Removed rpms
============
- alsa-oss-32bit
- alsa-plugins-32bit
- busybox
- busybox-bzip2
- busybox-ed
- cyrus-sasl-gssapi-32bit
- dbus-1-glib-32bit
- fontconfig-32bit
- gettext-runtime-32bit
- glibc-32bit
- glibc-locale-32bit
- gnome-keyring-pam-32bit
- cyrus-sasl-32bit
- cyrus-sasl-crammd5-32bit
- cyrus-sasl-digestmd5-32bit
- cyrus-sasl-plain-32bit
- glibc-locale-base-32bit
- gnome-keyring-32bit
- krb5-32bit
- libFLAC8-32bit
- libacl1-32bit
- libaudit1-32bit
- libavahi-client3-32bit
- libavahi-common3-32bit
- libbz2-1-32bit
- libcrypt1-32bit
- libcups2-32bit
- libdbus-1-3-32bit
- libdevmapper1_03-32bit
- libexpat1-32bit
- libfontconfig1-32bit
- libgio-2_0-0-32bit
- libgmodule-2_0-0-32bit
- libgnutls30-32bit
- libidn2-0-32bit
- libjitterentropy3-32bit
- libkeyutils1-32bit
- libldb2-32bit
- liblua5_3-5-32bit
- liblzma5-32bit
- libmagic1-32bit
- libnettle8-32bit
- libnscd1-32bit
- libnss_usrfiles2-32bit
- libogg0-32bit
- libopenssl1_1-32bit
- libparted0-32bit
- libpci3-32bit
- libpcre1-32bit
- libpopt0-32bit
- libselinux1-32bit
- libssh4-32bit
- libsystemd0-32bit
- libtevent0-32bit
- libtirpc3-32bit
- libudev1-32bit
- libunistring2-32bit
- libverto1-32bit
- libvorbis0-32bit
- libvorbisenc2-32bit
- libxcb1-32bit
- pam-32bit
- pulseaudio-utils-32bit
- samba-winbind-libs-32bit
- libXau6-32bit
- libattr1-32bit
- libbrotlicommon1-32bit
- libbrotlidec1-32bit
- libcap2-32bit
- libcom_err2-32bit
- libcrack2-32bit
- libcurl4-32bit
- libdw1-32bit
- libelf1-32bit
- libffi7-32bit
- libfreetype6-32bit
- libgcrypt20-32bit
- libgdbm4-32bit
- libglib-2_0-0-32bit
- libgmp10-32bit
- libgobject-2_0-0-32bit
- libgpg-error0-32bit
- libipset11
- libjansson4-32bit
- libldap-2_4-2-32bit
- liblz4-1-32bit
- libnghttp2-14-32bit
- libnsl2-32bit
- libnuma1-32bit
- libp11-kit0-32bit
- libpng16-16-32bit
- libpsl5-32bit
- libpulse0-32bit
- libpwquality1-32bit
- libre2-9
- libsasl2-3-32bit
- libsndfile1-32bit
- libspeex1-32bit
- libtalloc2-32bit
- libtasn1-6-32bit
- libtdb1-32bit
- libtextstyle0-32bit
- libxml2-2-32bit
- libzstd1-32bit
- nss-mdns-32bit
- openslp-32bit
- pam_pwquality-32bit
- perl-base-32bit
- qemu-sgabios
- rpm-32bit
- samba-client-32bit
- samba-client-libs-32bit
- systemd-32bit
Added rpms
==========
- ctags
- cyrus-sasl-32bit
- cyrus-sasl-crammd5-32bit
- cyrus-sasl-digestmd5-32bit
- cyrus-sasl-plain-32bit
- glibc-locale-base-32bit
- gnome-keyring-32bit
- alsa-oss-32bit
- alsa-plugins-32bit
- cyrus-sasl-gssapi-32bit
- dbus-1-glib-32bit
- fontconfig-32bit
- gettext-runtime-32bit
- glibc-32bit
- gnome-keyring-pam-32bit
- libXau6-32bit
- libattr1-32bit
- libbrotlicommon1-32bit
- libbrotlidec1-32bit
- libcap2-32bit
- libcom_err2-32bit
- libcrack2-32bit
- libcurl4-32bit
- libdw1-32bit
- libelf1-32bit
- libffi7-32bit
- libfreetype6-32bit
- libgcrypt20-32bit
- libgdbm4-32bit
- libglib-2_0-0-32bit
- libgmp10-32bit
- libgobject-2_0-0-32bit
- libgpg-error0-32bit
- libjansson4-32bit
- libldap-2_4-2-32bit
- liblz4-1-32bit
- libnghttp2-14-32bit
- libnsl2-32bit
- libnuma1-32bit
- libp11-kit0-32bit
- libpng16-16-32bit
- libpsl5-32bit
- libpulse0-32bit
- libpwquality1-32bit
- libsasl2-3-32bit
- libsndfile1-32bit
- libspeex1-32bit
- libtalloc2-32bit
- libtasn1-6-32bit
- libtdb1-32bit
- libtextstyle0-32bit
- libxml2-2-32bit
- libzstd1-32bit
- nss-mdns-32bit
- openslp-32bit
- pam_pwquality-32bit
- perl-base-32bit
- rpm-32bit
- samba-client-32bit
- samba-client-libs-32bit
- systemd-32bit
- qemu-sgabios
- krb5-32bit
- libFLAC8-32bit
- libacl1-32bit
- libaudit1-32bit
- libavahi-client3-32bit
- libavahi-common3-32bit
- libboost_regex1_66_0
- libbz2-1-32bit
- libcrypt1-32bit
- libcups2-32bit
- libdbus-1-3-32bit
- libdevmapper1_03-32bit
- libexpat1-32bit
- libfontconfig1-32bit
- libgio-2_0-0-32bit
- libgmodule-2_0-0-32bit
- libgnutls30-32bit
- libidn2-0-32bit
- libipset13
- libjitterentropy3-32bit
- libkeyutils1-32bit
- libldb2-32bit
- liblua5_3-5-32bit
- liblzma5-32bit
- libmagic1-32bit
- libnettle8-32bit
- libnscd1-32bit
- libnss_usrfiles2-32bit
- libogg0-32bit
- libopenssl1_1-32bit
- libparted0-32bit
- libpci3-32bit
- libpcre1-32bit
- libpoppler126
- libpopt0-32bit
- libre2-10
- libselinux1-32bit
- libsource-highlight4
- libssh4-32bit
- libsss_nss_idmap0
- libsystemd0-32bit
- libtevent0-32bit
- libtirpc3-32bit
- libudev1-32bit
- libunistring2-32bit
- libverto1-32bit
- libvorbis0-32bit
- libvorbisenc2-32bit
- libxcb1-32bit
- pam-32bit
- pulseaudio-utils-32bit
- samba-winbind-libs-32bit
- sssd-wbclient
Package Source Changes
======================
MozillaFirefox
+- Firefox Extended Support Release 102.6.0 ESR
+ Placeholder changelog-entry (bsc#1206242)
+
- Placeholder changelog-entry (bsc#1205270)
+ * Fixed: Various stability, functionality, and security fixes.
+ MFSA 2022-48 (bsc#1205270)
+ * CVE-2022-45403 (bmo#1762078)
+ Service Workers might have learned size of cross-origin media
+ files
+ * CVE-2022-45404 (bmo#1790815)
+ Fullscreen notification bypass
+ * CVE-2022-45405 (bmo#1791314)
+ Use-after-free in InputStream implementation
+ * CVE-2022-45406 (bmo#1791975)
+ Use-after-free of a JavaScript Realm
+ * CVE-2022-45408 (bmo#1793829)
+ Fullscreen notification bypass via windowName
+ * CVE-2022-45409 (bmo#1796901)
+ Use-after-free in Garbage Collection
+ * CVE-2022-45410 (bmo#1658869)
+ ServiceWorker-intercepted requests bypassed SameSite cookie
+ policy
+ * CVE-2022-45411 (bmo#1790311)
+ Cross-Site Tracing was possible via non-standard override
+ headers
+ * CVE-2022-45412 (bmo#1791029)
+ Symlinks may resolve to partially uninitialized buffers
+ * CVE-2022-45416 (bmo#1793676)
+ Keystroke Side-Channel Leakage
+ * CVE-2022-45418 (bmo#1795815)
+ Custom mouse cursor could have been drawn over browser UI
+ * CVE-2022-45420 (bmo#1792643)
+ Iframe contents could be rendered outside the iframe
+ * CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061)
+ Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5
MozillaThunderbird
+- Mozilla Thunderbird 102.5.1
+ * changed: Mail extension API updates. See Mail Extension API
+ Docs.
+ * fixed: "Copy to <folder> again" menu item was not present
+ after copying message to folder with Unicode name on Unicode-
+ enabled IMAP server (bmo#1798172)
+ * fixed: Calendar date picker was displayed behind "Send Later"
+ window (bmo#1791537)
+ * fixed: Various security fixes
+ MFSA 2022-50 (bsc#1205941)
+ * CVE-2022-45414 (bmo#1788096)
+ Quoting from an HTML email with certain tags will trigger
+ network requests and load remote content, regardless of a
+ configuration to block remote content
+
acl
+- test: Add helper library to fake passwd/group files
+- quote: escape literal backslashes (bsc#953659).
+- Added patch:
+ * 0001-test-Add-helper-library-to-fake-passwd-group-files.patch
+ * 0002-quote-escape-literal-backslashes.patch
+
+- refresh acl-2.2.52-tests.patch to work with perl 5.26
+
+- BuildRequires gettext-tools-mini instead of gettext-tools: as
+ acl is part of the bootstrap, we want to try to keep the dep
+ chain as small as possible.
+
+- Remove --with-pic that's just for static libraries.
+- Replace %__-type macro indirections.
+ Replace old $RPM_ by their macro equivalents for consistency.
+ Make the macro style consistent across the file again.
+
+- reenable full Larg File Support for i586
+
+- Make it possible to disable tests (for Ring0)
+- Add BuildRequires: system-user-daemon for the testsuite
+
+- Add BuildRequires for system user bin needed by test suite
+
+- Update to git snapshot dated 21 Sep 2015.
+ - Added:
+ * 0001-Install-the-libraries-to-the-appropriate-directory.patch
+ * 0002-setfacl.1-fix-typo-inclu-de-include.patch
+ * 0003-test-fix-insufficient-quoting-of.patch
+ * 0004-Makefile-rename-configure.in-to-configure.ac.patch
+ * 0005-Bad-markup-in-acl.5-page.patch
+ * 0006-.gitignore-ignore-and-config.h.in.patch
+ * 0007-Use-autoreconf-rather-than-autoconf-to-regenerate-th.patch
+ * 0008-libacl-Make-sure-that-acl_from_text-always-sets-errn.patch
+ * 0009-libacl-fix-SIGSEGV-of-getfacl-e-on-overly-long-group.patch
+ * 0010-punt-debian-rpm-packaging-logic.patch
+ * 0011-move-gettext-logic-into-misc.h.patch
+ * 0012-test-make-running-parallel-out-of-tree-safe.patch
+ * 0013-modernize-build-system.patch
+ * 0014-po-regenerate-files-after-move.patch
+ * 0015-build-drop-aclincludedir-use-pkgincludedir.patch
+ * 0016-build-make-use-of-an-aux-dir-to-stow-away-helper-scr.patch
+ * 0017-build-ship-a-pkgconfig-file-for-libacl.patch
+ * 0018-read_acl_-comments-seq-rename-line-to-lineno.patch
+ * 0019-read_acl_-comments-seq-switch-to-next_line.patch
+ * 0020-telldir-return-value-and-seekdir-second-parameters-a.patch
+ * 0021-mark-libmisc-funcs-as-hidden-so-they-are-not-exporte.patch
+ * 0022-add-__acl_-prefixes-to-internal-symbols.patch
+ * 0023-cp.test-Check-permissions-of-the-right-file.patch
+ * 0024-libacl-acl_set_file-Remove-unnecesary-racy-check.patch
+ * 0025-fix-compilation-with-latest-xattr-git.patch
+ * 0026-getfacl-Fix-memory-leak.patch
+ * 0027-Fix-the-display-block-nesting-in-acl.5.patch
+ * 0028-setfacl-man-page-Minor-wording-improvements.patch
+ * 0029-getfacl-Fix-minor-resource-leak.patch
+ * 0030-Do-not-export-symbols-that-are-not-supposed-to-be-ex.patch
+ * 0031-walk_tree-mark-internal-variables-as-static.patch
+ * 0032-ignore-configure.lineno.patch
+- Signficant spec file restructuring due to 0013-modernize-build-system.patch
+- removed builddefs.in.diff
+
+- Reduce size of filelist by using wildcards;
+ remove %doc (some locations are always %doc),
+ remove %attr (files already have proper permissions)
+
+- add acl-2.2.52-tests.patch and enable tests, check section taken
+ from Fedora package
+
+- remove gpg-offline calls from bootstrap package
+
+- Update to new upstream release 2.2.52
+ * This release fixes a few build system issues that were found and
+ merges in a tree walking bug fix.
+- Remove acl-fiximplicit.patch (merged upstream),
+ config-guess-sub-update.diff (no longer applies)
+- Sync baselibs.conf with in-.spec obsoletes/provides.
+
+- add gpg checking
+
+- use source url
+
+- Add config-guess-sub-update.diff:
+ update config.guess/sub to latest state for AArch64
+
+- Use OS byteswapping routines, application already Includes
+ "endian.h" but then goes ahead defining ad-hoc equivalent
+ functionality (0001-Use-OS-byteswapping-macros.patch)
+
+- remove useless automake deps
+
+- patch license to follow spdx.org standard
+
+- license update: GPL-2.0+;LGPL-2.1+
+ SPDX format
+
+- add automake as buildrequire to avoid implicit dependency
+
+- Fix provides/Obsoletes
+
+- Implement shlib package (libacl1)
+- Enable libacl-devel on all baselib arches
+
+- upgrade to 2.2.51
+ - Test fixes
+
+- upgrade to 2.2.50
+ - OPTIONS in man pages should be a section heading, not a subsection heading
+ - Fix a typo in the setfacl man page
+ - setfacl: Clarify that removing a non-existent acl entry is not an error
+ - Prevent setfacl --restore from SIGSEGV on malformed restore file
+ - setfacl: make sure that -R only calls stat(2) on symlinks when it needs to
+ - libacl: fix potential null pointer dereference
+ - setfacl: fix restore crash on malformed input
+ - setfacl: print useful error from read_acl_comments
+ - setfacl: changing owner and when S_ISUID should be set --restore fix
+
+- use %_smp_mflags
+
+- add baselibs.conf as a source
+- adjust baselibs.conf for SPARC
+
+- readded incorrectly removed libattr-devel requires in -devel
+
+- fixed implicit strchr() usage.
+
+- do not package static libraries
+- fix -devel package dependencies
+
+- Version bump to 2.2.48
+ - Document the new flags comments
+ - Include the S_ISUID, S_ISGID, S_ISVTX flags in the getfacl output, and restore them with "setfacl --restore=file".
+ - Make sure that getfacl -R only calls stat(2) on symlinks when it needs to
+ - Stop quoting nonprintable characters in the getfacl output
+ - Avoid unnecessary but destructive chown calls
+ - Clarify license notice
+
alsa
+- Update to version 1.2.8 (jsc#PED-850):
+ add FreeBSD/NetBD/OpenBSD build support, fixes in control namehint,
+ various PCM plugins and UCM. For details, see:
+ https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8
+- Add keyring
+
+- Update to version 1.2.7.2: minor updates, including fixes for PCM
+ share plugin, rawmidi and UCM
+
+- Update to version 1.2.7.1: minor bug fixes, including the previous
+ patches. For details, see
+ https://www.alsa-project.org/wiki/Changes_v1.2.7_v1.2.7.1#alsa-lib
+- Drop obsoleted patches:
+ 0001-conf-Use-ino64_t-to-save-and-compare-inode-numbers.patch
+ 0002-control-eld-fix-the-decoding-for-older-hw.patch
+
+- Backport upstream fixes for 32bit inode and ELD parsing:
+ 0001-conf-Use-ino64_t-to-save-and-compare-inode-numbers.patch
+ 0002-control-eld-fix-the-decoding-for-older-hw.patch
+
+- Update to version 1.2.7:
+ more extended UCM API, PCM rate,multi,direct plugin fixes and
+ enhancements, compilation fixes, etc. For details see:
+ https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-lib
+
alsa-oss
-- use https for urls
-
-- Drop the superfluous buildreq alsa-topology-devel again;
- it's no longer mandatory
-
-- Fix build breakage by the new alsa update; now it requires
- alsa-topology-devel
-
-- Avoid repetition of name in summary. Update description.
-
-- Update to alsa-oss 1.1.8 (bsc#1181571):
- Fix the build with the recent glibc
-- Remove obsoleted patch:
- remove-libio.patch:
-
-- remove-libio.patch: don't use obsolete <libio.h>
-
-- Remove old kludges
-- Run spec-cleaner
-
-- Update to alsa-oss 1.1.6:
- * Change FSF address (Franklin Street)
-- Use %license file tag
-
-- Updated to alsa-oss 1.0.28:
- All pervious fix patches are obsoleted:
- 0002-Add-AM_MAINTAINER_MODE-enable-to-configure.in.patch
- 0003-Fix-the-argument-passed-to-snd_pcm_dump_setup.patch
- 0004-Workaround-for-aoss-dmix-with-unaligned-rates.patch
-
-- Fix for dmix with unaligned sample rate:
- 0003-Fix-the-argument-passed-to-snd_pcm_dump_setup.patch
- 0004-Workaround-for-aoss-dmix-with-unaligned-rates.patch
-
alsa-plugins
+- Add keyring
+
+- Fix dependency of pulse plugin; now pulseaudio-daemon is required
+ (bsc#1201409)
+
+- Update to version 1.2.7.1 (jsc#jsc#PED-850):
+ jack plugin fix/enhancement
+
alsa-ucm-conf
+- Update to version 1.2.8 (jsc#PED-850):
+ lots of new profiles for USB-audio, SOF and others:
+ https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8
+- Add keyring
+
+- Update to version 1.2.7.2:
+ updates of various device-specific profiles. For details, see
+ https://www.alsa-project.org/wiki/Changes_v1.2.7.1_v1.2.7.2#alsa-ucm-conf
+
+- Update to version 1.2.7.1:
+ updates of various device-specific profiles. For details, see
+ https://www.alsa-project.org/wiki/Changes_v1.2.7_v1.2.7.1#alsa-ucm-conf
+- Drop obsoleted patches:
+ 0001-Steinberg-UR44-fix-the-Line2-channel-mapping.patch
+ 0002-Steinberg-UR44-fix-the-Line2-channel-mapping-2nd.patch
+ 0003-Steinberg-UR44-fix-the-direction-for-steinberg_ur44_.patch
+
+- Backport upstream fixes for Steinberg UR44:
+ 0001-Steinberg-UR44-fix-the-Line2-channel-mapping.patch
+ 0002-Steinberg-UR44-fix-the-Line2-channel-mapping-2nd.patch
+ 0003-Steinberg-UR44-fix-the-direction-for-steinberg_ur44_.patch
+
+- Update to version 1.2.7:
+ Various profile updates for USB-audio, HD-audio, etc.
+ For details, see:
+ https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-ucm-conf
+- Drop obsoleted patches:
+ 0001-HDA-DualCodecs-fix-typo-in-Speaker-condition.patch
+ 0002-HDA-acp-avoid-to-create-Mic-ACP-LED-control-for-the-.patch
+
alsa-utils
+- Update to alsa-utils 1.2.8 (jsc#PED-850):
+ automake update, minor alsactl, amixer and aplay fixes.
+ https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8
+- Add keyring
+
+- Update to alsa-utils 1.2.7:
+ Enhancement and fixes of alsactl, speaker-test cleanup,
+ alsatplg enhancements, arecord ghost data fix, etc.
+ For details see:
+ https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-utils
+- Drop obsoleted patches:
+ 0001-alsamixer-Fix-regression-in-color-setup.patch
+ 0002-alsamixer-Revert-has_mouse-check.patch
+
+- Fix the broken mouse support on alsamixer:
+ 0002-alsamixer-Revert-has_mouse-check.patch
+
audit-secondary
+- Fix rules not loaded when restarting auditd.service(bsc#1204844)
+
autoyast2
+- Avoid a potential crash when autoinst.ycp file is empty or
+ missing (bsc#1205732).
+- 4.5.11
+
busybox
+- Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065,
+ boo#1199744).
+
cracklib
-- %check: really test the package [bsc#1191736]
-
-- Update to version 2.9.7:
- + fix a buffer overflow processing long words.
-- Drop 0003-overflow-processing-gecos.patch and
- 0004-overflow-processing-long-words.patch: fixed upstream.
-- Update source URI.
-- Remove use of translation-update-upstream. It cannot be added to
- ring 0 on leap, and 2.9.7 has some translation fixes
- (bsc#1172396).
-
-- Enable translation-update-upstream on leap, to remove the use of
- is_opensuse (jsc#SLE-12096).
-
-- use /usr/lib instead of %{_libexecdir}, %{_libexecdir} should
- contain internal binaries, not data
-
-- Use %license (boo#1082318)
-
-- Update to 2.9.6
- * fix issue with sort and locale
- * some particularly bad cases to the cracklib small dictionary
- * updates to cracklib-words (adds a bunch of other dictionary lists)
- * migration to github
-- run spec-cleaner
-
-- Only buildrequire and call translation-update-upstream on SLE:
- the package in openSUSE is a dummy and is empty.
-
-- Add patch 0004-overflow-processing-long-words.patch
- to fix a new buffer overflow identified together with bsc#992966.
-
-- Relabel patches:
- cracklib-magic.diff -> 0001-cracklib-magic.diff
- cracklib-2.9.2-visibility.patch -> 0002-cracklib-2.9.2-visibility.patch
-- Add patch 0003-overflow-processing-gecos.patch
- to fix a buffer overflow in GECOS parser (bsc#992966 CVE-2016-6318)
-
-- Update to 2.9.5
- * fix matching against first password in dictionary (Anton Dobkin)
-- Changes for 2.9.4
- * remove doubled prototype
-- Changes for 2.9.3
- * expose additional functions externally
-
-- Cleanup spec file with spec-cleaner
-- Remove old ppc provides/obsoletes
-
-- Update to version 2.9.2
- + support build of python support outside of source tree
- + fix bug in Python string distance calculation
- + fix bug #16 / debian bug 724570 - broken optimization with packlib
- prevblock
-- Adapt patch to upstream changes
- + cracklib-visibility.patch > cracklib-2.9.2-visibility.patch
-
cyrus-sasl
-- CVE-2022-24407: cyrus-sasl: SQL injection in sql_auxprop_store
- in plugins/sql.c (bsc#1196036)
- o add upstream patch:
- 0001-CVE-2022-24407-Escape-password-for-SQL-insert-update.patch
-
-- postfix: sasl authentication with password fails (bsc#1194265)
- Add config parameter --with-dblib=gdbm
-- Avoid converting of /etc/sasldb2 by every update. Convert
- /etc/sasldb2 only if it is a Berkeley DB
-
-- CVE-2020-8032: cyrus-sasl: Local privilege escalation to root
- due to insecure tmp file usage. (bsc#1180669)
- Use /var/adm/update-scripts/ instead of /tmp. Clean up temporary
- files.
-
-- Remove Berkeley DB dependency (JIRA#SLE-12190)
- The packages cyrus-sasl and cyrus-sasl-saslauthd are built
- without Berkely DB support. gdbm will be used instead of BDB.
- The packages cyrus-sasl-bdb and cyrus-sasl-saslauthd-bdb are built
- with Berkely DB support.
-- Update to 2.1.27
- * Added support for OpenSSL 1.1
- * Added support for lmdb
- * Lots of build fixes
- * Treat SCRAM and DIGEST-MD5 as more secure than PLAIN when selecting client mech
- * DIGEST-MD5 plugin:
- Fixed memory leaks
- Fixed a segfault when looking for non-existent reauth cache
- Prevent client from going from step 3 back to step 2
- Allow cmusaslsecretDIGEST-MD5 property to be disabled
- * GSSAPI plugin:
- Added support for retrieving negotiated SSF
- Fixed GSS-SPNEGO to use flags negotiated by GSSAPI for SSF
- Properly compute maxbufsize AFTER security layers have been set
- * SCRAM plugin:
- Added support for SCRAM-SHA-256
- * LOGIN plugin:
- Don’t prompt client for password until requested by server
- * NTLM plugin:
- Fixed crash due to uninitialized HMAC context
-- Replace references to /var/adm/fillup-templates with new
- %_fillupdir macro (boo#1069468)
-- bsc#983938 `After=syslog.target` left-overs in several unit files
-- added patches:
- fix_libpq-fe_include.diff for fixing including libpq-fe.h
-- removed patches obsoleted by upstream changes:
- * shared_link_on_ppc.patch
- * cyrus-sasl-2.1.27-openssl-1.1.0.patch
- * 0002-Drop-unused-parameter-from-gssapi_spnego_ssf.patch
- * 0003-Check-return-error-from-gss_wrap_size_limit.patch
- * 0004-Add-support-for-retrieving-the-mech_ssf.patch
- * 0001-Fix-GSS-SPNEGO-mechanism-s-incompatible-behavior.patch
- * cyrus-sasl-fix-logging-in-gssapi.patch
-
-- Added support for retrieving negotiated SSF in gssapi plugin (bsc#1162518)
- * Add 0002-Drop-unused-parameter-from-gssapi_spnego_ssf.patch
- * Add 0003-Check-return-error-from-gss_wrap_size_limit.patch
- * Add 0004-Add-support-for-retrieving-the-mech_ssf.patch
-- Fixed GSS-SPNEGO to use flags negotiated by GSSAPI for SSF (bsc#1162518)
- * Add 0001-Fix-GSS-SPNEGO-mechanism-s-incompatible-behavior.patch
-
-- added backport-patch cyrus-sasl-bug587.patch which fixes
- off-by-one error in _sasl_add_string function
- (see CVE-2019-19906 bsc#1159635)
-
-- bnc#1044840 syslog is polluted with messages "GSSAPI client step 1"
- By server context the connection will be sent to the log function.
- Client content does not have log level information. I.e. there is no
- way to stop DEBUG level logs nece I've removed it.
- * add cyrus-sasl-fix-logging-in-gssapi.patch
-
-- OpenSSL 1.1 support (bsc#1055463)
- * add cyrus-sasl-2.1.27-openssl-1.1.0.patch from Fedora
-
-- added cyrus-sasl-issue-402.patch to fix
- SASL GSSAPI mechanism acceptor wrongly returns zero maxbufsize #402
- (see https://github.com/cyrusimap/cyrus-sasl/issues/402)
-
-- bnc#1026825 saslauthd: :set_auth_mech : unknown authentication mechanism: kerberos5
-
-- really use SASLAUTHD_PARAMS variable (bnc#938657)
-
-- bnc#908883 cyrus-sasl-scram refers to wrong RFC
-
-- Make sure /usr/sbin/rcsaslauthd exists
-
dbus-1
+- Fix a potential crash that could be triggered by an invalid signature.
+ (CVE-2022-42010, bsc#1204111)
+ * fix-upstream-CVE-2022-42010.patch
+- Fix an out of bounds read caused by a fixed length array (CVE-2022-42011,
+ bsc#1204112)
+ * fix-upstream-CVE-2022-42011.patch
+- A message in non-native endianness with out-of-band Unix file descriptors
+ would cause a use-after-free and possible memory corruption CVE-2022-42012,
+ bsc#1204113)
+ * fix-upstream-CVE-2022-42012.patch
+- Disable asserts (bsc#1087072)
+- Refreshed patches
+ * fix-upstream-CVE-2020-35512.patch
+
+- Remove pointless %%post scriptlet leveraging non-existent systemd env
+ variables
+ FIRST_ARG has been used in our systemd macros, but this has now been gone for
+ years. Thus the true branch of the if has never been executed for years and is
+ only causing warnings when installing dbus.
+
+- Add missing patch for CVE-2020-12049
+ * fix-upstream-CVE-2020-12049_2.patch
+
+- Fix CVE-2020-12049 truncated messages lead to resource exhaustion
+ (CVE-2020-12049, bsc#1172505)
+ * fix-upstream-CVE-2020-12049.patch
+- Rebased fix-CVE-2019-12749.patch
+
+- Fix CVE-2020-35512 - shared UID's caused issues (CVE-2020-35512 bsc#1187105)
+ * fix-upstream-userdb-constpointer.patch
+ * fix-upstream-CVE-2020-35512.patch
+
+- Fix CVE-2019-12749 Authentication bypass (CVE-2019-12749 bsc#1137832)
+ * added fix-CVE-2019-12749.patch
+
+- Make libdbus-1-3 own the %{_datadir}/dbus-1/system.d directory
+
+- Use %license instead of %doc [bsc#1082318]
+
+- Avoid bashisms in scriptlets.
+
+- Avoid ugly error message from %pre(install) script when installing
+ for the first time.
+
+- Don't spit out a warning if /usr/bin/dbus-daemon does not exist
+ when we run the pre-script.
+
+- Swap a missed libdir to libexecdir
+
+- Do not hide errors during useradd.
+
+- Fix dbus-daemon-launch-helper to use proper ref to libexecdir
+
+- use %{_libexecdir}/dbus-1 as libexecdir
+
+- Update to 1.12.2
+ Deprecations:
+ • Eavesdropping is officially deprecated in favour of BecomeMonitor.
+ See the release notes for spec version 0.31 (in dbus 1.11.14).
+ • [Unix] Flag files in /var/run/console/${username} are deprecated.
+ See the release notes for 1.11.18.
+ New APIs:
+ • <allow> and <deny> rules in dbus-daemon configuration can now
+ include send_broadcast="true", send_broadcast="false",
+ max_unix_fds="N", min_unix_fds="N" (for some integer N).
+ See the release notes for 1.11.18.
+ • dbus_try_get_local_machine_id() is like
+ dbus_get_local_machine_id(), but returns a DBusError.
+ • New APIs around DBusMessageIter to simplify cleanup.
+ See the release notes for 1.11.16.
+ • The message bus daemon now implements the standard Introspectable,
+ Peer and Properties interfaces. See the release notes for
+ dbus 1.11.14 and spec version 0.31.
+ • DTDs for introspection XML and bus configuration are installed.
+ • [Unix] A new unix:dir=… address family resembles unix:tmpdir=… but
+ never uses Linux abstract sockets, which is advantageous for
+ containers. On non-Linux it is equivalent to unix:tmpdir=….
+ See the release notes for dbus 1.11.14 and spec version 0.31.
+ • [Unix] New option "dbus-launch --exit-with-x11".
+ • [Unix] Session managers can create transient .service files in
+ $XDG_RUNTIME_DIR/dbus-1/services. See the release notes for 1.11.12.
+ • [Unix] A sysusers.d snippet can create the messagebus user on-demand.
+ Miscellaneous behaviour changes:
+ • [Unix] The session bus now logs to syslog if it was started by
+ dbus-launch.
+ • [Unix] Internal warnings are logged to syslog if configured.
+ • [Unix] Exceeding an anti-DoS limit is logged to syslog if configured,
+ or to stderr.
+- Enabled "make check test suite"
+- Patches removed, fixed upstream
+ * fix-upstream-drop-install-sections-from-user-services.patch
+ * fix-upstream-increase-backlog.patch
+ * fix-upstream-timeout-reset-1.patch
+ * fix-upstream-timeout-reset-2.patch
+
+- boo#1027201 dbus-daemon not found
+- boo#978477 systemd reseting under heavy load
+ * fix-upstream-timeout-reset-1.patch
+ * fix-upstream-timeout-reset-2.patch
+
+- boo#1027200 don't generate machine-id in %post systemd will do it
+ on first boot.
+- swap usage of /bin/false to /usr/bin/false
+- Use libexecdir=%{_libdir}/dbus-1 rather then /lib/dbus-1
+
+- No need to set --libdir anymore now that prefix is /usr/bin,
+ * fixes boo#1047532
+- No need to set --bindir, bindir in dbus-1-x11 was incorrect
+- Other fixes required to properly change prefix
+- Don't pass --with-initscripts we don't use them anymore.
+
+- Update to 1.10.20
+ * Fixes:
+ + Fix a reference leak when blocking on a pending call on a
+ connection that has been disconnected (fdo#101481, Shin-ichi
+ MORITA)
+ + Don't put timestamps in the Doxygen-generated documentation,
+ for closer-to-reproducible builds (fdo#100692, Simon
+ McVittie)
+ + Avoid an assertion failure when connecting to a
+ semicolon-separated series of addresses, one of which fails
+ (fdo#101257, Simon McVittie)
+ * Documentation:
+ + Update git URIs in HACKING document to sync up with
+ cgit.freedesktop.org (fdo#100715, Simon McVittie)
+
+- swap to /usr/bin bsc#1029968
+- Add the following fixes from SLE12
+ * bsc#980928 increase listen() backlog of AF_UNIX sockets to
+ SOMAXCONN fix-upstream-increase-backlog.patch
+- The following bugs were already fixed but are missing changelog
+ entries
+ * bsc#867256 (No longer applicable)
+ * bsc#916785 (No longer applicable)
+ * bsc#1012564 (Not applicable)
+ * fdo#90004 (Fixed Upstream)
+- Rename the following patches as a tidy up
+ * dbus-log-deny.patch to feature-suse-log-deny.patch
+ * dbus-do-autolaunch.patch feature-suse-do-autolaunch.patch
+ * 0001-Add-RefuseManualStartStop.patch to
+ feature-suse-refuse-manual-start-stop.patch
+ * 0001-Drop-Install-sections-from-user-services.patch to
+ fix-upstream-drop-install-sections-from-user-services.patch
+
+- Update to 1.10.18
+ * Fixes
+ + Re-order dbus-daemon startup so that on SELinux systems, the
+ thread that reads AVC notifications retains the ability to
+ write to the audit log (fdo#92832, Debian #857660; Laurent
+ Bigonville)
+ + Fix a harmless read overflow and some memory leaks in a unit
+ test (fdo#100568, Philip Withnall)
+
+- Update to 1.10.16
+ Fixes:
+ * Prevent symlink attacks in the nonce-tcp transport on Unix that could
+ allow an attacker to overwrite a file named "nonce", in a directory
+ that the user running dbus-daemon can write, with a random value
+ known only to the user running dbus-daemon. This is unlikely to be
+ exploitable in practice, particularly since the nonce-tcp transport
+ is really only useful on Windows.
+ (fd.o #99828, Simon McVittie) (bsc#1025950)
+ * Avoid symlink attacks in the "embedded tests", which are not enabled
+ by default and should never be enabled in production builds of dbus.
+ (fd.o #99828, Simon McVittie) (bsc#1025951)
+ * Work around an undesired effect of the fix for CVE-2014-3637
+ (fd.o #80559), in which processes that frequently send fds, such as
+ logind during a flood of new PAM sessions, can get disconnected for
+ continuously having at least one fd "in flight" for too long;
+ dbus-daemon interprets that as a potential denial of service attack.
+ The workaround is to disable that check for uid 0 process such as
+ logind, with a message in the system log. The bug remains open while
+ we look for a more general solution.
+ (fd.o #95263, LP#1591411; Simon McVittie)
+ * Don't run the test test-dbus-launch-x11.sh if X11 autolaunching
+ was disabled at compile time. That test is not expected to work
+ in that configuration. (fd.o #98665, Simon McVittie)
+ Enhancements:
+ * Do the Travis-CI build in Docker containers for Ubuntu LTS, Debian
+ stable and Debian testing in addition to the older Ubuntu that is
+ the default (fd.o #98889, Simon McVittie)
+
+- A note for scripts bsc#974092 (remove sysvinit script) is already
+ fixed here.
+
+- Don't restart dbus on upgrade - Includes temporary work around
+ for last version boo#1020301
+- Add 0001-Add-RefuseManualStartStop.patch don't allow users to Manually
+ start or stop dbus.
+
+- Add systemd unit files to start session bus via systemd
+- Added patch:
+ * 0001-Drop-Install-sections-from-user-services.patch
+ + remove install section from socket unit because it does not
+ need to be enabled explicitly (see fdo#92402)
+
+- Requires systemd >= 209 and drop the compatibility pkg-config
+ names that don't exist in newer systemd
+
+- Drop useless --with-pic which is only for static libs
+- Abort installation when user/group creation fails
+- Avoid calling %service_* more than once
+
+- Build the dbus-1 package without X in the dbus-1.spec
+- Move the dbus-launch.nox11 to the dbus-1 package and install
+ it by default
+- Build devel-doc package in dbus-1.spec and don't build any
+ documentation in dbus-1-x11
+- Make dbus-1-x11 package contains only the X11-enabled dbus-launch
+- Fix some rpmlint warnings
+- Delete the dbus-1-x11.spec.in file, since maintaining it is
+ more complicated then keeping in sync a dbus-1-x11.spec file of
+ less then 120 lines
+
+- Create new subpackage: dbus-1-nox11
+ - contains dbus-launch without x11 support
+- Rename dbus-launch to dbus-launch.x11
+- use update-alternatives to switch between dbus-launch with and
+ without X11
+- Solves [bnc#934214]
+
+- Update to 1.10.12
+ * Security fixes:
+ + Do not treat ActivationFailure message received from
+ root-owned systemd name as a format string. In principle this
+ is a security vulnerability, but we do not believe it is
+ exploitable in practice, because only privileged processes can
+ own the org.freedesktop.systemd1 bus name, and systemd does
+ not appear to send activation failures that contain "%".
+ Please note that this probably *was* exploitable in dbus
+ versions older than 1.6.30, 1.8.16 and 1.9.10 due to a missing
+ check which at the time was only thought to be a denial of
+ service vulnerability (CVE-2015-0245). If you are still
+ running one of those versions, patch or upgrade immediately.
+ (fdo#98157, bsc#1003898, Simon McVittie)
+ * Other fixes:
+ + Harden dbus-daemon against malicious or incorrect
+ ActivationFailure messages by rejecting them if they do not
+ come from a privileged process, or if systemd activation is
+ not enabled (fdo#98157, Simon McVittie)
+ + Avoid undefined behaviour when setting reply serial number
+ without going via union DBusBasicValue (fdo#98035, Marc Mutz)
+ + autogen.sh: fail cleanly if autoconf fails (Simon McVittie)
+
+- Moved dbus-run-session from dbus-1-x11 to dbus-1 (bdo#836296)
+
+- Update to 1.10.10
+ * Fixes:
+ + On Linux, when dbus-daemon is run with reduced susceptibility
+ to the OOM killer (typically via systemd), do not let child
+ processes inherit that setting (fdo#32851;
+ Kimmo Hämäläinen, WaLyong Cho)
+ + Output valid shell syntax in ~/.dbus/session-bus/ if the bus
+ address contains a semicolon (fdo#94746, Thiago Macieira)
+ + Fix memory leaks and thread safety in subprocess starting on
+ Windows (fdo#95191, Ralf Habacker)
+ + Do not require systemd to have a service file if using it for
+ activation (fdo#93194; Simon McVittie; backport from 1.11.0)
+ + Stop test-dbus-daemon incorrectly failing on platforms that
+ cannot discover the process ID of clients (fdo#96653,
+ РуÑлан Ижбулатов)
+ + In tests that exercise correct handling of crashing D-Bus
+ services, suppress Windows crash handler (fdo#95155;
+ Yiyang Fei, Ralf Habacker)
+ + Explicitly check for stdint.h (Ioan-Adrian Ratiu)
+ + update-activation-environment: produce better diagnostics on
+ error (fdo#96653, Simon McVittie)
+ + Don't fail the build with an unused const variable warning
+ under gcc 6 (fdo#97282; Thomas Zimmermann, Simon McVittie)
+ + Merge dbus-1.10-ci branch, containing backports from 1.11.0
+ in build/test code to support continuous integration
+ (fdo#93194, Simon McVittie)
+ - Avoid -Wunused-label when compiling with libselinux but no
+ libaudit
+ - In development builds, allow OOM tests to be disabled as
+ documented
+ - Accept and ignore the --tap argument in all "embedded
+ tests", and run all automated tests with that argument for
+ better diagnostics
+ - Fix the systemd activation test under CMake by installing
+ the required files
+ - In Automake, fix shell syntax for installcheck-local with
+ no DESTDIR
+ - In Automake, don't try to run manual tests in installcheck
+ - In CMake, don't run manual-tcp test as an automated test
+ - Add travis-ci.org build machinery
+
+- Update to 1.10.8
+ * Fixes:
+ + Enable "large file support" on systems where it exists:
+ dbus-daemon is not expected to open large files, but it might
+ need to stat files that happen to have large inode numbers
+ (fdo#93545, Hongxu Jia)
+ + Eliminate padding inside DBusMessageIter on 64-bit platforms,
+ which might result in a pedantic C compiler not copying the
+ entire contents of a DBusMessageIter; statically assert that
+ this is not an ABI change in practice (fdo#94136, Simon
+ McVittie)
+ + Document dbus-test-tool echo --sleep-ms=N instead of
+ incorrect --sleep=N (fdo#94244, Dmitri Iouchtchenko)
+ + Correctly report test failures in C tests from run-test.sh
+ (fdo#93379; amit tewari, Simon McVittie)
+ + When tests are enabled, run all the marshal-validate tests,
+ not just the even-numbered ones (fdo#93908, Nick Lewycky)
+ + Correct the expected error from one marshal-validate test,
+ which was previously not run due to the above bug(fdo#93908,
+ Simon McVittie)
+
+- Update to 1.10.6
+ * Fixes:
+ - On Unix when running tests as root, don't assert that root
+ and the dbus-daemon user can still call
+ UpdateActivationEnvironment; assert that those privileged
+ users can call BecomeMonitor instead (fdo#93036, Simon
+ McVittie)
+ - On Windows, fix a memory leak in the autolaunch transport
+ (fdo#92899, Simon McVittie)
+ - On Windows Autotools builds, don't run tests that rely on
+ dbus-run-session and other Unix-specifics (fdo#92899, Simon
+ McVittie)
+
+- Update to 1.10.4
+ * Changes between 1.10.2 and 1.10.4
+ - Enhancements:
+ + GetConnectionCredentials, GetConnectionUnixUser and
+ GetConnectionUnixProcessID with argument
+ "org.freedesktop.DBus" will now return details of the
+ dbus-daemon itself. This is required to be able to call
+ SetEnvironment on systemd. (fdo#92857, Jan Alexander
+ Steffens)
+ - Fixes:
+ + Make UpdateActivationEnvironment always fail with
+ AccessDenied on the system bus. Previously, it was
+ possible to configure it so root could call it, but the
+ environment variables were not actually used, because the
+ launch helper would discard them. (fdo#92857, Jan Alexander
+ Steffens)
+ + On Unix with --systemd-activation on a user bus, make
+ UpdateActivationEnvironment pass on its arguments to
+ systemd's SetEnvironment method, solving inconsistency
+ between the environments used for traditional activation
+ and systemd user-service activation. (fdo#92857, Jan
+ Alexander Steffens)
+ + On Windows, don't crash if <syslog/> or --syslog is used
+ (fdo#92538, Ralf Habacker)
+ + On Windows, fix a memory leak when setting a DBusError from
+ a Windows error (fdo#92721, Ralf Habacker)
+ + On Windows, don't go into infinite recursion if we abort the
+ process with backtraces enabled (fdo#92721, Ralf Habacker)
+ + Fix various failing tests, variously on Windows and
+ cross-platform:
+ . don't test system.conf features (users, groups) that only
+ make sense on the system bus, which is not supported on
+ Windows
+ . don't call _dbus_warn() when we skip a test, since it is
+ fatal
+ . fix computation of expected <standard_session_servicedirs/>
+ . when running TAP tests, translate newlines to Unix format,
+ fixing cross-compiled tests under Wine on Linux
+ . don't stress-test refcounting under Wine, where it's
+ really slow
+ . stop assuming that a message looped-back to the test will
+ be received immediately
+ . skip some system bus tests on Windows since they make no
+ sense there (fdo#92538, fdo#92721; Ralf Habacker, Simon
+ McVittie)
+ * Changes between 1.10.0 and 1.10.2
+ - Fixes:
+ + Correct error handling for activation: if there are multiple
+ attempts to activate the same service and it fails
+ immediately, the first attempt would get the correct reply,
+ but the rest would time out. We now send the same error
+ reply to each attempt. (fdo#92200, Simon McVittie)
+ + If BecomeMonitor is called with a syntactically invalid
+ match rule, don't crash with an assertion failure, fixing a
+ regression in 1.9.10. This was not exploitable as a denial
+ of service, because the check for a privileged user is done
+ first. (fdo#92298, Simon McVittie)
+ + On Linux with --enable-user-session, add the bus address to
+ the environment of systemd services for better backwards
+ compatibility (fdo#92612, Jan Alexander Steffens)
+ + On Windows, fix the logic for replacing the installation
+ prefix in service files' Exec lines (fdo#83539; Milan Crha,
+ Simon McVittie)
+ + On Windows, if installed in the conventional layout with
+ ${prefix}/etc and ${prefix}/share, use relative paths
+ between bus configuration files to allow the tree to be
+ relocated (fdo#92028, Simon McVittie)
+ + Make more of the regression tests pass in Windows builds
+ (fdo#92538, Simon McVittie)
+ * Summary of major changes since 1.8.0:
+ - The basic setup for the well-known system and session buses is
+ now done in read-only files in ${datadir} (normally /usr/share).
+ - AppArmor integration has been merged, with features similar to
+ the pre-existing SELinux integration. It is mostly compatible
+ with the patches previously shipped by Ubuntu, with one
+ significant change: Ubuntu's GetConnectionAppArmorSecurityContext
+ method has been superseded by GetConnectionCredentials and was
+ not included.
+ - The --enable-user-session configure option can be enabled
+ by OS integrators intending to use systemd to provide a
+ session bus per user (in effect, treating all concurrent
+ graphical and non-graphical login sessions as one large session).
+ - The new listenable address mode "unix:runtime=yes" listens on
+ $XDG_RUNTIME_DIR/bus, the same AF_UNIX socket used by the
+ systemd user session. libdbus and "dbus-launch --autolaunch"
+ will connect to this address by default. GLib >= 2.45.3 and
+ sd-bus >= 209 have a matching default.
+ - All executables are now dynamically linked to libdbus-1.
+ Previously, some executables, most notably dbus-daemon, were
+ statically linked to a specially-compiled variant of libdbus.
+ This results in various private functions in the _dbus
+ namespace being exposed by the shared library. These are not
+ API, and must not be used outside the dbus source tree.
+ - On platforms with ELF symbol versioning, all public symbols
+ are versioned LIBDBUS_1_3.
+ * New bus APIs:
+ - org.freedesktop.DBus.GetConnectionCredentials returns
+ LinuxSecurityLabel where supported
+ - org.freedesktop.DBus.Monitoring interface (privileged)
+ . BecomeMonitor method supersedes match rules with eavesdrop=true,
+ which are now deprecated
+ - org.freedesktop.DBus.Stats interface (semi-privileged)
+ . now enabled by default
+ . new GetAllMatchRules method
+ - org.freedesktop.DBus.Verbose interface (not normally compiled)
+ . toggles the effect of DBUS_VERBOSE
+ * New executables:
+ - dbus-test-tool
+ - dbus-update-activation-environment
+ * New optional dependencies:
+ - The systemd: pseudo-transport requires libsystemd or libsd-daemon
+ - Complete documentation requires Ducktype and yelp-tools
+ - Full test coverage requires GLib 2.36 and PyGI
+ - AppArmor integration requires libapparmor and optionally libaudit
+ * Dependencies removed:
+ - dbus-glib
+
+- Update to 1.8.20:
+ * Fixes:
+ - Fix a memory leak when GetConnectionCredentials() succeeds
+ (fdo#91008, Jacek Bukarewicz)
+ - Ensure that dbus-monitor does not reply to messages intended
+ for others (fdo#90952, Simon McVittie)
+
+- Account for openSUSE:Leap in the conditional for chosing right
+ local state directories (boo#941352)
+
+- Move common-begin sections around to make pre_checkin work again
+- Unconditionally build with systemd features, there are no cycles
+ now, systemd no longer buildrequires dbus-1-devel
+
+- Update to 1.8.18:
+ * Security hardening:
+ - On Unix platforms, change the default configuration for the
+ session bus to only allow EXTERNAL authentication (secure
+ kernel-mediated credentials-passing), as was already done for
+ the system bus.
+ This avoids falling back to DBUS_COOKIE_SHA1, which relies on
+ strongly unpredictable pseudo-random numbers; under certain
+ circumstances (/dev/urandom unreadable or malloc() returns
+ NULL), dbus could fall back to using rand(), which does not
+ have the desired unpredictability. The fallback to rand() has
+ not been changed in this stable-branch since the necessary
+ code changes for correct error-handling are rather intrusive.
+ If you are using D-Bus over the (unencrypted!) tcp: or
+ nonce-tcp: transport, in conjunction with DBUS_COOKIE_SHA1
+ and a shared home directory using NFS or similar, you will
+ need to reconfigure the session bus to accept DBUS_COOKIE_SHA1
+ by commenting out the <auth> element. This configuration is
+ not recommended. (bsc#931066, fdo#90414, Simon McVittie)
+ * Other fixes:
+ - Add locking to DBusCounter's reference count and notify
+ function (fdo#89297, Adrian Szyndela)
+ - Ensure that DBusTransport's reference count is protected by
+ the corresponding DBusConnection's lock (fdo#90312,
+ Adrian Szyndela)
+ - On Windows, listen on the same port for IPv4 and IPv6
+ (previously broken by an endianness mistake), and fix a
+ failure to bind TCP sockets on approximately 1 attempt in 256
+ (fdo#87999, Ralf Habacker)
+ - Correctly release DBusServer mutex before early-return if we
+ run out of memory while copying authentication mechanisms
+ (fdo#90021, Ralf Habacker)
+ - Correctly initialize all fields of DBusTypeReader (fdo#90021,
+ Ralf Habacker, Simon McVittie)
+ - Fix some missing \n in verbose (debug log) messages
+ (fdo#90021, Ralf Habacker)
+ - Clean up some memory leaks in test code (fdo#90021,
+ Ralf Habacker)
+
+- Sync changes from SLE12 conditionalized for suse_version <= 1315
+
+- Update to 1.8.16:
+ * Security fixes:
+ - Do not allow non-uid-0 processes to send forged
+ ActivationFailure messages. On Linux systems with systemd
+ activation, this would allow a local denial of service:
+ unprivileged processes could flood the bus with these forged
+ messages, winning the race with the actual service activation
+ and causing an error reply to be sent back when service
+ auto-activation was requested. This does not prevent the real
+ service from being started, so it only works while the real
+ service is not running. (CVE-2015-0245, fdo#88811, bnc#916343;
+ Simon McVittie)
+ * Other fixes:
+ - fix a Windows build failure (fdo#88009, Ralf Habacker)
+ - on Windows, allow up to 8K connections to the dbus-daemon
+ instead of the previous 64, completing a previous fix which
+ only worked under Autotools (fdo#71297, Ralf Habacker)
+
+- Update to 1.8.14
+ * Security hardening:
+ - Do not allow calls to UpdateActivationEnvironment from uids
+ other than the uid of the dbus-daemon. If a system service
+ installs unsafe security policy rules that allow arbitrary
+ method calls (such as CVE-2014-8148) then this prevents
+ memory consumption and possible privilege escalation via
+ UpdateActivationEnvironment.
+ We believe that in practice, privilege escalation here is
+ avoided by dbus-daemon-launch-helper sanitizing its
+ environment; but it seems better to be safe.
+ - Do not allow calls to UpdateActivationEnvironment or the
+ Stats interface on object paths other than
+ /org/freedesktop/DBus. Some system services install unsafe
+ security policy rules that allow arbitrary method calls to
+ any destination, method and interface with a specified object
+ path; while less bad than allowing arbitrary method calls,
+ these security policies are still harmful, since dbus-daemon
+ normally offers the same API on all object paths and other
+ system services might behave similarly.
+ * Other fixes:
+ - Add missing initialization so GetExtendedTcpTable doesn't
+ crash on Windows Vista SP0 (fdo#77008, Ilya A. Tkachenko)
+
+- Update to 1.8.12:
+ * Fixes:
+ - Partially revert the CVE-2014-3639 patch by increasing the
+ default authentication timeout on the system bus from 5
+ seconds back to 30 seconds, since this has been reported to
+ cause boot regressions for some users, mostly with parallel
+ boot (systemd) on slower hardware.
+ On fast systems where local users are considered particularly
+ hostile, administrators can return to the 5 second timeout
+ (or any other value in milliseconds) by saving this as
+ /etc/dbus-1/system-local.conf:
+ <busconfig>
+ <limit name="auth_timeout">5000</limit>
+ </busconfig>
+ (fdo#86431, Simon McVittie)
+ - Add a message in syslog/the Journal when the auth_timeout is
+ exceeded (fdo#86431, Simon McVittie)
+ - Send back an AccessDenied error if the addressed recipient is
+ not allowed to receive a message (and in builds with
+ assertions enabled, don't assert under the same conditions).
+ (fdo#86194, Jacek Bukarewicz)
+
+- Update to 1.8.10:
+ * Security fixes:
+ - Increase dbus-daemon's RLIMIT_NOFILE rlimit to 65536
+ so that CVE-2014-3636 part A cannot exhaust the system bus'
+ file descriptors, completing the incomplete fix in 1.8.8.
+ (CVE-2014-7824, fdo#85105; Simon McVittie, Alban Crequy)
+
dracut
+- Update to version 055+suse.333.g39325ba0:
+ * feat(kernel-modules): exclude USB drivers in strict hostonly mode (bsc#1186056)
+ * fix(multipath): warn if included with no multipath devices and no user conf (bsc#1069169)
+ * fix(dracut.sh): improve detection of installed kernel versions (bsc#1205175)
+ * fix(nfs): chown using rpc default group (bsc#1204929)
+
elfutils
-- Add support for zstd, needed to inspect kernel modules (bsc#1196510)
-
-- Enhance license fields: all the libraries actually have a different
- license to the tools. While the tools are GPL-3.0-or-later, the
- libraries are (LGPL-3.0-or-later OR GPL-2.0-or-later)
- SLE bug (for tracking the above) bsc#1191310
-
-- Add disable-run-deleted-test.patch in order to disable
- failing test-case (boo#1189153).
-
-- For version 0.185, the below patches are no longer needed
- (jsc#SLE-17288, jsc#SLE-17951)
- libdw-check-end-of-attributes-list-consistently.patch
- elflint-dont-check-section-group-without-flags-word.patch
- libelf-error-if-elf_compress_gnu-is-used-on-SHF_COMPRESSED.patch
- libdw-readelf-make-sure-there-is-enough-data-to-read.patch
- elfutils-dont-trust-sh_entsize.patch
- elflint-check-symbol-table-data-is-big-enough-before-check.patch
- size-handle-recursive-elf-ar-files.patch
- elflint-sanity-check-the-number-of-phdrs-and-shdrs.patch
- use-the-empty-string-for-note-names-with-zero-size.patch
- readelf-fix-off-by-one-sanity-check.patch
- libebl-check-NT_PLATFORM-core-notes.patch
- libdwfl-sanity-check-partial-core-file-dyn-data-read.patch
- libelf-check-compression-before-allocate-output-buffer.patch
- libdwfl-sanity-check-partial-core-file-data-reads.patch
- arlib-check-that-sh_entsize-isnt-zero.patch
-
-- Update to version 0.185:
- debuginfod-client: Simplify curl handle reuse so downloads which
- return an error are retried.
- elfcompress: Always exit with code 0 when the operation succeeds (even
- when nothing was done). On error the exit code is now always 1.
-
-- Update to version 0.184:
- debuginfod: Use libarchive's bsdtar as the .deb-family file unpacker.
- debuginfod-client: Client caches negative results. If a query for a
- file failed with 404, an empty 000 permission
- file is created in the cache. This will prevent
- requesting the same file for the next 10 minutes.
- Client objects now carry long-lived curl handles
- for outgoing connections. This makes it more
- efficient for multiple sequential queries, because
- the TCP connections and/or TLS state info are kept
- around awhile, avoiding O(100ms) setup latencies.
- libdw: handle DW_FORM_indirect when reading attributes
- translations: Update Polish translation.
-
-- Add disable-run-readelf-self-test.patch in order to disable
- a failing test-case with GCC 11 (PR27367).
-
-- Update to version 0.183:
- debuginfod: New thread-busy metric and more detailed error metrics.
- New --fdcache-mintmp and tracking of filesystem freespace.
- New increased webapi concurrency while grooming.
- debuginfod-client: DEBUGINFOD_SONAME macro added to debuginfod.h which
- can be used to dlopen the libdebuginfod.so library.
- New function debuginfod_set_verbose_fd and
- DEBUGINFOD_VERBOSE environment variable.
- config: profile.sh and profile.csh won't export DEBUGINFOD_URLS unless
- configured --enable-debuginfod-urls[=URLS]
- elflint, readelf: Recognize SHF_GNU_RETAIN.
- Handle SHT_X86_64_UNWIND as valid relocation target.
-- Remove config-do-not-define-DEBUGINFOD_URLS-environment-var.patch patch.
-
-- Enable LTO (boo#1138796) for elfutils.spec.
-
-- Mention elfutils-rpmlintrc as a Source.
-
-- Add rpmlintrc for
- libdebuginfod1-dummy.s390x: E: shlib-policy-name-error (Badness: 10000) libdebuginfod1
- which is expected as libdebuginfod1 and it's dummy library do share equal
- soname.
-- Update to version 0.182:
- backends: Support for tilegx has been removed.
- config: New /etc/profile.d files to provide default $DEBUGINFOD_URLS.
- debuginfod: More efficient package traversal, tolerate various errors
- during scanning, grooming progress is more visible and
- interruptible, more prometheus metrics.
- debuginfod-client: Now supports compressed (kernel) ELF images.
- libdwfl: Add ZSTD compression support.
-
-- Creatu dummy subpackages that can be used for build of packages
- that are in bootstrap cycle.
-- Add Provides for real packages.
-
-- Update to version 0.181:
- libelf: elf_update now compensates (fixes up) a bad sh_addralign for
- SHF_COMPRESSED sections.
- libdebuginfod: configure now takes --enable-libdebuginfod=dummy or
- - -disable-libdebuginfod for bootstrapping.
- DEBUGINFOD_URLS now accepts "scheme-free" urls
- (guessing at what the user meant, either http:// or file://)
- readelf, elflint: Handle aarch64 bti, pac bits in dynamic table and gnu
- property notes.
- libdw, readelf: Recognize DW_CFA_AARCH64_negate_ra_state. Allows unwinding
- on arm64 for code that is compiled for PAC (Pointer
- Authentication Code) as long as it isn't enabled
-- Drop upstream patch:
- * 0001-tests-Add-GCOV-flags-when-necessary.patch
-
-- Remove cfi-fix.patch - should not be needed now.
-- Remove remove-run-large-elf-file.sh.patch as it now checks for memory
- size.
-- Use autosetup.
-
-- Update to version 0.180:
- elflint: Allow SHF_EXCLUDE as generic section flag when --gnu is given.
- libdw, readelf: Handle GCC LTO .gnu.debuglto_ prefix.
- libdw: Use correct CU to resolve file names in dwarf_decl_file.
- libdwfl: Handle debugaltlink in dwfl_standard_find_debuginfo.
- size: Also obey radix printing for bsd format.
- nm: Explicitly print weak 'V' or 'T' and common 'C' symbols.
-- Add 0001-tests-Add-GCOV-flags-when-necessary.patch in order to fix
- an unresolved symbol.
-- Enable LTO: boo#1138796 by adding -flto-partition=none and -Wno-error=stack-usage.
-
-- Update to version 0.179:
- debuginfod-client: When DEBUGINFOD_PROGRESS is set and the program doesn't
- install its own debuginfod_progressfn_t show download
- progress on stderr.
- DEBUGINFOD_TIMEOUT is now defined as seconds to get at
- least 100K, defaults to 90 seconds.
- Default to $XDG_CACHE_HOME/debuginfod_client.
- New functions debuginfod_set_user_data,
- debuginfod_get_user_data, debuginfod_get_url and
- debuginfod_add_http_header.
- Support for file:// URLs.
- debuginfod: Uses libarchive directly for reading rpm archives.
- Support for indexing .deb/.ddeb archives through dpkg-deb
- or bsdtar.
- Generic archive support through -Z EXT[=CMD]. Which can be
- used for example for arch-linux pacman files by using
- - Z '.tar.zst=zstdcat'.
- Better logging using User-Agent and X-Forwarded-For headers.
- More prometheus metrics.
- Support for eliding dots or extraneous slashes in path names.
- debuginfod-find: Accept /path/names in place of buildid hex.
- libelf: Handle PN_XNUM in elf_getphdrnum before shdr 0 is cached
- Ensure zlib resource cleanup on failure.
- libdwfl: dwfl_linux_kernel_find_elf and dwfl_linux_kernel_report_offline
- now find and handle a compressed vmlinuz image.
- readelf, elflint: Handle PT_GNU_PROPERTY.
- translations: Updated Ukrainian translation.
-
-- Re-add libelf1 to baselibs.conf: we still generate a
- libelf-devel-32bit, which is only installable if libelf1-21bit
- also exists.
-
-- Exclude debuginfod sub-packages and move them to elfutils-debuginfod.
-
-- Avoid double-shipping libdebuginfo.so.1 in two different
- subpackages. Fixup RPM group.
-
-- Split libdebuginfod1 into libdebuginfod1 and debuginfod-client.
- Add Requires for these packages.
-
-- Rename debuginfod-client package to libdebuginfod1 in
- order to fulfil SLPP violation.
-
-- Fix variable references in specfile
-
-- Use %fillupdir macros for proper sysconfig export.
-
-- Update to version 0.178:
- debuginfod: New server, client tool and library to index and fetch
- ELF/DWARF files addressed by build-id through HTTP.
- doc: There are now some manual pages for functions and tools.
- backends: The libebl libraries are no longer dynamically loaded through
- dlopen, but are now compiled into libdw.so directly.
- readelf: -n, --notes now takes an optional "SECTION" argument.
- - p and -x now also handle section numbers.
- New option --dyn-sym to show just the dynamic symbol table.
- libcpu: Add RISC-V disassembler.
