED-850). +- commit a990efc + +- ASoC: SOF: imx: Use newly introduced generic IPC stream ops + (jsc#PED-850). +- ASoC: SOF: Make Intel IPC stream ops generic (jsc#PED-850). +- ASoC: SOF: Introduce snd_sof_mailbox_read / + snd_sof_mailbox_write callbacks (jsc#PED-850). +- ASoC: SOF: Intel: hda: Dump registers and stack when + SOF_DBG_DUMP_REGS is set (jsc#PED-850). +- ASoC: SOF: Intel: hda-loader: Drop SOF_DBG_DUMP_REGS flag from + dbg_dump calls (jsc#PED-850). +- ASoC: SOF: loader: Drop SOF_DBG_DUMP_REGS flag when firmware + start fails (jsc#PED-850). +- ASoC: SOF: core: Clean up snd_sof_get_status() prints + (jsc#PED-850). +- ASoC: SOF: intel: hda: Drop 'error' prefix from error dump + functions (jsc#PED-850). +- ASoC: SOF: Introduce macro to set the firmware state + (jsc#PED-850). +- ASoC: SOF: ops: Force DSP panic dumps to be printed + (jsc#PED-850). +- ASoC: SOF: ipc: Re-enable dumps after successful IPC tx + (jsc#PED-850). +- ASoC: SOF: debug: Print out the fw_state along with the DSP dump + (jsc#PED-850). +- ASoC: SOF: Drop SOF_DBG_DUMP_FORCE_ERR_LEVEL and + sof_dev_dbg_or_err (jsc#PED-850). +- ASoC: SOF: intel: hda-loader: Use snd_sof_dsp_dbg_dump() + for DSP dump (jsc#PED-850). +- ASoC: SOF: debug: Add SOF_DBG_DUMP_OPTIONAL flag for DSP dumping + (jsc#PED-850). +- ASoC: SOF: debug/ops: Move the IPC and DSP dump functions out + from the header (jsc#PED-850). +- ASoC: SOF: intel: atom: No need to do a DSP dump in atom_run() + (jsc#PED-850). +- ASoC: SOF: loader: Print the DSP dump if boot fails + (jsc#PED-850). +- ASoC: SOF: Print the dbg_dump and ipc_dump once to reduce + kernel log noise (jsc#PED-850). +- ASoC: SOF: ipc and dsp dump: Add markers for better visibility + (jsc#PED-850). +- commit 5397d18 + +- Update config files: enabled for SOF es8336 and rt5682s (jsc#PED-850) +- commit 9447c50 + +- ASoC: SOF: debug: Swap the dsp_dump and ipc_dump sequence for + fw_exception (jsc#PED-850). +- ASoC: SOF: core: debug: force all processing on primary core + (jsc#PED-850). +- ASoC: SOF: pipelines: Harmonize all functions to use struct + snd_sof_dev (jsc#PED-850). +- ASoC: Intel: add machine driver for SOF+ES8336 (jsc#PED-850). +- ASoC: Intel: soc-acpi: apl/glk/tgl: add entry for devices + based on ES8336 codec (jsc#PED-850). +- ASoC: SOF: Intel: hda-dai: improve SSP DAI handling for dynamic + pipelines (jsc#PED-850). +- ASoC: SOF: Intel: hda: add new flags for DAI_CONFIG + (jsc#PED-850). +- ASoC: SOF: dai: include new flags for DAI_CONFIG (jsc#PED-850). +- ASoC: SOF: dai: mirror group_id definition added in firmware + (jsc#PED-850). +- ASoC: SOF: topology: return error if sof_connect_dai_widget() + fails (jsc#PED-850). +- ASoC: SOF: topology: allow for dynamic pipelines override for + debug (jsc#PED-850). +- ASoC: SOF: topology: show clks_control value in dynamic debug + (jsc#PED-850). +- commit 9734d36 + +- ASoC: SOF: OF: Add fw_path and tplg_path parameters + (jsc#PED-850). +- ASoC: Intel: cht_bsw_nau8824: Set card.components string + (jsc#PED-850). +- ASoC: nau8824: Add a nau8824_components() helper (jsc#PED-850). +- ASoC: SOF: topology: Add kernel parameter for topology + verification (jsc#PED-850). +- ASoC: SOF: Add support for dynamic pipelines (jsc#PED-850). +- ASoC: SOF: Intel: hda: make sure DAI widget is set up before + IPC (jsc#PED-850). +- ASoC: SOF: Introduce widget use_count (jsc#PED-850). +- ASoC: SOF: Don't set up widgets during topology parsing + (jsc#PED-850). +- ASoC: SOF: restore kcontrols for widget during set up + (jsc#PED-850). +- ASoC: SOF: Add new fields to snd_sof_route (jsc#PED-850). +- AsoC: dapm: export a couple of functions (jsc#PED-850). +- ASoC: SOF: sof-audio: add helpers for widgets, kcontrols and + dai config set up (jsc#PED-850). +- ASoC: SOF: topology: Add new token for dynamic pipeline + (jsc#PED-850). +- ASoC: SOF: control: Add access field in struct snd_sof_control + (jsc#PED-850). +- ASoC: topology: change the complete op in snd_soc_tplg_ops to + return int (jsc#PED-850). +- ASoC: Intel: sof_rt5682: Add support for max98360a speaker amp + (jsc#PED-850). +- ASoC: SOF: Change SND_SOC_SOF_TOPLEVEL from config to menuconfig + (jsc#PED-850). +- ASoC: intel: sof_rt5682: update platform device name for Maxim + amplifier (jsc#PED-850). +- ASoC: SOF: ipc: Make the error prints consistent in + tx_wait_done() (jsc#PED-850). +- ASoC: SOF: prefix some terse and cryptic dev_dbg() with __func__ + (jsc#PED-850). +- ASoC: SOF: add error handling to snd_sof_ipc_msg_data() + (jsc#PED-850). +- ASoC: SOF: imx: add header file for ops (jsc#PED-850). +- ASoC: SOF: pm: fix a stale comment (jsc#PED-850). +- ASoC: SOF: Intel: hda-stream: Print stream name on + STREAM_SD_OFFSET timeout (jsc#PED-850). +- ASoC: Intel: boards: Update to modern clocking terminology + (jsc#PED-850). +- ASoC: SOF: Remove struct sof_ops_table and sof_get_ops() macro + (jsc#PED-850). +- ASoC: SOF: ipc: Print 0x prefix for errors in + ipc_trace/stream_message() (jsc#PED-850). +- ASoC: SOF: ipc: Clarify the parameter name for + ipc_trace_message() (jsc#PED-850). +- ASoC: SOF: Rename sof_arch_ops to dsp_arch_ops (jsc#PED-850). +- ASoC: SOF: ipc: Remove redundant error check from + sof_ipc_tx_message_unlocked (jsc#PED-850). +- ASoC: SOF: sof-probes: Correct the function names used for + snd_soc_cdai_ops (jsc#PED-850). +- ASoC: SOF: Intel: Rename hda-compress.c to hda-probes.c + (jsc#PED-850). +- commit 6acbd79 + +- ASoC: SOF: probe: Merge and clean up the probe and compress + files (jsc#PED-850). +- ASoC: SOF: compress: move and export sof_probe_compr_ops + (jsc#PED-850). +- ASoC: SOF: pcm: Remove non existent CONFIG_SND_SOC_SOF_COMPRESS + reference (jsc#PED-850). +- ASoC: SOF: ipc: Add probe message logging to ipc_log_header() + (jsc#PED-850). +- ASoC: SOF: imx8m: add SAI1 info (jsc#PED-850). +- ASoC: SOF: core: Move probe work related code under a single if + () branch (jsc#PED-850). +- ASoC: SOF: debug: No need to export the + snd_sof_debugfs_io_item() (jsc#PED-850). +- ASoC: SOF: loader: Use the generic ops for region debugfs + handling (jsc#PED-850). +- ASoC: SOF: Intel: Provide debugfs_add_region_item ops for core + (jsc#PED-850). +- ASoC: SOF: imx: Provide debugfs_add_region_item ops for core + (jsc#PED-850). +- ASoC: SOF: debug: Add generic API and ops for DSP regions + (jsc#PED-850). +- ASoC: SOF: core: Do not use 'bar' as parameter for + block_read/write (jsc#PED-850). +- ASoC: SOF: loader: No need to export snd_sof_fw_parse_ext_data() + (jsc#PED-850). +- ASoC: SOF: imx: Do not initialize the snd_sof_dsp_ops.read64 + (jsc#PED-850). +- ASoC: SOF: ipc: Remove snd_sof_dsp_mailbox_init() (jsc#PED-850). +- ASoC: SOF: Intel: bdw: Set the mailbox offset directly in + bdw_probe (jsc#PED-850). +- ASoC: SOF: intel: Do no initialize resindex_dma_base + (jsc#PED-850). +- ASoC: SOF: Intel: hda: Relocate inline definitions from hda.h + to hda.c for sdw (jsc#PED-850). +- ASoC: SOF: Intel: hda: Remove boot_firmware skl and iccmax_icl + declarations (jsc#PED-850). +- ASoC: SOF: Intel: hda-dsp: Declare locally used functions as + static (jsc#PED-850). +- ASoC: intel: sof_rt5682: support jsl_rt5682s_mx98360a board + (jsc#PED-850). +- ASoC: intel: sof_rt5682: support jsl_rt5682s_rt1015 board + (jsc#PED-850). +- ASoC: intel: sof_rt5682: support jsl_rt5682s_rt1015p board + (jsc#PED-850). +- ASoC: Intel: sof_rt5682: support ALC5682I-VS codec + (jsc#PED-850). +- ASoC: SOF: loader: load_firmware callback is mandatory, treat + it like that (jsc#PED-850). +- ASoC: SOF: Handle control change notification from firmware + (jsc#PED-850). +- ASoC: SOF: control: fix a typo in put operations for kcontrol + (jsc#PED-850). +- ASoC: rt5682s: Add driver for ALC5682I-VS codec (jsc#PED-850). +- ASoC: SOF: core: allow module parameter to override dma trace + Kconfig (jsc#PED-850). +- ASoC: Intel: Move soc_intel_is_foo() helpers to a generic header + (jsc#PED-850). +- commit bb7be03 + +- xfs: convert XLOG_FORCED_SHUTDOWN() to xlog_is_shutdown() + (git-fixes). +- commit ab97572 + +- xfs: fix xfs_ifree() error handling to not leak perag ref + (git-fixes). +- commit 2b17a84 + +- s390/cpumf: add new extended counter set for IBM z16 + (jsc#PED-606). +- commit 34faf97 + +- cifs: update internal module number (bsc#1193629). +- commit 4202154 + +- cifs: fix memory leaks in session setup (bsc#1193629). +- commit 5c729d0 + +- cifs: drop the lease for cached directories on rmdir or rename + (bsc#1193629). +- commit 46e0f22 + +- smb3: interface count displayed incorrectly (bsc#1193629). +- commit e073a89 + +- cifs: Fix memory leak when build ntlmssp negotiate blob failed + (bsc#1193629). +- commit 7afbdb6 + +- cifs: set rc to -ENOENT if we can not get a dentry for the + cached dir (bsc#1193629). +- commit 328e60a + +- cifs: use LIST_HEAD() and list_move() to simplify code + (bsc#1193629). +- commit e5c0c94 + +- cifs: Fix xid leak in cifs_get_file_info_unix() (bsc#1193629). +- commit a50e886 + +- cifs: Fix xid leak in cifs_ses_add_channel() (bsc#1193629). +- commit 45683eb + +- cifs: Fix xid leak in cifs_flock() (bsc#1193629). +- commit d234b14 + +- cifs: Fix xid leak in cifs_copy_file_range() (bsc#1193629). +- commit f56cd1f + +- cifs: Fix xid leak in cifs_create() (bsc#1193629). +- commit a1d5012 + +- smb3: improve SMB3 change notification support (bsc#1193629). +- commit 8a4313f + +- cifs: lease key is uninitialized in two additional functions + when smb1 (bsc#1193629). +- commit 181d702 + +- cifs: lease key is uninitialized in smb1 paths (bsc#1193629). +- commit 395fb1f + +- smb3: must initialize two ACL struct fields to zero + (bsc#1193629). +- commit 2dfd980 + +- cifs: fix double-fault crash during ntlmssp (bsc#1193629). +- commit 958d087 + +- cifs: fix static checker warning (bsc#1193629). +- commit 6695ea2 + +- cifs: use ALIGN() and round_up() macros (bsc#1193629). +- commit b4d4efd + +- cifs: find and use the dentry for cached non-root directories + also (bsc#1193629). +- commit 14482fe + +- cifs: enable caching of directories for which a lease is held + (bsc#1193629). +- commit cc4f4c4 + +- cifs: prevent copying past input buffer boundaries + (bsc#1193629). +- commit 9130844 + +- cifs: fix uninitialised var in smb2_compound_op() (bsc#1193629). +- commit bdc0943 + +- cifs: improve symlink handling for smb2+ (bsc#1193629). +- commit 0b6be9d + +- smb3: clarify multichannel warning (bsc#1193629). +- commit 96b1224 + +- cifs: fix skipping to incorrect offset in emit_cached_dirents + (bsc#1193629). +- commit 6750b0a + +- smb3: fix oops in calculating shash_setkey (bsc#1193629). +- commit fdb4064 + +- cifs: secmech: use shash_desc directly, remove sdesc + (bsc#1193629). +- commit d652300 + +- smb3: rename encryption/decryption TFMs (bsc#1193629). +- commit 074ff14 + +- cifs: replace kfree() with kfree_sensitive() for sensitive data + (bsc#1193629). +- commit a9c83e0 + +- cifs: remove initialization value (bsc#1193629). +- commit 650b157 + +- cifs: Replace a couple of one-element arrays with flexible-array + members (bsc#1193629). +- commit 2e6a4d1 + +- smb3: do not log confusing message when server returns no + network interfaces (bsc#1193629). +- commit fe343ed + +- cifs: store a pointer to a fid in the cfid structure instead + of the struct (bsc#1193629). +- commit 4bc719f + +- cifs: improve handlecaching (bsc#1193629). +- commit 460040b + +- cifs: Make tcon contain a wrapper structure cached_fids instead + of cached_fid (bsc#1193629). +- commit 999f1a7 + +- smb3: add dynamic trace points for tree disconnect + (bsc#1193629). +- commit c71b282 + +- Fix formatting of client smbdirect RDMA logging (bsc#1193629). +- commit bc2ae55 + +- Handle variable number of SGEs in client smbdirect send + (bsc#1193629). +- commit af0f632 + +- Reduce client smbdirect max receive segment size (bsc#1193629). +- commit e36b32c + +- Decrease the number of SMB3 smbdirect client SGEs (bsc#1193629). +- commit 1c625b9 + +- cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message + (bsc#1193629). +- commit 174687c + +- cifs: destage dirty pages before re-reading them for cache=none + (bsc#1193629). +- commit 9eab309 + +- cifs: return correct error in ->calc_signature() (bsc#1193629). +- commit 0ace108 + +- cifs: misc: fix spelling typo in comment (bsc#1193629). +- commit 0177a68 + +- cifs: update internal module number (bsc#1193629). +- commit a83e618 + +- cifs: add missing spinlock around tcon refcount (bsc#1193629). +- commit a915086 + +- cifs: always initialize struct msghdr smb_msg completely + (bsc#1193629). +- commit 7ba2dbe + +- cifs: don't send down the destination address to sendmsg for + a SOCK_STREAM (bsc#1193629). +- commit cc67d16 + +- cifs: revalidate mapping when doing direct writes (bsc#1193629). +- commit 3e6da03 + +- cifs: fix small mempool leak in SMB2_negotiate() (bsc#1193629). +- commit 9ad1214 + +- smb3: use filemap_write_and_wait_range instead of + filemap_write_and_wait (bsc#1193629). +- commit 569211d + +- smb3: fix temporary data corruption in insert range + (bsc#1193629). +- commit 4153b9f + +- smb3: fix temporary data corruption in collapse range + (bsc#1193629). +- commit e11095d + +- smb3: Move the flush out of smb2_copychunk_range() into its + callers (bsc#1193629). +- commit 7cc3491 + +- cifs: Add helper function to check smb1+ server (bsc#1193629). +- commit 8d3cf57 + +- cifs: Use help macro to get the mid header size (bsc#1193629). +- commit 56cfb79 + +- cifs: Use help macro to get the header preamble size + (bsc#1193629). +- commit a32d0c7 + +- cifs: skip extra NULL byte in filenames (bsc#1193629). +- commit 3c2966f + +- smb3: missing inode locks in punch hole (bsc#1193629). +- commit d5ef2ce + +- smb3: missing inode locks in zero range (bsc#1193629). +- commit 67739d5 + +- cifs: move from strlcpy with unused retval to strscpy + (bsc#1193629). +- commit 1545859 + +- cifs: Fix memory leak on the deferred close (bsc#1193629). +- commit 0e66dd6 + +- cifs: remove useless parameter 'is_fsctl' from SMB2_ioctl() + (bsc#1193629). +- commit e09b402 + +- cifs: remove unused server parameter from calc_smb_size() + (bsc#1193629). +- commit 3f30130 + +- cifs: Do not access tcon->cfids->cfid directly from + is_path_accessible (bsc#1193629). +- commit 7188f4f + +- cifs: Add constructor/destructors for tcon->cfid (bsc#1193629). +- commit 7eb31f4 + +- SMB3: fix lease break timeout when multiple deferred close + handles for the same file (bsc#1193629). +- commit 7267460 + +- smb3: allow deferred close timeout to be configurable + (bsc#1193629). +- commit 19f7caa + +- cifs: Do not use tcon->cfid directly, use the cfid we get from + open_cached_dir (bsc#1193629). +- commit 25de0c1 + +- cifs: Move cached-dir functions into a separate file + (bsc#1193629). +- commit fc0e55e + +- cifs: fix lock length calculation (bsc#1193629). +- commit 2661e11 + +- cifs: update internal module number (bsc#1193629). +- commit 53f5daf + +- cifs: alloc_mid function should be marked as static + (bsc#1193629). +- commit f066ea5 + +- cifs: remove "cifs_" prefix from init/destroy mids functions + (bsc#1193629). +- commit 21e261c + +- cifs: remove useless DeleteMidQEntry() (bsc#1193629). +- commit b684635 + +- cifs: when insecure legacy is disabled shrink amount of SMB1 + code (bsc#1193629). +- commit 96f98e3 + +- cifs: fix wrong unlock before return from cifs_tree_connect() + (bsc#1193629). +- commit ca24a6e + +- cifs: avoid use of global locks for high contention data + (bsc#1193629). +- commit 003b496 + +- cifs: remove remaining build warnings (bsc#1193629). +- commit 2a6d64f + +- cifs: list_for_each() -> list_for_each_entry() (bsc#1193629). +- commit 98f1884 + +- smb2: small refactor in smb2_check_message() (bsc#1193629). +- commit 2913774 + +- cifs: remove minor build warning (bsc#1193629). +- commit 9dd2f9e + +- cifs: remove some camelCase and also some static build warnings + (bsc#1193629). +- commit 7a903b5 + +- cifs: remove unnecessary (void*) conversions (bsc#1193629). +- commit 352182a + +- cifs: remove unnecessary type castings (bsc#1193629). +- commit e2ea7fd + +- cifs: remove redundant initialization to variable + mnt_sign_enabled (bsc#1193629). +- commit 8c39800 + +- smb3: check xattr value length earlier (bsc#1193629). +- commit 87cd516 + +- smb3: workaround negprot bug in some Samba servers + (bsc#1193629). +- commit 031af61 + +- cifs: remove unnecessary locking of chan_lock while freeing + session (bsc#1193629). +- commit 0303046 + +- cifs: fix race condition with delayed threads (bsc#1193629). +- commit 491d550 + +- cifs: update cifs_ses::ip_addr after failover (bsc#1193629). +- commit 9ed4aa9 + +- cifs: avoid deadlocks while updating iface (bsc#1193629). +- commit 3a5c612 + +- cifs: periodically query network interfaces from server + (bsc#1193629). +- commit dd3e063 + +- cifs: during reconnect, update interface if necessary + (bsc#1193629). +- commit 8dea5e1 + +- cifs: change iface_list from array to sorted linked list + (bsc#1193629). +- commit 1b05ccf + +- smb3: use netname when available on secondary channels + (bsc#1193629). +- commit 6d17daa + +- smb3: fix empty netname context on secondary channels + (bsc#1193629). +- commit 51fad96 + +- cifs: when a channel is not found for server, log its connection + id (bsc#1193629). +- commit 1b306b2 + +- smb3: add trace point for SMB2_set_eof (bsc#1193629). +- commit c6da1d3 + +- cifs: populate empty hostnames for extra channels (bsc#1193629). +- commit f2f92b2 + +- cifs: return errors during session setup during reconnects + (bsc#1193629). +- commit d557671 + +- smb3: remove unneeded null check in cifs_readdir (bsc#1193629). +- commit 7eaa3dc + +- cifs: cache the dirents for entries in a cached directory + (bsc#1193629). +- commit 0ddb648 + +- cifs: truncate the inode and mapping when we simulate fcollapse + (bsc#1193629). +- commit 3b07034 + +- blacklist.conf: Add reverted patch + d11219ad53dc amdgpu: disable powerpc support for the newer display engine + c653c591789b drm/amdgpu: Re-enable DCN for 64-bit powerpc +- commit 15ec992 + +- xfs: fix perag reference leak on iteration race with growfs + (git-fixes). +- commit fc22ca3 + +- SCSI: scsi_probe_lun: retry INQUIRY after timeout (bsc#1189297). +- commit 623bb84 + keyutils +- Add /etc/keys/ and /usr/etc/keys/ directory (bsc#1187654) + +- adjust the library license to be LPGL-2.1+ only (the tools are GPL2+, + the library is just LGPL-2.1+) (bsc#1180603) + +- update to 1.6.3: + * Revert the change notifications that were using /dev/watch_queue. + * Apply the change notifications that use pipe2(O_NOTIFICATION_PIPE). + * Allow "keyctl supports" to retrieve raw capability data. + * Allow "keyctl id" to turn a symbolic key ID into a numeric ID. + * Allow "keyctl new_session" to name the keyring. + * Allow "keyctl add/padd/etc." to take hex-encoded data. + * Add "keyctl watch*" to expose kernel change notifications on keys. + * Add caps for namespacing and notifications. + * Set a default TTL on keys that upcall for name resolution. + * Explicitly clear memory after it's held sensitive information. + * Various manual page fixes. + * Fix C++-related errors. + * Add support for keyctl_move(). + * Add support for keyctl_capabilities(). + * Make key=val list optional for various public-key ops. + * Fix system call signature for KEYCTL_PKEY_QUERY. + * Fix 'keyctl pkey_query' argument passing. + * Use keyctl_read_alloc() in dump_key_tree_aux(). + * Various manual page fixes. +- spec-cleaner run (fixup failing homepage url) + +- prepare usrmerge (boo#1029961) + +- updated to 1.6 + - Apply various specfile cleanups from Fedora. + - request-key: Provide a command line option to suppress helper execution. + - request-key: Find least-wildcard match rather than first match. + - Remove the dependency on MIT Kerberos. + - Fix some error messages + - keyctl_dh_compute.3: Suggest /proc/crypto for list of available hashes. + - Fix doc and comment typos. + - Add public key ops for encrypt, decrypt, sign and verify (needs linux-4.20). + - Add pkg-config support for finding libkeyutils. +- upstream isn't offering PGP signatures for the source tarballs anymore + +- Replace krb5-devel BuildRequires with pkgconfig(krb5): Allow OBS + to shortcut the ring0 bootstrap cycle by also using krb5-mini. + +- add upstream signing key and verify source signature + +- updated to 1.5.11 (bsc#1113013) + - Add keyring restriction support. + - Add KDF support to the Diffie-Helman function. + - DNS: Add support for AFS config files and SRV records + +- Use %license (boo#1082318) + +- add keyutils-devel for baselibs, to allow biarch LTP builds. + (bsc#1061591) + +- updated to 1.5.10 + - added "dh_compute" callback + - manpage improvements + +- move binaries from /bin to /usr/bin (bsc#1029969) +- keyutils-usr-move.patch: also adjust the request-key.conf file + +- keyutils-nodate.patch: avoid including the timestamp. bsc#916180 + krb5 +- Fix integer overflows in PAC parsing; (CVE-2022-42898); + (bso#15203), (bsc#1205126). +- Added patches: + * 0010-Fix-integer-overflows-in-PAC-parsing.patch + +- Update to 1.19.2 + * Fix a denial of service attack against the KDC encrypted challenge + code; (CVE-2021-36222); + * Fix a memory leak when gss_inquire_cred() is called without a + credential handle. +- Changes from 1.19.1 + * Fix a linking issue with Samba. + * Better support multiple pkinit_identities values by checking whether + certificates can be loaded for each value. +- Changes from 1.19 + Administrator experience + * When a client keytab is present, the GSSAPI krb5 mech will refresh + credentials even if the current credentials were acquired manually. + * It is now harder to accidentally delete the K/M entry from a KDB. + Developer experience + * gss_acquire_cred_from() now supports the "password" and "verify" + options, allowing credentials to be acquired via password and + verified using a keytab key. + * When an application accepts a GSS security context, the new + GSS_C_CHANNEL_BOUND_FLAG will be set if the initiator and acceptor + both provided matching channel bindings. + * Added the GSS_KRB5_NT_X509_CERT name type, allowing S4U2Self requests + to identify the desired client principal by certificate. + * PKINIT certauth modules can now cause the hw-authent flag to be set + in issued tickets. + * The krb5_init_creds_step() API will now issue the same password + expiration warnings as krb5_get_init_creds_password(). + Protocol evolution + * Added client and KDC support for Microsoft's Resource-Based Constrained + Delegation, which allows cross-realm S4U2Proxy requests. A third-party + database module is required for KDC support. + * kadmin/admin is now the preferred server principal name for kadmin + connections, and the host-based form is no longer created by default. + The client will still try the host-based form as a fallback. + * Added client and server support for Microsoft's KERB_AP_OPTIONS_CBT + extension, which causes channel bindings to be required for the + initiator if the acceptor provided them. The client will send this + option if the client_aware_gss_bindings profile option is set. + User experience + * kinit will now issue a warning if the des3-cbc-sha1 encryption type is + used in the reply. This encryption type will be deprecated and removed + in future releases. + * Added kvno flags --out-cache, --no-store, and --cached-only + (inspired by Heimdal's kgetcred). +- Changes from 1.18.3 + * Fix a denial of service vulnerability when decoding Kerberos + protocol messages. + * Fix a locking issue with the LMDB KDB module which could cause + KDC and kadmind processes to lose access to the database. + * Fix an assertion failure when libgssapi_krb5 is repeatedly loaded + and unloaded while libkrb5support remains loaded. +- Changes from 1.18.2 + * Fix a SPNEGO regression where an acceptor using the default credential + would improperly filter mechanisms, causing a negotiation failure. + * Fix a bug where the KDC would fail to issue tickets if the local krbtgt + principal's first key has a single-DES enctype. + * Add stub functions to allow old versions of OpenSSL libcrypto to link + against libkrb5. + * Fix a NegoEx bug where the client name and delegated credential might + not be reported. +- Changes from 1.18.1 + * Fix a crash when qualifying short hostnames when the system has + no primary DNS domain. + * Fix a regression when an application imports "service@" as a GSS + host-based name for its acceptor credential handle. + * Fix KDC enforcement of auth indicators when they are modified by + the KDB module. + * Fix removal of require_auth string attributes when the LDAP KDB + module is used. + * Fix a compile error when building with musl libc on Linux. + * Fix a compile error when building with gcc 4.x. + * Change the KDC constrained delegation precedence order for consistency + with Windows KDCs. +- Changes from 1.18 + Administrator experience: + * Remove support for single-DES encryption types. + * Change the replay cache format to be more efficient and robust. + Replay cache filenames using the new format end with ".rcache2" + by default. + * setuid programs will automatically ignore