- libdw: Abbrevs and DIEs can now be read concurrently by multiple
- threads through the same Dwarf handle.
- libdwfl: Will try to use debuginfod when installed as fallback to
- retrieve ELF and DWARF debug data files by build-id.
-- remove dwelf_elf_e_machine_string.patch.
-- remove unused libebl-plugins and libebl-devel subpackages
-- new subpackages debuginfod-client, debuginfod-client-devel and
- debuginfod added
-- main package binaries are explicitely listed and man pages
- for the binaries are included
-
-- Add remove-run-large-elf-file.sh.patch in order to remove
- running run-large-elf-file.sh (it hit OOM).
-
-- disable-tests-with-ptrace.patch: Remove, set XFAIL_TESTS instead
-- dwelf_elf_e_machine_string.patch: Avoid spurious failure
-
-- Modernize specfile and metadata.
-
-- Update to version 0.177:
- elfclassify: New tool to analyze ELF objects.
- readelf: Print DW_AT_data_member_location as decimal offset.
- Decode DW_AT_discr_list block attributes.
- libdw: Add DW_AT_GNU_numerator, DW_AT_GNU_denominator and DW_AT_GNU_bias.
- libdwelf: Add dwelf_elf_e_machine_string.
- dwelf_elf_begin now only returns NULL when there is an error
- reading or decompressing a file. If the file is not an ELF file
- an ELF handle of type ELF_K_NONE is returned.
- backends: Add support for C-SKY.
-- remove fix-bsc-1110929.diff and gcc9-tests-Don-t-printf-a-known-NULL-symname.patch
-- Use %make_build
-
-- Disable LTO (boo#1138796).
-
-- Update License tag to GPL-3.0-or-later, as requested by legal
- review.
-
-- Add fix-bsc-1110929.diff [bsc#1110929]
-
-- Add gcc9-tests-Don-t-printf-a-known-NULL-symname.patch in order to
- fix boo#1120864.
-
-- Add elfutils.keyring and verify signature.
-
-- Update to version 0.176
- build: Add new --enable-install-elfh option.
- Do NOT use this for system installs (it overrides glibc elf.h).
- backends: riscv improved core file and return value location support.
- Fixes CVE-2019-7146, CVE-2019-7148, CVE-2019-7149, CVE-2019-7150,
- CVE-2019-7664, CVE-2019-7665
-
-- Update to version 0.175
- readelf: Handle mutliple .debug_macro sections.
- Recognize and parse GNU Property, NT_VERSION and
- GNU Build Attribute ELF Notes.
- strip: Handle SHT_GROUP correctly.
- Add strip --reloc-debug-sections-only option.
- Handle relocations against GNU compressed sections.
- libdwelf: New function dwelf_elf_begin.
- libcpu: Recognize bpf jump variants BPF_JLT, BPF_JLE, BPF_JSLT
- and BPF_JSLE.
- backends: RISCV handles ADD/SUB relocations.
- Handle SHT_X86_64_UNWIND.
- Fixes CVE-2018-18310, CVE-2018-18520 and CVE-2018-18521.
-- remove disable-backtrace-dwarf-test.patch patch - the test
- works now
-
-- Add disable-backtrace-dwarf-test.patch in order to work around:
- https://sourceware.org/bugzilla/show_bug.cgi?id=23673.
-
-- Update to version 0.174
- libelf, libdw and all tools now handle extended shnum and
- shstrndx correctly.
- elfcompress: Don't rewrite input file if no section data needs
- updating. Try harder to keep same file mode bits
- (suid) on rewrite.
- strip: Handle mixed (out of order) allocated/non-allocated
- sections.
- unstrip: Handle SHT_GROUP sections.
- backends: RISCV and M68K now have backend implementations to
- generate CFI based backtraces.
-
-- Don't make elfutils recommend elfutils-lang as elfutils-lang
- already supplements elfutils.
-
-- Fix typo in the recommends name bsc#1104264
-
-- Update to version 0.173
- More fixes for crashes and hangs found by afl-fuzz. In particular various
- functions now detect and break infinite loops caused by bad DIE tree cycles.
- readelf: Will now lookup the size and signedness of constant value types
- to display them correctly (and not just how they were encoded).
- libdw: New function dwarf_next_lines to read CU-less .debug_line data.
- dwarf_begin_elf now accepts ELF files containing just .debug_line
- or .debug_frame sections (which can be read without needing a DIE
- tree from the .debug_info section).
- Removed dwarf_getscn_info, which was never implemented.
- backends: Handle BPF simple relocations.
- The RISCV backends now handles ABI specific CFI and knows about
- RISCV register types and names.
-- add cfi-fix.patch: make build green on arm target
-
-- Update to versio 0.172
- No functional changes compared to 0.171.
- Various bug fixes in libdw and eu-readelf dealing with bad DWARF5 data.
- Thanks to running the afl fuzzer on eu-readelf and various testcases.
-
-- disable-tests-with-ptrace.patch: Rediff
-
-- Update to version 0.171
- DWARF5 and split dwarf, including GNU DebugFission, are supported now.
- Data can be read from the new DWARF sections .debug_addr, .debug_line_str,
- .debug_loclists, .debug_str_offsets and .debug_rnglists. Plus the new
- DWARF5 and GNU DebugFission encodings of the existing .debug sections.
- Also in split DWARF .dwo (DWARF object) files. This support is mostly
- handled by existing functions (dwarf_getlocation*, dwarf_getsrclines,
- dwarf_ranges, dwarf_form*, etc.) now returning the data from the new
- sections and data formats. But some new functions have been added
- to more easily get information about skeleton and split compile units
- (dwarf_get_units and dwarf_cu_info), handle new attribute data
- (dwarf_getabbrevattr_data) and to keep references to Dwarf_Dies
- that might come from different sections or files (dwarf_die_addr_die).
- Not yet supported are .dwp (Dwarf Package) and .sup (Dwarf Supplementary)
- files, the .debug_names index, the .debug_cu_index and .debug_tu_index
- sections. Only a single .debug_info (and .debug_types) section are
- currently handled.
- readelf: Handle all new DWARF5 sections.
- - -debug-dump=info+ will show split unit DIEs when found.
- - -dwarf-skeleton can be used when inspecting a .dwo file.
- Recognizes GNU locviews with --debug-dump=loc.
- libdw: New functions dwarf_die_addr_die, dwarf_get_units,
- dwarf_getabbrevattr_data and dwarf_cu_info.
- libdw will now try to resolve the alt file on first use of
- an alt attribute FORM when not set yet with dwarf_set_alt.
- dwarf_aggregate_size() now works with multi-dimensional arrays.
- libdwfl: Use process_vm_readv when available instead of ptrace.
- backends: Add a RISC-V backend.
- There were various improvements to build on Windows.
- The sha1 and md5 implementations have been removed, they weren't used.
-- Remove patches: elfutils-0.170-Wpackednotaligned.patch,
- elfutils-0.170-stripnothing.patch, gcc8-disable-test.patch
-- make package with V=1 to print verbose command line
-
-- Add gcc8-disable-test.patch in order to fix boo#1084637: temporarily
- disable a test-case.
-
-- disable-tests-with-ptrace.patch: Rediff
-
-- Update to version 0.170
- libdw: Added new DWARF5 attribute, tag, character encoding, language code,
- calling convention, defaulted member function and macro constants
- to dwarf.h.
- New functions dwarf_default_lower_bound and dwarf_line_file.
- dwarf_peel_type now handles DWARF5 immutable, packed and shared tags.
- dwarf_getmacros now handles DWARF5 .debug_macro sections.
- strip: Add -R, --remove-section=SECTION and --keep-section=SECTION.
- backends: The bpf disassembler is now always build on all platforms.
-- Includes changes in 0.169
- backends: Add support for EM_PPC64 GNU_ATTRIBUTES.
- Frame pointer unwinding fallback support for i386, x86_64, aarch64.
- translations: Update Polish translation.
-- Remove obsolete 0001-backends-Add-support-for-EM_PPC64-GNU_ATTRIBUTES.patch
- and ppc-machine-flags.patch
-- Add elfutils-0.170-stripnothing.patch to robustify test and avoid a FAIL.
-- Add elfutils-0.170-Wpackednotaligned.patch to fix build with GCC 8.
- (boo#1084637)
-
-- Use %license (boo#1082318)
-
-- Restore obsolete on libebl.
-
-- Update package descriptions.
-- Rename libebl1 to libebl-plugins as these are not linked,
- but dlopened using their unversioned libebl_$ARCH.so name.
-- Have libelf1 require libebl-plugins (libebl.a, which does the
- dlopen call, is staticly built into libelf1). This is necessary
- for pahole to display its results. [boo#1049871]
-
-- ppc-machine-flags.patch: support EM_PPC machine flags
-- disable-tests-with-ptrace.patch: disable more tests
-
-- Update Git-Clone URL
-
-- Add 0001-backends-Add-support-for-EM_PPC64-GNU_ATTRIBUTES.patch
- unconditionally in the spec file. As we can't support binary diff,
- a newly added test-case is removed from the patch.
-
-- Add 0001-backends-Add-support-for-EM_PPC64-GNU_ATTRIBUTES.patch:
- fix .gnu.attributes checking on ppc64{,le}.
-
-- Add missing ldconfig calls for libasm1
-
-- make tests pass when user does not want debuginfo (boo#1031556)
-
-- Update to version 0.168:
- libelf: gelf_newehdr and gelf_newehdr now return void *.
- libdw: dwarf.h corrected the DW_LANG_PLI constant name (was DW_LANG_PL1).
- readelf: Add optional --symbols[=SECTION] argument to select section name.
-- Includes changes from 0001-Add-GCC7-Wimplicit-fallthrough-support-fixes.patch
- and 0001-ar-Fix-GCC7-Wformat-length-issues.patch.
-- Remove elfutils-0.137-dwarf-header-check-fix.diff which is no longer
- required after a debugedit fix.
-
-- Add 0001-Add-GCC7-Wimplicit-fallthrough-support-fixes.patch: fix
- new warning introduced in GCC 7.
-- Add 0001-ar-Fix-GCC7-Wformat-length-issues.patch: fix -Wformat-length
- warning introduced in GCC 7.
-
-- Update to version 0.167:
- libasm: Add eBPF disassembler for EM_BPF files.
- backends: Add m68k and BPF backends.
- ld: Removed.
- dwelf: Add ELF/DWARF string table creation functions. dwelf_strtab_init,
- dwelf_strtab_add, dwelf_strtab_add_len, dwelf_strtab_finalize,
- dwelf_strent_off, dwelf_strent_str and dwelf_strtab_free.
- Support compressed sections from binutils 2.27.
-- Remove patch elfutils-0.166-elfcmp-comp-gcc6.patch: included upstream.
-
-- disable-tests-with-ptrace.patch: disable tests that use ptrace when
- running under qemu-linux-user
-
-- Update to version 0.166:
- + config: The default program prefix for the installed tools is now
- eu-. Use configure --program-prefix="" to not use a program
- prefix.
- + Various bugfixes.
-- Drop elfutils-0.164-dt-ppc-opt.patch and
- elfutils-0.164-gcc6.patch (merged upstream)
-- Add patch elfutils-0.166-elfcmp-comp-gcc6.patch: fix
- self-comparison error with GCC 6.
-- Changes from 0.165:
- + Add eu-elfcompress
- + Add pkg-config files for libelf and libdw.
-
-- add elfutils-0.164-gcc6.patch
-
-- rename dt-ppc-opt.patch as elfutils-0.164-dt-ppc-opt.patch
- and add reference to upstream commit id
-
-- dt-ppc-opt.patch: add support for DT_PPC_OPT
-
-- Update to version 0.164
- Drop the following patches, fixed upstream:
- * elfutils-portability-0.163.patch
- * elfutils-revert-portability-scanf.patch
- * elfutils-uninitialized.diff
- * libebl-prototype-fix.diff
- Changelog:
- - strip, unstrip:
- * Handle ELF files with merged strtab/shstrtab tables.
- * Handle missing SHF_INFO_LINK section flags.
- - libelf:
- * Use int64_t for offsets in libelf.h instead of loff_t.
- - libdw:
- * dwarf.h Add preliminary DWARF5 DW_LANG_Haskell.
- - libdwfl:
- * dwfl_standard_find_debuginfo now searches any subdir of the binary
- path under the debuginfo root when the separate debug file couldn't
- be found by build-id.
- * dwfl_linux_proc_attach can now be called before any Dwfl_Modules
- have been reported.
-- Implement %check
-
-- Update to version 0.163
- Drop patch elfutils-fix-dir-traversal-vuln-in-ar-extraction.patch
- Drop patch elfutils-0.148-dont-crash.diff (fixed by 9ceebe69)
- Drop patch elfutils-portability-0.161.patch
- Add patch elfutils-portability-0.163.patch
- Changelog:
- 0.163:
- - Bug fixes only, no new features.
- 0.162:
- - libdw: Install new header elfutils/known-dwarf.h.
- dwarf.h Add preliminary DWARF5 constants DW_TAG_atomic_type,
- DW_LANG_Fortran03, DW_LANG_Fortran08. dwarf_peel_type now also
- handles DW_TAG_atomic_type.
- - addr2line: Input addresses are now always interpreted as hexadecimal
- numbers, never as octal or decimal numbers.
- New option -a, --addresses to print address before each entry.
- New option -C, --demangle to show demangled symbols.
- New option --pretty-print to print all information on one line.
- - ar: CVE-2014-9447 Directory traversal vulnerability in ar extraction.
- - backends: x32 support.
-
-- Make ebl modversion predictable to allow build-compare (bnc#916043)
-
-- CVE-2014-9447: elfutils: Directory traversal vulnerability (bnc#911662)
- Add patch: elfutils-fix-dir-traversal-vuln-in-ar-extraction.patch
-
-- Update to version 0.161
- + libdw: New function dwarf_peel_type. dwarf_aggregate_size now uses
- dwarf_peel_type to also provide the sizes of qualified types.
- dwarf_getmacros will now serve either of .debug_macro and
- .debug_macinfo transparently. New interfaces
- dwarf_getmacros_off, dwarf_macro_getsrcfiles,
- dwarf_macro_getparamcnt, and dwarf_macro_param are available
- for more generalized inspection of macros and their parameters.
- dwarf.h: Add DW_AT_GNU_deleted, DW_AT_noreturn, DW_LANG_C11,
- DW_LANG_C_plus_plus_11 and DW_LANG_C_plus_plus_14.
-- Remove merged patches
- + elfutils-robustify.patch
- + elfutils-no-po-test-build.diff
- + elfutils-check-for-overflow-before-calling-malloc-to-uncompress-data.patch
-- Refreshed patch (from Fedora sources)
- + elfutils-portability.patch > elfutils-portability-0.161.patch
-- Add a lang subpackage
-
-- Update homepage URL and improve RPM group classification
-
expat
+- Security fix:
+ * (CVE-2022-43680, bsc#1204708) use-after free caused by overeager
+ destruction of a shared DTD in XML_ExternalEntityParserCreate in
+ out-of-memory situations
+ - Added patch expat-CVE-2022-43680.patch
+
+- Security fix:
+ * (CVE-2022-40674, bsc#1203438) use-after-free in the doContent
+ function in xmlparse.c
+ - Added patch expat-CVE-2022-40674.patch
+
+- Security fixes:
+ * (CVE-2022-25236, bsc#1196784) [>=2.4.5] Fix to CVE-2022-25236
+ breaks biboumi, ClairMeta, jxmlease, libwbxml,
+ openleadr-python, rnv, xmltodict
+ - Added expat-CVE-2022-25236-relax-fix.patch
+
+- Security fixes:
+ * (CVE-2022-25236, bsc#1196025) Expat before 2.4.5 allows
+ attackers to insert namespace-separator characters into
+ namespace URIs
+ - Added expat-CVE-2022-25236.patch
+ * (CVE-2022-25235, bsc#1196026) xmltok_impl.c in Expat before
+ 2.4.5 does not check whether a UTF-8 character is valid in a
+ certain context.
+ - Added expat-CVE-2022-25235.patch
+ * (CVE-2022-25313, bsc#1196168) Stack exhaustion in
+ build_model() via uncontrolled recursion
+ - Added expat-CVE-2022-25313.patch
+ - The fix upstream introduced a regression that was later
+ amended in 2.4.6 version
+ + Added expat-CVE-2022-25313-fix-regression.patch
+ * (CVE-2022-25314, bsc#1196169) Integer overflow in copyString
+ - Added expat-CVE-2022-25314.patch
+ * (CVE-2022-25315, bsc#1196171) Integer overflow in storeRawNames
+ - Added expat-CVE-2022-25315.patch
+
+- Update to latest version 2.4.4 in SLE-15-SP4 [jsc#SLE-21253]
+
+- update to 2.4.4 (bsc#1195217, bsc#1195054):
+ * Security fixes:
+ - CVE-2022-23852 -- Fix signed integer overflow
+ (undefined behavior) in function XML_GetBuffer
+ that is also called by function XML_Parse internally)
+ for when XML_CONTEXT_BYTES is defined to >0 (which is both
+ common and default).
+ Impact is denial of service or more.
+ - CVE-2022-23990 -- Fix unsigned integer overflow in function
+ doProlog triggered by large content in element type
+ declarations when there is an element declaration handler
+ present (from a prior call to XML_SetElementDeclHandler).
+ Impact is denial of service or more.
+ * Bug fixes:
+ - xmlwf: Fix a memory leak on output file opening error
+ * Other changes:
+ - Version info bumped from 9:3:8 to 9:4:8;
+ see https://verbump.de/ for what these numbers do
+ * Drop unused file valid-xhtml10.png
+
+- update to 2.4.3 (bsc#1194251, bsc#1194362, bsc#1194474,
+ bsc#1194476, bsc#1194477, bsc#1194478, bsc#1194479, bsc#1194480):
+ * CVE-2021-45960 -- Fix issues with left shifts by >=29 places
+ resulting in
+ a) realloc acting as free
+ b) realloc allocating too few bytes
+ c) undefined behavior
+ depending on architecture and precise value
+ for XML documents with >=2^27+1 prefixed attributes
+ on a single XML tag a la
+ "<r xmlns:a='[..]' a:a123='[..]' [..] />"
+ where XML_ParserCreateNS is used to create the parser
+ (which needs argument "-n" when running xmlwf).
+ Impact is denial of service, or more.
+ * CVE-2021-46143 (ZDI-CAN-16157) -- Fix integer overflow
+ on variable m_groupSize in function doProlog leading
+ to realloc acting as free.
+ Impact is denial of service or more.
+ * CVE-2022-22822 to CVE-2022-22827 -- Prevent integer overflows
+ near memory allocation at multiple places. Mitre assigned
+ a dedicated CVE for each involved internal C function:
+ - CVE-2022-22822 for function addBinding
+ - CVE-2022-22823 for function build_model
+ - CVE-2022-22824 for function defineAttribute
+ - CVE-2022-22825 for function lookup
+ - CVE-2022-22826 for function nextScaffoldPart
+ - CVE-2022-22827 for function storeAtts
+ Impact is denial of service or more.
+
+- update to 2.4.2:
+ * Link againgst libm for function "isnan"
+ * Include expat_config.h as early as possible
+ * Autotools: Include files with release archives:
+ - buildconf.sh
+ - fuzz/*.c
+ * Autotools: Sync CMake templates
+ * docs: Document that function XML_GetBuffer may return NULL
+ when asking for a buffer of 0 (zero) bytes size
+ * docs: Fix return value docs for both
+ XML_SetBillionLaughsAttackProtection* functions
+ * Version info bumped from 9:1:8 to 9:2:8
+
+- Update to 2.4.1 in SLE-15-SP4 [jsc#SLE-21253]
+ * Remove expat-CVE-2018-20843.patch upstream
+
+- Update to 2.4.1:
+ * Bug fixes:
+ - Autotools: Fix installed header expat_config.h for multilib
+ systems; regression introduced in 2.4.0 by pull request #486
+ * Other changes:
+ - Version info bumped from 9:0:8 to 9:1:8; see
+ https://verbump.de/ for what these numbers do
+
+- Update to 2.4.0: [CVE-2013-0340 "Billion Laughs"]
+ * Security fixes:
+ - CVE-2013-0340/CWE-776 -- Protect against billion laughs attacks
+ (denial-of-service; flavors targeting CPU time or RAM or both,
+ leveraging general entities or parameter entities or both)
+ by tracking and limiting the input amplification factor
+ (<amplification> := (<direct> + <indirect>) / <direct>).
+ By conservative default, amplification up to a factor of 100.0
+ is tolerated and rejection only starts after 8 MiB of output bytes
+ (=<direct> + <indirect>) have been processed.
+ The fix adds the following to the API:
+ - A new error code XML_ERROR_AMPLIFICATION_LIMIT_BREACH to
+ signals this specific condition.
+ - Two new API functions ..
+ - XML_SetBillionLaughsAttackProtectionMaximumAmplification and
+ - XML_SetBillionLaughsAttackProtectionActivationThreshold
+ .. to further tighten billion laughs protection parameters
+ when desired. Please see file "doc/reference.html" for details.
+ If you ever need to increase the defaults for non-attack XML
+ payload, please file a bug report with libexpat.
+ - Two new XML_FEATURE_* constants ..
+ - that can be queried using the XML_GetFeatureList function, and
+ - that are shown in "xmlwf -v" output.
+ - Two new environment variable switches ..
+ - EXPAT_ACCOUNTING_DEBUG=(0|1|2|3) and
+ - EXPAT_ENTITY_DEBUG=(0|1)
+ .. for runtime debugging of accounting and entity processing.
+ Specific behavior of these values may change in the future.
+ - Two new command line arguments "-a FACTOR" and "-b BYTES"
+ for xmlwf to further tighten billion laughs protection
+ parameters when desired.
+ If you ever need to increase the defaults for non-attack XML
+ payload, please file a bug report with libexpat.
+ * Bug fixes:
+ - For (non-default) compilation with -DEXPAT_MIN_SIZE=ON (CMake)
+ or CPPFLAGS=-DXML_MIN_SIZE (GNU Autotools): Fix segfault
+ for UTF-16 payloads containing CDATA sections.
+ - Autotools: Fix generated CMake files for non-64bit and
+ non-Linux platforms (e.g. macOS and MinGW in particular)
+ that were introduced with release 2.3.0
+ * Other changes:
+ - xmlwf: Improve help output and the xmlwf man page
+ - xmlwf: Improve maintainability through some refactoring
+ - xmlwf: Fix man page DocBook validity
+ - CMake: Support absolute paths for both CMAKE_INSTALL_LIBDIR
+ and CMAKE_INSTALL_INCLUDEDIR
+ - CMake: Add support for standard variable BUILD_SHARED_LIBS
+ - Unexpose symbol _INTERNAL_trim_to_complete_utf8_characters
+ - Resolve macro HAVE_EXPAT_CONFIG_H
+ - Delete unused legacy helper file "conftools/PrintPath"
+ - doc/reference.html: Fix XHTML validity
+ - doc/reference.html: Replace the 90s look by OK.css
+ - Version info bumped from 8:0:7 to 9:0:8 due to addition of
+ new symbols and error codes; see https://verbump.de/ for
+ what these numbers do
+
+- Do not BuildRequire cmake: expat is part of the distro bootstrap
+ cycle and any additional dependency makes the ring larger. In
+ this case here, cmake was even only used to own a directory.
+
+- update to 2.3.0:
+ * When calling XML_ParseBuffer without a prior successful call to
+ XML_GetBuffer as a user, no longer trigger undefined behavior
+ (by adding an integer to a NULL pointer) but rather return
+ XML_STATUS_ERROR and set the error code to (new) code
+ XML_ERROR_NO_BUFFER. Found by UBSan (UndefinedBehaviorSanitizer)
+ of Clang 11 (but not Clang 9).
+ * xmlwf: Exit status 2 was used for both:
+ - malformed input files (documented) and
+ - invalid command-line arguments (undocumented).
+ case of invalid command-line arguments now
+ has its own exit status 4, resolving the ambiguity.
+ * Other changes
+
+- Update to 2.2.10:
+ * Bug fixes:
+ - Fix undefined behavior during parsing caused by pointer
+ arithmetic with NULL pointers
+ - Fix reading uninitialized variable during parsing
+ - xmlwf: Add missing check for malloc NULL return
+ * Other changes:
+ - xmlwf: Document exit codes in xmlwf manpage and exit with code 3
+ (rather than code 1) for output errors when used with "-d DIRECTORY"
+ - Autotools: Use -Werror while configure tests the compiler for
+ supported compile flags to avoid false positives
+ - Autotools: Improve handling of user (C|CPP|CXX|LD)FLAGS, e.g.
+ ensure that they have the last word over flags added while
+ running ./configure
+ - CMake: Create libexpatw.{dll,so} and expatw.pc (with emphasis
+ on suffix "w") with -DEXPAT_CHAR_TYPE=(ushort|wchar_t)
+ - CMake: Detect and deny unsupported build combinations
+ involving -DEXPAT_CHAR_TYPE=(ushort|wchar_t)
+ - CMake: Install pre-compiled shipped xmlwf.1 manpage in case
+ of -DEXPAT_BUILD_DOCS=OFF
+ - CMake: Fix use of Expat by means of add_subdirectory
+ - CMake: Keep expat target name constant at "expat" (i.e. refrain
+ from using the target name to control build artifact filenames)
+ - CMake: Expose man page compilation as target "xmlwf-manpage"
+ - CMake: Introduce option EXPAT_BUILD_PKGCONFIG to control
+ generation of pkg-config file "expat.pc"
+ - CMake: Add minimalistic support for building binary packages
+ with CMake target "package"; based on CPack
+ - CMake: Add option -DEXPAT_OSSFUZZ_BUILD=(ON|OFF) with default
+ OFF to build fuzzer code against OSS-Fuzz and related
+ environment variable LIB_FUZZING_ENGINE
+ - Fix testsuite for -DEXPAT_DTD=OFF and -DEXPAT_NS=OFF
+ - Address compiler warnings
+ - Address pngcheck warnings with doc/*.png images: Version info
+ bumped from 7:11:6 to 7:12:6
+
+- Version update to 2.2.9
+ * Other changes:
+ - examples: Drop executable bits from elements.c
+ [#349] Windows: Change the name of the Windows DLLs from expat*.dll
+ to libexpat*.dll once more (regression from 2.2.8, first
+ fixed in 1.95.3, issue #61 on SourceForge today,
+ was issue #432456 back then); needs a fix due
+ case-insensitive file systems on Windows and the fact that
+ Perl's XML::Parser::Expat compiles into Expat.dll.
+ [#347] Windows: Only define _CRT_RAND_S if not defined
+ Version info bumped from 7:10:6 to 7:11:6
+
+- Version update to 2.2.8
+ * Security fixes: (CVE-2019-15903, bsc#1149429)
+ - CVE-2019-15903 -- Fix heap overflow triggered by XML_GetCurrentLineNumber
+ (or XML_GetCurrentColumnNumber), and deny internal entities closing the doctype;
+ * Bug fixes:
+ - Fix cases where XML_StopParser did not have any effect
+ when called from inside of an end element handler
+ - xmlwf: Fix exit code for operation without "-d DIRECTORY";
+ previously, only "-d DIRECTORY" would give you a proper exit code:
+ Now both cases return exit code 2.
+ * Other changes:
+ - examples: Improve elements.c
+ - Autotools: Add argument --enable-xml-attr-info
+ - Autotools: Add arguments --with-getrandom --without-getrandom --with-sys-getrandom --without-sys-getrandom
+ - Autotools: Fix linking issues with "./configure LD=clang"
+ - Autotools: Fix "make run-xmltest" for out-of-source builds
+ - CMake: Pull all options from Expat <=2.2.7 into namespace
+ - CMake: Add argument -DEXPAT_ATTR_INFO=(ON|OFF), default OFF
+ - CMake: Add argument -DEXPAT_LARGE_SIZE=(ON|OFF), default OFF
+ - CMake: Add argument -DEXPAT_MIN_SIZE=(ON|OFF), default OFF
+ - CMake: Add arguments -DEXPAT_WITH_GETRANDOM=(ON|OFF|AUTO), default AUTO
+ - CMake: Add arguments -DEXPAT_WITH_SYS_GETRANDOM=(ON|OFF|AUTO), default AUTO
+ - CMake: Install expat_config.h to include directory
+ - CMake: Generate and install configuration files for future find_package(expat [..] CONFIG [..])
+ - CMake: Now produces a summary of applied configuration
+ - CMake: Require C++ compiler only when tests are enabled
+ - CMake: Fix compilation for 16bit character types, i.e. ex -DXML_UNICODE=ON (and ex -DXML_UNICODE_WCHAR_T=ON)
+ - CMake: Port "make run-xmltest" from GNU Autotools to CMake
+ - CMake: Integrate OSS-Fuzz fuzzers, option -DEXPAT_BUILD_FUZZERS=(ON|OFF), default OFF
+- Removed patches fixed in the update:
+ * expat-CVE-2019-15903.patch
+ * expat-CVE-2019-15903-tests.patch
+
+- Security fix (CVE-2019-15903, bsc#1149429)
+ * Crafted XML input results in heap-based buffer over-read by fooling
+ the parser into changing from DTD parsing to document parsing
+ * Added patches:
+ - expat-CVE-2019-15903.patch
+ - expat-CVE-2019-15903-tests.patch
+
+- Version update to 2.2.7 (CVE-2018-20843, bsc#1139937)
+ * Security fixes:
+ - CVE-2018-20843 - Fix extraction of namespace prefixes from
+ XML names; XML names with multiple colons could end up in
+ the wrong namespace, and take a high amount of RAM and CPU
+ resources while processing, opening the door to use for
+ denial-of-service attacks
+ * Other changes:
+ - Autotools/CMake: Utilize -fvisibility=hidden to stop
+ exporting non-API symbols
+ - Autotools: Add --without-examples and --without-tests
+ - Autotools: Modernize configure.ac
+ - Autotools: Fix check for -fvisibility=hidden for Clang
+ - Autotools: Fix compilation for lack of docbook2x-man
+ - CMake: Make libdir of pkgconfig expat.pc support multilib
+ - CMake: Build man page in PROJECT_BINARY_DIR not _SOURCE_DIR
+ - Remove fallback to bcopy, assume that memmove(3) exists
+- Removed expat-2.2.6-fix-make-clean.patch
+
+- Add expat-2.2.6-fix-make-clean.patch
+- Allow profile guided optimization again
+
+- Drop docbook2x dependency, the manpages are generated in
+ the upstream archive and this way we break buildcycle
+
+- Version update to 2.2.6 Sun August 12 2018
+ * Bug fixes:
+ - Avoid doing arithmetic with NULL pointers in XML_GetBuffer
+ - Fix 2.2.5 regression with suspend-resume while parsing
+ a document like '<root/>'
+ * Other changes:
+ - Autotools: Fix docbook-related configure syntax error
+ - Autotools: Avoid grep option `-q` for Solaris
+ - Autotools: Support
+ ./configure DOCBOOK_TO_MAN="xmlto man --skip-validation"
+ - Autotools: Support DOCBOOK_TO_MAN command which produces
+ xmlwf.1 rather than XMLWF.1; also covers case insensitive
+ file systems
+ - Autotools: Drop -rpath option passed to libtool
+ - Autotools: Detect and deny SGML docbook2man as ours is XML
+ - Autotools/CMake: Support command db2x_docbook2man as well
+ - CMake: Introduce option WARNINGS_AS_ERRORS, defaults to OFF
+ - CMake: Introduce option MSVC_USE_STATIC_CRT, defaults to OFF
+ - CMake: Introduce option XML_UNICODE and XML_UNICODE_WCHAR_T,
+ both defaulting to OFF
+ - CMake: Prefer check_symbol_exists over check_function_exists
+ - CMake: Create the same pkg-config file as with GNU Autotools
+ - CMake: Use GNUInstallDirs module to set proper defaults for
+ install directories
+ - CMake: Utilize expat_config.h.cmake for XML_DEV_URANDOM
+ - Address compiler warnings
+ - Fix miscellaneous typos
+
+- Expand description of expat-devel.
+
+- Do not generate manpages from docbook
+- Temporarily disable profiling due to bug in build system
+
+- Version update to 2.2.5 Tue October 31 2017
+ * Bug fixes:
+ - If the parser runs out of memory, make sure its internal
+ state reflects the memory it actually has, not the memory
+ it wanted to have.
+ - The default handler wasn't being called when it should for
+ a SYSTEM or PUBLIC doctype if an entity declaration handler
+ was registered.
+ - Fix a case of mistakenly reported parsing success where
+ XML_StopParser was called from an element handler
+ - Function XML_ErrorString was returning NULL rather than
+ a message for code XML_ERROR_INVALID_ARGUMENT
+ introduced with release 2.2.1
+ * Other changes:
+ - Add argument -N adding notation declarations
+ - various compiler-specific fixes
+ - Improve docbook2x-man detection
+- drop expat-docbook.patch
+ * fixed in 0f5186c7b8e503c669e332d944712de010b265f3
+- switch to github for release tarballs and website
+
+- Version update to 2.2.4 Sat August 19 2017
+ * Bug fixes:
+ [#115] Fix copying of partial characters for UTF-8 input
+ * Other changes:
+ [#109] Fix "make check" for non-x86 architectures that default
+ to unsigned type char (-128..127 rather than 0..255)
+ [#109] coverage.sh: Cover -funsigned-char
+ Autotools: Introduce --without-xmlwf argument
+ [#65] Autotools: Replace handwritten Makefile with GNU Automake
+ [#43] CMake: Auto-detect high quality entropy extractors, add new
+ option USE_libbsd=ON to use arc4random_buf of libbsd
+ [#74] CMake: Add -fno-strict-aliasing only where supported
+ [#114] CMake: Always honor manually set BUILD_* options
+ [#114] CMake: Compile man page if docbook2x-man is available, only
+ [#117] Include file tests/xmltest.log.expected in source tarball
+ (required for "make run-xmltest")
+ [#111] Fix some typos in documentation
+ Version info bumped from 7:5:6 to 7:6:6
+- Release 2.2.3 Wed August 2 2017
+ * Bug fixes:
+ [#85] Fix a dangling pointer issue related to realloc
+ * Other changes:
+ [#91] Linux: Allow getrandom to fail if nonblocking pool has not
+ yet been initialized and read /dev/urandom then, instead.
+ This is in line with what recent Python does.
+ [#86] Check that a UTF-16 encoding in an XML declaration has the
+ right endianness
+ [#4] #5 #7 Recover correctly when some reallocations fail
+ Repair "./configure && make" for systems without any
+ provider of high quality entropy
+ and try reading /dev/urandom on those
+ Ensure that user-defined character encodings have converter
+ functions when they are needed
+ Fix mis-leading description of argument -c in xmlwf.1
+ Rely on macro HAVE_ARC4RANDOM_BUF (rather than __CloudABI__)
+ for CloudABI
+ [#100] Fix use of SIPHASH_MAIN in siphash.h
+ [#23] Test suite: Fix memory leaks
+ Version info bumped from 7:4:6 to 7:5:6
+- Release 2.2.2 Wed July 12 2017
+ * Security fixes:
+ [#43] Protect against compilation without any source of high
+ quality entropy enabled, e.g. with CMake build system;
+ * [MOX-006] Fix non-NULL parser parameter validation in XML_Parse;
+ resulted in NULL dereference, previously;
+ * Bug fixes:
+ [#69] Fix improper use of unsigned long long integer literals
+ * Other changes:
+ [#73] Start requiring a C99 compiler
+ [#49] Fix "==" Bashism in configure script
+ [#58] Address compile warnings
+ [#68] Fix "./buildconf.sh && ./configure" for some versions
+ of Dash for /bin/sh
+ [#72] CMake: Ease use of Expat in context of a parent project
+ with multiple CMakeLists.txt files
+ [#72] CMake: Resolve mistaken executable permissions
+ [#76] Address compile warning with -DNDEBUG (not recommended!)
+ [#77] Address compile warning about macro redefinition
+ * Added patch expat-docbook.patch to compile the man pages with
+ docbook-to-man
+ * Cleaned spec file with spec-cleaner
+
+- Allow building when do_profiling is undefined
+
+- Build with profiling when possible
+
+- Version update to 2.2.1 Sat June 17 2017
+ - Security fixes:
+ CVE-2017-9233 / bsc#1047236 -- External entity infinite loop DoS
+ Details: https://libexpat.github.io/doc/cve-2017-9233/
+ Commit c4bf96bb51dd2a1b0e185374362ee136fe2c9d7f
+ - [MOX-002] CVE-2016-9063 / bsc#1047240 -- Detect integer overflow;
+ (Fixed version of existing downstream patches!)
+ - (SF.net) #539 Fix regression from fix to CVE-2016-0718 cutting off
+ longer tag names;
+ [#25] More integer overflow detection (function poolGrow);
+ - [MOX-002] Detect overflow from len=INT_MAX call to XML_Parse;
+ - [MOX-005] #30 Use high quality entropy for hash initialization:
+ * arc4random_buf on BSD, systems with libbsd
+ (when configured with --with-libbsd), CloudABI
+ * RtlGenRandom on Windows XP / Server 2003 and later
+ * getrandom on Linux 3.17+
+ In a way, that's still part of CVE-2016-5300.
+ https://github.com/libexpat/libexpat/pull/30/commits
+ - [MOX-005] For the low quality entropy extraction fallback code,
+ the parser instance address can no longer leak,
+ - [MOX-003] Prevent use of uninitialised variable; commit
+ - [MOX-004] a4dc944f37b664a3ca7199c624a98ee37babdb4b
+ Add missing parameter validation to public API functions
+ and dedicated error code XML_ERROR_INVALID_ARGUMENT:
+ - [MOX-006] * NULL checks; commits
+ * Negative length (XML_Parse); commit
+ - [MOX-002] 70db8d2538a10f4c022655d6895e4c3e78692e7f
+ - [MOX-001] #35 Change hash algorithm to William Ahern's version of SipHash
+ to go further with fixing CVE-2012-0876.
+ https://github.com/libexpat/libexpat/pull/39/commits
+ - Bug fixes:
+ [#32] Fix sharing of hash salt across parsers;
+ relevant where XML_ExternalEntityParserCreate is called
+ prior to XML_Parse, in particular (e.g. FBReader)
+ [#28] xmlwf: Auto-disable use of memory-mapping (and parsing
+ as a single chunk) for files larger than ~1 GB (2^30 bytes)
+ rather than failing with error "out of memory"
+ [#3] Fix double free after malloc failure in DTD code; commit
+ 7ae9c3d3af433cd4defe95234eae7dc8ed15637f
+ [#17] Fix memory leak on parser error for unbound XML attribute
+ prefix with new namespaces defined in the same tag;
+ found by Google's OSS-Fuzz; commits
+ xmlwf on Windows: Add missing calls to CloseHandle
+ - New features:
+ [#30] Introduced environment switch EXPAT_ENTROPY_DEBUG=1
+ for runtime debugging of entropy extraction
+ Bump version info from 7:2:6 to 7:3:6
+
+- Remove pointless --with-pic (for static only)
+
+- Version update to 2.2.0:
+ * Fixes bnc#983215 CVE-2012-6702
+ * Fixes bnc#983216 CVE-2016-5300
+ * Various cmake and autotools script updates
+ * Fix detection of utf8 character boundaries
+- Remove all patches merged upstream:
+ * expat-2.1.1-avoid_relying_on_undef_behaviour.patch
+ * expat-2.1.1-parser_crashes_on_malformed_input.patch
+ * expat-alloc-size.patch
+ * expat-visibility.patch
+
+- add expat-2.1.1-avoid_relying_on_undef_behaviour.patch to avoid
+ relying on undefined behavior in the original CVE-2015-1283 fix
+ [bnc#980391], [bnc#983985], [CVE-2016-4472]
+- add expat-2.1.1-parser_crashes_on_malformed_input.patch to fix
+ Expat XML parser that mishandles certain kinds of malformed input
+ documents [bnc#979441], [CVE-2016-0718]
+- use spec-cleaner to clean specfile
+
+- After simplification of expat-visibility.patch, it became
+ uneffective as no symbols are getting hidden. add
+ - fvisibility=hidden to CFLAGS again.
+- expat-alloc-size.patch: fix braino, realloc()-like functions
+ should not take __attribute__(malloc)
+
+- Update to version 2.1.1
+ * Fixes CVE-2015-1283 — Multiple integer overflows in the
+ XML_GetBuffer function
+ * Fix potential null pointer dereference
+ * Symbol XML_SetHashSalt was not exported
+ * Output of xmlwf -h was incomplete
+ * Document behavior of calling XML_SetHashSalt with salt 0
+ * Minor improvements to man page xmlwf(1)
+- Simplify expat-visibility.patch, refresh expat-alloc-size.patch
+- Drop config-guess-sub-update.patch, fixed upstream.
+
+- Cleanup spec file with spec-cleaner
+- Remove old ppc obsoletes/provides
+
flac
+- Fix out of bound write in append_to_verify_fifo_interleaved_
+ (CVE-2021-0561 bsc#1196660):
+ libFlac-Exit-at-EOS-in-verify-mode.patch
+
+- Fix memory leak (CVE-2020-0487 bsc#1180112):
+ stream_decoder.c-Fix-a-memory-leak.patch
+
+- Fix out-of-bounds access (CVE-2020-0499 bsc#1180099):
+ libFLAC-bitreader.c-Fix-out-of-bounds-read.patch
+
+- Fix memory leak in read_metadata_vorbiscomment_() function
+ (CVE-2017-6888, bsc#1091045):
+ flac-CVE-2017-6888.patch
+
+- Update to version 1.3.2
+ * Fix undefined behaviour using GCC/Clang UBSAN (erikd).
+ * General hardening via fuzz testing with AFL (erikd and
+ others).
+ * General code improvements (lvqcl, erikd and others).
+ * Add FLAC in MP4 specification docs (Ralph Giles).
+ * Fix some cppcheck warnings (erikd).
+ * Assume all currently used OSes support SSE2.
+ flac:
+ * Fix potential infinite loop on flac-to-flac conversion
+ (erikd).
+ * Add WAVEFORMATEXTENSIBLE to WAV (as needed) when
+ decoding (lvqcl).
+ * Only write vorbis-comments if they are non-empty.
+ * Error out if decoding RAW with bits != (8|16|24).
+ metaflac:
+ * Add --scan-replay-gain option.
+ libraries:
+ * CPU detection cleanup and fixes (Julian Calaby, erikd
+ and lvqcl).
+ * Fix two stream decoder bugs (Max Kellermann).
+ * Fix a NULL dereference bug (on a malformed file).
+ * Changed the LPC order guess for a slight compression
+ improvement, particularly for classical music
+ (Martijn van Beurden).
+ * Improved encoding speed on older Intel CPUs.
+ * Fixed a seeking bug when decoding certain files
+ (Miroslav Lichvar).
+ * Put an upper bound (32768) on the number of seek
+ points.
+ * Fix potential memory leaks.
+ * Support 64bit brword/bwword allowing
+ FLAC__BYTES_PER_WORD to be set to 8 (disabled by
+ default).
+ * Fix an out-of-bounds heap read.
+- Refreshed flac-cflags.patch
+
+- Drop patch that should be upstreamed first, otherwise we will
+ have to keep it ofrever:
+ * flac-ocloexec.patch
+- Drop wrong patch:
+ * flac-fix-pkgconfig.patch
+ + If using this change you get assert.h include overriden in your
+ project by the one from FLAC/ which is not what upstream desired
+ If packages fail to build they should fix their include
+
+- Build documentation as noarch
+
+- Cleanup spec file with spec-cleaner
+- Update url
+- Remove no longer needed patches
+ * flac-fix-CVE-2014-8962.patch
+ * flac-fix-CVE-2014-9028.patch
+ * 0001-getopt_long-not-broken-here.patch
+- Remove following as benefit of using openssl is small
+ * 0001-Allow-use-of-openSSL.patch
+- Add flac-cflags.patch
+- Use doxygen to build documentation
+- Split documentation to separate package
+- Update to 1.3.1
+ * Improved decoding efficiency of all bit depths but especially
+ so for 24 bits for IA32 architecture (lvqcl and Miroslav Lichvar).
+ * Faster encoding using SSE and AVX (lvqcl).
+ * Fixed bartlett, bartlett_hann and triangle functions.
+ * New apodization functions partial_tukey and punchout_tukey for
+ improved compression (Martijn van Beurden).
+ * Retuned compression presets to incorporate new apodization
+ functions (Martijn van Beurden).
+ * Fix -Wcast-align warnings on armhf architecture (Erik de
+ Castro Lopo).
+ * Help output documentation improvements.
+ * I/O buffering improvements on Windows to reduce disk
+ fragmentation when writing files.
+ * Only write vorbis-comments if they are non-empty.
+ * Fix symbol visibility in XMMS plugin.
+ * Many fixes and improvements across all the build systems.
+ * Fix CVE-2014-9028 (heap write overflow) and CVE-2014-8962
+ (heap read overflow)
+
+- A couple of security fixes:
+ * flac-fix-CVE-2014-8962.patch:
+ arbitrary code execution by a stack overflow (CVE-2014-8962,
+ bnc#906831)
+ * flac-fix-CVE-2014-9028.patch:
+ Heap overflow via specially crafted .flac files (CVE-2014-9028,
+ bnc#907016)
+
+- Update to final upstream release 1.3.0
+ * No user-visible changes
+- More robust make install call
+
freetype2
-- disable brotli linkage / WOFF2 support for now to keep dependencies
- as before.
-
-- Added patches:
- * CVE-2022-27404.patch
- + fixes bsc#1198830, CVE-2022-27404: Buffer Overflow
- * CVE-2022-27405.patch
- + fixes bsc#1198832, CVE-2022-27405: Segmentation Fault
- * CVE-2022-27406.patch
- + fixes bsc#1198823, CVE-2022-27406: Segmentation violation
-
-- Update to version 2.10.4
- * Fix a heap buffer overflow has been found in the handling of
- embedded PNG bitmaps, introduced in FreeType version 2.6
- (CVE-2020-15999 bsc#1177914)
- * Minor improvements to the B/W rasterizer.
- * Auto-hinter support for Medefaidrin script.
- * Fix various memory leaks (mainly for CFF) and other issues that
- might cause crashes in rare circumstances.
-
-- Update to version 2.10.2
- * Support for WOFF2 fonts, add BR on pkgconfig(libbrotlidec)
- * Function `FT_Get_Var_Axis_Flags' returned random data for Type 1
- MM fonts.
- * Type 1 fonts with non-integer metrics are now supported by the new
- (CFF) engine introduced in FreeType 2.9.
- * Drop support for Python 2 in Freetype's API reference generator
- * Auto-hinter support for Hanifi Rohingya
- * Document the `FT2_KEEP_ALIVE' debugging environment variable.
-
-- Use the compiler default C std, since 2012 gcc defaults
- have changed, we now only need to get rid of ANSIFLAGS, override
- that variable instead.
-
-- Update to version 2.10.1
- * The bytecode hinting of OpenType variation fonts was flawed, since
- the data in the `CVAR' table wasn't correctly applied.
- * Auto-hinter support for Mongolian.
- * The handling of the default character in PCF fonts as introduced
- in version 2.10.0 was partially broken, causing premature abortion
- of charmap iteration for many fonts.
- * If `FT_Set_Named_Instance' was called with the same arguments
- twice in a row, the function returned an incorrect error code the
- second time.
- * Direct rendering using FT_RASTER_FLAG_DIRECT crashed (bug
- introduced in version 2.10.0).
- * Increased precision while computing OpenType font variation
- instances.
- * The flattening algorithm of cubic Bezier curves was slightly
- changed to make it faster. This can cause very subtle rendering
- changes, which aren't noticeable by the eye, however.
- * The auto-hinter now disables hinting if there are blue zones
- defined for a `style' (i.e., a certain combination of a script and
- its related typographic features) but the font doesn't contain any
- characters needed to set up at least one blue zone.
-- Add tarball signatures and freetype2.keyring
-
-- Update to version 2.10.0
- * A bunch of new functions has been added to access and process
- COLR/CPAL data of OpenType fonts with color-layered glyphs.
- * As a GSoC 2018 project, Nikhil Ramakrishnan completely
- overhauled and modernized the API reference.
- * The logic for computing the global ascender, descender, and
- height of OpenType fonts has been slightly adjusted for
- consistency.
- * `TT_Set_MM_Blend' could fail if called repeatedly with the same
- arguments.
- * The precision of handling deltas in Variation Fonts has been
- increased.The problem did only show up with multidimensional
- designspaces.
- * New function `FT_Library_SetLcdGeometry' to set up the geometry
- of LCD subpixels.
- * FreeType now uses the `defaultChar' property of PCF fonts to set
- the glyph for the undefined character at glyph index 0 (as
- FreeType already does for all other supported font formats). As
- a consequence, the order of glyphs of a PCF font if accessed
- with FreeType can be different now compared to previous
- versions.
- This change doesn't affect PCF font access with cmaps.
- * `FT_Select_Charmap' has been changed to allow parameter value
- `FT_ENCODING_NONE', which is valid for BDF, PCF, and Windows FNT
- formats to access built-in cmaps that don't have a predefined
- `FT_Encoding' value.
- * A previously reserved field in the `FT_GlyphSlotRec' structure
- now holds the glyph index.
- * The usual round of fuzzer bug fixes to better reject malformed
- fonts.
- * `FT_Outline_New_Internal' and `FT_Outline_Done_Internal' have
- been removed.These two functions were public by oversight only
- and were never documented.
- * A new function `FT_Error_String' returns descriptions of error
- codes if configuration macro FT_CONFIG_OPTION_ERROR_STRINGS is
- defined.
- * `FT_Set_MM_WeightVector' and `FT_Get_MM_WeightVector' are new
- functions limited to Adobe MultiMaster fonts to directly set and
- get the weight vector.
-
-- Remove old ppc64 parts in spec file
-- Refresh patches:
- + bugzilla-308961-cmex-workaround.patch
- + don-t-mark-libpng-as-required-library.patch
- + enable-long-family-names-by-default.patch
-- Enable subpixel rendering with infinality config:
- + enable-subpixel-rendering.patch
- + enable-infinality-subpixel-hinting.patch
-
-- Re-enable freetype-config, there is just too many fallouts.
-
-- Update to version 2.9.1
- * Type 1 fonts containing flex features were not rendered
- correctly (bug introduced in version 2.9).
- * CVE-2018-6942: Older FreeType versions can crash with certain
- malformed variation fonts.
- * Bug fix: Multiple calls to `FT_Get_MM_Var' returned garbage.
- * Emboldening of bitmaps didn't work correctly sometimes, showing
- various artifacts (bug introduced in version 2.8.1).
- * The auto-hinter script ranges have been updated for Unicode 11.
- No support for new scripts have been added, however, with the
- exception of Georgian Mtavruli.
-- freetype-config is now deprecated by upstream and not enabled
- by default.
-- Drop upstreamed patches:
- * bnc1079600.patch
- * psaux-flex.patch
- * 0001-src-truetype-ttinterp.c-Ins_GETVARIATION-Avoid-NULL-.patch
- * 0001-truetype-Better-protection-against-invalid-VF-data.patch
-
-- Add bnc1079600.patch: Fix several integer overflow issues in
- truetype/ttinterp.c (bsc#1079600)
-
-- Refresh spec-file via spec-cleaner.
-- Add shell script freetype2.sh in separate package
- freetype2-profile-tti35 in order to be able to set TrueType
- interpreter version 35 (boo#1084085).
-
-- Added patch:
- * enable-long-family-names-by-default.patch
- + Define PCF_CONFIG_OPTION_LONG_FAMILY_NAMES to obtain 2.7.1
- behaviour
-
-- Added patches:
- * 0001-src-truetype-ttinterp.c-Ins_GETVARIATION-Avoid-NULL-.patch
- + Upstream fix for bsc#1079603: Avoid NULL reference in
- src/truetype/ttinterp.c
- * 0001-truetype-Better-protection-against-invalid-VF-data.patch
- + Upstream fix for bsc#1079601: Protection against invalid VF
- data
-
-- Add psaux-flex.patch to fix a regression in Type1 rendering
-
-- Update to version 2.9
- * Advance width values of variation fonts were often wrong.
- * More fixes for variation font support; you should update to
- this version if you want to support them.
- * As a GSoC project, Ewald Hew extended the new (Adobe) CFF
- engine to handle Type 1 fonts also, thus greatly improving
- the rendering of this format. This is the new default.
- * A new function, `FT_Set_Named_Instance', can be used to set
- or change the current named instance.
- * Starting with this FreeType version, resetting variation
- coordinates will return to the currently selected named
- instance. Previously, FreeType returned to the base font
- (i.e., no instance set).
- * Some fuzzer fixes to better reject malformed fonts.
-
-- Update to version 2.8.1
- * B/W hinting of TrueType fonts didn't work properly if
- interpreter version 38 or 40 was selected.
- * Some severe problems within the handling of TrueType Variation
- Fonts were found and fixed.
- * Function `FT_Set_Var_Design_Coordinates' didn't correctly handle
- the case with less input coordinates than axes.
- * By default, FreeType now offers high quality LCD-optimized
- output without resorting to ClearType techniques of resolution
- tripling and filtering. In this method, called Harmony, each
- color channel is generated separately after shifting the glyph
- outline, capitalizing on the fact that the color grids on LCD
- panels are shifted by a third of a pixel. This output is
- indistinguishable from ClearType with a light 3-tap filter.
- * Using the new function `FT_Get_Var_Axis_Flags', an application
- can access the `flags' field of a variation axis (introduced in
- OpenType version 1.8.2)
- * FreeType now synthesizes a missing Unicode cmap for (older)
- TrueType fonts also if glyph names are available.
- * The warping option has moved from `light' to `normal' hinting
- where it replaces the original hinting algorithm. The `light'
- mode is now always void of any hinting in x-direction.
-
-- Update to version 2.8
- * Support for OpenType Variation Fonts is now complete. The last
- missing part was handling the `VVAR' and `MVAR' tables, which is
- available with this release.
- * A new function `FT_Face_Properties' allows the control of some
- module and library properties per font. Currently, the
- following properties can be handled: stem darkening, LCD filter
- weights, and the random seed for the `random' CFF operator.
- * The PCF change to show more `colourful' family names (introduced
- in version 2.7.1) was too radical; it can now be configured with
- PCF_CONFIG_OPTION_LONG_FAMILY_NAMES at compile time. If
- activated, it can be switched off at run time with the new pcf
- property `no-long-family-names'. If the `FREETYPE_PROPERTIES'
- environment variable is available, you can say
- FREETYPE_PROPERTIES=pcf:no-long-family-names=1
- * Support for the following scripts has been added to the
- auto-hinter.
- Adlam, Avestan, Bamum, Buhid, Carian, Chakma, Coptic, Cypriot,
- Deseret, Glagolitic, Gothic, Kayah, Lisu, N'Ko, Ol Chiki, Old
- Turkic, Osage, Osmanya, Saurashtra, Shavian, Sundanese, Tai
- Viet, Tifinagh, Unified Canadian Syllabics, Vai
- * `Light' auto-hinting mode no longer uses TrueType metrics for
- TrueType fonts. This bug was introduced in version 2.4.6,
- causing horizontal scaling also. Almost all GNU/Linux
- distributions (with Fedora as a notable exception) disabled the
- corresponding patch for good reasons; chances are thus high that
- you won't notice a difference.
- * If a TrueType font gets loaded with FT_LOAD_NO_HINTING, FreeType
- now scales the font linearly again (bug introduced in version
- 2.4.6).
- * Fixed CVE-2017-8105, CVE-2017-8287: Older FreeType versions
- have out-of-bounds writes caused by heap-based buffer overflows
- related to Type 1 fonts. (boo#1035807, boo#1036457)
-- See https://sourceforge.net/projects/freetype/files/freetype2/2.8/ for
- the complete changelog.
-
-- Update to version 2.7.1:
- * IMPORTANT CHANGES
- + Support for the new CFF2 font format as introduced with
- OpenType 1.8 has been contributed by Dave Arnolds from Adobe.
- + Preliminary support for variation fonts as specified in
- OpenType 1.8 (in addition to the already existing support for
- Adobe's MM and Apple's GX formats). Dave Arnolds contributed
- handling of advance width change variation; more will come in
- the next version.
- * IMPORTANT BUG FIXES
- + Handling of raw CID fonts was partially broken (bug introduced
- in 2.6.4).
- * MISCELLANEOUS
- + Some limits for TrueType bytecode execution have been tightened
- to speed up FreeType's handling of malformed fonts, in
- particular to quickly abort endless loops.
- + The number of twilight points can no longer be set to an
- arbitrarily large value.
- + The total number of jump opcode instructions (like JMPR) with
- negative arguments is dynamically restricted; the same holds
- for the total number of iterations in LOOPCALL opcodes.
- + The dynamic limits are based on the number of points in a glyph
- and the number of CVT entries. Please report if you encounter a
- font where the selected values are not adequate.
- + PCF family names are made more `colourful'; they now include the
- foundry and information whether they contain wide characters.
- For example, you no longer get `Fixed' but rather `Sony Fixed'
- or `Misc Fixed Wide'.
- + A new function `FT_Get_Var_Blend_Coordinates' (with its alias
- name `FT_Get_MM_Blend_Coordinates') to retrieve the normalized
- blend coordinates of the currently selected variation instance
- has been added to the Multiple Masters interface.
- + A new function `FT_Get_Var_Design_Coordinates' to retrieve the
- design coordinates of the currently selected variation instance
- has been added to the Multiple Masters interface.
- + A new load flag `FT_LOAD_BITMAP_METRICS_ONLY' to retrieve bitmap
- information without loading the (embedded) bitmap itself.
- + Retrieving advance widths from bitmap strikes (using
- `FT_Get_Advance' and `FT_Get_Advances') have been sped up.
- + The usual round of fuzzer fixes to better reject malformed
- fonts.
-- Drop freetype2-bitmap-foundry.patch, merged upstream.
-
-- update to version 2.7:
- * IMPORTANT CHANGES
- + As announced earlier, the 2.7.x series now uses the new subpixel
- hinting mode as the default, emulating a modern version of
- ClearType.
- This change inevitably leads to different rendering results, and
- you might change the `TT_CONFIG_OPTION_SUBPIXEL_HINTING'
- configuration option to adapt it to your taste (or use the new
- `FREETYPE_PROPERTIES' environment variable). See the
- corresponding entry below for version 2.6.4, which gives more
- information.
- + A new option `FT_CONFIG_OPTION_ENVIRONMENT_PROPERTIES' has been
- introduced. If set (which is the default), an environment
- variable `FREETYPE_PROPERTIES' can be used to control driver
- properties. Example:
- FREETYPE_PROPERTIES=truetype:interpreter-version=35 \
- cff:no-stem-darkening=1 \
- autofitter:warping=1
- This allows to select, say, the subpixel hinting mode at runtime
- for a given application. See file `ftoption.h' for more.
- * IMPORTANT BUG FIXES
- + After loading a named instance of a GX variation font, the
- `face_index' value in the returned `FT_Face' structure now
- correctly holds the named instance index in the upper 16bits as
- documented.
- * MISCELLANEOUS
- + A new macro `FT_IS_NAMED_INSTANCE' to test whether a given face
- is a named instance.
- + More fixes to GX font handling.
- + Apple's `GETVARIATION' bytecode operator (needed for GX
- variation font support) has been implemented.
- + Another round of fuzzer fixes, mainly to reject invalid fonts
- faster.
- + Handling of raw CID fonts was broken (bug introduced in version
- 2.6.4).
- + The smooth rasterizer has been streamlined to make it faster by
- approx. 20%.
- + The `ftgrid' demo program now understands command line option
- `-d' to give start-up design coordinates.
- + The `ftdump' demo program has a new command line option `-p' to
- dump TrueType bytecode instructions.
-- removed freetype2-subpixel.patch in favor of above
- FREETYPE_PROPERTIES environment variable
-
-- Update to version 2.6.5:
- + Compilation works again on Mac OS X (bug introduced in version
- 2.6.4).
- + The new subpixel hinting mode is now disabled by default; it
- will be enabled by default in the forthcoming 2.7.x series.
- Main reason for reverting this feature is the principle of least
- surprise: a sudden change in appearance of all fonts (even if
- the rendering improves for almost all recent fonts) should not
- be expected in a new micro version of a series.
-- Rebase freetype2-subpixel.patch.
-
-- Upadte to version 2.6.4:
- * A new subpixel hinting mode, which is now the default rendering
- mode for TrueType fonts. It implements (almost everything of)
- version 40 of the bytecode engine. The existing code base in
- FreeType (the `Infinality code') was stripped to the bare
- minimum and all configurability removed in the name of speed
- and simplicity. The configurability was mainly aimed at legacy
- fonts like Arial, Times New Roman, or Courier. [Legacy fonts
- are fonts that modify vertical stems to achieve clean
- black-and-white bitmaps.] The new mode focuses on applying a
- minimal set of rules to all fonts indiscriminately so that
- modern and web fonts render well while legacy fonts render
- okay. Activation of the subpixel hinting support can be
- controlled with the `TT_CONFIG_OPTION_SUBPIXEL_HINTING'
- configuration option at compile time: If set to value 1, you
- get the old Infinality mode (which was never the default due to
- its slowness). Value 2 activates the new subpixel hinting mode,
- and value 3 activates both. The default is value 2. At run
- time, you can select the subpixel hinting mode with the
- `interpreter-version' property (provided you have compiled in
- the corresponding hinting mode); see `ftttdrv.h' for more.
- * Support for the following scripts has been added to the
- auto-hinter: Armenian, Cherokee, Ethiopic, Georgian, Gujarati,
- Gurmukhi, Malayalam, Sinhala, Tamil.
-- Rebase freetype2-subpixel.patch.
-
-- Update to version 2.6.3
- * IMPORTANT CHANGES
- - Khmer, Myanmar, Bengali, and Kannada script support has been
- added to the auto-hinter.
- * MISCELLANEOUS
- - Better support of Indic scripts like Devanagari by using a
- top-to-bottom hinting flow.
- - All FreeType macros starting with two underscores have been
- renamed to avoid a violation of both the C and C++ standards.
- Example: Header macros of the form `__FOO_H__' are now called
- `FOO_H_'. In most cases, this should be completely transparent
- to the user. The exception to this is `__FTERRORS_H__', which
- must be sometimes undefined by the user to get FreeType error
- strings: Both this form and the new `FTERRORS_H_' macro are
- accepted for backwards compatibility.