environment variables + that normally affect krb5 API functions, even if the caller does + not use krb5_init_secure_context(). + * Add an "enforce_ok_as_delegate" krb5.conf relation to disable + credential forwarding during GSSAPI authentication unless the KDC + sets the ok-as-delegate bit in the service ticket. + * Use the permitted_enctypes krb5.conf setting as the default value + for default_tkt_enctypes and default_tgs_enctypes. + Developer experience: + * Implement krb5_cc_remove_cred() for all credential cache types. + * Add the krb5_pac_get_client_info() API to get the client account + name from a PAC. + Protocol evolution: + * Add KDC support for S4U2Self requests where the user is identified + by X.509 certificate. (Requires support for certificate lookup from + a third-party KDB module.) + * Remove support for an old ("draft 9") variant of PKINIT. + * Add support for Microsoft NegoEx. (Requires one or more third-party + GSS modules implementing NegoEx mechanisms.) + User experience: + * Add support for "dns_canonicalize_hostname=fallback", causing + host-based principal names to be tried first without DNS + canonicalization, and again with DNS canonicalization if the + un-canonicalized server is not found. + * Expand single-component hostnames in host-based principal names + when DNS canonicalization is not used, adding the system's first DNS + search path as a suffix. Add a "qualify_shortname" krb5.conf relation + to override this suffix or disable expansion. + * Honor the transited-policy-checked ticket flag on application servers, + eliminating the requirement to configure capaths on servers in some + scenarios. + Code quality: + * The libkrb5 serialization code (used to export and import krb5 GSS + security contexts) has been simplified and made type-safe. + * The libkrb5 code for creating KRB-PRIV, KRB-SAFE, and KRB-CRED + messages has been revised to conform to current coding practices. + * The test suite has been modified to work with macOS System Integrity + Protection enabled. + * The test suite incorporates soft-pkcs11 so that PKINIT PKCS11 support + can always be tested. +- Changes from 1.17.1 + * Fix a bug preventing "addprinc -randkey -kvno" from working in kadmin. + * Fix a bug preventing time skew correction from working when a KCM + credential cache is used. +- Changes from 1.17: + Administrator experience: + * A new Kerberos database module using the Lightning Memory-Mapped + Database library (LMDB) has been added. The LMDB KDB module should + be more performant and more robust than the DB2 module, and may + become the default module for new databases in a future release. + * "kdb5_util dump" will no longer dump policy entries when specific + principal names are requested. + Developer experience: + * The new krb5_get_etype_info() API can be used to retrieve enctype, + salt, and string-to-key parameters from the KDC for a client + principal. + * The new GSS_KRB5_NT_ENTERPRISE_NAME name type allows enterprise + principal names to be used with GSS-API functions. + * KDC and kadmind modules which call com_err() will now write to the + log file in a format more consistent with other log messages. + * Programs which use large numbers of memory credential caches should + perform better. + Protocol evolution: + * The SPAKE pre-authentication mechanism is now supported. This + mechanism protects against password dictionary attacks without + requiring any additional infrastructure such as certificates. SPAKE + is enabled by default on clients, but must be manually enabled on + the KDC for this release. + * PKINIT freshness tokens are now supported. Freshness tokens can + protect against scenarios where an attacker uses temporary access to + a smart card to generate authentication requests for the future. + * Password change operations now prefer TCP over UDP, to avoid + spurious error messages about replays when a response packet is + dropped. + * The KDC now supports cross-realm S4U2Self requests when used with a + third-party KDB module such as Samba's. The client code for + cross-realm S4U2Self requests is also now more robust. + User experience: + * The new ktutil addent -f flag can be used to fetch salt information + from the KDC for password-based keys. + * The new kdestroy -p option can be used to destroy a credential cache + within a collection by client principal name. + * The Kerberos man page has been restored, and documents the + environment variables that affect programs using the Kerberos + library. + Code quality: + * Python test scripts now use Python 3. + * Python test scripts now display markers in verbose output, making it + easier to find where a failure occurred within the scripts. + * The Windows build system has been simplified and updated to work + with more recent versions of Visual Studio. A large volume of + unused Windows-specific code has been removed. Visual Studio 2013 + or later is now required. +- Replace old $RPM_* shell vars +- Removal of SuSEfirewall2 service since SuSEfirewall2 has been replaced + by firewalld +- Remove cruft to support distributions older than SLE 12 +- Use macros where applicable +- Switch to pkgconfig style dependencies +- Use %_tmpfilesdir instead of the wrong %_libexecdir/tmpfiles.d + notation: libexecdir is likely changing away from /usr/lib to + /usr/libexec +- Build with full Cyrus SASL support. Negotiating SASL credentials with + an EXTERNAL bind mechanism requires interaction. Kerberos provides its + own interaction function that skips all interaction, thus preventing the + mechanism from working. +- Removed patches: + * 0007-krb5-1.12-ksu-path.patch + * 0010-Add-recursion-limit-for-ASN.1-indefinite-lengths.patch + * 0011-Fix-KDC-null-deref-on-bad-encrypted-challenge.patch +- Renamed patches: + * 0001-krb5-1.12-pam.patch => 0001-ksu-pam-integration.patch + * 0003-krb5-1.12-buildconf.patch => 0003-Adjust-build-configuration.patch + * 0008-krb5-1.12-selinux-label.patch => 0007-SELinux-integration.patch + * 0009-krb5-1.9-debuginfo.patch => 0008-krb5-1.9-debuginfo.patch + * 0012-Fix-KDC-null-deref-on-TGS-inner-body-null-server.patch => + 0009-Fix-KDC-null-deref-on-TGS-inner-body-null-server.patch + +- Fix KDC null pointer dereference via a FAST inner body that + lacks a server field; (CVE-2021-37750); (bsc#1189929); +- Added patches: + * 0012-Fix-KDC-null-deref-on-TGS-inner-body-null-server.patch + +- Fix KDC null deref on bad encrypted challenge; (CVE-2021-36222); + (bsc#1188571); +- Added patches: + * 0011-Fix-KDC-null-deref-on-bad-encrypted-challenge.patch + +- Use /run instead of /var/run for daemon PID files; (bsc#1185163); + +- Add recursion limit for ASN.1 indefinite lengths; (CVE-2020-28196); + (bsc#1178512); +- Added patches: + * 0010-Add-recursion-limit-for-ASN.1-indefinite-lengths.patch + +- Fix prefix reported by krb5-config, libraries and headers are not + installed under /usr/lib/mit prefix. (bsc#1174079) + +- Update logrotate script, call systemd to reload the services + instead of init-scripts. (boo#1169357) + +- Integrate pam_keyinit pam module, ksu-pam.d; (bsc#1081947); + (bsc#1144047); + +- Move LDAP schema files from /usr/share/doc/packages/krb5 to + /usr/share/kerberos/ldap; (bsc#1134217); + +- Upgrade to 1.16.3 + * Fix a regression in the MEMORY credential cache type which could cause + client programs to crash. + * MEMORY credential caches will not be listed in the global collection, + with the exception of the default credential cache if it is of type MEMORY. + * Remove an incorrect assertion in the KDC which could be used to cause + a crash [CVE-2018-20217]. + * Fix bugs with concurrent use of MEMORY ccache handles. + * Fix a KDC crash when falling back between multiple OTP tokens configured + for a principal entry. + * Fix memory bugs when gss_add_cred() is used to create a new credential, + and fix a bug where it ignores the desired_name. + * Fix the behavior of gss_inquire_cred_by_mech() when the credential does + not contain an element of the requested mechanism. + * Make cross-realm S4U2Self requests work on the client when no + default_realm is configured. + * Add a kerberos(7) man page containing documentation of the environment + variables that affect Kerberos programs. +- Use systemd-tmpfiles to create files under /var/lib/kerberos, required + by transactional updates; (bsc#1100126); +- Rename patches: + * krb5-1.12-pam.patch => 0001-krb5-1.12-pam.patch + * krb5-1.9-manpaths.dif => 0002-krb5-1.9-manpaths.patch + * krb5-1.12-buildconf.patch => 0003-krb5-1.12-buildconf.patch + * krb5-1.6.3-gssapi_improve_errormessages.dif to + 0004-krb5-1.6.3-gssapi_improve_errormessages.patch + * krb5-1.6.3-ktutil-manpage.dif => 0005-krb5-1.6.3-ktutil-manpage.patch + * krb5-1.12-api.patch => 0006-krb5-1.12-api.patch + * krb5-1.12-ksu-path.patch => 0007-krb5-1.12-ksu-path.patch + * krb5-1.12-selinux-label.patch => 0008-krb5-1.12-selinux-label.patch + * krb5-1.9-debuginfo.patch => 0009-krb5-1.9-debuginfo.patch + +- Upgrade to 1.16.1 + * kdc client cert matching on client principal entry + * Allow ktutil addent command to ignore key version and use + non-default salt string. + * add kpropd pidfile support + * enable "encrypted_challenge_indicator" realm option on tickets + obtained using FAST encrypted challenge pre-authentication. + * dates through 2106 accepted + * KDC support for trivially renewable tickets + * stop caching referral and alternate cross-realm TGTs to prevent + duplicate credential cache entries + +- BSC#1021402 move %{_libdir}/krb5/plugins/tls/k5tls.so to krb5 package + so it is avaiable for krb5-client as well. + +- Upgrade to 1.15.3 + * Fix flaws in LDAP DN checking, including a null dereference KDC + crash which could be triggered by kadmin clients with administrative + privileges [CVE-2018-5729, CVE-2018-5730]. + * Fix a KDC PKINIT memory leak. + * Fix a small KDC memory leak on transited or authdata errors when + processing TGS requests. + * Fix a null dereference when the KDC sends a large TGS reply. + * Fix "kdestroy -A" with the KCM credential cache type. + * Fix the handling of capaths "." values. + * Fix handling of repeated subsection specifications in profile files + (such as when multiple included files specify relations in the same + subsection). + +- Added support for /etc/krb5.conf.d/ for configuration snippets + +- Replace references to /var/adm/fillup-templates with new + %_fillupdir macro (boo#1069468) + +- Remove build dependency doxygen, python-Cheetah, python-Sphinx, + python-libxml2, python-lxml, most of which are python 2 programs. + Consequently remove -doc subpackage. Users are encouraged to use + online documentation. (bsc#1066461) + +- Update package descriptions. + +- Upgrade to 1.15.2 + * Fix a KDC denial of service vulnerability caused by unset status + strings [CVE-2017-11368] + * Preserve GSS contexts on init/accept failure [CVE-2017-11462] + * Fix kadm5 setkey operation with LDAP KDB module + * Use a ten-second timeout after successful connection for HTTPS KDC + requests, as we do for TCP requests + * Fix client null dereference when KDC offers encrypted challenge + without FAST + * Ignore dotfiles when processing profile includedir directive + * Improve documentation + +- Set "rdns" and "dns_canonicalize_hostname" to false in krb5.conf + in order to improve client security in handling service principle + names. (bsc#1054028) + +- Prevent kadmind.service startup failure caused by absence of + LDAP service. (bsc#903543) + +- There is no change made about the package itself, this is only + copying over some changelog texts from SLE package: +- bug#918595 owned by varkoly@suse.com: VUL-0: CVE-2014-5355 + krb5: denial of service in krb5_read_message +- bug#912002 owned by varkoly@suse.com: VUL-0 + CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423: + krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token +- bug#910458 owned by varkoly@suse.com: VUL-1 + CVE-2014-5354: krb5: NULL pointer dereference when using keyless entries +- bug#928978 owned by varkoly@suse.com: VUL-0 + CVE-2015-2694: krb5: issues in OTP and PKINIT kdcpreauth modules leading + to requires_preauth bypass +- bug#910457 owned by varkoly@suse.com: VUL-1 + CVE-2014-5353: krb5: NULL pointer dereference when using a ticket policy + name as a password policy name +- bug#991088 owned by hguo@suse.com: VUL-1 + CVE-2016-3120: krb5: S4U2Self KDC crash when anon is restricted +- bug#992853 owned by hguo@suse.com: krb5: bogus prerequires +- [fate#320326](https://fate.suse.com/320326) +- bug#982313 owned by pgajdos@suse.com: Doxygen unable to resolve reference + from \cite + +- Remove wrong PreRequires from krb5 + +- use HTTPS project and source URLs + +- use source urls. +- krb5.keyring: Added Greg Hudson + +- removed obsolete krb5-1.15-fix_kdb_free_principal_e_data.patch +- Upgrade to 1.15.1 + * Allow KDB modules to determine how the e_data field of principal + fields is freed + * Fix udp_preference_limit when the KDC location is configured with + SRV records + * Fix KDC and kadmind startup on some IPv4-only systems + * Fix the processing of PKINIT certificate matching rules which have + two components and no explicit relation + * Improve documentation + +- remove useless environment.pickle to make build-compare happy + +- Introduce patch + krb5-1.15-fix_kdb_free_principal_e_data.patch + to fix freeing of e_data in the kdb principal + +- Upgrade to 1.15 +- obsoleted Patch7 (krb5-1.7-doublelog.patch) fixed in 1.12.2 +- obsoleted patch to src/util/gss-kernel-lib/Makefile.in since + file is not available in upstream source anymore +- obsoleted Patch15 (krb5-fix_interposer.patch) fixed in 1.15 +- Upgrade from 1.14.4 to 1.15 - major changes: + Administrator experience: + * Add support to kadmin for remote extraction of current keys without + changing them (requires a special kadmin permission that is excluded + from the wildcard permission), with the exception of highly + protected keys. + * Add a lockdown_keys principal attribute to prevent retrieval of the + principal's keys (old or new) via the kadmin protocol. In newly + created databases, this attribute is set on the krbtgt and kadmin + principals. + * Restore recursive dump capability for DB2 back end, so sites can + more easily recover from database corruption resulting from power + failure events. + * Add DNS auto-discovery of KDC and kpasswd servers from URI records, + in addition to SRV records. URI records can convey TCP and UDP + servers and master KDC status in a single DNS lookup, and can also + point to HTTPS proxy servers. + * Add support for password history to the LDAP back end. + * Add support for principal renaming to the LDAP back end. + * Use the getrandom system call on supported Linux kernels to avoid + blocking problems when getting entropy from the operating system. + * In the PKINIT client, use the correct DigestInfo encoding for PKCS + [#1] signatures, so that some especially strict smart cards will work. + Code quality: + * Clean up numerous compilation warnings. + * Remove various infrequently built modules, including some preauth + modules that were not built by default. + Developer experience: + * Add support for building with OpenSSL 1.1. + * Use SHA-256 instead of MD5 for (non-cryptographic) hashing of + authenticators in the replay cache. This helps sites that must + build with FIPS 140 conformant libraries that lack MD5. + Protocol evolution: + * Add support for the AES-SHA2 enctypes, which allows sites to conform + to Suite B crypto requirements. +- Upgrade from 1.14.3 to 1.14.4 - major changes: + * Fix some rare btree data corruption bugs + * Fix numerous minor memory leaks + * Improve portability (Linux-ppc64el, FreeBSD) + * Improve some error messages + * Improve documentation + +- add pam configuration file required for ksu + just use a copy of "su" one from Tumbleweed + +- Upgrade from 1.14.2 to 1.14.3: + * Improve some error messages + * Improve documentation + * Allow a principal with nonexistent policy to bypass the minimum + password lifetime check, consistent with other aspects of + nonexistent policies + * Fix a rare KDC denial of service vulnerability when anonymous client + principals are restricted to obtaining TGTs only [CVE-2016-3120] + +- Remove comments breaking post scripts. + +- Do no use systemd_requires macros in main package, it adds + unneeded dependencies which pulls systemd into minimal chroot. +- Only call %insserv_prereq when building for pre-systemd + distributions. +- Optimise some %post/%postun when only /sbin/ldconfig is called. + +- Remove source file ccapi/common/win/OldCC/autolock.hxx + that is not needed and does not carry an acceptable license. + (bsc#968111) + +- removed obsolete patches: + * 0107-Fix-LDAP-null-deref-on-empty-arg-CVE-2016-3119.patch + * krb5-mechglue_inqure_attrs.patch +- Upgrade from 1.14.1 to 1.14.2: + * Fix a moderate-severity vulnerability in the LDAP KDC back end that + could be exploited by a privileged kadmin user [CVE-2016-3119] + * Improve documentation + * Fix some interactions with GSSAPI interposer mechanisms + +- Upgrade from 1.14 to 1.14.1: + * Remove expired patches: + 0104-Verify-decoded-kadmin-C-strings-CVE-2015-8629.patch + 0105-Fix-leaks-in-kadmin-server-stubs-CVE-2015-8631.patch + 0106-Check-for-null-kadm5-policy-name-CVE-2015-8630.patch + krbdev.mit.edu-8301.patch + * Replace source archives: + krb5-1.14.tar.gz -> + krb5-1.14.1.tar.gz + krb5-1.14.tar.gz.asc -> + krb5-1.14.1.tar.gz.asc + * Adjust line numbers in: + krb5-fix_interposer.patch + +- Introduce patch + 0107-Fix-LDAP-null-deref-on-empty-arg-CVE-2016-3119.patch + to fix CVE-2016-3119 (bsc#971942) + +- Remove krb5-mini pieces from spec file. + Hence remove pre_checkin.sh +- Remove expired macros and other minor clean-ups in spec file. + +- Fix CVE-2015-8629: krb5: xdr_nullstring() doesn't check for terminating null character + with patch 0104-Verify-decoded-kadmin-C-strings-CVE-2015-8629.patch + (bsc#963968) +- Fix CVE-2015-8631: krb5: Memory leak caused by supplying a null principal name in request + with patch 0105-Fix-leaks-in-kadmin-server-stubs-CVE-2015-8631.patch + (bsc#963975) +- Fix CVE-2015-8630: krb5: krb5 doesn't check for null policy when KADM5_POLICY is set in the mask + with patch 0106-Check-for-null-kadm5-policy-name-CVE-2015-8630.patch + (bsc#963964) + +- Add two patches from Fedora, fixing two crashes: + * krb5-fix_interposer.patch + * krb5-mechglue_inqure_attrs.patch + +- Update to 1.14 +- dropped krb5-kvno-230379.patch +- added krbdev.mit.edu-8301.patch fixing wrong function call + Major changes in 1.14 (2015-11-20) + Administrator experience: + * Add a new kdb5_util tabdump command to provide reporting-friendly + tabular dump formats (tab-separated or CSV) for the KDC database. + Unlike the normal dump format, each output table has a fixed number + of fields. Some tables include human-readable forms of data that + are opaque in ordinary dump files. This format is also suitable for + importing into relational databases for complex queries. + * Add support to kadmin and kadmin.local for specifying a single + command line following any global options, where the command + arguments are split by the shell--for example, "kadmin getprinc + principalname". Commands issued this way do not prompt for + confirmation or display warning messages, and exit with non-zero + status if the operation fails. + * Accept the same principal flag names in kadmin as we do for the + default_principal_flags kdc.conf variable, and vice versa. Also + accept flag specifiers in the form that kadmin prints, as well as + hexadecimal numbers. + * Remove the triple-DES and RC4 encryption types from the default + value of supported_enctypes, which determines the default key and + salt types for new password-derived keys. By default, keys will + only created only for AES128 and AES256. This mitigates some types + of password guessing attacks. + * Add support for directory names in the KRB5_CONFIG and + KRB5_KDC_PROFILE environment variables. + * Add support for authentication indicators, which are ticket + annotations to indicate the strength of the initial authentication. + Add support for the "require_auth" string attribute, which can be + set on server principal entries to require an indicator when + authenticating to the server. + * Add support for key version numbers larger than 255 in keytab files, + and for version numbers up to 65535 in KDC databases. + * Transmit only one ETYPE-INFO and/or ETYPE-INFO2 entry from the KDC + during pre-authentication, corresponding to the client's most + preferred encryption type. + * Add support for server name identification (SNI) when proxying KDC + requests over HTTPS. + * Add support for the err_fmt profile parameter, which can be used to + generate custom-formatted error messages. + Code quality: + * Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that + could cause server crashes. [CVE-2015-2695] [CVE-2015-2696] + [CVE-2015-2698] + * Fix build_principal memory bug that could cause a KDC + crash. [CVE-2015-2697] + Developer experience: + * Change gss_acquire_cred_with_password() to acquire credentials into + a private memory credential cache. Applications can use + gss_store_cred() to make the resulting credentials visible to other + processes. + * Change gss_acquire_cred() and SPNEGO not to acquire credentials for + IAKERB or for non-standard variants of the krb5 mechanism OID unless + explicitly requested. (SPNEGO will still accept the Microsoft + variant of the krb5 mechanism OID during negotiation.) + * Change gss_accept_sec_context() not to accept tokens for IAKERB or + for non-standard variants of the krb5 mechanism OID unless an + acceptor credential is acquired for those mechanisms. + * Change gss_acquire_cred() to immediately resolve credentials if the + time_rec parameter is not NULL, so that a correct expiration time + can be returned. Normally credential resolution is delayed until + the target name is known. + * Add krb5_prepend_error_message() and krb5_wrap_error_message() APIs, + which can be used by plugin modules or applications to add prefixes + to existing detailed error messages. + * Add krb5_c_prfplus() and krb5_c_derive_prfplus() APIs, which + implement the RFC 6113 PRF+ operation and key derivation using PRF+. + * Add support for pre-authentication mechanisms which use multiple + round trips, using the the KDC_ERR_MORE_PREAUTH_DATA_REQUIRED error + code. Add get_cookie() and set_cookie() callbacks to the kdcpreauth + interface; these callbacks can be used to save marshalled state + information in an encrypted cookie for the next request. + * Add a client_key() callback to the kdcpreauth interface to retrieve + the chosen client key, corresponding to the ETYPE-INFO2 entry sent + by the KDC. + * Add an add_auth_indicator() callback to the kdcpreauth interface, + allowing pre-authentication modules to assert authentication + indicators. + * Add support for the GSS_KRB5_CRED_NO_CI_FLAGS_X cred option to + suppress sending the confidentiality and integrity flags in GSS + initiator tokens unless they are requested by the caller. These + flags control the negotiated SASL security layer for the Microsoft + GSS-SPNEGO SASL mechanism. + * Make the FILE credential cache implementation less prone to + corruption issues in multi-threaded programs, especially on + platforms with support for open file description locks. + Performance: + * On slave KDCs, poll the master KDC immediately after processing a + full resync, and do not require two full resyncs after the master + KDC's log file is reset. + User experience: + * Make gss_accept_sec_context() accept tickets near their expiration + but within clock skew tolerances, rather than rejecting them + immediately after the server's view of the ticket expiration time. + +- Update to 1.13.3 +- removed patches for security fixes now in upstream source: + 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch + 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch + 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch + 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch + Major changes in 1.13.3 (2015-12-04) + This is a bug fix release. The krb5-1.13 release series is in + maintenance, and for new deployments, installers should prefer the + krb5-1.14 release series or later. + * Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that + could cause server crashes. [CVE-2015-2695] [CVE-2015-2696] + [CVE-2015-2698] + * Fix build_principal memory bug that could cause a KDC + crash. [CVE-2015-2697] + * Allow an iprop slave to receive full resyncs from KDCs running + krb5-1.10 or earlier. + +- Apply patch 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch + to fix a memory corruption regression introduced by resolution of + CVE-2015-2698. bsc#954204 + +- Make kadmin.local man page available without having to install krb5-client. bsc#948011 +- Apply patch 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch + to fix build_principal memory bug [CVE-2015-2697] bsc#952190 +- Apply patch 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch + to fix IAKERB context aliasing bugs [CVE-2015-2696] bsc#952189 +- Apply patch 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch + to fix SPNEGO context aliasing bugs [CVE-2015-2695] bsc#952188 + +- Let server depend on libev (module of libverto). This was the + preferred implementation before the seperation of libverto from krb. + +- Drop libverto and libverto-libev Requires from the -server + package: those package names don't exist and the shared libs + are pulled in automatically. + +- Unconditionally buildrequire libverto-devel: krb5-mini also + depends on it. + +- pre_checkin.sh aligned changes between krb5/krb5-mini +- added krb5.keyring + +- update to krb5 1.13.2 +- DES transition + ============== + The Data Encryption Standard (DES) is widely recognized as weak. The + krb5-1.7 release contains measures to encourage sites to migrate away +- From using single-DES cryptosystems. Among these is a configuration + variable that enables "weak" enctypes, which defaults to "false" + beginning with krb5-1.8. + Major changes in 1.13.2 (2015-05-08) + This is a bug fix release. + * Fix a minor vulnerability in krb5_read_message, which is primarily + used in the BSD-derived kcmd suite of applications. [CVE-2014-5355] + * Fix a bypass of requires_preauth in KDCs that have PKINIT enabled. + [CVE-2015-2694] + * Fix some issues with the LDAP KDC database back end. + * Fix an iteration-related memory leak in the DB2 KDC database back + end. + * Fix issues with some less-used kadm5.acl functionality. + * Improve documentation. + +- Use externally built libverto + +- update to krb5 1.13.1 + Major changes in 1.13.1 (2015-02-11) + This is a bug fix release. + * Fix multiple vulnerabilities in the LDAP KDC back end. + [CVE-2014-5354] [CVE-2014-5353] + * Fix multiple kadmind vulnerabilities, some of which are based in the + gssrpc library. [CVE-2014-5352 CVE-2014-5352 CVE-2014-9421 + CVE-2014-9422 CVE-2014-9423] + +- Update to krb5 1.13 + * Add support for accessing KDCs via an HTTPS proxy server using the + MS-KKDCP protocol. + * Add support for hierarchical incremental propagation, where slaves + can act as intermediates between an upstream master and other downstream + slaves. + * Add support for configuring GSS mechanisms using /etc/gss/mech.d/*.conf + files in addition to /etc/gss/mech. + * Add support to the LDAP KDB module for binding to the LDAP server using + SASL. + * The KDC listens for TCP connections by default. + * Fix a minor key disclosure vulnerability where using the "keepold" option + to the kadmin randkey operation could return the old keys. [CVE-2014-5351] + * Add client support for the Kerberos Cache Manager protocol. If the host + is running a Heimdal kcm daemon, caches served by the daemon can be + accessed with the KCM: cache type. + * When built on OS X 10.7 and higher, use "KCM:" as the default cache type, + unless overridden by command-line options or krb5-config values. + * Add support for doing unlocked database dumps for the DB2 KDC back end, + which would allow the KDC and kadmind to continue accessing the database + during lengthy database dumps. +- Removed patches, useless or upstreamed + * krb5-1.9-kprop-mktemp.patch + * krb5-1.10-ksu-access.patch + * krb5-1.12-doxygen.patch + * bnc#897874-CVE-2014-5351.diff + * krb5-1.13-work-around-replay-cache-creation-race.patch + * krb5-1.10-kpasswd_tcp.patch +- Refreshed patches + * krb5-1.12-pam.patch + * krb5-1.12-selinux-label.patch + * krb5-1.7-doublelog.patch + libgcrypt +- POWER10 performance enhancements for cryptography [jsc#PED-566] + * Backport upstream fixes: + - AES-GCM: Bulk implementation of AES-GCM acceleration for ppc64le + - hwf-ppc: fix missing HWF_PPC_ARCH_3_10 in HW feature + - Chacha20/poly1305: Optimized chacha20/poly1305 for P10 operation + * Add patches: + - libgcrypt-Bulk-implementation-of-AES-GCM-acceleration-ppc64le.patch + - libgcrypt-hwf-ppc-fix-missing-HWF_PPC_ARCH_3_10-in-HW-feature.patch + - libgcrypt-Optimized-chacha20-poly1305-for-P10-operation.patch + libidn2 +- The library is actually dual licensed, GPL-2.0-or-later or LGPL-3.0-or-later, + match factory licenses (bsc#1180138) + +- Update to version 2.2.0 CVE-2019-12290 bsc#1154884: + * Perform A-Label roundtrip for lookup functions by default + * Stricter check of input to punycode decoder + * Fix punycode decoding with no ASCII chars but given delimiter + * Fix 'idn2 --no-tr64' (was a no-op) + * Allow _ as a basic code point in domain labels + * Fail building documentation if 'ronn' isn't installed + * git tag changed to reflect https://semver.org/ + +- update to 2.1.1 CVE-2019-18224 bsc#1154887: + * Revert SONAME bump from release 2.1.0 + * Fix NULL dereference in idn2_register_u8() and + idn2_register_ul() + * Fix free of random value in idn2_to_ascii_4i() + * Improved fuzzer (which found the above issues) + * Check for valid unicode input in punycode encoder + * Avoid excessive CPU usage in punycode encoding with + large inputs + * Deprecate idn2_to_ascii_4i() in favor of idn2_to_ascii_4i2() + * Restrict output length of idn2_to_ascii_4i() to 63 bytes + +- update to 2.1.0: + * Two internal functions are no longer exposed, soname bump + * Fix label length check for idn2_register_u8() + * Add missing error messages to idn2_strerror_name() + +- update to 2.0.5: + * Switch the default library behavior to IDNA2008 as amended by + TR#46 (non-transitional). That default behavior is enabled when + no flags are specified to function calls. Applications can + utilize the %IDN2_NO_TR46 flag to switch to the unamended + IDNA2008. This is done in the interest of interoperability + based on the fact that this is what application writers care + about rather than strict compliance with a particular protocol + * Fixed memory leak in idn2_to_unicode_8zlz() + * Return error (IDN2_ICONV_FAIL) on charset conversion errors + * Fixed issue with STD3 rules applying in non-transitional TR46 + mode + * idn2: added option --usestd3asciirules +- put translations into libidn2-lang +- correct location of install_info_prereq macro to be on tools + +- update to 2.0.4: + * Fix integer overflow in bidi.c/_isBidi() bsc#1056451 + * Fix integer overflow in puny_decode.c/decode_digit() + bsc#1056450 + * Fix idna_free() to idn_free() +- enable documentation again + +- update to 2.0.3: + * %IDN2_USE_STD3_ASCII_RULES disabled by default. + Previously libidn2 was eliminating non-STD3 characters from + domain strings such as _443._tcp.example.com, or IPs such as + 1.2.3.4/24 provided to libidn2 functions. That was an + unexpected regression for applications switching from libidn + and thus it is no longer applied by default. + Use %IDN2_USE_STD3_ASCII_RULES to enable that behavior again. +- disable documentation, does not build correctly + +- update to 2.0.2: + * Fix TR46 transitional mode + * Fix several documentation issues + +- Sources updated from http://alpha.gnu.org to https://ftp.gnu.org + +- Update to version 2.0.1 +- Version 2.0.1 (released 2017-04-22) + * idn2 utility now using IDNA2008 + TR46 by default +- Version 2.0.0 (released 2017-03-29) [alpha] + * Version numbering scheme changed + * Added to ASCII conversion functions corresponding to libidn1 + functions: + - idn2_to_ascii_4i - idn2_to_ascii_4z + - idn2_to_ascii_8z - idn2_to_ascii_lz + * Added to unicode conversion functions corresponding to libidn1 + functions: + - idn2_to_unicode_8z4z - idn2_to_unicode_4z4z + - idn2_to_unicode_44i - idn2_to_unicode_8z8z + - idn2_to_unicode_8zlz - idn2_to_unicode_lzlz + * Including idn2.h will provide libidn1 compatibility functions + unless IDN2_SKIP_LIBIDN_COMPAT is defined. That allows converting + applications from libidn1 (which offers IDNA2003) to libidn2 (which + offers IDNA2008) by replacing idna.h to idn2.h in the applications' + source. +- Dropped patch not needed after revision + * libidn2-no-examples-build.patch + +- Update to version 0.16 + * build: Fix idn2_cmd.h build rule. + * API and ABI is backwards compatible with the previous version. +- Update to version 0.15 (released 2017-01-14) + * Fix out-of-bounds read. + * Fix NFC input conversion (regression). + * Shrink TR46 static mapping data. + * API and ABI is backwards compatible with the previous version. +- Update to version 0.14 (released 2016-12-30) + * build: Fix gentr46map build. + * API and ABI is backwards compatible with the previous version. +- Update to version 0.13: + * build: Doesn't download external files during build. + * doc: Clarify license. + * build: Generate ChangeLog file properly. + * doc: API documentation related to TR46 flags. + * API and ABI is backwards compatible with the previous version. +- Update to version 0.12: + * Builds/links with libunistring. + * Fix two possible crashes with unchecked NULL pointers. + * Memleak fix. + * Binary search for codepoints in tables. + * Do not taint output variable on error in idn2_register_u8(). + * Do not taint output variable on error in idn2_lookup_u8(). + * Update to Unicode 6.3.0 IDNA tables. + * Add TR46 / UTS#46 support to API and idn2 utility. + * Add NFC quick check. + * Add make target 'check-coverage' for test coverage report. + * Add tests to increase test code coverage. + * API and ABI is backwards compatible with the previous version. + +- update to 0.11: + * Fix stack underflow in 'idn2' command line tool. [boo#1014473] + * Fix gdoc script to fix texinfo syntax error. + * API and ABI is backwards compatible with the previous version. + +- Convert to libidn2 package started to being used, namely by curl +- Alternative implementation based on new specification from 2008 + + completely different codebase with no ties to libidn + +- libidn 1.33: + * bnc#990189 CVE-2015-8948 CVE-2016-6262 + * bnc#990190 CVE-2016-6261 + * bnc#990191 CVE-2016-6263 + * libidn: Fix out-of-bounds stack read in idna_to_ascii_4i. + * idn: Solve out-of-bounds-read when reading one zero byte as input. + * libidn: stringprep_utf8_nfkc_normalize reject invalid UTF-8. + +- Update to 1.32 + * libidn: Fix crash in idna_to_unicode_8z8z and + idna_to_unicode_8zlz. This problem was introduced in 1.31. + * API and ABI is backwards compatible with the previous version. +- Update gpg keyring + +- Add Apache-2.0 license to the license line. Under this is the + java code, but we don't build it -> just the sources license + +- Version bump to 1.31: + * Fixes bnc#923241 CVE-2015-2059 out-of-bounds read with stringprep on + invalid UTF-8 + * Few other triv changes + +- Version bump to 1.30: + * punycode.{c,h} files were reimported +- Cleanup with spec-cleaner + +- update version 1.29: + * libidn: Mark internal variable "g_utf8_skip" as static. + * idn: Flush stdout to simplify for tools that buffer too heavily. + * i18n: Added Brazilian Portuguese translation. + * Update gnulib files. + * API and ABI is backwards compatible with the previous version. + libogg +- Orthographic fixes to descriptions. RPM group fix. + +- Update to version 1.3.2 + * Fix an bug in oggpack_writecopy(). + +- Xiph libogg 1.3.1 + * Guard against very large packets. + * Respect the configure --docdir override. + * Documentation fixes. +- fix SLE build + +- own aclocal directory + +- -O20 optimization level does not exist, use -O3 + +- updated to version 1.3.0 + * Add ogg_stream_flush_fill() call + This produces longer packets on flush, similar to + what ogg_stream_pageout_fill() does for single pages. +- run spec-cleaner on it +- remove "SLES10 -> SLES11 upgrade path" parts since the upgrade + already happened and anyway the entry in bugzilla is not public + +- replace _service with real file + +- update to version 1.2.2 + * Build fix (types correction) for Mac OS X + * Update win32 project files to Visual Studio 2008 + * ogg_stream_pageout_fill documentation fix + +- update to version 1.2.1 + * Various build updates (see SVN) + * Add ogg_stream_pageout_fill() to API to allow applications + greater explicit flexibility in page sizing. + * Documentation updates including multiplexing description, + terminology and API (incl. ogg_packet_clear(), + ogg_stream_pageout_fill()) + * Correct possible buffer overwrite in stream encoding on 32 bit + when a single packet exceed 250MB. + * Correct read-buffer overrun [without side effects] under + similar circumstances. + * Update unit testing to work properly with new page spill + heuristic. + * Alter default flushing behavior to span less often and use + larger page sizes when packet sizes are large. + * Build fixes for additional compilers + * Documentation updates +- run spec-cleaner +- removed configure.dif (reapply if -fsigned-char causes problems) +- removed libogg-compile-warning-fix.diff (upstreamed) + +- add baselibs.conf as a source + libpng16 -- security update -- added patches - CVE-2019-7317 [bsc#1124211] - + libpng16-CVE-2019-7317.patch - -- asan_build: build ASAN included -- debug_build: build more suitable for debugging, install pngcp -- usecase example: [bsc#1121624] - -- security update: - * CVE-2018-13785 [bsc#1100687] - + libpng16-CVE-2018-13785.patch - -- check with -j1 - -- Fix SRPM group and grammar issues. - -- removed obsoleted Obsoletes - -- update to 1.6.34: - * Removed contrib/pngsuite/i*.png; some of these were incorrect - and caused test failures. -- includes 1.6.33: - * Added PNGMINUS_UNUSED macro to contrib/pngminus/p*.c and added - missing parenthesis in contrib/pngminus/pnm2png.c - * Fixed off-by-one error in png_do_check_palette_indexes() - * Initialize png_handler.row_ptr in libpng_read_fuzzer.cc - to fix shortlived oss-fuzz issue 3234. - * Compute a larger limit on IDAT because some applications write - a deflate buffer for each row - * Use current date (DATE) instead of release-date (RDATE) in last - changed date of contrib/oss-fuzz files. - * Enabled ARM support in CMakeLists.txt - * Fixed incorrect typecast of some arguments to png_malloc() and - png_calloc() that were png_uint_32 instead of png_alloc_size_t - * Use pnglibconf.h.prebuilt when building for ANDROID with cmake - * Initialize memory allocated by png_inflate to zero, using - memset, to stop an oss-fuzz "use of uninitialized value" - detection in png_set_text_2() due to truncated iTXt or zTXt - chunk. - * Initialize memory allocated by png_read_buffer to zero, using - memset, to stop an oss-fuzz "use of uninitialized value" - detection in png_icc_check_tag_table() due to truncated iCCP - chunk. - * Removed redundant tests - * Added an interlaced version of each file in contrib/pngsuite. - * Relocate new memset() call in pngrutil.c - * Add support for loading images with associated alpha in the - Simplified API - * Revert contrib/oss-fuzz/libpng_read_fuzzer.cc to libpng-1.6.32 - state - * Initialize png_handler.row_ptr in libpng_read_fuzzer.cc - * Add end_info structure and png_read_end() to the libpng fuzzer -- includes 1.6.32: - * Avoid possible NULL dereference in png_handle_eXIf when - benign_errors are allowed. Avoid leaking the input buffer - "eXIf_buf". - * Eliminated png_ptr->num_exif member from pngstruct.h and added - num_exif to arguments for png_get_eXIf() and png_set_eXIf(). - * Added calls to png_handle_eXIf(() in pngread.c and - png_write_eXIf() in pngwrite.c, and made various other fixes - to png_write_eXIf(). - * Changed name of png_get_eXIF and png_set_eXIf() to - png_get_eXIf_1() and png_set_eXIf_1(), respectively, to avoid - breaking API compatibility with libpng-1.6.31. - * Updated contrib/libtests/pngunknown.c with eXIf chunk. - * Initialized btoa[] in pngstest.c - * Stop memory leak when returning from png_handle_eXIf() with an - error - * Replaced local eXIf_buf with info_ptr-eXIf_buf in png_handle_eXIf(). - * Update libpng.3 and libpng-manual.txt about eXIf functions. - * Restored png_get_eXIf() and png_set_eXIf() to maintain API - compatability. - * Removed png_get_eXIf_1() and png_set_eXIf_1(). - * Check length of all chunks except IDAT against user limit to - fix an OSS-fuzz issue (Fixes CVE-2017-12652) - * Check length of IDAT against maximum possible IDAT size, - accounting for height, rowbytes, interlacing and zlib/deflate - overhead. - * Restored png_get_eXIf_1() and png_set_eXIf_1(), because - strlen(eXIf_buf) does not work (the eXIf chunk data can - contain zeroes). - * Revised symlink creation, no longer using deprecated cmake - LOCATION feature - * Fixed five-byte error in the calculation of IDAT maximum - possible size. - * Moved chunk-length check into a png_check_chunk_length() - private function - * Moved bad pngs from tests to contrib/libtests/crashers - * Moved testing of bad pngs into a separate - tests/pngtest-badpngs script - * Added the --xfail (expected FAIL) option to pngtest.c. It - writes XFAIL in the output but PASS for the libpng test. - * Require cmake-3.0.2 in CMakeLists.txt - * Fix "const" declaration info_ptr argument to png_get_eXIf_1() - and the num_exif argument to png_get_eXIf_1() - * Added "eXIf" to "chunks_to_ignore[]" in png_set_keep_unknown_chunks(). - * Added huge_IDAT.png and empty_ancillary_chunks.png to - testpngs/crashers. - * Make pngtest --strict, --relax, --xfail options imply -m - (multiple). - * Removed unused chunk_name parameter from png_check_chunk_length(). - * Relocated setting free_me for eXIf data, to stop an OSS-fuzz' - leak. - * Initialize profile_header[] in png_handle_iCCP() to fix - OSS-fuzz issue. - * Initialize png_ptr->row_buf[0] to 255 in png_read_row() to fix - OSS-fuzz UMR. - * Attempt to fix a UMR in png_set_text_2() to fix OSS-fuzz issue. - * Increase minimum zlib stream from 9 to 14 in png_handle_iCCP(), - to account for the minimum 'deflate' stream, and relocate the - test to a point after the keyword has been read. - * Check that the eXIf chunk has at least 2 bytes and begins with - "II" or "MM". - * Added a set of "huge_xxxx_chunk.png" files to - contrib/testpngs/crashers, one for each known chunk type, with - length = 2GB-1. - * Check for 0 return from png_get_rowbytes() and added some - (size_t) typecasts in contrib/pngminus/*.c to stop some Coverity - issues (162705, 162706, and 162707). - * Renamed chunks in contrib/testpngs/crashers to avoid having - files whose names differ only in case; this causes problems with - some platforms - * Added contrib/oss-fuzz directory which contains files used by - the oss-fuzz project -- cleanup with spec-cleaner - -- update to 1.6.31: - * Guard the definition of _POSIX_SOURCE in pngpriv.h. - * Revised pngpriv.h to work around failure to compile - arm/filter_neon.S. - * Added "Requires: zlib" to libpng.pc.in. - * Added special case for FreeBSD in arm/filter_neon.S. - * Changed "int" to "png_size_t" in intel/filter_sse2.c to prevent - possible integer overflow. - * Added eXIf chunk support. -- remove upstreamed - 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch - -- Drop png-version-info-only.patch, it has no effect after applying - 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch - Both patches achieve the same, prefer the upstream version - -- Add 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch - Fix build on ARM - -- png-version-info-only.patch: fix missing PNG_VERSION_INFO_ONLY check - -- update to 1.6.30: - Revised documentation of png_get_error_ptr() in the libpng manual. - Document need to check for integer overflow when allocating a pixel - buffer for multiple rows in contrib/gregbook, contrib/pngminus, - example.c, and in the manual (suggested by Jaeseung Choi). This - is similar to the bug reported against pngquant in CVE-2016-5735. - Check for integer overflow in contrib/visupng and contrib/tools/genpng. - Do not double evaluate CMAKE_SYSTEM_PROCESSOR in CMakeLists.txt. - Avoid writing an empty IDAT when the last IDAT exactly fills the - compression buffer (bug report by Brian Baird). This bug was - introduced in libpng-1.6.0. - Add a reference to the libpng.download site in README. - -- update to 1.6.29: - Moved SSE2 optimization code into the main libpng source directory. - Configure libpng with "configure --enable-intel-sse" or compile - libpng with "-DPNG_INTEL_SSE" in CPPFLAGS to enable it. - Added code for PowerPC VSX optimisation (Vadim Barkov). - Avoid potential overflow of shift operations in png_do_expand() (Aaron Boxer). - -- update to 1.6.28: fix build issues - -- update to 1.6.27: fixes CVE-2016-10087 - -- update to 1.6.26: - Fixed handling zero length IDAT in pngfix (bug report by Agostino Sarubbo, - bugfix by John Bowler). - Do not issue a png_error() on read in png_set_pCAL() because - png_handle_pCAL has allocated memory that libpng needs to free. - Issue a png_benign_error instead of a png_error on ADLER32 mismatch - while decoding compressed data chunks. - Changed PNG_ZLIB_VERNUM to ZLIB_VERNUM in pngpriv.h, pngstruct.h, and - pngrutil.c. - If CRC handling of critical chunks has been set to PNG_CRC_QUIET_USE, - ignore the ADLER32 checksum in the IDAT chunk as well as the chunk CRCs. - Issue png_benign_error() on ADLER32 checksum mismatch instead of - png_error(). - Updated the documentation about CRC and ADLER32 handling. - Fixed offsets in contrib/intel/intel_sse.patch - Changed integer constant 4294967294 to unsigned 4294967294U in pngconf.h - to avoid a signed/unsigned compare in the preprocessor. - Use zlib-1.2.8.1 inflateValidate() instead of inflateReset2() to - optionally avoid ADLER32 evaluation. - -- update to 1.6.25: - Reject oversized iCCP profile immediately. - Conditionally compile png_inflate(). - Don't install pngcp; it conflicts with pngcp in the pngtools package. - Added MIPS support (Mandar Sahastrabuddhe < - -- update to 1.6.24: - Avoid potential overflow of the PNG_IMAGE_SIZE macro. - Correct filter heuristic overflow handling. - Use a more efficient absolute value calculation on SSE2. - Added pngcp. - etc. see ANNOUNCE - -- Update to new upstream release 1.6.23 - * Fixes a potential memleak in png_set_tRNS. - * Fixed the progressive reader to handle empty first IDAT - chunk properly. - * Added tests in pngvalid.c to check zero-length IDAT chunks - in various positions. - * Fixed the sequential reader to handle these more robustly. - * Corrected progressive read input buffer in pngvalid.c. - * Moved sse2 prototype from pngpriv.h to - contrib/intel/intel_sse.patch. - * Fixed undefined behavior in png_push_save_buffer(). - Do not call memcpy() with a null source, even if count is zero. - * Fixed bad link to RFC2083 in png.5. - -- update to 1.6.22: - Added a png_image_write_to_memory() API and a number of assist macros - to allow an application that uses the simplified API write to bypass - stdio and write directly to memory. - Relaxed limit checks on gamma values in pngrtran.c. As suggested in - the comments gamma values outside the range currently permitted - by png_set_alpha_mode are useful for HDR data encoding. These values - are already permitted by png_set_gamma so it is reasonable caution to - extend the png_set_alpha_mode range as HDR imaging systems are starting - to emerge. - Restored "& 0xff" in png_save_uint_16() and png_save_uint_32() that - were accidentally removed from libpng-1.6.17. - Changed PNG_INFO_cHNK and PNG_FREE_cHNK from 0xnnnn to 0xnnnnU in png.h - (Robert C. Seacord). - Added INTEL-SSE2 support (Mike Klein and Matt Sarett, Google, Inc.). - SSE filter speed improvements for bpp=3: - memcpy-free implementations of load3() / store3(). - Added PNG_FAST_FILTERS macro (defined as - PNG_FILTER_NONE|PNG_FILTER_SUB|PNG_FILTER_UP). - -- Update to new upstream release 1.6.21 - * Widened the 'limit' check on the internally calculated error limits in - the 'DIGITIZE' case (the code used prior to 1.7 for rgb_to_gray error - checks) and changed the check to only operate in non-release builds - (base build type not RC or RELEASE.) - * Fixed undefined behavior in pngvalid.c, undefined because - (png_byte) << shift is undefined if it changes the signed bit - (because png_byte is promoted to int). The libpng exported functions - png_get_uint_32 and png_get_uint_16 handle this. - -- update to 1.6.20: - Avoid potential pointer overflow/underflow in png_handle_sPLT() and - png_handle_pCAL() (Bug report by John Regehr). - Fixed incorrect implementation of png_set_PLTE() that uses png_ptr - not info_ptr, that left png_set_PLTE() open to the CVE-2015-8126 - vulnerability. - Backported tests from libpng-1.7.0beta69. - Fixed an error in handling of bad zlib CMINFO field in pngfix, found by - American Fuzzy Lop, reported by Brian Carpenter. inflate() doesn't - immediately fault a bad CMINFO field; instead a 'too far back' error - happens later (at least some times). pngfix failed to limit CMINFO to - the allowed values but then assumed that window_bits was in range, - triggering an assert. The bug is mostly harmless; the PNG file cannot - be fixed. - In libpng 1.6 zlib initialization was changed to use the window size - in the zlib stream, not a fixed value. This causes some invalid images, - where CINFO is too large, to display 'correctly' if the rest of the - data is valid. This provides a