- - Minor improvements mainly to the Type 1 driver.
- - The new CFF engine now supports all Type 2 operators except
- `random'.
- - The macro `_STANDALONE_', used for compiling the B/W and smooth
- rasterizers as stand-alone modules, has been renamed to
- `STANDALONE_', since macro names starting with an underscore and
- followed by an uppercase letter are reserved in both C and C++.
- - Function `FT_Library_SetLcdFilterWeights' now also activates
- custom LCD filter weights (instead of just adjusting them).
- - Support for `unpatented hinting' has been completely removed:
- Consequently, the two functions `FT_Face_CheckTrueTypePatents'
- and `FT_Face_SetUnpatentedHinting' now return always false,
- doing nothing.
-
-- Update to version 2.6.2
- * IMPORTANT CHANGES
- - The auto-hinter now supports stem darkening, to be controlled by
- the new `no-stem-darkening' and `darkening-parameters'
- properties. This is an experimental feature contributed by
- Nikolaus Waxweiler, and the interface might change in a future
- release.
- - By default, stem darkening is now switched off (for both the CFF
- engine and the auto-hinter). The main reason is that you need
- linear alpha blending and gamma correction to get correct
- rendering results, and the latter is not yet available in most
- freely available rendering stacks like X11. Applying stem
- darkening without proper gamma correction leads to far too dark
- rendering results.
- - The meaning of `FT_RENDER_MODE_LIGHT' has been slightly
- modified. It now essentially means `no hinting along the
- horizontal axis'; in particular, no change of glyph advance
- widths. Consequently, the auto-hinter is used for all scalable
- font formats except for CFF. It is planned that other
- font-specific rendering engines (TrueType, Type 1) will follow.
- * MISCELLANEOUS
- - The default LCD filter has been changed to be normalized and
- color-balanced.
- - For better compatibility with FontConfig, function
- `FT_Library_SetLcdFilter' accepts a new enumeration value
- `FT_LCD_FILTER_LEGACY1' (which has the same meaning as
- `FT_LCD_FILTER_LEGACY').
- - A large number of bugs have been detected by using the libFuzzer
- framework, which should further improve handling of invalid
- fonts. Thanks again to Kostya Serebryany and Bungeman!
- - `TT_CONFIG_OPTION_MAX_RUNNABLE_OPCODES', a new configuration
- option, controls the maximum number of executed opcodes within a
- bytecode program. You don't want to change this except for very
- special situations (e.g., making a library fuzzer spend less
- time to handle broken fonts).
- - The smooth renderer has been made faster.
-
-- Update to version 2.6.1
- * IMPORTANT BUG FIXES
- - It turned out that for CFFs only the advance widths should be
- taken from the `htmx' table, not the side bearings. This bug,
- introduced in version 2.6.0, makes it necessary to upgrade if
- you are using CFFs; otherwise, you get cropped glyphs with GUI
- interfaces like GTK or Qt.
- - Accessing Type 42 fonts returned incorrect results if the glyph
- order of the embedded TrueType font differs from the glyph order
- of the Type 42 charstrings table.
- * IMPORTANT CHANGES
- - The header file layout has been changed (again), moving all
- header files except `ft2build.h' into a subdirectory tree.
- Doing so reduces the possibility of header file name clashes
- (e.g., FTGL's `FTGlyph.h' with FreeType's `ftglyph.h') on case
- insensitive file systems like Mac OS X or Windows.
- Applications that use (a) the `freetype-config' script or
- FreeType's `freetype2.pc' file for pkg-config to get the include
- directory for the compiler, and (b) the documented way for
- header inclusion like
- [#]include <ft2build.h>
- [#]include FT_FREETYPE_H
- ...
- don't need any change to the source code.
- - Simple access to named instances in GX variation fonts is now
- available (in addition to the previous method via FreeType's MM
- interface). In the `FT_Face' structure, bits 16-30 of the
- `face_index' field hold the current named instance index for the
- given face index, and bits 16-30 of `style_flags' contain the
- number of instances for the given face index. `FT_Open_Face'
- and friends also understand the extended bits of the face index
- parameter.
- You need to enable TT_CONFIG_OPTION_GX_VAR_SUPPORT for this new
- feature. Otherwise, bits 16-30 of the two fields are zero (or
- are ignored).
- - Lao script support has been added to the auto-hinter.
- * MISCELLANEOUS
- - The auto-hinter's Arabic script support has been enhanced.
- - Superscript-like and subscript-like glyphs as used by various
- phonetic alphabets like the IPA are now better supported by the
- auto-hinter.
- - The TrueType bytecode interpreter now runs slightly faster.
- - Improved support for builds with cmake.
- - The function `FT_CeilFix' now always rounds towards plus
- infinity.
- - The function `FT_FloorFix' now always rounds towards minus
- infinity.
- - A new load flag `FT_LOAD_COMPUTE_METRICS' has been added; it
- makes FreeType ignore pre-computed metrics, as needed by font
- validating or font editing programs. Right now, only the
- TrueType module supports it to ignore data from the `hdmx'
- table.
- - Another round of bug fixes to better handle broken fonts, found
- by Kostya Serebryany <kcc@google.com>.
-- Dropping upstreamed patch Dont-use-hmtx-table-for-LSB.patch.
-
-- Add Dont-use-hmtx-table-for-LSB.patch: Fixes gnu#45520, cut off
- fonts in gtk and qt. Taken from upstream git.
-
-- Update to version 2.6
- * Thread safety improvements
- * Thai script support has been added to the auto-hinter.
- * Arabic script support has been added to the auto-hinter.
- * Following OpenType version 1.7, advance widths and side bearing
- values in CFFs (wrapped in an SFNT structure) are now always
- taken from the `hmtx' table.
- * Following OpenType version 1.7, the PostScript font name of a
- CFF font (wrapped in an SFNT structure) is now always taken from
- the `name' table. This is also true for OpenType Collections
- (i.e., TTCs using CFFs subfonts instead of TTFs), where it may
- have a significant difference.
- * Fonts natively hinted for ClearType are now supported, properly
- handling selector index 3 of the INSTCTRL bytecode instruction.
- * Major improvements to the GX TrueType variation font handling.
-
-- Merge with the version 2.5.5 from openSUSE:Factory
-- Removed patches:
- * CVE-2014-9656.patch
- * CVE-2014-9657.patch
- * CVE-2014-9658.patch
- * CVE-2014-9659.patch
- * CVE-2014-9660.patch
- * CVE-2014-9661.patch
- * CVE-2014-9662.patch
- * CVE-2014-9663.patch
- * CVE-2014-9664.patch
- * CVE-2014-9665.patch
- * CVE-2014-9666.patch
- * CVE-2014-9667.patch
- * CVE-2014-9668.patch
- * CVE-2014-9669.patch
- * CVE-2014-9670.patch
- * CVE-2014-9671.patch
- * CVE-2014-9672.patch
- * CVE-2014-9673.patch
- * CVE-2014-9674.patch
- * CVE-2014-9675.patch
- - Integrated in the 2.5.5 release
-- Modified patches:
- * don-t-mark-libpng-as-required-library.patch
- * bugzilla-308961-cmex-workaround.patch
- * freetype2-subpixel.patch
- * freetype2-bitmap-foundry.patch
- * overflow.patch
- - Adapt to the new version of sources
-
-- Modified patch:
- * CVE-2014-9671.patch
- - Adapt the code to correspond to the current git master of
- freetype2 (fixes bsc#933247)
-
-- Enable the bz2 compression in freetype2
-- Remove patch overflow.patch from freetype2.spec where it is not
- applied.
-- Run spec-cleaner on the spec file.
-
-- fixed vulnerabilities (bnc#916847, bnc#916856, bnc#916857,
- bnc#916858, bnc#916859, bnc#916860, bnc#916861, bnc#916862,
- bnc#916863, bnc#916864, bnc#916865, bnc#916867, bnc#916868,
- bnc#916870, bnc#916871, bnc#916872, bnc#916873, bnc#916874,
- bnc#916879, bnc#916881)
- - CVE-2014-9656.patch
- - CVE-2014-9657.patch
- - CVE-2014-9658.patch
- - CVE-2014-9659.patch
- - CVE-2014-9660.patch
- - CVE-2014-9661.patch
- - CVE-2014-9662.patch
- - CVE-2014-9663.patch
- - CVE-2014-9664.patch
- - CVE-2014-9665.patch
- - CVE-2014-9666.patch
- - CVE-2014-9667.patch
- - CVE-2014-9668.patch
- - CVE-2014-9669.patch
- - CVE-2014-9670.patch
- - CVE-2014-9671.patch
- - CVE-2014-9672.patch
- - CVE-2014-9673.patch
- - CVE-2014-9674.patch
- - CVE-2014-9675.patch
-
-- Update to version 2.5.5
- * IMPORTANT BUG FIXES
- - Handling of uncompressed PCF files works again (bug
- introduced in version 2.5.4).
-- Drop freetype2-2.5.3-fix-pcf.patch, merged upstream
-
-- Update to version 2.5.4
- * IMPORTANT BUG FIXES
- - A variant of vulnerability CVE-2014-2240 was identified
- (cf. http://savannah.nongnu.org/bugs/?43661) and fixed
- in the new CFF driver. All users should upgrade.
- - The new auto-hinter code using HarfBuzz crashed for some
- invalid fonts.
- - Many fixes to better protect against malformed input.
- * IMPORTANT CHANGES
- - Full auto-hinter support of the Devanagari script.
- - Experimental auto-hinter support of the Telugu script.
- - CFF stem darkening behaviour can now be controlled at
- build time using the eight macros
- CFF_CONFIG_OPTION_DARKENING_PARAMETER_{X,Y}{1,2,3,4} .
- - Some fields in the `FT_Bitmap' structure have been changed
- from signed to unsigned type, which better reflects
- the actual usage. It is also an additional means to
- protect against malformed input. This change doesn't break
- the ABI; however, it might cause compiler warnings.
- * MISCELLANEOUS
- - Improvements to the auto-hinter's algorithm to recognize
- stems and local extrema.
- - Function `FT_Get_SubGlyph_Info' always returned an error
- even in case of success.
- - Version 2.5.1 introduced major bugs in the cjk part of
- the auto-hinter, which are now fixed.
- - The `FT_Sfnt_Tag' enumeration values have been changed to
- uppercase, e.g. `FT_SFNT_HEAD'. The lowercase variants
- are deprecated. This is for orthogonality with all other
- enumeration (and enumeration-like) values in FreeType.
- - `cmake' now supports builds of FreeType as an OS X framework
- and for iOS.
- - Improved project files for vc2010,
- introducing a property file
- - The documentation generator for the API reference has been
- updated to produce better HTML code (with proper CSS).
- At the same time, the documentation got a better structure.
- - The FT_LOAD_BITMAP_CROP flag is obsolete; it is not used
- by any driver.
- - The TrueType DELTAP[123] bytecode instructions now work in
- subpixel hinting mode as described in the ClearType
- whitepaper (i.e., for touched points in the
- non-subpixel direction).
- - Many small improvements to the internal arithmetic routines.
-- Rebase don-t-mark-libpng-as-required-library.patch,
- bugzilla-308961-cmex-workaround.patch, freetype2-subpixel.patch,
- freetype2-bitmap-foundry.patch and overflow.patch
-- Add freetype2-2.5.3-fix-pcf.patch from upstream to resolve
- http://savannah.nongnu.org/bugs/?43774, "Freetype 2.5.4 does not
- load ungzipped PCF fonts"
-
gdb
-- Enable --with-debuginfod
+- Reinstate debuginfod support for suse_version >= 1500
+- Don't recommend libdebuginfod1.
+
+- Patches added (backport from trunk):
+ * gdb-testsuite-fix-gdb.base-break-idempotent.exp-on-ppc.patch
+ * powerpc-fix-gdb.base-watchpoint.exp-on-power-9.patch
+
+- Patches removed (ok for Factory, not for SLE):
+ * gdb-fix-watchpoints-triggered.patch
+
+- Patches added (swo#29277):
+ * gdb-fix-assert-in-handle_jit_event.patch
+- Maintenance script qa.sh:
+ * Add PR29706 and PR28617 kfails.
+
+- Add patch to fix build with readline 8.2:
+ * gdb-add-support-for-readline-8.2.patch
+
+- Patches added:
+ * gdb-testsuite-fix-gdb.mi-mi-sym-info.exp-on-opensuse-tumbleweed.patch
+- Maintenance script qa.sh:
+ * Add PR26873 kfails.
+
+- Maintenance script qa-remote.sh:
+ * Make rpm matching yet more precise.
+- Update patch:
+ * gdb-tdep-fix-powerpc-ieee-128-bit-format-arg-passing.patch
+- Add patches:
+ * gdb-handle-pending-c-after-rl_callback_read_char.patch
+ * gdb-testsuite-fix-have_mpx-test.patch
+ * gdb-symtab-fix-handling-of-dw_tag_unspecified_type.patch
+ * gdb-testsuite-fix-gdb.dwarf2-dw2-unspecified-type-foo.c-with-m32.patch
+
+- use python3-xml if python is python3
+
+- Maintenance script qa.sh:
+ * Generalize PR29405 kfails.
+- Maintenance script qa-remote.sh:
+ * Make rpm matching more precise.
+- Patches added:
+ * gdb-tdep-fix-powerpc-ieee-128-bit-format-arg-passing.patch
+
+- Enable debuginfod for all archs as we index all TW RPM files.
+- Recommend libdebuginfod1 when one installs gdb so that
+ it can utilize debuginfod server by default.
+
+- Fix build with gcc 13 by using -Wno-error=enum-int-mismatch.
+
+- Maintenance script qa.sh:
+ * Add SLE-12/x86_64 to "known clean configs".
+ * Add fail for PR29405.
+ * Add fail for PR26915.
+
+- Patches added:
+ * gdb-testsuite-fix-gdb.threads-killed-outside.exp-on-aarch64.patch
+- Maintenance script qa.sh:
+ * Remove PR29247 internal-error.
+ * Add SLE-15/aarch64 to "known clean configs".
+
+- Patches added:
+ * gdb-fix-watchpoints-triggered.patch
+- Maintenance script qa.sh:
+ * Add kfails for PR25038, PR29253, and PR29423.
+ * Remove gdb.mi/mi-var-invalidate-shlib.exp kfails.
+- Mention qa-local.sh, qa-remote.sh and README.qa as sources.
+
+- Maintenance script qa-local.sh:
+ * Use have_combo consistently.
+- Maintenance script qa.sh:
+ * Add kfail_aarch64.
+ * Add PR29419/PR29409 kfails.
+ * Update PR29247 kfails.
+- Patches added:
+ * make-gdb.ada-float-bits.exp-more-generic.patch
+ * gdb-testsuite-fix-gdb.ada-literals.exp-with-aarch64.patch
+
+- Actually apply fixup-gdb-test-bt-cfi-without-die.patch and
+ fixup-2-gdb-rhbz1553104-s390x-arch12-test.patch.
+
+- Also remove gdb-6.5-readline-long-line-crash-test.patch from
+ patches list in gdb.spec.
+
+- Patches added:
+ * powerpc-add-support-for-ieee-128-bit-format.patch
+ * powerpc-correct-the-gdb-ioctl-values-for-tcgets-tcsets-tcsetsw-and-tcsetsf.patch
+ * gdb-testsuite-remove-target-limits-in-gdb.base-catch-syscall.exp.patch
+ * powerpc-fix-for-gdb.base-eh_return.exp.patch
+ * fix-comparison-of-unsigned-long-int-to-int-in-record_linux_system_call.patch
+ * gdb-testsuite-fix-gdb.reverse-test_ioctl_tcsetsw.exp-with-libc-debuginfo.patch
+ * fixup-gdb-test-bt-cfi-without-die.patch
+ * fix-core-file-detach-crash-corefiles-29275.patch
+ * gdb-testsuite-fix-gdb.dwarf2-dw2-out-of-range-end-of-seq.exp-on-aarch64.patch
+ * gdb-testsuite-fix-gdb.base-catch-syscall.exp-without-enable-targets.patch
+ * gdb-testsuite-fix-gdb.base-catch-syscall.exp-with-with-expat-no.patch
+ * fix-for-gdb.base-solib-search.exp-test.patch
+- Patch removed:
+ * gdb-6.7-ppc-clobbered-registers-O2-test.patch
+ * gdb-6.5-readline-long-line-crash-test.patch
+- Patches updated:
+ * gdb-tdep-update-syscalls-ppc64-ppc-linux.xml.patch
+ * gdb-testsuite-handle-pipe2-syscall-in-gdb.base-catch-syscall.exp.patch
+
+- Maintenance script qa.sh:
+ * Add PR28504 KFAILs.
+ * Make .sum file matching less complex.
+ * Add fedora test-case kfail.
+- Maintenance script qa-local.sh:
+ * Fix incorrect path name.
+- Update comments in gdb.spec.
+- Patches added:
+ * powerpc-update-expected-floating-point-output-for-gdb.arch-altivec-regs.exp-and-gdb.arch-vsx-regs.exp.patch
+
+- Patches updated:
+ * gdb-testsuite-support-recording-of-getrandom.patch
+ (add aarch64 part)
+- Maintenance script qa.sh:
+ * Add i586 to known clean configs.
+
+- Patches added:
+ * gdb-testsuite-enable-some-test-cases-for-x86_64-m32.patch
+ * gdb-testsuite-fix-gdb.reverse-i387-env-reverse.exp-for-pie.patch
+ * gdb-testsuite-support-recording-of-getrandom.patch
+- Patches updated:
+ * gdb-record-handle-statx-system-call.patch
+- Maintenance script qa.sh:
+ * Allow only two summary files, for i586.
+ * Add i586 KFAILs.
+- Maintenance script qa-local.sh:
+ * Add i586.
+
+- Maintenance script qa-local.sh:
+ * Fix rpm pathname.
+- Maintenance script qa-remote.sh:
+ * Skip stale config openSUSE_Leap_15.2.
+- Maintenance script qa.sh:
+ * Drop known clean config: Leap 15.2 x86_64.
+
+- Maintenance script qa-local.sh:
+ * Add cleanup step.
+ * Add "build all configs without testsuite" step.
+ * For "build all configs with testsuite" step, redirect output
+ to log and produce PASS/FAIL line, and make sure buildroot is
+ removed also in case of missing rpm.
+ * Use "--clean --trust-all-projects" for osc build commands.
+ * Drop openSUSE_Leap_15.2.
+- Maintenance script qa.sh:
+ * Rename argument 6 to -local.
+ * Add PR29247 KFAILs.
+ * Update internal-error regexps.
+- New maintenance script qa-remote.sh.
+- Add "build all configs without testsuite" step in README.qa.
+- Patches added (backport from trunk):
+ * gdb-testsuite-remove-attach-test-from-can_spawn_for_attach.patch
+- README.qa:
+ * Add remote qa entry.
+ * Update local qa entry:
+ * Add notes entry.
+ * Other updates to match changes in qa-local.sh.
+
+- Fix installed but unpackaged /usr/share/info/ctf-spec.info.gz.
+
+- Rebase to 12.1 release (as in fedora 36 @ 89947a7):
+ * DBX mode is deprecated, and will be removed in GDB 13.
+ * GDB 12 is the last release of GDB that will support building against
+ Python 2. From GDB 13, it will only be possible to build GDB itself
+ with Python 3 support.
+ * Improved C++ template support:
+ GDB now treats functions/types involving C++ templates like it does function
+ overloads. Users may omit parameter lists to set breakpoints on families of
+ template functions, including types/functions composed of multiple template types:
+ (gdb) break template_func(template_1, int)
+ The above will set breakpoints at every function `template_func' where
+ the first function parameter is any template type named `template_1' and
+ the second function parameter is `int'.
+ TAB completion also gains similar improvements.
+ * New commands:
+ maint set backtrace-on-fatal-signal on|off
+ maint show backtrace-on-fatal-signal
+ This setting is 'on' by default. When 'on' GDB will print a limited
+ backtrace to stderr in the situation where GDB terminates with a
+ fatal signal. This only supported on some platforms where the
+ backtrace and backtrace_symbols_fd functions are available.
+ set source open on|off
+ show source open
+ This setting, which is on by default, controls whether GDB will try
+ to open source code files. Switching this off will stop GDB trying
+ to open and read source code files, which can be useful if the files
+ are located over a slow network connection.
+ set varsize-limit
+ show varsize-limit
+ These are now deprecated aliases for "set max-value-size" and
+ "show max-value-size".
+ task apply [all | TASK-IDS...] [FLAG]... COMMAND
+ Like "thread apply", but applies COMMAND to Ada tasks.
+ watch [...] task ID
+ Watchpoints can now be restricted to a specific Ada task.
+ maint set internal-error backtrace on|off
+ maint show internal-error backtrace
+ maint set internal-warning backtrace on|off
+ maint show internal-warning backtrace
+ GDB can now print a backtrace of itself when it encounters either an
+ internal-error, or an internal-warning. This is on by default for
+ internal-error and off by default for internal-warning.
+ set logging on|off
+ Deprecated and replaced by "set logging enabled on|off".
+ set logging enabled on|off
+ show logging enabled
+ These commands set or show whether logging is enabled or disabled.
+ exit
+ You can now exit GDB by using the new command "exit", in addition to
+ the existing "quit" command.
+ set debug threads on|off
+ show debug threads
+ Print additional debug messages about thread creation and deletion.
+ set debug linux-nat on|off
+ show debug linux-nat
+ These new commands replaced the old 'set debug lin-lwp' and 'show
+ debug lin-lwp' respectively. Turning this setting on prints debug
+ messages relating to GDB's handling of native Linux inferiors.
+ maint flush source-cache
+ Flush the contents of the source code cache.
+ maint set gnu-source-highlight enabled on|off
+ maint show gnu-source-highlight enabled
+ Whether GDB should use the GNU Source Highlight library for adding
+ styling to source code. When off, the library will not be used, even
+ when available. When GNU Source Highlight isn't used, or can't add
+ styling to a particular source file, then the Python Pygments
+ library will be used instead.
+ set suppress-cli-notifications (on|off)
+ show suppress-cli-notifications
+ This controls whether printing the notifications is suppressed for CLI.
+ CLI notifications occur when you change the selected context
+ (i.e., the current inferior, thread and/or the frame), or when
+ the program being debugged stops (e.g., because of hitting a
+ breakpoint, completing source-stepping, an interrupt, etc.).
+ set style disassembler enabled on|off
+ show style disassembler enabled
+ If GDB is compiled with Python support, and the Python Pygments
+ package is available, then, when this setting is on, disassembler
+ output will have styling applied.
+ set ada source-charset
+ show ada source-charset
+ Set the character set encoding that is assumed for Ada symbols. Valid
+ values for this follow the values that can be passed to the GNAT
+ compiler via the '-gnati' option. The default is ISO-8859-1.
+ * Changed commands:
+ print
+ Printing of floating-point values with base-modifying formats like
+ /x has been changed to display the underlying bytes of the value in
+ the desired base. This was GDB's documented behavior, but was never
+ implemented correctly.
+ maint packet
+ This command can now print a reply, if the reply includes
+ non-printable characters. Any non-printable characters are printed
+ as escaped hex, e.g. \x?? where '??' is replaces with the value of
+ the non-printable character.
+ clone-inferior
+ The clone-inferior command now ensures that the TTY, CMD and ARGS
+ settings are copied from the original inferior to the new one.
+ All modifications to the environment variables done using the 'set
+ environment' or 'unset environment' commands are also copied to the new
+ inferior.
+ set debug lin-lwp on|off
+ show debug lin-lwp
+ These commands have been removed from GDB. The new command 'set
+ debug linux-nat' and 'show debug linux-nat' should be used
+ instead.
+ info win
+ This command now includes information about the width of the tui
+ windows in its output.
+ * GDB's Ada parser now supports an extension for specifying the exact
+ byte contents of a floating-point literal. This can be useful for
+ setting floating-point registers to a precise value without loss of
+ precision. The syntax is an extension of the based literal syntax.
+ Use, e.g., "16lf#0123abcd#" -- the number of "l"s controls the width
+ of the floating-point type, and the "f" is the marker for floating
+ point.
+ * MI changes:
+ * * The '-add-inferior' with no option flags now inherits the
+ connection of the current inferior, this restores the behaviour of
+ GDB as it was prior to GDB 10.
+ * * The '-add-inferior' command now accepts a '--no-connection'
+ option, which causes the new inferior to start without a
+ connection.
+ * Python API:
+ * * New function gdb.add_history(), which takes a gdb.Value object
+ and adds the value it represents to GDB's history list. An
+ integer, the index of the new item in the history list, is
+ returned.
+ * * New function gdb.history_count(), which returns the number of
+ values in GDB's value history.
+ * * New gdb.events.gdb_exiting event. This event is called with a
+ gdb.GdbExitingEvent object which has the read-only attribute
+ 'exit_code', which contains the value of the GDB exit code. This
+ event is triggered once GDB decides it is going to exit, but
+ before GDB starts to clean up its internal state.
+ * * New function gdb.architecture_names(), which returns a list
+ containing all of the possible Architecture.name() values. Each
+ entry is a string.
+ * * New function gdb.Architecture.integer_type(), which returns an
+ integer type given a size and a signed-ness.
+ * * New gdb.TargetConnection object type that represents a connection
+ (as displayed by the 'info connections' command). A sub-class,
+ gdb.RemoteTargetConnection, is used to represent 'remote' and
+ 'extended-remote' connections.
+ * * The gdb.Inferior type now has a 'connection' property which is an
+ instance of gdb.TargetConnection, the connection used by this
+ inferior. This can be None if the inferior has no connection.
+ * * New 'gdb.events.connection_removed' event registry, which emits a
+ 'gdb.ConnectionEvent' when a connection is removed from GDB.
+ This event has a 'connection' property, a gdb.TargetConnection
+ object for the connection being removed.
+ * * New gdb.connections() function that returns a list of all
+ currently active connections.
+ * * New gdb.RemoteTargetConnection.send_packet(PACKET) method. This
+ is equivalent to the existing 'maint packet' CLI command; it
+ allows a user specified packet to be sent to the remote target.
+ * * New function gdb.host_charset(), returns a string, which is the
+ name of the current host charset.
+ * * New gdb.set_parameter(NAME, VALUE). This sets the gdb parameter
+ NAME to VALUE.
+ * * New gdb.with_parameter(NAME, VALUE). This returns a context
+ manager that temporarily sets the gdb parameter NAME to VALUE,
+ then resets it when the context is exited.
+ * * The gdb.Value.format_string method now takes a 'styling'
+ argument, which is a boolean. When true, the returned string can
+ include escape sequences to apply styling. The styling will only
+ be present if styling is otherwise turned on in GDB (see 'help
+ set styling'). When false, which is the default if the argument
+ is not given, then no styling is applied to the returned string.
+ * * New read-only attribute gdb.InferiorThread.details, which is
+ either a string, containing additional, target specific thread
+ state information, or None, if there is no such additional
+ information.
+ * * New read-only attribute gdb.Type.is_scalar, which is True for
+ scalar types, and False for all other types.
+ * * New read-only attribute gdb.Type.is_signed. This attribute
+ should only be read when Type.is_scalar is True, and will be True
+ for signed types, and False for all other types. Attempting to
+ read this attribute for non-scalar types will raise a ValueError.
+ * * It is now possible to add GDB/MI commands implemented in Python.
+- Update libipt to v2.0.5.
+- Patches added:
+ * gdb-6.3-rh-testversion-20041202.patch
+ * gdb-6.5-BEA-testsuite.patch
+ * gdb-6.6-buildid-locate-misleading-warning-missing-debuginfo-rhbz981154.patch
+ * gdb-6.7-charsign-test.patch
+ * gdb-6.8-bz466901-backtrace-full-prelinked.patch
+ * gdb-fix-for-gdb.base-eof-exit.exp-test-failures.patch
+ * gdb-improved-eof-handling-when-using-readline-7.patch
+ * gdb-libexec-add-index.patch
+ * gdb-tdep-detect-get_pc_thunk-call-in-i386-prologue.patch
+ * gdb-testsuite-address-test-failures-in-gdb.mi-mi-multi-commands.exp.patch
+ * gdb-testsuite-detect-change-instead-of-init-in-gdb.mi-mi-var-block.exp.patch
+ * gdb-testsuite-fix-gdb.opt-clobbered-registers-o2.exp-with-gcc-12.patch
+ * gdb-testsuite-fix-occasional-failure-in-gdb.mi-mi-multi-commands.exp.patch
+ * gdb-testsuite-fix-test-failure-when-building-against-readline-v7.patch
+ * gdb-testsuite-handle-older-python-in-gdb.python-py-send-packet.py.patch
+ * gdb-testsuite-handle-quotes-in-gdb_py_module_available.patch
+ * gdb-testsuite-handle-unordered-dict-in-gdb.python-py-mi-cmd.exp.patch
+ * gdb-testsuite-skip-gdb.fortran-namelist.exp-for-gfortran-4.8.patch
+ * gdb-testsuite-workaround-unnecessary-.s-file-with-gfortran-4.8.patch
+- Patches dropped:
+ * aarch64-make-gdbserver-register-set-selection-dynamic.patch
+ * fix-build-with-current-gcc-el_explicit-location-always-non-null.patch
+ * fix-gdb.base-sigstep.exp-test-for-ppc.patch
+ * fix-gdb.multi-multi-term-settings.exp-race.patch
+ * fixup-2-gdb-6.6-buildid-locate.patch
+ * fixup-gdb-6.6-buildid-locate.patch
+ * gdb-6.3-inferior-notification-20050721.patch
+ * gdb-ada-fix-assert-in-ada_is_unconstrained_packed_array_type.patch
+ * gdb-build-add-cxx_dialect-to-cxx.patch
+ * gdb-build-make-c-exp.y-work-with-bison-3.8.patch
+ * gdb-doc-fix-print-inferior-events-default.patch
+ * gdb-exp-improve-error-reading-variable-message.patch
+ * gdb-fortran-handle-dw-at-string-length-with-loclistptr.patch
+ * gdb-r_version-check.patch
+ * gdb-rhbz1976887-field-location-kind.patch
+ * gdb-rhbz2012976-paper-over-fortran-lex-problems.patch
+ * gdb-symtab-add-call_site_eq-and-call_site_hash.patch
+ * gdb-symtab-c-ify-call_site.patch
+ * gdb-symtab-fix-htab_find_slot-call-in-read_call_site_scope.patch
+ * gdb-symtab-fix-segfault-in-search_one_symtab.patch
+ * gdb-symtab-remove-compunit_call_site_htab.patch
+ * gdb-symtab-use-unrelocated-addresses-in-call_site.patch
+ * gdb-tdep-fix-avx512-m32-support-in-gdbserver.patch
+ * gdb-tdep-rs6000-don-t-skip-system-call-in-skip_prologue.patch
+ * gdb-test-for-rhbz1976887.patch
+ * gdb-testsuite-add-gdb.arch-ppc64-break-on-_exit.exp.patch
+ * gdb-testsuite-add-gdb.opt-break-on-_exit.exp.patch
+ * gdb-testsuite-add-gdb.testsuite-dump-system-info.exp.patch
+ * gdb-testsuite-add-missing-wait-in-gdb.base-signals-state-child.exp.patch
+ * gdb-testsuite-add-nopie-in-two-test-cases.patch
+ * gdb-testsuite-detect-no-mpx-support.patch
+ * gdb-testsuite-disable-inferior-output-in-gdb.base-foll-vfork.exp.patch
+ * gdb-testsuite-don-t-error-when-trying-to-unset-last_spawn_tty_name.patch
+ * gdb-testsuite-factor-out-dump_info-in-gdb.testsuite-dump-system-info.exp.patch
+ * gdb-testsuite-fix-assembly-comments-in-gdb.dwarf2-clang-debug-names.exp.tcl.patch
+ * gdb-testsuite-fix-data-alignment-in-gdb.arch-i386-avx-sse-.exp.patch
+ * gdb-testsuite-fix-fail-in-gdb.base-annota1.exp.patch
+ * gdb-testsuite-fix-fail-in-gdb.tui-basic.exp.patch
+ * gdb-testsuite-fix-fail-in-gdb.tui-corefile-run.exp.patch
+ * gdb-testsuite-fix-gdb.ada-big_packed_array.exp-xfail-for-m32.patch
+ * gdb-testsuite-fix-gdb.arch-i386-pkru.exp-on-linux.patch
+ * gdb-testsuite-fix-gdb.base-annota1.exp-with-pie.patch
+ * gdb-testsuite-fix-gdb.base-dcache-flush.exp.patch
+ * gdb-testsuite-fix-gdb.gdb-selftest.exp.patch
+ * gdb-testsuite-fix-gdb.guile-scm-type.exp-with-gcc-4.8.patch
+ * gdb-testsuite-fix-gdb.python-py-events.exp.patch
+ * gdb-testsuite-fix-gdb.server-server-kill.exp-with-m32.patch
+ * gdb-testsuite-fix-gdb.threads-check-libthread-db.exp-with-glibc-2.34.patch
+ * gdb-testsuite-fix-gdb.threads-linux-dp.exp.patch
+ * gdb-testsuite-fix-gdb.threads-thread-specific-bp.exp.patch
+ * gdb-testsuite-fix-port-detection-in-gdb.debuginfod-fetch_src_and_symbols.exp.patch
+ * gdb-testsuite-fix-regexp-in-gdb.base-foll-vfork.exp.patch
+ * gdb-testsuite-fix-stepi-test-cases-with-unix-m32-fpie-pie.patch
+ * gdb-testsuite-handle-recursive-internal-problem-in-gdb_internal_error_resync.patch
+ * gdb-testsuite-handle-runto-fail-in-gdb.mi-mi-var-cp.exp.patch
+ * gdb-testsuite-handle-sigill-in-two-gdb.arch-powerpc-test-cases.patch
+ * gdb-testsuite-handle-supports_memtag-in-gdb.base-gdb-caching-proc.exp.patch
+ * gdb-testsuite-make-gdb.base-annota1.exp-more-robust.patch
+ * gdb-testsuite-refactor-regexp-in-gdb.base-annota1.exp.patch
+ * gdb-testsuite-support-fpie-fno-pie-pie-no-pie-in-gdb_compile_rust.patch
+ * gdb-testsuite-update-test-gdb.base-step-over-syscall.exp.patch
+ * gdb-testsuite-use-compiler-generated-instead-of-gas-generated-stabs.patch
+ * gdb-tui-fix-breakpoint-display-functionality.patch
+ * ibm-z-add-another-arch14-instruction.patch
+ * ibm-z-remove-lpswey-parameter.patch
+- Patched updated:
+ * gdb-6.3-gstack-20050411.patch
+ * gdb-6.5-bz185337-resolve-tls-without-debuginfo-v2.patch
+ * gdb-6.6-buildid-locate-rpm-librpm-workaround.patch
+ * gdb-6.6-buildid-locate-rpm-scl.patch
+ * gdb-6.6-buildid-locate-rpm.patch
+ * gdb-6.6-buildid-locate-solib-missing-ids.patch
+ * gdb-6.6-buildid-locate.patch
+ * gdb-cli-add-ignore-errors-command.patch
+ * gdb-container-rh-pkg.patch
+ * gdb-core-open-vdso-warning.patch
+ * gdb-fedora-libncursesw.patch
+ * gdb-gcore-bash.patch
+ * gdb-linux_perf-bundle.patch
+ * gdb-testsuite-handle-init-errors-in-gdb.mi-user-selected-context-sync.exp.patch
+- Add BuildRequires python-xml.
- * Fix PR28510 kfail.
- * Add kfails for gdb.arch/i386-mpx*.
+ * Add -sle-12 and -factory options.
+ * Handle *.-fPIE.-pie.sum files.
+ * Add KFAILs for PRs 26292, 29238, 25059, 29240, 29241, 29244,
+ 29245, 29160, 29196.
+ * Move PR27539 KFAILs from kfail_factory to kfail.
+- New maintenance script qa-local.sh.
+- New file README.qa.
+
+- Patches added (trunk backport):
+ * gdb-testsuite-detect-no-mpx-support.patch
+ * gdb-testsuite-handle-init-errors-in-gdb.mi-user-selected-context-sync.exp.patch
+ * gdb-add-gdb-syscalls-makefile.patch
+- Patches added (ml backport):
+ * gdb-update-syscalls-amd64-i386-linux.xml.patch
+ * gdb-record-handle-statx-system-call.patch
+- Patches added (to be upstreamed):
+ * gdb-tdep-update-syscalls-ppc64-ppc-linux.xml.patch
+- Maintenance script qa.sh:
+ * Add another KFAIL for PR27027.
+ * Remove PR28461 KFAIL.
+
+- patches added (trunk backport):
+ * gdb-testsuite-make-gdb.base-annota1.exp-more-robust.patch
+ * gdb-testsuite-fix-gdb.base-annota1.exp-with-pie.patch
+- patches added (gdb-patches ml backport):
+ * gdb-tdep-handle-pipe2-syscall-for-amd64.patch
+ * gdb-testsuite-handle-pipe2-syscall-in-gdb.base-catch-syscall.exp.patch
+ * gdb-tdep-support-catch-syscall-pipe2-for-i386.patch
+- Maintenance script qa.sh:
+ * Add Leap 15.4 x86_64 to know good configs.
+
+- Remove dependency on binutils-gold as the package will be removed
+ in the future. Gold linker is unmaintained by the upstream project.
+
+- Fix unresolved BuildRequires fpc for Leap 15.4/i586.
+
+- Patch added (backport from master):
+ * fix-build-with-current-gcc-el_explicit-location-always-non-null.patch
+
+- Maintenance script qa.sh:
+ * Add KFAILs for PR28667.
+- Fedora fixup patch added:
+ * fixup-gdb-6.5-bz243845-stale-testing-zombie-test.patch
-- Patches dropped:
- * gdb-cli-add-ignore-errors-command.patch
+- gdb-r_version-check.patch: gdb: Don't assume r_ldsomap when r_version >
+ 1 on Linux
+
+- Patches added (swo#28323):
+ gdb-ada-fix-assert-in-ada_is_unconstrained_packed_array_type.patch
+
+- Patches added (swo#27028, swo#27257):
+ * gdb-testsuite-fix-gdb.arch-i386-pkru.exp-on-linux.patch
+ * gdb-tdep-fix-avx512-m32-support-in-gdbserver.patch
+
+- Patch added (swo#28539, bsc#1192285):
+ * gdb-symtab-fix-segfault-in-search_one_symtab.patch
+
+- Patches removed:
+ * gdb-testsuite-debug-gdb.arch-i386-sse.exp.patch
+
+- Maintenance script qa.sh:
+ - Drop openSUSE Leap 15.1.
+ - Add KFAILs for PR28617.
+
+- Fix SLE-12 x86_64 unresolvable by removing BuildRequire gcc-java.
+
+- Fix openSUSE_Factory_ARM armv7l unresolvable by not doing
+ BuildRequire babeltrace-devel.
+
+- Fix SLE-12 x86_64 unresolvable by not doing BuildRequire
+ babeltrace-devel.
+
+- Patches added (backport from master):
+ * gdb-testsuite-add-missing-wait-in-gdb.base-signals-state-child.exp.patch
+- Add BuildRequire libsource-highlight.
+
+- Maintenance script qa.sh:
+ - Add KFAIL.
+- Patches updated (increase sleep time):
+ * gdb-testsuite-fix-race-in-gdb.threads-detach-step-over.exp.patch
+- Patches added (debug hard to reproduce failure):
+ * gdb-testsuite-debug-gdb.arch-i386-sse.exp.patch
+
+- Maintenance script qa.sh:
+ - Add internal-error KFAILs.
+ - Rewrite gdb.suse check to distinguish between:
+ "zypper hint printed (librpm)" and
+ "zypper hint printed (no librpm)".
+
+- Patch updated (zypper hint doesn't use librpm on SLE-11):
+ * gdb-testsuite-add-gdb.suse-zypper-hint.exp.patch
+
+- Patches added (backports from trunk):
+ * gdb-testsuite-add-gdb.opt-break-on-_exit.exp.patch
+ * gdb-tdep-rs6000-don-t-skip-system-call-in-skip_prologue.patch
+ * gdb-testsuite-fix-stepi-test-cases-with-unix-m32-fpie-pie.patch
+ * gdb-testsuite-fix-assembly-comments-in-gdb.dwarf2-clang-debug-names.exp.tcl.patch
+ * gdb-doc-fix-print-inferior-events-default.patch
+ * gdb-testsuite-fix-gdb.guile-scm-type.exp-with-gcc-4.8.patch
+ * gdb-testsuite-add-gdb.arch-ppc64-break-on-_exit.exp.patch
+ * gdb-testsuite-don-t-error-when-trying-to-unset-last_spawn_tty_name.patch
+ * gdb-exp-improve-error-reading-variable-message.patch
+ * fix-gdb.base-sigstep.exp-test-for-ppc.patch
+ * gdb-testsuite-fix-regexp-in-gdb.base-foll-vfork.exp.patch
+- Patches added (backports from ml):
+ * gdb-testsuite-disable-inferior-output-in-gdb.base-foll-vfork.exp.patch
+- Maintenance script qa.sh:
+ - Add -m32/-pie to known clean configs.
+ - Add kfail for PR28467.
+
+- Fix empty patch:
+ * gdb-testsuite-fix-fail-in-gdb.tui-basic.exp.patch
+
+- Limit SLE extra targets to SLE targets.
+- Add avr-elf and pru-elf to openSUSE extra targets.
+
+- Maintenance script qa.sh:
+ * Add note.
+ * Add KFAIL, improve KFAIL patterns.
+- Patch updated:
+ * gdb-testsuite-fix-data-alignment-in-gdb.arch-i386-avx-sse-.exp.patch
+ * gdb-testsuite-fix-race-in-gdb.threads-detach-step-over.exp.patch
+
+- Replace patch (patch from mailing list, fix SLE-11 apply failure):
+ with (now backported from release branch):
+ * aarch64-make-gdbserver-register-set-selection-dynamic.patch
+- Patches added:
+ * gdb-testsuite-fix-data-alignment-in-gdb.arch-i386-avx-sse-.exp.patch
+ * gdb-testsuite-fix-fail-in-gdb.tui-basic.exp.patch
+- Patches dropped:
+ * gdb-testsuite-add-checks-to-gdb.arch-i386-sse.exp.patch
+- Replace patch:
+ * gdb-testsuite-Fix-gdb.threads-thread-specific-bp.exp.patch
+ with (updated version, and patchname now generated by
+ import-patches.sh):
+ * gdb-testsuite-fix-gdb.threads-thread-specific-bp.exp.patch
+- Maintenance script import-patches.sh:
+ * Improve argument checking.
+ * Add usage.
+ * Use filterdiff to filter out ChangeLog entries.
+- Maintenance script qa.sh:
+ * Fix usage.
+ * Document todo.
+
+- Re-enable big endian powerpc, but keep testing disabled.
+- Add KFAIL for PR28553.
+
+- Patch added (move zypper hint test to testsuite):
+ * gdb-testsuite-add-gdb.suse-zypper-hint.exp.patch
+
+- Maintenance script qa.sh:
+ * Add PR28551 KFAIL.
+ * Add missing quotes for some KFAILs.
+ * Remove PR28355 KFAIL.
gmmlib
+- update to 22.3.1:
+ * Fix memory leak Destroy allocated resources for ULT
+
gnutls
+- Fix AVX CPU feature detection for OSXSAVE [bsc#1203299]
+ * Fixes a SIGILL termination at the verzoupper instruction when
+ trying to run GnuTLS on a Linux kernel with the noxsave command
+ line parameter set. Relevant mostly for virutal systems.
+ * Upstream bug: https://gitlab.com/gnutls/gnutls/issues/1282
+ * Add gnutls-clear-AVX-bits-if-it-cannot-be-queried-XSAVE.patch
+
+- FIPS: Set error state when jent init failed in FIPS mode [bsc#1202146]
+ * Add patch gnutls-FIPS-Set-error-state-when-jent-init-failed.patch
+
+- FIPS: Make XTS key check failure not fatal [bsc#1203779]
+ * Add gnutls-Make-XTS-key-check-failure-not-fatal.patch
+
+- FIPS: Zeroize the calculated hmac and new_hmac in the
+ check_binary_integrity() function. [bsc#1191021]
+ * Add gnutls-FIPS-Zeroize-check_binary_integrity.patch
+
+- FIPS: Additional modifications to the SLI. [bsc#1190698]
+ * Mark CMAC and GMAC and non-approved in gnutls_pbkfd2().
+ * Mark HMAC keylength less than 112 bits as non-approved in
+ gnutls_pbkfd2().
+ * Adapt the pbkdf2 selftest and the regression tests accordingly.
+ * Add gnutls-FIPS-SLI-pbkdf2-verify-keylengths-only-SHA.patch
+
+- FIPS: Port GnuTLS to use jitterentropy [bsc#1202146, jsc#SLE-24941]
+ * Add new dependency on jitterentropy
+ * Add gnutls-FIPS-jitterentropy.patch
+
+- Security fix: [bsc#1202020, CVE-2022-2509]
+ * Fixed double free during verification of pkcs7 signatures
+ * Add gnutls-CVE-2022-2509.patch
+
+- FIPS:
+ * Modify gnutls-FIPS-force-self-test.patch [bsc#1198979]
+ - gnutls_fips140_run_self_tests now properly releases fips_context
+
+- FIPS:
+ * Add gnutls_ECDSA_signing.patch [bsc#1190698]
+ - Check minimum keylength for symmetric key generation
+ - Only allows ECDSA signature with valid set of hashes
+ (SHA2 and SHA3)
+ * Add gnutls-FIPS-force-self-test.patch [bsc#1198979]
+ - Provides interface for running library self tests on-demand
+ - Upstream: https://gitlab.com/gnutls/gnutls/-/merge_requests/1598
+
+- FIPS: Make sure zeroization is performed in all API functions
+ * Add gnutls-zeroization-API-functions.patch [bsc#1191021]
+ * Upsream: https://gitlab.com/gnutls/gnutls/-/merge_requests/1573
+
+- FIPS: Add missing requirements for the SLI [bsc#1190698]
+ * Remove 3DES from FIPS approved algorithms:
+ - gnutls-Remove-3DES-from-FIPS-approved-algos.patch
+ - Upstream: https://gitlab.com/gnutls/gnutls/-/merge_requests/1570
+ * DRBG service (gnutls_rnd) should be considered approved:
+ - gnutls-Add-missing-FIPS-service-indicator-transitions.patch
+ - gnutls-Add-missing-FIPS-service-indicator-transitions-tests.patch
+ - gnutls-pkcs12-tighten-algorithm-checks-under-FIPS.patch
+ - Upstream: https://gitlab.com/gnutls/gnutls/-/merge_requests/1569
+
+- FIPS: Mark AES-GCM as approved in the TLS context [bsc#1194907]
+ * Add gnutls-FIPS-Mark-HKDF-and-AES-GCM-as-approved-when-used-in-TLS.patch
+ * Upstream issue: https://gitlab.com/gnutls/gnutls/issues/1311
+
+- FIPS: Additional PBKDF2 requirements for KAT [bsc#1184669]
+ * The IG 10.3.A and SP800-132 require some minimum parameters for
+ the salt length, password length and iteration count. These
+ parameters should be also used in the KAT.
+ * Add gnutls-FIPS-PBKDF2-KAT-requirements.patch
+ * Upstream: https://gitlab.com/gnutls/gnutls/merge_requests/1561
+- Enable to run the regression tests also in FIPS mode.
+
+- Update to 3.7.3: [bsc#1190698, bsc#1190796]
+ * libgnutls: The allowlisting configuration mode has been added
+ to the system-wide settings. In this mode, all the algorithms
+ are initially marked as insecure or disabled, while the
+ applications can re-enable them either through the [overrides]
+ section of the configuration file or the new API (#1172).
+ * The build infrastructure no longer depends on GNU AutoGen for
+ generating command-line option handling, template file parsing
+ in certtool, and documentation generation (#773, #774). This
+ change also removes run-time or bundled dependency on the
+ libopts library, and requires Python 3.6 or later to regenerate
+ the distribution tarball. Note that this brings in known backward
+ incompatibility in command-line tools, such as long options are
+ now case sensitive, while previously they were treated in a case
+ insensitive manner: for example --RSA is no longer a valid option
+ of certtool. The existing scripts using GnuTLS tools may need
+ adjustment for this change.
+ * libgnutls: The tpm2-tss-engine compatible private blobs can be loaded
+ and used as a gnutls_privkey_t (#594). The code was originally written
+ for the OpenConnect VPN project by David Woodhouse. To generate such
+ blobs, use the tpm2tss-genkey tool from tpm2-tss-engine:
+ https://github.com/tpm2-software/tpm2-tss-engine/#rsa-operations
+ or the tpm2_encodeobject tool from unreleased tpm2-tools.
+ * libgnutls: The library now transparently enables Linux KTLS (kernel
+ TLS) when the feature is compiled in with --enable-ktls configuration
+ option (#1113). If the KTLS initialization fails it automatically falls
+ back to the user space implementation.
+ * certtool: The certtool command can now read the Certificate Transparency
+ (RFC 6962) SCT extension (#232). New API functions are also provided to
+ access and manipulate the extension values.
+ * certtool: The certtool command can now generate, manipulate, and evaluate
+ x25519 and x448 public keys, private keys, and certificates.
+ * libgnutls: Disabling a hashing algorithm through "insecure-hash"
+ configuration directive now also disables TLS ciphersuites that use it
+ as a PRF algorithm.
+ * libgnutls: PKCS#12 files are now created with modern algorithms by default
+ (!1499). Previously certtool used PKCS12-3DES-SHA1 for key derivation and
+ HMAC-SHA1 as an integity measure in PKCS#12. Now it uses AES-128-CBC with
+ PBKDF2 and SHA-256 for both key derivation and MAC algorithms, and the
+ default PBKDF2 iteration count has been increased to 600000.
+ * libgnutls: PKCS#12 keys derived using GOST algorithm now uses
+ HMAC_GOSTR3411_2012_512 instead of HMAC_GOSTR3411_2012_256 for integrity,
+ to conform with the latest TC-26 requirements (#1225).
+ * libgnutls: The library now provides a means to report the status
+ of approved cryptographic operations (!1465). To adhere to the
+ FIPS140-3 IG 2.4.C., this complements the existing mechanism to
+ prohibit the use of unapproved algorithms by making the library
+ unusable state.
+ * gnutls-cli: The gnutls-cli command now provides a --list-config
+ option to print the library configuration (!1508).
+ * libgnutls: Fixed possible race condition in
+ gnutls_x509_trust_list_verify_crt2 when a single trust list object
+ is shared among multiple threads (#1277). [GNUTLS-SA-2022-01-17,
+ CVSS: low]
+ * API and ABI modifications:
+ GNUTLS_PRIVKEY_FLAG_RSA_PSS_FIXED_SALT_LENGTH: new flag in
+ gnutls_privkey_flags_t
+ GNUTLS_VERIFY_RSA_PSS_FIXED_SALT_LENGTH: new flag in
+ gnutls_certificate_verify_flags
+ gnutls_ecc_curve_set_enabled: Added.
+ gnutls_sign_set_secure: Added.
+ gnutls_sign_set_secure_for_certs: Added.
+ gnutls_digest_set_secure: Added.
+ gnutls_protocol_set_enabled: Added.
+ gnutls_fips140_context_init: New function
+ gnutls_fips140_context_deinit: New function
+ gnutls_fips140_push_context: New function
+ gnutls_fips140_pop_context: New function
+ gnutls_fips140_get_operation_state: New function
+ gnutls_fips140_operation_state_t: New enum
+ gnutls_transport_is_ktls_enabled: New function
+ gnutls_get_library_configuration: New function
+ * Remove patches fixed in the update:
+ - gnutls-FIPS-module-version.patch
+ - gnutls-FIPS-service-indicator.patch
+ - gnutls-FIPS-service-indicator-public-key.patch
+ - gnutls-FIPS-service-indicator-symmetric-key.patch
+ - gnutls-FIPS-RSA-PSS-flags.patch
+ - gnutls-FIPS-RSA-mod-sizes.patch
+
+- FIPS: Fix regression tests in fips and non-fips mode [bsc#1194468]
+ * Add gnutls-FIPS-disable-failing-tests.patch
+ * Remove patches:
+ - gnutls-temporarily_disable_broken_guile_reauth_test.patch
+ - gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
+ - disable-psk-file-test.patch
+
+- FIPS: Provide module identifier and version [bsc#1190796]
+ * Add configurable options to output the module name/identifier
+ (--with-fips140-module-name) and the module version
+ (--with-fips140-module-version).
+ * Add the CLI option list-config that reports the configuration
+ of the library.
+ * Add gnutls-FIPS-module-version.patch
+
+- FIPS: Provide a service-level indicator [bsc#1190698]
+ * Add support for a "service indicator" as required in
+ the FIPS140-3 Implementation Guidance in section 2.4.C
+ * Add patches:
+ - gnutls-FIPS-service-indicator.patch
+ - gnutls-FIPS-service-indicator-public-key.patch
+ - gnutls-FIPS-service-indicator-symmetric-key.patch
+ - gnutls-FIPS-RSA-PSS-flags.patch
+
+- FIPS: RSA KeyGen/SigGen fail with 4096 bit key sizes [bsc#1192008]
+ * fips: allow more RSA modulus sizes
+ * Add gnutls-FIPS-RSA-mod-sizes.patch
+ * Delete gnutls-3.6.7-fips-rsa-4096.patch
+
+- Drop bogus condition "> 1550": that would mean 'more recent than
+ Tumbleweed' which is technically impossible, as Tumbleweed is the
+ leading project (and the condition causes issues as Tumbleweed
+ needs to move away from 1550 due to CODE 15 SP5 plans).
+
+- Add crypto-policies support in SLE-15-SP4 [jsc#SLE-20287]
+
+- Account for the libnettle soname bump [jsc#SLE-19765]
+
+- Update to 3.7.2 in SLE-15-SP4: [jsc#SLE-19765, jsc#SLE-18139]
+ - Add gnutls-temporarily_disable_broken_guile_reauth_test.patch
+ - Rebased patches:
+ * disable-psk-file-test.patch
+ * gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
+ * gnutls-fips_mode_enabled.patch
+ - Remove patches merged upstream:
+ * gnutls-CVE-2020-11501.patch
+ * gnutls-CVE-2020-13777.patch
+ * gnutls-CVE-2020-24659.patch
+ * gnutls-CVE-2021-20231.patch
+ * gnutls-CVE-2021-20232.patch
+ * gnutls-3.6.7-fips-backport_dont_truncate_output_IV.patch
+ * gnutls-fips_XTS_key_check.patch
+ * 0001-_gnutls_verify_crt_status-apply-algorithm-checks-to-.patch
+ * 0002-_gnutls_pkcs11_verify_crt_status-check-validity-agai.patch
+ * 0003-x509-trigger-fallback-verification-path-when-cert-is.patch
+ * 0004-tests-add-test-case-for-certificate-chain-supersedin.patch
+ * 0001-Add-Full-Public-Key-Check-for-DH.patch
+ * 0001-Add-test-to-ensure-DH-exchange-behaves-correctly.patch
+ * 0002-Add-test-to-ensure-ECDH-exchange-behaves-correctly.patch
+ * 0003-Add-plumbing-to-handle-Q-parameter-in-DH-exchanges.patch
+ * 0004-Always-pass-in-and-check-Q-in-TLS-1.3.patch
+ * 0005-Check-Q-for-FFDHE-primes-in-prime-check.patch
+ * 0006-Pass-down-Q-for-FFDHE-in-al-pre-TLS1.3-as-well.patch
+ * 0001-dh-primes-add-MODP-primes-from-RFC-3526.patch
+ * 0002-dhe-check-if-DH-params-in-SKE-match-the-FIPS-approve.patch
+ * 0001-dh-check-validity-of-Z-before-export.patch
+ * 0002-ecdh-check-validity-of-P-before-export.patch
+ * 0003-dh-primes-make-the-FIPS-approved-check-return-Q-valu.patch
+ * 0004-dh-perform-SP800-56A-rev3-full-pubkey-validation-on-.patch
+ * 0005-ecdh-perform-SP800-56A-rev3-full-pubkey-validation-o.patch
+ * 0001-Vendor-in-XTS-functionality-from-Nettle.patch
+ * 0001-pubkey-avoid-spurious-audit-messages-from-_gnutls_pu.patch
+ * gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch
+ * gnutls-3.6.7-fix-FTBFS-2024.patch
+ * gnutls-3.6.7-reproducible-date.patch
+
+- Update to version 3.7.2
+ * Added Linux kernel AF_ALG based acceleration
+ * Fixed timing of early data exchange
+ * The priority string option DISABLE_TLS13_COMPAT_MODE was added
+ to disable TLS 1.3 middlebox compatibility mode
+ * The GNUTLS_NO_EXPLICIT_INIT envvar has been renamed to
+ GNUTLS_NO_IMPLICIT_INIT to reflect the purpose
+ * certtool:
+ * When signing a CSR, CRL distribution point (CDP) is no
+ longer copied from the signing CA by default
+ * When producing certificates and certificate requests, subject
+ DN components that are provided individually will now be
+ ordered by assumed scale
+
+- Add gnutls-3.6.7-fix-FTBFS-2024.patch to let tests pass after 2024 (boo#1186579)
+- Add gnutls-3.6.7-reproducible-date.patch to override build date (boo#1047218)
+
+- Security fix: [bsc#1183456, CVE-2021-20232]
+ * A use after free issue in client_send_params
+ in lib/ext/pre_shared_key.c may lead to memory
+ corruption and other potential consequences.
+- Add gnutls-CVE-2021-20232.patch
+
+- Security fix: [bsc#1183457, CVE-2021-20231]
+ * A use after free issue in client sending key_share extension
+ may lead to memory corruption and other consequences.
+- Add gnutls-CVE-2021-20231.patch
+
+- Update to 3.7.1:
+ [bsc#1183456, CVE-2021-20232] [bsc#1183457, CVE-2021-20231]
+ * Fixed potential use-after-free in sending "key_share" and
+ "pre_shared_key" extensions.
+ * Fixed a regression in handling duplicated certs in a chain.
+ * Fixed sending of session ID in TLS 1.3 middlebox compatibility
+ mode. In that mode the client shall always send a non-zero
+ session ID to make the handshake resemble the TLS 1.2
+ resumption; this was not true in the previous versions.
+ * Removed dependency on the external 'fipscheck' package,
+ when compiled with --enable-fips140-mode.
+ * Added padlock acceleration for AES-192-CBC.
+- Remove patches upstream:
+ * gnutls-gnutls-cli-debug.patch
+ * gnutls-ignore-duplicate-certificates.patch
+ * gnutls-test-fixes.patch
+
+- Fix the test suite for tests/gnutls-cli-debug.sh [bsc#1171565]
+ * Don't unset system priority settings in gnutls-cli-debug.sh
+ * Upstream: gitlab.com/gnutls/gnutls/merge_requests/1387
+- Add gnutls-gnutls-cli-debug.patch
+
+- Fix: Test certificates in tests/testpkcs11-certs have expired
+ * Upstream bug: gitlab.com/gnutls/gnutls/issues/1135
+- Add gnutls-test-fixes.patch
+
+- gnutls_x509_trust_list_verify_crt2: ignore duplicate certificates
+ * Upstream bug: https://gitlab.com/gnutls/gnutls/issues/1131
+- Add gnutls-ignore-duplicate-certificates.patch
+
+- Update to 3.7.0
+ * Depend on nettle 3.6
+ * Added a new API that provides a callback function to retrieve
+ missing certificates from incomplete certificate chains
+ * Added a new API that provides a callback function to output the
+ complete path to the trusted root during certificate chain
+ verification
+ * OIDs exposed as gnutls_datum_t no longer account for the
+ terminating null bytes, while the data field is null terminated.
+ The affected API functions are: gnutls_ocsp_req_get_extension,
+ gnutls_ocsp_resp_get_response, and gnutls_ocsp_resp_get_extension
+ * Added a new set of API to enable QUIC implementation
+ * The crypto implementation override APIs deprecated in 3.6.9 are
+ now no-op
+ * Added MAGMA/KUZNYECHIK CTR-ACPKM and CMAC support
+ * Support for padlock has been fixed to make it work with Zhaoxin CPU
+ * The maximum PIN length for PKCS #11 has been increased from 31
+ bytes to 255 bytes
+- Remove patch fixed upstream:
+ * gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch
+- Fix threading bug in libgnutls [bsc#1173434]
+ * Upstream bug: gitlab.com/gnutls/gnutls/issues/1044
+
+- Avoid spurious audit messages about incompatible signature algorithms
+ (bsc#1172695)
+ * add 0001-pubkey-avoid-spurious-audit-messages-from-_gnutls_pu.patch
+
+- FIPS: Use 2048 bit prime in DH selftest (bsc#1176086)
+ * add gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch
+- FIPS: Add TLS KDF selftest (bsc#1176671)
+ * add gnutls-FIPS-TLS_KDF_selftest.patch
+
+- Escape rpm command %%expand when used in comment.
+
+- FIPS: Use 2048 bit prime in DH selftest (bsc#1176086)
+ * add gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch
+
+- FIPS: Add TLS KDF selftest (bsc#1176671)
+ * add gnutls-FIPS-TLS_KDF_selftest.patch
+
+- Fix heap buffer overflow in handshake with no_renegotiation alert sent
+ * CVE-2020-24659 (bsc#1176181)
+- add gnutls-CVE-2020-24659.patch
+
+- FIPS: Implement (EC)DH requirements from SP800-56Arev3 (bsc#1176086)
+- add patches
+ * 0001-Add-Full-Public-Key-Check-for-DH.patch
+ * 0001-Add-test-to-ensure-DH-exchange-behaves-correctly.patch
+ * 0002-Add-test-to-ensure-ECDH-exchange-behaves-correctly.patch
+ * 0003-Add-plumbing-to-handle-Q-parameter-in-DH-exchanges.patch
+ * 0004-Always-pass-in-and-check-Q-in-TLS-1.3.patch
+ * 0005-Check-Q-for-FFDHE-primes-in-prime-check.patch
+ * 0006-Pass-down-Q-for-FFDHE-in-al-pre-TLS1.3-as-well.patch
+ * 0001-dh-primes-add-MODP-primes-from-RFC-3526.patch
+ * 0002-dhe-check-if-DH-params-in-SKE-match-the-FIPS-approve.patch
+ * 0001-dh-check-validity-of-Z-before-export.patch
+ * 0002-ecdh-check-validity-of-P-before-export.patch
+ * 0003-dh-primes-make-the-FIPS-approved-check-return-Q-valu.patch
+ * 0004-dh-perform-SP800-56A-rev3-full-pubkey-validation-on-.patch
+ * 0005-ecdh-perform-SP800-56A-rev3-full-pubkey-validation-o.patch
+- drop obsolete gnutls-3.6.7-fips_DH_ECDH_key_tests.patch
+
+- Update to 3.6.15
+ * libgnutls: Fixed "no_renegotiation" alert handling at incorrect timing.