workaround for zlib versions where the - error arises (ones that support the API change to use the window size - in the stream). - -- update to 1.6.19: - Fixed potential leak of png_pixels in contrib/pngminus/pnm2png.c - Fixed uninitialized variable in contrib/gregbook/rpng2-x.c - Fixed the recently reported 1's complement security issue. - Fixed png_save_int_32 when int is not 2's complement by replacing - the value that is illegal in the PNG spec, in both signed and - unsigned values, with 0. - etc., see ANNOUNCE and CHANGES for details -- removed: libpng-rgb_to_gray-checks.patch (upstreamed) - -- drop unknown configure switch - -- Fixed rgb_to_gray checks and added tRNS checks to pngvalid.c. - + libpng-rgb_to_gray-checks.patch - -- updated to 1.6.17: - Corrected the width limit calculation in png_check_IHDR(). - Removed user limits from pngfix. Also pass NULL pointers to - png_read_row to skip the unnecessary row de-interlace stuff. - Implement previously untested cases of libpng transforms in pngvalid.c - Fixed byte order in 2-byte filler, in png_do_read_filler(). - Made the check for out-of-range values in png_set_tRNS() detect - values that are exactly 2^bit_depth, and work on 16-bit platforms. - Merged some parts of libpng-1.6.17beta01 and libpng-1.7.0beta47. - Added #ifndef __COVERITY__ where needed in png.c, pngrutil.c and - pngset.c to avoid warnings about dead code. - Do not build png_product2() when it is unused. - Display user limits in the output from pngtest. - Eliminated the PNG_SAFE_LIMITS macro and restored the 1-million-column - and 1-million-row default limits in pnglibconf.dfa, that can be reset - by the user at build time or run time. This provides a more robust - defense against DOS and as-yet undiscovered overflows. - Added PNG_WRITE_CUSTOMIZE_COMPRESSION_SUPPORTED macro, on by default. - Allow user to call png_get_IHDR() with NULL arguments (Reuben Hawkins). - Moved png_set_filter() prototype into a PNG_WRITE_SUPPORTED block - of png.h. - Free the unknown_chunks structure even when it contains no data. - Fixed simplified 8-bit-linear to sRGB alpha. The calculated alpha - value was wrong. It's not clear if this affected the final stored - value; in the obvious code path the upper and lower 8-bits of the - alpha value were identical and the alpha was truncated to 8-bits - rather than dividing by 257 (John Bowler). - -- build with PNG_SAFE_LIMITS_SUPPORTED [bnc#912076], [bnc#912929] - -- updated to 1.6.16: - * Restored a test on width that was removed from png.c at libpng-1.6.9 - (Bug report by Alex Eubanks). - * Fixed an overflow in png_combine_row with very wide interlaced images. - -- updated to 1.6.15: - * Avoid out-of-bounds memory access in png_user_version_check(). - * Fixed incorrect handling of the iTXt compression. - * Free all allocated memory in pngimage. - * Fixed array size calculations to avoid warnings. - etc. see ANNOUNCE - libpsl -- fix [bsc#1197771] - FTBFS: libpsl won't compile on SP4 -- added patches - https://github.com/rockdaboot/libpsl/commit/f364cea73e351ce62e0b337fd1fbc21e70b52d56 - + libpsl-fix-test-data.patch - -- update to 0.20.1: - * Fix issue introduced with PSL_TYPE_NO_STAR_RULE in V0.20.0 - * Fix SO_VERSION to 8:0:3 - * Improve unit tests - -- Use %license (boo#1082318) - -- update to 0.20.0: - * Remove hard-coded gcc flag in Makefile.am - * Prevent excessive CPU cycles on large inputs - * New flag PSL_TYPE_NO_STAR_RULE to skip star rule - -- Make sure to use python3 during build instead of calling env - -- update to 0.19.1: - * New function psl_free_string() - * psl_make_dafsa now works with python2 and python3 - * psl_*count() functions now return -1 if info is not available - * Fixed unsigned integer overflow in _mem_is_ascii() - * Add -fsanitize-address-use-after-scope to --enable-asan if - available - -- update to 0.18.0: - * Fix order of files in psl_latest() - * Add fuzzing architecture - * Fix memleak in _psl_is_public_suffix() - * Add configure option --enable-asan (Address sanitizer) - * Add configure option --enable-usan (Undefined sanitizer) - * Add configure option --enable-cfi (Control Flow Integrity) - * Fix finding libidn2 for static builds - * Fix use of uninitialized stack value - * Fix buffer overflow in libicu build - * Use libidn2 as default for builds (former libicu) - * Add pkg-config support for libidn and libidn2 - -- Use idn2 runtime instead of libicu - as libicu requires 30MB - of unicode data - while idn2 is already part of minimal system - -- libpsl 0.17.0: - * Use TR46 non-transitional for IDNA (libicu, libidn2 >= 0.14) - * Fix coverage upload from TravisCI to Coveralls - * New tests to cover psl_latest() and psl_dist_filename() - -- libpsl 0.16.1: - This version enables consumers of the library to dynamically load - the latest public suffix data from a binary data file in the - publicsuffix package which can then updated without re-building - libpsl. - * Add functions psl_latest() and psl_dist_filename() - * Do not taint out variable on error in psl_str_to_utf8lower() - * Replace psl2c by psl-make-dafsa -- correct licenses for package and subpackages -- package HTML docs in -devel package - -- libpsl 0.15.0: - * Python3 compatibility for psl-make-dafsa - * Support for UTF-8 in DAFSA data - * Skip punycode conversion if DAFSA has UTF-8 - * Better code coverage by test suite - * Code cleanup and enhancements - * Install man pages for psl-make-dafsa and psl - * Enhancements to the documentation - -- libpsl 0.14.0: - * Remove unneeded libraries from tools/psl link step - * Use https instead of http where possible - * Add man page for tools/psl - * Add header magic to DAFSA files - * Rename make_dafsa.py to psl-make-dafsa - * Add man page for psl-make-dafsa - -- libpsl 0.13.0: - * Use tests.txt as PSL test file by default - * Slightly shorter DAFSA array when sorting input - * Check for python 2.7+ in configure.ac - * Fix python3 incompatibilities in make_dafsa.py - -- Add baselibs.conf - -- libpsl 0.12.0 (libpsl.so.5 5:0:0) - * Remove psl_builtin_compile_time() - * Add function psl_is_public_suffix2() - * Avoid libicu dependency with --enable-runtime=no -- drop upstreamed 0001-Remove-include-of-bits-stat.h.patch - -- fix SLE 11 build: - * adding 0001-Remove-include-of-bits-stat.h.patch - * skip IDN feature -- update descriptions and categories - -- initial package for libpsl based on Fedora Spec - libsndfile -- Fix heap buffer overflow in flac_buffer_copy (CVE-2021-4156, - bsc#1194006): - libsndfile-CVE-2021-4156.patch - -- Fix heap buffer overflow vulnerability in msadpcm_decode_block - (CVE-2021-3246, bsc#1188540): - ms_adpcm-Fix-and-extend-size-checks.patch - -- Fix segfault in wav conversion due to the invalid loop count - (CVE-2018-19758, bsc#1117954): - libsndfile-wav-loop-count-fix.patch - -- Fix buffer overflow in sndfile-deinterleave, which isn't really a - security issue (bsc#1100167, CVE-2018-13139, bsc#1116993, - CVE-2018-19432): - sndfile-deinterlace-channels-check.patch - -- Use license file tag - -- Fix potential overflow in d2alaw_array() (CVE-2017-17456, - bsc#1071777): - libsndfile-CVE-2017-17456-alaw-range-check.patch -- Fix potential overflow in d2ulaw_array() (CVE-2017-17457, - bsc#1071767): - libsndfile-CVE-2017-17457-ulaw-range-check.patch - -- Fix VUL-0: divide-by-zero error exists in the function - double64_init() in double64.c (CVE-2017-14634, bsc#1059911): - 0030-double64_init-Check-psf-sf.channels-against-upper-bo.patch -- Tentative fix for VUL-0: out of bounds read in the function - d2alaw_array() in alaw.c (CVE-2017-14245, bsc#1059912) and - VUL-0: out of bounds read in the function d2ulaw_array() in - ulaw.c (CVE-2017-14246, bsc#1059913): - 0031-sfe_copy_data_fp-check-value-of-max-variable.patch - -- Fix Heap-based Buffer Overflow in the psf_binheader_writef - (CVE-2017-12562, bsc#1052476): - 0020-src-common.c-Fix-heap-buffer-overflows-when-writing-.patch - -- Fix out-of-bounds read memory access in the aiff_read_chanmap() - (CVE-2017-6892, bsc#1043978): - 0010-src-aiff.c-Fix-a-buffer-read-overflow.patch - -- Fix FLAC buffer overflows (CVE-2017-8361 CVE-2017-8363 - CVE-2017-8365 CVE-2017-8362 bsc#1036944 bsc#1036945 bsc#1036946 - bsc#1036943): - 0001-FLAC-Fix-a-buffer-read-overrun.patch - 0002-src-flac.c-Fix-a-buffer-read-overflow.patch - -- Update to version 1.0.27: - * Fix a seek regression in 1.0.26 - * Add metadata read/write for CAF and RF64 - * FIx PAF endian-ness issue -- Update to version 1.0.28 - * Fix buffer overruns in FLAC and ID3 handling code - (CVE-2017-7585, CVE-2017-7586, bsc#1033054, bsc#1033053) - * Reduce default header memory requirements - * Fix detection of Large File Support for 32 bit systems. -- Obsoleted patch: - libsndfile-psf_strlcpy_crlf-fix-CVE-2015-8075.patch - -- Fix spec file to enable builds on non opensuse OS - -- Update to version 1.0.26: - * Fix for CVE-2014-9496, CVE-2014-9756 and CVE-2015-7805. - * Add ALAC/CAF support. Minor bug fixes and improvements. -- Refreshed patches: - sndfile-ocloexec.patch - libsndfile-psf_strlcpy_crlf-fix-CVE-2015-8075.patch -- Removed obsoleted patches: - libsndfile-example-fix.diff - libsndfile-fix-header-read-CVE-2015-7805.patch - libsndfile-paf-zero-division-fix.diff - libsndfile-src-common.c-Fix-a-header-parsing-bug.patch - libsndfile-src-file_io.c-Prevent-potential-divide-by-zero.patch - sndfile-src-sd2.c-Fix-segfault-in-SD2-RSRC-parser.patch - sndfile-src-sd2.c-Fix-two-potential-buffer-read-overflows.patch - -- VUL-0: libsndfile 1.0.25 heap overflow (CVE-2015-7805, bsc#953516) - libsndfile-src-common.c-Fix-a-header-parsing-bug.patch - libsndfile-fix-header-read-CVE-2015-7805.patch -- VUL-0: libsndfile 1.0.25 heap overflow (CVE-2015-8075, bsc#953519) - libsndfile-psf_strlcpy_crlf-fix-CVE-2015-8075.patch -- Fix the build with SLE11-SP3 due to AM_SILENT_RULE macro - -- VUL-1: libsndfile DoS/divide-by-zero (CVE-2014-9756, bsc#953521): - libsndfile-src-file_io.c-Prevent-potential-divide-by-zero.patch - -- Cleanup spec file with spec-cleaner -- Add gpg signature -- Remove old ppc provides/obsoletes - -- VUL-0: two buffer read overflows in sd2_parse_rsrc_fork() - (CVE-2014-9496, bnc#911796): backported upstream fix patches - sndfile-src-sd2.c-Fix-segfault-in-SD2-RSRC-parser.patch - sndfile-src-sd2.c-Fix-two-potential-buffer-read-overflows.patch - libsodium +- Update in SLE-15 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) + +- Revert previous change about cpuid as previous change rejected + in https://build.opensuse.org/request/show/724809 +- Disable LTO as bypass boo#1148184 + +- Add libsodium_configure_cpuid_chg.patch and call autoconf + to regenerate configure script with proper CPUID checking. + Required at least for PowerPC and ARM now that LTO enabled. + +- Update to 1.0.18 + - Enterprise versions of Visual Studio are now supported. + - Visual Studio 2019 is now supported. + - 32-bit binaries for Visual Studio 2010 are now provided. + - A test designed to trigger an OOM condition didn't work on + Linux systems with memory overcommit turned on. It has been + removed in order to fix Ansible builds. + - Emscripten: print and printErr functions are overridden to send + errors to the console, if there is one. + - Emscripten: UTF8ToString() is now exported since + Pointer_stringify() has been deprecated. + - Libsodium version detection has been fixed in the CMake recipe. + - Generic hashing got a 10% speedup on AVX2. + - New target: WebAssembly/WASI + (compile with dist-builds/wasm32-wasi.sh). + - New functions to map a hash to an edwards25519 point + or get a random point: + core_ed25519_from_hash() and core_ed25519_random(). + - crypto_core_ed25519_scalar_mul() has been implemented for + scalar*scalar (mod L) multiplication. + - Support for the Ristretto group has been implemented for + interoperability with wasm-crypto. + - Improvements have been made to the test suite. + - Portability improvements have been made. + - getentropy() is now used on systems providing this system call. + - randombytes_salsa20 has been renamed to randombytes_internal. + - Support for NativeClient has been removed. + - Most ((nonnull)) attributes have been relaxed to allow 0-length + inputs to be NULL. + - The -ftree-vectorize and -ftree-slp-vectorize compiler switches + are now used, if available, for optimized builds. + +- Update to 1.0.17 + - Bug fix: sodium_pad() didn't properly support block sizes + >= 256 bytes. + - JS/WebAssembly: some old iOS versions can't instantiate the + WebAssembly module; fall back to Javascript on these. + - JS/WebAssembly: compatibility with newer Emscripten versions. + - Bug fix: crypto_pwhash_scryptsalsa208sha256_str_verify() and + crypto_pwhash_scryptsalsa208sha256_str_needs_rehash()didn't + returnEINVAL` on input strings with a short length, unlike + their high-level counterpart. + - Added a workaround for Visual Studio 2010 bug causing CPU + features not to be detected. + - Portability improvements. + - Test vectors from Project Wycheproof have been added. + - New low-level APIs for arithmetic mod the order of the prime + order group: + - crypto_core_ed25519_scalar_random(), + crypto_core_ed25519_scalar_reduce(), + - crypto_core_ed25519_scalar_invert(), + crypto_core_ed25519_scalar_negate(), + - crypto_core_ed25519_scalar_complement(), + crypto_core_ed25519_scalar_add() and + crypto_core_ed25519_scalar_sub(). + - New low-level APIs for scalar multiplication without clamping: + crypto_scalarmult_ed25519_base_noclamp() and + crypto_scalarmult_ed25519_noclamp(). + These new APIs are especially useful for blinding. + - sodium_sub() has been implemented. + - Support for WatchOS has been added. + - getrandom(2) is now used on FreeBSD 12+. + - The nonnull attribute has been added to all relevant + prototypes. + - More reliable AVX512 detection. + - Javascript/Webassembly builds now use dynamic memory growth. + libtirpc +- fix CVE-2021-46828: libtirpc: DoS vulnerability with lots of + connections (bsc#1201680) + - add 0001-Fix-DoS-vulnerability-in-libtirpc.patch + +-exclude ipv6 addresses in client protocol 2 code (bsc#1200800) + - update 0001-rpcb_clnt.c-config-to-try-protocolversion-2-first.patch + +- fix memory leak in params.r_addr assignement (bsc#1198752) + - add 0001-fix-parms.r_addr-memory-leak.patch + +- check for nullpointer in check_address (bsc#1198176) + update 0001-rpcb_clnt.c-config-to-try-protocolversion-2-first.patch + +- add option to enforce connection via protocol version 2 first + (bsc#1196647) + add 0001-rpcb_clnt.c-config-to-try-protocolversion-2-first.patch + +- Update to libtirpc 1.2.6 + - Drop patches all patches backported from this release + (0001-Add-authdes_seccreate-stub.patch, + 0001-Avoid-multiple-definiton-with-gcc-fno-common.patch) + +- Backport upstream fix daed7ee ("Avoid multiple-definiton with gcc -fno-common") + to fix build error with gcc flag -fno-common (bsc#1160875). + Tested on gcc-9 and gcc-10. + 0001-Avoid-multiple-definiton-with-gcc-fno-common.patch + +- Skip unneeded autogen.sh run (configure is up-to-date), drop + dependencies: libtool, autoconf +- Replace krb5-mini-devel/krb5-devel with pkgconfig(krb5) + +- Update to libtirpc 1.2.5 + - A number resource leaks and other issues were fix which were identified + by a Coverity Scan. + - The AUTH_DES authentication has been deprecated. If any of those routines + are called, they will fail immediately. + - numerous bug fixes +- Package changes: + - Build without AUTH_DES authentication + - Add patch from next release 0001-Add-authdes_seccreate-stub.patch + (a86b4ff Add authdes_seccreate() stub) + - Drop rc patches (libtirpc-1-1-5-rc1.patch, libtirpc-1-1-5-rc2.patch) + - Drop patches all patches backported from this release + (0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch, + 0002-man-rpc_secure.3t-Fix-typo-in-manpage.patch, + 0003-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch) + +- Fix previous version: + - actually delete + 0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch + - use 0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch + - use 0002-man-rpc_secure.3t-Fix-typo-in-manpage.patch (renamed from + 0003-man-rpc_secure.3t-Fix-typo-in-manpage.patch) + - use 0003-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch + (renamed from + 0004-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch) + +- Updated to libtirpc 1.1.5 rc2 (this includes changes in 1.1.4 release) + - add libtirpc-1-1-5-rc1.patch and libtirpc-1-1-5-rc2.patch to reflect + upstream changes after 1.1.4 release + - remove /etc/bindresvport.blacklist as it's still supported by glibc + although it's not compiled with --enable-obsolete-rpc +- Drop patches accepted in previous releases or not needed + - 000-bindresvport_blacklist.patch (accepted in 5b037cc9, libtirpc 1.1.4) + - 001-new-rpcbindsock-path.patch (not needed, rpcbind now uses /var/run directory) + - 002-revert-binddynport.patch (fixed in 2802259, libtirpc-1-0-4-rc1) + - 0001-Fix-regression-introduced-by-change-rpc-version-orde.patch + (backport of 25d38d7, libtirpc-1-0-4-rc1) + - 0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch + (backport of 145272c, libtirpc-1-0-4-rc2) +- Add fixes from upcomming release + - 0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch + - 0003-man-rpc_secure.3t-Fix-typo-in-manpage.patch + - 0004-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch + +- Fix SLES 15 - yp_bind_client_create_v3: RPC: Unknown host (bsc#1126096). + - Add upstream patch + 0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch + +- fix socket leak introduced by change-rpc-protocol-version-order patch + (bsc#1087925) + - add 0001-Fix-regression-introduced-by-change-rpc-version-orde.patch + +- Revert binddynport changes as they break backward compatibility + [brc#1562169]. + - add 002-revert-binddynport.patch + +- Remove ineffective --with-pic. + +- Update to libtirpc 1.0.3 + - clnt_dg_call: Fix a buffer overflow (CVE-2016-4429) + - Avoid choosing reserved ports in legacy RPC APIs + - rpcinfo: change order of version to be tried to 4, 3, 2 + - includes 003-rpc-types.patch + - includes 004-replace-bzero-with-memset.patch + - includes 005-missing-includes.patch + - includes 011-Fix-typo-in-src-libtirpc.map-which-prevents-that-key.patch + - includes decls.patch +- Drop COPYING.GPLv2, GPLv2 code was removed from library + +- Adjust include directory [bsc#1083902] + +- Use %license (boo#1082318) + +- Move /usr/include/tirpc to /usr/include + +- Add COPYING.GPLv2 and install Licenses for GPLv2 code. + +- 005-missing-includes.patch: add missing includes to make headers + compatible to sunrpc. + +- Update to version 1.0.2 + - 002-old-automake.patch: not needed anymore + - 005-libtirpc-1.0.2-rc1.patch: dropped + - 006-Remove-old-meanwhile-wrong-comment-about-FD_SETSIZE-.patch: + removed, merged upstream + - 007-Change-rtime-function-to-use-poll-instead-of-select.patch: + removed, merged upstream + - 008-Add-parameters-to-local-prototypes-to-fix-compiler-w.patch: + removed, merged upstream + - 009-makefd_xprt-checks-that-the-filedesriptor-is-lower-t.patch: + removed, merged upstream + - 010-The-goto-again-statement-was-an-left-over-from-the-p.patch: + removed, merged upstream + - 012-libtirpc-needs-rpcsvc-nis.h-for-compiling-but-does-n.patch: + removed, merged upstream + - 013-If-we-don-t-compile-in-YP-support-don-t-include-YP-h.patch: + removed, merged upstream + - 014-Add-des_crypt.c-and-des_impl.c-to-become-independent.patch: + removed, merged upstream + - 015-Fix-includes-to-compile-without-deprecated-glibc-fun.patch: + removed, merged upstream + - patch6_7.diff: obsolete + - Replace explicit_bzero.patch with + 004-replace-bzero-with-memset.patch from git + - Rename libtirpc-new-path-rpcbindsock.patch to + 001-new-rpcbindsock-path.patch + +- 003-rpc-types.patch: Add some typedefs to rpc/types.h to allow + applications be compiled with -std=iso9899:1990 + +- Rectify RPM groups and summaries, + and update old macro/variable constructs. + +- decls.patch: fix missing declarations +- explicit_bzero.patch: use explicit_bzero if available + +- Add some patches to get libtirpc compiled without needing glibc + deprecated functions: + - 015-Fix-includes-to-compile-without-deprecated-glibc-fun.patch + - 014-Add-des_crypt.c-and-des_impl.c-to-become-independent.patch + - 013-If-we-don-t-compile-in-YP-support-don-t-include-YP-h.patch +- Add 012-libtirpc-needs-rpcsvc-nis.h-for-compiling-but-does-n.patch + to allow bootstrapping of libtirpc without glibc sunrpc code or + libnsl NIS+ code. + +- Add 011-Fix-typo-in-src-libtirpc.map-which-prevents-that-key.patch + (fix export of key_secretkey_is_set) + +- Add the following patches to fix some bugs from the poll() + port and an endless loop: + - 006-Remove-old-meanwhile-wrong-comment-about-FD_SETSIZE-.patch + - 007-Change-rtime-function-to-use-poll-instead-of-select.patch + - 008-Add-parameters-to-local-prototypes-to-fix-compiler-w.patch + - 009-makefd_xprt-checks-that-the-filedesriptor-is-lower-t.patch + - 010-The-goto-again-statement-was-an-left-over-from-the-p.patch + +- Remove 004-netconfig-prefer-IPv6.patch for SLES12. +- Remove libtirpc-getnetconfig-races.patch (was backport). + [FATE#320393] + +- Split the netconfig configuration file and manual page off into + an own RPM. Else it is not possible to install the old and new + libtirpc libraries in parallel. + +- Update to libtirpc-1.0.1 + - new major soname + - Adjust auth code to match other RPC implementations + - Implement more gss auth stuff + - use poll() instead of select() in svc_run() + - Add more sunrpc compat functions + - Sync compat headers with real functions +- Drop 005-missing-symvers.patch (upstream) +- Drop 006-memleak1.patch (upstream) +- Drop 007-memleak2.patch (upstream) +- Drop 008-fix-undef-ref.patch (upstream) +- Drop 009-authdes_pk_create.patch (upstream) +- Drop 010-xdr_sizeof.patch (upstream) +- Drop 011-authdes_create.patch (upstream) +- Drop 012-xp_sock.patch (upstream) +- Drop 099-poll.patch (upstream) +- Drop libtirpc-xdr-header.patch (was backport) +- Add 005-libtirpc-1.0.2-rc1.patch (fixes deadlock) + +- Fix public xdr.h header - xdr_rpcvers() were broken (bsc#902439) + Added: libtirpc-xdr-header.patch + +- Update 099-poll.patch with newest version send upstream. + +- Add 099-poll.patch: change svc_run from select() to poll(). + +- Add 012-xp_sock.patch: add sunrpc compatibility define + +- Update 009-authdes_pk_create.patch (fix syncaddr handling) +- Add 011-authdes_create.patch (fix syncaddr handling) + +- Add 010-xdr_sizeof.patch (enable xdr_sizeof) + +- Add 009-authdes_pk_create.patch (missing SunRPC compat function) + +- Add 008-fix-undef-ref.patch to fix a undefined reference bug + +- Update to version 0.3.2 (bring authdes back) +- Remove 005-no_IPv6_for_old_code.patch (accepted upstream) +- Remove 001-tirpc-features.patch (obsolete) +- Add 005-missing-symvers.patch (fix missing, new symbols) +- Add 006-memleak1.patch (fix memory leak) +- Add 007-memleak2.patch (fix memory leak) + +- Remove krb5-devel from -devel requires, not needed anymore + +- Update to libtirpc 0.3.1, which incorporates the following + patches: + - 011-gssapi-update1.patch + - 012-gssapi-update2.patch + - 013-gssapi-update3.patch + - 014-gssapi-update4.patch + - 015-gssapi-update5.patch + - 016-gssapi-update6.patch + - 017-gssapi-update7.patch + - 018-gssapi-update8.patch + Not needed anymore: + - 007-fix-tirpc_map.patch + Adjusted: + - 001-tirpc-features.patch, merged with 006-rework-features.diff + - 002-old-automake.patch + +- 007-fix-tirpc_map.patch: fix symbol version for new global names + +- 006-rework-features.diff: Adjust for set of gssapi patches +- 003-fix-gssapi.patch replaced by 011-gssapi-update1.patch +- 012-gssapi-update2.patch: fix krb5-config usage +- 013-gssapi-update3.patch: check for gssapi.h +- 014-gssapi-update4.patch: don't include rpcsec_gss.h +- 015-gssapi-update5.patch: don't install GSSAPI files if disabled +- 016-gssapi-update6.patch: fix rpc_gss_seccreate +- 017-gssapi-update7.patch: officialy export two internal functions +- 018-gssapi-update8.patch: don't use glibc special header files + +- 003-fix-gssapi.patch: Correct fix for GSS ABI breakage +- 005-no_IPv6_for_old_code.patch: Update comment +- 006-rework-features.diff: Rework tirpc-features.h + +- 003-fix-gssapi.patch: Update, one chunk did go lost + +- 001-tirpc-features.patch: update with official git version +- 002-old-automake.patch: re-add for SLES11 +- 003-fix-gssapi.patch: try to fix the disable-gssapi option correct + +- Fix HAVE_AUTHDES/HAVE_GSSAPI in public header files + (001-tirpc-features.patch) + +- Update to official release 0.3.0. authdes was disabled by default + upstream. +- Following patches were merged: + - 001-symbol-versions-v5.patch + - 003-add-des_crypt.diff +- Remove 002-old-automake.patch, not needed anymore + +- Update 001-symbol-versions-v4.patch with + 001-symbol-versions-v5.patch: Add --disable-symvers option + +- Update 003-add-des_crypt.diff, fix unresolved des functions + +- Update to git +- Add 003-add-des_crypt.diff to fix unresolved *_crypt() functions + +- Disable gssapi for SLE11, kerberos version is too old + +- rpc/rpc.h requires now indirectly gssapi.h from krb5-devel + +- Update to current git. +- The following patches were accepted upstream: + - 003-xdr_h-fix.patch + - 005-disable-rpcent.patch + - 006-no-libnsl.patch + - patch1_7.diff + - patch2_7.diff + - patch3_7.diff +- patch7_7.diff: removed, rejected upstream +- 001-symbol-versions-v3.patch: replace with 001-symbol-versions-v4.patch + +- Add the following patches from the libtirpc-devel mailing list: + - patch1_7.diff (remove wrong config.h.in) + - patch2_7.diff (fix function name of yp_check) + - patch3_7.diff (make sure config.h is included) + - patch6_7.diff (use getaddrinfo in getrpcport) + - patch7_7.diff (remove prototypes from headers we don't supply) + +- Add following patches: + - 003-xdr_h-fix.patch (fix wrong defines using xdr_u_int32) + - 005-disable-rpcent.patch (use rpcent functions from glibc) + - 006-no-libnsl.patch (don't link against libnsl) + +- Update to 0.2.5.git from 20150423 + - following patches are accepted upstream: + - 003-rpc_broadcast_misformed_replies.patch + - libtirpc-misc-segfaults.patch + - replace 001-symbol-versions-v2.patch with + 001-symbol-versions-v3.patch + - enable symbol versioning patch + +- Fix race conditions in getnetconfig (bsc#899576, bsc#882973) + Added: libtirpc-getnetconfig-races.patch + +- 004-netconfig-prefer-IPv6.patch: Prever IPv6 over IPv4 (configured + in /etc/netconfig) + +- 002-old-automake.patch: make buildable on old systems + +- Update to 0.2.5.git from 20141217 + - following patches are accepted upstream: + - 002-clnt_broadcast_fix.patch + - 004-getpmaphandle.patch + - libtirpc-clntunix_create.patch + - libtirpc-getbroadifs-crash.patch + - libtirpc-taddr2uaddr-local.patch + +- Update to upstream 0.2.5 release +- Add symbol versioning to fix symbol conflicts + (001-symbol-versions-v2.patch), but disable until commited upstream +- Adjust libtirpc-clnt_broadcast_fix.patch and rename to + 002-clnt_broadcast_fix.patch +- Adjust libtirpc-rpc_broadcast_misformed_replies.patch and rename + to 003-rpc_broadcast_misformed_replies.patch +- Rename libtirpc-getpmaphandle.patch to 004-getpmaphandle.patch +- Adjust libtirpc-bindresvport_blacklist.patch and rename to + 000-bindresvport_blacklist.patch +- Drop libtirpc-pmap-setunset.patch, not needed anymore +- Apply libtirpc-new-path-rpcbindsock.patch only on openSUSE 13.1 + and later + libtpms +- fix build for ppc64le: use -Wl,--no-as-needed in check-local + [bsc#1204556] + +- Added patches: + 0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch + 0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch + 0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch +- CVE-2021-3623: Fixed out-of-bounds access when trying to resume the + state of the vTPM (bsc#1187767) + -- import 0.5.1 - - software TPM driver library for hooking into QEMU - libvirt +- Update to libvirt 8.10.0 + - jsc#PED-1472 + - New virt-qemu-sev-validate utility for validating the + measurement reported for a domain launched with AMD SEV + - Many incremental improvements and bug fixes, see + https://libvirt.org/news.html#v8-10-0-2022-12-01 + - Dropped patches: + f81ee7b5-tests-Fix-libxlxml2domconfigtest.patch + libxcb +- u_don-t-flag-extra-reply-in-xcb_take_socket.patch + * Fix IO errors with KWin in combination with NVIDIA driver. + (bnc#1101560) + +- Update to version 1.13 + * As with xcb-proto, this release mainly enables multi-planar buffers in + DRI3 v1.2 via support for variable-sized lists of FDs, and enables + sending GenericEvents to other clients. Present v1.2 and RandR v1.6 + did not require any specific library changes. +- supersedes U_add-support-for-eventstruct.patch, + u_build_python3.patch + +- Really conditionalize the python3 option to allow us building + without any python2 present + * u_build_python3.patch +- Convert to pkgconfig style deps +- Format bit with spec-cleaner + +- Enable xinput extension. (bnc#1074249) +- U_add-support-for-eventstruct.patch + * Update xinput to the state when it was enabled by default + upstream. + +- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch + * Prevent infinite loop also in case DISPLAY is non-local. + +- Use spaces instead of tabs in the patches (as does the original + source code) to avoid confusion. +- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch + * If authentication (with *stage == 0) failed and the variable + XAUTHLOCALHOSTNAME wasn't set, we were never getting to stage 2 + in the original patch, causing calls to xcb_connect_to_display + to be stuck in an infinite loop. + Now we also go to stage 2 if the variable isn't set. + +- fixes build against python3 (package rename of + python-xcb-proto-devel to python3-xcb-proto-devel) + +- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch + * Modify this patch to do what it say - retry not only if the current hostname is + not found in the xauthority file, but also when it is rejected by X server. + (bnc#1043221) + +- Update to version 1.12 + * here is a new version of libxcb for you to enjoy. The + highlights are the same as for the new xcb-proto release: + xinput support, RandR 1.5 and an automatic alignment checker. +- removed libxcb-xevie0/libxcb-xprint0 subpackages + +- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch: + If auth with credentials for hostname fails retry with XAUTHLOCALHOSTNAME + (boo#906622). + +- Update to version 1.11.1: + This fixes some threading-related bugs with + xcb_wait_for_special_event() and adds 64-bit versions of + functions that work with sequence numbers. + libyui +- YQPkg: Scroll patterns list by pixels, not by item to avoid problems + caused by non-uniform item heights (bsc#1189550) +- 4.4.7 + libyui:libyui-ncurses +- YQPkg: Scroll patterns list by pixels, not by item to avoid problems + caused by non-uniform item heights (bsc#1189550) +- 4.4.7 + libyui:libyui-ncurses-pkg +- YQPkg: Scroll patterns list by pixels, not by item to avoid problems + caused by non-uniform item heights (bsc#1189550) +- 4.4.7 + libyui:libyui-qt +- YQPkg: Scroll patterns list by pixels, not by item to avoid problems + caused by non-uniform item heights (bsc#1189550) +- 4.4.7 + libyui:libyui-qt-graph +- YQPkg: Scroll patterns list by pixels, not by item to avoid problems + caused by non-uniform item heights (bsc#1189550) +- 4.4.7 + libyui:libyui-qt-pkg +- YQPkg: Scroll patterns list by pixels, not by item to avoid problems + caused by non-uniform item heights (bsc#1189550) +- 4.4.7 + mozilla-nss +- Update nss-fips-approved-crypto-non-ec.patch to disapprove the + creation of DSA keys, i.e. mark them as not-fips (bsc#1201298) + +- Update nss-fips-approved-crypto-non-ec.patch to allow the use SHA + keygen mechs (bsc#1191546). +- Update nss-fips-constructor-self-tests.patch to ensure abort() is + called when the repeat integrity check fails (bsc#1198980). + nghttp2 -- security update -- added patches - fix CVE-2020-11080 [bsc#1181358], HTTP/2 Large Settings Frame DoS - + nghttp2-CVE-2020-11080.patch - -- Update to version 1.40.0 to fix CVE-2019-18802 in envoy-proxy and - cilium-proxy (bsc#1166481) - * lib: Add nghttp2_check_authority as public API - * lib: Fix the bug that stream is closed with wrong error code - * lib: Faster huffman encoding and decoding - * build: Avoid filename collision of static and dynamic lib - * build: Add new flag ENABLE_STATIC_CRT for Windows - * build: cmake: Support building nghttpx with systemd - * third-party: Update neverbleed to fix memory leak - * nghttpx: Fix bug that mruby is incorrectly shared between - backends - * nghttpx: Reconnect h1 backend if it lost connection before - sending headers - * nghttpx: Returns 408 if backend timed out before sending - headers - * nghttpx: Fix request stal - -- Conditionally remove dependecy on jemalloc for SLE-12 - -- Require correct library from devel package - boo#1125689 - -- Update to version 1.39.2 (bsc#1146184, bsc#1146182): - * This release fixes CVE-2019-9511 “Data Dribble” and CVE-2019-9513 - “Resource Loop” vulnerability in nghttpx and nghttpd. Specially crafted HTTP/2 - frames cause Denial of Service by consuming CPU time. Check out - https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md - for details. For nghttpx, additionally limiting inbound traffic by - - -read-rate and --read-burst options is quite effective against - this kind of attack. - * Add nghttp2_option_set_max_outbound_ack API function - * nghttpx: Fix request stall - -- Update to version 1.39.1: - * This release fixes the bug that log-level is not set with - cmd-line or configuration file. It also fixes FPE with default - backend. -- Changes for version 1.39.0: - * libnghttp2 now ignores content-length in 200 response to - CONNECT request as per RFC 7230. - * mruby has been upgraded to 2.0.1. - * libnghttp2-asio now supports boost-1.70. - * http-parser has been replaced with llhttp. - * nghttpx now ignores Content-Length and Transfer-Encoding in 1xx - or 200 to CONNECT. -- Drop no longer needed boost170.patch - -- Update to 1.38.0: - * This release fixes the bug that authority and path altered by per-pattern mruby script can affect backend selection on retry. - * It also fixes the bug that HTTP/1.1 chunked request stalls. - * Now nghttpx does not log authorization request header field value with -LINFO. - * This release fixes possible backend stall when header and request body are sent in their own packets. - * The backend option gets weight parameter to influence backend selection. - * This release fixes compile error with BoringSSL. -- Add patch from upstream to build with new boost bsc#1134616: - * boost170.patch - -- Update to 1.36.0 - * build: disable shared library if ENABLE_SHARED_LIB is off - * third-party: use http-parser to v2.9.0 (GH-1294) - * third-party: Update mruby to 2.0.0 - * nghttpx: Pool h1 backend connection per address (GH-1292) - * nghttpx: Randomize backend address round robin order per thread - (GH-1291) - * nghttpx: Fix getting long SNs for openssl < 1.1 (GH-1287) - * h2load: add an option to write per-request logs (GH-1256) - * asio: added access to # of the current server port (GH-1257) - -- Use multibuild to not pull in python3 in first build, nghttp2 - is low in the system - -- Update to version 1.35.1: - * nghttpx: Fix broken trailing slash handling (GH-1276) -- Changes for version 1.35: - * build: cmake: Fix libevent version detection (Patch from Jan Kundrát) (GH-1238) - * lib: Use __has_declspec_attribute for shared builds (Patch from Don) (GH-1222) - * src: Require C++14 language feature - * nghttpx: Write mruby send_info early - * nghttpx: Fix assertion failure on mruby send_info with HTTP/1 frontend - * h2load: Handle HTTP/1 non-final response (GH-1259) - * h2load: Clarify that time for connect includes TLS handshake - -- Update to version 1.34.0: (bsc#1112438, FATE#326776) - * lib: Implement RFC 8441 :protocol support - * nghttpx: Add read/write-timeout parameters to backend option - * nghttpx: Fix mruby parameter validation in backend option - * nghttpx: Implement RFC 8441 Bootstrapping WebSocket with HTTP/2 - * nghttpx: Update neverbleed to fix OpenSSL 1.1.1 issues - * nghttpx: Update mruby 1.4.1 - * nghttpx: Add mruby env.tls_handshake_finished - * nghttpx: Add --tls13-ciphers and --tls-client-ciphers options - * nghttpx: Add RFC 8470 Early-Data header field support - * nghttpx: Add RFC 8446 TLSv1.3 0-RTT early data support - -- Update to version 1.33.0: - * lib: Tweak nghttp2_session_set_stream_user_data - * lib: Fix handling of SETTINGS_MAX_CONCURRENT_STREAMS. - * lib: Implement ORIGIN frame - * asio: support definition of local endpoint for cleartext - client session - * integration: Remove remaining SPDY code from the integration tests - * nghttpx: Fix worker process crash with neverbleed write error - * nghttpx: Support per-backend mruby script - * nghttpx: Fix stream reset if data from client is arrived before - dconn is attached - -- Update to version 1.32.0: - * lib: Ignore all input after calling session_terminate_session - * lib: Fix treatment of padding - * lib: Don't allow 101 HTTP status code because HTTP/2 removes - HTTP Upgrade - * build: add ENABLE_STATIC_LIB option to build static lib - * third-party: Upgrade neverbleed to the latest master - * asio: Support client side SNI - * src: Compile with libressl 2.7.2 - * src: Allow building without NPN - * h2load: -r and --duration are mutually exclusive - -- Version umpdate to 1.31.1: - * Fix bsc#1088639 CVE-2018-1000168 - * https://nghttp2.org/blog/2018/04/12/nghttp2-v1-31-1/ - -- Version update to 1.31.0: - * lib: Add nghttp2_session_set_user_data() public API function (GH-1137) - * src: Define nghttp2_inet_pton wrapper to avoid inet_pton macro (GH-1128) - * nghttpx: Close listening socket on graceful shutdown - * nghttpx: Add an option to accept expired client certificate (GH-1126) - * nghttpx: Add mruby tls_client_not_before, and tls_client_not_after (GH-1123) - * nghttpx: Fix potential memory leak - * lib: Allow PING frame to be sent after GOAWAY (GH-1103) - * nghttpx: Fix bug that h1 backend idle timeout expires sooner - * nghttpx: Stop overwrite of first header on mruby call to env.req.set_header(..) (Patch from Dylan Plecki) (GH-1119) - * nghttpx: Add upgrade-scheme parameter to backend option (GH-1099) - * nghttpx: Fix missing ALPN validation (--npn-list) (GH-1094) - * nghttpx: Remember which resource is pushed for RFC 8297 (GH-1101) - -- Drop spdylay dependency as it is deprecated since version 1.28.0 - and removed from cofnigure.ac since 1.29.0 - -- Use %license (boo#1082318) - -- Update to version 1.29.0: - * lib: Use NGHTTP2_REFUSED_STREAM for streams which are closed by - GOAWAY - * build: Remove SPDY - * build: Fix CMAKE_MODULE_PATH - * nghttpx: Revert "nghttpx: Use an existing h2 backend connection - as much as possible" - * nghttpx: Write API request body in temporary file - * nghttpx: Increase api-max-request-body - * nghttpx: Faster configuration loading with lots of backends - * nghttpx: Fix crash with --backend-http-proxy-uri option - -- Export PYTHON=/usr/bin/python3 before running configure: allow to - build without (comnplete) python2 in the buildroot. In any case - we only ship python3-bindings already. - -- Upodate to version 1.28.0: - * lib: Add nghttp2_error_callback2 - * build: Add deprecation warning when spdylay support is enabled - * Switch to clang-format-5.0 - * examples: Make client and server work with libevent-2.1.8 - * third-party: Update neverbleed - * integration: Fix issues reported by the go vet tool. - * nghttpx: Fix affinity retry - * nghttpx: Fix stalled backend connection on retry - * nghttpx: Cookie based session affinity - * nghttpx: Expose additional TLS related variables to mruby and - accesslog - -- Drop forgotten python2 build dependency - -- Update to version 1.27.0: - * h2load: Print out h2 header fields with --verbose option - * nghttpx: Send non-final response to HTTP/1.1 or HTTP/2 client - only -- Changes for version 1.26.0: - * docs: Fix some typos in the nghttpx how-to - * h2load: Fix bug that timing script stalls with -m1 - * h2load: Reservoir sampling (GH-984) - * h2load: Add timing-based load-testing in h2load -- Switch to python3 support - -- Don't use jemalloc on ppc or %arm, where it is broken. - -- Update to version 1.25.0: - * lib: add nghttp2_rcbuf_is_static() (Patch from Anna Henningsen) (GH-983) - * nghttpx: Fix bug that forwarded for is not affected by proxy protocol (GH-979) - * nghttpx: Update mruby to 1.3.0 (GH-957) - -- Drop doc building -- Rename python subpackage to python2 - -- Update to version 1.24.0: - * doc: README.rst: fix typo (Patch from Simone Basso) (GH-947) - * doc: fix up grammar in submit_trailer docs (Patch from Benjamin Peterson) (GH-945) - * doc: fix cleaning in out-of-tree builds (Patch from Benjamin Peterson) (GH-938) - * nghttp: Fix bug that upgrade fails if reason-phrase is missing (GH-949) - * nghttpx: Verify OCSP response using trusted CA certificates (GH-943) - * nghttpx: Set default minimum TLS version to TLSv1.2 (GH-937) -- Changes for version 1.23.1: - * nghttpx: Fix crash in OCSP response verification -- Changes for version 1.23.0: - * lib: nghttp2_session: Allow for compiling library with -DNDEBUG set (Patch from Angus Gratton) (GH-919) - * lib: Treat incoming invalid regular header field as stream error (GH-900) - * lib: Call nghttp2_on_invalid_frame_callback if altsvc validation fails (GH-904) - * doc: spelling mistake in arguments to build nghttp apps (Patch from Soham Sinha) (GH-925) - * doc: Add notes for installation on linux systems (Patch from Tapanito) (GH-917) - * doc: Clarify the effect of nghttp2_option_set_no_http_messaging - * nghttpx: Verify OCSP response (GH-929) - * nghttpx: Fix certificate selection based on pub key algorithm (GH-924) - * nghttpx: Fix certificate indexing bug - * nghttpx: Run OCSP at startup (GH-922) - * nghttpx: Wildcard path matching (GH-914) - * nghttpx: Forward multiple via, xff, and xfp header fields (GH-903) - * nghttp: Add -y, --no-verify-peer option to suppress peer verify warn (GH-906) - -- Update to version 1.22.0: - * lib: Add missing free call on error in inflight_settings_new() (Patch from lstefani) (GH-884) - * asio: Support specifying stream priority via session::submit() (Patch from Matt Way) (GH-881) - * nghttpx: Clarify --conf option behaviour - * nghttpx: Add $tls_sni access log variable (GH-896) - * nghttpx: Rename ssl_* log variables as tls_* (GH-895) - * nghttpx: Fix path matching bug (GH-894) - * nghttpx: SNI based backend server selection (GH-892) - * nghttpx: Enable signed_certificate_timestamp extension for TLSv1.3 (GH-878) - * nghttpx: Add options for X-Forwarded-Proto header field (GH-872) - * nghttpx: Add --single-process option (GH-869) - * nghttpx: Use 502 as server error code - * nghttpx: Use SSL_CTX_set_early_data_enabled with boringssl - * nghttp: Verify server certificate and show warning if it fails (GH-870) - * integration: Use nip.io instead of xip.io - -- Update to version 1.21.1: - * asio: Fix crash if connect takes longer time than ping interval (GH-866) - * nghttpx: Fix bug that 204 from h1 backend is always treated as error (GH-871) -- Changes for version 1.21.0: - * lib: Fix nghttp2_session_want_write (GH-832) - * doc: Document pkg-config path usage - * build: Eliminate U macro; Instead use (void)VAR for better compiler compatibility. - * src: BoringSSL supports SSL_CTX_set_{min,max}_proto_version. (Patch from Piotr Sikora) (GH-853) - * src: Use Mozilla's "Modern compatibility" ciphers by default - * src: nghttp2_gzip: fix this statement may fall through [-Werror=implicit-fallthrough=] found by gcc7 (Patch from Alexis La Goutte) (GH-823) - * nghttpx: Print version number with -v option - * nghttpx: Enable X25519 with boringssl - * nghttpx: Retry getaddrinfo without AI_ADDRCONFIG (GH-858) - * nghttpx: Failing to listen on server socket is fatal error - * nghttpx: Escape certain characters in access log (GH-856) - * nghttpx: Ignore further input if connection is going to close - * nghttpx: Don't call functions which are not async-signal-safe after fork but before execv in multithreaded process. - * nghttpx: Enable backend pattern matching with http2-proxy (GH-733) - * asio: client: Send PING after 30 seconds idle (GH-847) - -- Update to version 1.20.0: - * lib: nghttp2_session: fix The 'then' statement is equivalent to the subsequent code fragment found by PVS Studio (V523) (Patch from Alexis La Goutte) (GH-814) - * lib: Add nghttp2_option_set_no_closed_streams (GH-810) - * build: Disable spdylay detection by default - * build: Add --with-systemd option to configure - * fuzz: Add fuzzer for oss-fuzz (GH-799) - * src: Enable TLSv1.3 if it is supported by OpenSSL (or BoringSSL) (GH-816) - * src: h2 requires >= TLSv1.2 - * asio: More graceful stop of nghttp2::asio_http2::server::http2 (Patch from Amir Pakdel) (GH-805) - * asio: Holding more shared_ptrs instead of raw ptrs to make sure called objects don't get deleted. (Patch from clemahieu) - * asio: Fix infinite loop in acceptor handler (Patch from clemahieu) (GH-794) - * asio: close_stream erases from streams_ while it's being iterated over. (Patch from clemahieu) (GH-795) - * nghttpx: Strip version number from server header field - * nghttpx: Add --single-worker option - * nghttpx: Fix bug that send_reply does not participate graceful shutdown - * nghttpx: Add --frontend-max-requests option - * nghttpx: Enable stream-write-timeout by default - * nghttpx: Fix stream write timer handling - * nghttpx: Add configrevision API endpoint (GH-820) - * nghttpx: Redirect to HTTPS URI with redirect-if-not-tls parameter (GH-819) - * nghttpx: Update log time stamp in millisecond interval - * nghttpx: Better error message when private key and certificate are missing - * nghttpx: Fix bug that old config is used during reloading configuration - * nghttpx: Specify TLS protocol by version range (GH-809) - * nghttpx: Send SIGQUIT to the original master process (GH-807) - * nghttpx: Restrict HTTP major and minor in 0 or 1 - * nghttpx: Drop privilege of neverbleed daemon first - * nghttpx: add systemd support (Patch from Tomasz Torcz) (GH-802) - * nghttpx: Fix crash on SIGHUP with multi thread configuration (GH-801) - * nghttpx: Send 1xx non-final response using mruby script (GH-800) - * nghttpx: Select certificate by client's supported signature algorithm (GH-792) - * nghttpx: Recommend POST for backendconfig API request - * nghttpx: Don't build PSK features with LibreSSL (Patch from Bernard Spil) (GH-789) - * nghttp: add support for link rel="preload" for --get-assets (Patch from Benedikt Christoph Wolters) (GH-791) - * h2load: Fix wrong req_stat updates - * h2load: Explicitly count the number of requests left and inflight - * integration: Fix deprecation warnings - * integration: Redirect nghttpx stdout/stderr to test driver's stdout/stderr -- Changes for version 1.19.0: - * lib: Fix memory leak of nghttp2_stream object in server side nghttp2_session object - * Fix issues found by PVS Studio (Patch from Alexis La Goutte) (GH-769) - * doc: Update README file to write about the issue of Alpine Linux's inability to replace malloc (Patch from makovich) (GH-768) - * build: Compile with Android NDK r13b using clang - * src: Fix assertion error with boringssl - * nghttp: Take into account scheme and port when parsing HTML links - * nghttp: Fix authority for --get-assets if IP address is used in conjunction with user-defined :authority header (Patch from Benedikt Christoph Wolters) (GH-783) - * nghttpx: Add --accesslog-write-early option (GH-777) - * nghttpx: Fix access.log timestamp (GH-778) - * nghttpx: Show default cipher list in -h - * nghttpx: Add client-ciphers option - * nghttpx: Add client-no-http2-cipher-black-list option - * nghttpx: Fix the bug that no-http2-cipher-black-list does not work on backend HTTP/2 connections. - * nghttpx: Add --client-psk-secret option to enable PSK in backend (GH-612) - * nghttpx: Add --psk-secret option to enable PSK in frontend connection (GH-612) - * nghttpx: Enable SCT with OpenSSL 1.1.0 - * nghttpx: Add proxyproto to frontend option to accept PROXY protocol (GH-765) - * h2load: Show default cipher list in -h - * h2load: Show custom server temp key such as X25519 - * h2load: Fix incorrect return value from spdylay_send_callback -- Changes for version 1.18.1: - * nghttpx: Fix assertion error in libev ev_io_start (GH-759) - * nghttpx: Handle c-ares success without result - * nghttpx: Fix bug that DNS timeout was erroneously disabled (GH-763) - * nghttpx: Fix bug that DNS timeout was ignored (GH-763) - -- use individual libboost-*-devel packages instead of boost-devel - -- Update to version 1.18.0: - * lib: Accept and ignore content-length: 0 in 204 response for now - * build: Use pkg-config to detect libxml2 - * build: Require c-ares to compile applications under src - * build: Add Windows CI via AppVeyor (Patch from Alexis La Goutte) - * examples: Delete tiny-nghttpd - * nghttpx: Retry h1 backend request if first write fails (GH-757) - * nghttpx: Keep reading after backend write failed (GH-756) - * nghttpx: Add frontend-keep-alive-timeout option (GH-755) - * nghttpx: New error log format (GH-749) - * nghttpx: Fix bug that fetch-ocsp-response does not work with OpenSSL 1.1.0 (GH-742) - * nghttpx: Backend API call allows non-numeric host with dns parameter (GH-731) - * nghttpx: Lookup backend host name dynamically (GH-721) - * nghttpx: Accept and ignore content-length: 0 in 204 response for now (GH-735) - * nghttpx: Wait for child process to exit - -- Update to version 1.17.0: - * lib: Disallow content-length in 1xx, 204, or 200 to a CONNECT request (GH-722) - * lib: Avoid memcpy against NULL src - * build: MSVC version resource support (Patch from Remo E) (GH-718) - * asio: server: Call on_close callback on connection close (GH-729) - * nghttpx: Fix frequent crash with --backend-http-proxy-uri - * nghttpx: Robust backend read