+ [GNUTLS-SA-2020-09-04, CVSS: medium]
+ * libgnutls: If FIPS self-tests are failed, gnutls_fips140_mode_enabled() now
+ indicates that with a false return value (!1306).
+ * libgnutls: Under FIPS mode, the generated ECDH/DH public keys are checked
+ accordingly to SP800-56A rev 3 (!1295, !1299).
+ * libgnutls: gnutls_x509_crt_export2() now returns 0 upon success, rather than
+ the size of the internal base64 blob (#1025).
+ * libgnutls: Certificate verification failue due to OCSP must-stapling is not
+ honered is now correctly marked with the GNUTLS_CERT_INVALID flag
+ * libgnutls: The audit log message for weak hashes is no longer printed twice
+ * libgnutls: Fixed version negotiation when TLS 1.3 is enabled and TLS 1.2 is
+ disabled in the priority string. Previously, even when TLS 1.2 is explicitly
+ disabled with "-VERS-TLS1.2", the server still offered TLS 1.2 if TLS 1.3 is
+ enabled (#1054).
+- drop upstreamed patches:
+ * gnutls-detect_nettle_so.patch
+ * 0001-crypto-api-always-allocate-memory-when-serializing-i.patch
+
+- Correctly detect gmp, nettle, and hogweed libraries (bsc#1172666)
+ * add gnutls-detect_nettle_so.patch
+
+- Fix a memory leak that could lead to a DoS attack against Samba
+ servers (bsc#1172663)
+ * add 0001-crypto-api-always-allocate-memory-when-serializing-i.patch
+- Temporarily disable broken guile reauth test (bsc#1171565)
+ * add gnutls-temporarily_disable_broken_guile_reauth_test.patch
+
+- GNUTLS-SA-2020-06-03 (Fixed insecure session ticket key construction)
+ The TLS server would not bind the session ticket encryption key with a
+ value supplied by the application until the initial key rotation, allowing
+ attacker to bypass authentication in TLS 1.3 and recover previous
+ conversations in TLS 1.2 (#1011). (bsc#1172506, CVE-2020-13777)
+ * add patches:
+ + gnutls-CVE-2020-13777.patch
+- Fixed handling of certificate chain with cross-signed intermediate
+ CA certificates (#1008). (bsc#1172461)
+ * add patches:
+ + 0001-_gnutls_verify_crt_status-apply-algorithm-checks-to-.patch
+ + 0002-_gnutls_pkcs11_verify_crt_status-check-validity-agai.patch
+ + 0003-x509-trigger-fallback-verification-path-when-cert-is.patch
+ + 0004-tests-add-test-case-for-certificate-chain-supersedin.patch
+
+- Update to 3.6.14
+ * libgnutls: Fixed insecure session ticket key construction, since 3.6.4.
+ The TLS server would not bind the session ticket encryption key with a
+ value supplied by the application until the initial key rotation, allowing
+ attacker to bypass authentication in TLS 1.3 and recover previous
+ conversations in TLS 1.2 (#1011). (bsc#1172506, CVE-2020-13777)
+ [GNUTLS-SA-2020-06-03, CVSS: high]
+ * libgnutls: Fixed handling of certificate chain with cross-signed
+ intermediate CA certificates (#1008). (bsc#1172461)
+ * libgnutls: Fixed reception of empty session ticket under TLS 1.2 (#997).
+ * libgnutls: gnutls_x509_crt_print() is enhanced to recognizes commonName
+ (2.5.4.3), decodes certificate policy OIDs (!1245), and prints Authority
+ Key Identifier (AKI) properly (#989, #991).
+ * certtool: PKCS #7 attributes are now printed with symbolic names (!1246).
+ * libgnutls: Use accelerated AES-XTS implementation if possible (!1244).
+ Also both accelerated and non-accelerated implementations check key block
+ according to FIPS-140-2 IG A.9 (!1233).
+ * libgnutls: Added support for AES-SIV ciphers (#463).
+ * libgnutls: Added support for 192-bit AES-GCM cipher (!1267).
+ * libgnutls: No longer use internal symbols exported from Nettle (!1235)
+ * API and ABI modifications:
+ GNUTLS_CIPHER_AES_128_SIV: Added
+ GNUTLS_CIPHER_AES_256_SIV: Added
+ GNUTLS_CIPHER_AES_192_GCM: Added
+ gnutls_pkcs7_print_signature_info: Added
+- Add key D605848ED7E69871: public key "Daiki Ueno <ueno@unixuser.org>" to
+ the keyring
+- Drop gnutls-fips_correct_nettle_soversion.patch (upstream)
+
+- Add RSA 4096 key generation support in FIPS mode (bsc#1171422)
+ * add gnutls-3.6.7-fips-rsa-4096.patch
+
+- Don't check for /etc/system-fips which we don't have (bsc#1169992)
+ * add gnutls-fips_mode_enabled.patch
+
+- Backport AES XTS support (bsc#1168835)
+ * add 0001-Vendor-in-XTS-functionality-from-Nettle.patch
+ * add gnutls-fips_XTS_key_check.patch
+
+- Use correct nettle .so version when looking for a FIPS checksum
+ (bsc#1166635)
+ * add gnutls-fips_correct_nettle_soversion.patch
+
+- Update to 3.6.13
+ * libgnutls: Fix a DTLS-protocol regression (caused by TLS1.3 support)
+ The DTLS client would not contribute any randomness to the DTLS negotiation,
+ breaking the security guarantees of the DTLS protocol (#960)
+ [GNUTLS-SA-2020-03-31, CVSS: high] (bsc#1168345)
+ * libgnutls: Added new APIs to access KDF algorithms (#813).
+ * libgnutls: Added new callback gnutls_keylog_func that enables a custom
+ logging functionality.
+ * libgnutls: Added support for non-null terminated usernames in PSK
+ negotiation (#586).
+ * gnutls-cli-debug: Improved support for old servers that only support
+ SSL 3.0.
+
+- Fix zero random value in DTLS client hello
+ (CVE-2020-11501, bsc#1168345)
+ * add gnutls-CVE-2020-11501.patch
+
+- Split off FIPS checksums into a separate libgnutls30-hmac
+ subpackage (bsc#1152692)
+ * update baselibs.conf
+
+- bsc#1166881 - FIPS: gnutls: cfb8 decryption issue
+ * No longer truncate output IV if input is shorter than block size.
+ * Added gnutls-3.6.7-fips-backport_dont_truncate_output_IV.patch
+
+- bsc#1155327 jira#SLE-9518 - FIPS: add DH key test
+ * Added Diffie Hellman public key verification test.
+ * gnutls-3.6.7-fips_DH_ECDH_key_tests.patch
+
+- gnutls 3.6.12
+ * libgnutls: Introduced TLS session flag (gnutls_session_get_flags())
+ to identify sessions that client request OCSP status request (#829).
+ * libgnutls: Added support for X448 key exchange (RFC 7748) and Ed448
+ signature algorithm (RFC 8032) under TLS (#86).
+ * libgnutls: Added the default-priority-string option to system configuration;
+ it allows overriding the compiled-in default-priority-string.
+ * libgnutls: Added support for GOST CNT_IMIT ciphersuite (as defined by
+ draft-smyshlyaev-tls12-gost-suites-07).
+ By default this ciphersuite is disabled. It can be enabled by adding
+ +GOST to priority string. In the future this priority string may enable
+ other GOST ciphersuites as well. Note, that server will fail to negotiate
+ GOST ciphersuites if TLS 1.3 is enabled both on a server and a client. It
+ is recommended for now to disable TLS 1.3 in setups where GOST ciphersuites
+ are enabled on GnuTLS-based servers.
+ * libgnutls: added priority shortcuts for different GOST categories like
+ CIPHER-GOST-ALL, MAC-GOST-ALL, KX-GOST-ALL, SIGN-GOST-ALL, GROUP-GOST-ALL.
+ * libgnutls: Reject certificates with invalid time fields. That is we reject
+ certificates with invalid characters in Time fields, or invalid time formatting
+ To continue accepting the invalid form compile with --disable-strict-der-time
+ * libgnutls: Reject certificates which contain duplicate extensions. We were
+ previously printing warnings when printing such a certificate, but that is
+ not always sufficient to flag such certificates as invalid. Instead we now
+ refuse to import them (#887).
+ * libgnutls: If a CA is found in the trusted list, check in addition to
+ time validity, whether the algorithms comply to the expected level prior
+ to accepting it. This addresses the problem of accepting CAs which would
+ have been marked as insecure otherwise (#877).
+ * libgnutls: The min-verification-profile from system configuration applies
+ for all certificate verifications, not only under TLS. The configuration can
+ be overriden using the GNUTLS_SYSTEM_PRIORITY_FILE environment variable.
+ * libgnutls: The stapled OCSP certificate verification adheres to the convention
+ used throughout the library of setting the 'GNUTLS_CERT_INVALID' flag.
+ * libgnutls: On client side only send OCSP staples if they have been requested
+ by the server, and on server side always advertise that we support OCSP stapling
+ * libgnutls: Introduced the gnutls_ocsp_req_const_t which is compatible
+ with gnutls_ocsp_req_t but const.
+ * certtool: Added the --verify-profile option to set a certificate
+ verification profile. Use '--verify-profile low' for certificate verification
+ to apply the 'NORMAL' verification profile.
+ * certtool: The add_extension template option is considered even when generating
+ a certificate from a certificate request.
+
+- gnutls 3.6.11.1:
+ * libgnutls: Corrected issue with TLS 1.2 session ticket
+ handling as client during resumption
+ * libgnutls: gnutls_base64_decode2() succeeds decoding the empty
+ string to the empty string. This is a behavioral change of the
+ API but it conforms to the RFC4648 expectations
+ * libgnutls: Fixed AES-CFB8 implementation, when input is shorter
+ than the block size. Fix backported from nettle.
+ * certtool: CRL distribution points will be set in CA
+ certificates even when non self-signed
+ * gnutls-cli/serv: added raw public-key handling capabilities
+ (RFC7250). Key material can be set via the --rawpkkeyfile and
+ - -rawpkfile flags.
+
+- gnutls 3.6.10:
+ * Add support for deterministic ECDSA/DSA (RFC6979)
+ * Add functions for in-place encryption/decryption of data buffers
+ * server now selects the highest TLS protocol version, if TLS 1.3
+ is enabled and the client advertises an older protocol version
+ first
+ * Add support for GOST 28147-89 cipher in CNT (GOST counter) mode
+ and MAC generation based on GOST 28147-89 (IMIT)
+ * certtool: when outputting an encrypted private key do not
+ insert the textual description of it
+
+- Install checksums for binary integrity verification which are
+ required when running in FIPS mode (bsc#1152692, jsc#SLE-9518)
+
+- gnutls 3.6.9:
+ * add support for copying digest or MAC contexts
+ * Mark the crypto implementation override APIs as deprecated
+ * Add support for AES-GMAC, as a separate to GCM, MAC algorithm
+ * Add support for Generalname registeredID
+ * The priority configuration was enhanced to allow more elaborate
+ system-wide configuration of the library
+- includes changes from 3.6.8:
+ * Add support for AES-XTS cipher
+ * Fix calculation of Streebog digests
+ * During Diffie-Hellman operations in TLS, verify that the peer's
+ public key is on the right subgroup (y^q=1 mod p), when q is
+ available (under TLS 1.3 and under earlier versions when RFC7919
+ parameters are used).
+ * Apply STD3 ASCII rules in gnutls_idna_map() to prevent
+ hostname/domain crafting via IDNA conversion
+ * certtool: allow the digital signature key usage flag in CA
+ certificates
+ * gnutls-cli/serv: add the --keymatexport and --keymatexportsize
+ options. These allow testing the RFC5705 using these tools
+- drop patches to re-enable tests:
+ * disable-psk-file-test.patch
+ * gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
+
+- Explicitly require libnettle 3.4.1 (bsc#1134856)
+ * The RSA decryption code was rewritten in GnuTLS 3.6.5 in order
+ to fix CVE-2018-16868, the new implementation makes use of a new
+ rsa_sec_decrypt() function introduced in libnettle 3.4.1
+ * libnettle was recently updated to the 3.4.1 version but we need
+ to add explicit dependency on it to prevent missing symbol errors
+ with the older versions
+
+- Restored autoreconf in build.
+- Removed gnutls-3.6.6-SUSE_SLE15_congruent_version_requirements.patch
+ since the version requirements of required libraries are once again
+ automatically determined.
+- Added gnutls-3.6.7-SUSE_SLE15_guile_site_directory.patch because it is a
+ better patch name for handling the '--with-guile-site-dir=' problem in
+ 3.6.7.
+
+- Trim useless %if..%endif guards that do not affect the build.
+- Fix language errors in description again.
+
+- Update gnutls to 3.6.7
+ * * libgnutls, gnutls tools: Every gnutls_free() will automatically set
+ the free'd pointer to NULL. This prevents possible use-after-free and
+ double free issues. Use-after-free will be turned into NULL dereference.
+ The counter-measure does not extend to applications using gnutls_free().
+ * * libgnutls: Fixed a memory corruption (double free) vulnerability in the
+ certificate verification API. Reported by Tavis Ormandy; addressed with
+ the change above. [GNUTLS-SA-2019-03-27, #694] [bsc#1130681] (CVE-2019-3829)
+ * * libgnutls: Fixed an invalid pointer access via malformed TLS1.3 async messages;
+ Found using tlsfuzzer. [GNUTLS-SA-2019-03-27, #704] [bsc#1130682] (CVE-2019-3836)
+ * * libgnutls: enforce key usage limitations on certificates more actively.
+ Previously we would enforce it for TLS1.2 protocol, now we enforce it
+ even when TLS1.3 is negotiated, or on client certificates as well. When
+ an inappropriate for TLS1.3 certificate is seen on the credentials structure
+ GnuTLS will disable TLS1.3 support for that session (#690).
+ * * libgnutls: the default number of tickets sent under TLS 1.3 was increased to
+ two. This makes it easier for clients which perform multiple connections
+ to the server to use the tickets sent by a default server.
+ * * libgnutls: enforce the equality of the two signature parameters fields in
+ a certificate. We were already enforcing the signature algorithm, but there
+ was a bug in parameter checking code.
+ * * libgnutls: fixed issue preventing sending and receiving from different
+ threads when false start was enabled (#713).
+ * * libgnutls: the flag GNUTLS_PKCS11_OBJ_FLAG_LOGIN_SO now implies a writable
+ session, as non-writeable security officer sessions are undefined in PKCS#11
+ (#721).
+ * * libgnutls: no longer send downgrade sentinel in TLS 1.3.
+ Previously the sentinel value was embedded to early in version
+ negotiation and was sent even on TLS 1.3. It is now sent only when
+ TLS 1.2 or earlier is negotiated (#689).
+ * * gnutls-cli: Added option --logfile to redirect informational messages output.
+- Disabled dane support since dane is not shipped with SLE-15
+- Changed configure script to hardware guile site directory since command-line
+ option '--with-guile-site-dir=' was removed from the configure script in 3.6.7.
+ * * Modified gnutls-3.6.6-SUSE_SLE15_congruent_version_requirements.patch
+- Modified gnutls-3.6.0-disable-flaky-dtls_resume-test.patch to fix
+ compilation issues on PPC
+- Fixed Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification
+ and padding oracle verification (in 3.6.5) [bsc#1118087] (CVE-2018-16868)
+
+- FATE#327114 - Update gnutls to 3.6.6 to support TLS 1.3
+ * * libgnutls: gnutls_pubkey_import_ecc_raw() was fixed to set the number bits
+ on the public key (#640).
+ * * libgnutls: Added support for raw public-key authentication as defined in RFC7250.
+ Raw public-keys can be negotiated by enabling the corresponding certificate
+ types via the priority strings. The raw public-key mechanism must be explicitly
+ enabled via the GNUTLS_ENABLE_RAWPK init flag (#26, #280).
+ * * libgnutls: When on server or client side we are sending no extensions we do
+ not set an empty extensions field but we rather remove that field competely.
+ This solves a regression since 3.5.x and improves compatibility of the server
+ side with certain clients.
+ * * libgnutls: We no longer mark RSA keys in PKCS#11 tokens as RSA-PSS capable if
+ the CKA_SIGN is not set (#667).
+ * * libgnutls: The priority string option %NO_EXTENSIONS was improved to completely
+ disable extensions at all cases, while providing a functional session. This
+ also implies that when specified, TLS1.3 is disabled.
+ * * libgnutls: GNUTLS_X509_NO_WELL_DEFINED_EXPIRATION was marked as deprecated.
+ The previous definition was non-functional (#609).
+ * Removed patches:
+ 0001-dummy_wait-correctly-account-the-length-field-in-SHA.patch
+ 0002-dummy_wait-always-hash-the-same-amount-of-blocks-tha.patch
+ 0003-cbc_mac_verify-require-minimum-padding-under-SSL3.0.patch
+ 0004-hmac-sha384-and-sha256-ciphersuites-were-removed-fro.patch
+ * Added Patches:
+ * * disable failing psk-file test (race condition):
+ disable-psk-file-test.patch
+ * * Patch configure script to accept specific versions of autotools and guile
+ that are present in SUSE-SLE15. (A bug prevents configure from accepting
+ a range of compatible versions. Upstream's solution is to hardwire for
+ the most current versions.)
+ gnutls-3.6.6-SUSE_SLE15_congruent_version_requirements.patch
+ * Modified:
+ * * gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
+- drop no longer needed gnutls-enbale-guile-2.2.patch
+- refresh disable-psk-file-test.patch
+
+- Update to 3.6.5
+ * * libgnutls: Provide the option of transparent re-handshake/reauthentication
+ when the GNUTLS_AUTO_REAUTH flag is specified in gnutls_init() (#571).
+ * * libgnutls: Added support for TLS 1.3 zero round-trip (0-RTT) mode (#127)
+ * * libgnutls: The priority functions will ignore and not enable TLS1.3 if
+ requested with legacy TLS versions enabled but not TLS1.2. That is because
+ if such a priority string is used in the client side (e.g., TLS1.3+TLS1.0 enabled)
+ servers which do not support TLS1.3 will negotiate TLS1.2 which will be
+ rejected by the client as disabled (#621).
+ * * libgnutls: Change RSA decryption to use a new side-channel silent function.
+ This addresses a security issue where memory access patterns as well as timing
+ on the underlying Nettle rsa-decrypt function could lead to new Bleichenbacher
+ attacks. Side-channel resistant code is slower due to the need to mask
+ access and timings. When used in TLS the new functions cause RSA based
+ handshakes to be between 13% and 28% slower on average (Numbers are indicative,
+ the tests where performed on a relatively modern Intel CPU, results vary
+ depending on the CPU and architecture used). This change makes nettle 3.4.1
+ the minimum requirement of gnutls (#630). [CVSS: medium]
+ * * libgnutls: gnutls_priority_init() and friends, allow the CTYPE-OPENPGP keyword
+ in the priority string. It is only accepted as legacy option and is ignored.
+ * * libgnutls: Added support for EdDSA under PKCS#11 (#417)
+ * * libgnutls: Added support for AES-CFB8 cipher (#357)
+ * * libgnutls: Added support for AES-CMAC MAC (#351)
+ * * libgnutls: In two previous versions GNUTLS_CIPHER_GOST28147_CPB/CPC/CPD_CFB ciphers
+ have incorrectly used CryptoPro-A S-BOX instead of proper (CryptoPro-B/-C/-D
+ S-BOXes). They are fixed now.
+ * * libgnutls: Added support for GOST key unmasking and unwrapped GOST private
+ keys parsing, as specified in R 50.1.112-2016.
+ * * gnutls-serv: It applies the default settings when no --priority option is given,
+ using gnutls_set_default_priority().
+ * * p11tool: Fix initialization of security officer's PIN with the --initialize-so-pin
+ option (#561)
+ * * certtool: Add parameter --no-text that prevents certtool from outputting
+ text before PEM-encoded private key, public key, certificate, CRL or CSR.
+- minimum required libnettle is now 3.4.1
+- refresh
+ * disable-psk-file-test.patch
+ * gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
+
+- search for guile-2.2 during configure, part of boo#1117121
+ add patches:
+ * gnutls-enbale-guile-2.2.patch: search for guile-2.2
+ refresh patches:
+ * disable-psk-file-test.patch: disable psk-file in Makefile.am
+
+- Temporarily disable failing psk-file test (race condition)
+ * add disable-psk-file-test.patch
+
+- Version update to 3.6.4 (bsc#1111757):
+ * * libgnutls: Added the final (RFC8446) version numbering of the TLS1.3 protocol.
+ * * libgnutls: Corrected regression since 3.6.3 in the callbacks set with
+ gnutls_certificate_set_retrieve_function() which could not handle the case where
+ no certificates were returned, or the callbacks were set to NULL (see #528).
+ * * libgnutls: gnutls_handshake() on server returns early on handshake when no
+ certificate is presented by client and the gnutls_init() flag GNUTLS_ENABLE_EARLY_START
+ is specified.
+ * * libgnutls: Added session ticket key rotation on server side with TOTP.
+ The key set with gnutls_session_ticket_enable_server() is used as a
+ master key to generate time-based keys for tickets. The rotation
+ relates to the gnutls_db_set_cache_expiration() period.
+ * * libgnutls: The 'record size limit' extension is added and preferred to the
+ 'max record size' extension when possible.
+ * * libgnutls: Provide a more flexible PKCS#11 search of trust store certificates.
+ This addresses the problem where the CA certificate doesn't have a subject key
+ identifier whereas the end certificates have an authority key identifier (#569)
+ * * libgnutls: gnutls_privkey_export_gost_raw2(), gnutls_privkey_import_gost_raw(),
+ gnutls_pubkey_export_gost_raw2(), gnutls_pubkey_import_gost_raw() import
+ and export GOST parameters in the "native" little endian format used for these
+ curves. This is an intentional incompatible change with 3.6.3.
+ * * libgnutls: Added support for seperately negotiating client and server certificate types
+ as defined in RFC7250. This mechanism must be explicitly enabled via the
+ GNUTLS_ENABLE_CERT_TYPE_NEG flag in gnutls_init().
+- Drop upstreamed patch:
+ * gnutls-3.6.3-backport-upstream-fixes.patch
+
+- gnutls-3.6.0-disable-flaky-dtls_resume-test.patch: refresh to also patch
+ test/Makefile.in as autoreconf does not work
+
+- Backport of upstream fixes (boo#1108450)
+ * gnutls-3.6.3-backport-upstream-fixes.patch
+ Fixes taken from upstream commits:
+ * * 3df5b7bc8a64 ("cert-cred: fix possible segfault when resetting cert retrieval function")
+ * * 42945a7aab6d ("allow no certificates to be reported by the gnutls_certificate_retrieve_function callbacks")
+ * * 10f83e36ed92 ("hello_ext_parse: apply the test for pre-shared key ext being last on client hello")
+ The patch was taken from https://github.com/weechat/weechat/issues/1231
+
+- Security update
+ Improve mitigations against Lucky 13 class of attacks
+ * "Just in Time" PRIME + PROBE cache-based side channel attack
+ can lead to plaintext recovery (CVE-2018-10846, bsc#1105460)
+ * HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of
+ wrong constant (CVE-2018-10845, bsc#1105459)
+ * HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not
+ enough dummy function calls (CVE-2018-10844, bsc#1105437)
+ * add patches:
+ 0001-dummy_wait-correctly-account-the-length-field-in-SHA.patch
+ 0002-dummy_wait-always-hash-the-same-amount-of-blocks-tha.patch
+ 0003-cbc_mac_verify-require-minimum-padding-under-SSL3.0.patch
+ 0004-hmac-sha384-and-sha256-ciphersuites-were-removed-fro.patch
+
+- Update to 3.6.3
+ Fixes security issues:
+ CVE-2018-10846, CVE-2018-10845, CVE-2018-10844, CVE-2017-10790
+ (bsc#1105437, bsc#1105460, bsc#1105459, bsc#1047002)
+ Other Changes:
+ * * libgnutls: Introduced support for draft-ietf-tls-tls13-28
+ * * libgnutls: Apply compatibility settings for existing applications running with TLS1.2 or
+ earlier and TLS 1.3.
+ * * Added support for Russian Public Key Infrastructure according to RFCs 4491/4357/7836.
+ * * Provide a uniform cipher list across supported TLS protocols
+ * * The SSL 3.0 protocol is disabled on compile-time by default.
+ * * libgnutls: Introduced function to switch the current FIPS140-2 operational
+ mode
+ * * libgnutls: Introduced low-level function to assist applications attempting client
+ hello extension parsing, prior to GnuTLS' parsing of the message.
+ * * libgnutls: When exporting an X.509 certificate avoid re-encoding if there are no
+ modifications to the certificate.
+ * * libgnutls: on group exchange honor the %SERVER_PRECEDENCE and select the groups
+ which are preferred by the server.
+ * * Improved counter-measures for TLS CBC record padding.
+ * * Introduced the %FORCE_ETM priority string option. This option prevents the negotiation
+ of legacy CBC ciphersuites unless encrypt-then-mac is negotiated.
+ * * libgnutls: gnutls_privkey_import_ext4() was enhanced with the
+ GNUTLS_PRIVKEY_INFO_PK_ALGO_BITS flag.
+ * * libgnutls: gnutls_pkcs11_copy_secret_key, gnutls_pkcs11_copy_x509_privkey2,
+ gnutls_pkcs11_privkey_generate3 will mark objects as sensitive by default
+ unless GNUTLS_PKCS11_OBJ_FLAG_MARK_NOT_SENSITIVE is specified. This is an API
+ change for these functions which make them err towards safety.
+ * * libgnutls: improved aarch64 cpu features detection by using getauxval().
+ * * certtool: It is now possible to specify certificate and serial CRL numbers greater
+ than 2**63-2 as a hex-encoded string both when prompted and in a template file.
+ Default certificate serial numbers are now fully random.
+- don't run autoreconf to avoid pulling in gtk-doc
+
+- Require pkgconfig(autoopts) for building
+
+- Simplify the DANE support %ifdef condition
+ * build with DANE on openSUSE only
+
+- Adjust RPM groups. Drop %if..%endif guards that are idempotent.
+
+- build without DANE support on SLE-15, as it doesn't have unbound
+ (bsc#1086428)
+
+- add back refreshed gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
+ the dtls-resume test still keeps randomly failing on PPC
+
+- remove gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
+ patch does not apply any more and apparently the build
+ suceeds even if the formerly flaky testcase is run (bsc#1086579)
+
+- gnutls.keyring: Nikos key refreshed to be unexpired
+
+- GnuTLS 3.6.2:
+ * libgnutls: When verifying against a self signed certificate ignore issuer.
+ That is, ignore issuer when checking the issuer's parameters strength,
+ resolving issue #347 which caused self signed certificates to be
+ additionally marked as of insufficient security level.
+ * libgnutls: Corrected MTU calculation for the CBC ciphersuites. The data
+ MTU calculation now, it correctly accounts for the fixed overhead due to
+ padding (as 1 byte), while at the same time considers the rest of the
+ padding as part of data MTU.
+ * libgnutls: Address issue of loading of all PKCS#11 modules on startup
+ on systems with a PKCS#11 trust store (as opposed to a file trust store).
+ Introduced a multi-stage initialization which loads the trust modules, and
+ other modules are deferred for the first pure PKCS#11 request.
+ * libgnutls: The SRP authentication will reject any parameters outside
+ RFC5054. This protects any client from potential MitM due to insecure
+ parameters. That also brings SRP in par with the RFC7919 changes to
+ Diffie-Hellman.
+ * libgnutls: Added the 8192-bit parameters of SRP to the accepted parameters
+ for SRP authentication.
+ * libgnutls: Addressed issue in the accelerated code affecting
+ interoperability with versions of nettle >= 3.4.
+ * libgnutls: Addressed issue in the AES-GCM acceleration under aarch64.
+ * libgnutls: Addressed issue in the AES-CBC acceleration under ssse3 (patch by
+ Vitezslav Cizek).
+ * srptool: the --create-conf option no longer includes 1024-bit parameters.
+ * p11tool: Fixed the deletion of objects in batch mode.
+- Dropped gnutls-check_aes_keysize.patch as it is included upstream now.
+
+- Use %license (boo#1082318)
+
+- Sanity check key size in SSSE3 AES cipher implementation (bsc#1074303)
+ * add gnutls-check_aes_keysize.patch
+
+- GnuTLS 3.6.1:
+ * Fix interoperability issue with openssl when safe renegotiation
+ was used
+ * gnutls_x509_crl_sign, gnutls_x509_crt_sign,
+ gnutls_x509_crq_sign, were modified to sign with a better
+ algorithm than SHA1. They will now sign with an algorithm that
+ corresponds to the security level of the signer's key.
+ * gnutls_x509_*_sign2() functions and gnutls_x509_*_privkey_sign()
+ accept GNUTLS_DIG_UNKNOWN (0) as a hash function option. That
+ will signal the function to auto-detect an appropriate hash
+ algorithm to use.
+ * Remove support for signature algorithms using SHA2-224 in TLS.
+ TLS 1.3 no longer uses SHA2-224 and it was never a widespread
+ algorithm in TLS 1.2
+ * Refuse to use client certificates containing disallowed
+ algorithms for a session, reverting a change on 3.5.5
+ * Refuse to resume a session which had a different SNI advertised
+ That improves RFC6066 support in server side.
+ * p11tool: Mark all generated objects as sensitive by default.
+ * p11tool: added options --sign-params and --hash. This allows
+ testing signature with multiple algorithms, including RSA-PSS.
+
+- Disable flaky dtls_resume test on Power
+ * add gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
+
+- GnuTLS 3.6.0:
+ * Introduce a lock-free random generator which operates per-
+ thread and eliminates random-generator related bottlenecks in
+ multi-threaded operation.
+ * Replace the Salsa20 random generator with one based on CHACHA.
+ The goal is to reduce code needed in cache (CHACHA is also
+ used for TLS), and the number of primitives used by the
+ library. That does not affect the AES-DRBG random generator
+ used in FIPS140-2 mode.
+ * Add support for RSA-PSS key type as well as signatures in
+ certificates, and TLS key exchange
+ * Add support for Ed25519 signing in certificates and TLS key
+ exchange following draft-ietf-tls-rfc4492bis-17
+ * Enable X25519 key exchange by default, following
+ draft-ietf-tls-rfc4492bis-17.
+ * Add support for Diffie-Hellman group negotiation following
+ RFC7919.
+ * Introduce various sanity checks on certificate import
+ * Introduce gnutls_x509_crt_set_flags(). This function can set
+ flags in the crt structure. The only flag supported at the
+ moment is GNUTLS_X509_CRT_FLAG_IGNORE_SANITY which skips the
+ certificate sanity checks on import.
+ * PKIX certificates with unknown critical extensions are rejected
+ on verification with status GNUTLS_CERT_UNKNOWN_CRIT_EXTENSIONS
+ * Refuse to generate a certificate with an illegal version, or an
+ illegal serial number. That is, gnutls_x509_crt_set_version()
+ and gnutls_x509_crt_set_serial(), will fail on input considered
+ to be invalid in RFC5280.
+ * Call to gnutls_record_send() and gnutls_record_recv() prior to
+ handshake being complete are now refused
+ * Add support for PKCS#12 files with no salt (zero length) in
+ their password encoding, and PKCS#12 files using SHA384 and
+ SHA512 as MAC.
+ * libgnutls: Exported functions to encode and decode DSA and ECDSA
+ r,s values.
+ * Add new callback setting function to gnutls_privkey_t for
+ external keys. The new function (gnutls_privkey_import_ext4),
+ allows signing in addition to previous algorithms (RSA PKCS#1
+ 1.5, DSA, ECDSA), with RSA-PSS and Ed25519 keys.
+ * Introduce the %VERIFY_ALLOW_BROKEN and
+ %VERIFY_ALLOW_SIGN_WITH_SHA1 priority string options. These
+ allows enabling all broken and SHA1-based signature algorithms
+ in certificate verification, respectively.
+ * 3DES-CBC is no longer included in the default priorities list.
+ It has to be explicitly enabled, e.g., with a string like
+ "NORMAL:+3DES-CBC".
+ * SHA1 was marked as insecure for signing certificates.
+ Verification of certificates signed with SHA1 is now considered
+ insecure and will fail, unless flags intended to enable broken
+ algorithms are set. Other uses of SHA1 are still allowed.
+ * RIPEMD160 was marked as insecure for certificate signatures.
+ Verification of certificates signed with RIPEMD160 hash
+ algorithm is now considered insecure and will fail, unless
+ flags intended to enable broken algorithms are set.
+ * No longer enable SECP192R1 and SECP224R1 by default on TLS
+ handshakes. These curves were rarely used for that purpose,
+ provide no advantage over x25519 and were deprecated by TLS 1.3.
+ * Remove support for DEFLATE, or any other compression method.
+ * OpenPGP authentication was removed; the resulting library is ABI
+ compatible, with the openpgp related functions being stubs that
+ fail on invocation.
+ Drop gnutls-broken-openpgp-tests.patch, no longer required.
+ * Remove support for libidn (i.e., IDNA2003); gnutls can now be
+ compiled only with libidn2 which provides IDNA2008.
+ * certtool: The option '--load-ca-certificate' can now accept
+ PKCS#11 URLs in addition to files.
+ * certtool: The option '--load-crl' can now be used when
+ generating PKCS#12 files (i.e., in conjunction with '--to-p12' option).
+ * certtool: Keys with provable RSA and DSA parameters are now
+ only read and exported from PKCS#8 form, following
+ draft-mavrogiannopoulos-pkcs8-validated-parameters-00.txt.
+ This removes support for the previous a non-standard key format.
+ * certtool: Added support for generating, printing and handling
+ RSA-PSS and Ed25519 keys and certificates.
+ * certtool: the parameters --rsa, --dsa and --ecdsa to
+ - -generate-privkey are now deprecated, replaced by the
+ - -key-type option.
+ * p11tool: The --generate-rsa, --generate-ecc and --generate-dsa
+ options were replaced by the --generate-privkey option.
+ * psktool: Generate 256-bit keys by default.
+ * gnutls-server: Increase request buffer size to 16kb, and added
+ the --alpn and --alpn-fatal options, allowing testing of ALPN
+ negotiation.
+ * Enables FIPS 140-2 mode during build
+
+- Buildrequire iproute2: the test suite calls /usr/bin/ss and as
+ such we have to ensure to pull it in.
+
+- GnuTLS 3.5.15:
+ * libgnutls: Disable hardware acceleration on aarch64/ilp32 mode
+ * certtool: Keys with provable RSA and DSA parameters are now
+ only exported in PKCS#8 form
+
+- RPM group fix. Diversification of summaries.
+- Avoid aims and future plans in description. Say what it does now.
+
+- Drop the deprecated openssl compat ; discussed and suggested by
+ vcizek
+- Cleanup a bit with spec-cleaner
+
+- GnuTLS 3.5.14:
+ * Handle specially HSMs which request explicit authentication
+ * he GNUTLS_PKCS11_OBJ_FLAG_LOGIN will force a login on HSMs
+ * do not set leading zeros when copying integers on HSMs
+ * Fix issue discovering certain OCSP signers, and improved the
+ discovery of OCSP signer in the case where the Subject Public
+ Key identifier field matches
+ * ensure OCSP responses are saved with --save-ocsp even if
+ certificate verification fails.
+
+- GnuTLS 3.5.13:
+ * libgnutls: fixed issue with AES-GCM in-place encryption and
+ decryption in aarch64
+ * libgnutls: no longer parse the ResponseID field of the status
+ response TLS extension. The field is not used by GnuTLS nor is
+ made available to calling applications. That addresses a null
+ pointer dereference on server side caused by packets containing
+ the ResponseID field. GNUTLS-SA-2017-4, bsc#1043398
+ * libgnutls: tolerate certificates which do not have strict DER
+ time encoding. It is possible using 3rd party tools to generate
+ certificates with time fields that do not conform to DER
+ requirements. Since 3.4.x these certificates were rejected and
+ cannot be used with GnuTLS, however that caused problems with
+ existing private certificate infrastructures, which were
+ relying on such certificates. Tolerate reading and using these
+ certificates.
+ * minitasn1: updated to libtasn1 4.11.
+ * certtool: allow multiple certificates to be used in --p7-sign
+ with the --load-certificate option
+
+- GnuTLS 3.5.12:
+ * libgnutls: gnutls_x509_crt_check_hostname2() no longer matches
+ IP addresses against DNS fields of certificate (CN or DNSname).
+ The previous behavior was to tolerate some misconfigured
+ servers, but that was non-standard and skipped any IP
+ constraints present in higher level certificates.
+ * libgnutls: when converting to IDNA2008, fallback to IDNA2003
+ (i.e., transitional encoding) if the domain cannot be converted.
+ That provides maximum compatibility with browsers like firefox
+ that perform the same conversion.
+ * libgnutls: fix issue in RSA-PSK client callback which resulted
+ in no username being sent to the peer
+ * libgnutls: fix regression causing stapled extensions in trust
+ modules not to be considered.
+ * certtool: introduced the email_protection_key option. This
+ option was introduced in documentation for certtool without an
+ implementation of it. It is a shortcut for option
+ 'key_purpose_oid = 1.3.6.1.5.5.7.3.4'.
+ * certtool: made printing of key ID and key PIN consistent
+ between certificates, public keys, and private keys. That is
+ the private key printing now uses the same format as the rest.
+ * gnutls-cli: introduced the --sni-hostname option. This allows
+ overriding the hostname advertised to the peer.
+
+- skip trust-store tests to avoid build cycle with
+ ca-certificates-mozilla, add gnutls-3.5.11-skip-trust-store-tests.patch
+
+- GnuTLS 3.5.11:
+ * gnutls.pc: do not include libtool options into Libs.private.
+ * libgnutls: Fixed issue when rehandshaking without a client certificate in
+ a session which initially used one
+ * libgnutls: Addressed read of 4 bytes past the end of buffer in OpenPGP
+ certificate parsing (bsc#1038337)
+ * libgnutls: Introduced locks in gnutls_pkcs11_privkey_t structure access.
+ That allows PKCS#11 operations such as signing to be performed with the
+ same object from multiple threads.
+ * libgnutls: when disabling OpenPGP authentication, the resulting library
+ is ABI compatible (will openpgp related functions being stubs that fail
+ on invocation).
+
+- call gzip -n to make build fully reproducible
+
+- update to 3.5.10
+ * addresses GNUTLS-SA-2017-3 CVE-2017-7869 bsc#1034173
+ * gnutls.pc: do not include libidn2 in Requires.private
+ * libgnutls: optimized access to subject alternative names (SANs) in parsed
+ certificates
+ * libgnutls: Print the key PIN value used by the HPKP protocol as per RFC7469
+ when printing certificate information.
+ * libgnutls: gnutls_ocsp_resp_verify_direct() and gnutls_ocsp_resp_verify()
+ flags can be set from the gnutls_certificate_verify_flags enumeration.
+ This allows the functions to pass the same flags available for certificates
+ to the verification function (e.g., GNUTLS_VERIFY_DISABLE_TIME_CHECKS or
+ GNUTLS_VERIFY_ALLOW_BROKEN).
+ * libgnutls: gnutls_store_commitment() can accept flag
+ GNUTLS_SCOMMIT_FLAG_ALLOW_BROKEN. This is to allow the function to operate
+ in applications which use SHA1 for example, after SHA1 is deprecated.
+ * certtool: No longer ignore the 'add_critical_extension' template option if
+ the 'add_extension' option is not present.
+ * gnutls-cli: Added LMTP, POP3, NNTP, Sieve and PostgreSQL support to the
+ starttls-proto command- drop gnutls-3.5.9-pkgconfig.patch (upstream)
+- drop gnutls-3.5.9-pkgconfig.patch (upstream)
+- remove unknown --disable-srp flag (bsc#901857)
+
+- disable the deprecated OpenPGP authentication support
+ * see https://gitlab.com/gnutls/gnutls/issues/102
+- add gnutls-broken-openpgp-tests.patch
+
+- GnuTLS 3.5.9:
+ * libgnutls: OpenPGP references removed, functionality deprecated
+ * libgnutls: Improve detection of AVX support
+ * libgnutls: Add support for IDNA2008 with libidn2 FATE#321897
+ * p11tool: re-use ID from corresponding objects when writing
+ certificates.
+ * API and ABI modifications:
+ gnutls_idna_map: Added
+ gnutls_idna_reverse_map: Added
+- prevent pkgconfig issues due to libidn2 when building with GnuTLS
+ add gnutls-3.5.9-pkgconfig.patch
+
+- Version 3.5.8 (released 2016-01-09)
+ * libgnutls: Ensure that multiple calls to the gnutls_set_priority_*
+ functions will not leave the verification profiles field to an
+ undefined state. The last call will take precedence.
+ * libgnutls: Ensure that GNUTLS_E_DECRYPTION_FAIL will be returned
+ by PKCS#8 decryption functions when an invalid key is provided. This
+ addresses regression on decrypting certain PKCS#8 keys.
+ * libgnutls: Introduced option to override the default priority string
+ used by the library. The intention is to allow support of system-wide
+ priority strings (as set with --with-system-priority-file). The
+ configure option is --with-default-priority-string.
+ * libgnutls: Require a valid IV size on all ciphers for PKCS#8 decryption.
+ This prevents crashes when decrypting malformed PKCS#8 keys.
+ * libgnutls: Fix crash on the loading of malformed private keys with certain
+ parameters set to zero.
+ * libgnutls: Fix double free in certificate information printing. If the PKIX
+ extension proxy was set with a policy language set but no policy specified,
+ that could lead to a double free.
+ * libgnutls: Addressed memory leaks in client and server side error paths
+ (issues found using oss-fuzz project)
+ * libgnutls: Addressed memory leaks in X.509 certificate printing error paths
+ (issues found using oss-fuzz project)
+ * libgnutls: Addressed memory leaks and an infinite loop in OpenPGP certificate
+ parsing. Fixes by Alex Gaynor. (issues found using oss-fuzz project)
+ * libgnutls: Addressed invalid memory accesses in OpenPGP certificate parsing.
+ (issues found using oss-fuzz project)
+- security issues fixed: GNUTLS-SA-2017-1 GNUTLS-SA-2017-2
+
+- GnuTLS 3.5.7, the next stable branch, with the following
+ highlights:
+ * SHA3 as a certificate signature algorithm
+ * X25519 (formerly curve25519) for ephemeral EC diffie-hellman
+ key exchange
+ * TLS false start
+ * New APIs to access the Shawe-Taylor-based provable RSA and DSA
+ parameter generation
+ * Prevent the change of identity on rehandshakes by default
+
+- GnuTLS 3.4.17:
+ * libgnutls: Introduced time and constraints checks in the end
+ certificate in the gnutls_x509_crt_verify_data2() and
+ gnutls_pkcs7_verify_direct() functions.
+ * libgnutls: Set limits on the maximum number of alerts handled.
+ That is, applications using gnutls could be tricked into an
+ busy loop if the peer sends continuously alert messages.
+ Applications which set a maximum handshake time (via
+ gnutls_handshake_set_timeout) will eventually recover but
+ others may remain in a busy loops indefinitely. This is related
+ but not identical to CVE-2016-8610, due to the difference in
+ alert handling of the libraries (gnutls delegates that handling
+ to applications). boo#1005879
+ * libgnutls: Enhanced the PKCS#7 parser to allow decoding old
+ (pre-rfc5652) structures with arbitrary encapsulated content.
+ * libgnutls: Backported cipher priorities order from 3.5.x branch
+ That adds CHACHA20-POLY1305 ciphersuite to SECURE priority
+ strings.
+ * certtool: When exporting a CRQ in DER format ensure no text data
+ are intermixed.
+ * API and ABI modifications:
+ gnutls_pkcs7_get_embedded_data_oid: Added
+- includes changes from 3.4.16:
+ * libgnutls: Ensure proper cleanups on
+ gnutls_certificate_set_*key() failures due to key mismatch.
+ This prevents leaks or double freeing on such failures.
+ * libgnutls: Increased the maximum size of the handshake message
+ hash. This will allow the library to cope better with larger
+ packets, as the ones offered by current TLS 1.3 drafts.
+ * libgnutls: Allow to use client certificates despite them
+ containing disallowed algorithms for a session. That allows for
+ example a client to use DSA-SHA1 due to his old DSA
+ certificate, without requiring him to enable DSA-SHA1 (and thus
+ make it acceptable for the server's certificate).
+ * guile: Backported all improvements from 3.5.x branch.
+ * guile: Update code to the I/O port API of Guile >= 2.1.4
+ This makes sure the GnuTLS bindings will work with the
+ forthcoming 2.2 stable series of Guile, of which 2.1 is a
+ preview.
+
+- GnuTLS 3.4.15:
+ * libgnutls: Corrected the comparison of the serial size in OCSP
+ response. Previously the OCSP certificate check wouldn't verify
+ the serial length and could succeed in cases it shouldn't
+ (GNUTLS-SA-2016-3).
+ * libgnutls: Fixes in gnutls_x509_crt_list_import2, which was
+ ignoring flags if all certificates in the list fit within the
+ initially allocated memory.
+ * libgnutls: Corrected issue which made
+ gnutls_certificate_get_x509_crt() to return invalid pointers
+ when returned more than a single certificate.
+ * libgnutls: Fix gnutls_pkcs12_simple_parse to always extract the
+ complete chain.
+ * libgnutls: Added support for decrypting PKCS#8 files which use
+ the HMAC-SHA256 as PRF.
+ * libgnutls: Addressed issue with PKCS#11 signature generation on
+ ECDSA keys. The signature is now written as unsigned integers
+ into the DSASignatureValue structure. Previously signed
+ integers could be written depending on what the underlying
+ module would produce. Addresses #122.
+- fix build error for 13.2, 42.1 and 42.2
+
+- GnuTLS 3.4.14:
+ * libgnutls: Address issue when utilizing the p11-kit trust store
+ for certificate verification (GNUTLS-SA-2016-2, boo#988276)
+ * libgnutls: Fixed DTLS handshake packet reconstruction.
+ * libgnutls: Fixed issues with PKCS#11 reading of sensitive
+ objects from SafeNet Network HSM
+ * libgnutls: Corrected the writing of PKCS#11 CKA_SERIAL_NUMBER
+- drop upstreamed
+ 0001-tests-use-datefudge-in-name-constraints-test.patch
+
+- Fix a problem with expired test certificate by using datefudge
+ (boo#987139)
+ * add 0001-tests-use-datefudge-in-name-constraints-test.patch
+
+- Version 3.4.13 (released 2016-06-06)
+ * libgnutls: Consider the SSLKEYLOGFILE environment to be compatible with
+ NSS instead of using a separate variable; in addition append any keys to
+ the file instead of overwriting it.
+ * libgnutls: use secure_getenv() where available to obtain environment
+ variables. Addresses GNUTLS-SA-2016-1.
+- Version 3.4.12 (released 2016-05-20)
+ * libgnutls: The CHACHA20-POLY1305 ciphersuite is enabled by default. This
+ cipher is prioritized after AES-GCM.
+ * libgnutls: Fixes in gnutls_privkey_import_ecc_raw().
+ * libgnutls: Fixed gnutls_pkcs11_get_raw_issuer() usage with the
+ GNUTLS_PKCS11_OBJ_FLAG_OVERWRITE_TRUSTMOD_EXT flag. Previously that
+ operation could fail on certain PKCS#11 modules.
+ * libgnutls: gnutls_pkcs11_obj_import_url() and gnutls_x509_crt_import_url()
+ can accept the GNUTLS_PKCS11_OBJ_FLAG_OVERWRITE_TRUSTMOD_EXT flag.
+ * libgnutls: gnutls_certificate_set_key() was enhanced to import the DNS
+ name of the certificates if the provided names are NULL.
+ * libgnutls: when receiving SNI names, only save and expose to application
+ the supported DNS names.
+ * libgnutls: when importing the certificate names at the
+ gnutls_certificate_set* functions, only consider the CN as a fallback
+ if DNS names are provided via the alternative name extension.
+ * gnutls-cli: on OCSP verification do not fail if we have a single valid
+ reply. Report and reproducer by Thomas Klute.
+ * libgnutls: The GNUTLS_KEYLOGFILE environment variable can be used to
+ log session keys in client side. These session keys are compatible with
+ the NSS Key Log Format and can be used to decrypt the session for
+ debugging using wireshark.
+
+- enabled guile support
+- removed duplicates
+
+- Updated to 3.4.11
+ * Version 3.4.11 (released 2016-04-11)
+ * * libgnutls: Fixes in gnutls_record_get/set_state() with DTLS.
+ Reported by Fridolin Pokorny.
+ * * libgnutls: Fixes in DSA key generation under PKCS #11. Report and
+ patches by Jan Vcelak.
+ * * libgnutls: Corrected behavior of ALPN extension parsing during
+ session resumption. Report and patches by Yuriy M. Kaminskiy.
+ * * libgnutls: Corrected regression (since 3.4.0) in
+ gnutls_server_name_set() which caused it not to accept non-null-
+ terminated hostnames. Reported by Tim Ruehsen.
+ * * libgnutls: Corrected printing of the IP Adress name constraints.
+ * * ocsptool: use HTTP/1.0 for requests. This avoids issue with servers
+ serving chunk encoding which ocsptool doesn't support. Reported by
+ Thomas Klute.
+ * * certtool: do not require a CA for OCSP signing tag. This follows the
+ recommendations in RFC6960 in 4.2.2.2 which allow a CA to delegate
+ OCSP signing to another certificate without requiring it to be a CA.
+ Reported by Thomas Klute.
+ * Version 3.4.10 (released 2016-03-03)
+ * * libgnutls: Eliminated issues preventing buffers more than 2^32 bytes
+ to be used with hashing functions.
+ * * libgnutls: Corrected leaks and other issues in
+ gnutls_x509_crt_list_import().
+ * * libgnutls: Fixes in DSA key handling for PKCS #11. Report and
+ patches by Jan Vcelak.
+ * * libgnutls: Several fixes to prevent relying on undefined behavior
+ of C (found with libubsan).
+ * Version 3.4.9 (released 2016-02-03)
+ * * libgnutls: Corrected ALPN protocol negotiation. Before GnuTLS would
+ negotiate the last commonly supported protocol, rather than the
+ first. Reported by Remi Denis-Courmont (#63).
+ * * libgnutls: Tolerate empty DN fields in informational output
+ functions.
+ * * libgnutls: Corrected regression causes by incorrect fix in
+ gnutls_x509_ext_export_key_usage() at 3.4.8 release.
+
+- follow the work in the unbound package and use the
+ libunbound-devel symbol for the buildrequires. we override it for
+ the distro build with libunbound-devel-mini to avoid build loops.
+
+- reenable dane support, require unbound-devel bsc#964346
+- split out libgnutls-dane-devel to try to avoid build cycle.
+
+- Update to 3.4.8
+ All changes since 3.4.4:
+ * libgnutls: Corrected memory leak in gnutls_pubkey_import_privkey()
+ when used with PKCS #11 keys.
+ * libgnutls: For DSA and ECDSA keys in PKCS #11 objects, import
+ their public keys from either a public key object or a certificate.
+ That is, because private keys do not contain all the required
+ parameters for a direct import.
+ * libgnutls: Fixed issue when writing ECDSA private keys in PKCS #11
+ tokens.
+ * libgnutls: Fixed out-of-bounds read in
+ gnutls_x509_ext_export_key_usage()
+ * libgnutls: The CHACHA20-POLY1305 ciphersuites were updated to
+ conform to draft-ietf-tls-chacha20-poly1305-02.
+ * libgnutls: Several fixes in PKCS #7 signing which improve
+ compatibility with the MacOSX tools.
+ * libgnutls: The max-record extension not negotiated on DTLS. This
+ resolves issue with the max-record being negotiated but ignored.
+ * certtool: Added the --p7-include-cert and --p7-show-data options.
+ * libgnutls: Properly require TLS 1.2 in all CBC-SHA256 and CBC-SHA384
+ ciphersuites. This solves an interoperability issue with openssl.
+ * libgnutls: Corrected the setting of salt size in
+ gnutls_pkcs12_mac_info().
+ * libgnutls: On a rehandshake allow switching from anonymous to ECDHE
+ and DHE ciphersuites.
+ * libgnutls: Corrected regression from 3.3.x which prevented
+ ARCFOUR128 from using arbitrary key sizes.
+ * libgnutls: Added GNUTLS_SKIP_GLOBAL_INIT macro to allow programs
+ skipping the implicit global initialization.
+ * gnutls.pc: Don't include libtool specific options to link flags.
+ * tools: Better support for FTP AUTH TLS negotiation
+ * libgnutls: Added new simple verification functions. That avoids the
+ need to install a callback to perform certificate verification. See
+ doc/examples/ex-client-x509.c for usage.
+ * libgnutls: Introduced the security parameter 'future' which is at
+ the 256-bit level of security, and 'ultra' was aligned to its
+ documented size at 192-bits.
+ * libgnutls: When writing a certificate into a PKCS #11 token, ensure
+ that CKA_SERIAL_NUMBER and CKA_ISSUER are written.
+ * libgnutls: Allow the presence of legacy ciphers and key exchanges in
+ priority strings and consider them a no-op.
+ * libgnutls: Handle the extended master secret as a mandatory
+ extension. That fixes incompatibility issues with Chromium (#45).
+ * libgnutls: Added the ability to copy a public key into a PKCS #11
+ token.
+ * tools: Added support for LDAP and XMPP negotiation for STARTTLS.
+ * p11tool: Allow writing a public key into a PKCS #11 token.
+ * certtool: Key generation security level was switched to HIGH. That
+ is, by default the tool generates 3072 bit keys for RSA and DSA.
+ * libgnutls: When re-importing CRLs to a trust list ensure that there
+ no duplicate entries.
+ * certtool: Removed any arbitrary limits imposed on input file sizes
+ and maximum number of certificates imported.
+ * certtool: Allow specifying fixed dates on CRL generation.
+ * gnutls-cli-debug: Added check for inappropriate fallback support
+ (RFC7507).
+
+- Update to 3.4.4
+ This update contains a fix for a denial of service vulnerability:
+ * Allow the parsing of very long DNs. Also fixes double free
+ in DN decoding [GNUTLS-SA-2015-3]. boo#941794 CVE-2015-6251
+ Other changes:
+ * Add high level API (gnutls_prf_rfc5705) to access the PRF as
+ specified by RFC5705.
+ * Link to trousers (TPM library) dynamically when this
+ functionality is requested. (disabled in SUSE package)
+ * Fix issue with server side sending the status request extension
+ even when not requested.
+ * Add support for RFC7507 by introducing the %FALLBACK_SCSV
+ priority string option.
+ * gnutls_pkcs11_privkey_generate2() will store the generated
+ public key, unless the GNUTLS_PKCS11_OBJ_FLAG_NO_STORE_PUBKEY
+ flag is specified.
+ * Correct regression from 3.4.3 in loading PKCS #8 keys as fallback.
+ * API and ABI modifications:
+ gnutls_prf_rfc5705: Added
+ gnutls_hex_encode2: Added
+ gnutls_hex_decode2: Added
+- build with autogen for libopts compatibility
+- fix failures in test suite, add upstream commits
+ 0001-certtool-lifted-limits-on-file-size-to-load.patch
+ 0002-certtool-eliminated-memory-leaks-due-to-new-cert-loa.patch
+
+- update to 3.4.3
+ * * libgnutls: Follow closely RFC5280 recommendations and use UTCTime for
+ dates prior to 2050.
+ * * libgnutls: Force 16-byte alignment to all input to ciphers (previously it
+ was done only when cryptodev was enabled).
+ * * libgnutls: Removed support for pthread_atfork() as it has undefined
+ semantics when used with dlopen(), and may lead to a crash.
+ * * libgnutls: corrected failure when importing plain files
+ with gnutls_x509_privkey_import2(), and a password was provided.
+ * * libgnutls: Don't reject certificates if a CA has the URI or IP address
+ name constraints, and the end certificate doesn't have an IP address
+ name or a URI set.
+ * * libgnutls: set and read the hint in DHE-PSK and ECDHE-PSK ciphersuites.
+ * * p11tool: Added --list-token-urls option, and print the token module name
+ in list-tokens.
+ * * libgnutls: DTLS blocking API is more robust against infinite blocking,
+ and will notify of more possible timeouts.
+ * * libgnutls: corrected regression with Camellia-256-GCM cipher. Reported
+ by Manuel Pegourie-Gonnard.
+ * * libgnutls: Introduced the GNUTLS_NO_SIGNAL flag to gnutls_init(). That
+ allows to disable SIGPIPE for writes done within gnutls.
+ * * libgnutls: Enhanced the PKCS #7 API to allow signing and verification
+ of structures. API moved to gnutls/pkcs7.h header.
+ * * certtool: Added options to generate PKCS #7 bundles and signed
+ structures.
+- includes changes from 3.4.2:
+ * DTLS blocking API is more robust against infinite blocking,
+ and will notify of more possible timeouts.
+ * Correct regression with Camellia-256-GCM cipher.
+ * Introduce the GNUTLS_NO_SIGNAL flag to gnutls_init(). That
+ allows to disable SIGPIPE for writes done within gnutls.
+ * Enhance the PKCS #7 API to allow signing and verification
+ of structures. Move API to gnutls/pkcs7.h header.
+ * certtool: Added options to generate PKCS #7 bundles and signed
+ structures.
+
+- disable testsuite run against valgrind on aarch64
+
+- Updated to 3.4.1 (released 2015-05-03)
+ * * libgnutls: gnutls_certificate_get_ours: will return the certificate even
+ if a callback was used to send it.
+ * * libgnutls: Check for invalid length in the X.509 version field. Without
+ the check certificates with invalid length would be detected as having an
+ arbitrary version. Reported by Hanno Böck.
+ * * libgnutls: Handle DNS name constraints with a leading dot. Patch by
+ Fotis Loukos.
+ * * libgnutls: Updated system-keys support for windows to compile in more
+ versions of mingw. Patch by Tim Kosse.
+ * * libgnutls: Fix for MD5 downgrade in TLS 1.2 signatures. Reported by
+ Karthikeyan Bhargavan [GNUTLS-SA-2015-2]. bsc#929690
+ * * libgnutls: Reverted: The gnutls_handshake() process will enforce a timeout
+ by default. That caused issues with non-blocking programs.
+ * * certtool: It can generate SHA256 key IDs.
+ * * gnutls-cli: fixed crash in --benchmark-ciphers. Reported by James Cloos.
+ * * API and ABI modifications: gnutls_x509_crt_get_pk_ecc_raw: Added
+- gnutls-fix-double-mans.patch: fixed upstream
+
+- Disable buggy valgrind on armv7l
+
+- updated to 3.4.0 (released 2015-04-08)
+ * * libgnutls: Added support for AES-CCM and AES-CCM-8 (RFC6655 and RFC7251)
+ ciphersuites. The former are enabled by default, the latter need to be
+ explicitly enabled, since they reduce the overall security level.
+ * * libgnutls: Added support for Chacha20-Poly1305 ciphersuites following
+ draft-mavrogiannopoulos-chacha-tls-05 and draft-irtf-cfrg-chacha20-poly1305-10.
+ That is currently provided as technology preview and is not enabled by
+ default, since there are no assigned ciphersuite points by IETF and there
+ is no guarrantee of compatibility between draft versions. The ciphersuite
+ priority string to enable it is "+CHACHA20-POLY1305".
+ * * libgnutls: Added support for encrypt-then-authenticate in CBC
+ ciphersuites (RFC7366 -taking into account its errata text). This is
+ enabled by default and can be disabled using the %NO_ETM priority
+ string.
+ * * libgnutls: Added support for the extended master secret
+ (triple-handshake fix) following draft-ietf-tls-session-hash-02.
+ * * libgnutls: Added a new simple and hard to misuse AEAD API (crypto.h).
+ * * libgnutls: SSL 3.0 is no longer included in the default priorities
+ list. It has to be explicitly enabled, e.g., with a string like
+ "NORMAL:+VERS-SSL3.0".
+ * * libgnutls: ARCFOUR (RC4) is no longer included in the default priorities
+ list. It has to be explicitly enabled, e.g., with a string like
+ "NORMAL:+ARCFOUR-128".
+ * * libgnutls: DSA signatures and DHE-DSS are no longer included in the
+ default priorities list. They have to be explicitly enabled, e.g., with
+ a string like "NORMAL:+DHE-DSS:+SIGN-DSA-SHA256:+SIGN-DSA-SHA1". The
+ DSA ciphersuites were dropped because they had no deployment at all
+ on the internet, to justify their inclusion.
+ * * libgnutls: The priority string EXPORT was completely removed. The string
+ was already defunc as support for the EXPORT ciphersuites was removed in
+ GnuTLS 3.2.0.
+ * * libgnutls: Added API to utilize system specific private keys in
+ "gnutls/system-keys.h". It is currently provided as technology preview
+ and is restricted to windows CNG keys.
+ * * libgnutls: gnutls_x509_crt_check_hostname() and friends will use
+ RFC6125 comparison of hostnames. That introduces a dependency on libidn.
+ * * libgnutls: Depend on p11-kit 0.23.1 to comply with the final
+ PKCS #11 URLs draft (draft-pechanec-pkcs11uri-21).
+ * * libgnutls: Depend on nettle 3.1.
+ * * libgnutls: Use getrandom() or getentropy() when available. That
+ avoids the complexity of file descriptor handling and issues with
+ applications closing all open file descriptors on startup.
+ * * libgnutls: Use pthread_atfork() to detect fork when available.