timeout - * nghttpx: Fix bug that mishandles response header from h1 backend - * nghttpx: Fix bug that zero-length POST is not forwarded (GH-726) - * nghttpx: Remove optional reason-phrase from SPDY :status - * nghttpx: Header key and value must be string in mruby script - * nghttpx: Strip content-length with 204 or 200 to CONNECT in mruby (GH-722) - * nghttpx: Strict handling for Content-Length or Transfer-Encoding in h1 (GH-722) - * nghttpx: Fix compilation with BoringSSL (Patch from dalf) (GH-717) - * nghttpd, nghttpx, asio: Add missing mandatory SP after status code - -- Update to version 1.16.1: - * lib: Prevent undefined behavior in decode_length - * nghttpx: Fix bug which may crash nghttpx if non-final response - is forwarded from origin server to HTTP/1.1 client -- Changes for version 1.16.0: - * lib: Add nghttp2_set_debug_vprintf_callback to take advantage - of DEBUGF statements in when building DEBUGBUILD. - * Update .clang-format for clang-format-3.9 - * build: Make it possible to include nghttp2/CMakeLists.txt in - another project using add_subdirectory. - * third-party: Update http-parser to - feae95a3a69f111bc1897b9048d9acbc290992f9 - * asio: Fix crash when end() is called outside nghttp2 callback - * nghttpx: Add --backend-connect-timeout option - * nghttpx: Add TLS signed_certificate_timestamp extension support - * nghttpx: Add --ecdh-curves option to specify list of named - curves - * h2load: Add --header-table-size and --encoder-header-table-size - options - -- Update to version 1.15.0: - * lib: Add nghttp2_option_set_max_deflate_dynamic_table_size() - API function (GH-684) - * lib: Allow NGHTTP2_ERR_PAUSE from - nghttp2_data_source_read_callback (GH-671) - * lib: Add nghttp2_session_get_hd_deflate_dynamic_table_size() - and nghttp2_session_get_hd_inflate_dynamic_table_size() API - functions to get current HPACK dynamic table size (GH-664) - * lib: Add nghttp2_session_get_local_settings() API function - * lib: Add nghttp2_session_get_local_window_size() and - nghttp2_session_get_stream_local_window_size() API functions - * build: Add -lsocket -lnsl to APPLDFLAGS for solaris build - * neverbleed: Update neverbleed to support ECDSA certificate - * doc: Mention --enable-lib-only configure option in README - * integration: Fix test failure with go1.7.1 - * src: Fix compile error with openssl 1.1.0 - * nghttpx: Improve performance with HTTP/1.1 backend when - request body is involved - * nghttpx: Use std::atomic_* overloads for std::shared_ptr if - available - * nghttpx: Migrate backend stream to another h2 session on - graceful shutdown - * nghttpx: Add option to specify HPACK encoder/decoder dynamic - table size - * nghttpx: Log client address - * nghttpx: Add tls_sni to mruby Nghttpx::Env class - * nghttpx: Add --frontend-http2-window-size option, and its - family functions - * nghttpx: Add experimental TCP optimization for h2 frontend - * nghttpx: Workaround for std::make_shared bug in Xcode7, 7.1, - and 7.2 (GH-670) - * nghttpx: Fix bug that bytes are doubly counted to rate limit - for TLS connections - * nghttpx: Add --no-server-rewrite option not to rewrite server - header field (GH-667) - * nghttpx: Retry if backend h1 connection cannot be established - due to timeout - * nghttpx: Reset stream if invalid header field is received in h2 - * nghttpx: Add --server-name option to change server response - header field (GH-667) - * nghttpd: Add --encoder-header-table-size option - * nghttp: Add --encoder-header-table-size option - * python: Support ALPN, require Python 3.5 - -- Update to version 1.14.0: - * lib: Make emit_header() return void since it always succeed - * lib: Add nghttp2_hd_deflate_hd_vec() deflate API to support - multiple buffer input - * lib: since hd_inflate_commit_indexed() always return 0, - remove the return value check in nghttp2_hd_inflate_hd_nv() - * lib: Use memeq() instead of lstreq() in lookup_token() - * lib: More strict stream state handling - * lib: Modify genlibtokenlookup.py to remove redundant header - comparisons and remove inline qualifier of lookup_token() - in genlibtokenlookup.py - * lib: Fix wrong tree operation to avoid cycle - * lib: Make get_max_index() return the max index in frame, - so we don't need to do extra calculation - * lib: Add nghttp2_on_invalid_header_callback - * lib: Log frame's stream ID for header debug logging - * doc: Remove old doc about differential encoding in HPACK - * doc: Document about ALPN in nghttpx howto - * nghttpx: Log error code from getsockopt(SO_ERROR) on first - write event - * nghttpx: Don't change pushed stream's priority - * nghttpx: Log backend connection failure in WARN level - * nghttpx: Fix bug that api and healthmon parameters do not work - with http2 proxy - * nghttpx: Add access log variable for backend host and port - * nghttpx: Use copy instead of const reference of backend group - * nghttpx: Reload configuration with SIGHUP - * nghttp: Adjust weight according to Firefox stable - * nghttp: Call error callback when invalid header field is - received and ignored - * nghttp: Allow multiple -p option - * deflatehd: Call nghttp2_hd_deflate_change_table_size only - if table size is changed from default - -- Update to version 1.13.0: - * lib: Cancel non-DATA frame transmission from - nghttp2_before_frame_send_callback - * doc: Fix warning with Sphinx 1.4 - * build: Work with Android NDK r12b - * nghttpx: Use consistent hashing for client IP based session - affinity - * nghttpx: Fix FTBFS on armel by explicitly including the header - * nghttpx: Cast to double to fix build with gcc 4.8 on Solaris 11 - * nghttpx: Fix build error with libressl - * examples: Fix compile error with OpenSSL v1.1.0-beta2 - -- Update to version 1.12.0: - * Add nghttp2_session_set_local_window_size API function - * Add nghttp2_option_set_max_send_header_block_length API - function (GH-613) - * Fix warning: declaration of 'free' shadows a global declaration - (Patch from Alexis La Goutte) - * examples: Add ALPN support to tutorial client/server (GH-614) - * nghttpx: Reduce TTFB with large number of incoming connections - * nghttpx: Rewrite read timer handling - * nghttpx: Clean up neverbleed AF_UNIX socket - * nghttpx: Add --backend-max-backoff option - * nghttpx: Use 16KiB buffer for reading to match TLS record size - * nghttpx: Add healthmon parameter to -f option to enable health - monitor mode - * nghttpx: Receive reference of std::mt19937, not making a copy - * nghttpx: Fix bug that backend never return to online (GH-615) - * nghttpx: Implement client IP based session affinity - * nghttpx: Add --api-max-request-body option to set maximum API - request body size - * nghttpx: Add api parameter to --frontend option to mark API - endpoint - * h2load: Add content-length header field for HTTP/2 and SPDY as - well - * h2load: Implement HTTP/1 upload (GH-611) - -- Update to 1.11.1 - * lib: Add nghttp2_hd_inflate_hd2() and deprecate - nghttp2_hd_inflate_hd() - * lib: Avoid 0-length DATA if NGHTTP2_DATA_FLAG_NO_END_STREAM is set - * lib: Fix bug that PING flags are ignored in nghttp2_submit_ping - * integration: Workaround runtime error: cgo argument has Go pointer - to Go pointer - * nghttp: Eliminate zero length DATA frame at the end if possible - * nghttpd: Set content-length in status response - * nghttpx: Add sni keyword to --backend option - * nghttpx: Allow mixed protocol and TLS settings among backends under - same pattern - * nghttpx: Don't add 0-length DATA when response HEADERS bears - END_STREAM flag - * nghttpx: Don't add chunked encoded response body for HEAD request - * nghttpx: Don't use CN if we have dNSName or iPAddress field - * nghttpx: Just call execv instead of execve to pass environ - * nghttpx: Make SETTINGS timeout value configurable - * nghttpx: Save PID file after it is ready to accept connections - * nghttpx: Treat backend failure if SETTINGS is not received within - timeout - * nghttpx: Wait for SETTINGS ACK to make sure that backend h2 server - is alive - -- Update to 1.10.0 - * Pass unknown SETTINGS values to nghttp2_on_frame_recv_callback - * Add ALTSVC frame support - * Run error callback when peer does not send initial SETTINGS - frame - * Update http-parser - * Update sphinx_rtd_theme - * nghttp: add an --expect-continue option - * nghttpx: Fix downstream connect callback called early - * nghttpx: Truncate too long -b option signature - * nghttpx: Fix bug that server push from mruby script did not - work - * nghttpx: Try next HTTP/1 backend address when connection - cannot be made - * nghttpx: Retry next HTTP/2 backend address when connection - cannot be made - * nghttpx: Enable link header field based push for non-final - response - * nghttpx: Detect online/offline state of backend servers - * nghttpx: Better load balancing between backend HTTP/2 servers - * nghttpx: Fix crash with backend failure - -- Update to 1.9.2 - * nghttpx: Fix crash with backend failure - * nghttpx: Better distribute load to backend h2 servers - * nghttpx: Fix error messages on deprecated mode - * nghttpx: Fix bug that logger wrote string which was not - NULL-terminated - * nghttpx: Fix bug that proxy with HTTP/1.1 CONNECT did not work - -- Update to 1.9.1 - * nghttpx: Fix bug that backend tls keyword did not work with -s - option - * nghttpx: Fix handing stream after connection check was failed -- Changes for 1.9.0 - * lib: Add nghttp2_error_callback to tell application human - readable error message - * lib: Reference counted HPACK name/value pair, adding - * nghttp2_on_header_callback2 - * lib: Add nghttp2_option_set_no_auto_ping_ack() option - * lib: Add nghttp2_http2_strerror() to return HTTP/2 error code - string - * build: Makefile.msvc enhancements (Patch from Jan-E) - * build: Lower libev version requirement (Patch from Peter Wu) - * build: cmake build support (Patch from Peter Wu) - * asio: Fix bug that server event loop breaks with exception - * integration: Disable tests that sometimes break randomly on - travis - * integration: do not use recursive target (Patch from Peter Wu) - * h2load: Fix bug that it did not try to connect to server again - * h2load: Fix bug that initial max concurrent streams was too - large - * nghttpx: Memcached connection encryption with tls keyword - * nghttpx: Enable/disable TLS per frontend address - * nghttpx: Configure TLS per backend routing pattern - * nghttpx: Workaround for Ubuntu 15.04 which does not - value-initialize on std::make_shared. - * nghttpx: Add --error-page option to set custom error pages - * nghttpx: Add wildcard host routing - * nghttpx: Change read timeout reset timing - * nghttpx: Don't push if Link header field includes nopush - * nghttpx: Deprecate backend-http1-connections-per-host in favor - of backend-connections-per-host - * nghttpx: Restructure mode settings, removing --http2-bridge, - - -client, and --client-proxy options - * nghttpx: Deprecate backend-http1-connections-per-frontend in - favor of backend-connections-per-frontend - * nghttpx: Don't share session which is already in draining - state - * nghttpx: Effectively disable backend HTTP/2 connection flow - control - * nghttpx: Add --frontend-http2-max-concurrent-streams and - - -backend-http2-max-concurrent-streams, and deprecate - - -http2-max-concurrent-streams option - * nghttpx: Deprecate --backend-http2-connections-per-worker - option - * nghttpx: Share TLS session cache between HTTP/2 and HTTP/1 - backend - * nghttpx: Rewrite backend HTTP/2 connection coalesce strategy - -- Update to 1.8.0 - * Add Architecture documents (work in progress) - * List all contributors in AUTHORS - * doc: fix out-of-tree doc builds (Patch from Peter Wu) - * Wrap AM_PATH_XML2 by m4_ifdef to handle the case when - _PATH_XML2 is not found - * Fix configure script for non-gcc, clang build - * Document compiling apps and include h2load in configure (Patch - from David Beitey) - * Don't check for dlopen/libdl on *BSD (Patch from Bernard Spil) - * Don't taint CXXFLAGS from AX_CXX_COMPILE_STDCXX_11 - * Fixing Windows Makefile version detection (Patch from Reza - Tavakoli) - * lib: Tokenize extra HTTP header fields - * lib: Fix typo in HAVE_CONFIG_H name (Patch from Peter Wu) - * lib: Add HTTP/2 extension framework to send and receive - non-critical frames - * tests: remove unused macros (Patch from Peter Wu) - * src: Update default cipher list - * src: Fix compile error with gcc-6 which enables C++14 by default - * asio: client: Fix connect timeout does not work, return from cb - if session stopped, removing client::session::connect_timeout() - functon - * nghttpd: Start SETTINGS timer after it is written to output - buffer - * nghttpd: Add trailer header field to status responses - * nghttpd: Add -w and -W options to change window size - * nghttpx: Worker wide blocker which is used when socket(2) is - failed - * nghttpx: ConnectBlocker per backend address - * nghttpx: Interleave text/html pushed resources with associated - resource - * nghttpx: Add headers given in add-response-headers for mruby - response - * nghttpx: Deprecate --backend-ipv4 and --backend-ipv6 in favor - of --backend-address-family - * nghttpx: Add options to specify address family of memcached - connections - * nghttpx: Add encryption support for TLS ticket key retrieval - * nghttpx: Add TLS support for session cache memcached connection - * nghttpx: Refactor blacklisted cipher suite check (Patch from - Jay Satiro) - * nghttpx: Add TLS support for HTTP/1 backend - * nghttpx: Add request-header-field-buffer and - max-request-header-fields options, deprecating - header-field-buffer and max-header-fields options. - * nghttpx: Add --no-http2-cipher-black-list to allow black listed - cipher suite - * nghttpx: Limit header fields from backend - * nghttpx: Fix bug that IPv6 address in Forwarded "for" is not - quoted-string - * nghttpx: Support multiple frontend addresses - * integration-tests: support out-of-tree tests (Patch from Peter - Wu) - * examples: fix compile warnings (Patch from Peter Wu) -- Drop upstreamed nghttp2-c++14.patch - -- Update to 1.7.1 - * Fix CVE-2016-1544 (boo#966514) - -- Add nghttp2-c++14.patch to properly guard make_unique templates. - [bsc#964140] - -- Update to 1.7.0 - * Reset (RST_STREAM) stream if flow control window gets overflow - * Validate :authroity, host, and :scheme value more strictly - * Check request/response submission error based side of session - * Strict outgoing idle stream detection - * Return error from nghttp2_submit_{headers,request} when self - dependency is made - * Add -ldl to APPLDFLAGS for static openssl linking - * asio: Stop acceptor on server::http2::stop - * asio: Rename http2::get_io_services() as http2::io_services() - * h2load: Support UNIX domain socket - * h2load: Improve readability of traffic numbers - * h2load: Remove "auto" for -m option - * h2load: Show progress in rate mode - * h2load: Perform sampling for request and connection timings to - reduce memory consumption - * nghttpd: Add --no-content-length option to omit content-length - in response - * nghttpx: Interleave pushed streams with the associated stream - if pushed streams are javascript and CSS resources - * nghttpx: The initial value of request/response buffer is - increased to 128K - * nghttpx: Fix bug that --listener-disable-timeout option is not - used - * nghttpx: Don't emit :authority if request does not contain - authority information - * nghttpx: Add clarification of quotes in configuration file - * nghttpx: Don't allow certain characters in host and :scheme - header field - * nghttpx: Add RFC 7239 Forwarded header field support - * nghttpx: Fix crash when running on IPv6 only (Patch from Vernon - Tang) - * nghttpx: Take into account of trailers when applying - max_header_fields - * nghttpx: Don't apply max_header_fields and header_field_buffer - limit to response - * nghttpx: Strict validation for header fields given in - configuration - * nghttpx: header value should not be lower-cased (Patch from - ayanamist) - -- fixed typo in libnghttp2_asio1 [bsc#962914] - -- Update to 1.6.0 - * Fix heap-use-after-free bug when handling idle streams - * Strict error handling for frames which are not allowed after - closed (remote) - * Set max number of outgoing concurrent streams to 100 by - default - * Keep incoming streams only at server side - * Create stream object for pushed resource during - nghttp2_submit_push_promise() - * Add nghttp2_session_create_idle_stream() API - * Handle response in nghttp2_on_begin_frame_callback - * Add --lib-only configure option - * Compile with OpenSSL 1.1.0-pre1 - * Fix build when OpenSSL 1.0.2 is not available (patch from - Sunpoet Po-Chuan Hsieh) - * asio: Add connect and read timeout to client API - * asio: Add TLS handshake and read timeout to server API - * asio: Added access to a requests remote endpoint (patch from - Andreas Pohl) - * asio: libnghttp2_asio: Added io_service accessors (patch from - Andreas Pohl) - * h2load: Add req/s min, max, mean and sd for clients - * h2load: Fix broken connection times - -- Update to 1.5.0 - * Fix bug that nghttp2_session_find_stream(session, 0) returned - NULL - * Add nghttp2_session_change_stream_priority() to change stream - priority without sending PRIORITY frame - * Add nghttp2_session_check_server_session() API - * Consider to use CANCEL error code when closing streams with - GOAWAY - * Don't send push response if GOAWAY has been received - * Use error code CANCEL to reset pushed reserved stream from - remote - * Add nghttp2_session_upgrade2(), deprecate - nghttp2_session_upgrade() - * Workaround HTTP upgrade with HEAD request in - nghttp2_session_upgrade() - * Introduce NGHTTP2_NV_FLAG_NO_COPY_NAME and - NGHTTP2_NV_FLAG_NO_COPY_VALUE - * Add nghttp2_session_check_request_allowed() API function - * Switch to clang-format-3.6 - * Update mruby to 1.2.0 - * tests: fix broken linkage with --disable-static (Patch from - Kamil Dudka) - * python: Send RST_STREAM if remote side is not closed and - response finished - * asio: client: call on_error when connection is dropped - * asio: ALPN support - * h2load: Add --h1 option to force http/1.1 for both http and - https URI - * h2load: Fix crash when dealing with "connection: close" form - HTTP/1.1 server - * h2load: h2load goes into infinite loop when timing script file - starts with 0.0 in first line (Patch from Kit Chan) - * h2load: Override user-agent with -H option - * h2load: Print "space savings" to measure header compression - efficiency - * h2load: Stream error should be counted toward errored - * h2load: Show application protocol with OpenSSL < 1.0.2 - * nghttpx: Don't send RST_STREAM to h2 backend if backend is - disconnected state - * nghttpx: Support server push from HTTP/2 backend - * nghttpx: Fix bug that causes connection failure with backend - proxy URI - * nghttpx: Use --backend-tls-sni-field to verify certificate - hostname - * nghttpx: Log :authority as $http_host if available - * nghttpd: Fix crash with CONNECT request - * nghttpd: Defered eviction of cached fd using timer - * nghttpd: Read /etc/mime.types to set content-type header field - * nghttp: Record request method to output it in har correctly - * nghttp: Use method given in -H with ":method" in HTTP Upgrade -- Drop nghttp2-1.4.0-fix-tests.patch (now in upstream) - -- Enable spdy and more example applications - -- Update to 1.4.0: - * lib: Don't always expect dynamic table size update. - * lib: Shrink to the minimum table size seen in local SETTINGS. - * lib: Add new error code NGHTTP2_ERR_PAUSE to send_data_callback. - * lib: Avoid excessive WINDOW_UPDATE queuing. - * lib: Return fatal error if flooding is detected to close - session immediately. - * lib: Return type of nghttp2_submit_trailer is int. - * lib: Don't send WINDOW_UPDATE with 0 increment. - * lib: Fix bug that headers in CONTINUATION were ignored after - HEADERS with padding. - * package: Use -fvisibility=hidden for internal functions. - * package: Show more information in configure summary. - * package: Add PIDFile directive to systemd service. - * package: Fix daemon upgrade when running under systemd. - * app: Compile with BoringSSL. - * nghttp: Allow multiple -c option occurrence, and take min and - last value. - * nghttpd: Fix leak when server failed to listen to given port. - * nghttpx: Add TLS dynamic record size behaviour command line - options. - * nghttpx: Reduce default timeouts for read sockets to 1m. - * nghttpx: Fix bug that PUT is replaced with POST. - * nghttpx: Change mruby script handling. - * nghttpx: Added support for RFC 7413 (TCP Fast Open) on nghttpx - proxy listening connections. - * nghttpx: Add neverbleed support. - * h2load: Don't DOS our server! - * h2load: Use duration syntax for timeouts. - * h2load: Support subsecond rate period. - * h2load: Simplify rate mode. - * h2load: Add option for user-definable rate period. - * h2load: Reuse SSL/TLS session. - * h2load: Reconnect server on connection: close. - * h2load: Don't exit in the case of no ALPN protocol overlap. - * integration: Update go's http2 package URI. -- Add missing baselibs.conf. -- Add nghttp2-1.4.0-fix-tests.patch from commit 4825009. -- Small spec cleanup. - -- Update to 1.3.4 - * Make traditional init script fail if new config file is broken - (Patch from Janusz Dziemidowicz) - * nghttpx-logrotate: Don't use killall since we have multiple - processes - * nghttpx: Fix improper signal handling -- Changes for 1.3.3 - * Fix bug in padding handling of DATA frame - * Use hash table for dynamic table lookup - * More warning flags for --enable-werror - * Update mruby - * h2load: HTTP/1.1 support (Patch from Lucas Pardue) - * nghttpx: Do not try to set TCP_NODELAY when frontend is an - UNIX socket (Patch from Janusz Dziemidowicz) - * nghttpx: Chown UNIX domain socket to user specified as --user - * nghttpx: Split monolithic one process into control and worker - processes - * nghttpx: Handle SSL/TLS data following PROXY protocol line -- Changes for 1.3.2 - * Check header block limit after new stream is opened - * nghttp: Show error if HEADERS frame cannot be sent for - whatever reason - * nghttpx: Fix assertion failure on TLS handshake - * nghttpx: Add x-http2-push header field for pushed resource - * nghttpx: Fix compile error with --disable-threads - -- Update to 1.3.1 - * Avoid usage of typeof and replace __builtin_offsetof with - offsetof - * Honor stream->weight even if stream->last_writelen is 0 - * Compile third-party libraries if hpack-tools is enabled - * nghttpx-init: Start nghttpx with --daemon - * Bundle sphinxcontrib.rubydomain https://bitbucket.org/birkenfeld/sphinx-contrib/src/default/rubydomain/ - * Bundle mruby - * h2load: Record TTFB on first byte of response body, rather - than first socket read - * h2load: Improve checking for timing script input, prevent - false positive in certain situations - * nghttpx: Implement PROXY protocol version 1 - (--accept-proxy-protocol option) - * nghttpx: Allow link header server push for HTTP/2 backend - as well - * nghttpx: Don't initiate push if client disabled push - * nghttpx: Allow absolute URI in Link header field for push - * nghttpx: Fix crash with multi workers and QUIT signal - * nghttpx: Add mruby support which is disabled by default - (use --with-mruby configure option to enable it) - * nghttpx: Drop connection before TLS finish if h2 requirement - is not fulfilled -- Fix typo in previous changelog entry - -- Update to 1.3.1 - * Limit the number of incoming reserved (remote) streams - * Add stream public API - * Rewrite priority tree handling - * Fix parallel make distcheck - * Define it and itprep recursive target if - AM_EXTRA_RECURSIVE_TARGETS is defined - * fetch-ocsp-response: Handle spurious openssl exist status 0 - * nghttpx: Use nghttp2::ssl::DEFAULT_CIPHER_LIST for backend TLS - connection - * nghttpx: Don't allow blacked listed cipher suites for HTTP/2 - connection - * nghttpx: better handle /dev/stderr and /dev/stdout (Patch from - Tomasz Buchert) - * nghttpd: GOAWAY if SSL/TLS requirements for HTTP/2 are not met - * nghttpd: Return date header field for 304 - * nghttpd: Support HEAD request - * h2load: Add Timing-script and base URI support (Patch from - Lucas Pardue) - * h2load: Add timeout options (Patch from Nora) -- Fix typo in changelog - -- Update to 1.2.1 - * doc: Reword the HPACK tutorial (Patch from Tom Harwood) - * nghttpx: Fix stability issues - * h2load: Fix crash if -r > -n - -- Update to 1.2.0 - * Fix crash if response or data is submitted to closing stream - * Header table size UINT32_MAX must be accepted - * Use PROTOCOL_ERROR against DATA sent to idle stream - * Allow multiple in-flight SETTINGS - * Strictly check occurrence of dynamic table size update - * Fix configure warning that 'missing' is missing or too old - * Fix rm: cannot remove ‘*.rst’: No such file or directory when - "make clean" (Patch from Alexis La Goutte) - * doc: Reword some of the server and client tutorial (Patch - from Tom Harwood) - * src: Remove monotonic_clock replacement macro for gcc-4.6 - * nghttpx: Add TLS ticket key sharing among nghttpx instances - using memcached - * nghttpx: Add shared session cache using memcached - * nghttpx: Set SSL/TLS session timeout to 12 hours - * nghttpx: Enable session resumption on HTTP/2 backend - * nghttpx: Don't rewrite host header field by default - * nghttpx: Generate new ticket key every 1hr and its life time - is now 12hrs - * nghttpx: Don't reuse backend connection if it is not clean - * nghttpx: Add AES-256-CBC encryption for TLS session ticket - * nghttpd: Fix the bug that 304 response has non-empty body - * h2load: Add -r and -C options to h2load (Patch from - Nora Shoemaker) -- Changes for 1.1.2 - * Fix linker error with libnghttp2_asio - * Allow custom installation location for Python bindings -- Drop no longer needed missing_nghttp2_timegm.patch - -- Update to 1.1.1 - * nghttpx: Fix various stability issues and memory leak bug -- Changes for 1.1.0 - * Fix DATA is not consumed if nghttp2_http_on_data_chunk failed - * nghttp2_submit_response and nghttp2_submit_headers may return - * NGHTTP2_ERR_DATA_EXIST - * msvc build fixes and enchantments (Patch from Gabi Davar) - * Compile with IRIX gcc-4.7 (Patch from Klaus Ziegler) - * nghttp: Add --max-concurrent-streams option - * nghttp: Add comment on HAR on pushed objects (Patch from - acesso) - * nghttpx: Add --include option to read additional configuration - from given file - * nghttpx: Add backend routing based on request host and path by - extending -b option - * nghttpx: Allow log variable to be enclosed by curly braces for - disambiguation - * nghttpx: Add log variables related to SSL/TLS connection - * h2load: Add --ciphers option -- Add patches - * missing_nghttp2_timegm.patch to fix building of asio library - * nghttp2-remove-python-build.patch to fix python bindings - installation when autotools are used - -- Update to 1.0.5 - * Add STREAM_DEP_DEBUG macro switch to enable runtime validation - of depedency tree - * Fix another bug in priority handling; sibling's item is not - queued when ancestor's item is detached - * nghttpx: Fix crash with --http2-bridge and both frontend and - backend TLS - -- Update to 1.0.4 - * Fix assertion failure in stream_update_dep_on_detach_item - (GH-264) -- Changes for 1.0.3 - * Fix bug that idle self-depending PRIORITY is not handled - gracefully - * Optimize dependency based priority code to Firefox style tree - * enable third-party for asio_lib too (Patch from Mike - Frysinger) - * fetch-ocsp-response: Support LibreSSL, and include port in - ocsp_host - * src: Support compile with LibreSSL - * nghttpx: Fix bug that x-forwarded-proto header field does not - reflect frontend scheme on HTTP/2 backend - * nghttpx: Validate :path on SPDY frontend - -- Update to 1.0.2 - * Fix bug that data are not consumed for connection in race - condition (GH-253) - * Define NGHTTP2_EXTERN to __declspec(dllimport) when using - nghttp2 for Windows build - * Translate fetch-ocsp-response into Python - * libevent-client: Fix bug that path is broken if URI does not - contain path part - * python: Call on_close callback when connection is lost for - server session - * python: Expose client certificate, if available (Patch from - Fabian Wiesel) - * python: Catch and log failure to set TCP_NODELAY (Patch from - Fabian Wiesel) - * nghttpx: Add --add-request-header option - * nghttpx: Make WebSocket upgrade work - * nghttpx: Fix bug that END_STREAM is not set in backend for - POST with Upgrade - * nghttpx: Don't send "Expect" header field twice - -- Update to 1.0.1 - * Include stdint.h instead of inttypes.h when compiled with MSVC - < 2013 - * Fix invalid memory free on out-of-memory handling - * integration: Use our own copy of golang spdy package - * android: Don't link zlib bundled with android NDK - * Dockerfile.android: Update NDK ver, and ubuntu; build and link - zlib - * src, examples: Fix up OpenSSL initialization - * nghttpx: Allow HTTP Upgrade from POST request if response - header has not been sent to the client - * nghttpx: Fix bug that PUSH_PROMISE is sent after associated - response HEADERS - * nghttpd: Close connection after settings timeout and GOAWAY - was sent - * h2load: Fix bug that NPN fails if ALPN is enabled - -- Update to 1.0.0 - * v1.0.0 introduced backward incompatible changes from 0.7 - series. Read https://nghttp2.org/documentation/package_README.html#migration-from-v0-7-15-or-earlier - to migrate from older version to this latest version. -- Changes for 0.7.15 - * Hopefully, this is the last release for 0.7.x series. - Development continues in 1.x series. - * Access violation in buffers (GH-232) (Patch from Etienne Cimon) - * Retry finding jemalloc lib by je_malloc_stats_print (GH-233) - * inflatehd: Fix crash if 'wire' value is not string (GH-235) - * nghttpx: Revert 585af93 to fix crash with TLS (GH-234) - * nghttpd: Add --echo-upload option to send back request body - -- Update to 0.7.14 - * Fix global-buffer-overflow in HPACK code - * Fix doc for nghttp2_select_next_protocol - * Fix bug that promised stream was not reset on decompression - error - * Add systemd and upstart configuration file for nghttpx - (Patch from Zhuoyun Wei) - * Improve nghttpx logrotate configuration file (Patch from - Zhuoyun Wei) - * Update sphinx_rtd_theme - * h2load: Update h2load to give connect time and ttfb stats - (Patch from ericcarlschwartz) - * nghttpd: Add -m, --max-concurrent-streams option - * nghttpx: Log absolute URI for HTTP/2 or client proxy request - * nghttpx: Add --header-field-buffer and --max-header-fields - options - * nghttp: Fix assertion error if very large value is given to -t - -- Update to 0.7.13 - * Fix bug that promised stream was not reset by returning - NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from - nghttp2_on_header_callback. Instead, associated stream was reset. - * Allow NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from - nghttp2_on_begin_headers_callback - * h2load: Effectively disable flow control by setting large - window size - * asio: Graceful shutdown and joinable server (Patch from - Xiaoguang Sun) - -- Update to 0.7.12 - * Fix bug that nghttp2_session_set_next_stream_id accepts invalid - stream_id - * HPACK: Rewrite static header table handling - * HPACK: Never index authorization and small cookie header field - * Don't install libnghttp2_asio headers if they are disabled - * doc: Specify program directive so that hyperlink to option is - correctly pointed to the intended location - * asio: client: Call error_cb on error occurred in do_read and - do_write (Fixes GH-207) - * nghttp: Add --no-push option to disable server push - * nghttp: Show stream ID in statistics output - * nghttp: Remove --dep-idle option - * nghttp: Use same priority anchor nodes as Firefox does - * nghttpx: Don't push resource if link header has non empty - loadpolicy - * nghttpx: Add logging for somewhat important events (logs, - tickets, and ocsp) - * nghttpx: Set Downstream to stream user data on HTTP Upgrade - to h2 - -- Update to 0.7.11 - * nghttpx: Fix waitpid race condition in ocsp response update - * nghttp: Consider user-provided :authority header field for SNI - as well as host header field -- Changes for 0.7.10 - * Make sure that nghttp2 license is MIT license - * Add nghttp2_session_consume_{connection,stream} to consume - bytes independent - * Add nghttp2_send_data_callback to send DATA payload without - copying "static inline" fix for build with VS2013 (Patch from - Remo E) - * Update lib/Makefile.msvc (Patch from Remo E) - * Remove dependency on libws2_32 on Windows build - * Define NGHTTP2_EXTERN macro to export function for Windows - build - * doc: Generate API doc per function - * python: Add async body generation support - * python: Fix pseudo-header field ordering bug - * nghttpx: Redirect stderr to errorlog file - * nghttpx: Fix bug that data buffered in SSL object are not - read - * nghttpx: Remove --tls-ctx-per-worker option - * nghttpx: Add OCSP stapling feature - -- Enable python bindings -- Update to 0.7.9 - * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) - * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) - * h2load: Fix crash if -t > -c - * h2load: Add -d option to upload data to server - * nghttpx: Forward only "trailers" keyword in te when forwarding HTTP/2 backend - * nghttpx: Fix PUSH_PROMISE header field corruption [GH-194] - * nghttpx: Fix te header field is duplicated when forwarding HTTP/2 backend - * nghttp, nghttpd: Add --hexdump option to hexdump incoming traffic. - * examples: Place AM_CPPFLAGS first to use in-package header files first [GH-192] -- Changes for 0.7.8 - * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) - * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) - * Validate :path header field for http or https URI scheme - * NULL-terminate header field name and value presented by callback - * README.rst: Cleaned up the grammar a bit (Patch from Ross Smith II) - * h2load: fix for segfault by reserving correct worker count (Patch from Stefan Eissing) - -- Avoid shipping documentation redundantly. Set RPM groups. - -- Fix rpm group - -- Update to 0.7.5 - * Implements h2-14 protocol - (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14) - * Implements HPACK 09 - (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09) - * Validate HTTP semantics by default - * Add nghttp2_option_set_no_http_messaging() API function - * Update http-parser - * nghttp, nghttpd, nghttpx: Use "sensitive" to indicate - "never indexed" header field - * nghttp, nghttpd, nghttpx, h2load: Select/announce h2 in - ALPN/NPN - * nghttp: Fix unaligned field output in --stat - * nghttp: Fix -H does not work with -u upgrade request - * nghttp: Update resource timing terminology according to - Resource Timing TR - * nghttpd: Add -a option which takes an address parameter that - allows nghttpd to bind to a non-default address. Patch - from Brian Card - * nghttpx: Use omit minor version in case of HTTP/2 in via - header and access log - * nghttpx: Support UNIX domain socket on both frontend and backend - * nghttpx: Fix crash in http/1 backend when backend returns more - bytes than CL - * nghttpx: Cast configuration value to rlim_t to avoid compile - error on 32bit - * nghttpx: Fix 1 second delay in HTTP/2 backend connection - * nghttpx: Fix request re-submission bug in HTTP/2 backend - * asio-sv2: Fix compile error with OS X - -- Initial packaging of 0.7.4 - openslp -- Implement automatic active discovery retries so that DAs do - not get dropped if they are not reachable for some time - [bnc#1166637] [bnc#1184008] - new patch: openslp.unicastactivediscovery.diff - -- Add missing group(daemon) prerequires to the openslp-server - package [bnc#1165050] -- Add missing openslp requires to the openslp-server package - [bnc#1165121] - -- Add missing zlib build dependency, which used to be pulled in - by libopenssl-devel. The package fails to build since the openssl - upgrade to 1.1.1 (bsc#1149792) - -- Use tcp connects to talk with other DAs [bnc#1117969] - new patch: openslp.tcpknownda.diff -- Fix segfault in predicate match if a registered service has - a malformed attribute list [bnc#1136136] - new patch: openslp.nullattr.diff - -- Fix memory corruption when the sendbuf gets reallocated - [bnc#1090638] [CVE-2017-17833] - new patch: openslp.sendbuf_move.diff -- Fix out of bounds reads in message parsing - new patch: openslp.parseoob.diff - -- move systemd notification before the chroot() call, otherwise - the notify function cannot reach systend's unix domain socket - [bnc#1089097] - -- Use %license (boo#1082318) -- fix slpd using the peer address as local address for TCP - connections [bnc#1076035] - new patch: openslp.localaddr.diff -- use tcp connections for unicast requests [bnc#1080964] - new patch: openslp.tcpunicast.diff - -- add separate source openslp.logrotate.systemd to - use systemctl reload for logrotate configuration - -- Add support for OpenSSL 1.1. Commit from upstream [bsc#1042665] - new patch: openslp.openssl-1.1.diff - -- Also update openslp.sd_notify.diff to use the new systemd lib - -- Replace pkgconfig(libsystemd-*) with pkgconfig(libsystemd) - Nowadays pkgconfig(libsystemd) replaces all libsystemd-* libs, which - are obsolete. - -- Fix bounds check in SLPFoldWhiteSpace - [bnc#1001600] [CVE-2016-7567] - new patch: openslp.foldws.diff - -- remove convenience code as changes bytes in the message - buffer breaking the verification code [bnc#994989] - new patch: openslp.noconvenience.diff -- fix storage handling in predicate code, it clashed with gcc's - fortify_source extension [bnc#909195] - new patch: openslp.predicatestorage.diff -- bring back allowDoubleEqualInPredicate option - new patch: openslp.doubleequal.diff -- fix bug in openslp.initda.diff patch -- fix rcopenslp helper -- fix _xrealloc not checking the malloc return value - [bnc#980722] [CVE-2016-4912] - new patch: openslp.xrealloc.diff - -- Do not depend on fillup and insserv if the package build with - systemd support; the dependencies are not needed in that case - openssh +- Add openssh-dbus.sh, openssh-dbus.csh, openssh-dbus.fish: Make ssh + connections update their dbus environment (bsc#1179465). + pam +- Update pam_motd to the most current version. This fixes various issues + and adds support for mot.d directories [jsc#PED-1712]. + * Added: pam-ped1712-pam_motd-directory-feature.patch + +- Do not include obsolete libselinux header files flask.h and + av_permissions.h. + [bsc#1197794, pam-bsc1197794-do-not-include-obsolete-header-files.patch] + +- Between allocating the variable "ai" and free'ing them, there are + two "return NO" were we don't free this variable. This patch + inserts freaddrinfo() calls before the "return NO;"s. + [bsc#1197024, pam-bsc1197024-free-addrinfo-before-return.patch] + +- Define _pam_vendordir as "/%{_sysconfdir}/pam.d" + The variable is needed by systemd and others. + [bsc#1196093, macros.pam] + +- Corrected a bad directive file which resulted in + the "securetty" file to be installed as "macros.pam". + [pam.spec] + +- Added tmpfiles for pam to set up directory for pam_faillock. + [pam.conf] + +- Corrected macros.pam entry for %_pam_moduledir + Cleanup in pam.spec: + * Replaced all references to ${_lib}/security in pam.spec by + %{_pam_moduledir} + * Removed definition of (unused) "amdir". + +- Added new file macros.pam on request of systemd. + [bsc#1190052, macros.pam] + +- Added pam_faillock to the set of modules. + [jsc#sle-20638, pam-sle20638-add-pam_faillock.patch] + +- In the 32-bit compatibility package for 64-bit architectures, + require "systemd-32bit" to be also installed as it contains + pam_systemd.so for 32 bit applications. + [bsc#1185562, baselibs.conf] + +- If "LOCAL" is configured in access.conf, and a login attempt from + a remote host is made, pam_access tries to resolve "LOCAL" as + a hostname and logs a failure. + Checking explicitly for "LOCAL" and rejecting access in this case + resolves this issue. + [bsc#1184358, bsc1184358-prevent-LOCAL-from-being-resolved.patch] + +- pam_limits: "unlimited" is not a legitimate value for "nofile" + (see setrlimit(2)). So, when "nofile" is set to one of the + "unlimited" values, it is set to the contents of + "/proc/sys/fs/nr_open" instead. + Also changed the manpage of pam_limits to express this. + [bsc#1181443, pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch] + +- Add a definition for pamdir to pam.spec + So that a proper contents of macros.pam can be constructed. + [pam.spec] + +- Create macros.pam with definition of %_pamdir so packages which + are commonly shared between Factory and SLE can use this macro + [pam.spec] + +- pam_cracklib: added code to check whether the password contains + a substring of of the user's name of at least characters length + in some form. + This is enabled by the new parameter "usersubstr=" + See https://github.com/libpwquality/libpwquality/commit/bfef79dbe6aa525e9557bf4b0a61e6dde12749c4 + [jsc#SLE-16719, jsc#SLE-16720, pam-pam_cracklib-add-usersubstr.patch] + +- pam_xauth.c: do not free() a string which has been (successfully) + passed to putenv(). + [bsc#1177858, pam-bsc1177858-dont-free-environment-string.patch] + +- Initialize pam_unix pam_sm_acct_mgmt() local variable "daysleft" + to avoid spurious (and misleading) + Warning: your password will expire in ... days. + fixed upstream with commit db6b293046a + [bsc#1178727, pam-bsc1178727-initialize-daysleft.patch] + +- /usr/bin/xauth chokes on the old user's $HOME being on an NFS + file system. Run /usr/bin/xauth using the old user's uid/gid + Patch courtesy of Dr. Werner Fink. + [bsc#1174593, pam-xauth_ownership.patch] + +- Moved pam_userdb to a separate package pam-extra. + [bsc#1166510, pam.spec] + +- disable libdb usage and pam_userdb again, as this causes some license + conflicts. (bsc#1166510) + +- Add libdb as build-time dependency to enable pam_userdb module. + Enable pam_userdb.so + [jsc#sle-7258, bsc#1164562, pam.spec] + +- When comparing an incoming IP address with an entry in + access.conf that only specified a single host (ie no netmask), + the incoming IP address was used rather than the IP address from + access.conf, effectively comparing the incoming address with + itself. (Also fixed a small typo while I was at it) + [bsc#1115640, use-correct-IP-address.patch, CVE-2018-17953] + +- Remove limits for nproc from /etc/security/limits.conf + ie remove pam-limit-nproc.patch + [bsc#1110700, pam-limit-nproc.patch] + +- pam_umask.8 needed to be patched as well. + [bsc#1089884, pam-fix-config-order-in-manpage.patch] + +- Changed order of configuration files to reflect actual code. + [bsc#1089884, pam-fix-config-order-in-manpage.patch] + +- Use %license (boo#1082318) + +- Prerequire group(shadow), user(root) + +- Allow symbolic hostnames in access.conf file. + [pam-hostnames-in-access_conf.patch, boo#1019866] + +- Increased nproc limits for non-privileged users to 4069/16384. + Removed limits for "root". + [pam-limit-nproc.patch, bsc#1012494, bsc#1013706] + +- pam-limit-nproc.patch: increased process limit to help + Chrome/Chromuim users with really lots of tabs. New limit gets + closer to UserTasksMax parameter in logind.conf + +- Add doc directory to filelist. + +- Remove obsolete README.pam_tally [bsc#977973] + +- Update Linux-PAM to version 1.3.0 +- Rediff encryption_method_nis.diff +- Link pam_unix against libtirpc and external libnsl to enable + IPv6 support. + +- Add /sbin/unix2_chkpwd (moved from pam-modules) + +- Remove (since accepted upstream): + - 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch + - 0002-Remove-enable-static-modules-option-and-support-from.patch + - 0003-fix-nis-checks.patch + - 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch + - 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch + +- Add 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch + - Replace IPv4 only functions + +- Fix typo in common-account.pamd [bnc#959439] + +- Add 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch + - readd PAM_EXTERN for external PAM modules + +- Add 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch +- Add 0002-Remove-enable-static-modules-option-and-support-from.patch +- Add 0003-fix-nis-checks.patch + +- Add folder /etc/security/limits.d as mentioned in 'man pam_limits' + +- Update to version 1.2.1 + - security update for CVE-2015-3238 + +- Update to version 1.2.0 + - obsoletes Linux-PAM-git-20150109.diff + +- Re-add lost patch encryption_method_nis.diff [bnc#906660] + +- Update to current git: + - Linux-PAM-git-20150109.diff replaces Linux-PAM-git-20140127.diff + - obsoletes pam_loginuid-log_write_errors.diff + - obsoletes pam_xauth-sigpipe.diff + - obsoletes bug-870433_pam_timestamp-fix-directory-traversal.patch + +- increase process limit to 1200 to help chromium users with many tabs + patterns-base +- Don't recommding glibc-locale-32bit for the -32bit pattern, it causes + dep-resolving trouble since it is no longer available in 32bit + poppler +- Configure $CXX to the correct compiler version on codestreams + that have gcc12, such as SLE-15-SP5. [bsc#1206019] + +- The development compiler in SLE 15 has been updated to gcc12 via + maintenance update. Therefore adjusting the compiler version for + SLE 15 in the spec file, to not build with gcc11 anymore. This + resolves bsc#1206019. + +- update to 22.12.0: + core: + * Form::addFontToDefaultResources: Be stubborn in finding a font we can use. Issue #1272 + +- update to 22.11.0: + core: + * CairoOutputDev: Update font after restore + * Protect against broken files + * Small code refactoring + +- update to 22.10.0: + * SplashOutputDev::tilingPatternFill: Properly restore CTM on failure. + * Protect against malformed files + * Refactor code to not use strndup + * Other small code refactoring + utils: + * pdftoppm: Avoid round-off errors when determining raster dimensions + * pdftocairo: Avoid round-off errors when determining raster dimensions + * pdftotext: Simplify memory handling + qt: + * Take into account flagNoView when getting/setting the visible status. + KDE bug #456313 + +- update to 22.09.0 (CVE-2022-38784): + * Splash: Do not truncate line dash patterns with more than 20 entries. Issue #1281 + * Various signature related improvements + * Fix FormField::getFullyQualifiedName in some scenarios + * Splash: Small optimization on dash pattern handling + * JBIG2Stream::readHalftoneRegionSeg: Fix potential memory leak + * Fix crashes on malformed files. Including CVE-2022-38784 + * Fix string formatting in error reporting + * Fix two potential memory leaks in poppler_document_create_dests_tree + * pdfsig: List signature field names when listing signature information + * pdfsig: Add support for specifying signature by field name + * pdfunite: Fix crashes on malformed files + * pdfunite: Fix potential memory leak of docs +- Bump soname following upstreams changes. + +- update to 22.08.0: + * Fix rendering text on some forms + * CairoOutputDev: Support Type3 charprocs having Resources + * Fix crashes on malformed files + +- update to 22.07.0: + * Fix crash when filling in forms in some files. Issue #1258 + * Fix first lines of Annotations sometimes being cut off. Issue #1246 + * Signatures: Don't crash if the signature doesn't have a common name + * CairoFontEngine: increment font_face reference when retrieving from the cache + * Add ToUnicode support for lessorequalslant and greaterorequalslant + glib: + * Add support for stamp annotation +- add gpg keyring validation for the release tarball +- drop da226d346e691f7545d995d6761d43e08855a3b7.patch (upstream) + +- Add da226d346e691f7545d995d6761d43e08855a3b7.patch -- + CairoFontEnginer: increment font_face reference when retrieving + from the cache; this fixes crashes with certain pdfs + [glgo#GNOME/evince#1808, glfo#poppler/poppler#1212]. + +- update to 22.06.0: + core: + * Forms: Fix crash in forms with their own DR + * Refactor CairoFontEngine caching + * CairoOutputDev: preserve text color when drawing type 3 glyphs + * Windows: font code simplification + * Minor code improvements + * pdfattach: Assume filename is utf8 encoded + * pdftohtml: Fix type 3 font size calculation +- drop poppler-cairo_font_face_t-incorrect-cacheing.patch (upstream) + +- Add poppler-cairo_font_face_t-incorrect-cacheing.patch -- Fix + missing symbols after reloading some pdf files; patch taken from + upstream merge request [glfo#poppler/poppler#1247]. + +- update to 22.05.0: + * Annotations: Make sure we embed fonts for the FreeText annots + * Forms: Make sure we embedd fonts as needed + * Signatures: Make sure we embed the needed fonts + * CairoOutputDev: color type 3 fonts + * fix two bugs in multiline find_text() + * code improvements + * pdftotext: added TSV mode + * HtmlOutputDev: don't use png.h + * Use time_t for time + * Add page_transition::durationReal + * Pass leftFontSize down to `FormWidgetSignature::signDocumentWithAppearence` + +- update to 22.04.0: + * Fix underline sometimes being drawn only partially + * Fix Adobe Reader not reading some of the contents we write correctly + * Fix code that workarounds some broken-ish files + * FoFiTrueType: Parse CFF2 fonts too + * FoFiTrueType: Support cmap types 2 and 13 + * Fix a few small memory leaks + * code improvements + qt: + * Handle SaveAs named action + * Annotations: don't change the text color when changing the font + utils: + * pdftotext: print creation and modification date when using htmlmeta param + glib: + * Fix returning internal data of temporary strings + cpp: + * Fix code incompatibility with MSVC + build system: + * poppler internal library is no longer forced to static on MSVC + * Error out if iconv is not available and the cpp frontend is enabled + * Require FreeType 2.8 + +- Update to version 22.03.0: + + core: + - Signature: + . Fix finding Signatures that are in Pages not not in the + global the Forms object + . Improve getting the path to the firefox certificate + database + - Splash: Fix rendering of some joints. + - Fix