+ * * libgnutls: The gnutls_handshake() process will enforce a timeout by
+ default.
+ * * libgnutls: If a key purpose (extended key usage) is specified for verification,
+ it is applied into intermediate certificates. The verification result
+ GNUTLS_CERT_PURPOSE_MISMATCH is also introduced.
+ * * libgnutls: When gnutls_certificate_set_x509_key_file2() is used in
+ combination with PKCS #11, or TPM URLs, it will utilize the provided
+ password as PIN if required. That removes the requirement for the
+ application to set a callback for PINs in that case.
+ * * libgnutls: priority strings VERS-TLS-ALL and VERS-DTLS-ALL are
+ restricted to the corresponding protocols only, and the VERS-ALL
+ string is introduced to catch all possible protocols.
+ * * libgnutls: Added helper functions to obtain information on PKCS #8
+ structures.
+ * * libgnutls: Certificate chains which are provided to gnutls_certificate_credentials_t
+ will automatically be sorted instead of failing with GNUTLS_E_CERTIFICATE_LIST_UNSORTED.
+ * * libgnutls: Added functions to export and set the record state. That
+ allows for gnutls_record_send() and recv() to be offloaded (to kernel,
+ hardware or any other subsystem).
+ * * libgnutls: Added the ability to register application specific URL
+ types, which express certificates and keys using gnutls_register_custom_url().
+ * * libgnutls: Added API to override existing ciphers, digests and MACs, e.g.,
+ to override AES-GCM using a system-specific accelerator. That is, (crypto.h)
+ gnutls_crypto_register_cipher(), gnutls_crypto_register_aead_cipher(),
+ gnutls_crypto_register_mac(), and gnutls_crypto_register_digest().
+ * * libgnutls: Added gnutls_ext_register() to register custom extensions.
+ Contributed by Thierry Quemerais.
+ * * libgnutls: Added gnutls_supplemental_register() to register custom
+ supplemental data handshake messages. Contributed by Thierry Quemerais.
+ * * libgnutls-openssl: it is no longer built by default.
+ * * certtool: Added --p8-info option, which will print PKCS #8 information
+ even if the password is not available.
+ * * certtool: --key-info option will print PKCS #8 encryption information
+ when available.
+ * * certtool: Added the --key-id and --fingerprint options.
+ * * certtool: Added the --verify-hostname, --verify-email and --verify-purpose
+ options to be used in certificate chain verification, to simulate verification
+ for specific hostname and key purpose (extended key usage).
+ * * certtool: --p12-info option will print PKCS #12 MAC and cipher information
+ when available.
+ * * certtool: it will print the A-label (ACE) names in addition to UTF-8.
+ * * p11tool: added options --set-id and --set-label.
+ * * gnutls-cli: added options --priority-list and --save-cert.
+ * * guile: Deprecated priority API has been removed. The old priority API,
+ which had been deprecated for some time, is now gone; use 'set-session-priorities!'
+ instead.
+ * * guile: Remove RSA parameters and related procedures. This API had been
+ deprecated.
+ * * guile: Fix compilation on MinGW. Previously only the static version of the
+ 'guile-gnutls-v-2' library would be built, preventing dynamic loading from Guile.
+
+- updated to 3.3.13 (released 2015-03-30)
+ * * libgnutls: When retrieving OCTET STRINGS from PKCS #12 ContentInfo
+ structures use BER to decode them (requires libtasn1 4.3). That allows
+ to decode some more complex structures.
+ * * libgnutls: When an end-certificate with no name is present and there
+ are CA name constraints, don't reject the certificate. This follows RFC5280
+ advice closely. Reported by Fotis Loukos.
+ * * libgnutls: Fixed handling of supplemental data with types > 255.
+ Patch by Thierry Quemerais.
+ * * libgnutls: Fixed double free in the parsing of CRL distribution points certificate
+ extension. Reported by Robert Święcki.
+ * * libgnutls: Fixed a two-byte stack overflow in DTLS 0.9 protocol. That
+ protocol is not enabled by default (used by openconnect VPN).
+ * * libgnutls: The maximum user data send size is set to be the same for
+ block and non-block ciphersuites. This addresses a regression with wine:
+ https://bugs.winehq.org/show_bug.cgi?id=37500
+ * * libgnutls: When generating PKCS #11 keys, set CKA_ID, CKA_SIGN,
+ and CKA_DECRYPT when needed.
+ * * libgnutls: Allow names with zero size to be set using
+ gnutls_server_name_set(). That will disable the Server Name Indication.
+ Resolves issue with wine: https://gitlab.com/gnutls/gnutls/issues/2
+- new main library major version .so.30
+- requires new libnettle >= 3.1, p11-kit-devel >= 0.23.1
+- Now need to configure --enable-openssl-compatibility (might go away)
+- added gnutls-fix-double-mans.patch: avoid double installing manpages
+- dropped gnutls-3.0.26-skip-test-fwrite.patch: does not seem to be needed
+ anymore
+- install_info_delete moved from %postun to %preun
+
+- for DANE support, use bcond_with
+- for tpm support, same
+- note p11-kit >= 0.20.7 requirement
+- note libtasn1 3.9 requirement (built-in lib used otherwise)
+
+- disable trousers and unbound again for now, as it causes too long
+ build cycles.
+
+- added unbound-devel (for DANE) and trousers-devel (for TPM support)
+- removed now upstreamed gnutls-implement-trust-store-dir-3.2.8.diff
+- libgnutls-dane0 new library added
+- updated to 3.3.13 (released 2015-02-25)
+ * * libgnutls: Enable AESNI in GCM on x86
+ * * libgnutls: Fixes in DTLS message handling
+ * * libgnutls: Check certificate algorithm consistency, i.e.,
+ check whether the signatureAlgorithm field matches the signature
+ field inside TBSCertificate.
+ * * gnutls-cli: Fixes in OCSP verification.
+- Version 3.3.12 (released 2015-01-17)
+ * * libgnutls: When negotiating TLS use the lowest enabled version in
+ the client hello, rather than the lowest supported. In addition, do
+ not use SSL 3.0 as a version in the TLS record layer, unless SSL 3.0
+ is the only protocol supported. That addresses issues with servers that
+ immediately drop the connection when the encounter SSL 3.0 as the record
+ version number. See:
+ http://lists.gnutls.org/pipermail/gnutls-help/2014-November/003673.html
+ * * libgnutls: Corrected encoding and decoding of ANSI X9.62 parameters.
+ * * libgnutls: Handle zero length plaintext for VIA PadLock functions.
+ This solves a potential crash on AES encryption for small size plaintext.
+ Patch by Matthias-Christian Ott.
+ * * libgnutls: In DTLS don't combine multiple packets which exceed MTU.
+ Reported by Andreas Schultz. https://savannah.gnu.org/support/?108715
+ * * libgnutls: In DTLS decode all handshake packets present in a record
+ packet, in a single pass. Reported by Andreas Schultz.
+ https://savannah.gnu.org/support/?108712
+ * * libgnutls: When importing a CA file with a PKCS #11 URL, simply
+ import the certificates, if the URL specifies objects, rather than
+ treating it as trust module.
+ * * libgnutls: When importing a PKCS #11 URL and we know the type of
+ object we are importing, don't require the object type in the URL.
+ * * libgnutls: fixed openpgp authentication when gnutls_certificate_set_retrieve_function2
+ was used by the server.
+ * * certtool: --pubkey-info will also attempt to load a public key from stdin.
+ * * gnutls-cli: Added --starttls-proto option. That allows to specify a
+ protocol for starttls negotiation.
+- Version 3.3.11 (released 2014-12-11)
+ * * libgnutls: Corrected regression introduced in 3.3.9 related to
+ session renegotiation. Reported by Dan Winship.
+ * * libgnutls: Corrected parsing issue with OCSP responses.
+- Version 3.3.10 (released 2014-11-10)
+ * * libgnutls: Refuse to import v1 or v2 certificates that contain
+ extensions.
+ * * libgnutls: Fixes in usage of PKCS #11 token callback
+ * * libgnutls: Fixed bug in gnutls_x509_trust_list_get_issuer() when used
+ with a PKCS #11 trust module and without the GNUTLS_TL_GET_COPY flag.
+ Reported by David Woodhouse.
+ * * libgnutls: Removed superfluous random generator refresh on every call
+ of gnutls_deinit(). That reduces load and usage of /dev/urandom.
+ * * libgnutls: Corrected issue in export of ECC parameters to X9.63 format.
+ Reported by Sean Burford [GNUTLS-SA-2014-5].
+ * * libgnutls: When gnutls_global_init() is called for a second time, it
+ will check whether the /dev/urandom fd kept is still open and matches
+ the original one. That behavior works around issues with servers that
+ close all file descriptors.
+ * * libgnutls: Corrected behavior with PKCS #11 objects that are marked
+ as CKA_ALWAYS_AUTHENTICATE.
+ * * certtool: The default cipher for PKCS #12 structures is 3des-pkcs12.
+ That option is more compatible than AES or RC4.
+- Version 3.3.9 (released 2014-10-13)
+ * * libgnutls: Fixes in the transparent import of PKCS #11 certificates.
+ Reported by Joseph Peruski.
+ * * libgnutls: Fixed issue with unexpected non-fatal errors resetting the
+ handshake's hash buffer, in applications using the heartbeat extension
+ or DTLS. Reported by Joeri de Ruiter.
+ * * libgnutls: When both a trust module and additional CAs are present
+ account the latter as well; reported by David Woodhouse.
+ * * libgnutls: added GNUTLS_TL_GET_COPY flag for
+ gnutls_x509_trust_list_get_issuer(). That allows the function to be used
+ in a thread safe way when PKCS #11 trust modules are in use.
+ * * libgnutls: fix issue in DTLS retransmission when session tickets
+ were in use; reported by Manuel Pégourié-Gonnard.
+ * * libgnutls-dane: Do not require the CA on a ca match to be direct CA.
+ * * libgnutls: Prevent abort() in library if getrusage() fails. Try to
+ detect instead which of RUSAGE_THREAD and RUSAGE_SELF would work.
+ * * guile: new 'set-session-server-name!' procedure; see the manual for
+ details.
+ * * certtool: The authority key identifier will be set in a certificate only
+ if the CA's subject key identifier is set.
+- Version 3.3.8 (released 2014-09-18)
+ * * libgnutls: Updates in the name constraints checks. No name constraints
+ will be checked for intermediate certificates. As our support for name
+ constraints is limited to e-mail addresses in DNS names, it is pointless
+ to check them on intermediate certificates.
+ * * libgnutls: Fixed issues in PKCS #11 object listing. Previously multiple
+ object listing would fail completely if a single object could not be exported.
+ * * libgnutls: Improved the performance of PKCS #11 object listing/retrieving,
+ by retrieving them in large batches. Report and suggestion by David
+ Woodhouse.
+ * * libgnutls: Fixed issue with certificates being sanitized by gnutls prior
+ to signature verification. That resulted to certain non-DER compliant modifications
+ of valid certificates, being corrected by libtasn1's parser and restructured as
+ the original. Issue found and reported by Antti Karjalainen and Matti Kamunen from
+ Codenomicon.
+ * * libgnutls: Fixes in gnutls_x509_crt_set_dn() and friends to properly handle
+ strings with embedded spaces and escaped commas.
+ * * libgnutls: when comparing a CA certificate with the trusted list compare
+ the name and key only instead of the whole certificate. That is to handle
+ cases where a CA certificate was superceded by a different one with the same
+ name and the same key.
+ * * libgnutls: when verifying a certificate against a p11-kit trusted
+ module, use the attached extensions in the module to override the CA's
+ extensions (that requires p11-kit 0.20.7).
+ * * libgnutls: In DTLS prevent sending zero-size fragments in certain cases
+ of MTU split. Reported by Manuel Pégourié-Gonnard.
+ * * libgnutls: Added gnutls_x509_trust_list_verify_crt2() which allows
+ verifying using a hostname and a purpose (extended key usage). That
+ enhances PKCS #11 trust module verification, as it can now check the purpose
+ when this function is used.
+ * * libgnutls: Corrected gnutls_x509_crl_verify() which would always report
+ a CRL signature as invalid. Reported by Armin Burgmeier.
+ * * libgnutls: added option --disable-padlock to allow disabling the padlock
+ CPU acceleration.
+ * * p11tool: when listing tokens, list their type as well.
+ * * p11tool: when listing objects from a trust module print any attached
+ extensions on certificates.
+- Version 3.3.7 (released 2014-08-24)
+ * * libgnutls: Added function to export the public key of a PKCS #11
+ private key. Contributed by Wolfgang Meyer zu Bergsten.
+ * * libgnutls: Explicitly set the exponent in PKCS #11 key generation.
+ That improves compatibility with certain PKCS #11 modules. Contributed by
+ Wolfgang Meyer zu Bergsten.
+ * * libgnutls: When generating a PKCS #11 private key allow setting
+ the WRAP/UNWRAP flags. Contributed by Wolfgang Meyer zu Bergsten.
+ * * libgnutls: gnutls_pkcs11_privkey_t will always hold an open session
+ to the key.
+ * * libgnutls: bundle replacements of inet_pton and inet_aton if not
+ available.
+ * * libgnutls: initialize parameters variable on PKCS #8 decryption.
+ * * libgnutls: gnutls_pkcs12_verify_mac() will not fail in other than SHA1
+ algorithms.
+ * * libgnutls: gnutls_x509_crt_check_hostname() will follow the RFC6125
+ requirement of checking the Common Name (CN) part of DN only if there is
+ a single CN present in the certificate.
+ * * libgnutls: The environment variable GNUTLS_FORCE_FIPS_MODE can be used
+ to force the FIPS mode, when set to 1.
+ * * libgnutls: In DTLS ignore only errors that relate to unexpected packets
+ and decryption failures.
+ * * p11tool: Added --info parameter.
+ * * certtool: Added --mark-wrap parameter.
+ * * danetool: --check will attempt to retrieve the server's certificate
+ chain and verify against it.
+ * * danetool/gnutls-cli-debug: Added --app-proto parameters which can
+ be used to enforce starttls (currently only SMTP and IMAP) on the connection.
+ * * danetool: Added openssl linking exception, to allow linking
+ with libunbound.
+- Version 3.3.6 (released 2014-07-23)
+ * * libgnutls: Use inet_ntop to print IP addresses when available
+ * * libgnutls: gnutls_x509_crt_check_hostname and friends will also check
+ IP addresses, and match documented behavior. Reported by David Woodhouse.
+ * * libgnutls: DSA key generation in FIPS140-2 mode doesn't allow 1024
+ bit parameters.
+ * * libgnutls: fixed issue in gnutls_pkcs11_reinit() which prevented tokens
+ being usable after a reinitialization.
+ * * libgnutls: fixed PKCS #11 private key operations after a fork.
+ * * libgnutls: fixed PKCS #11 ECDSA key generation.
+ * * libgnutls: The GNUTLS_CPUID_OVERRIDE environment variable can be used to
+ explicitly enable/disable the use of certain CPU capabilities. Note that CPU
+ detection cannot be overriden, i.e., VIA options cannot be enabled on an Intel
+ CPU. The currently available options are:
+ 0x1: Disable all run-time detected optimizations
+ 0x2: Enable AES-NI
+ 0x4: Enable SSSE3
+ 0x8: Enable PCLMUL
+ 0x100000: Enable VIA padlock
+ 0x200000: Enable VIA PHE
+ 0x400000: Enable VIA PHE SHA512
+ * * libdane: added dane_query_to_raw_tlsa(); patch by Simon Arlott.
+ * * p11tool: use GNUTLS_SO_PIN to read the security officer's PIN if set.
+ * * p11tool: ask for label when one isn't provided.
+ * * p11tool: added --batch parameter to disable any interactivity.
+ * * p11tool: will not implicitly enable so-login for certain types of
+ objects. That avoids issues with tokens that require different login
+ types.
+ * * certtool/p11tool: Added the --curve parameter which allows to explicitly
+ specify the curve to use.
+- Version 3.3.5 (released 2014-06-26)
+ * * libgnutls: Added gnutls_record_recv_packet() and gnutls_packet_deinit().
+ These functions provide a variant of gnutls_record_recv() that avoids
+ the final memcpy of data.
+ * * libgnutls: gnutls_x509_crl_iter_crt_serial() was added as a
+ faster variant of gnutls_x509_crl_get_crt_serial() when coping with
+ very large structures.
+ * * libgnutls: When the decoding of a printable DN element fails, then treat
+ it as unknown and print its hex value rather than failing. That works around
+ an issue in a TURKTRST root certificate which improperly encodes the
+ X520countryName element.
+ * * libgnutls: gnutls_x509_trust_list_add_trust_file() will return the number
+ of certificates present in a PKCS #11 token when loading it.
+ * * libgnutls: Allow the post client hello callback to put the handshake on
+ hold, by returning GNUTLS_E_AGAIN or GNUTLS_E_INTERRUPTED.
+ * * certtool: option --to-p12 will now consider --load-ca-certificate
+ * * certtol: Added option to specify the PKCS #12 friendly name on command line.
+ * * p11tool: Allow marking a certificate copied to a token as a CA.
+- Version 3.3.4 (released 2014-05-31)
+ * * libgnutls: Updated Andy Polyakov's assembly code. That prevents a
+ crash on certain CPUs.
+- Version 3.3.3 (released 2014-05-30)
+ * * libgnutls: Eliminated memory corruption issue in Server Hello parsing.
+ Issue reported by Joonas Kuorilehto of Codenomicon.
+ * * libgnutls: gnutls_global_set_mutex() was modified to operate with the
+ new initialization process.
+ * * libgnutls: Increased the maximum certificate size buffer
+ in the PKCS #11 subsystem.
+ * * libgnutls: Check the return code of getpwuid_r() instead of relying
+ on the result value. That avoids issue in certain systems, when using
+ tofu authentication and the home path cannot be determined. Issue reported
+ by Viktor Dukhovni.
+ * * libgnutls-dane: Improved dane_verify_session_crt(), which now attempts to
+ create a full chain. This addresses points from https://savannah.gnu.org/support/index.php?108552
+ * * gnutls-cli: --dane will only check the end certificate if PKIX validation
+ has been disabled.
+ * * gnutls-cli: --benchmark-soft-ciphers has been removed. That option cannot
+ be emulated with the implicit initialization of gnutls.
+ * * certtool: Allow multiple organizations and organizational unit names to
+ be specified in a template.
+ * * certtool: Warn when invalid configuration options are set to a template.
+ * * ocsptool: Include path in ocsp request. This resolves #108582
+ (https://savannah.gnu.org/support/?108582), reported by Matt McCutchen.
+- Version 3.3.2 (released 2014-05-06)
+ * * libgnutls: Added the 'very weak' certificate verification profile
+ that corresponds to 64-bit security level.
+ * * libgnutls: Corrected file descriptor leak on random generator
+ initialization.
+ * * libgnutls: Corrected file descriptor leak on PSK password file
+ reading. Issue identified using the Codenomicon TLS test suite.
+ * * libgnutls: Avoid deinitialization if initialization has failed.
+ * * libgnutls: null-terminate othername alternative names.
+ * * libgnutls: gnutls_x509_trust_list_get_issuer() will operate correctly
+ on a PKCS #11 trust list.
+ * * libgnutls: Several small bug fixes identified using valgrind and
+ the Codenomicon TLS test suite.
+ * * libgnutls-dane: Accept a certificate using DANE if there is at least one
+ entry that matches the certificate. Patch by simon [at] arlott.org.
+ * * libgnutls-guile: Fixed compilation issue.
+ * * certtool: Allow exporting a CRL on DER format.
+ * * certtool: The ECDSA keys generated by default use the SECP256R1 curve
+ which is supported more widely than the previously used SECP224R1.
+- Version 3.3.1 (released 2014-04-19)
+ * * libgnutls: Enforce more strict checks to heartbeat messages
+ concerning padding and payload. Suggested by Peter Dettman.
+ * * libgnutls: Allow decoding PKCS #8 files with ECC parameters
+ from openssl.
+ * * libgnutls: Several small bug fixes found by coverity.
+ * * libgnutls: The conditionally available self-test functions
+ were moved to self-test.h.
+ * * libgnutls: Fixed issue with the check of incoming data when two
+ different recv and send pointers have been specified. Reported and
+ investigated by JMRecio.
+ * * libgnutls: Fixed issue in the RSA-PSK key exchange, which would
+ result to illegal memory access if a server hint was provided. Reported
+ by André Klitzing.
+ * * libgnutls: Fixed client memory leak in the PSK key exchange, if a
+ server hint was provided.
+ * * libgnutls: Corrected the *get_*_othername_oid() functions.
+- Version 3.3.0 (released 2014-04-10)
+ * * libgnutls: The initialization of the library was moved to a
+ constructor. That is, gnutls_global_init() is no longer required
+ unless linking with a static library or a system that does not
+ support library constructors.
+ * * libgnutls: static libraries are not built by default.
+ * * libgnutls: PKCS #11 initialization is delayed to first usage.
+ That avoids long delays in gnutls initialization due to broken PKCS #11
+ modules.
+ * * libgnutls: The PKCS #11 subsystem is re-initialized "automatically"
+ on the first PKCS #11 API call after a fork.
+ * * libgnutls: certificate verification profiles were introduced
+ that can be specified as flags to verification functions. They
+ are enumerations in gnutls_certificate_verification_profiles_t
+ and can be converted to flags for use in a verification function
+ using GNUTLS_PROFILE_TO_VFLAGS().
+ * * libgnutls: Added the ability to read system-specific initial
+ keywords, if they are prefixed with '@'. That allows a compile-time
+ specified configuration file to be used to read pre-configured priority
+ strings from. That can be used to impose system specific policies.
+ * * libgnutls: Increased the default security level of priority
+ strings (NORMAL and PFS strings require at minimum a 1008 DH prime),
+ and set a verification profile by default. The LEGACY keyword is
+ introduced to set the old defaults.
+ * * libgnutls: Added support for the name constraints PKIX extension.
+ Currently only DNS names and e-mails are supported (no URIs, IPs
+ or DNs).
+ * * libgnutls: Security parameter SEC_PARAM_NORMAL was renamed to
+ SEC_PARAM_MEDIUM to avoid confusion with the priority string NORMAL.
+ * * libgnutls: Added new API in x509-ext.h to handle X.509 extensions.
+ This API handles the X.509 extensions in isolation, allowing to parse
+ similarly formatted extensions stored in other structures.
+ * * libgnutls: When generating DSA keys the macro GNUTLS_SUBGROUP_TO_BITS
+ can be used to specify a particular subgroup as the number of bits in
+ gnutls_privkey_generate; e.g., GNUTLS_SUBGROUP_TO_BITS(2048, 256).
+ * * libgnutls: DH parameter generation is now delegated to nettle.
+ That unfortunately has the side-effect that DH parameters longer than
+ 3072 bits, cannot be generated (not without a nettle update).
+ * * libgnutls: Separated nonce RNG from the main RNG. The nonce
+ random number generator is based on salsa20/12.
+ * * libgnutls: The buffer alignment provided to crypto backend is
+ enforced to be 16-byte aligned, when compiled with cryptodev
+ support. That allows certain cryptodev drivers to operate more
+ efficiently.
+ * * libgnutls: Return error when a public/private key pair that doesn't
+ match is set into a credentials structure.
+ * * libgnutls: Depend on p11-kit 0.20.0 or later.
+ * * libgnutls: The new padding (%NEW_PADDING) experimental TLS extension has
+ been removed. It was not approved by IETF.
+ * * libgnutls: The experimental xssl library is removed from the gnutls
+ distribution.
+ * * libgnutls: Reduced the number of gnulib modules used in the main library.
+ * * libgnutls: Added priority string %DISABLE_WILDCARDS.
+ * * libgnutls: Added the more extensible verification function
+ gnutls_certificate_verify_peers(), that allows checking, in addition
+ to a peer's DNS hostname, for the key purpose of the end certificate
+ (via PKIX extended key usage).
+ * * certtool: Timestamps for serial numbers were increased to 8 bytes,
+ and in batch mode to 12 (appended with 4 random bytes).
+ * * certtool: When no CRL number is provided (or value set to -1), then
+ a time-based number will be used, similarly to the serial generation
+ number in certificates.
+ * * certtool: Print the SHA256 fingerprint of a certificate in addition
+ to SHA1.
+ * * libgnutls: Added --enable-fips140-mode configuration option (unsupported).
+ That option enables (when running on FIPS140-enabled system):
+ o RSA, DSA and DH key generation as in FIPS-186-4 (using provable primes)
+ o The DRBG-CTR-AES256 deterministic random generator from SP800-90A.
+ o Self-tests on initialization on ciphers/MACs, public key algorithms
+ and the random generator.
+ o HMAC-SHA256 verification of the library on load.
+ o MD5 is included for TLS purposes but cannot be used by the high level
+ hashing functions.
+ o All ciphers except AES are disabled.
+ o All MACs and hashes except GCM and SHA are disabled (e.g., HMAC-MD5).
+ o All keys (temporal and long term) are zeroized after use.
+ o Security levels are adjusted to the FIPS140-2 recommendations (rather
+ than ECRYPT).
+
+- build with PIE for commandline tools
+
+- Updated to 3.2.21 (released 2014-12-11)
+ - libgnutls: Corrected regression introduced in 3.2.19 related to
+ session renegotiation. Reported by Dan Winship.
+ - libgnutls: Corrected parsing issue with OCSP responses.
+
+- Updated to 3.2.20 (released 2014-11-10)
+ * * libgnutls: Removed superfluous random generator refresh on every
+ call of gnutls_deinit(). That reduces load and usage of /dev/urandom.
+ * * libgnutls: Corrected issue in export of ECC parameters to X9.63
+ format. Reported by Sean Burford [GNUTLS-SA-2014-5].
+ (CVE-2014-8564 bnc#904603)
+- Updated to 3.2.19 (released 2014-10-13)
+ * * libgnutls: Fixes in the transparent import of PKCS #11 certificates.
+ Reported by Joseph Peruski.
+ * * libgnutls: Fixed issue with unexpected non-fatal errors resetting the
+ handshake's hash buffer, in applications using the heartbeat extension
+ or DTLS. Reported by Joeri de Ruiter.
+ * * libgnutls: fix issue in DTLS retransmission when session tickets were
+ in use; reported by Manuel Pégourié-Gonnard.
+ * * libgnutls: Prevent abort() in library if getrusage() fails. Try to
+ detect instead which of RUSAGE_THREAD and RUSAGE_SELF would work.
+ * * guile: new 'set-session-server-name!' procedure; see the manual
+ for details.
+
ipset
-- add ipset-6.36_service_names_for_ports.patch to fix parsing
- service names for ports. Parsing is attempted both for numbers
- and service names and the temporary stored error message
- triggered to reset the state parameters about the set
- [bsc#1122853]
+- Tumbleweed is not affected by the following SLE issues:
+ bsc#1122853
+
+- Update to release 7.15
+ * netfilter: ipset: Fix maximal range check in
+ hash_ipportnet4_uadt()
+
+- Update to release 7.14
+ * Allow specifying protocols by number
+ * Limit the maximum range of consecutive elements to add/delete
+
+- Update to release 7.11
+ * Argument parsing buffer overflow in ipset_parse_argv fixed
+
+- Update to release 7.10
+ * Fix shift-out-of-bounds in htable_bits()
+
+- Update to release 7.9
+ * Enable memory accounting for ipset allocations
+ * Expose the initval hash parameter to userspace
+ * Add bucketsize parameter to all hash types
+ * Support the -exist flag with the destroy command
+
+- Update to release 7.6
+ * Add checking system_power_efficient_wq in the source tree.
+
+- Update to release 7.5
+ * netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO
+ is present.
+ * netfilter: xt_set: Do not restrict --map-set to the
+ mangle table.
+
+- Update to release 7.4
+ * Wildcard support for the "hash:net,iface" type.
+
+- Update to new upstream release 7.3
+ * Fix rename concurrency with listing, which can result broken
+ list/save results.
+ * ipset: Copy the right MAC address in bitmap:ip,mac and
+ hash:ip,mac sets.
+ * ipset: Actually allow destination MAC address for hash:ip,mac
+ sets too.
+
+- Update to new upstream release 7.2
+ * ipset: Fix memory accounting for hash types on resize
+
+- Update to new upstream release 7.1
+ * Correct the manpage about the sort option
+ * Implement sorting for hash types in the ipset tool
+ * Fix to list/save into file specified by option
+- Remove ipset-file.diff (merged)
+
+- Add ipset-file.diff [boo#1116432].
+
+- Update to new upstream release 7.0
+ * A new internal protocol version between the kernel and
+ userspace is used. This is required in order to support two
+ new functions and the extendend LIST operation, which makes
+ possible to run ipset in every case entirely over netlink,
+ without the need to use getsockopt().
+ * The userspace library was reworked so it can be embedded
+ without calling the binary.
+
+- Update to new upstream release 6.38
+ * Fix parsing service names for ports.
-- Update to new upstream release 6.23
- * Order create and add options in manpage so that generic ones
- come first
- * Centralise generic create options (family, hashsize, maxelem)
- on top of man page in the generic options section.
- * Add description of hash:mac set type to man page.
- * Add missing space for skbinfo option synopsis.
- * Support updating extensions when the set is full
-- Drop sovers.diff (no longer needed)
-
-- Update to new upstream release 6.22
- * includes the new set type hash:mac
- * The new skbinfo extension makes possible to store fw mark, tc
- class and/or hardware queue parameters together with the set
- elements and then attach them to the matchig packets by the SET
- target.
-- Add sovers.diff to counter missing symbol errors
-
-- Update to new upstream release 6.21.1
- * add userspace support for forceadd
- * fix ifname "physdev:" prefix parsing
- * print mark & mark mask in hex rather then decimal
- * add markmask for hash:ip,mark data type
- * add hash:ip,mark data type to ipset
- * Fix all set output from list/save when set with counters in use.
- * ipset: Fix malformed output from list/save for ICMP types in port
- field
- * ipset: fix timeout data type size (Nikolay Martynov)
-
-- Update to new upstream release 6.20.1
- * build fixes for kernel 3.8 and the userspace library
-- Remove 0001-build-fix-incorrect-library-versioning.patch (merged)
-
-- Add 0001-build-fix-incorrect-library-versioning.patch
-
-- Update to new upstream release 6.20
- * netns support
- * new set types: hash:net,net and hash:net,port,net
- * new extension: "comment", for annotation of set elements
-- Drop sles11.diff (no longer needed, upstream has better fix)
-
-- Update to new upstream release 6.19
- * This release adds per-element byte and packet counters for every
- set type. (Matching these will be available in iptables-1.4.19.)
-
-- Update to new upstream release 6.18
- * bitmap:ip,mac: fix listing with timeout
- * hash:*net*: nomatch flag not excluded on set resize
- * list:set: update reference counter when last element pushed off
-
-- Update to new upstream release 6.17
- * Fix revision printing in XML mode
- * Correct "Suspicious condition (assignment + comparison)"
- * Fix error path when protocol number is used with port range
- * Interactive mode error after syntax error
- * New utilities: ipset_bash_completion, ipset_list
- * Ensure ip_set_max is not set to IPSET_INVALID_ID
- * Resolve corrupted timeout values on set resize
- * Resolve "Directory not empty" error message
-
-- Update to new upstream release 6.16.1
- * Fix RCU handling when the number of maximal sets are increased
- * netfilter: ipset: fix netiface set name overflow
-- Remove 0001-build-support-for-Linux-3.7-UAPI.patch, merged upstream
-- Remove 0001-build-Linux-3.7-netlink-fun.patch, merged upstream
-
-- Update to new upstream release 6.15
- * Userspace changes:
- * Use gethostbyname2 instead of getaddrinfo
- * Support protocol numbers as well, not only protocol names
- * Kernel part changes:
- * Increase the number of maximal sets automatically as needed
- * Fix range bug in hash:ip,port,net
-- Add 0001-build-support-for-Linux-3.7-UAPI.patch
-- Add 0001-build-Linux-3.7-netlink-fun.patch
-
-- Update to new upstream release 6.14
- * Internal CIDR bookkeeping was broken and would lead to mismatches
- when the number of different sized networks are greater than the
- smallest CIDR value
- * Support to match elements marked with "nomatch" in hash:*net* sets
- * Add /0 network support to hash:net,iface type
-
-- Update to new upstream release 6.13
- * more restrictive command-line parser
- * documentation updates w.r.t. src/dst for hash:net,iface
- * allow saving to/restoring from a file without shell redirection
- * kernel: hash:net,iface: fix interface comparison
- * timeout fixing bug broke SET target special timeout value, fixed
-
-- Update to new upstream release 6.12
- * Report syntax error messages immediately
- * Add dynamic module support to ipset userspace tool
- * Fix timeout value overflow bug at large timeout parameters
- * gcc 4.7 support
-
-- Update to new upstream release 6.11
- * libipset is now complete; ipset is just a frontend
- * Log warning when a hash type of set gets full
- * Exceptions support added to hash:*net* types
- * hash:net,iface timeout bug fixed
- * Support hostnames and service names with dash
-
-- Populate ipset package on build.opensuse.org after disabling
- ipset-genl compilation in xtables-addons
-
iputils
+- Update to version 20221126
+ https://github.com/iputils/iputils/releases/tag/20221126
+- Update configure variables (ninfod, rarpd and rdisc were removed from
+ upstream in next release => remove -DBUILD_NINFOD=false -DBUILD_RARPD=false
+ - DBUILD_RDISC=false)
+- Remove 2 backported fixes from this release
+ 0001-ping-Add-SA_RESTART-to-sa_flags.patch
+ 0002-ping-Make-ping_rts-struct-static.patch
+
+- Backport 2 fixes for bsc#1203957:
+ 0001-ping-Add-SA_RESTART-to-sa_flags.patch
+ 0002-ping-Make-ping_rts-struct-static.patch
+
+- rarpd and rdisc tools are now disabled again [jsc#SLE-23521]
+
jitterentropy
+- jitterentropy-split-internal-header.patch:
+ Hide the non-GNUC constructs that are library internal from the
+ exported header. (bsc#1202870)
+
+- updated to 3.4.0
+ * enhancement: add API call jent_set_fips_failure_callback as requested by Daniel Ojalvo
+ * fix: Change the SHA-3 integration: The entropy pool is now a SHA-3 state.
+ It is filled with the time delta containing entropy and auxiliary data that does not contain entropy using a SHA update operation. The auxiliary data is calculated by a SHA-3 hashing of some varying state data. The time delta that contains entropy is measured about the SHA-3 hasing of the auxiliary data. This satisfies FIPS 140-3 IG D.K resolutions 4, 6, and 8.
+ * enhancement: add CMake support by Andrew Hopkins
+- updated to 3.3.1
+ * fix: bug fix in initialization logic by Vladis Dronov <vdronov@redhat.com>
+ * fix: use __asm__ instead of asm to suit the C11 standard
+- added a -devel-static package to be able to link it static.
+
+- Trim conjecture from descriptions.
+
+- add a userspace jitter entropy generator library
+
kdump
+- Make the kdump-save.service reboot after kdump-save is finished
+ (bsc#1204000)
+
+- fix renaming of qeth interfaces (bsc#1204743, bsc#1144337)
+- ppc64: rebuild initrd image after migration (bsc#1191410)
+
kernel-default
+- Refresh
+ patches.suse/xfs-move-recovery-needed-state-updates-to-xfs_log_mo.patch.
+ Fix following error in x86_64/debug build:
+ ../fs/xfs/xfs_log.c:781:19: error: implicit declaration of function 'XLOG_FORCED_SHUTDOWN'; did you mean 'XFS_FORCED_SHUTDOWN'? [-Werror=implicit-function-declaration]
+- commit cafaa30
+
+- NFSD: Cap rsize_bop result based on send buffer size
+ (bsc#1205128 CVE-2022-43945).
+- NFSD: Protect against send buffer overflow in NFSv3 READ
+ (bsc#1205128 CVE-2022-43945).
+- NFSD: Protect against send buffer overflow in NFSv2 READ
+ (bsc#1205128 CVE-2022-43945).
+- NFSD: Protect against send buffer overflow in NFSv3 READDIR
+ (bsc#1205128 CVE-2022-43945).
+- NFSD: Protect against send buffer overflow in NFSv2 READDIR
+ (bsc#1205128 CVE-2022-43945).
+- SUNRPC: Fix svcxdr_init_encode's buflen calculation (bsc#1205128
+ CVE-2022-43945).
+- SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation
+ (bsc#1205128 CVE-2022-43945).
+- commit dd4f720
+
+- hyperv: simplify and rename generate_guest_id (bsc#1189965).
+- drm/hyperv: Fix an error handling path in hyperv_vmbus_probe() (git-fixes).
+- Drivers: hv: Create debugfs file with hyper-v balloon usage information (git-fixes).
+- Drivers: hv: vm_bus: Handle vmbus rescind calls after vmbus is suspended (git-fixes).
+- drm/hyperv-drm: Include framebuffer and EDID headers (git-fixes).
+- drm/hyperv : Removing the restruction of VRAM allocation with PCI bar size (git-fixes).
+- scsi: storvsc: Correct reporting of Hyper-V I/O size limits (git-fixes).
+- HID: hyperv: Correctly access fields declared as __le16 (git-fixes).
+- hv_balloon: Fix balloon_probe() and balloon_remove() error handling (git-fixes).
+- Drivers: hv: vmbus: Refactor the ring-buffer iterator functions (git-fixes).
+- Drivers: hv: vmbus: Rework use of DMA_BIT_MASK(64) (git-fixes).
+- commit 8f5f32b
+
+- xfs: reserve quota for dir expansion when linking/unlinking
+ files (bsc#1205616).
+- commit 1330e05
+
+- dmaengine: idxd: Only call idxd_enable_system_pasid() if
+ succeeded in enabling SVA feature (jsc#PED-2681).
+- commit 66991d9
+
+- dmaengine: idxd: Do not enable user type Work Queue without
+ Shared Virtual Addressing (jsc#PED-2681).
+- dmaengine: idxd: Separate user and kernel pasid enabling
+ (jsc#PED-2681).
+- dmaengine: idxd: don't load pasid config until needed
+ (jsc#PED-2681).
+- commit 65564cd
+
+- add another bug reference to some hyperv changes (bsc#1205617).
+- commit 0b5e3d4
+
+- net/smc: kABI workarounds for struct smc_sock (git-fixes).
+- commit d9f52e8
+
+- scsi: mpt3sas: re-do lost mpt3sas DMA mask fix (jsc#PED_1491).
+- scsi: mpt3sas: Don't change DMA mask while reallocating pools
+ (jsc#PED_1491).
+- commit 54e2dce
+
+- scsi: mpt3sas: Revert "scsi: mpt3sas: Fix ioc->base_readl() use"
+ (jsc#PED_1491).
+- scsi: mpt3sas: Revert "scsi: mpt3sas: Fix writel() use"
+ (jsc#PED_1491).
+- scsi: mpt3sas: Update driver version to 43.100.00.00
+ (jsc#PED_1491).
+- scsi: mpt3sas: Increase cmd_per_lun to 128 (jsc#PED_1491).
+- scsi: mpt3sas: Fix trace buffer registration failed
+ (jsc#PED_1491).
+- scsi: mpt3sas: Prevent error handler escalation when device
+ removed (jsc#PED_1491).
+- scsi: mpt3sas: Disable MPI2_FUNCTION_FW_DOWNLOAD for ATTO
+ devices (jsc#PED_1491).
+- scsi: mpt3sas: Add support for ATTO ExpressSAS H12xx GT devices
+ (jsc#PED_1491).
+- scsi: mpt3sas: Remove flush_scheduled_work() call
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix whitespace and spelling mistake
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix typo in comment (jsc#PED_1491).
+- scsi: mpt3sas: Fix out-of-bounds compiler warning
+ (jsc#PED_1491).
+- scsi: mpt3sas: Update driver version to 42.100.00.00
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix junk chars displayed while printing ChipName
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix adapter replyPostRegisterIndex declaration
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix event callback log_code value handling
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix ioc->base_readl() use (jsc#PED_1491).
+- scsi: mpt3sas: Fix writel() use (jsc#PED_1491).
+- scsi: mpt3sas: Fix _ctl_set_task_mid() TaskMID check
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fail reset operation if config request timed out
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix mpt3sas_check_same_4gb_region() kdoc comment
+ (jsc#PED_1491).
+- scsi: mpt3sas: Remove scsi_dma_map() error messages
+ (jsc#PED_1491).
+- scsi: mpt3sas: Convert to flexible arrays (jsc#PED_1491).
+- scsi: mpt3sas: Update persistent trigger pages from sysfs
+ interface (jsc#PED_1491).
+- scsi: mpt3sas: Use irq_set_affinity_and_hint() (jsc#PED_1491).
+- scsi: mpt3sas: Make mpt3sas_dev_attrs static (jsc#PED_1491).
+- commit dde21ab
+
+- scsi: smartpqi: Update version to 2.1.18-045 (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Update copyright to current year (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add ctrl ready timeout module parameter
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Update deleting a LUN via sysfs (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix RAID map race condition (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Stop logging spurious PQI reset failures
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add PCI IDs for Lenovo controllers
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add PCI ID for Adaptec SmartHBA 2100-8i
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix PCI control linkdown system hang
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add driver support for multi-LUN devices
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Close write read holes (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add PCI IDs for ramaxel controllers
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add controller fw version to console log
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix typo in comment (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Stop using the SCSI pointer (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix unused variable pqi_pm_ops for clang
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Update version to 2.1.14-035 (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix lsscsi -t SAS addresses (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix hibernate and suspend (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix BUILD_BUG_ON() statements (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix NUMA node not updated during init
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Expose SAS address for SATA drives
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Speed up RAID 10 sequential reads
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix kdump issue when controller is locked up
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Update volume size after expansion
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Avoid drive spin-down during suspend
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Resolve delay issue with PQI_HZ value
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix a typo in func pqi_aio_submit_io()
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix a name typo and cleanup code (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Quickly propagate path failures to SCSI midlayer
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Eliminate drive spin down on warm boot
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Enable SATA NCQ priority in sysfs
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix rmmod stack trace (jsc#PED-1557, bsc#1201855).
+- commit 0ad94d4
+
+- Refresh
+ patches.suse/scsi-qedf-Populate-sysfs-attributes-for-vport.patch.
+- commit 4269315
+
+- scsi: megaraid_sas: Use struct_size() in code related to struct
+ MR_PD_CFG_SEQ_NUM_SYNC (jsc#PED-1490).
+- scsi: megaraid_sas: Replace one-element array with
+ flexible-array member in MR_PD_CFG_SEQ_NUM_SYNC (jsc#PED-1490).
+- scsi: megaraid_sas: Replace one-element array with
+ flexible-array member in MR_DRV_RAID_MAP (jsc#PED-1490).
+- scsi: megaraid_sas: Replace one-element array with
+ flexible-array member in MR_FW_RAID_MAP_DYNAMIC (jsc#PED-1490).
+- commit 0683c19
+
+- scsi: megaraid: Convert sysfs snprintf() to sysfs_emit()
+ (jsc#PED-1490).
+- scsi: megaraid_sas: Use struct_size() in code related to struct
+ MR_FW_RAID_MAP (jsc#PED-1490).
+- scsi: megaraid_sas: Replace one-element array with
+ flexible-array member in MR_FW_RAID_MAP (jsc#PED-1490).
+- scsi: megaraid: Remove redundant assignment to variable
+ mfiStatus (jsc#PED-1490).
+- commit c25a799
+
+- scsi: megaraid_sas: Remove unnecessary kfree() (jsc#PED-1490).
+- scsi: megaraid_sas: Fix double kfree() (jsc#PED-1490).
+- scsi: megaraid_sas: Remove redundant variable cmd_type
+ (jsc#PED-1490).
+- scsi: megaraid: Remove the static variable initialisation
+ (jsc#PED-1490).
+- scsi: megaraid_sas: Clean up some inconsistent indenting
+ (jsc#PED-1490).
+- scsi: megaraid_sas: Remove redundant memset() statement
+ (jsc#PED-1490).
+- scsi: megaraid_sas: Remove unnecessary memset (jsc#PED-1490).
+- scsi: megaraid_sas: Target with invalid LUN ID is deleted
+ during scan (jsc#PED-1490).
+- scsi: megasas: Clean up some inconsistent indenting
+ (jsc#PED-1490).
+- scsi: megasas: Stop using the SCSI pointer (jsc#PED-1490).
+- scsi: megaraid: Fix a kernel-doc warning (jsc#PED-1490).
+- scsi: megaraid_sas: Use irq_set_affinity_and_hint()
+ (jsc#PED-1490).
+- commit d8c27e2
+
+- scsi: hpsa: Simplify {clear|set}_bit() parameters
+ (jsc#PED-1558).
+- scsi: hpsa: Use the bitmap API to allocate bitmaps
+ (jsc#PED-1558).
+- scsi: hpsa: Remove an unused variable in
+ hpsa_update_scsi_devices() (jsc#PED-1558).
+- commit 7a7e8b5
+
+- PM: runtime: Redefine pm_runtime_release_supplier() (git-fixes).
+- commit 53e36dd
+
+- efi: x86: Set the NX-compatibility flag in the PE header
+ (bsc#1205588).
+- commit 05aa191
+
+- blacklist.conf: kABI
+- commit f550bb4
+
+- tracing: kprobe: Fix potential null-ptr-deref on trace_array
+ in kprobe_event_gen_test_exit() (git-fixes).
+- commit dc34c13
+
+- tracing: kprobe: Fix potential null-ptr-deref on
+ trace_event_file in kprobe_event_gen_test_exit() (git-fixes).
+- commit 23caa81
+
+- tracing: Fix wild-memory-access in register_synth_event()
+ (git-fixes).
+- commit 9bbef30
+
+- tracing: Fix memory leak in test_gen_synth_cmd() and
+ test_empty_synth_event() (git-fixes).
+- commit 68dace2
+
+- ftrace: Fix null pointer dereference in ftrace_add_mod()
+ (git-fixes).
+- commit 2e9b117
+
+- ring_buffer: Do not deactivate non-existant pages (git-fixes).
+- commit 0458d7a
+
+- ftrace: Optimize the allocation for mcount entries (git-fixes).
+- commit 5b2b25a
+
+- ftrace: Fix the possible incorrect kernel message (git-fixes).
+- commit 7323c8c
+
+- tracing: Fix memory leak in tracing_read_pipe() (git-fixes).
+- commit 690c08a
+
+- net/smc: kABI workarounds for struct smc_link (git-fixes).
+- commit 0cbe94a
+
+- ring-buffer: Include dropped pages in counting dirty patches
+ (git-fixes).
+- commit 11920bc
+
+- blacklist.conf: duplicate
+- commit ddd82f9
+
+- powerpc/kvm: Fix kvm_use_magic_page (bsc#1156395).
+- Refresh patches.suse/gup-Turn-fault_in_pages_-readable-writeable-into-fault_in_-readable-writeable.patch.
+- commit aec526a
+
+- x86/fpu: Include vmalloc.h for vzalloc() (git-fixes).
+- blacklist.conf: revert blacklisting of 868c250bb463
+- commit 34cf832
+
+- blacklist.conf: duplicate
+- commit dcdcbbd
+
+- tcp: make tcp_read_sock() more robust (jsc#PED-1368).
+- bpf, sockmap: Do not ignore orig_len parameter (jsc#PED-1368).
+- bpf: Add schedule points in batch ops (jsc#PED-1368).
+- commit 1d3696a
+
+- MIPS: Loongson: Use hwmon_device_register_with_groups() to
+ register hwmon (git-fixes).
+- commit 16f21a3
+
+- tracing/ring-buffer: Have polling block on watermark
+ (git-fixes).
+- commit 5c3e4d5
+
+- powerpc/pseries/vas: Declare pseries_vas_fault_thread_fn()
+ as static (bsc#1194869).
+- commit 02a3582
+
+- platform: chrome: Split trace include file (git-fixes).
+- commit 4e9d9ce
+
+- ftrace: Fix use-after-free for dynamic ftrace_ops (git-fixes).
+- commit f98b221
+
+- blacklist.conf: kABI
+- commit 431bd9c
+
+- blacklist.conf: duplicate
+- commit 53c7bfc
+
+- platform/x86/intel: hid: add quirk to support Surface Go 3
+ (git-fixes).
+- commit 23ccaa2
+
+- selftests: bpf: Check bpf_msg_push_data return value
+ (jsc#PED-1368).
+- bpf: Fix a bpf_timer initialization issue (jsc#PED-1368).
+- commit 6da0cef
+
+- blacklist.conf: too intrusive
+- commit 67ad270
+
+- bpf: Emit bpf_timer in vmlinux BTF (jsc#PED-1368).
+- selftests/bpf: Add test for bpf_timer overwriting crash
+ (jsc#PED-1368).
+- bpf: Fix crash due to incorrect copy_map_value (jsc#PED-1368).
+- bpf: Do not try bpf_msg_push_data with len 0 (jsc#PED-1368).
+- tools/resolve_btfids: Do not print any commands when building
+ silently (jsc#PED-1368).
+- bpf: Use VM_MAP instead of VM_ALLOC for ringbuf (jsc#PED-1368).
+- tools headers UAPI: remove stale lirc.h (jsc#PED-1368).
+- bpf: Fix possible race in inc_misses_counter (jsc#PED-1368).
+- bpf: Fix renaming task_getsecid_subj->current_getsecid_subj
+ (jsc#PED-1368).
+- powerpc64/bpf: Limit 'ldbrx' to processors compliant with ISA
+ v2.06 (jsc#PED-1368).
+- tools/bpf: Rename 'struct event' to avoid naming conflict
+ (jsc#PED-1368).
+- powerpc32/bpf: Fix codegen for bpf-to-bpf calls (jsc#PED-1368).
+- bpf: Guard against accessing NULL pt_regs in
+ bpf_get_task_stack() (jsc#PED-1368).
+- bpf, selftests: Add ringbuf memory type confusion test
+ (jsc#PED-1368).
+- bpf: Fix ringbuf memory type confusion when passing to helpers
+ (jsc#PED-1368).
+- blacklist.conf: revert blacklisting of "bpf: Fix ringbuf memory type
+ confusion when passing to helpers"
+- Refresh patches.suse/bpf-Add-check_func_arg_reg_off-function.patch
+- bpf: Fix incorrect integer literal used for marking scratched
+ stack (jsc#PED-1368).
+- bpf/selftests: Add check for updating XDP bpf_link with wrong
+ program type (jsc#PED-1368).
+- bpf/selftests: convert xdp_link test to ASSERT_* macros
+ (jsc#PED-1368).
+- xdp: check prog type before updating BPF link (jsc#PED-1368).
+- bpf: Fix mount source show for bpffs (jsc#PED-1368).
+- tools/bpf/bpftool/skeleton: replace bpf_probe_read_kernel with
+ bpf_probe_read_kernel_str to get task comm (jsc#PED-1368).
+- samples/bpf/test_overhead_kprobe_kern: replace
+ bpf_probe_read_kernel with bpf_probe_read_kernel_str to get
+ task comm (jsc#PED-1368).
+- bpf ppc32: Access only if addr is kernel address (jsc#PED-1368).
+- bpf ppc32: Add BPF_PROBE_MEM support for JIT (jsc#PED-1368).
+- bpf ppc64: Access only if addr is kernel address (jsc#PED-1368).
+- bpf ppc64: Add BPF_PROBE_MEM support for JIT (jsc#PED-1368).
+- powerpc/ppc-opcode: introduce PPC_RAW_BRANCH() macro
+ (jsc#PED-1368).
+- bpf powerpc: refactor JIT compiler code (jsc#PED-1368).
+- bpf powerpc: Remove extra_pass from bpf_jit_build_body()
+ (jsc#PED-1368).
+- bpf powerpc: Remove unused SEEN_STACK (jsc#PED-1368).
+- bpf: selftests: Add bind retry for post_bind{4, 6}
+ (jsc#PED-1368).
+- bpf: selftests: Use C99 initializers in test_sock.c
+ (jsc#PED-1368).
+- net: bpf: Handle return value of
+ BPF_CGROUP_RUN_PROG_INET{4,6}_POST_BIND() (jsc#PED-1368).
+- bpf/selftests: Test bpf_d_path on rdonly_mem (jsc#PED-1368).
+- libbpf: Add documentation for bpf_map batch operations
+ (jsc#PED-1368).
+- selftests/bpf: Don't rely on preserving volatile in PT_REGS
+ macros in loop3 (jsc#PED-1368).
+- xdp: Add xdp_do_redirect_frame() for pre-computed xdp_frames
+ (jsc#PED-1368).
+- xdp: Move conversion to xdp_frame out of map functions
+ (jsc#PED-1368).
+- page_pool: Store the XDP mem id (jsc#PED-1368).
+- page_pool: Add callback to init pages when they are allocated
+ (jsc#PED-1368).
+- xdp: Allow registering memory model without rxq reference
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add timestamp for Tx-only operation
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add time-out for cleaning Tx
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add sched policy and priority support
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add cyclic TX operation capability
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add clockid selection support
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add Dest and Src MAC setting for Tx-only
+ operation (jsc#PED-1368).
+- samples/bpf: xdpsock: Add VLAN support for Tx-only operation
+ (jsc#PED-1368).
+- libbpf 1.0: Deprecate bpf_object__find_map_by_offset() API
+ (jsc#PED-1368).
+- libbpf 1.0: Deprecate bpf_map__is_offload_neutral()
+ (jsc#PED-1368).
+- libbpf: Support repeated legacy kprobes on same function
+ (jsc#PED-1368).
+- libbpf: Use probe_name for legacy kprobe (jsc#PED-1368).
+- libbpf: Deprecate bpf_perf_event_read_simple() API
+ (jsc#PED-1368).
+- bpf: Add SO_RCVBUF/SO_SNDBUF in _bpf_getsockopt()
+ (jsc#PED-1368).
+- bpf: Fix SO_RCVBUF/SO_SNDBUF handling in _bpf_setsockopt()
+ (jsc#PED-1368).
+- bpf: Fix verifier support for validation of async callbacks
+ (jsc#PED-1368).
+- bpf, docs: Fully document the JMP mode modifiers (jsc#PED-1368).
+- bpf, docs: Fully document the JMP opcodes (jsc#PED-1368).
+- bpf, docs: Fully document the ALU opcodes (jsc#PED-1368).
+- bpf, docs: Document the opcode classes (jsc#PED-1368).
+- bpf, docs: Add subsections for ALU and JMP instructions
+ (jsc#PED-1368).
+- bpf, docs: Add a setion to explain the basic instruction
+ encoding (jsc#PED-1368).
+- bpf, selftests: Add verifier test for mem_or_null register
+ with offset (jsc#PED-1368).
+- bpf: Don't promote bogus looking registers after null check
+ (jsc#PED-1368).
+- bpf, sockmap: Fix double bpf_prog_put on error case in map_link
+ (jsc#PED-1368).
+- bpf, sockmap: Fix return codes from tcp_bpf_recvmsg_parser()
+ (jsc#PED-1368).
+- bpf, arm64: Use emit_addr_mov_i64() for BPF_PSEUDO_FUNC
+ (jsc#PED-1368).
+- bpf/selftests: Fix namespace mount setup in tc_redirect
+ (jsc#PED-1368).
+- bpftool: Probe for instruction set extensions (jsc#PED-1368).
+- bpftool: Probe for bounded loop support (jsc#PED-1368).
+- bpftool: Refactor misc. feature probe (jsc#PED-1368).
+- bpf: Fix typo in a comment in bpf lpm_trie (jsc#PED-1368).
+- bpf, docs: Move the packet access instructions last in
+ instruction-set.rst (jsc#PED-1368).
+- bpf, docs: Generate nicer tables for instruction encodings
+ (jsc#PED-1368).
+- bpf, docs: Split the comparism to classic BPF from
+ instruction-set.rst (jsc#PED-1368).
+- bpf, docs: Fix verifier references (jsc#PED-1368).
+- bpf: Invert the dependency between bpf-netns.h and netns/bpf.h
+ (jsc#PED-1368).
+- net: Add includes masked by netdevice.h including uapi/bpf.h
+ (jsc#PED-1368).
+- bpf/selftests: Update local storage selftest for sleepable
+ programs (jsc#PED-1368).
+- bpf: Allow bpf_local_storage to be used by sleepable programs
+ (jsc#PED-1368).
+- bpf: Add missing map_get_next_key method to bloom filter map
+ (jsc#PED-1368).
+- libbpf: Improve LINUX_VERSION_CODE detection (jsc#PED-1368).
+- libbpf: Use 100-character limit to make bpf_tracing.h easier
+ to read (jsc#PED-1368).
+- libbpf: Normalize PT_REGS_xxx() macro definitions
+ (jsc#PED-1368).
+- selftests/bpf: Add btf_dump__new to test_cpp (jsc#PED-1368).
+- libbpf: Do not use btf_dump__new() macro in C++ mode
+ (jsc#PED-1368).
+- bpftool: Enable line buffering for stdout (jsc#PED-1368).
+- bpf: Use struct_size() helper (jsc#PED-1368).
+- selftests/bpf: Correct the INDEX address in vmtest.sh
+ (jsc#PED-1368).
+- bpf: Extend kfunc with PTR_TO_CTX, PTR_TO_MEM argument support
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-Fix-PTR_TO_BTF_ID-var_off-check.patch
+- Refresh patches.suse/bpf-Fix-crash-due-to-out-of-bounds-access-into-reg2b.patch
+- Refresh patches.suse/bpf-Generalize-check_ctx_reg-for-reuse-with-other-ty.patch
+- commit 5734c73
+
+- powerpc/boot: Explicitly disable usage of SPE instructions
+ (bsc#1156395).
+- commit 7c94cdb
+
+- blacklist.conf: Add fixes for unsupported platforms
+- commit 10ca02b
+
+- net: smsc95xx: add support for Microchip EVB-LAN8670-USB
+ (git-fixes).
+- commit af40ba9
+
+- usbnet: smsc95xx: Don't reset PHY behind PHY driver's back
+ (git-fixes).
+- commit b693ef6
+
+- usb: smsc: use eth_hw_addr_set() (git-fixes).
+- commit 67dd1e9
+
+- powerpc/64: Fix build failure with allyesconfig in
+ book3s_64_entry.S (bsc#1194869).
+- commit 6d56eff
+
+- bpftool: Reimplement large insn size limit feature probing
+ (jsc#PED-1368).
+- selftests/bpf: Add libbpf feature-probing API selftests
+ (jsc#PED-1368).
+- libbpf: Rework feature-probing APIs (jsc#PED-1368).
+- Only output backtracking information in log level 2
+ (jsc#PED-1368).
+- bpf: Right align verifier states in verifier logs
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- bpf: Only print scratched registers and stack slots to verifier
+ logs (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- commit 652bd0c
+
+- selftests/bpf: Replace all uses of bpf_load_btf() with
+ bpf_btf_load() (jsc#PED-1368).
+- libbpf: Deprecate bpf_object__load_xattr() (jsc#PED-1368).
+- commit ed13628
+
+- treewide: Add missing includes masked by cgroup -> bpf
+ dependency (jsc#PED-1368).
+- commit dafa543
+
+- bpf: Remove the cgroup -> bpf header dependecy (jsc#PED-1368).
+- add missing bpf-cgroup.h includes (jsc#PED-1368).
+- add includes masked by cgroup -> bpf dependency (jsc#PED-1368).
+- selftests/bpf: Enable cross-building with clang (jsc#PED-1368).
+- tools/runqslower: Enable cross-building with clang
+ (jsc#PED-1368).
+- bpftool: Enable cross-building with clang (jsc#PED-1368).
+- tools/libbpf: Enable cross-building with clang (jsc#PED-1368).
+- tools/resolve_btfids: Support cross-building the kernel with
+ clang (jsc#PED-1368).
+- tools: Help cross-building with clang (jsc#PED-1368).
+- libbpf: Avoid reading past ELF data section end when copying
+ license (jsc#PED-1368).
+- libbpf: Mark bpf_object__find_program_by_title API deprecated
+ (jsc#PED-1368).
+- tools/perf: Stop using bpf_object__find_program_by_title API
+ (jsc#PED-1368).
+- samples/bpf: Stop using bpf_object__find_program_by_title API
+ (jsc#PED-1368).
+- selftests/bpf: Stop using bpf_object__find_program_by_title API
+ (jsc#PED-1368).
+- selftests/bpf: Remove explicit setrlimit(RLIMIT_MEMLOCK)
+ in main selftests (jsc#PED-1368).
+- libbpf: Auto-bump RLIMIT_MEMLOCK if kernel needs it for BPF
+ (jsc#PED-1368).
+- libbpf: Add sane strncpy alternative and use it internally
+ (jsc#PED-1368).
+- libbpf: Fix potential uninit memory read (jsc#PED-1368).
+- libbpf: Add doc comments for bpf_program__(un)pin()
+ (jsc#PED-1368).
+- selftests/bpf: Fix segfault in bpf_tcp_ca (jsc#PED-1368).
+- selftests/bpf: Add tests for get_func_[arg|ret|arg_cnt] helpers
+ (jsc#PED-1368).
+- bpf: Add get_func_[arg|ret|arg_cnt] helpers (jsc#PED-1368).
+- bpf, x64: Replace some stack_size usage with offset variables
+ (jsc#PED-1368).
+- selftests/bpf: Add test to access int ptr argument in tracing
+ program (jsc#PED-1368).
+- bpf: Allow access to int pointer arguments in tracing programs
+ (jsc#PED-1368).
+- libbpf: Don't validate TYPE_ID relo's original imm value
+ (jsc#PED-1368).
+- selftests/bpf: Remove last bpf_create_map_xattr from
+ test_verifier (jsc#PED-1368).
+- bpf: Silence coverity false positive warning (jsc#PED-1368).
+- bpf: Use kmemdup() to replace kmalloc + memcpy (jsc#PED-1368).
+- selftests/bpf: Add test cases for bpf_strncmp() (jsc#PED-1368).
+- selftests/bpf: Add benchmark for bpf_strncmp() helper
+ (jsc#PED-1368).
+- selftests/bpf: Fix checkpatch error on empty function parameter
+ (jsc#PED-1368).
+- bpf: Add bpf_strncmp helper (jsc#PED-1368).