get_poppler_localdir for relocatable Windows builds + - Minor code improvements + + qt: Minor code improvements + + utils: pdfimages: Fix the wrong Stream being passed for + drawMaskedImage + + build system: Small code improvements +- Changes from version 22.02.0: + + core: + - Signature: + . Add a way to detect unsigned FormFieldSignature + . Suport background image when using left and right text + . Fix path where to search for Firefox NSS in Windows + . Fix NSS code to work correctly in Windows/Android + - Count only signature fields in PDFDoc::getNumSignatureFields + - Minor code improvements + + qt: + - Allow signing unsigned signature fields + - Allow passing a background image for the signature when + signing + - Allow passing the document password when signing + - Fix leftFontSize being ignored when signing + + glib: + - Try with utf8 password if latin1 fails + - New method for getting all signature fields of a document + - Fix compile with MSVC + + utils: pdfsig: Fix compile with MSVC + + build system: Fix NSS cmake check for MSVC +- Bump poppler sover following upstream changes. + poppler:qt5 +- Configure $CXX to the correct compiler version on codestreams + that have gcc12, such as SLE-15-SP5. [bsc#1206019] + +- The development compiler in SLE 15 has been updated to gcc12 via + maintenance update. Therefore adjusting the compiler version for + SLE 15 in the spec file, to not build with gcc11 anymore. This + resolves bsc#1206019. + +- update to 22.12.0: + core: + * Form::addFontToDefaultResources: Be stubborn in finding a font we can use. Issue #1272 + +- update to 22.11.0: + core: + * CairoOutputDev: Update font after restore + * Protect against broken files + * Small code refactoring + +- update to 22.10.0: + * SplashOutputDev::tilingPatternFill: Properly restore CTM on failure. + * Protect against malformed files + * Refactor code to not use strndup + * Other small code refactoring + utils: + * pdftoppm: Avoid round-off errors when determining raster dimensions + * pdftocairo: Avoid round-off errors when determining raster dimensions + * pdftotext: Simplify memory handling + qt: + * Take into account flagNoView when getting/setting the visible status. + KDE bug #456313 + +- update to 22.09.0 (CVE-2022-38784): + * Splash: Do not truncate line dash patterns with more than 20 entries. Issue #1281 + * Various signature related improvements + * Fix FormField::getFullyQualifiedName in some scenarios + * Splash: Small optimization on dash pattern handling + * JBIG2Stream::readHalftoneRegionSeg: Fix potential memory leak + * Fix crashes on malformed files. Including CVE-2022-38784 + * Fix string formatting in error reporting + * Fix two potential memory leaks in poppler_document_create_dests_tree + * pdfsig: List signature field names when listing signature information + * pdfsig: Add support for specifying signature by field name + * pdfunite: Fix crashes on malformed files + * pdfunite: Fix potential memory leak of docs +- Bump soname following upstreams changes. + +- update to 22.08.0: + * Fix rendering text on some forms + * CairoOutputDev: Support Type3 charprocs having Resources + * Fix crashes on malformed files + +- update to 22.07.0: + * Fix crash when filling in forms in some files. Issue #1258 + * Fix first lines of Annotations sometimes being cut off. Issue #1246 + * Signatures: Don't crash if the signature doesn't have a common name + * CairoFontEngine: increment font_face reference when retrieving from the cache + * Add ToUnicode support for lessorequalslant and greaterorequalslant + glib: + * Add support for stamp annotation +- add gpg keyring validation for the release tarball +- drop da226d346e691f7545d995d6761d43e08855a3b7.patch (upstream) + +- Add da226d346e691f7545d995d6761d43e08855a3b7.patch -- + CairoFontEnginer: increment font_face reference when retrieving + from the cache; this fixes crashes with certain pdfs + [glgo#GNOME/evince#1808, glfo#poppler/poppler#1212]. + +- update to 22.06.0: + core: + * Forms: Fix crash in forms with their own DR + * Refactor CairoFontEngine caching + * CairoOutputDev: preserve text color when drawing type 3 glyphs + * Windows: font code simplification + * Minor code improvements + * pdfattach: Assume filename is utf8 encoded + * pdftohtml: Fix type 3 font size calculation +- drop poppler-cairo_font_face_t-incorrect-cacheing.patch (upstream) + +- Add poppler-cairo_font_face_t-incorrect-cacheing.patch -- Fix + missing symbols after reloading some pdf files; patch taken from + upstream merge request [glfo#poppler/poppler#1247]. + +- update to 22.05.0: + * Annotations: Make sure we embed fonts for the FreeText annots + * Forms: Make sure we embedd fonts as needed + * Signatures: Make sure we embed the needed fonts + * CairoOutputDev: color type 3 fonts + * fix two bugs in multiline find_text() + * code improvements + * pdftotext: added TSV mode + * HtmlOutputDev: don't use png.h + * Use time_t for time + * Add page_transition::durationReal + * Pass leftFontSize down to `FormWidgetSignature::signDocumentWithAppearence` + +- update to 22.04.0: + * Fix underline sometimes being drawn only partially + * Fix Adobe Reader not reading some of the contents we write correctly + * Fix code that workarounds some broken-ish files + * FoFiTrueType: Parse CFF2 fonts too + * FoFiTrueType: Support cmap types 2 and 13 + * Fix a few small memory leaks + * code improvements + qt: + * Handle SaveAs named action + * Annotations: don't change the text color when changing the font + utils: + * pdftotext: print creation and modification date when using htmlmeta param + glib: + * Fix returning internal data of temporary strings + cpp: + * Fix code incompatibility with MSVC + build system: + * poppler internal library is no longer forced to static on MSVC + * Error out if iconv is not available and the cpp frontend is enabled + * Require FreeType 2.8 + +- Update to version 22.03.0: + + core: + - Signature: + . Fix finding Signatures that are in Pages not not in the + global the Forms object + . Improve getting the path to the firefox certificate + database + - Splash: Fix rendering of some joints. + - Fix get_poppler_localdir for relocatable Windows builds + - Minor code improvements + + qt: Minor code improvements + + utils: pdfimages: Fix the wrong Stream being passed for + drawMaskedImage + + build system: Small code improvements +- Changes from version 22.02.0: + + core: + - Signature: + . Add a way to detect unsigned FormFieldSignature + . Suport background image when using left and right text + . Fix path where to search for Firefox NSS in Windows + . Fix NSS code to work correctly in Windows/Android + - Count only signature fields in PDFDoc::getNumSignatureFields + - Minor code improvements + + qt: + - Allow signing unsigned signature fields + - Allow passing a background image for the signature when + signing + - Allow passing the document password when signing + - Fix leftFontSize being ignored when signing + + glib: + - Try with utf8 password if latin1 fails + - New method for getting all signature fields of a document + - Fix compile with MSVC + + utils: pdfsig: Fix compile with MSVC + + build system: Fix NSS cmake check for MSVC +- Bump poppler sover following upstream changes. + python-libvirt-python +- Update to 8.10.0 + - Add all new APIs and constants in libvirt 8.10.0 + - jsc#PED-1472 + re2 +- update to 2022-12-01: + * Update to Unicode 15.0.0 data + * cmake install now installs the pkg-config file + rsyslog +- fix parsing of legacy config syntax (bsc#1205275) + * add: + 0001-testbench-add-test-for-legacy-permittedPeer-statemen.patch + 0002-imtcp-bugfix-legacy-config-directives-did-no-longer-.patch + +- remove $klogConsoleLogLevel setting from rsyslog.conf (bsc#1191833) + * this legacy setting from pre-systemd times is obsolete and can + block important systemd messages + speex -- Fix zero division error in read_samples (CVE-2020-23903 bsc#1192580) - speex-CVE-2020-23903.patch - -- Update to stable 1.2 release - -- make speex-devel require speexdsp-devel to be backward compatible - -- Use the tilde versioning scheme; we are no longer bound to use - the old hacks. - -- Move libname up and set it just once, easier for later on. - -- Split package to two separate packages - * speexdsp contains libraries - * speex contains tools -- Update to 1.2rc2 - * This release splits the speex codec library and the speex DSP - library into separate source trees. Both projects received - build-system improvements, bugfixes, and cleanup. The speex - codec's VBR tuning was improved, while the speexdsp resampler - got some NEON optimizations. -- Remove obsolete patch - * speex-1.0.5-warning-fix.diff - -- Add Source URL, see https://en.opensuse.org/SourceUrls - -- add libtool as buildrequire to avoid implicit dependency - -- Do not include build date in binaries... - -- obsolete old -XXbit packages - sudo +- Update to 1.9.12p1: + * Changes in 1.9.12p1: + - Sudo’s configure script now does a better job of detecting when + the -fstack-clash-protection compiler option does not work. + GitHub issue #191. + - Fixed CVE-2022-43995, a potential out-of-bounds write for passwords + smaller than 8 characters when passwd authentication is enabled. + This does not affect configurations that use other authentication + methods such as PAM, AIX authentication or BSD authentication. + - Fixed a build error with some configurations compiling host_port.c. + * Dropped sudo-CVE-2022-43995.patch + +- Added sudo-CVE-2022-43995.patch + * CVE-2022-43995 + * bsc#1204986 + * Fixed a potential heap-based buffer over-read when entering a password + of seven characters or fewer and using the crypt() password backend. + +- Update to 1.9.12: + * Dropped sudo-1.9.10-update_sudouser_to_utf8.patch + * Changes in Sudo 1.9.12: + * Fixed a bug when logging the command’s exit status in intercept mode. + The wrong command could be logged with the exit status. + * For ptrace-based intercept mode, sudo will now attempt to verify that + the command path name, arguments and environment have not changed from + the time when they were authorized by the security policy. The new + intercept_verify sudoers setting can be used to control this behavior. + * Fixed running commands with a relative path (e.g. ./foo) in intercept + mode. Previously, this would fail if sudo’s current working directory + was different from that of the command. + * Sudo now supports passing the execve(2) system call the NULL pointer + for the argv and/or envp arguments when in intercept mode. Linux treats + a NULL pointer like an empty array. + * The sudoers LDAP schema now allows sudoUser, sudoRunasUser and + sudoRunasGroup to include UTF-8 characters, not just 7-bit ASCII. + * Fixed a problem with sudo -i on SELinux when the target user’s home + directory is not searchable by sudo. GitHub issue #160. + * Neovim has been added to the list of visudo editors that support passing + the line number on the command line. + * Fixed a bug in sudo’s SHA384 and SHA512 message digest padding. + * Added a new -N (no-update) command line option to sudo which can be used + to prevent sudo from updating the user’s cached credentials. It is now + possible to determine whether or not a user’s cached credentials are + currently valid by running: + $ sudo -Nnv + and checking the exit value. One use case for this is to indicate in a + shell prompt that sudo is “active” for the user. + * PAM approval modules are no longer invoked when running sub-commands in + intercept mode unless the intercept_authenticate option is set. There is + a substantial performance penalty for calling into PAM for each command + run. PAM approval modules are still called for the initial command. + * Intercept mode on Linux now uses process_vm_readv(2) and process_vm_writev(2) + if available. + * The XDG_CURRENT_DESKTOP environment variable is now preserved by default. + This makes it possible for graphical applications to choose the correct + theme when run via sudo. + * On 64-bit systems, if sudo fails to load a sudoers group plugin, it will + use system-specific heuristics to try to locate a 64-bit version of the plugin. + * The cvtsudoers manual now documents the JSON and CSV output formats. + GitHub issue #172. + * Fixed a bug where sub-commands were not being logged to a remote log server + when log_subcmds was enabled. GitHub issue #174. + * The new log_stdin, log_stdout, log_stderr, log_ttyin, and log_ttyout + sudoers settings can be used to support more fine-grained I/O logging. + The sudo front-end no longer allocates a pseudo-terminal when running a + command if the I/O logging plugin requests logging of stdin, stdout, or + stderr but not terminal input/output. + * Quieted a libgcrypt run-time initialization warning. This fixes Debian + bug #1019428 and Ubuntu bug #1397663. + * Fixed a bug in visudo that caused literal backslashes to be removed from + the EDITOR environment variable. GitHub issue #179. + * The sudo Python plugin now implements the find_spec method instead of the + the deprecated find_module. This fixes a test failure when a newer version + of setuptools that doesn’t include find_module is found on the system. + * Fixed a bug introduced in sudo 1.9.9 where sudo_logsrvd created the process + ID file, usually /var/run/sudo/sudo_logsrvd.pid, as a directory instead of a + plain file. The same bug could result in I/O log directories that end in six + or more X’s being created literally in addition to the name being used as a + template for the mkdtemp(3) function. + * Fixed a long-standing bug where a sudoers rule with a command line argument + of “”, which indicates the command may be run with no arguments, would also + match a literal "" on the command line. GitHub issue #182. + * Added the -I option to visudo which only edits the main sudoers file. Include + files are not edited unless a syntax error is found. + * Fixed sudo -l -U otheruser output when the runas list is empty. Previously, + sudo would list the invoking user instead of the list user. GitHub issue #183. + * Fixed the display of command tags and options in sudo -l output when the RunAs + user or group changes. A new line is started for RunAs changes which means we + need to display the command tags and options again. GitHub issue #184. + * The sesh helper program now uses getopt_long(3) to parse the command line options. + * The embedded copy of zlib has been updated to version 1.2.13. + * Fixed a bug that prevented event log data from being sent to the log server when + I/O logging was not enabled. This only affected systems without PAM or + configurations where the pam_session and pam_setcred options were disabled in + the sudoers file. + * Fixed a bug where sudo -l output included a carriage return after the newline. + This is only needed when displaying to a terminal in raw mode. Bug #1042. + tiff + * CVE-2022-3570 [bsc#1205422] + * CVE-2022-3598 [bsc#1204642] + + tiff-CVE-2022-3598,3570.patch + +- security update: util-linux +- libuuid continuous clock handling for time based UUIDs: + Prevent use of the new libuuid ABI by uuidd %post before update + of libuuid1 (bsc#1205646). +- util-linux-uuidd-prevent-root-owning.patch: Use chown --quiet + to prevent error message if /var/lib/libuuid/clock.txt does not + exist. + util-linux-systemd +- libuuid continuous clock handling for time based UUIDs: + Prevent use of the new libuuid ABI by uuidd %post before update + of libuuid1 (bsc#1205646). +- util-linux-uuidd-prevent-root-owning.patch: Use chown --quiet + to prevent error message if /var/lib/libuuid/clock.txt does not + exist. + wayland +- Update to release 1.21 + * This new release adds a new wl_pointer high-resolution scroll + event, adds a few new convenience functions, and contains a + collection of bug fixes. +- Drop wayland-shm-Close-file-descriptors-not-needed.patch + +- modernize spec file + * use licensedir + * use bcond + * use https:// urls + * spec-cleaner + +- Add wayland-shm-Close-file-descriptors-not-needed.patch: For + platforms that support mremap(), we don't need to hold file + descriptors all the time, because programs like Xwayland will + hold a lot of file descriptors and may crash, this patch close + file descriptors earlier for those platforms (bsc#1194190). + +- Update to release 1.20 + * A few protocol additions: wl_surface.offset allows clients to + update a surface's buffer offset independently from the + buffer, wl_output.name and description allow clients to + identify outputs without depending on xdg-output-unstable-v1. + * In protocol definitions, events have a new "type" attribute + and can now be marked as destructors. + * A number of bug fixes, including a race condition when + destroying proxies in multi-threaded clients. + +- Switch to meson buildsystem: Add meson BuildRequires and macros. +- Add generic c_compiler and c++_compiler BuildRequires, needed now + with the meson buildsystem. +- Use ldconfig_scriptlets macro for post(un) handling for + Tumbleweed and newer. + xen +- Update to Xen 4.17.0 FCS release (jsc#PED-1858) + xen-4.17.0-testing-src.tar.bz2 + * On x86 "vga=current" can now be used together with GrUB2's gfxpayload setting. Note that + this requires use of "multiboot2" (and "module2") as the GrUB commands loading Xen. + * The "gnttab" option now has a new command line sub-option for disabling the + GNTTABOP_transfer functionality. + * The x86 MCE command line option info is now updated. + * Out-of-tree builds for the hypervisor now supported. + * __ro_after_init support, for marking data as immutable after boot. + * The project has officially adopted 4 directives and 24 rules of MISRA-C, + added MISRA-C checker build integration, and defined how to document + deviations. + * IOMMU superpage support on x86, affecting PV guests as well as HVM/PVH ones + when they don't share page tables with the CPU (HAP / EPT / NPT). + * Support for VIRT_SSBD and MSR_SPEC_CTRL for HVM guests on AMD. + * Improved TSC, CPU, and APIC clock frequency calibration on x86. + * Support for Xen using x86 Control Flow Enforcement technology for its own + protection. Both Shadow Stacks (ROP protection) and Indirect Branch + Tracking (COP/JOP protection). + * Add mwait-idle support for SPR and ADL on x86. + * Extend security support for hosts to 12 TiB of memory on x86. + * Add command line option to set cpuid parameters for dom0 at boot time on x86. + * Improved static configuration options on Arm. + * cpupools can be specified at boot using device tree on Arm. + * It is possible to use PV drivers with dom0less guests, allowing statically + booted dom0less guests with PV devices. + * On Arm, p2m structures are now allocated out of a pool of memory set aside at + domain creation. + * Improved mitigations against Spectre-BHB on Arm. + * Support VirtIO-MMIO devices device-tree binding creation in toolstack on Arm. + * Allow setting the number of CPUs to activate at runtime from command line + option on Arm. + * Grant-table support on Arm was improved and hardened by implementing + "simplified M2P-like approach for the xenheap pages" + * Add Renesas R-Car Gen4 IPMMU-VMSA support on Arm. + * Add i.MX lpuart and i.MX8QM support on Arm. + * Improved toolstack build system. + * Add Xue - console over USB 3 Debug Capability. + * gitlab-ci automation: Fixes and improvements together with new tests. + * dropped support for the (x86-only) "vesa-mtrr" and "vesa-remap" command line options +- Drop patches contained in new tarball or invalid + 62fde97e-tools-libxl-Replace-deprecated-soundhw-on-QEMU-command-line.patch + 6306185f-x86-XSTATE-CPUID-subleaf-1-EBX.patch + 631b5ba6-gnttab-acquire-resource-vaddrs.patch + 63455f82-Arm-P2M-prevent-adding-mapping-when-dying.patch + 63455fa8-Arm-P2M-preempt-when-freeing-intermediate.patch + 63455fc3-x86-p2m_teardown-allow-skip-root-pt-removal.patch + 63455fe4-x86-HAP-monitor-table-error-handling.patch + 63456000-x86-tolerate-sh_set_toplevel_shadow-failure.patch + 6345601d-x86-tolerate-shadow_prealloc-failure.patch + 6345603a-x86-P2M-refuse-new-alloc-for-dying.patch + 63456057-x86-P2M-truly-free-paging-pool-for-dying.patch + 63456075-x86-P2M-free-paging-pool-preemptively.patch + 63456090-x86-p2m_teardown-preemption.patch + 63456175-libxl-per-arch-extra-default-paging-memory.patch + 63456177-Arm-construct-P2M-pool-for-guests.patch + 6345617a-Arm-XEN_DOMCTL_shadow_op.patch + 6345617c-Arm-take-P2M-pages-P2M-pool.patch + 634561aa-gnttab-locking-on-transitive-copy-error-path.patch + 634561f1-x86emul-respect-NSCB.patch + 6346e404-VMX-correct-error-handling-in-vmx_create_vmcs.patch + 6351095c-Arm-rework-p2m_init.patch + 6351096a-Arm-P2M-populate-pages-for-GICv2-mapping.patch + 635274c0-EFI-dont-convert-runtime-mem-to-RAM.patch + 635665fb-sched-fix-restore_vcpu_affinity.patch + 63569723-x86-shadow-replace-bogus-assertions.patch + 61dd5f64-limit-support-statement-for-Linux-and-Windows-frontends.patch + xsa326-01.patch + xsa326-02.patch + xsa326-03.patch + xsa326-04.patch + xsa326-05.patch + xsa326-06.patch + xsa326-07.patch + xsa326-08.patch + xsa326-09.patch + xsa326-10.patch + xsa326-11.patch + xsa326-12.patch + xsa326-13.patch + xsa326-14.patch + xsa326-15.patch + xsa326-16.patch + xsa412.patch + xsa414.patch + xsa415.patch + xsa416.patch + xsa417.patch + xsa418-01.patch + xsa418-02.patch + xsa418-03.patch + xsa418-04.patch + xsa418-05.patch + xsa418-06.patch + xsa418-07.patch + xsa419-01.patch + xsa419-02.patch + xsa419-03.patch + xsa421-01.patch + xsa421-02.patch + xorg-x11-server +- U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch + * XkbGetKbdByName use-after-free (ZDI-CAN-19530, CVE-2022-4283, + bsc#1206017) + +- U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch + * Server XTestSwapFakeInput stack overflow (ZDI-CAN 19265, + CVE-2022-46340, bsc#1205874) +- U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch + * Xi: return an error from XI property changes if verification + failed (no ZDI-CAN id, no CVE id, bsc#1205875) +- U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch + * Server XIChangeProperty out-of-bounds access (ZDI-CAN 19405, + CVE-2022-46344, bsc#1205876) +- U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch + * Server XIPassiveUngrabDevice out-of-bounds access (ZDI-CAN 19381, + CVE-2022-46341, bsc#1205877) +- U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch + * Server ScreenSaverSetAttributes use-after-free (ZDI-CAN 19404, + CVE-2022-46343, bsc#1205878) +- U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch + * Server XvdiSelectVideoNotify use-after-free (ZDI-CAN 19400, + CVE-2022-46342, bsc#1205879) + xwayland +- U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch + * XkbGetKbdByName use-after-free (ZDI-CAN-19530, CVE-2022-4283, + bsc#1206017) + +- U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch + * Server XTestSwapFakeInput stack overflow (ZDI-CAN 19265, + CVE-2022-46340, bsc#1205874) +- U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch + * Xi: return an error from XI property changes if verification + failed (no ZDI-CAN id, no CVE id, bsc#1205875) +- U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch + * Server XIChangeProperty out-of-bounds access (ZDI-CAN 19405, + CVE-2022-46344, bsc#1205876) +- U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch + * Server XIPassiveUngrabDevice out-of-bounds access (ZDI-CAN 19381, + CVE-2022-46341, bsc#1205877) +- U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch + * Server ScreenSaverSetAttributes use-after-free (ZDI-CAN 19404, + CVE-2022-46343, bsc#1205878) +- U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch + * Server XvdiSelectVideoNotify use-after-free (ZDI-CAN 19400, + CVE-2022-46342, bsc#1205879) + yast2 +- ArchFilter: Add new class to allow unified definition of hardware + architecture filter. The main use case is to read arch + specific configuration in various configuration files like + control.xml or d-installer.yml (gh#yast/d-installer#279) +- 4.5.20 + yast2-installation +- Use default depth for Xvnc, no longer enforce depth 16 + (bsc#1205585) +- 4.5.11 + yast2-kdump +- Support fadump values in output of kdumptools calibrate + (jsc#PED-1927) +- drop support for older kdumptools +- remove limits when kdumptools calibrate failed to allow user + enter anything +- 4.5.7 + +- Changed default of KDUMP_AUTO_RESIZE to "no" as documented in + https://github.com/openSUSE/kdump/blob/SLE-15-SP5/sysconfig.kdump.in#L57-L65 + (bsc#1205816) +- 4.5.6 + yast2-packager +- Merged PR https://github.com/yast/yast-packager/pull/623 + by Christopher Yeleighton : + Do not call [Install done] on aborted packages (boo#1203302) +- 4.5.9 + yast2-security +- Fixed wrong steps count causing a crash during saving (bsc#1205918) +- 4.5.4 + yast2-storage-ng +- Allow reusing LVM volume groups +- 4.5.15 + +- Proposal: new setting to prevent reusing LVM volume groups + (related to gh#yast/d-installer#264). + yast2-users +- Use a fallback if CHARACTER_CLASS cannot be read from /etc/login.defs + or /usr/etc/login.defs (bsc#1205783) +- 4.5.3 +