+- libbpf: Fix gen_loader assumption on number of programs
+ (jsc#PED-1368).
+- libbpf: Add "bool skipped" to struct bpf_map (jsc#PED-1368).
+- libbpf: Fix typo in btf__dedup@LIBBPF_0.0.2 definition
+ (jsc#PED-1368).
+- bpftool: Switch bpf_object__load_xattr() to bpf_object__load()
+ (jsc#PED-1368).
+- selftests/bpf: Remove the only use of deprecated
+ bpf_object__load_xattr() (jsc#PED-1368).
+- selftests/bpf: Add test for libbpf's custom log_buf behavior
+ (jsc#PED-1368).
+- commit 5e271be
+
+- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch:
+ (bsc#1205521).
+- commit a75b0e8
+
+- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch:
+ (bsc#1205521).
+- commit de88f7d
+
+- ath10k: fix pointer arithmetic error in trace call (git-fixes).
+- commit eb74c76
+
+- VDUSE: fix documentation underline warning (git-fixes).
+- commit 82c2eb1
+
+- ath10k: abstract htt_rx_desc structure (git-fixes).
+- commit ce63216
+
+- mac80211: limit bandwidth in HE capabilities (git-fixes).
+- commit 07f026a
+
+- ALSA: memalloc: Try dma_alloc_noncontiguous() at first
+ (git-fixes).
+- commit 88c27ac
+
+- usb: typec: tipd: Prevent uninitialized event{1,2} in IRQ
+ handler (git-fixes).
+- ASoC: SOF: topology: No need to assign core ID if token parsing
+ failed (git-fixes).
+- ALSA: memalloc: Don't fall back for SG-buffer with IOMMU
+ (git-fixes).
+- usb: gadget: aspeed: Fix probe regression (git-fixes).
+- nouveau: fix migrate_to_ram() for faulting page (git-fixes).
+- xhci: Fix null pointer dereference in remove if xHC has only
+ one roothub (git-fixes).
+- thunderbolt: Check router generation before connecting xHCI
+ (git-fixes).
+- usb: xhci_plat_remove: avoid NULL dereference (git-fixes).
+- xhci: Fix null pointer dereference in resume if xhci has only
+ one roothub (git-fixes).
+- USB: gadget: Fix return of -EBUSY (git-fixes).
+- dmaengine: tegra: Fix build error without IOMMU_API (git-fixes).
+- PCI/IOV: Fix wrong kernel-doc identifier (git-fixes).
+- usb: core: Unregister device on component_add() failure
+ (git-fixes).
+- pcmcia: hide the MAC address helpers if !NET (git-fixes).
+- arch: Remove leftovers from prism54 wireless driver (git-fixes).
+- usb: typec: ucsi: Only check the contract if there is a
+ connection (git-fixes).
+- libata: libahci: declare ahci_shost_attr_group as static
+ (git-fixes).
+- commit 92b4a5a
+
+- ALSA: hda/realtek: Add quirk for ASUS Zenbook using CS35L41
+ (git-fixes).
+- commit c6c293f
+
+- ASoC: soc-utils: Remove __exit for snd_soc_util_exit()
+ (git-fixes).
+- commit 287b2ba
+
+- Input: i8042 - fix leaking of platform device on module removal
+ (git-fixes).
+- Input: iforce - invert valid length check when fetching device
+ IDs (git-fixes).
+- drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker()
+ (git-fixes).
+- drm/drv: Fix potential memory leak in drm_dev_init()
+ (git-fixes).
+- drm/panel: simple: set bpc field for logic technologies displays
+ (git-fixes).
+- drm/vc4: kms: Fix IS_ERR() vs NULL check for vc4_kms
+ (git-fixes).
+- usb: chipidea: fix deadlock in ci_otg_del_timer (git-fixes).
+- usb: typec: mux: Enter safe mode only when pins need to be
+ reconfigured (git-fixes).
+- Revert "usb: dwc3: disable USB core PHY management" (git-fixes).
+- serial: 8250: Flush DMA Rx on RLSI (git-fixes).
+- serial: 8250: Fall back to non-DMA Rx if IIR_RDI occurs
+ (git-fixes).
+- tty: n_gsm: fix sleep-in-atomic-context bug in gsm_control_send
+ (git-fixes).
+- Revert "tty: n_gsm: replace kicktimer with delayed_work"
+ (git-fixes).
+- Revert "tty: n_gsm: avoid call of sleeping functions from
+ atomic context" (git-fixes).
+- serial: imx: Add missing .thaw_noirq hook (git-fixes).
+- tty: serial: fsl_lpuart: don't break the on-going transfer
+ when global reset (git-fixes).
+- serial: 8250: omap: Flush PM QOS work on remove (git-fixes).
+- serial: 8250: omap: Fix unpaired pm_runtime_put_sync() in
+ omap8250_remove() (git-fixes).
+- serial: 8250_omap: remove wait loop from Errata i202 workaround
+ (git-fixes).
+- firmware: coreboot: Register bus in module init (git-fixes).
+- slimbus: stream: correct presence rate frequencies (git-fixes).
+- parport_pc: Avoid FIFO port location truncation (git-fixes).
+- siox: fix possible memory leak in siox_device_add() (git-fixes).
+- misc/vmw_vmci: fix an infoleak in
+ vmci_host_do_receive_datagram() (git-fixes).
+- speakup: fix a segfault caused by switching consoles
+ (git-fixes).
+- iio: adc: at91_adc: fix possible memory leak in
+ at91_adc_allocate_trigger() (git-fixes).
+- iio: adc: mp2629: fix potential array out of bound access
+ (git-fixes).
+- iio: adc: mp2629: fix wrong comparison of channel (git-fixes).
+- iio: pressure: ms5611: changed hardcoded SPI speed to value
+ limited (git-fixes).
+- iio: trigger: sysfs: fix possible memory leak in
+ iio_sysfs_trig_init() (git-fixes).
+- ASoC: tas2764: Fix set_tdm_slot in case of single slot
+ (git-fixes).
+- ASoC: tas2770: Fix set_tdm_slot in case of single slot
+ (git-fixes).
+- ASoC: core: Fix use-after-free in snd_soc_exit() (git-fixes).
+- mmc: sdhci-pci: Fix possible memory leak caused by missing
+ pci_dev_put() (git-fixes).
+- mmc: core: properly select voltage range without power cycle
+ (git-fixes).
+- commit 5d6506d
+
+- net/smc: Fix possible leaked pernet namespace in smc_init()
+ (git-fixes).
+- net/smc: Fix an error code in smc_lgr_create() (git-fixes).
+- net/smc: Fix possible access to freed memory in link clear
+ (git-fixes).
+- net/smc: Fix slab-out-of-bounds issue in fallback (git-fixes).
+- net/smc: Only save the original clcsock callback functions
+ (git-fixes).
+- net/smc: Fix sock leak when release after smc_shutdown()
+ (git-fixes).
+- net/smc: send directly on setting TCP_NODELAY (git-fixes).
+- net/smc: Send directly when TCP_CORK is cleared (git-fixes).
+- net/smc: Avoid overwriting the copies of clcsock callback
+ functions (git-fixes).
+- net/smc: Forward wakeup to smc socket waitqueue after fallback
+ (git-fixes).
+- commit a5aa4ad
+
+- PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (git-fixes).
+- x86/hyperv: fix invalid writes to MSRs during root partition kexec (git-fixes).
+- clocksource/drivers/hyperv: add data structure for reference TSC MSR (git-fixes).
+- Drivers: hv: fix repeated words in comments (git-fixes).
+- HID: hyperv: fix possible memory leak in mousevsc_probe() (git-fixes).
+- drm/hyperv: Add ratelimit on error message (git-fixes).
+- scsi: storvsc: remove an extraneous "to" in a comment (git-fixes).
+- Drivers: hv: vmbus: Don't wait for the ACPI device upon initialization (git-fixes).
+- Drivers: hv: vmbus: Use PCI_VENDOR_ID_MICROSOFT for better discoverability (git-fixes).
+- Drivers: hv: vmbus: Fix kernel-doc (git-fixes).
+- drm/hyperv: Don't overwrite dirt_needed value set by host (git-fixes).
+- Drivers: hv: vmbus: Optimize vmbus_on_event (git-fixes).
+- scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes).
+- Drivers: hv: Never allocate anything besides framebuffer from framebuffer memory region (git-fixes).
+- Drivers: hv: Always reserve framebuffer region for Gen1 VMs (git-fixes).
+- PCI: Move PCI_VENDOR_ID_MICROSOFT/PCI_DEVICE_ID_HYPERV_VIDEO definitions to pci_ids.h (git-fixes).
+- tools: hv: kvp: remove unnecessary (void*) conversions (git-fixes).
+- Drivers: hv: remove duplicate word in a comment (git-fixes).
+- tools: hv: Remove an extraneous "the" (git-fixes).
+- scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes).
+- Drivers: hv: vmbus: Release cpu lock in error case (git-fixes).
+- Drivers: hv: Fix syntax errors in comments (git-fixes).
+- scsi: storvsc: Fix typo in comment (git-fixes).
+- Drivers: hv: vmbus: fix typo in comment (git-fixes).
+- PCI: hv: Add validation for untrusted Hyper-V values (git-fixes).
+- x86/hyperv: Disable hardlockup detector by default in Hyper-V guests (git-fixes).
+- Drivers: hv: vmbus: Accept hv_sock offers in isolated guests (git-fixes).
+- hv_sock: Add validation for untrusted Hyper-V values (git-fixes).
+- hv_sock: Copy packets sent by Hyper-V out of the ring buffer (git-fixes).
+- hv_sock: Check hv_pkt_iter_first_raw()'s return value (git-fixes).
+- Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes).
+- hv_netvsc: Fix potential dereference of NULL pointer (git-fixes).
+- hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (git-fixes).
+- net: hyperv: remove use of bpf_op_t (git-fixes).
+- commit 5a5a746
+
+- Refresh patches.suse/io_uring-fix-io_try_cancel_userdata-race-for-iowq.patch
+ (bsc#1205572)
+- commit 1bf2e5b
+
+- Update kabi files. Update using the released November MU kernel
+ 5.14.21-150400.24.33.2
+- commit b0daa6c
+
+- s390/uaccess: introduce bit field for OAC specifier
+ (jsc#PED-579).
+- Refresh
+ patches.suse/s390-uaccess-add-missing-EX_TABLE-entries-to-__clear_user.
+- commit 871823b
+
+- KVM: s390: selftest: Test suppression indication on key prot
+ exception (jsc#PED-579).
+- KVM: s390: Don't indicate suppression on dirtying, failing memop
+ (jsc#PED-579).
+- KVM: s390: Fix lockdep issue in vm memop (jsc#PED-579).
+- KVM: s390: selftests: Add error memop tests (jsc#PED-579).
+- KVM: s390: selftests: Add more copy memop tests (jsc#PED-579).
+- KVM: s390: selftests: Add named stages for memop test
+ (jsc#PED-579).
+- KVM: s390: selftests: Add macro as abstraction for MEM_OP
+ (jsc#PED-579).
+- KVM: s390: selftests: Split memop tests (jsc#PED-579).
+- KVM: s390: Add missing vm MEM_OP size check (jsc#PED-579).
+- KVM: s390: Clarify key argument for MEM_OP in api docs
+ (jsc#PED-579).
+- selftests: kvm: Check whether SIDA memop fails for normal guests
+ (jsc#PED-579).
+- KVM: s390: Update api documentation for memop ioctl
+ (jsc#PED-579).
+- KVM: s390: Add capability for storage key extension of MEM_OP
+ IOCTL (jsc#PED-579).
+- KVM: s390: Rename existing vcpu memop functions (jsc#PED-579).
+- KVM: s390: Add vm IOCTL for key checked guest absolute memory
+ access (jsc#PED-579).
+- KVM: s390: Add optional storage key checking to MEMOP IOCTL
+ (jsc#PED-579).
+- KVM: s390: selftests: Test TEST PROTECTION emulation
+ (jsc#PED-579).
+- KVM: s390: handle_tprot: Honor storage keys (jsc#PED-579).
+- KVM: s390: Honor storage keys when accessing guest memory
+ (jsc#PED-579).
+- s390/uaccess: Add copy_from/to_user_key functions (jsc#PED-579).
+- s390/uaccess: fix compile error (jsc#PED-579).
+- KVM: s390: gaccess: Cleanup access to guest pages (jsc#PED-579).
+- KVM: s390: gaccess: Refactor access address range check
+ (jsc#PED-579).
+- KVM: s390: gaccess: Refactor gpa and length calculation
+ (jsc#PED-579).
+- KVM: s390: Function documentation fixes (jsc#PED-579).
+- commit 66cff37
+
+- sched: Clear ttwu_pending after enqueue_task() (git fixes
+ (sched/core)).
+- commit 8216675
+
+- soc: imx8m: Enable OCOTP clock before reading the register
+ (git-fixes).
+- arm64: dts: imx8mn: Fix NAND controller size-cells (git-fixes).
+- arm64: dts: imx8mm: Fix NAND controller size-cells (git-fixes).
+- ARM: dts: imx7: Fix NAND controller size-cells (git-fixes).
+- arm64: dts: qcom: sm8350-hdk: Specify which LDO modes are
+ allowed (git-fixes).
+- arm64: dts: qcom: sm8250-xperia-edo: Specify which LDO modes
+ are allowed (git-fixes).
+- arm64: dts: qcom: sm8150-xperia-kumano: Specify which LDO
+ modes are allowed (git-fixes).
+- arm64: dts: qcom: sa8155p-adp: Specify which LDO modes are
+ allowed (git-fixes).
+- net: thunderbolt: Fix error handling in tbnet_init()
+ (git-fixes).
+- net/x25: Fix skb leak in x25_lapb_receive_frame() (git-fixes).
+- bridge: switchdev: Fix memory leaks when changing VLAN protocol
+ (git-fixes).
+- net: phy: marvell: add sleep time after enabling the loopback
+ bit (git-fixes).
+- mISDN: fix misuse of put_device() in mISDN_register_device()
+ (git-fixes).
+- mISDN: fix possible memory leak in mISDN_dsp_element_register()
+ (git-fixes).
+- commit f0f96f8
+
+- soundwire: intel: Initialize clock stop timeout (bsc#1205507).
+- commit ed7ad85
+
+- io_uring: IRQ rw completion batching (bsc#1205205).
+- io_uring: batch task work locking (bsc#1205205).
+- io_uring: flush completions for fallbacks (bsc#1205205).
+- commit e122d49
+
+- io_uring: add clarifying comment for io_cqring_ev_posted()
+ (bsc#1205205).
+- io_uring: fix lack of protection for compl_nr (bsc#1205205).
+- io_uring: Add register support for non-4k PAGE_SIZE
+ (bsc#1205205).
+- io_uring: extend task put optimisations (bsc#1205205).
+- io_uring: add comments on why PF_EXITING checking is safe
+ (bsc#1205205).
+- io_uring: fix io_timeout_remove locking (bsc#1205205).
+- io_uring: improve same wq polling (bsc#1205205).
+- io_uring: reuse io_req_complete_post() (bsc#1205205).
+- io_uring: better encapsulate buffer select for rw (bsc#1205205).
+- commit 4eedcb8
+
+- io_uring: fix io_timeout_remove locking (git-fixes).
+- io_uring: correct __must_hold annotation (git-fixes).
+- commit afa1999
+
+- scsi: mpi3mr: Delete a stray tab (jsc#PED-1446).
+- scsi: mpi3mr: Unlock on error path (jsc#PED-1446).
+- scsi: mpi3mr: Reduce VD queue depth on detecting throttling
+ (jsc#PED-1446).
+- scsi: mpi3mr: Resource Based Metering (jsc#PED-1446).
+- scsi: mpi3mr: Increase cmd_per_lun to 128 (jsc#PED-1446).
+- scsi: mpi3mr: Enable shared host tagset (jsc#PED-1446).
+- scsi: mpi3mr: Fix kernel-doc (jsc#PED-1446).
+- scsi: mpi3mr: Rework mrioc->bsg_device model to fix warnings
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add target device related sysfs attributes
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add shost related sysfs attributes (jsc#PED-1446).
+- scsi: mpi3mr: Return error if dma_alloc_coherent() fails
+ (jsc#PED-1446).
+- scsi: mpi3mr: Fix a NULL vs IS_ERR() bug in mpi3mr_bsg_init()
+ (jsc#PED-1446).
+- scsi: mpi3mr: Return I/Os to an unrecoverable HBA with DID_ERROR
+ (jsc#PED-1446).
+- scsi: mpi3mr: Hidden drives not removed during soft reset
+ (jsc#PED-1446).
+- scsi: mpi3mr: Increase I/O timeout value to 60s (jsc#PED-1446).
+- scsi: mpi3mr: Update driver version to 8.0.0.69.0
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add support for NVMe passthrough (jsc#PED-1446).
+- scsi: mpi3mr: Expose adapter state to sysfs (jsc#PED-1446).
+- scsi: mpi3mr: Add support for PEL commands (jsc#PED-1446).
+- scsi: mpi3mr: Add support for MPT commands (jsc#PED-1446).
+- scsi: mpi3mr: Move data structures/definitions from MPI headers
+ to uapi header (jsc#PED-1446).
+- scsi: mpi3mr: Add support for driver commands (jsc#PED-1446).
+- scsi: mpi3mr: Add bsg device support (jsc#PED-1446).
+- scsi: mpi3mr: Fix flushing !WQ_MEM_RECLAIM events warning
+ (jsc#PED-1446).
+- scsi: mpi3mr: Bump driver version to 8.0.0.68.0 (jsc#PED-1446).
+- scsi: mpi3mr: Fix memory leaks (jsc#PED-1446).
+- scsi: mpi3mr: Update the copyright year (jsc#PED-1446).
+- scsi: mpi3mr: Fix reporting of actual data transfer size
+ (jsc#PED-1446).
+- scsi: mpi3mr: Fix cmnd getting marked as in use forever
+ (jsc#PED-1446).
+- scsi: mpi3mr: Fix hibernation issue (jsc#PED-1446).
+- scsi: mpi3mr: Update MPI3 headers (jsc#PED-1446).
+- scsi: mpi3mr: Fix printing of pending I/O count (jsc#PED-1446).
+- scsi: mpi3mr: Fix deadlock while canceling the fw event
+ (jsc#PED-1446).
+- commit 38ffa24
+
+- treewide: Replace zero-length arrays with flexible-array members
+ (jsc#PED-1446).
+- Refresh patches.suse/scsi-qla2xxx-edif-bsg-refactor.patch.
+- commit b341c8c
+
+- Update metadata references
+- commit 48537d5
+
+- KVM: SVM: move guest vmsave/vmload back to assembly (git-fixes).
+- commit 64aefe3
+
+- KVM: SVM: retrieve VMCB from assembly (git-fixes).
+- commit fdd0aa2
+
+- blk-mq: Properly init requests from blk_mq_alloc_request_hctx()
+ (git-fixes).
+- rbd: fix possible memory leak in rbd_sysfs_init() (git-fixes).
+- blk-wbt: call rq_qos_add() after wb_normal is initialized
+ (git-fixes).
+- block: blk_queue_enter() / __bio_queue_enter() must return
+ - EAGAIN for nowait (git-fixes).
+- blk-mq: fix io hung due to missing commit_rqs (git-fixes).
+- block/rnbd-srv: Set keep_id to true after mutex_trylock
+ (git-fixes).
+- blktrace: Trace remapped requests correctly (git-fixes).
+- blk-mq: don't create hctx debugfs dir until q->debugfs_dir is
+ created (git-fixes).
+- block: add bio_start_io_acct_time() to control start_time
+ (git-fixes).
+- blk-cgroup: fix missing put device in error path from
+ blkg_conf_pref() (git-fixes).
+- commit 58eed28
+
+- nbd: Fix incorrect error handle when first_minor is illegal
+ in nbd_dev_add (git-fixes).
+- Refresh for the above change,
+ patches.suse/0002-nbd-fix-possible-overflow-on-first_minor-in-nbd_dev_.patch.
+- commit 8281951
+
+- KVM: SVM: adjust register allocation for __svm_vcpu_run()
+ (git-fixes).
+- commit 7b25718
+
+- KVM: SVM: replace regs argument of __svm_vcpu_run() with
+ vcpu_svm (git-fixes).
+- commit 7867341
+
+- KVM: x86: use a separate asm-offsets.c file (git-fixes).
+- commit 0602ab1
+
+- KVM: x86: Hide IA32_PLATFORM_DCA_CAP[31:0] from the guest
+ (git-fixes).
+- commit 499c3ca
+
+- drm/amdkfd: Migrate in CPU page fault use current mm
+ (git-fixes).
+- commit f476661
+
+- pinctrl: devicetree: fix null pointer dereferencing in
+ pinctrl_dt_to_map (git-fixes).
+- pinctrl: rockchip: list all pins in a possible mux route for
+ PX30 (git-fixes).
+- platform/surface: aggregator: Do not check for repeated
+ unsequenced packets (git-fixes).
+- platform/x86/intel: pmc: Don't unconditionally attach Intel
+ PMC when virtualized (git-fixes).
+- arm64: efi: Fix handling of misaligned runtime regions and
+ drop warning (git-fixes).
+- ata: libata-scsi: fix SYNCHRONIZE CACHE (16) command failure
+ (git-fixes).
+- nilfs2: fix use-after-free bug of ns_writer on remount
+ (git-fixes).
+- mmc: sdhci_am654: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
+- mmc: sdhci-tegra: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
+- mms: sdhci-esdhc-imx: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
+- mmc: sdhci-of-arasan: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
+- mmc: cqhci: Provide helper for resetting both SDHCI and CQHCI
+ (git-fixes).
+- ALSA: hda: fix potential memleak in 'add_widget_node'
+ (git-fixes).
+- ALSA: hda/realtek: Add Positivo C6300 model quirk (git-fixes).
+- ALSA: usb-audio: Add DSD support for Accuphase DAC-60
+ (git-fixes).
+- ALSA: usb-audio: Add quirk entry for M-Audio Micro (git-fixes).
+- ALSA: hda/hdmi - enable runtime pm for more AMD display audio
+ (git-fixes).
+- ALSA: hda/ca0132: add quirk for EVGA Z390 DARK (git-fixes).
+- drm/amdgpu: disable BACO on special BEIGE_GOBY card (git-fixes).
+- wifi: ath11k: avoid deadlock during regulatory update in
+ ath11k_regd_update() (git-fixes).
+- platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi
+ (git-fixes).
+- drm/amdkfd: Fix NULL pointer dereference in svm_migrate_to_ram()
+ (git-fixes).
+- thunderbolt: Add DP OUT resource when DP tunnel is discovered
+ (git-fixes).
+- drm/amdkfd: handle CPU fault on COW mapping (git-fixes).
+- drm/amdkfd: avoid recursive lock in migrations back to RAM
+ (git-fixes).
+- commit 438c140
+
+- KVM: x86: Treat #DBs from the emulator as fault-like (code
+ and DR7.GD=1) (git-fixes).
+- commit 89491ed
+
+- libbpf: Add per-program log buffer setter and getter
+ (jsc#PED-1368).
+- libbpf: Preserve kernel error code and remove kprobe prog type
+ guessing (jsc#PED-1368).
+- libbpf: Improve logging around BPF program loading
+ (jsc#PED-1368).
+- libbpf: Allow passing user log setting through
+ bpf_object_open_opts (jsc#PED-1368).
+- libbpf: Allow passing preallocated log_buf when loading BTF
+ into kernel (jsc#PED-1368).
+- libbpf: Add OPTS-based bpf_btf_load() API (jsc#PED-1368).
+- libbpf: Fix bpf_prog_load() log_buf logic for log_level 0
+ (jsc#PED-1368).
+- samples/bpf: Remove unneeded variable (jsc#PED-1368).
+- bpf: Remove redundant assignment to pointer t (jsc#PED-1368).
+- selftests/bpf: Fix a compilation warning (jsc#PED-1368).
+- samples: bpf: Fix 'unknown warning group' build warning on Clang
+ (jsc#PED-1368).
+- samples: bpf: Fix xdp_sample_user.o linking with Clang
+ (jsc#PED-1368).
+- bpf: Silence purge_cand_cache build warning (jsc#PED-1368).
+- libbpf: Add doc comments in libbpf.h (jsc#PED-1368).
+- libbpf: Fix trivial typo (jsc#PED-1368).
+- bpftool: Add debug mode for gen_loader (jsc#PED-1368).
+- bpf: Fix the test_task_vma selftest to support output shorter
+ than 1 kB (jsc#PED-1368).
+- libbpf: Reduce bpf_core_apply_relo_insn() stack usage
+ (jsc#PED-1368).
+- libbpf: Deprecate bpf_prog_load_xattr() API (jsc#PED-1368).
+- samples/bpf: Get rid of deprecated libbpf API uses
+ (jsc#PED-1368).
+- samples/bpf: Clean up samples/bpf build failes (jsc#PED-1368).
+- selftests/bpf: Remove all the uses of deprecated
+ bpf_prog_load_xattr() (jsc#PED-1368).
+- selftests/bpf: Mute xdpxceiver.c's deprecation warnings
+ (jsc#PED-1368).
+- selftests/bpf: Remove recently reintroduced legacy btf__dedup()
+ use (jsc#PED-1368).
+- bpftool: Migrate off of deprecated bpf_create_map_xattr() API
+ (jsc#PED-1368).
+- libbpf: Add API to get/set log_level at per-program level
+ (jsc#PED-1368).
+- libbpf: Use __u32 fields in bpf_map_create_opts (jsc#PED-1368).
+- selftests/bpf: Update test names for xchg and cmpxchg
+ (jsc#PED-1368).
+- selftests/bpf: Build testing_helpers.o out of tree
+ (jsc#PED-1368).
+- selftests/bpf: Add CO-RE relocations to verifier scale test
+ (jsc#PED-1368).
+- selftests/bpf: Revert CO-RE removal in test_ksyms_weak
+ (jsc#PED-1368).
+- selftests/bpf: Additional test for CO-RE in the kernel
+ (jsc#PED-1368).
+- selftests/bpf: Convert map_ptr_kern test to use light skeleton
+ (jsc#PED-1368).
+- selftests/bpf: Improve inner_map test coverage (jsc#PED-1368).
+- selftests/bpf: Add lskel version of kfunc test (jsc#PED-1368).
+- libbpf: Clean gen_loader's attach kind (jsc#PED-1368).
+- libbpf: Support init of inner maps in light skeleton
+ (jsc#PED-1368).
+- libbpf: Use CO-RE in the kernel in light skeleton
+ (jsc#PED-1368).
+- bpf: Add bpf_core_add_cands() and wire it into
+ bpf_core_apply_relo_insn() (jsc#PED-1368).
+- libbpf: Cleanup struct bpf_core_cand (jsc#PED-1368).
+- commit 8a4479c
+
+- KVM: x86: Report error when setting CPUID if Hyper-V allocation
+ fails (git-fixes).
+- commit 335e5aa
+
+- virtio-blk: Use blk_validate_block_size() to validate block size
+ (git-fixes).
+- block: drop unused includes in <linux/genhd.h> (git-fixes).
+- commit a549255
+
+- blacklist.conf: add commits suggested by git-fixes which won't be backported
+- commit d1fe12d
+
+- KVM: SVM: Disable SEV-ES support if MMIO caching is disable
+ (git-fixes).
+- commit d6a15a7
+
+- KVM: x86/mmu: fix memoryleak in kvm_mmu_vendor_module_init()
+ (git-fixes).
+- commit ce66979
+
+- KVM: nVMX: Attempt to load PERF_GLOBAL_CTRL on nVMX xfer iff
+ it exists (git-fixes).
+- commit 3387324
+
+- KVM: VMX: Add helper to check if the guest PMU has
+ PERF_GLOBAL_CTRL (git-fixes).
+- commit 1b36b28
+
+- blacklist.conf: don't deprecate bpf_program__get_prog_info_linear
+- commit 0b5cdb8
+
+- nvdimm/blk: Fix title level (jsc#PED-1689, jsc#PED-1690).
+- commit 5555a12
+
+- scsi: mpi3mr: Fix formatting problems in some kernel-doc
+ comments (jsc#PED-1446).
+- scsi: mpi3mr: Fix some spelling mistakes (jsc#PED-1446).
+- scsi: mpi3mr: Bump driver version to 8.0.0.61.0 (jsc#PED-1446).
+- scsi: mpi3mr: Fixes around reply request queues (jsc#PED-1446).
+- scsi: mpi3mr: Enhanced Task Management Support Reply handling
+ (jsc#PED-1446).
+- scsi: mpi3mr: Use TM response codes from MPI3 headers
+ (jsc#PED-1446).
+- commit b2509ba
+
+- scsi: mpi3mr: Add io_uring interface support in I/O-polled mode
+ (jsc#PED-1446).
+- Refresh
+ patches.suse/scsi-mpi3mr-Schedule-IRQ-kthreads-only-on-non-RT-kernels.patch.
+- commit b6105c2
+
+- scsi: mpi3mr: Print cable mngnt and temp threshold events
+ (jsc#PED-1446).
+- scsi: mpi3mr: Support Prepare for Reset event (jsc#PED-1446).
+- commit 589f645
+
+- scsi: mpi3mr: Add Event acknowledgment logic (jsc#PED-1446).
+- scsi: mpi3mr: Gracefully handle online FW update operation
+ (jsc#PED-1446).
+- scsi: mpi3mr: Detect async reset that occurred in firmware
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add IOC reinit function (jsc#PED-1446).
+- scsi: mpi3mr: Handle offline FW activation in graceful manner
+ (jsc#PED-1446).
+- scsi: mpi3mr: Code refactor of IOC init - part2 (jsc#PED-1446).
+- scsi: mpi3mr: Code refactor of IOC init - part1 (jsc#PED-1446).
+- scsi: mpi3mr: Fault IOC when internal command gets timeout
+ (jsc#PED-1446).
+- scsi: mpi3mr: Display IOC firmware package version
+ (jsc#PED-1446).
+- scsi: mpi3mr: Handle unaligned PLL in unmap cmnds
+ (jsc#PED-1446).
+- scsi: mpi3mr: Increase internal cmnds timeout to 60s
+ (jsc#PED-1446).
+- scsi: mpi3mr: Do access status validation before adding devices
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add support for PCIe Managed Switch SES device
+ (jsc#PED-1446).
+- scsi: mpi3mr: Update MPI3 headers - part2 (jsc#PED-1446).
+- scsi: mpi3mr: Update MPI3 headers - part1 (jsc#PED-1446).
+- scsi: mpi3mr: Don't reset IOC if cmnds flush with reset status
+ (jsc#PED-1446).
+- scsi: mpi3mr: Replace spin_lock() with spin_lock_irqsave()
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add debug APIs based on logging_level bits
+ (jsc#PED-1446).
+- scsi: mpi3mr: Use scnprintf() instead of snprintf()
+ (jsc#PED-1446).
+- scsi: mpi3mr: Clean up mpi3mr_print_ioc_info() (jsc#PED-1446).
+- commit 528c787
+
+- KVM: VMX: Mark all PERF_GLOBAL_(OVF)_CTRL bits reserved if
+ there's no vPMU (git-fixes).
+- commit 3ada3ae
+
+- tcp: Fix data races around icsk->icsk_af_ops (CVE-2022-3566
+ bsc#1204405).
+- commit f7cc985
+
+- ipv6: Fix data races around sk->sk_prot (CVE-2022-3567
+ bsc#1204414).
+- ipv6: annotate some data-races around sk->sk_prot (CVE-2022-3567
+ bsc#1204414).
+- commit 654a4f7
+
+- KVM: nVMX: Rename handle_vm{on,off}() to handle_vmx{on,off}()
+ (git-fixes).
+- commit 7218ba7
+
+- KVM: nVMX: Always enable TSC scaling for L2 when it was enabled
+ for L1 (git-fixes).
+- commit b0f3ab9
+
+- KVM: x86: Fully initialize 'struct kvm_lapic_irq' in
+ kvm_pv_kick_cpu_op() (git-fixes).
+- commit 81fd9e6
+
+- KVM: x86: Signal #GP, not -EPERM, on bad WRMSR(MCi_CTL/STATUS)
+ (git-fixes).
+- commit 1a1eab3
+
+- KVM: SVM: Stuff next_rip on emulated INT3 injection if NRIPS
+ is supported (git-fixes).
+- commit e7e1382
+
+- KVM: SEV: Mark nested locking of vcpu->lock (git-fixes).
+- commit 5f6bf6f
+
+- KVM: x86/svm: Account for family 17h event renumberings in
+ amd_pmc_perf_hw_id (git-fixes).
+- commit e3ae104
+
+- KVM: x86: avoid loading a vCPU after .vm_destroy was called
+ (git-fixes).
+- commit 29af845
+
+- KVM: Move wiping of the kvm->vcpus array to common code
+ (git-fixes).
+- commit 9720dc5
+
+- s390/pci: add missing EX_TABLE entries to
+ __pcistg_mio_inuser()/__pcilg_mio_inuser() (bsc#1205427
+ LTC#200502).
+- s390/futex: add missing EX_TABLE entry to __futex_atomic_op()
+ (bsc#1205427 LTC#200502).
+- s390/uaccess: add missing EX_TABLE entries to __clear_user(),
+ copy_in_user_mvcos(), copy_in_user_mvc(), clear_user_xc()
+ and __strnlen_user() (bsc#1205428 LTC#200501).
+- commit ad7cfae
+
+- nilfs2: fix deadlock in nilfs_count_free_blocks() (git-fixes).
+- dmaengine: at_hdmac: Check return code of
+ dma_async_device_register (git-fixes).
+- dmaengine: at_hdmac: Fix impossible condition (git-fixes).
+- dmaengine: at_hdmac: Don't allow CPU to reorder channel enable
+ (git-fixes).
+- dmaengine: at_hdmac: Fix completion of unissued descriptor in
+ case of errors (git-fixes).
+- dmaengine: at_hdmac: Fix descriptor handling when issuing it
+ to hardware (git-fixes).
+- spi: stm32: Print summary 'callbacks suppressed' message
+ (git-fixes).
+- mmc: sdhci-esdhc-imx: use the correct host caps for
+ MMC_CAP_8_BIT_DATA (git-fixes).
+- drm/i915/dmabuf: fix sg_table handling in map_dma_buf
+ (git-fixes).
+- drm/vc4: Fix missing platform_unregister_drivers() call in
+ vc4_drm_register() (git-fixes).
+- nilfs2: replace WARN_ONs by nilfs_error for checkpoint
+ acquisition failure (git-fixes).
+- commit f7fc242
+
+- dmaengine: at_hdmac: Fix concurrency over the active list
+ (git-fixes).
+- dmaengine: at_hdmac: Free the memset buf without holding the
+ chan lock (git-fixes).
+- dmaengine: at_hdmac: Fix concurrency over descriptor
+ (git-fixes).
+- dmaengine: at_hdmac: Fix concurrency problems by removing
+ atc_complete_all() (git-fixes).
+- dmaengine: at_hdmac: Protect atchan->status with the channel
+ lock (git-fixes).
+- dmaengine: at_hdmac: Do not call the complete callback on
+ device_terminate_all (git-fixes).
+- dmaengine: at_hdmac: Fix premature completion of desc in
+ issue_pending (git-fixes).
+- dmaengine: at_hdmac: Start transfer for cyclic channels in
+ issue_pending (git-fixes).
+- dmaengine: at_hdmac: Don't start transactions at tx_submit level
+ (git-fixes).
+- dmaengine: at_hdmac: Fix at_lli struct definition (git-fixes).
+- commit 718fc6d
+
+- KVM: x86/pmu: Update AMD PMC sample period to fix guest
+ NMI-watchdog (git-fixes).
+- commit d582f6e
+
+- ata: libata-transport: fix error handling in ata_tdev_add()
+ (git-fixes).
+- ata: libata-transport: fix error handling in ata_tlink_add()
+ (git-fixes).
+- ata: libata-transport: fix error handling in ata_tport_add()
+ (git-fixes).
+- ata: libata-transport: fix double ata_host_put() in
+ ata_tport_add() (git-fixes).
+- dmaengine: ti: k3-udma-glue: fix memory leak when register
+ device fail (git-fixes).
+- dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove()
+ (git-fixes).
+- dmaengine: pxa_dma: use platform_get_irq_optional (git-fixes).
+- commit 3e58402
+
+- x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473).
+- commit d022167
+
+- KVM: x86: Use __try_cmpxchg_user() to emulate atomic accesses
+ (git-fixes).
+- commit af8969b
+
+- KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits
+ (git-fixes).
+- commit 4c10c2f
+
+- bpf: Pass a set of bpf_core_relo-s to prog_load command
+ (jsc#PED-1368).
+- Refresh patches.suse/x86-speculation-include-unprivileged-ebpf-status-in-spectre-v2-mitigation-reporting.patch
+- bpf: Define enum bpf_core_relo_kind as uapi (jsc#PED-1368).
+- bpf: Prepare relo_core.c for kernel duty (jsc#PED-1368).
+- bpf: Rename btf_member accessors (jsc#PED-1368).
+- libbpf: Replace btf__type_by_id() with btf_type_by_id()
+ (jsc#PED-1368).
+- samples: bpf: Fix conflicting types in fds_example
+ (jsc#PED-1368).
+- bpf: Clean-up bpf_verifier_vlog() for BPF_LOG_KERNEL log level
+ (jsc#PED-1368).
+- libbpf: Avoid reload of imm for weak, unresolved, repeating ksym
+ (jsc#PED-1368).
+- libbpf: Avoid double stores for success/failure case of ksym
+ relocations (jsc#PED-1368).
+- bpf: Change bpf_kallsyms_lookup_name size type to
+ ARG_CONST_SIZE_OR_ZERO (jsc#PED-1368).
+- selftest/bpf/benchs: Add bpf_loop benchmark (jsc#PED-1368).
+- selftests/bpf: Measure bpf_loop verifier performance
+ (jsc#PED-1368).
+- selftests/bpf: Add bpf_loop test (jsc#PED-1368).
+- bpf: Add bpf_loop helper (jsc#PED-1368).
+- bpf, docs: Split general purpose eBPF documentation out of
+ filter.rst (jsc#PED-1368).
+- bpf, docs: Move handling of maps to Documentation/bpf/maps.rst
+ (jsc#PED-1368).
+- bpf, docs: Prune all references to "internal BPF"
+ (jsc#PED-1368).
+- bpf: Remove a redundant comment on bpf_prog_free (jsc#PED-1368).
+- x86, bpf: Cleanup the top of file header in bpf_jit_comp.c
+ (jsc#PED-1368).
+- libbpf: Remove duplicate assignments (jsc#PED-1368).
+- libbpf: Silence uninitialized warning/error in
+ btf_dump_dump_type_data (jsc#PED-1368).
+- selftests/bpf: Test BPF_MAP_TYPE_PROG_ARRAY static
+ initialization (jsc#PED-1368).
+- libbpf: Support static initialization of BPF_MAP_TYPE_PROG_ARRAY
+ (jsc#PED-1368).
+- bpf, mips: Fix build errors about __NR_bpf undeclared
+ (jsc#PED-1368).
+- selftests/bpf: Fix misaligned accesses in xdp and xdp_bpf2bpf
+ tests (jsc#PED-1368).
+- selftests/bpf: Fix misaligned memory accesses in xdp_bonding
+ test (jsc#PED-1368).
+- selftests/bpf: Prevent out-of-bounds stack access in test_bpffs
+ (jsc#PED-1368).
+- selftests/bpf: Fix misaligned memory access in queue_stack_map
+ test (jsc#PED-1368).
+- selftests/bpf: Prevent misaligned memory access in
+ get_stack_raw_tp test (jsc#PED-1368).
+- selftests/bpf: Fix possible NULL passed to memcpy() with zero
+ size (jsc#PED-1368).
+- selftests/bpf: Fix UBSan complaint about signed __int128
+ overflow (jsc#PED-1368).
+- libbpf: Fix using invalidated memory in bpf_linker
+ (jsc#PED-1368).
+- libbpf: Fix glob_syms memory leak in bpf_linker (jsc#PED-1368).
+- libbpf: Don't call libc APIs with NULL pointers (jsc#PED-1368).
+- libbpf: Fix potential misaligned memory access in btf_ext__new()
+ (jsc#PED-1368).
+- tools/resolve_btf_ids: Close ELF file on error (jsc#PED-1368).
+- selftests/bpf: Migrate selftests to bpf_map_create()
+ (jsc#PED-1368).
+- libbpf: Prevent deprecation warnings in xsk.c (jsc#PED-1368).
+- libbpf: Use bpf_map_create() consistently internally
+ (jsc#PED-1368).
+- libbpf: Unify low-level map creation APIs w/ new
+ bpf_map_create() (jsc#PED-1368).
+- selftests/bpf: Mix legacy (maps) and modern (vars) BPF in one
+ test (jsc#PED-1368).
+- libbpf: Load global data maps lazily on legacy kernels
+ (jsc#PED-1368).
+- selftests/bpf: Fix trivial typo (jsc#PED-1368).
+- libbpf: Change bpf_program__set_extra_flags to
+ bpf_program__set_flags (jsc#PED-1368).
+- selftests/bpf: Add btf_dedup case with duplicated structs
+ within CU (jsc#PED-1368).
+- libbpf: Accommodate DWARF/compiler bug with duplicated structs
+ (jsc#PED-1368).
+- libbpf: Add runtime APIs to query libbpf version (jsc#PED-1368).
+- selfetests/bpf: Adapt vmtest.sh to s390 libbpf CI changes
+ (jsc#PED-1368).
+- selftests/bpf: Fix xdpxceiver failures for no hugepages
+ (jsc#PED-1368).
+- skbuff: Move conditional preprocessor directives out of struct
+ sk_buff (jsc#PED-1368).
+- selftests/bpf: Test RENAME_EXCHANGE and RENAME_NOREPLACE on
+ bpffs (jsc#PED-1368).
+- commit 30264f0
+
+- x86/futex: Remove .fixup usage (git-fixes).
+- commit 687839d
+
+- ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy
+ Book Pro 360 (bsc#1205100).
+- ALSA: hda/realtek: fix speakers for Samsung Galaxy Book Pro
+ (bsc#1205100).
+- commit ca2ce49
+
+- bpf, docs: Fix ordering of bpf documentation (jsc#PED-1368).
+- libbpf: Rename libbpf documentation index file (jsc#PED-1368).
+- commit fd082d1
+
+- x86/extable: Extend extable functionality (git-fixes).
+- commit 28f726d
+
+- bpf, docs: Rename bpf_lsm.rst to prog_lsm.rst (jsc#PED-1368).
+- bpf, docs: Change underline in btf to match style guide
+ (jsc#PED-1368).
+- selftests/bpf: Mark variable as static (jsc#PED-1368).
+- selftests/bpf: Variable naming fix (jsc#PED-1368).
+- selftests/bpf: Move summary line after the error logs
+ (jsc#PED-1368).
+- selftests/bpf: Add uprobe triggering overhead benchmarks
+ (jsc#PED-1368).
+- bpf: Change value of MAX_TAIL_CALL_CNT from 32 to 33
+ (jsc#PED-1368).
+- selftests/bpf: Configure dir paths via env in
+ test_bpftool_synctypes.py (jsc#PED-1368).
+- bpftool: Update doc (use susbtitutions) and
+ test_bpftool_synctypes.py (jsc#PED-1368).
+- bpftool: Add SPDX tags to RST documentation files
+ (jsc#PED-1368).
+- selftests/bpf: Add a dedup selftest with equivalent structure
+ types (jsc#PED-1368).
+- libbpf: Fix a couple of missed btf_type_tag handling in btf.c
+ (jsc#PED-1368).
+- bpftool: Add current libbpf_strict mode to version output
+ (jsc#PED-1368).
+- bpftool: Use libbpf_get_error() to check error (jsc#PED-1368).
+- bpftool: Fix mixed indentation in documentation (jsc#PED-1368).
+- bpftool: Update the lists of names for maps and prog-attach
+ types (jsc#PED-1368).
+- bpftool: Fix indent in option lists in the documentation
+ (jsc#PED-1368).
+- selftests/bpf: Fix a tautological-constant-out-of-range-compare
+ compiler warning (jsc#PED-1368).
+- selftests/bpf: Fix an unused-but-set-variable compiler warning
+ (jsc#PED-1368).
+- bpf: Introduce btf_tracing_ids (jsc#PED-1368).
+- bpf: Extend BTF_ID_LIST_GLOBAL with parameter for number of IDs
+ (jsc#PED-1368).
+- bpftool: Enable libbpf's strict mode by default (jsc#PED-1368).
+- docs/bpf: Update documentation for BTF_KIND_TYPE_TAG support
+ (jsc#PED-1368).
+- selftests/bpf: Clarify llvm dependency with btf_tag selftest
+ (jsc#PED-1368).
+- selftests/bpf: Add a C test for btf_type_tag (jsc#PED-1368).
+- selftests/bpf: Rename progs/tag.c to progs/btf_decl_tag.c
+ (jsc#PED-1368).
+- selftests/bpf: Test BTF_KIND_DECL_TAG for deduplication
+ (jsc#PED-1368).
+- selftests/bpf: Add BTF_KIND_TYPE_TAG unit tests (jsc#PED-1368).
+- selftests/bpf: Test libbpf API function btf__add_type_tag()
+ (jsc#PED-1368).
+- bpftool: Support BTF_KIND_TYPE_TAG (jsc#PED-1368).
+- libbpf: Support BTF_KIND_TYPE_TAG (jsc#PED-1368).
+- bpf: Support BTF_KIND_TYPE_TAG for btf_type_tag attributes
+ (jsc#PED-1368).
+- bpftool: Update btf_dump__new() and perf_buffer__new_raw()
+ calls (jsc#PED-1368).
+- tools/runqslower: Update perf_buffer__new() calls
+ (jsc#PED-1368).
+- selftests/bpf: Update btf_dump__new() uses to v1.0+ variant
+ (jsc#PED-1368).
+- selftests/bpf: Migrate all deprecated perf_buffer uses
+ (jsc#PED-1368).
+- libbpf: Make perf_buffer__new() use OPTS-based interface
+ (jsc#PED-1368).
+- libbpf: Ensure btf_dump__new() and btf_dump_opts are
+ future-proof (jsc#PED-1368).
+- libbpf: Turn btf_dedup_opts into OPTS-based struct
+ (jsc#PED-1368).
+- selftests/bpf: Minor cleanups and normalization of Makefile
+ (jsc#PED-1368).
+- bpftool: Normalize compile rules to specify output file last
+ (jsc#PED-1368).
+- selftests/bpf: Fix bpf_prog_test_load() logic to pass extra
+ log level (jsc#PED-1368).
+- libbpf: Add ability to get/set per-program load flags
+ (jsc#PED-1368).
+- selftests/bpf: Add tests for accessing ingress_ifindex in
+ bpf_sk_lookup (jsc#PED-1368).
+- bpf: Add ingress_ifindex to bpf_sk_lookup (jsc#PED-1368).
+- bpftool: Fix SPDX tag for Makefiles and .gitignore
+ (jsc#PED-1368).
+- Refresh patches.suse/bpftool-Remove-inclusion-of-utilities.mak-from-Makef.patch
+- libbpf: Compile using -std=gnu89 (jsc#PED-1368).
+- selftests/bpf: Add exception handling selftests for tp_bpf
+ program (jsc#PED-1368).
+- selftests/bpf: Add tests for bpf_find_vma (jsc#PED-1368).
+- bpf: Introduce helper bpf_find_vma (jsc#PED-1368).
+- selftests/bpf: Fix bpf_object leak in skb_ctx selftest
+ (jsc#PED-1368).
+- selftests/bpf: Destroy XDP link correctly (jsc#PED-1368).
+- selftests/bpf: Avoid duplicate btf__parse() call (jsc#PED-1368).
+- selftests/bpf: Clean up btf and btf_dump in dump_datasec test
+ (jsc#PED-1368).
+- selftests/bpf: Free inner strings index in btf selftest
+ (jsc#PED-1368).
+- selftests/bpf: Free per-cpu values array in bpf_iter selftest
+ (jsc#PED-1368).
+- selftests/bpf: Fix memory leaks in btf_type_c_dump() helper
+ (jsc#PED-1368).
+- selftests/bpf: Pass sanitizer flags to linker through LDFLAGS
+ (jsc#PED-1368).
+- selftests/bpf: Use explicit bpf_test_load_program() helper calls
+ (jsc#PED-1368).
+- selftests/bpf: Use explicit bpf_prog_test_load() calls
+ everywhere (jsc#PED-1368).
+- selftests/bpf: Merge test_stub.c into testing_helpers.c
+ (jsc#PED-1368).
+- selftests/bpf: Convert legacy prog load APIs to bpf_prog_load()
+ (jsc#PED-1368).
+- selftests/bpf: Fix non-strict SEC() program sections
+ (jsc#PED-1368).
+- libbpf: Remove deprecation attribute from struct
+ bpf_prog_prep_result (jsc#PED-1368).
+- bpftool: Stop using deprecated bpf_load_program()
+ (jsc#PED-1368).
+- libbpf: Stop using to-be-deprecated APIs (jsc#PED-1368).
+- libbpf: Remove internal use of deprecated bpf_prog_load()
+ variants (jsc#PED-1368).
+- libbpf: Unify low-level BPF_PROG_LOAD APIs into bpf_prog_load()
+ (jsc#PED-1368).
+- libbpf: Pass number of prog load attempts explicitly
+ (jsc#PED-1368).
+- libbpf: Rename DECLARE_LIBBPF_OPTS into LIBBPF_OPTS
+ (jsc#PED-1368).
+- libbpf: Fix non-C89 loop variable declaration in gen_loader.c
+ (jsc#PED-1368).
+- libbpf: Deprecate bpf_program__load() API (jsc#PED-1368).
+- libbpf: Improve ELF relo sanitization (jsc#PED-1368).
+- libbpf: Fix section counting logic (jsc#PED-1368).
+- libbpf: Validate that .BTF and .BTF.ext sections contain data
+ (jsc#PED-1368).
+- libbpf: Improve sanity checking during BTF fix up
+ (jsc#PED-1368).
+- libbpf: Detect corrupted ELF symbols section (jsc#PED-1368).
+- bpftool: Use bpf_obj_get_info_by_fd directly (jsc#PED-1368).
+- bpftool: Migrate -1 err checks of libbpf fn calls
+ (jsc#PED-1368).
+- bpf: Document BPF licensing (jsc#PED-1368).
+- commit d7e0919
+
+- x86/microcode/AMD: Apply the patch early on every logical thread
+ (bsc#1205264).
+- commit 6805cb3
+
+- x86/uaccess: Implement macros for CMPXCHG on user addresses
+ (git-fixes).
+- commit 680ab7c
+
+- Kconfig: Add option for asm goto w/ tied outputs to workaround
+ clang-13 bug (git-fixes).
+- Refresh config.
+- commit 7888244
+
+- KVM: x86/pmu: Fix and isolate TSX-specific performance event
+ logic (git-fixes).
+- commit e13feb1
+
+- kABI: Fix kABI after "KVM: x86/pmu: Use different raw event
+ masks for AMD and Intel" (git-fixes).
+- commit d086901
+
+- KVM: x86/pmu: Use different raw event masks for AMD and Intel
+ (git-fixes).
+- commit fd5bd7c
+
+- xen/gntdev: Accommodate VMA splitting (git-fixes).
+- commit 0745691
+
+- KVM: x86/mmu: WARN if old _or_ new SPTE is REMOVED in non-atomic
+ path (git-fixes).
+- commit bc980a8
+
+- KVM: x86/mmu: Fix wrong/misleading comments in TDP MMU fast zap
+ (git-fixes).
+- commit d3e6160
+
+- blacklist.conf: add fcb732d8f8cf ("KVM: x86/xen: Fix runstate
+ updates to be atomic when preempting vCPU")
+- commit d42ecb5
+
+- blacklist.conf: add 55749769fe60 ("KVM: x86: Fix wall clock writes
+ in Xen shared_info not to mark page dirty")
+- commit 08e6ef4
+
+- KVM: x86: Mask off reserved bits in CPUID.80000001H (git-fixes).
+- commit a7fc31c
+
+- nvdimm/region: Delete nd_blk_region infrastructure
+ (jsc#PED-1689, jsc#PED-1690).
+- ACPI: NFIT: Remove block aperture support (jsc#PED-1689,
+ jsc#PED-1690).
+- nvdimm/namespace: Delete nd_namespace_blk (jsc#PED-1689,
+ jsc#PED-1690).
+- nvdimm/namespace: Delete blk namespace consideration in shared
+ paths (jsc#PED-1689, jsc#PED-1690).
+- nvdimm/blk: Delete the block-aperture window driver
+ (jsc#PED-1689, jsc#PED-1690).
+- nvdimm/region: Fix default alignment for small regions
+ (jsc#PED-1689, jsc#PED-1690).
+- libnvdimm/labels: Add uuid helpers (jsc#PED-1689, jsc#PED-1690).
+- libnvdimm/labels: Introduce label setter helpers (jsc#PED-1689,
+ jsc#PED-1690).
+- libnvdimm/labels: Add isetcookie validation helper
+ (jsc#PED-1689, jsc#PED-1690).
+- libnvdimm/labels: Introduce getters for namespace label fields
+ (jsc#PED-1689, jsc#PED-1690).
+- commit f3a7636
+
+- KVM: x86: emulator: update the emulation mode after CR0 write
+ (git-fixes).
+- commit f0c4a2c
+
+- KVM: x86: emulator: update the emulation mode after rsm
+ (git-fixes).
+- commit debb42a
+
+- KVM: x86: emulator: introduce emulator_recalc_and_set_mode
+ (git-fixes).
+- commit a9da797
+
+- blacklist.conf: add xsk entry that was reverted
+- commit 8c1c3d4
+
+- KVM: x86: emulator: em_sysexit should update ctxt->mode
+ (git-fixes).
+- commit e252f98
+
+- KVM: VMX: fully disable SGX if SECONDARY_EXEC_ENCLS_EXITING
+ unavailable (git-fixes).
+- commit f452678
+
+- KVM: x86: Mask off reserved bits in CPUID.8000001AH (git-fixes).
+- commit c7494f8
+
+- KVM: x86: Mask off reserved bits in CPUID.80000008H (git-fixes).
+- commit b042017
+
+- KVM: x86: Mask off reserved bits in CPUID.80000006H (git-fixes).
+- commit ce5ff67
+
+- KVM: VMX: Drop bits 31:16 when shoving exception error code
+ into VMCS (git-fixes).
+- commit e0caade
+
+- Update patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch
+ Patch (44b3834b2eed5 "arm64: errata: Remove AES hwcap for COMPAT tasks") added
+ new workaround identifier. Remove one placeholder to keep kABI intact.
+- commit e23b992
+
+- xsk: Initialise xskb free_list_node (jsc#PED-1368).
+- selftests/bpf: Fix OOB write in test_verifier (jsc#PED-1368).
+- bpf: Add selftests to cover packet access corner cases
+ (jsc#PED-1368).
+- bpf: Fix the off-by-two error in range markings (jsc#PED-1368).
+- tools/resolve_btfids: Skip unresolved symbol warning for empty
+ BTF sets (jsc#PED-1368).
+- bpf: Fix bpf_check_mod_kfunc_call for built-in modules
+ (jsc#PED-1368).
+- bpf: Make CONFIG_DEBUG_INFO_BTF depend upon CONFIG_BPF_SYSCALL
+ (jsc#PED-1368).
+- bpf, sockmap: Re-evaluate proto ops when psock is removed from
+ sockmap (jsc#PED-1368).
+- bpf, sockmap: Attach map progs to psock early for feature probes
+ (jsc#PED-1368).
+- selftests/bpf: Add tests for restricted helpers (jsc#PED-1368).
+- bpf: Forbid bpf_ktime_get_coarse_ns and bpf_timer_* in tracing
+ progs (jsc#PED-1368).
+- libbpf: Perform map fd cleanup for gen_loader in case of error
+ (jsc#PED-1368).
+- tools/runqslower: Fix cross-build (jsc#PED-1368).
+- bpf: Fix inner map state pruning regression (jsc#PED-1368).
+- bpf, sockmap: Use stricter sk state checks in sk_lookup_assign
+ (jsc#PED-1368).
+- bpf: selftest: Trigger a DCE on the whole subprog
+ (jsc#PED-1368).
+- riscv, bpf: Fix RV32 broken build, and silence RV64 warning
+ (jsc#PED-1368).
+- bpftool: Install libbpf headers for the bootstrap version,
+ too (jsc#PED-1368).
+- bpf: Do not reject when the stack read size is different from
+ the tracked scalar size (jsc#PED-1368).
+- selftests/bpf: Make netcnt selftests serial to avoid spurious
+ failures (jsc#PED-1368).
+- selftests/bpf: Convert test_bpffs to ASSERT macros
+ (jsc#PED-1368).
+- libfs: Support RENAME_EXCHANGE in simple_rename()
+ (jsc#PED-1368).
+- libfs: Move shmem_exchange to simple_rename_exchange
+ (jsc#PED-1368).
+- scripts: documentation-file-ref-check: fix bpf selftests path
+ (jsc#PED-1368).
+- libbpf: Deprecate AF_XDP support (jsc#PED-1368).
+- selftests/bpf: Add a testcase for 64-bit bounds propagation
+ issue (jsc#PED-1368).
+- bpf: Add missing map_delete_elem method to bloom filter map
+ (jsc#PED-1368).
+- selftests/bpf: Add bloom map success test for userspace calls
+ (jsc#PED-1368).
+- bpf: Add alignment padding for "map_extra" + consolidate holes
+ (jsc#PED-1368).
+- Refresh patches.suse/kABI-padding-for-bpf.patch
+- bpf: Bloom filter map naming fixups (jsc#PED-1368).
+- selftests/bpf: Add test cases for struct_ops prog
+ (jsc#PED-1368).
+- bpf: Add dummy BPF STRUCT_OPS for test purpose (jsc#PED-1368).
+- bpf: Factor out helpers for ctx access checking (jsc#PED-1368).
+- bpf: Factor out a helper to prepare trampoline for struct_ops
+ prog (jsc#PED-1368).
+- riscv, libbpf: Add RISC-V (RV64) support to bpf_tracing.h
+ (jsc#PED-1368).
+- tools, build: Add RISC-V to HOSTARCH parsing (jsc#PED-1368).
+- riscv, bpf: Increase the maximum number of iterations
+ (jsc#PED-1368).
+- selftests, bpf: Add one test for sockmap with strparser
+ (jsc#PED-1368).
+- selftests, bpf: Fix test_txmsg_ingress_parser error
+ (jsc#PED-1368).
+- selftests/bpf: Add weak/typeless ksym test for light skeleton
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-selftests-Test-PTR_TO_RDONLY_MEM.patch
+- libbpf: Use O_CLOEXEC uniformly when opening fds (jsc#PED-1368).
+- libbpf: Ensure that BPF syscall fds are never 0, 1, or 2
+ (jsc#PED-1368).
+- libbpf: Add weak ksym support to gen_loader (jsc#PED-1368).
+- libbpf: Add typeless ksym support to gen_loader (jsc#PED-1368).
+- bpf: Add bpf_kallsyms_lookup_name helper (jsc#PED-1368).
+- bpf/benchs: Add benchmarks for comparing hashmap lookups w/
+ vs. w/out bloom filter (jsc#PED-1368).
+- bpf/benchs: Add benchmark tests for bloom filter throughput +
+ false positive (jsc#PED-1368).
+- selftests/bpf: Add bloom filter map test cases (jsc#PED-1368).
+- libbpf: Add "map_extra" as a per-map-type extra flag
+ (jsc#PED-1368).
+- bpf: Add bloom filter map implementation (jsc#PED-1368).
+- riscv, bpf: Add BPF exception tables (jsc#PED-1368).
+- selftests/bpf: Adding a namespace reset for tc_redirect
+ (jsc#PED-1368).
+- selftests/bpf: Fix attach_probe in parallel mode (jsc#PED-1368).
+- selfetests/bpf: Update vmtest.sh defaults (jsc#PED-1368).
+- bpf: Use u64_stats_t in struct bpf_prog_stats (jsc#PED-1368).
+- libbpf: Deprecate bpf_objects_list (jsc#PED-1368).
+- selftests/bpf: Guess function end for test_get_branch_snapshot
+ (jsc#PED-1368).
+- selftests/bpf: Skip all serial_test_get_branch_snapshot in vm
+ (jsc#PED-1368).
+- selftests/seccomp: Use __BYTE_ORDER__ (jsc#PED-1368).
+- samples: seccomp: Use __BYTE_ORDER__ (jsc#PED-1368).
+- selftests/bpf: Use __BYTE_ORDER__ (jsc#PED-1368).
+- libbpf: Use __BYTE_ORDER__ (jsc#PED-1368).
+- libbpf: Deprecate ambiguously-named bpf_program__size() API
+ (jsc#PED-1368).
+- libbpf: Deprecate multi-instance bpf_program APIs
+ (jsc#PED-1368).
+- libbpf: Add ability to fetch bpf_program's underlying
+ instructions (jsc#PED-1368).
+- libbpf: Fix off-by-one bug in bpf_core_apply_relo()
+ (jsc#PED-1368).
+- bpftool: Switch to libbpf's hashmap for PIDs/names references
+ (jsc#PED-1368).
+- bpftool: Switch to libbpf's hashmap for programs/maps in BTF
+ listing (jsc#PED-1368).
+- bpftool: Switch to libbpf's hashmap for pinned paths of BPF
+ objects (jsc#PED-1368).
+- bpftool: Do not expose and init hash maps for pinned path in
+ main.c (jsc#PED-1368).
+- bpftool: Remove Makefile dep. on $(LIBBPF) for
+ $(LIBBPF_INTERNAL_HDRS) (jsc#PED-1368).
+- selftests/bpf: Split out bpf_verif_scale selftests into multiple
+ tests (jsc#PED-1368).
+- selftests/bpf: Mark tc_redirect selftest as serial
+ (jsc#PED-1368).
+- selftests/bpf: Support multiple tests per file (jsc#PED-1368).
+- selftests/bpf: Normalize selftest entry points (jsc#PED-1368).
+- docs/bpf: Update documentation for BTF_KIND_DECL_TAG typedef
+ support (jsc#PED-1368).
+- selftests/bpf: Add BTF_KIND_DECL_TAG typedef example in tag.c
+ (jsc#PED-1368).
+- selftests/bpf: Test deduplication for BTF_KIND_DECL_TAG typedef
+ (jsc#PED-1368).
+- selftests/bpf: Add BTF_KIND_DECL_TAG typedef unit tests
+ (jsc#PED-1368).
+- bpf: Add BTF_KIND_DECL_TAG typedef support (jsc#PED-1368).
+- selftests/bpf: Fix flow dissector tests (jsc#PED-1368).
+- libbpf: Use func name when pinning programs with
+ LIBBPF_STRICT_SEC_NAME (jsc#PED-1368).
+- bpf, tests: Add more LD_IMM64 tests (jsc#PED-1368).
+- libbpf: Add legacy uprobe attaching support (jsc#PED-1368).
+- libbpf: Refactor and simplify legacy kprobe code (jsc#PED-1368).
+- selftests/bpf: Adopt attach_probe selftest to work on old
+ kernels (jsc#PED-1368).
+- libbpf: Fix memory leak in legacy kprobe attach logic
+ (jsc#PED-1368).
+- commit f05c9f9
+
+- arm64: errata: Remove AES hwcap for COMPAT tasks (git-fixes)
+ Enable CONFIG_ARM64_ERRATUM_1742098 in arm64/default
+- commit fbe1536
+
+- arm64: Fix bit-shifting UB in the MIDR_CPU_MODEL() macro (git-fixes)
+- commit c70ddd5
+
+- arm64: fix rodata=full again (git-fixes)
+- commit 62260a8
+
+- selftests/bpf: Switch to new btf__type_cnt/btf__raw_data APIs
+ (jsc#PED-1368).
+- bpftool: Switch to new btf__type_cnt API (jsc#PED-1368).
+- tools/resolve_btfids: Switch to new btf__type_cnt API
+ (jsc#PED-1368).
+- perf bpf: Switch to new btf__raw_data API (jsc#PED-1368).
+- libbpf: Add btf__type_cnt() and btf__raw_data() APIs
+ (jsc#PED-1368).
+- selftests/bpf: Make perf_buffer selftests work on 4.9 kernel
+ again (jsc#PED-1368).
+- libbpf: Fix the use of aligned attribute (jsc#PED-1368).
+- selftests/bpf: Switch to ".bss"/".rodata"/".data" lookups for
+ internal maps (jsc#PED-1368).
+- libbpf: Simplify look up by name of internal maps
+ (jsc#PED-1368).
+- selftests/bpf: Demonstrate use of custom .rodata/.data sections
+ (jsc#PED-1368).
+- libbpf: Support multiple .rodata.* and .data.* BPF maps
+ (jsc#PED-1368).
+- bpftool: Improve skeleton generation for data maps without
+ DATASEC type (jsc#PED-1368).
+- bpftool: Support multiple .rodata/.data internal maps in
+ skeleton (jsc#PED-1368).
+- libbpf: Remove assumptions about uniqueness of
+ .rodata/.data/.bss maps (jsc#PED-1368).
+- libbpf: Use Elf64-specific types explicitly for dealing with
+ ELF (jsc#PED-1368).
+- libbpf: Extract ELF processing state into separate struct
+ (jsc#PED-1368).
+- libbpf: Deprecate btf__finalize_data() and move it into libbpf.c
+ (jsc#PED-1368).
+- selftests/bpf: Use nanosleep tracepoint in perf buffer test
+ (jsc#PED-1368).
+- selftests/bpf: Fix possible/online index mismatch in perf_buffer
+ test (jsc#PED-1368).
+- selftests/bpf: Add verif_stats test (jsc#PED-1368).
+- bpf: Add verified_insns to bpf_prog_info and fdinfo
+ (jsc#PED-1368).
+- libbpf: Fix ptr_is_aligned() usages (jsc#PED-1368).
+- selftests/bpf: Test bpf_skc_to_unix_sock() helper
+ (jsc#PED-1368).
+- bpf: Add bpf_skc_to_unix_sock() helper (jsc#PED-1368).
+- samples: bpf: Suppress readelf stderr when probing for BTF
+ support (jsc#PED-1368).
+- net: bpf: Switch over to memdup_user() (jsc#PED-1368).
+- libbpf: Fix dumping non-aligned __int128 (jsc#PED-1368).
+- libbpf: Fix dumping big-endian bitfields (jsc#PED-1368).
+- selftests/bpf: Use cpu_number only on arches that have it
+ (jsc#PED-1368).
+- bpf/preload: Clean up .gitignore and "clean-files" target
+ (jsc#PED-1368).
+- bpf: Silence Coverity warning for find_kfunc_desc_btf
+ (jsc#PED-1368).
+- bpftool: Turn check on zlib from a phony target into a
+ conditional error (jsc#PED-1368).
+- bpftool: Do not FORCE-build libbpf (jsc#PED-1368).
+- selftests/bpf: Switch sk_lookup selftests to strict
+ SEC("sk_lookup") use (jsc#PED-1368).
+- libbpf: Add opt-in strict BPF program section name handling
+ logic (jsc#PED-1368).
+- libbpf: Complete SEC() table unification for
+ BPF_APROG_SEC/BPF_EAPROG_SEC (jsc#PED-1368).
+- libbpf: Refactor ELF section handler definitions (jsc#PED-1368).
+- libbpf: Reduce reliance of attach_fns on sec_def internals
+ (jsc#PED-1368).
+- libbpf: Refactor internal sec_def handling to enable
+ pluggability (jsc#PED-1368).
+- Refresh patches.suse/libbpf-Support-kernel-module-function-calls.patch
+- selftests/bpf: Normalize all the rest SEC() uses (jsc#PED-1368).
+- selftests/bpf: Switch SEC("classifier*") usage to a strict
+ SEC("tc") (jsc#PED-1368).
+- commit 6e3d638
+
+- bpftool: Fix install for libbpf's internal header(s)
+ (jsc#PED-1368).
+- libbpf: Remove Makefile warnings on out-of-sync
+ netlink.h/if_link.h (jsc#PED-1368).
+- bpf: Rename BTF_KIND_TAG to BTF_KIND_DECL_TAG (jsc#PED-1368).
+- selfetest/bpf: Make some tests serial (jsc#PED-1368).
+- selftests/bpf: Fix pid check in fexit_sleep test (jsc#PED-1368).
+- selftests/bpf: Adding pid filtering for atomics test
+ (jsc#PED-1368).
+- selftests/bpf: Make cgroup_v1v2 use its own port (jsc#PED-1368).
+- selftests/bpf: Fix race condition in enable_stats
+ (jsc#PED-1368).
+- selftests/bpf: Add per worker cgroup suffix (jsc#PED-1368).
+- selftests/bpf: Allow some tests to be executed in sequence
+ (jsc#PED-1368).
+- selftests/bpf: Add parallelism to test_progs (jsc#PED-1368).
+- bpf: Support writable context for bare tracepoint
+ (jsc#PED-1368).
+- bpftool: Add install-bin target to install binary only
+ (jsc#PED-1368).
+- selftests/bpf: Better clean up for runqslower in
+ test_bpftool_build.sh (jsc#PED-1368).
+- samples/bpf: Do not FORCE-recompile libbpf (jsc#PED-1368).
+- samples/bpf: Install libbpf headers when building
+ (jsc#PED-1368).
+- samples/bpf: Update .gitignore (jsc#PED-1368).
+- bpf: iterators: Install libbpf headers when building
+ (jsc#PED-1368).
+- bpf: preload: Install libbpf headers when building
+ (jsc#PED-1368).
+- tools/runqslower: Install libbpf headers when building
+ (jsc#PED-1368).
+- tools/resolve_btfids: Install libbpf headers when building
+ (jsc#PED-1368).
+- bpftool: Install libbpf headers instead of including the dir
+ (jsc#PED-1368).
+- Refresh patches.suse/bpftool-Remove-useless-include-to-perf-sys.h-from-ma.patch
+- libbpf: Skip re-installing headers file if source is older
+ than target (jsc#PED-1368).
+- selftests/bpf: Remove SEC("version") from test progs
+ (jsc#PED-1368).
+- selftests/bpf: Skip the second half of get_branch_snapshot in vm
+ (jsc#PED-1368).
+- selftests/bpf: Switch to new bpf_object__next_{map,program}
+ APIs (jsc#PED-1368).
+- libbpf: Deprecate bpf_{map,program}__{prev,next} APIs since v0.7
+ (jsc#PED-1368).
+- libbpf: Add API documentation convention guidelines
+ (jsc#PED-1368).
+- bpf: Use $(pound) instead of \# in Makefiles (jsc#PED-1368).
+- selftests/bpf: Test new btf__add_btf() API (jsc#PED-1368).
+- selftests/bpf: Refactor btf_write selftest to reuse BTF
+ generation logic (jsc#PED-1368).
+- libbpf: Add API that copies all BTF types from one BTF object
+ to another (jsc#PED-1368).
+- bpf: Avoid retpoline for bpf_for_each_map_elem (jsc#PED-1368).
+- bpf: selftests: Add selftests for module kfunc support
+ (jsc#PED-1368).
+- libbpf: Update gen_loader to emit BTF_KIND_FUNC relocations
+ (jsc#PED-1368).
+- libbpf: Resolve invalid weak kfunc calls with imm = 0, off =
+ 0 (jsc#PED-1368).
+- libbpf: Support kernel module function calls (jsc#PED-1368).
+- bpf: Enable TCP congestion control kfunc from modules
+ (jsc#PED-1368).
+- tools: Allow specifying base BTF file in resolve_btfids
+ (jsc#PED-1368).
+- bpf: btf: Introduce helpers for dynamic BTF set registration
+ (jsc#PED-1368).
+- bpf: Be conservative while processing invalid kfunc calls
+ (jsc#PED-1368).
+- bpf: Introduce BPF support for kernel module function calls
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-Stop-caching-subprog-index-in-the-bpf_pseudo_fun.patch
+- Refresh patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch
+- selftests/bpf: Use BTF-defined key/value for map definitions
+ (jsc#PED-1368).
+- libbpf: Support uniform BTF-defined key/value specification
+ across all BPF maps (jsc#PED-1368).
+- bpf/tests: Add test of LDX_MEM with operand aliasing
+ (jsc#PED-1368).
+- bpf/tests: Add test of ALU shifts with operand register aliasing
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of BPF_ATOMIC register
+ combinations (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of ALU register combinations
+ (jsc#PED-1368).
+- bpf/tests: Minor restructuring of ALU tests (jsc#PED-1368).
+- bpf/tests: Add more tests for ALU and ATOMIC register clobbering
+ (jsc#PED-1368).
+- bpf/tests: Add tests to check source register zero-extension
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of BPF_ATOMIC magnitudes
+ (jsc#PED-1368).
+- bpf/tests: Add zero-extension checks in BPF_ATOMIC tests
+ (jsc#PED-1368).
+- bpf/tests: Add tests of BPF_LDX and BPF_STX with small sizes
+ (jsc#PED-1368).
+- selftests/bpf: Use kselftest skip code for skipped tests
+ (jsc#PED-1368).
+- libbpf: Properly ignore STT_SECTION symbols in legacy map
+ definitions (jsc#PED-1368).
+- bpf: Do not invoke the XDP dispatcher for PROG_RUN with single
+ repeat (jsc#PED-1368).
+- libbpf: Make gen_loader data aligned (jsc#PED-1368).
+- bpf: selftests: Fix fd cleanup in get_branch_snapshot
+ (jsc#PED-1368).
+- xsk: Fix clang build error in __xp_alloc (jsc#PED-1368).
+- selftests/bpf: Fix probe_user test failure with clang build
+ kernel (jsc#PED-1368).
+- bpf: Replace callers of BPF_CAST_CALL with proper function
+ typedef (jsc#PED-1368).
+- bpf: Replace "want address" users of BPF_CAST_CALL with
+ BPF_CALL_IMM (jsc#PED-1368).
+- selftests/bpf: Normalize XDP section names in selftests
+ (jsc#PED-1368).
+- Refresh patches.suse/selftests-bpf-xdp_redirect_multi-Limit-the-tests-in-.patch
+- libbpf: Add "tc" SEC_DEF which is a better name for "classifier"
+ (jsc#PED-1368).
+- bpf/tests: Add tail call limit test with external function call
+ (jsc#PED-1368).
+- bpf/tests: Fix error in tail call limit tests (jsc#PED-1368).
+- bpf/tests: Add more BPF_END byte order conversion tests
+ (jsc#PED-1368).
+- bpf/tests: Expand branch conversion JIT test (jsc#PED-1368).
+- bpf/tests: Add JMP tests with degenerate conditional
+ (jsc#PED-1368).
+- bpf/tests: Add JMP tests with small offsets (jsc#PED-1368).
+- bpf/tests: Add test case flag for verifier zero-extension
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive test of LD_IMM64 immediate magnitudes
+ (jsc#PED-1368).
+- bpf/tests: Add staggered JMP and JMP32 tests (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of JMP operand magnitudes
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of ALU operand magnitudes
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of ALU shift values
+ (jsc#PED-1368).
+- bpf/tests: Reduce memory footprint of test suite (jsc#PED-1368).
+- bpf/tests: Allow different number of runs per test case
+ (jsc#PED-1368).
+- libbpf: Ignore STT_SECTION symbols in 'maps' section
+ (jsc#PED-1368).
+- bpf: selftest: Add verifier tests for <8-byte scalar spill
+ and refill (jsc#PED-1368).
+- bpf: selftest: A bpf prog that has a 32bit scalar spill
+ (jsc#PED-1368).
+- bpf: Support <8-byte scalar spill and refill (jsc#PED-1368).
+- bpf: Check the other end of slot_type for STACK_SPILL
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- bpf: Clarify data_len param in bpf_snprintf and bpf_seq_printf
+ comments (jsc#PED-1368).
+- selftests/bpf: Add trace_vprintk test prog (jsc#PED-1368).
+- selftests/bpf: Migrate prog_tests/trace_printk CHECKs to ASSERTs
+ (jsc#PED-1368).
+- bpftool: Only probe trace_vprintk feature in 'full' mode
+ (jsc#PED-1368).
+- libbpf: Use static const fmt string in __bpf_printk
+ (jsc#PED-1368).
+- libbpf: Modify bpf_printk to choose helper based on arg count
+ (jsc#PED-1368).
+- bpf: Add bpf_trace_vprintk helper (jsc#PED-1368).
+- selftests/bpf: Stop using bpf_program__load (jsc#PED-1368).
+- bpf: Merge printk and seq_printf VARARG max macros
+ (jsc#PED-1368).
+- bpf, tests: Add tail call test suite (jsc#PED-1368).
+- bpf, tests: Add tests for BPF_CMPXCHG (jsc#PED-1368).
+- bpf, tests: Add tests for atomic operations (jsc#PED-1368).
+- bpf, tests: Add test for 32-bit context pointer argument passing
+ (jsc#PED-1368).
+- bpf, tests: Add branch conversion JIT test (jsc#PED-1368).
+- bpf, tests: Add word-order tests for load/store of double words
+ (jsc#PED-1368).
+- bpf, tests: Add tests for ALU operations implemented with
+ function calls (jsc#PED-1368).
+- bpf, tests: Add more ALU64 BPF_MUL tests (jsc#PED-1368).
+- bpf, tests: Add more BPF_LSH/RSH/ARSH tests for ALU64
+ (jsc#PED-1368).
+- bpf, tests: Add more ALU32 tests for BPF_LSH/RSH/ARSH
+ (jsc#PED-1368).
+- bpf, tests: Add more tests of ALU32 and ALU64 bitwise operations
+ (jsc#PED-1368).
+- bpf, tests: Fix typos in test case descriptions (jsc#PED-1368).
+- bpf, tests: Add BPF_MOV tests for zero and sign extension
+ (jsc#PED-1368).
+- bpf, tests: Add BPF_JMP32 test cases (jsc#PED-1368).
+- commit da02160
+
+- selftests: xsk: Add frame_headroom test (jsc#PED-1368).
+- selftests: xsk: Change interleaving of packets in unaligned mode
+ (jsc#PED-1368).
+- selftests: xsk: Add single packet test (jsc#PED-1368).
+- selftests: xsk: Introduce pacing of traffic (jsc#PED-1368).
+- selftests: xsk: Fix socket creation retry (jsc#PED-1368).
+- selftests: xsk: Put the same buffer only once in the fill ring
+ (jsc#PED-1368).
+- selftests: xsk: Fix missing initialization (jsc#PED-1368).
+- xsk: Get rid of unused entry in struct xdp_buff_xsk
+ (jsc#PED-1368).
+- selftests/bpf: Fix a few compiler warnings (jsc#PED-1368).
+- libbpf: Constify all high-level program attach APIs
+ (jsc#PED-1368).
+- libbpf: Schedule open_opts.attach_prog_fd deprecation since v0.7
+ (jsc#PED-1368).
+- selftests/bpf: Switch fexit_bpf2bpf selftest to
+ set_attach_target() API (jsc#PED-1368).
+- libbpf: Allow skipping attach_func_name in
+ bpf_program__set_attach_target() (jsc#PED-1368).
+- libbpf: Deprecated bpf_object_open_opts.relaxed_core_relocs
+ (jsc#PED-1368).
+- selftests/bpf: Stop using relaxed_core_relocs which has no
+ effect (jsc#PED-1368).
+- libbpf: Use pre-setup sec_def in libbpf_find_attach_btf_id()
+ (jsc#PED-1368).
+- bpf: Update bpf_get_smp_processor_id() documentation
+ (jsc#PED-1368).
+- libbpf: Add sphinx code documentation comments (jsc#PED-1368).
+- selftests/bpf: Skip btf_tag test if btf_tag attribute not
+ supported (jsc#PED-1368).
+- docs/bpf: Add documentation for BTF_KIND_TAG (jsc#PED-1368).
+- selftests/bpf: Add a test with a bpf program with btf_tag
+ attributes (jsc#PED-1368).
+- selftests/bpf: Test BTF_KIND_TAG for deduplication
+ (jsc#PED-1368).
+- selftests/bpf: Add BTF_KIND_TAG unit tests (jsc#PED-1368).
+- selftests/bpf: Change NAME_NTH/IS_NAME_NTH for BTF_KIND_TAG
+ format (jsc#PED-1368).
+- selftests/bpf: Test libbpf API function btf__add_tag()
+ (jsc#PED-1368).
+- bpftool: Add support for BTF_KIND_TAG (jsc#PED-1368).
+- libbpf: Add support for BTF_KIND_TAG (jsc#PED-1368).
+- libbpf: Rename btf_{hash,equal}_int to btf_{hash,equal}_int_tag
+ (jsc#PED-1368).
+- bpf: Support for new btf kind BTF_KIND_TAG (jsc#PED-1368).
+- btf: Change BTF_KIND_* macros to enums (jsc#PED-1368).
+- commit 3c45813
+
+- selftests/bpf: Fix .gitignore to not ignore test_progs.c
+ (jsc#PED-1368).
+- bpf,x64 Emit IMUL instead of MUL for x86-64 (jsc#PED-1368).
+- libbpf: Minimize explicit iterator of section definition array
+ (jsc#PED-1368).
+- libbpf: Simplify BPF program auto-attach code (jsc#PED-1368).
+- libbpf: Ensure BPF prog types are set before relocations
+ (jsc#PED-1368).
+- selftests/bpf: Update selftests to always provide "struct_ops"
+ SEC (jsc#PED-1368).
+- libbpf: Introduce legacy kprobe events support (jsc#PED-1368).
+- libbpf: Make libbpf_version.h non-auto-generated (jsc#PED-1368).
+- bpf, selftests: Replicate tailcall limit test for indirect
+ call case (jsc#PED-1368).
+- selftests/bpf: Add test for bpf_get_branch_snapshot
+ (jsc#PED-1368).
+- bpf: Introduce helper bpf_get_branch_snapshot (jsc#PED-1368).
+- perf: Enable branch record for software events (jsc#PED-1368).
+- Refresh patches.suse/ACPI-Add-perf-low-power-callback.patch
+- selftests/bpf: Test new __sk_buff field hwtstamp (jsc#PED-1368).
+- bpf: Add hardware timestamp field to __sk_buff (jsc#PED-1368).
+- commit 079b8cc
+
+- selftests: xsk: Add tests for 2K frame size (jsc#PED-1368).
+- selftests: xsk: Add tests for invalid xsk descriptors
+ (jsc#PED-1368).
+- selftests: xsk: Eliminate test specific if-statement in test
+ runner (jsc#PED-1368).
+- selftests: xsk: Add test for unaligned mode (jsc#PED-1368).
+- selftests: xsk: Introduce replacing the default packet stream
+ (jsc#PED-1368).
+- selftests: xsk: Allow for invalid packets (jsc#PED-1368).
+- selftests: xsk: Eliminate MAX_SOCKS define (jsc#PED-1368).
+- selftests: xsx: Make pthreads local scope (jsc#PED-1368).
+- selftests: xsk: Make xdp_flags and bind_flags local
+ (jsc#PED-1368).
+- selftests: xsk: Specify number of sockets to create
+ (jsc#PED-1368).
+- selftests: xsk: Replace second_step global variable
+ (jsc#PED-1368).
+- selftests: xsk: Introduce rx_on and tx_on in ifobject
+ (jsc#PED-1368).
+- selftests: xsk: Add use_poll to ifobject (jsc#PED-1368).
+- selftests: xsx: Introduce test name in test spec (jsc#PED-1368).
+- selftests: xsk: Make frame_size configurable (jsc#PED-1368).
+- selftests: xsk: Move rxqsize into xsk_socket_info
+ (jsc#PED-1368).
+- selftests: xsk: Move num_frames and frame_headroom to
+ xsk_umem_info (jsc#PED-1368).
+- selftests: xsk: Introduce test specifications (jsc#PED-1368).
+- selftests: xsk: Introduce type for thread function
+ (jsc#PED-1368).
+- selftests: xsk: Simplify xsk and umem arrays (jsc#PED-1368).
+- libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API
+ deprecations (jsc#PED-1368).
+- libbpf: Fix build with latest gcc/binutils with LTO
+ (jsc#PED-1368).
+- selftests/bpf: Add checks for X__elf_bytes() skeleton helper
+ (jsc#PED-1368).
+- bpftool: Provide a helper method for accessing skeleton's
+ embedded ELF data (jsc#PED-1368).
+- libbpf: Change bpf_object_skeleton data field to const pointer
+ (jsc#PED-1368).
+- bpf: Permit ingress_ifindex in bpf_prog_test_run_xattr
+ (jsc#PED-1368).
+- commit db25468
+
+- kabi: sk_buff.scm_io_uring (bsc#1204228 CVE-2022-2602).
+- commit 9a9bd27
+
+- scsi: scsi_transport_sas: Fix error handling in sas_phy_add()
+ (git-fixes).
+- scsi: megaraid_sas: Correct value passed to scsi_device_lookup()
+ (git-fixes).
+- scsi: qedf: Populate sysfs attributes for vport (git-fixes).
+- scsi: mpt3sas: Fix return value check of dma_get_required_mask()
+ (git-fixes).
+- commit 71fe2f3
+
+- intel_idle: make SPR C1 and C1E be independent (jsc#PED-1936).
+- commit 6f9a5d3
+
+- cpuidle: intel_idle: Drop redundant backslash at line end (jsc#PED-1936).
+- commit 593da52
+
+- cpufreq: intel_pstate: Support Sapphire Rapids OOB mode (jsc#PED-849).
+- commit 4bf905f
+
+- cpufreq: intel_pstate: Handle no_turbo in frequency invariance (jsc#PED-849).
+- commit 41e314e
+
+- intel_idle: Fix SPR C6 optimization (jsc#PED-824 jsc#PED-1936).
+- commit 29ea7f2
+
+- intel_idle: Fix the 'preferred_cstates' module parameter (jsc#PED-824 jsc#PED-1936).
+- commit 07146fb
+
+- intel_idle: Add AlderLake support (jsc#PED-824).
+- commit 6094f58
+
+- panic, kexec: make __crash_kexec() NMI safe (git-fixes).
+- kexec: turn all kexec_mutex acquisitions into trylocks
+ (git-fixes).
+- commit 1a14cb1
+
+- x86/insn-eval: Handle insn_get_opcode() failure (jsc#PED-342).
+- commit 94de1a1
+
+- s390/pai: Add support for PAI Extension 1 NNPA counters
+ (jsc#PED-1973).
+- commit a366504
+
+- s390: block/xpram include <linux/major.h> (bsc#1205381).
+- commit ad01f4b
+
+- KVM: VMX: clear vmx_x86_ops.sync_pir_to_irr if APICv is disabled
+ (bsc#1205007).
+- commit a0ddd6a
+
+- Update config files.
+- commit 6867f80
+
+- io_uring/af_unix: defer registered files gc to io_uring release
+ (bsc#1204228 CVE-2022-2602).
+- commit 52299ff
+
+- scsi: aacraid: Fix undefined behavior due to shift overflowing
+ the constant (jsc#PED-1560).
+- scsi: aacraid: Clean up some inconsistent indenting
+ (jsc#PED-1560).
+- scsi: aacraid: Move the SCSI pointer to private command data
+ (jsc#PED-1560).
+- commit 919bd0a
+
+- block: mark __bio_try_merge_page static (jsc#PED-1183).
+- iomap: simplify iomap_add_to_ioend (jsc#PED-1183).
+- iomap: simplify iomap_readpage_actor (jsc#PED-1183).
+- commit 49fac04
+
+- block: improve batched tag allocation (jsc#PED-1183).
+- sbitmap: add __sbitmap_queue_get_batch() (jsc#PED-1183).
+- blk-mq: optimise *end_request non-stat path (jsc#PED-1183).
+- block: mark bio_truncate static (jsc#PED-1183).
+- block: move bio_get_{first,last}_bvec out of bio.h
+ (jsc#PED-1183).
+- block: move bio_full out of bio.h (jsc#PED-1183).
+- block: fold bio_cur_bytes into blk_rq_cur_bytes (jsc#PED-1183).
+- block: move bio_mergeable out of bio.h (jsc#PED-1183).
+- block: don't include <linux/ioprio.h> in <linux/bio.h>
+ (jsc#PED-1183).
+- block: remove BIO_BUG_ON (jsc#PED-1183).
+- blk-mq: inline hot part of __blk_mq_sched_restart
+ (jsc#PED-1183).
+- commit bda310c
+
+- block: inline hot paths of blk_account_io_*() (jsc#PED-1183).
+- Refresh patches.suse/block-update-io_ticks-when-io-hang.patch.
+- commit 190f0ed
+
+- block: merge block_ioctl into blkdev_ioctl (jsc#PED-1183).
+- block: move the *blkdev_ioctl declarations out of blkdev.h
+ (jsc#PED-1183).
+- block: unexport blkdev_ioctl (jsc#PED-1183).
+- block: don't dereference request after flush insertion
+ (jsc#PED-1183).
+- blk-mq: cleanup blk_mq_submit_bio (jsc#PED-1183).
+- blk-mq: cleanup and rename __blk_mq_alloc_request
+ (jsc#PED-1183).
+- block: pre-allocate requests if plug is started and is a batch
+ (jsc#PED-1183).
+- commit d1bcd5e
+
+- blk-mq: Change shared sbitmap naming to shared tags
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch.
+- commit 9042063
+
+- blk-mq: Stop using pointers for blk_mq_tags bitmap tags
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/bfq-Limit-number-of-requests-consumed-by-each-cgroup.patch.
+- Refresh
+ patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch.
+- commit 0b26e0b
+
+- blk-mq: Use shared tags for shared sbitmap support
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/blk-mq-don-t-free-tags-if-the-tag_set-is-used-by-oth.patch.
+- Refresh
+ patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch.
+- commit 439e1ef
+
+- blk-mq: Refactor and rename
+ blk_mq_free_map_and_{requests->rqs}() (jsc#PED-1183).
+- Refresh
+ patches.suse/blk-mq-don-t-free-tags-if-the-tag_set-is-used-by-oth.patch.
+- commit 258a969
+
+- block: move struct request to blk-mq.h (jsc#PED-1183).
+- Refresh
+ patches.suse/block-Add-a-helper-to-validate-the-block-size.patch.
+- Refresh
+ patches.suse/block-don-t-merge-across-cgroup-boundaries-if-blkcg-.patch.
+- Refresh
+ patches.suse/block-move-the-SECTOR_SIZE-related-definitions-to-bl.patch.
+- commit 8c609f9
+
+- Update config files: enable CONFIG_NET_SOCK_MSG in s390x-zfcpdump (jsc#PED-1368)
+- commit 47cc0bc
+
+- fuse: add file_modified() to fallocate (bsc#1205332).
+- fuse: fix readdir cache race (bsc#1205331).
+- commit 75f741e
+
+- block/mq-deadline: Prioritize high-priority requests
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/block-fix-async_depth-sysfs-interface-for-mq-deadlin.patch.
+- commit f999f8f
+
+- net: phy: mscc: macsec: clear encryption keys when freeing a
+ flow (git-fixes).
+- macsec: clear encryption keys from the stack after setting up
+ offload (git-fixes).
+- macsec: fix detection of RXSCs when toggling offloading
+ (git-fixes).
+- macsec: fix secy->n_rx_sc accounting (git-fixes).
+- macsec: delete new rxsc when offload fails (git-fixes).
+- wifi: cfg80211: fix memory leak in query_regdb_file()
+ (git-fixes).
+- wifi: cfg80211: silence a sparse RCU warning (git-fixes).
+- soundwire: qcom: check for outanding writes before doing a read
+ (git-fixes).
+- soundwire: qcom: reinit broadcast completion (git-fixes).
+- phy: ralink: mt7621-pci: add sentinel to quirks table
+ (git-fixes).
+- phy: stm32: fix an error code in probe (git-fixes).
+- mtd: parsers: bcm47xxpart: Fix halfblock reads (git-fixes).
+- media: v4l: subdev: Fail graciously when getting try data for
+ NULL state (git-fixes).
+- media: meson: vdec: fix possible refcount leak in vdec_probe()
+ (git-fixes).
+- media: dvb-frontends/drxk: initialize err to 0 (git-fixes).
+- media: cros-ec-cec: limit msg.len to CEC_MAX_MSG_SIZE
+ (git-fixes).
+- media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE (git-fixes).
+- media: rkisp1: Zero v4l2_subdev_format fields in when validating
+ links (git-fixes).
+- media: rkisp1: Use correct macro for gradient registers
+ (git-fixes).
+- media: rkisp1: Initialize color space on resizer sink and
+ source pads (git-fixes).
+- media: rkisp1: Don't pass the quantization to
+ rkisp1_csm_config() (git-fixes).
+- mtd: parsers: bcm47xxpart: print correct offset on read error
+ (git-fixes).
+- video/fbdev/stifb: Implement the stifb_fillrect() function
+ (git-fixes).
+- commit 5883e57
+
+- block: move the SECTOR_SIZE related definitions to blk_types.h
+ (jsc#PED-1183).
+- commit 631102f
+
+- can: j1939: j1939_send_one(): fix missing CAN header
+ initialization (git-fixes).
+- can: af_can: fix NULL pointer dereference in can_rx_register()
+ (git-fixes).
+- hamradio: fix issue of dev reference count leakage in
+ bpq_device_event() (git-fixes).
+- efi: random: Use 'ACPI reclaim' memory for random seed
+ (git-fixes).
+- efi: random: reduce seed size to 32 bytes (git-fixes).
+- drm/i915/sdvo: Setup DDC fully before output init (git-fixes).
+- drm/i915/sdvo: Filter out invalid outputs more sensibly
+ (git-fixes).
+- drm/rockchip: dsi: Force synchronous probe (git-fixes).
+- Bluetooth: L2CAP: Fix attempting to access uninitialized memory
+ (git-fixes).
+- Bluetooth: L2CAP: Fix accepting connection request for invalid
+ SPSM (git-fixes).
+- drm/msm/hdmi: fix IRQ lifetime (git-fixes).
+- i2c: xiic: Add platform module alias (git-fixes).
+- ACPI: APEI: Fix integer overflow in ghes_estatus_pool_init()
+ (git-fixes).
+- HID: saitek: add madcatz variant of MMO7 mouse device ID
+ (git-fixes).
+- HID: playstation: add initial DualSense Edge controller support
+ (git-fixes).
+- drm/amdgpu: set vm_update_mode=0 as default for Sienna Cichlid
+ in SRIOV case (git-fixes).
+- drm/msm/hdmi: Remove spurious IRQF_ONESHOT flag (git-fixes).
+- commit 5a3b429
+
+- selftests/bpf: Fix test_core_reloc_mods on big-endian machines
+ (jsc#PED-1368).
+- selftests/bpf: Use recv_timeout() instead of retries
+ (jsc#PED-1368).
+- skmsg: Extract and reuse sk_msg_is_readable() (jsc#PED-1368).
+- Refresh patches.suse/bpf-sockmap-Remove-unhash-handler-for-BPF-sockmap-us.patch
+- net: Rename ->stream_memory_read to ->sock_is_readable
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-sockmap-Remove-unhash-handler-for-BPF-sockmap-us.patch
+- samples/bpf: Relicense bpf_insn.h as GPL-2.0-only OR
+ BSD-2-Clause (jsc#PED-1368).
+- samples: bpf: Fix vmlinux.h generation for XDP samples
+ (jsc#PED-1368).
+- bpf, selftests: Add test case for mixed cgroup v1/v2
+ (jsc#PED-1368).
+- bpf, selftests: Add cgroup v1 net_cls classid helpers
+ (jsc#PED-1368).
+- selftests/bpf: Fix build of task_pt_regs test for arm64
+ (jsc#PED-1368).
+- bpf: Relicense disassembler as GPL-2.0-only OR BSD-2-Clause
+ (jsc#PED-1368).
+- selftests/bpf: Test XDP bonding nest and unwind (jsc#PED-1368).
+- perf trace: Update cmd string table to decode sys_bpf first arg
+ (jsc#PED-1368).
+- samples: bpf: Fix uninitialized variable in xdp_redirect_cpu
+ (jsc#PED-1368).
+- selftests/bpf: Reduce more flakyness in sockmap_listen
+ (jsc#PED-1368).
+- bpf: Fix bpf-next builds without CONFIG_BPF_EVENTS
+ (jsc#PED-1368).
+- bpf: selftests: Add dctcp fallback test (jsc#PED-1368).
+- bpf: selftests: Add connect_to_fd_opts to network_helpers
+ (jsc#PED-1368).
+- bpf: selftests: Add sk_state to bpf_tcp_helpers.h
+ (jsc#PED-1368).
+- bpf: tcp: Allow bpf-tcp-cc to call bpf_(get|set)sockopt
+ (jsc#PED-1368).
+- selftests: xsk: Preface options with opt (jsc#PED-1368).
+- selftests: xsk: Make enums lower case (jsc#PED-1368).
+- selftests: xsk: Generate packets from specification
+ (jsc#PED-1368).
+- selftests: xsk: Generate packet directly in umem (jsc#PED-1368).
+- selftests: xsk: Simplify cleanup of ifobjects (jsc#PED-1368).
+- selftests: xsk: Decrease sending speed (jsc#PED-1368).
+- selftests: xsk: Validate tx stats on tx thread (jsc#PED-1368).
+- selftests: xsk: Simplify packet validation in xsk tests
+ (jsc#PED-1368).
+- selftests: xsk: Rename worker_* functions that are not thread
+ entry points (jsc#PED-1368).
+- selftests: xsk: Disassociate umem size with packets sent
+ (jsc#PED-1368).
+- selftests: xsk: Remove end-of-test packet (jsc#PED-1368).
+- selftests: xsk: Simplify the retry code (jsc#PED-1368).
+- selftests: xsk: Return correct error codes (jsc#PED-1368).
+- selftests: xsk: Remove unused variables (jsc#PED-1368).
+- selftests: xsk: Remove the num_tx_packets option (jsc#PED-1368).
+- selftests: xsk: Remove color mode (jsc#PED-1368).
+- bpf: selftests: Add bpf_task_pt_regs() selftest (jsc#PED-1368).
+- bpf: Add bpf_task_pt_regs() helper (jsc#PED-1368).
+- bpf: Extend bpf_base_func_proto helpers with
+ bpf_get_current_task_btf() (jsc#PED-1368).
+- bpf: Consolidate task_struct BTF_ID declarations (jsc#PED-1368).
+- bpf: Add BTF_ID_LIST_GLOBAL_SINGLE macro (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_map_multi to XDP samples
+ helper (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_map_multi_kern.o to XDP
+ samples helper (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_map to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_map_kern.o to XDP samples
+ helper (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_cpu to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_cpu_kern.o to XDP samples
+ helper (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_kern.o to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_monitor to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_monitor_kern.o to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Add vmlinux.h generation support (jsc#PED-1368).
+- samples: bpf: Add devmap_xmit tracepoint statistics support
+ (jsc#PED-1368).
+- samples: bpf: Add BPF support for devmap_xmit tracepoint
+ (jsc#PED-1368).
+- samples: bpf: Add cpumap tracepoint statistics support
+ (jsc#PED-1368).
+- samples: bpf: Add BPF support for cpumap tracepoints
+ (jsc#PED-1368).
+- samples: bpf: Add xdp_exception tracepoint statistics support
+ (jsc#PED-1368).
+- samples: bpf: Add BPF support for xdp_exception tracepoint
+ (jsc#PED-1368).
+- samples: bpf: Add redirect tracepoint statistics support
+ (jsc#PED-1368).
+- samples: bpf: Add BPF support for redirect tracepoint
+ (jsc#PED-1368).
+- samples: bpf: Add basic infrastructure for XDP samples
+ (jsc#PED-1368).
+- tools: include: Add ethtool_drvinfo definition to UAPI header
+ (jsc#PED-1368).
+- samples: bpf: Fix a couple of warnings (jsc#PED-1368).
+- selftests/bpf: Test for get_netns_cookie (jsc#PED-1368).
+- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_SK_MSG
+ (jsc#PED-1368).
+- selftests/bpf: Exit with KSFT_SKIP if no Makefile found
+ (jsc#PED-1368).
+- selftests/bpf: Add missing files required by test_bpftool.sh
+ for installing (jsc#PED-1368).
+- selftests/bpf: Add default bpftool built by selftests to PATH
+ (jsc#PED-1368).
+- selftests/bpf: Make test_doc_build.sh work from script directory
+ (jsc#PED-1368).
+- selftests/bpf: Reduce flakyness in timer_mim (jsc#PED-1368).
+- bpf: Migrate cgroup_bpf to internal cgroup_bpf_attach_type enum
+ (jsc#PED-1368).
+- selftests/bpf: Add tests for {set|get} socket option from
+ setsockopt BPF (jsc#PED-1368).
+- bpf: Add support for {set|get} socket options from setsockopt
+ BPF (jsc#PED-1368).
+- selftests/bpf: Adding delay in socketmap_listen to reduce
+ flakyness (jsc#PED-1368).
+- bpf: Fix NULL event->prog pointer access in bpf_overflow_handler
+ (jsc#PED-1368).
+- bpf: Undo off-by-one in interpreter tail call count limit
+ (jsc#PED-1368).
+- selftests/bpf: Test for get_netns_cookie (jsc#PED-1368).
+- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_SOCK_OPS
+ (jsc#PED-1368).
+- bpf: Remove redundant initialization of variable allow
+ (jsc#PED-1368).
+- selftests/bpf: Replace CHECK with ASSERT_* macros in
+ send_signal.c (jsc#PED-1368).
+- Refresh patches.suse/selftests-bpf-Fix-flaky-send_signal-test.patch
+- selftests/bpf: Support glob matching for test selector
+ (jsc#PED-1368).
+- selftests/bpf: Also print test name in subtest status message
+ (jsc#PED-1368).
+- selftests/bpf: Skip loading bpf_testmod when using -l to list
+ tests (jsc#PED-1368).
+- selftests/bpf: Add exponential backoff to map_delete_retriable
+ in test_maps (jsc#PED-1368).
+- selftests/bpf: Add exponential backoff to map_update_retriable
+ in test_maps (jsc#PED-1368).
+- selftest/bpf: Add new tests in sockmap for unix stream to tcp
+ (jsc#PED-1368).
+- selftest/bpf: Change udp to inet in some function names
+ (jsc#PED-1368).
+- selftest/bpf: Add tests for sockmap with unix stream type
+ (jsc#PED-1368).
+- af_unix: Add read_sock for stream socket types (jsc#PED-1368).
+- selftests/bpf: Test btf__load_vmlinux_btf/btf__load_module_btf
+ APIs (jsc#PED-1368).
+- bpf: Reconfigure libbpf docs to remove unversioned API
+ (jsc#PED-1368).
+- selftests/bpf: Add ref_ctr_offset selftests (jsc#PED-1368).
+- libbpf: Add uprobe ref counter offset support for USDT
+ semaphores (jsc#PED-1368).
+- selftests/bpf: Add bpf_cookie selftests for high-level APIs
+ (jsc#PED-1368).
+- selftests/bpf: Extract uprobe-related helpers into
+ trace_helpers.{c,h} (jsc#PED-1368).
+- selftests/bpf: Test low-level perf BPF link API (jsc#PED-1368).
+- libbpf: Add bpf_cookie to perf_event, kprobe, uprobe, and tp
+ attach APIs (jsc#PED-1368).
+- libbpf: Add bpf_cookie support to bpf_link_create() API
+ (jsc#PED-1368).
+- libbpf: Use BPF perf link when supported by kernel
+ (jsc#PED-1368).
+- libbpf: Remove unused bpf_link's destroy operation, but add
+ dealloc (jsc#PED-1368).
+- bpf: Add bpf_get_attach_cookie() BPF helper to access bpf_cookie
+ value (jsc#PED-1368).
+- bpf: Allow to specify user-provided bpf_cookie for BPF perf
+ links (jsc#PED-1368).
+- bpf: Implement minimal BPF perf link (jsc#PED-1368).
+- bpf: Refactor perf_event_set_bpf_prog() to use struct bpf_prog
+ input (jsc#PED-1368).
+- bpf: Refactor BPF_PROG_RUN_ARRAY family of macros into functions
+ (jsc#PED-1368).
+- bpf: Refactor BPF_PROG_RUN into a function (jsc#PED-1368).
+- Refresh patches.suse/bpf-Avoid-races-in-__bpf_prog_run-for-32bit-arches.patch
+- selftest/bpf: Extend the bpf_snprintf() test for "%c"
+ (jsc#PED-1368).
+- selftest/bpf: Implement sample UNIX domain socket iterator
+ program (jsc#PED-1368).
+- bpf: Support "%c" in bpf_bprintf_prepare() (jsc#PED-1368).
+- bpf: af_unix: Implement BPF iterator for UNIX domain socket
+ (jsc#PED-1368).
+- selftests/bpf: Verify bpf_get_netns_cookie in
+ BPF_PROG_TYPE_CGROUP_SOCKOPT (jsc#PED-1368).
+- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_CGROUP_SOCKOPT
+ (jsc#PED-1368).
+- libbpf: Support weak typed ksyms (jsc#PED-1368).
+- Refresh patches.suse/bpf-selftests-Test-PTR_TO_RDONLY_MEM.patch
+- selftests/bpf: Fix running of XDP bonding tests (jsc#PED-1368).
+- net: in_irq() cleanup (jsc#PED-1368).
+- selftests/bpf: Add tests for XDP bonding (jsc#PED-1368).
+- net, core: Allow netdev_lower_get_next_private_rcu in bh context
+ (jsc#PED-1368).
+- net, bonding: Add XDP support to the bonding driver
+ (jsc#PED-1368).
+- net, core: Add support for XDP redirection to slave device
+ (jsc#PED-1368).
+- net, bonding: Refactor bond_xmit_hash for use with xdp_buff
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Remove forward declaration of
+ ip_fast_csum() (jsc#PED-1368).
+- samples/bpf: xdpsock: Make the sample more useful outside the
+ tree (jsc#PED-1368).
+- selftests/bpf: Rename reference_tracking BPF programs
+ (jsc#PED-1368).
+- selftests/bpf: Move netcnt test under test_progs (jsc#PED-1368).
+- bpf, unix: Check socket type in unix_bpf_update_proto()
+ (jsc#PED-1368).
+- bpf: Fix off-by-one in tail call count limiting (jsc#PED-1368).
+- selftests/bpf: Update bpftool's consistency script for checking
+ options (jsc#PED-1368).
+- tools: bpftool: Complete and synchronise attach or map types
+ (jsc#PED-1368).
+- Refresh patches.suse/tools-bpftool-Complete-metrics-list-in-bpftool-prog-.patch
+- Refresh patches.suse/tools-bpftool-Document-and-add-bash-completion-for-L.patch
+- Refresh patches.suse/tools-bpftool-Update-and-synchronise-option-list-in-.patch
+- selftests/bpf: Check consistency between bpftool source, doc,
+ completion (jsc#PED-1368).
+- tools: bpftool: Slightly ease bash completion updates
+ (jsc#PED-1368).
+- libbpf: Add btf__load_vmlinux_btf/btf__load_module_btf
+ (jsc#PED-1368).
+- tools: bpftool: Support dumping split BTF by id (jsc#PED-1368).
+- libbpf: Add split BTF support for btf__load_from_kernel_by_id()
+ (jsc#PED-1368).
+- tools: Replace btf__get_from_id() with
+ btf__load_from_kernel_by_id() (jsc#PED-1368).
+- libbpf: Rename btf__get_from_id() as
+ btf__load_from_kernel_by_id() (jsc#PED-1368).
+- libbpf: Rename btf__load() as btf__load_into_kernel()
+ (jsc#PED-1368).
+- bpf: Emit better log message if bpf_iter ctx arg btf_id == 0
+ (jsc#PED-1368).
+- tools/resolve_btfids: Emit warnings and patch zero id for
+ missing symbols (jsc#PED-1368).
+- bpf: Increase supported cgroup storage value size
+ (jsc#PED-1368).
+- libbpf: Fix comment typo (jsc#PED-1368).
+- samples: bpf: Add the omitted xdp samples to .gitignore
+ (jsc#PED-1368).
+- selftests/bpf: Use ping6 only if available in tc_redirect
+ (jsc#PED-1368).
+- libbpf: Split CO-RE logic into relo_core.c (jsc#PED-1368).
+- libbpf: Move CO-RE types into relo_core.h (jsc#PED-1368).
+- libbpf: Split bpf_core_apply_relo() into bpf_program independent
+ helper (jsc#PED-1368).
+- libbpf: Cleanup the layering between CORE and bpf_program
+ (jsc#PED-1368).
+- selftests/bpf: Document vmtest.sh dependencies (jsc#PED-1368).
+- libbpf: Add bpf_map__pin_path function (jsc#PED-1368).
+- bpf: selftest: Test batching and bpf_(get|set)sockopt in bpf
+ tcp iter (jsc#PED-1368).
+- bpf: tcp: Support bpf_(get|set)sockopt in bpf tcp iter
+ (jsc#PED-1368).
+- bpf: tcp: Bpf iter batching and lock_sock (jsc#PED-1368).
+- tcp: seq_file: Replace listening_hash with lhash2
+ (jsc#PED-1368).
+- tcp: seq_file: Add listening_get_first() (jsc#PED-1368).
+- bpf: tcp: seq_file: Remove bpf_seq_afinfo from tcp_iter_state
+ (jsc#PED-1368).
+- tcp: seq_file: Refactor net and family matching (jsc#PED-1368).
+- libbpf: Export bpf_program__attach_kprobe_opts function
+ (jsc#PED-1368).
+- libbpf: Allow decimal offset for kprobes (jsc#PED-1368).
+- libbpf: Fix func leak in attach_kprobe (jsc#PED-1368).
+- selftests/bpf: Mute expected invalid map creation error msg
+ (jsc#PED-1368).
+- bpf: Remove redundant intiialization of variable stype
+ (jsc#PED-1368).
+- bpf: Fix pointer cast warning (jsc#PED-1368).
+- libbpf: Propagate errors when retrieving enum value for typed
+ data display (jsc#PED-1368).
+- selftests/bpf: Add __int128-specific tests for typed data dump
+ (jsc#PED-1368).
+- libbpf: Avoid use of __int128 in typed dump display
+ (jsc#PED-1368).
+- selftests, bpf: test_tc_tunnel.sh nc: Cannot use -p and -l
+ (jsc#PED-1368).
+- selftests/bpf: Check inner map deletion (jsc#PED-1368).
+- libbpf: Btf typed dump does not need to allocate dump data
+ (jsc#PED-1368).
+- libbpf: Fix compilation errors on ppc64le for btf dump typed
+ data (jsc#PED-1368).
+- libbpf: Clarify/fix unaligned data issues for btf typed dump
+ (jsc#PED-1368).
+- selftests/bpf: Add dump type data tests to btf dump tests
+ (jsc#PED-1368).
+- selftests/bpf: Add ASSERT_STRNEQ() variant for test_progs
+ (jsc#PED-1368).
+- libbpf: BTF dumper support for typed data (jsc#PED-1368).
+- selftests/bpf: Switch existing selftests to using open_opts
+ for custom BTF (jsc#PED-1368).
+- libbpf: Introduce 'btf_custom_path' to 'bpf_obj_open_opts'
+ (jsc#PED-1368).
+- selftests/bpf: Add test cases for redirection between udp and
+ unix (jsc#PED-1368).
+- selftests/bpf: Add a test case for unix sockmap (jsc#PED-1368).
+- selftests/bpf: Factor out add_to_sockmap() (jsc#PED-1368).
+- selftests/bpf: Factor out udp_socketpair() (jsc#PED-1368).
+- af_unix: Implement unix_dgram_bpf_recvmsg() (jsc#PED-1368).
+- af_unix: Implement ->psock_update_sk_prot() (jsc#PED-1368).
+- af_unix: Add a dummy ->close() for sockmap (jsc#PED-1368).
+- af_unix: Set TCP_ESTABLISHED for datagram sockets too
+ (jsc#PED-1368).
+- af_unix: Implement ->read_sock() for sockmap (jsc#PED-1368).
+- sock_map: Lift socket state restriction for datagram sockets
+ (jsc#PED-1368).
+- sock_map: Relax config dependency to CONFIG_NET (jsc#PED-1368).
+- Refesh patches.suse/of-net-move-of_net-under-net.patch
+- selftests/bpf: Add test for bpf_get_func_ip in kprobe+offset
+ probe (jsc#PED-1368).
+- libbpf: Allow specification of "kprobe/function+offset"
+ (jsc#PED-1368).
+- libbpf: Add bpf_program__attach_kprobe_opts function
+ (jsc#PED-1368).
+- selftests/bpf: Add test for bpf_get_func_ip helper
+ (jsc#PED-1368).
+- bpf: Add bpf_get_func_ip helper for kprobe programs
+ (jsc#PED-1368).
+- bpf: Add bpf_get_func_ip helper for tracing programs
+ (jsc#PED-1368).
+- bpf: Enable BPF_TRAMP_F_IP_ARG for trampolines with
+ call_get_func_ip (jsc#PED-1368).
+- bpf, x86: Store caller's ip in trampoline stack (jsc#PED-1368).
+- Refresh patches.suse/bpf-Handle-return-value-of-BPF_PROG_TYPE_STRUCT_OPS-.patch
+- selftests/bpf: Add a test with bpf_timer in inner map
+ (jsc#PED-1368).
+- selftests/bpf: Add bpf_timer test (jsc#PED-1368).
+- bpf: Teach stack depth check about async callbacks
+ (jsc#PED-1368).
+- bpf: Implement verifier support for validation of async
+ callbacks (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- bpf: Relax verifier recursion check (jsc#PED-1368).
+- bpf: Remember BTF of inner maps (jsc#PED-1368).
+- bpf: Prevent pointer mismatch in bpf_timer_init (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- Refresh patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch
+- bpf: Add map side support for bpf timers (jsc#PED-1368).
+- bpf: Introduce bpf timers (jsc#PED-1368).
+- Refresh patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch
+- Refresh patches.suse/bpf-Replace-ARG_XXX_OR_NULL-with-ARG_XXX-PTR_MAYBE_N.patch
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- Refresh patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch
+- bpf: Factor out bpf_spin_lock into helpers (jsc#PED-1368).
+- bpf: Prepare bpf_prog_put() to be called from irq context
+ (jsc#PED-1368).
+- samples/bpf: xdp_redirect_cpu_user: Cpumap qsize set larger
+ default (jsc#PED-1368).
+- bpf: Tidy xdp attach selftests (jsc#PED-1368).
+- selftests/bpf: Add test for xdp_md context in BPF_PROG_TEST_RUN
+ (jsc#PED-1368).
+- bpf: Support specifying ingress via xdp_md context in
+ BPF_PROG_TEST_RUN (jsc#PED-1368).
+- bpf: Support input xdp_md context in BPF_PROG_TEST_RUN
+ (jsc#PED-1368).
+- commit e693794
+
+- net: phy: mxl-gpy: add temperature sensor (jsc#PED-829).
+- Update config files.
+- supported.conf: added lib/polynomial.ko
+- commit 60a46b1
+
+- x86/fpu: Drop fpregs lock before inheriting FPU permissions
+ (bnc#1205282).
+- commit bbde2ef
+
+- mac80211: mesh: clean up rx_bcn_presp API (git-fixes).
+- Refresh
+ patches.suse/mac80211-always-allocate-struct-ieee802_11_elems.patch.
+- commit ffa0643
+
+- blacklist.conf: cleanup designed to break kABI
+- commit e1ca2ce
+
+- net/mlx5: Add MACsec offload Tx command support (jsc#PED-1549).
+- Update config files.
+- commit d527e6d
+
+- blacklist.conf: cleanup designed to break kABI
+- commit 3471afe
+
+- net/mlx5e: Validate striding RQ before enabling XDP
+ (jsc#PED-1549).
+- Refresh
+ patches.suse/s390-Fix-mlx5-RoCE-throuput-degradtion.patch.
+- commit af8a650
+
+- RDMA/rxe: Cleanup rxe_pool_entry (jsc#PED-1111).
+- Refresh patches.suse/RDMA-rxe-Fix-rnr-retry-behavior.patch.
+- commit 817ae4c
+
+- PM: core: Add EXPORT[_GPL]_SIMPLE_DEV_PM_OPS macros (git-fixes).
+- commit 652c0d1
+
+- RDMA/rxe: Remove qp->grp_lock and qp->grp_list (jsc#PED-1111).
+- Refresh
+ patches.suse/RDMA-rxe-Fix-error-unwind-in-rxe_create_qp.patch.
+- commit 30d623b
+
+- PM: core: Remove static qualifier in DEFINE_SIMPLE_DEV_PM_OPS
+ macro (git-fixes).
+- commit 34f1483
+
+- mmc: mxc: Use the new PM macros (git-fixes).
+- commit 1480bad
+
+- mmc: jz4740: Use the new PM macros (git-fixes).
+- commit 0e7751d
+
+- PM: runtime: Capture device status before disabling runtime PM
+ (git-fixes).
+- commit 533efbb
+
+- sfc: Fix an error handling path in efx_pci_probe()
+ (jsc#PED-1565).
+- RDMA/qedr: clean up work queue on failure in
+ qedr_alloc_resources() (jsc#PED-1529).
+- RDMA/rxe: Fix mr leak in RESPST_ERR_RNR (jsc#PED-1111).
+- net/mlx5e: Fix macsec sci endianness at rx sa update
+ (jsc#PED-1549).
+- net/mlx5e: Fix wrong bitwise comparison usage in
+ macsec_fs_rx_add_rule function (jsc#PED-1549).
+- net/mlx5e: Fix macsec rx security association (SA) update/delete
+ (jsc#PED-1549).
+- net/mlx5e: Fix macsec coverity issue at rx sa update
+ (jsc#PED-1549).
+- net/mlx5: Fix crash during sync firmware reset (jsc#PED-1549).
+- net/mlx5: Update fw fatal reporter state on PCI handlers
+ successful recover (jsc#PED-1549).
+- net/mlx5e: TC, Fix cloned flow attr instance dests are not
+ zeroed (jsc#PED-1549).
+- net/mlx5e: TC, Reject forwarding from internal port to internal
+ port (jsc#PED-1549).
+- net/mlx5: Fix possible use-after-free in async command interface
+ (jsc#PED-1549).
+- net/mlx5: ASO, Create the ASO SQ with the correct timestamp
+ format (jsc#PED-1549).
+- net/mlx5e: Update restore chain id for slow path packets
+ (jsc#PED-1549).
+- net/mlx5e: Extend SKB room check to include PTP-SQ
+ (jsc#PED-1549).
+- net/mlx5: DR, Fix matcher disconnect error flow (jsc#PED-1549).
+- net/mlx5: Wait for firmware to enable CRS before
+ pci_restore_state (jsc#PED-1549).
+- net/mlx5e: Do not increment ESN when updating IPsec ESN state
+ (jsc#PED-1549).
+- i40e: Fix flow-type by setting GL_HASH_INSET registers
+ (jsc#PED-372).
+- i40e: Fix VF hang when reset is triggered on another VF
+ (jsc#PED-372).
+- i40e: Fix ethtool rx-flow-hash setting for X722 (jsc#PED-372).
+- net/mlx5e: Cleanup MACsec uninitialization routine
+ (jsc#PED-1549).
+- sfc: include vport_id in filter spec hash and equal()
+ (jsc#PED-1565).
+- bnxt_en: fix memory leak in bnxt_nvm_test() (jsc#PED-1495).
+- sfc: Change VF mac via PF as first preference if available
+ (jsc#PED-1565).
+- i40e: Fix DMA mappings leak (jsc#PED-372).
+- net/mlx5: Make ASO poll CQ usable in atomic context
+ (jsc#PED-1549).
+- scsi: qedf: Populate sysfs attributes for vport (jsc#PED-1524).
+- RDMA/rxe: Remove error/warning messages from packet receiver
+ path (jsc#PED-1111).
+- RDMA/rxe: Remove redundant num_sge fields (jsc#PED-1111).
+- RDMA/mlx5: Enable ATS support for MRs and umems (jsc#PED-1552).
+- RDMA/mlx5: Add support for dmabuf to devx umem (jsc#PED-1552).
+- RDMA/core: Add UVERBS_ATTR_RAW_FD (jsc#PED-1552).
+- net/mlx5: Add IFC bits for mkey ATS (jsc#PED-1549).
+- RDMA/rxe: Set pd early in mr alloc routines (jsc#PED-1111).
+- RDMA/rxe: Add send_common_ack() helper (jsc#PED-1111).
+- RDMA/rxe: Use members of generic struct in rxe_mr
+ (jsc#PED-1111).
+- IB: Set IOVA/LENGTH on IB_MR in core/uverbs layers
+ (jsc#PED-1547).
+- RDMA/mlx5: Remove duplicate assignment in umr_rereg_pas()
+ (jsc#PED-1552).
+- RDMA/rxe: convert pr_warn to pr_debug (jsc#PED-1111).
+- RDMA/rxe: use %u to print u32 variables (jsc#PED-1111).
+- IB/mlx5: Support querying eswitch functions from DEVX
+ (jsc#PED-1552).
+- RDMA/siw: Add missing Kconfig selections (jsc#PED-1503).
+- RDMA/rxe: Delete error messages triggered by incoming Read
+ requests (jsc#PED-1111).
+- RDMA/rxe: Remove the unused variable obj (jsc#PED-1111).
+- RDMA/rxe: Remove an unused member from struct rxe_mr
+ (jsc#PED-1111).
+- IB/mlx5: Remove duplicate header inclusion related to ODP
+ (jsc#PED-1552).
+- IB/mlx5: Call io_stop_wc() after writing to WC MMIO
+ (jsc#PED-1552).
+- net/mlx5: E-Switch, Return EBUSY if can't get mode lock
+ (jsc#PED-1549).
+- net/mlx5: E-switch, Don't update group if qos is not enabled
+ (jsc#PED-1549).
+- net/mlx5: E-Switch, Allow offloading fwd dest flow table with
+ vport (jsc#PED-1549).
+- net/mlx5: Set default grace period based on function type
+ (jsc#PED-1549).
+- net/mlx5: Start health poll at earlier stage of driver load
+ (jsc#PED-1549).
+- net/mlx5e: Expose rx_oversize_pkts_buffer counter
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Optimize for unaligned mode with 3072-byte
+ frames (jsc#PED-1549).
+- net/mlx5e: xsk: Print a warning in slow configurations
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use KLM to protect frame overrun in unaligned
+ mode (jsc#PED-1549).
+- net/mlx5e: Improve MTT/KSM alignment (jsc#PED-1549).
+- net/mlx5e: xsk: Use umr_mode to calculate striding RQ parameters
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Improve need_wakeup logic (jsc#PED-1549).
+- net/mlx5e: xsk: Include XSK skb_from_cqe callbacks in
+ INDIRECT_CALL (jsc#PED-1549).
+- net/mlx5e: xsk: Set napi_id to support busy polling
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Flush RQ on XSK activation to save memory
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use queue indices starting from 0 for XSK queues
+ (jsc#PED-1549).
+- net/mlx5e: Introduce the mlx5e_flush_rq function (jsc#PED-1549).
+- net/mlx5e: xsk: Support XDP metadata on XSK RQs (jsc#PED-1549).
+- net/mlx5e: Optimize RQ page deallocation (jsc#PED-1549).
+- net/mlx5e: Call mlx5e_page_release_dynamic directly where
+ possible (jsc#PED-1549).
+- net/mlx5e: Use non-XSK page allocator in SHAMPO (jsc#PED-1549).
+- net/mlx5e: xsk: Use xsk_buff_alloc_batch on striding RQ
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use xsk_buff_alloc_batch on legacy RQ
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Split out WQE allocation for legacy XSK RQ
+ (jsc#PED-1549).
+- net/mlx5e: Remove the outer loop when allocating legacy RQ WQEs
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use partial batches in legacy RQ with XSK
+ (jsc#PED-1549).
+- net/mlx5e: Use partial batches in legacy RQ (jsc#PED-1549).
+- net/mlx5e: Make the wqe_index_mask calculation more exact
+ (jsc#PED-1549).
+- net/mlx5e: Introduce wqe_index_mask for legacy RQ
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Drop the check for XSK state in mlx5e_xsk_wakeup
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use mlx5e_trigger_napi_icosq for XSK wakeup
+ (jsc#PED-1549).
+- net/mlx5e: Clean up and fix error flows in mlx5e_alloc_rq
+ (jsc#PED-1549).
+- net/mlx5e: Move repeating clear_bit in
+ mlx5e_rx_reporter_err_rq_cqe_recover (jsc#PED-1549).
+- net/mlx5e: Split out channel (de)activation in rx_res
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Remove mlx5e_xsk_page_alloc_pool (jsc#PED-1549).
+- net/mlx5e: Convert struct mlx5e_alloc_unit to a union
+ (jsc#PED-1549).
+- net/mlx5e: Remove DMA address from mlx5e_alloc_unit
+ (jsc#PED-1549).
+- net/mlx5e: Rename mlx5e_dma_info to prepare for removal of
+ DMA address (jsc#PED-1549).
+- net/mlx5e: Optimize the page cache reducing its size 2x
+ (jsc#PED-1549).
+- net/mlx5e: Fix calculations for ICOSQ size (jsc#PED-1549).
+- net/mlx5e: xsk: Use KSM for unaligned XSK (jsc#PED-1549).
+- net/mlx5: Add MLX5_FLEXIBLE_INLEN to safely calculate cmd inlen
+ (jsc#PED-1549).
+- net/mlx5e: Keep a separate MKey for striding RQ (jsc#PED-1549).
+- net/mlx5e: xsk: Use XSK frame size as striding RQ page size
+ (jsc#PED-1549).
+- net/mlx5e: Use runtime page_shift for striding RQ
+ (jsc#PED-1549).
+- xsk: Expose min chunk size to drivers (jsc#PED-1549).
+- net/mlx5: Fix spelling mistake "syndrom" -> "syndrome"
+ (jsc#PED-1549).
+- bnx2: Fix spelling mistake "bufferred" -> "buffered"
+ (jsc#PED-1187).
+- ice: Add support for VLAN priority filters in switchdev
+ (jsc#PED-376).
+- ice: support features on new E810T variants (jsc#PED-376).
+- ice: Merge pin initialization of E810 and E810T adapters
+ (jsc#PED-376).
+- net/mlx5e: Use runtime values of striding RQ parameters in
+ datapath (jsc#PED-1549).
+- net/mlx5e: Make dma_info array dynamic in struct mlx5e_mpw_info
+ (jsc#PED-1549).
+- net/mlx5e: Improve the MTU change shortcut (jsc#PED-1549).
+- net/mlx5e: xsk: Fix SKB headroom calculation in validation
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Remove dead code in validation (jsc#PED-1549).
+- net/mlx5e: Simplify stride size calculation for linear RQ
+ (jsc#PED-1549).
+- net/mlx5e: kTLS, Check ICOSQ WQE size in advance (jsc#PED-1549).
+- net/mlx5e: Use the aligned max TX MPWQE size (jsc#PED-1549).
+- net/mlx5e: Fix a typo in mlx5e_xdp_mpwqe_is_full (jsc#PED-1549).
+- net/mlx5e: Use mlx5e_stop_room_for_max_wqe where appropriate
+ (jsc#PED-1549).
+- net/mlx5e: Let mlx5e_get_sw_max_sq_mpw_wqebbs accept mdev
+ (jsc#PED-1549).
+- net/mlx5e: Make mlx5e_verify_rx_mpwqe_strides static
+ (jsc#PED-1549).
+- net/mlx5e: Remove unused fields from datapath structs
+ (jsc#PED-1549).
+- net/mlx5e: Convert mlx5e_get_max_sq_wqebbs to u8 (jsc#PED-1549).
+- net/mlx5: Add the log_min_mkey_entity_size capability
+ (jsc#PED-1549).
+- net/mlx5: Remove from FPGA IFC file not-needed definitions
+ (jsc#PED-1549).
+- net/mlx5: Remove unused structs (jsc#PED-1549).
+- net/mlx5: Remove unused functions (jsc#PED-1549).
+- net/mlx5: detect and enable bypass port select flow table
+ (jsc#PED-1549).
+- net/mlx5: Lag, enable hash mode by default for all NICs
+ (jsc#PED-1549).
+- net/mlx5: Lag, set active ports if support bypass port select
+ flow table (jsc#PED-1549).
+- RDMA/mlx5: Don't set tx affinity when lag is in hash mode
+ (jsc#PED-1549).
+- net/mlx5: add IFC bits for bypassing port select flow table
+ (jsc#PED-1549).
+- net/mlx5: Add support for NPPS with real time mode
+ (jsc#PED-1549).
+- net/mlx5: Expose NPPS related registers (jsc#PED-1549).
+- net/mlx5: Query ADV_VIRTUALIZATION capabilities (jsc#PED-1549).
+- net/mlx5: Introduce ifc bits for page tracker (jsc#PED-1549).
+- RDMA/mlx5: Move function mlx5_core_query_ib_ppcnt() to mlx5_ib
+ (jsc#PED-1549).
+- sfc: bare bones TC offload on EF100 (jsc#PED-1565).
+- sfc: interrogate MAE capabilities at probe time (jsc#PED-1565).
+- sfc: add a hashtable for offloaded TC rules (jsc#PED-1565).
+- sfc: optional logging of TC offload errors (jsc#PED-1565).
+- sfc: bind indirect blocks for TC offload on EF100
+ (jsc#PED-1565).
+- sfc: bind blocks for TC offload on EF100 (jsc#PED-1565).
+- ice: reorder PF/representor devlink port register/unregister
+ flows (jsc#PED-376).
+- macsec: don't free NULL metadata_dst (jsc#PED-1549).
+- net: macsec: remove the prepare flag from the MACsec offloading
+ context (jsc#PED-1549).
+- net/mlx5e: macsec: remove checks on the prepare phase
+ (jsc#PED-1549).
+- net: atlantic: macsec: remove checks on the prepare phase
+ (jsc#PED-1549).
+- net: phy: mscc: macsec: remove checks on the prepare phase
+ (jsc#PED-1549).
+- net: macsec: remove the prepare phase when offloading
+ (jsc#PED-1549).
+- net: atlantic: macsec: make the prepare phase a noop
+ (jsc#PED-1549).
+- net: phy: mscc: macsec: make the prepare phase a noop
+ (jsc#PED-1549).
+- net/mlx5e: Support MACsec offload replay window (jsc#PED-1549).
+- net/mlx5e: Support MACsec offload extended packet number (EPN)
+ (jsc#PED-1549).
+- net/mlx5e: Move MACsec initialization from profile init stage
+ to profile enable stage (jsc#PED-1549).
+- net/mlx5e: Create advanced steering operation (ASO) object
+ for MACsec (jsc#PED-1549).
+- net/mlx5e: Expose memory key creation (mkey) function
+ (jsc#PED-1549).
+- net/mlx5: Add ifc bits for MACsec extended packet number (EPN)
+ and replay protection (jsc#PED-1549).
+- net/mlx5e: Fix MACsec initial packet number (jsc#PED-1549).
+- net/mlx5e: Fix MACsec initialization error path (jsc#PED-1549).
+- net/mlx5: Fix fields name prefix in MACsec (jsc#PED-1549).
+- net: macsec: Expose extended packet number (EPN) properties
+ to macsec offload (jsc#PED-1549).
+- net/mlx5e: Support 256 bit keys with kTLS device offload
+ (jsc#PED-1549).
+- bnxt_en: replace reset with config timestamps (jsc#PED-1495).
+- ice: Add low latency Tx timestamp read (jsc#PED-376).
+- net/mlx5e: Ensure macsec_rule is always initiailized in
+ macsec_fs_{r,t}x_add_rule() (jsc#PED-1549).
+- ice: Add L2TPv3 hardware offload support (jsc#PED-376).
+- flow_offload: Introduce flow_match_l2tpv3 (jsc#PED-376).
+- flow_dissector: Add L2TPv3 dissectors (jsc#PED-376).
+- net/mlx5e: Switch to kmemdup() when allocate dev_addr
+ (jsc#PED-1549).
+- net/mlx5e: add missing error code in error path (jsc#PED-1549).
+- igc: Remove IGC_MDIC_INT_EN definition (jsc#PED-375).
+- drivers/net/ethernet/e1000e: check return value of e1e_rphy()
+ (jsc#PED-837).
+- sfc: introduce shutdown entry point in efx pci driver
+ (jsc#PED-1565).
+- iavf: Fix race between iavf_close and iavf_reset_task
+ (jsc#PED-835).
+- i40e: add description and modify interrupts configuration
+ procedure (jsc#PED-372).
+- i40e: Add basic support for I710 devices (jsc#PED-372).
+- ice: Simplify memory allocation in ice_sched_init_port()
+ (jsc#PED-376).
+- ice: switch: Simplify memory allocation (jsc#PED-376).
+- ice: add helper function to check FW API version (jsc#PED-376).
+- ice: Check if reset in progress while waiting for offsets
+ (jsc#PED-376).
+- net/mlx5e: Add support to configure more than one macsec
+ offload device (jsc#PED-1549).
+- net/mlx5e: Add MACsec stats support for Rx/Tx flows
+ (jsc#PED-1549).
+- net/mlx5e: Add MACsec offload SecY support (jsc#PED-1549).
+- net/mlx5e: Implement MACsec Rx data path using MACsec
+ skb_metadata_dst (jsc#PED-1549).
+- net/mlx5e: Add MACsec RX steering rules (jsc#PED-1549).
+- net/mlx5: Add MACsec Rx tables support to fs_core
+ (jsc#PED-1549).
+- net/mlx5e: Add MACsec offload Rx command support (jsc#PED-1549).
+- net/mlx5e: Implement MACsec Tx data path using MACsec
+ skb_metadata_dst (jsc#PED-1549).
+- net/mlx5e: Add MACsec TX steering rules (jsc#PED-1549).
+- net/mlx5: Add MACsec Tx tables support to fs_core
+ (jsc#PED-1549).
+- net/mlx5: Introduce MACsec Connect-X offload hardware bits
+ and structures (jsc#PED-1549).
+- net/mlx5: Generalize Flow Context for new crypto fields
+ (jsc#PED-1549).
+- net/mlx5: Removed esp_id from struct mlx5_flow_act
+ (jsc#PED-1549).
+- net/macsec: Move some code for sharing with various drivers
+ that implements offload (jsc#PED-1549).
+- net/macsec: Add MACsec skb_metadata_dst Rx Data path support
+ (jsc#PED-1549).
+- net/macsec: Add MACsec skb_metadata_dst Tx Data path support
+ (jsc#PED-1549).
+- sfc: support PTP over Ethernet (jsc#PED-1565).
+- sfc: support PTP over IPv6/UDP (jsc#PED-1565).
+- sfc: allow more flexible way of adding filters for PTP
+ (jsc#PED-1565).
+- net/mlx5e: Do not use err uninitialized in
+ mlx5e_rep_add_meta_tunnel_rule() (jsc#PED-1549).
+- net/mlx4: Fix error check for dma_map_sg (jsc#PED-1548).
+- mlx4: Do type_clear() for devlink ports when type_set() was
+ called previously (jsc#PED-1548).
+- ice: Print human-friendly PHY types (jsc#PED-376).
+- ice: Implement devlink port split operations (jsc#PED-376).
+- ice: Add additional flags to ice_nvm_write_activate
+ (jsc#PED-376).
+- ice: Add port option admin queue commands (jsc#PED-376).
+- ice: Add support for ip TTL & ToS offload (jsc#PED-376).
+- net/mlx5: TC, Add support for SF tunnel offload (jsc#PED-1549).
+- net/mlx5: E-Switch, Move send to vport meta rule creation
+ (jsc#PED-1549).
+- net/mlx5: E-Switch, Split creating fdb tables into smaller
+ chunks (jsc#PED-1549).
+- net/mlx5: E-Switch, Add default drop rule for unmatched packets
+ (jsc#PED-1549).
+- net/mlx5e: Completely eliminate priv from fs.h (jsc#PED-1549).
+- net/mlx5e: Make all ttc functions of en_fs get fs struct as
+ argument (jsc#PED-1549).
+- net/mlx5e: Make flow steering arfs independent of priv
+ (jsc#PED-1549).
+- net/mlx5e: Introduce flow steering debug macros (jsc#PED-1549).
+- net/mlx5e: Separate ethtool_steering from fs.h and make private
+ (jsc#PED-1549).
+- net/mlx5e: Directly get flow_steering struct as input when
+ init/cleanup ethtool steering (jsc#PED-1549).
+- net/mlx5e: Convert ethtool_steering member of flow_steering
+ struct to pointer (jsc#PED-1549).
+- net/mlx5e: Drop priv argument of ptp function in en_fs
+ (jsc#PED-1549).
+- net/mlx5e: Decouple fs_tcp from en.h (jsc#PED-1549).
+- net/mlx5e: Decouple fs_tt_redirect from en.h (jsc#PED-1549).
+- net/mlx5e: Introduce flow steering API (jsc#PED-1549).
+- ixgbe: Manual AN-37 for troublesome link partners for X550 SFI
+ (jsc#PED-373).
+- ixgbe: Don't call kmap() on page allocated with GFP_ATOMIC
+ (jsc#PED-373).
+- ice: remove non-inclusive language (jsc#PED-376).
+- ice: Remove ucast_shared (jsc#PED-376).
+- ice: Allow 100M speeds for some devices (jsc#PED-376).
+- ice: Implement FCS/CRC and VLAN stripping co-existence policy
+ (jsc#PED-376).
+- ice: Implement control of FCS/CRC stripping (jsc#PED-376).
+- igc: add xdp frags support to ndo_xdp_xmit (jsc#PED-375).
+- net: macsec: Expose MACSEC_SALT_LEN definition to user space
+ (jsc#PED-1549).
+- ice: introduce ice_ptp_reset_cached_phctime function
+ (jsc#PED-376).
+- ice: re-arrange some static functions in ice_ptp.c
+ (jsc#PED-376).
+- ice: track and warn when PHC update is late (jsc#PED-376).
+- ice: track Tx timestamp stats similar to other Intel drivers
+ (jsc#PED-376).
+- ice: initialize cached_phctime when creating Rx rings
+ (jsc#PED-376).
+- ice: set tx_tstamps when creating new Tx rings via ethtool
+ (jsc#PED-376).
+- vdpa/mlx5: Fix MQ to support non power of two num queues
+ (jsc#PED-1549).
+- ice: xsk: drop power of 2 ring size restriction for AF_XDP
+ (jsc#PED-376).
+- ice: xsk: change batched Tx descriptor cleaning (jsc#PED-376).
+- sfc: correct filter_table_remove method for EF10 PFs
+ (jsc#PED-1565).
+- bnxt: prevent skb UAF after handing over to PTP worker
+ (jsc#PED-1495).
+- ice: Fix interface being down after reset with
+ link-down-on-close flag on (jsc#PED-376).
+- ice: config netdev tc before setting queues number
+ (jsc#PED-376).
+- ice: Fix ice_xdp_xmit() when XDP TX queue number is not
+ sufficient (jsc#PED-376).
+- i40e: Fix set max_tx_rate when it is lower than 1 Mbps
+ (jsc#PED-372).
+- i40e: Fix VF set max MTU size (jsc#PED-372).
+- iavf: Fix set max MTU size with port VLAN and jumbo frames
+ (jsc#PED-835).
+- iavf: Fix bad page state (jsc#PED-835).
+- sfc/siena: fix null pointer dereference in efx_hard_start_xmit
+ (jsc#PED-1565).
+- sfc/siena: fix TX channel offset when using legacy interrupts
+ (jsc#PED-1565).
+- bnxt_en: fix flags to check for supported fw version
+ (jsc#PED-1495).
+- sfc: fix null pointer dereference in efx_hard_start_xmit
+ (jsc#PED-1565).
+- sfc: fix TX channel offset when using legacy interrupts
+ (jsc#PED-1565).
+- iavf: Fix cached head and tail value for iavf_get_tx_pending
+ (jsc#PED-835).
+- iavf: Fix change VF's mac address (jsc#PED-835).
+- ice: Fix crash by keep old cfg when update TCs more than queues
+ (jsc#PED-376).
+- ice: Don't double unplug aux on peer initiated reset
+ (jsc#PED-376).
+- RDMA/irdma: Use s/g array in post send only when its valid
+ (jsc#PED-377).
+- RDMA/mlx5: Fix UMR cleanup on error flow of driver init
+ (jsc#PED-1552).
+- RDMA/mlx5: Set local port to one when accessing counters
+ (jsc#PED-1552).
+- RDMA/mlx5: Rely on RoCE fw cap instead of devlink when setting
+ profile (jsc#PED-1549).
+- RDMA/irdma: Fix drain SQ hang with no completion (jsc#PED-377).
+- iavf: Detach device during reset task (jsc#PED-835).
+- i40e: Fix kernel crash during module removal (jsc#PED-372).
+- i40e: Fix ADQ rate limiting for PF (jsc#PED-372).
+- ice: use bitmap_free instead of devm_kfree (jsc#PED-376).
+- ice: Fix DMA mappings leak (jsc#PED-376).
+- Revert "net: macsec: update SCI upon MAC address
+ change." (jsc#PED-1549).
+- macsec: Fix traffic counters/statistics (jsc#PED-1549).
+- RDMA/rxe: Split qp state for requester and completer
+ (jsc#PED-1111).
+- RDMA/rxe: Generate error completion for error requester QP state
+ (jsc#PED-1111).
+- RDMA/rxe: Update wqe_index for each wqe error completion
+ (jsc#PED-1111).
+- Revert "RDMA/rxe: Create duplicate mapping tables for FMRs"
+ (jsc#PED-1111).
+- RDMA/rxe: Replace __rxe_do_task by rxe_run_task (jsc#PED-1111).
+- RDMA/rxe: Limit the number of calls to each tasklet
+ (jsc#PED-1111).
+- RDMA/rxe: Make the tasklet exits the same (jsc#PED-1111).
+- RDMA/rxe: Add rxe_is_fenced() subroutine (jsc#PED-1111).
+- RDMA/rxe: Fix spelling mistake in error print (jsc#PED-1111).
+- RDMA/rxe: Remove unused qp parameter (jsc#PED-1111).
+- RDMA/rxe: Remove unused mask parameter (jsc#PED-1111).
+- RDMA/rxe: Rename rxe_atomic_reply to atomic_reply
+ (jsc#PED-1111).
+- RDMA/rxe: Add common rxe_prepare_res() (jsc#PED-1111).
+- RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup
+ (jsc#PED-1111).
+- RDMA/rxe: Remove unnecessary include statement (jsc#PED-1111).
+- RDMA/rxe: Replace include statement (jsc#PED-1111).
+- RDMA/rxe: Convert pr_warn/err to pr_debug in pyverbs
+ (jsc#PED-1111).
+- RDMA/rxe: Merge normal and retry atomic flows (jsc#PED-1111).
+- RDMA/rxe: Move atomic original value to res (jsc#PED-1111).
+- RDMA/rxe: Move atomic responder res to atomic_reply
+ (jsc#PED-1111).
+- RDMA/rxe: Add a responder state for atomic reply (jsc#PED-1111).
+- RDMA/rxe: Move code to rxe_prepare_atomic_res() (jsc#PED-1111).
+- RDMA/rxe: Convert read side locking to rcu (jsc#PED-1111).
+- RDMA/rxe: Stop lookup of partially built objects (jsc#PED-1111).
+- RDMA/rxe: Remove useless pkt parameters (jsc#PED-1111).
+- RDMA/rxe: fix xa_alloc_cycle() error return value check again
+ (jsc#PED-1111).
+- net/mlx5e: Fix wrong use of skb_tcp_all_headers() with
+ encapsulation (jsc#PED-1549).
+- net: phy: mxl-gpy: print firmware in human readable form
+ (jsc#PED-829).
+- net: phy: mxl-gpy: rename the FW type field name (jsc#PED-829).
+- net: phy: mxl-gpy: cache PHY firmware version (jsc#PED-829).
+- net: phy: mxl-gpy: fix version reporting (jsc#PED-829).
+- net: phy: add support to get Master-Slave configuration
+ (jsc#PED-829).
+- net/mlx5e: Fix matchall police parameters validation
+ (jsc#PED-1549).
+- net/sched: act_police: allow 'continue' action offload
+ (jsc#PED-1549).
+- macsec: fix UAF bug for real_dev (jsc#PED-1549).
+- RDMA/rxe: Fix an error handling path in rxe_get_mcg()
+ (jsc#PED-1111).
+- RDMA/rxe: Enforce IBA C11-17 (jsc#PED-1111).
+- RDMA/rxe: Move mw cleanup code to rxe_mw_cleanup()
+ (jsc#PED-1111).
+- RDMA/rxe: Move mr cleanup code to rxe_mr_cleanup()
+ (jsc#PED-1111).
+- RDMA/rxe: Move qp cleanup code to rxe_qp_do_cleanup()
+ (jsc#PED-1111).
+- RDMA/rxe: Check rxe_get() return value (jsc#PED-1111).
+- RDMA/rxe: Add rxe_srq_cleanup() (jsc#PED-1111).
+- RDMA/rxe: Remove IB_SRQ_INIT_MASK (jsc#PED-1111).
+- RDMA/rxe: Skip adjusting remote addr for write in retry
+ operation (jsc#PED-1111).
+- RDMA/rxe: Optimize the mr pool struct (jsc#PED-1111).
+- RDMA/rxe: Replace paylen by payload (jsc#PED-1111).
+- RDMA/rxe: Remove useless parameters for update_state()
+ (jsc#PED-1111).
+- RDMA/rxe: Remove reliable datagram support (jsc#PED-1111).
+- RDMA/rxe: Remove support for SMI QPs from rdma_rxe
+ (jsc#PED-1111).
+- RDMA/rxe: Remove mc_grp_pool from struct rxe_dev (jsc#PED-1111).
+- RDMA/rxe: Remove type 2A memory window capability
+ (jsc#PED-1111).
+- net/sched: act_police: Add extack messages for offload failure
+ (jsc#PED-1549).
+- net/sched: act_api: Add extack to offload_act_setup() callback
+ (jsc#PED-1549).
+- net/sched: flower: Take verbose flag into account when logging
+ error messages (jsc#PED-1549).
+- net/sched: matchall: Take verbose flag into account when
+ logging error messages (jsc#PED-1549).
+- lib: add generic polynomial calculation (jsc#PED-829).
+- RDMA/rxe: Change mcg_lock to a _bh lock (jsc#PED-1111).
+- RDMA/rxe: Do not call dev_mc_add/del() under a spinlock
+ (jsc#PED-1111).
+- RDMA/rxe: Recheck the MR in when generating a READ reply
+ (jsc#PED-1111).
+- RDMA/rxe: Fix "Replace mr by rkey in responder resources"
+ (jsc#PED-1111).
+- RDMA/rxe: Use standard names for ref counting (jsc#PED-1111).
+- RDMA/rxe: Replace red-black trees by xarrays (jsc#PED-1111).
+- RDMA/rxe: Shorten pool names in rxe_pool.c (jsc#PED-1111).
+- RDMA/rxe: Move max_elem into rxe_type_info (jsc#PED-1111).
+- RDMA/rxe: Replace obj by elem in declaration (jsc#PED-1111).
+- RDMA/rxe: Delete _locked() APIs for pool objects (jsc#PED-1111).
+- RDMA/rxe: Reverse the sense of RXE_POOL_NO_ALLOC (jsc#PED-1111).
+- RDMA/rxe: Replace mr by rkey in responder resources
+ (jsc#PED-1111).
+- RDMA/rxe: Remove useless argument for update_state()
+ (jsc#PED-1111).
+- RDMA/rxe: Cleanup rxe_mcast.c (jsc#PED-1111).
+- RDMA/rxe: Collect cleanup mca code in a subroutine
+ (jsc#PED-1111).
+- RDMA/rxe: Collect mca init code in a subroutine (jsc#PED-1111).
+- RDMA/rxe: Warn if mcast memory is not freed (jsc#PED-1111).
+- RDMA/rxe: Remove mcg from rxe pools (jsc#PED-1111).
+- RDMA/rxe: Remove key'ed object support (jsc#PED-1111).
+- RDMA/rxe: Replace pool key by rxe->mcg_tree (jsc#PED-1111).
+- RDMA/rxe: Replace int num_qp by atomic_t qp_num (jsc#PED-1111).
+- RDMA/rxe: Replace grp by mcg, mce by mca (jsc#PED-1111).
+- RDMA/rxe: Use kzmalloc/kfree for mca (jsc#PED-1111).
+- RDMA/rxe: Move mcg_lock to rxe (jsc#PED-1111).
+- RDMA/rxe: Revert changes from irqsave to bh locks
+ (jsc#PED-1111).
+- RDMA/rxe: Remove rxe_drop_all_macst_groups (jsc#PED-1111).
+- RDMA/rxe: Enforce IBA o10-2.2.3 (jsc#PED-1111).
+- RDMA/rxe: Rename rxe_mc_grp and rxe_mc_elem (jsc#PED-1111).
+- RDMA/rxe: Move rxe_mcast_attach/detach to rxe_mcast.c
+ (jsc#PED-1111).
+- RDMA/rxe: Move rxe_mcast_add/delete to rxe_mcast.c
+ (jsc#PED-1111).
+- RDMA/rxe: Delete useless module.h include (jsc#PED-1111).
+- net: phy: exported the genphy_read_master_slave function
+ (jsc#PED-829).
+- flow_offload: improve extack msg for user when adding invalid
+ filter (jsc#PED-1549).
+- net: sched: avoid newline at end of message in
+ NL_SET_ERR_MSG_MOD (jsc#PED-1549).
+- net: sched: limit TC_ACT_REPEAT loops (jsc#PED-1549).
+- asm-generic: Add missing brackets for io_stop_wc macro
+ (jsc#PED-1552).
+- hash.h: remove unused define directive (jsc#PED-1111).
+- RDMA/rxe: Use the standard method to produce udp source port
+ (jsc#PED-1111).
+- RDMA/rxe: Delete deprecated module parameters interface
+ (jsc#PED-1111).
+- RDMA/rxe: Fix indentations and operators sytle (jsc#PED-1111).
+- RDMA/rxe: Remove the unused xmit_errors member (jsc#PED-1111).
+- RDMA/rxe: Remove redundant err variable (jsc#PED-1111).
+- RDMA/ocrdma: Remove unneeded variable (jsc#PED-1695).
+- RDMA/ocrdma: Simplify code in 'ocrdma_search_mmap()'
+ (jsc#PED-1695).
+- RDMA/ocrdma: Use bitmap_zalloc() when applicable (jsc#PED-1695).
+- RDMA/rxe: Remove some #defines from rxe_pool.h (jsc#PED-1111).
+- RDMA/rxe: Remove #include "rxe_loc.h" from rxe_pool.c
+ (jsc#PED-1111).
+- RDMA/rxe: Save object pointer in pool element (jsc#PED-1111).
+- RDMA/rxe: Copy setup parameters into rxe_pool (jsc#PED-1111).
+- RDMA/rxe: Replace irqsave locks with bh locks (jsc#PED-1111).
+- RDMA/ocrdma: Use helper function to set GUIDs (jsc#PED-1695).
+- flow_offload: fix suspicious RCU usage when offloading tc action
+ (jsc#PED-1549).
+- asm-generic: introduce io_stop_wc() and add implementation
+ for ARM64 (jsc#PED-1552).
+- net: phy: Remove unused including <linux/version.h>
+ (jsc#PED-829).
+- commit fac2fda
+
+- x86/insn: Add AMX instructions to the x86 instruction decoder
+ (bnc#1205282).
+- commit 4ba8580
+
+- usb: gadget: uvc: decrease the interrupt load to a quarter
+ (git-fixes).
+- commit d4215d5
+
+- usb: gadget: uvc: add scatter gather support (git-fixes).
+- commit 8256025
+
+- usb: gadget: uvc: make uvc_num_requests depend on gadget speed
+ (git-fixes).
+- commit 12e1352
+
+- ipv6: ping: fix wrong checksum for large frames (bsc#1203183).
+- commit f29a164
+
+- io_uring: disable polling signalfd pollfree files (CVE-2022-3176
+ bsc#1203391).
+- commit ff11e05
+
+- blacklist.conf: kABI
+- commit 52ff77d
+
+- usb: typec: ucsi: acpi: Implement resume callback (git-fixes).
+- commit 0b832f1
+
+- blacklist.conf: prerequisites would break kABI
+- commit 3f3b1f5
+
+- virtio_blk: add error handling support for add_disk()
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/Revert-virtio-blk-Add-validation-for-block-size-in-c.patch.
+- commit 5f63f70
+
+- block: inherit request start time from bio for BLK_CGROUP
+ (jsc#PED-1183).
+- block: move blk-throtl fast path inline (jsc#PED-1183).
+- commit 6137b58
+
+- io_uring: optimise io_prep_linked_timeout() (bnc#1205205).
+- io_uring: cancel not-armed linked touts separately
+ (bnc#1205205).
+- io_uring: simplify io_prep_linked_timeout (bnc#1205205).
+- io_uring: kill REQ_F_LTIMEOUT_ACTIVE (bnc#1205205).
+ - Update patches.suse/io_uring-Fix-undefined-behaviour-in-io_issue_sqe.patch
+ - Update patches.suse/io_uring-fix-race-between-timeout-flush-and-removal.patch
+- io_uring: deduplicate cancellation code (bnc#1205205).
+- io_uring: kill not necessary resubmit switch (bnc#1205205).
+- io_uring: optimise initial ltimeout refcounting (bnc#1205205).
+- io_uring: don't inflight-track linked timeouts (bnc#1205205).
+ - Update patches.suse/io_uring-Fix-undefined-behaviour-in-io_issue_sqe.patch
+ - Update patches.suse/io_uring-fix-race-between-timeout-flush-and-removal.patch
+- io_uring: optimise iowq refcounting (bnc#1205205).
+- io_uring: remove files pointer in cancellation functions
+ (bnc#1205205).
+- io_uring: extract io_uring_files_cancel() in
+ io_uring_task_cancel() (bnc#1205205).
+- commit 8175601
+
+- io_uring: optimise hot path of ltimeout prep (bnc#1205205).
+- io_uring: skip request refcounting (bnc#1205205).
+- io_uring: remove submission references (bnc#1205205).
+- io_uring: remove req_ref_sub_and_test() (bnc#1205205).
+- io_uring: move req_ref_get() and friends (bnc#1205205).
+- commit a6d17c7
+
+- usb: typec: ucsi: Check the connection on resume (git-fixes).
+- commit 94056b2
+
+- blacklist.conf: this patch would need an inordinary number of
+ prerequisites for a race in a corner case
+- commit 4987ef8
+
+- blacklist.conf: kABI
+- commit 29e4b4e
+
+- blk-mq: Add blk_mq_alloc_map_and_rqs() (jsc#PED-1183).
+- blk-mq: Add blk_mq_tag_update_sched_shared_sbitmap()
+ (jsc#PED-1183).
+- blk-mq: Don't clear driver tags own mapping (jsc#PED-1183).
+- blk-mq: Pass driver tags to blk_mq_clear_rq_mapping()
+ (jsc#PED-1183).
+- blk-mq-sched: Rename blk_mq_sched_free_{requests -> rqs}()
+ (jsc#PED-1183).
+- blk-mq-sched: Rename blk_mq_sched_alloc_{tags -> map_and_rqs}()
+ (jsc#PED-1183).
+- blk-mq: Invert check in blk_mq_update_nr_requests()
+ (jsc#PED-1183).
+- blk-mq: Relocate shared sbitmap resize in
+ blk_mq_update_nr_requests() (jsc#PED-1183).
+- commit 8bfc591
+
+- block: Rename BLKDEV_MAX_RQ -> BLKDEV_DEFAULT_RQ (jsc#PED-1183).
+- Refresh patches.suse/block-Provide-blk_mq_sched_get_icq.patch.
+- commit 52ac9ca
+
+- blk-mq: Change rqs check in blk_mq_free_rqs() (jsc#PED-1183).
+- commit 386aed8
+
+- block: print the current process in handle_bad_sector
+ (jsc#PED-1183).
+- commit 3c96a17
+
+- Update patch metadata for media fix (CVE-2022-3903 bsc#1205220)
+- commit 899a453
+
+- block/mq-deadline: Stop using per-CPU counters (jsc#PED-1183).
+- block/mq-deadline: Add an invariant check (jsc#PED-1183).
+- commit 8b4880d
+
+- block: move some macros to blkdev.h (jsc#PED-1183).
+- commit 0c6d0ca
+
+- block: move integrity handling out of <linux/blkdev.h>
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/block-don-t-merge-across-cgroup-boundaries-if-blkcg-.patch.
+- Refresh
+ patches.suse/mm-don-t-include-linux-memremap.h-in-linux-mm.h.patch.
+- commit 4916dfc
+
+- x86/tdx: Panic on bad configs that #VE on "private" memory
+ access (jsc#PED-342).
+- commit a423135
+
+- capabilities: fix undefined behavior in bit shift for
+ CAP_TO_MASK (git-fixes).
+- capabilities: fix potential memleak on error path from
+ vfs_getxattr_alloc() (git-fixes).
+- commit 9091aa0
+
+- x86/tdx: Prepare for using "INFO" call for a second purpose
+ (jsc#PED-342).
+- commit 4b44375
+
+- x86/tdx: Handle load_unaligned_zeropad() page-cross to a shared
+ page (jsc#PED-342).
+- commit 19687ce
+
+- x86/tdx: Clarify RIP adjustments in #VE handler (jsc#PED-342).
+- commit 0259aa5
+
+- block: move a few merge helpers out of <linux/blkdev.h>
+ (jsc#PED-1183).
+- block: drop unused includes in <linux/genhd.h> (jsc#PED-1183).
+- block: drop unused includes in <linux/blkdev.h> (jsc#PED-1183).
+- block: move elevator.h to block/ (jsc#PED-1183).
+- block: remove the struct blk_queue_ctx forward declaration
+ (jsc#PED-1183).
+- block: remove the cmd_size field from struct request_queue
+ (jsc#PED-1183).
+- block: remove the unused blk_queue_state enum (jsc#PED-1183).
+- block: remove the unused rq_end_sector macro (jsc#PED-1183).
+- sched: move the <linux/blkdev.h> include out of
+ kernel/sched/sched.h (jsc#PED-1183).
+- kernel: remove spurious blkdev.h includes (jsc#PED-1183).
+- arch: remove spurious blkdev.h includes (jsc#PED-1183).
+- mm: remove spurious blkdev.h includes (jsc#PED-1183).
+- mm: don't include <linux/blkdev.h> in <linux/backing-dev.h>
+ (jsc#PED-1183).
+- mm: don't include <linux/blk-cgroup.h> in <linux/backing-dev.h>
+ (jsc#PED-1183).
+- mm: don't include <linux/blk-cgroup.h> in <linux/writeback.h>
+ (jsc#PED-1183).
+- commit f4c4b1a
+
+- dm ima: prefix ima event name related to device mapper with dm_
+ (jsc#PED-1183).
+- dm ima: add version info to dm related events in ima log
+ (jsc#PED-1183).
+- dm ima: prefix dm table hashes in ima log with hash algorithm
+ (jsc#PED-1183).
+- dm ima: measure data on device rename (jsc#PED-1183).
+- dm ima: measure data on table clear (jsc#PED-1183).
+- dm ima: measure data on device remove (jsc#PED-1183).
+- dm ima: measure data on device resume (jsc#PED-1183).
+- dm ima: measure data on table load (jsc#PED-1183).
+- commit e6250e4
+
+- block: warn when putting the final reference on a registered
+ (jsc#PED-1183).
+- brd: reduce the brd_devices_mutex scope (jsc#PED-1183).
+- kyber: avoid q->disk dereferences in trace points
+ (jsc#PED-1183).
+- block: keep q_usage_counter in atomic mode after del_gendisk
+ (jsc#PED-1183).
+- block: drain file system I/O on del_gendisk (jsc#PED-1183).
+- block: split bio_queue_enter from blk_queue_enter
+ (jsc#PED-1183).
+- block: factor out a blk_try_enter_queue helper (jsc#PED-1183).
+- block: call submit_bio_checks under q_usage_counter
+ (jsc#PED-1183).
+- commit 3c9365f
+
+- block: genhd: fix double kfree() in __alloc_disk_node()
+ (jsc#PED-1183).
+- scsi: bsg: Fix device unregistration (jsc#PED-1183).
+- block: hold ->invalidate_lock in blkdev_fallocate
+ (jsc#PED-1183).
+- commit 502e581
+
+- block: move fs/block_dev.c to block/bdev.c (jsc#PED-1183).
+- block: split out operations on block special files
+ (jsc#PED-1183).
+- bio: fix kerneldoc documentation for bio_alloc_kiocb()
+ (jsc#PED-1183).
+- cdrom: update uniform CD-ROM maintainership in MAINTAINERS file
+ (jsc#PED-1183).
+- commit 18be238
+
+- sg: pass the device name to blk_trace_setup (jsc#PED-1183).
+- block, bfq: cleanup the repeated declaration (jsc#PED-1183).
+- block: mark blkdev_fsync static (jsc#PED-1183).
+- block: refine the disk_live check in del_gendisk (jsc#PED-1183).
+- mmc: sdhci-tegra: Enable MMC_CAP2_ALT_GPT_TEGRA (jsc#PED-1183).
+- mmc: block: Support alternative_gpt_sector() operation
+ (jsc#PED-1183).
+- partitions/efi: Support non-standard GPT location
+ (jsc#PED-1183).
+- block: Add alternative_gpt_sector() operation (jsc#PED-1183).
+- commit 5f12e3d
+
+- x86/tdx: Fix early #VE handling (jsc#PED-342).
+- commit bdcffa5
+
+- scsi: csiostor: Convert sysfs snprintf() to sysfs_emit()
+ (jsc#PED-1504).
+- scsi: csio: Stop using the SCSI pointer (jsc#PED-1504).
+- commit 67b0269
+
+- crypto: hisilicon/qm: Set the VF QM state register
+ (jsc#PED-1109).
+- hisi_acc_vfio_pci: Add helper to retrieve the struct pci_driver
+ (jsc#PED-1109).
+- hisi_acc_qm: Move VF PCI device IDs to common header
+ (jsc#PED-1109).
+- crypto: hisilicon/qm: Move few definitions to common header
+ (jsc#PED-1109).
+- crypto: hisilicon/qm: Move the QM header to include/linux
+ (jsc#PED-1109).
+- crypto: hisilicon/qm - fix deadlock for remove driver
+ (jsc#PED-1109).
+- commit a420954
+
+- x86/tdx: Fix RETs in TDX asm (jsc#PED-342).
+- commit fce07e1
+
+- bio: improve kerneldoc documentation for bio_alloc_kiocb()
+ (jsc#PED-1183).
+- block: provide bio_clear_hipri() helper (jsc#PED-1183).
+- block: use the percpu bio cache in __blkdev_direct_IO
+ (jsc#PED-1183).
+- io_uring: enable use of bio alloc cache (jsc#PED-1183).
+- block: clear BIO_PERCPU_CACHE flag if polling isn't supported
+ (jsc#PED-1183).
+- commit bce5f8e
+
+- Update patches.suse/scsi-ibmvfc-Avoid-path-failures-during-live-migratio.patch
+ (bsc#1065729 bsc#1204810 ltc#200162).
+- commit ba4e679
+
+- bio: add allocation cache abstraction (jsc#PED-1183).
+- Refresh
+ patches.suse/block-fix-rq-qos-breakage-from-skipping-rq_qos_done_.patch.
+- commit 17a0991
+
+- x86/tdx: Annotate a noreturn function (jsc#PED-342).
+- commit 8553815
+
+- fs: add kiocb alloc cache flag (jsc#PED-1183).
+- bio: optimize initialization of a bio (jsc#PED-1183).
+- commit 9a0b8ca
+
+- x86,objtool: Move the ASM_REACHABLE annotation to objtool.h
+ (jsc#PED-342).
+- Refresh
+ patches.suse/objtool-Re-add-UNWIND_HINT_-SAVE_RESTORE.patch.
+- commit 2f94159
+
+- Update config files.
+- commit 5d7c7c6
+
+- block: remove CONFIG_DEBUG_BLOCK_EXT_DEVT (jsc#PED-1183).
+- Refresh
+ patches.suse/block-Fix-the-maximum-minor-value-is-blk_alloc_ext_m.patch.
+- commit 754b820
+
+- block: remove a pointless call to MINOR() in device_add_disk
+ (jsc#PED-1183).
+- commit 9543e11
+
+- block: fix argument type of bio_trim() (jsc#PED-1183).
+- docs: sysfs-block-device: document ncq_prio_supported
+ (jsc#PED-1183).
+- docs: sysfs-block-device: improve ncq_prio_enable documentation
+ (jsc#PED-1183).
+- commit fd778db
+
+- null_blk: add error handling support for add_disk()
+ (jsc#PED-1183).
+- commit 3aa258a
+
+- x86/mm: Fix spacing within memory encryption features message
+ (jsc#PED-342).
+- commit 881d16c
+
+- x86/kaslr: Fix build warning in KASLR code in boot stub
+ (jsc#PED-342).
+- commit e3d83a1
+
+- block: add error handling for device_add_disk / add_disk
+ (jsc#PED-1183).
+- block: return errors from disk_alloc_events (jsc#PED-1183).
+- block: return errors from blk_integrity_add (jsc#PED-1183).
+- block: call blk_register_queue earlier in device_add_disk
+ (jsc#PED-1183).
+- block: call blk_integrity_add earlier in device_add_disk
+ (jsc#PED-1183).
+- block: create the bdi link earlier in device_add_disk
+ (jsc#PED-1183).
+- block: call bdev_add later in device_add_disk (jsc#PED-1183).
+- block: fold register_disk into device_add_disk (jsc#PED-1183).
+- block: add a sanity check for a live disk in del_gendisk
+ (jsc#PED-1183).
+- block: add an explicit ->disk backpointer to the request_queue
+ (jsc#PED-1183).
+- block: hold a request_queue reference for the lifetime of
+ struct gendisk (jsc#PED-1183).
+- block: pass a request_queue to __blk_alloc_disk (jsc#PED-1183).
+- block: remove the minors argument to __alloc_disk_node
+ (jsc#PED-1183).
+- block: remove alloc_disk and alloc_disk_node (jsc#PED-1183).
+- block: cleanup the lockdep handling in *alloc_disk
+ (jsc#PED-1183).
+- commit 46310ce
+
+- ext4: only allow test_dummy_encryption when supported
+ (bsc#1202772 bsc#1205173).
+- blacklist.conf: Remove above patch from blacklist
+- commit 091cd9f
+
+- sg: do not allocate a gendisk (jsc#PED-1183).
+- commit 37d18a6
+
+- st: do not allocate a gendisk (jsc#PED-1183).
+- Refresh
+ patches.suse/scsi-scsi_ioctl-Call-scsi_cmd_ioctl-from-scsi_ioctl.patch.
+- Refresh patches.suse/scsi-st-Simplify-ioctl-handling.patch.
+- commit 3c5d6ed
+
+- Documentation/x86: Document TDX kernel architecture
+ (jsc#PED-342).
+- commit 33bbdec
+
+- x86/tdx/ioapic: Add shared bit for IOAPIC base address
+ (jsc#PED-342).
+- commit 04231d0
+
+- x86/mm: Make DMA memory shared for TD guest (jsc#PED-342).
+- Update config files.
+- Refresh
+ patches.suse/x86-mm-move-protection_map-inside-the-platform.patch.
+- commit 48058a1
+
+- drm/i915/gvt: fix double free bug in split_2MB_gtt_entry (bsc#1204780, CVE-2022-3707)
+- commit 3d29636
+
+- x86/mm/cpa: Add support for TDX shared memory (jsc#PED-342).
+- commit 818b3a3
+
+- x86/tdx: Make pages shared in ioremap() (jsc#PED-342).
+- commit 0b05d9e
+
+- x86/topology: Disable CPU online/offline control for TDX guests
+ (jsc#PED-342).
+- commit 9d93879
+
+- scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
+ (bsc#1156395).
+- commit 32de176
+
+- x86/boot: Avoid #VE during boot for TDX platforms (jsc#PED-342).
+- commit 6a73875
+
+- x86/boot: Set CR0.NE early and keep it set during the boot
+ (jsc#PED-342).
+- commit 5319e24
+
+- x86/acpi/x86/boot: Add multiprocessor wake-up support
+ (jsc#PED-342).
+- commit 28d025a
+
+- Refresh patches.suse/scsi-ibmvfc-Do-not-wait-for-initial-device-scan.patch.
+ Refresh to upstream version of patch.
+- commit aba4ad9
+
+- x86/boot: Add a trampoline for booting APs via firmware handoff
+ (jsc#PED-342).
+- commit d10a201
+
+- Refresh sorted patches.
+- commit 3d3be93
+
+- x86/tdx: Wire up KVM hypercalls (jsc#PED-342).
+- commit 4edd4de
+
+- scsi: ibmvfc: Avoid path failures during live migration
+ (bsc#1065729).
+- commit 2f0fa7f
+
+- Update patches.suse/arm64-Add-AMPERE1-to-the-Spectre-BHB-affected-list.patch (git-fixes, bsc#1205153).
+ Add reference to bsc#1205153.
+- commit 08070be
+
+- x86/tdx: Port I/O: Add early boot support (jsc#PED-342).
+- commit ee7bb95
+
+- x86/tdx: Port I/O: Add runtime hypercalls (jsc#PED-342).
+- commit 6a328ea
+
+- x86/boot: Port I/O: Add decompression-time support for TDX
+ (jsc#PED-342).
+- commit 959a061
+
+- arm64: Add AMPERE1 to the Spectre-BHB affected list (git-fixes).
+- arm64: errata: Add Cortex-A55 to the repeat tlbi list (git-fixes).
+ Enable CONFIG_ARM64_ERRATUM_2441007, too
+- commit 57ef351
+
+- ALSA: usb-audio: Remove redundant workaround for Roland quirk
+ (bsc#1205111).
+- ALSA: usb-audio: Yet more regression for for the delayed card
+ registration (bsc#1205111).
+- commit fdb6d05
+
+- x86/boot: Port I/O: Allow to hook up alternative helpers
+ (jsc#PED-342).
+- commit 63333dd
+
+- x86: Consolidate port I/O helpers (jsc#PED-342).
+- commit 6e8ed87
+
+- rpm/check-for-config-changes: add TOOLCHAIN_HAS_* to IGNORED_CONFIGS_RE
+ This new form was added in commit b8c86872d1dc (riscv: fix detection of
+ toolchain Zicbom support).
+- commit e9f2ba6
+
+- Update config files.
+- commit d4d6656
+
+- x86: Adjust types used in port I/O helpers (jsc#PED-342).
+- commit ae6e9eb
+
+- x86/tdx: Detect TDX at early kernel decompression time
+ (jsc#PED-342).
+- commit 0d313b1
+
+- docs: perf: Include hns3-pmu.rst in toctree to fix 'htmldocs'
+ WARNING (jsc#PED-1113).
+- drivers/perf: hisi: add driver for HNS3 PMU (jsc#PED-1113).
+- drivers/perf: hisi: Add description for HNS3 PMU driver
+ (jsc#PED-1113).
+- commit 924185b
+
+- x86/tdx: Handle in-kernel MMIO (jsc#PED-342).
+- commit 0ac9a9a
+
+- x86/insn-eval: Introduce insn_get_modrm_reg_ptr() (jsc#PED-342).
+- commit 7042e81
+
+- x86/insn-eval: Introduce insn_decode_mmio() (jsc#PED-342).
+- commit 098c34f
+
+- tracing: kprobe: Fix memory leak in
+ test_gen_kprobe/kretprobe_cmd() (git-fixes).
+- commit 4b18e0d
+
+- io-wq: don't retry task_work creation failure on fatal
+ conditions (bnc#1205113).
+- io-wq: Remove duplicate code in io_workqueue_create()
+ (bnc#1205113).
+- io-wq: fix silly logic error in io_task_work_match()
+ (bnc#1205113).
+- io-wq: fix cancellation on create-worker failure (bnc#1205113).
+- commit f9f6f38
+
+- x86/tdx: Handle CPUID via #VE (jsc#PED-342).
+- commit d9569a7
+
+- x86/tdx: Add MSR support for TDX guests (jsc#PED-342).
+- commit c351cc8
+
+- block: add back the bd_holder_dir reference in
+ bd_link_disk_holder (jsc#PED-1183).
+- block: fix default IO priority handling (jsc#PED-1183).
+- block: Introduce IOPRIO_NR_LEVELS (jsc#PED-1183).
+- block: fix IOPRIO_PRIO_CLASS() and IOPRIO_PRIO_VALUE() macros
+ (jsc#PED-1183).
+- block: change ioprio_valid() to an inline function
+ (jsc#PED-1183).
+- block: improve ioprio class description comment (jsc#PED-1183).
+- ioprio: move user space relevant ioprio bits to UAPI includes
+ (jsc#PED-1183).
+- commit 7035d24
+
+- Add suse-kernel-rpm-scriptlets to kmp buildreqs (boo#1205149)
+- commit 888e01e
+
+- cifs: fix use-after-free on the link name (bsc#1193629).
+- commit c8e18d6
+
+- cifs: avoid unnecessary iteration of tcp sessions (bsc#1193629).
+- commit 3b19f83
+
+- cifs: always iterate smb sessions using primary channel
+ (bsc#1193629).
+- commit 5cac47b
+
+- cifs: fix use-after-free caused by invalid pointer `hostname`
+ (bsc#1193629).
+- commit 6bd980d
+
+- cifs: Fix pages leak when writedata alloc failed in
+ cifs_write_from_iter() (bsc#1193629).
+- commit 4170ae6
+
+- cifs: Fix pages array leak when writedata alloc failed in
+ cifs_writedata_alloc() (bsc#1193629).
+- commit b7ff361
+
+- x86/tdx: Add HLT support for TDX guests (jsc#PED-342).
+- commit fa8f2ad
+
+- block: unexport blk_register_queue (jsc#PED-1183).
+- blk-cgroup: stop using seq_get_buf (jsc#PED-1183).
+- blk-cgroup: refactor blkcg_print_stat (jsc#PED-1183).
+- nvme: use bvec_virt (jsc#PED-1183).
+- dcssblk: use bvec_virt (jsc#PED-1183).
+- dasd: use bvec_virt (jsc#PED-1183).
+- ps3vram: use bvec_virt (jsc#PED-1183).
+- ubd: use bvec_virt (jsc#PED-1183).
+- sd: use bvec_virt (jsc#PED-1183).
+- bcache: use bvec_virt (jsc#PED-1183).
+- virtio_blk: use bvec_virt (jsc#PED-1183).
+- rbd: use bvec_virt (jsc#PED-1183).
+- squashfs: use bvec_virt (jsc#PED-1183).
+- dm-integrity: use bvec_virt (jsc#PED-1183).
+- dm-ebs: use bvec_virt (jsc#PED-1183).
+- dm: make EBS depend on !HIGHMEM (jsc#PED-1183).
+- block: use bvec_virt in bio_integrity_{process,free}
+ (jsc#PED-1183).
+- bvec: add a bvec_virt helper (jsc#PED-1183).
+- commit 1fa6c4f
+
+- x86/traps: Add #VE support for TDX guest (jsc#PED-342).
+- commit 0845fe8
+
+- block: free the extended dev_t minor later (jsc#PED-1183).
+- block: pass a gendisk to bdev_resize_partition (jsc#PED-1183).
+- block: pass a gendisk to bdev_del_partition (jsc#PED-1183).
+- block: pass a gendisk to bdev_add_partition (jsc#PED-1183).
+- block: store a gendisk in struct parsed_partitions
+ (jsc#PED-1183).
+- block: remove GENHD_FL_UP (jsc#PED-1183).
+- commit a8e4fd9
+
+- bcache: move the del_gendisk call out of bcache_device_free
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/0001-bcache-fix-use-after-free-problem-in-bcache_device_f.patch.
+- commit 1509972
+
+- sx8: use the internal state machine to check if del_gendisk
+ needs to be called (jsc#PED-1183).
+- commit fb76d3a
+
+- nvme: replace the GENHD_FL_UP check in nvme_mpath_shutdown_disk
+ (jsc#PED-1183).
+- commit 415dd0f
+
+- Update config files for enabling CONFIG_SECONDARY_TRUSTED_KEYRING
+ In x86_64 config, we have enabled the CONFIG_SECONDARY_TRUSTED_KEYRING
+ and children kernel config since SLE12-SP4 and SLE15. But we didn't
+ enable it in other architectures because the original this option is
+ for secure boot.
+ In the future, the CONFIG_SECONDARY_TRUSTED_KEYRING will be used with
+ IMA in different architectures. So let's enable it in SLE in arm64,
+ armv7hl, ppc64le and s390x architectures. Then Leap or even SLE users
+ can use it for preparing IMA functions with secondary trusted keyring.
+ (bsc#1203739)
+- commit 7d983f7
+
+- x86/traps: Refactor exc_general_protection() (jsc#PED-342).
+- commit 4d05e70
+
+- block: ensure the bdi is freed after inode_detach_wb (jsc#PED-1183). - blacklist.conf:
+- commit 9224fa7
+
+- nvme: remove the GENHD_FL_UP check in nvme_ns_remove
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/nvme-fix-RCU-hole-that-allowed-for-endless-looping-i.patch.
+- Refresh
+ patches.suse/nvme-only-call-synchronize_srcu-when-clearing-curren.patch.
+- commit 5f9ae94
+
+- x86/tdx: Exclude shared bit from __PHYSICAL_MASK (jsc#PED-342).
+- commit 7c06d91
+
+- mmc: block: cleanup gendisk creation (jsc#PED-1183).
+- mmc: block: let device_add_disk create disk attributes
+ (jsc#PED-1183).
+- commit d09b05c
+
+- block: remove the bd_bdi in struct block_device (jsc#PED-1183).
+- block: move the bdi from the request_queue to the gendisk
+ (jsc#PED-1183).
+- block: add a queue_has_disk helper (jsc#PED-1183).
+- commit 6bd4b8b
+
+- block: pass a gendisk to blk_queue_update_readahead
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/nvme-multipath-revalidate-paths-during-rescan.patch.
+- commit 0d9ee3a
+
+- mm: hide laptop_mode_wb_timer entirely behind the BDI API
+ (jsc#PED-1183).
+- block: remove support for delayed queue registrations
+ (jsc#PED-1183).
+- dm: delay registering the gendisk (jsc#PED-1183).
+- dm: move setting md->type into dm_setup_md_queue (jsc#PED-1183).
+- dm: cleanup cleanup_mapped_device (jsc#PED-1183).
+- block: support delayed holder registration (jsc#PED-1183).
+- block: look up holders by bdev (jsc#PED-1183).
+- block: remove the extra kobject reference in bd_link_disk_holder
+ (jsc#PED-1183).
+- block: make the block holder code optional (jsc#PED-1183).
+- blk-mq: Introduce the BLK_MQ_F_NO_SCHED_BY_DEFAULT flag
+ (jsc#PED-1183).
+- block: remove blk-mq-sysfs dead code (jsc#PED-1183).
+- commit e8944f6
+
+- loop: raise media_change event (jsc#PED-1183).
+- Refresh patches.suse/loop-reduce-the-loop_ctl_mutex-scope.patch.
+- commit 6fac71e
+
+- block: add a helper to raise a media changed event
+ (jsc#PED-1183).
+- block: export diskseq in sysfs (jsc#PED-1183).
+- block: add ioctl to read the disk sequence number
+ (jsc#PED-1183).
+- block: export the diskseq in uevents (jsc#PED-1183).
+- block: add disk sequence number (jsc#PED-1183).
+- commit 08404d0
+
+- x86/tdx: Extend the confidential computing API to support TDX
+ guests (jsc#PED-342).
+- commit ee89ba2
+
+- block: remove cmdline-parser.c (jsc#PED-1183).
+- block: remove disk_name() (jsc#PED-1183).
+- block: simplify disk name formatting in check_partition
+ (jsc#PED-1183).
+- block: simplify printing the device names disk_stack_limits
+ (jsc#PED-1183).
+- block: use the %pg format specifier in show_partition
+ (jsc#PED-1183).
+- block: use the %pg format specifier in printk_all_partitions
+ (jsc#PED-1183).
+- commit ae60bd5
+
+- block: reduce stack usage in diskstats_show (jsc#PED-1183).
+- Refresh patches.suse/block-update-io_ticks-when-io-hang.patch.
+- commit 0a2cd44
+
+- block: remove bdput (jsc#PED-1183).
+- block: remove bdgrab (jsc#PED-1183).
+- commit e133466
+
+- loop: don't grab a reference to the block device (jsc#PED-1183).
+- block: change the refcounting for partitions (jsc#PED-1183).
+- block: allocate bd_meta_info later in add_partitions
+ (jsc#PED-1183).
+- commit 2f8408c
+
+- block: unhash the whole device inode earlier (jsc#PED-1183).
+- block: assert the locking state in delete_partition
+ (jsc#PED-1183).
+- commit 8def158
+
+- x86/tdx: Add __tdx_module_call() and __tdx_hypercall() helper
+ functions (jsc#PED-342).
+- commit 4d36a19
+
+- block: take destination bvec offsets into account in
+ bio_copy_data_iter (jsc#PED1183).
+- commit 5428532
+
+- block: use bvec_kmap_local in bio_integrity_process
+ (jsc#PED1183).
+- block: use bvec_kmap_local in t10_pi_type1_{prepare,complete}
+ (jsc#PED1183).
+- block: use memcpy_from_bvec in __blk_queue_bounce (jsc#PED1183).
+- block: use memcpy_from_bvec in bio_copy_kern_endio_read
+ (jsc#PED1183).
+- block: use memcpy_to_bvec in copy_to_high_bio_irq (jsc#PED1183).
+- block: rewrite bio_copy_data_iter to use bvec_kmap_local and
+ memcpy_to_bvec (jsc#PED1183).
+- block: remove bvec_kmap_irq and bvec_kunmap_irq (jsc#PED1183).
+- ps3disk: use memcpy_{from,to}_bvec (jsc#PED1183).
+- dm-writecache: use bvec_kmap_local instead of bvec_kmap_irq
+ (jsc#PED1183).
+- rbd: use memzero_bvec (jsc#PED1183).
+- block: use memzero_page in zero_fill_bio (jsc#PED1183).
+- bvec: add memcpy_{from,to}_bvec and memzero_bvec helper
+ (jsc#PED1183).
+- bvec: add a bvec_kmap_local helper (jsc#PED1183).
+- bvec: fix the include guards for bvec.h (jsc#PED1183).
+- MIPS: don't include <linux/genhd.h> in <asm/mach-rc32434/rb.h>
+ (jsc#PED1183).
+- commit f380fe3
+
+- x86/tdx: Provide common base for SEAMCALL and TDCALL C wrappers
+ (jsc#PED-342).
+- Refresh
+ patches.suse/KVM-VMX-Prevent-RSB-underflow-before-vmenter.patch.
+- commit 5700a12
+
+- x86/tdx: Detect running as a TDX guest in early boot
+ (jsc#PED-342).
+- Update config files.
+- Refresh patches.suse/x86-retpoline-Cleanup-some-ifdefery.patch.
+- commit 4cddcd7
+
+- mm/debug_vm_pgtable: drop protection_map[] usage (jsc#PED-1981).
+- mm: debug_vm_pgtable: don't use __P000 directly (jsc#PED-1981).
+- commit 3e71232
+
+- Move upstreamed tracing patch into sorted section
+- commit c9209ac
+
+- hv_netvsc: Fix race between VF offering and VF association
+ message from host (bsc#1204850).
+- commit e9c6d7c
+
+- arm64: entry: avoid kprobe recursion (git-fixes).
+- Documentation: devres: add missing I2C helper (git-fixes).
+- i2c: piix4: Fix adapter not be removed in piix4_remove()
+ (git-fixes).
+- efi/tpm: Pass correct address to memblock_reserve (git-fixes).
+- arm64: dts: juno: Add thermal critical trip points (git-fixes).
+- firmware: arm_scmi: Make Rx chan_setup fail on memory errors
+ (git-fixes).
+- firmware: arm_scmi: Suppress the driver's bind attributes
+ (git-fixes).
+- arm64: dts: ls208xa: specify clock frequencies for the MDIO
+ controllers (git-fixes).
+- arm64: dts: ls1088a: specify clock frequencies for the MDIO
+ controllers (git-fixes).
+- arm64: dts: lx2160a: specify clock frequencies for the MDIO
+ controllers (git-fixes).
+- dt-bindings: power: gpcv2: add power-domains property
+ (git-fixes).
+- arm64: dts: imx8: correct clock order (git-fixes).
+- ARM: dts: imx6qdl-gw59{10,13}: fix user pushbutton GPIO offset
+ (git-fixes).
+- commit 9fbcbe8
+
+- scsi: bnx2fc: Avoid using get_cpu() in bnx2fc_cmd_alloc()
+ (jsc#PED-1517).
+- scsi: fcoe: Use per-CPU API to update per-CPU statistics
+ (jsc#PED-1517).
+- scsi: bnx2fc: Fix spelling mistake "mis-match" -> "mismatch"
+ (jsc#PED-1517).
+- scsi: bnx2fc: Stop using the SCSI pointer (jsc#PED-1517).
+- scsi: bnx2fc: Make use of the helper macro kthread_run()
+ (jsc#PED-1517).
+- scsi: bnx2fc: Fix typo in comments (jsc#PED-1517).
+- commit 248604a
+
+- x86/mm: disable instrumentations of mm/pgprot.c (jsc#PED-1981).
+- commit 204bb3e
+
+- powerpc/mm: Support execute-only memory on the Radix MMU
+ (jsc#PED-1981).
+- mm/mmap: drop ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- arm/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- s390/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- mm/mmap: build protect protection_map[] with
+ ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- x86/mm: move protection_map[] inside the platform
+ (jsc#PED-1981).
+- arm64/mm: move protection_map[] inside the platform
+ (jsc#PED-1981).
+- powerpc/mm: move protection_map[] inside the platform
+ (jsc#PED-1981).
+- mm/mmap: define DECLARE_VM_GET_PAGE_PROT (jsc#PED-1981).
+- mm/mmap: build protect protection_map[] with __P000
+ (jsc#PED-1981).
+- mm/mmap: drop arch_vm_get_page_pgprot() (jsc#PED-1981).
+- mm/mmap: drop arch_filter_pgprot() (jsc#PED-1981).
+- x86/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- arm64/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- powerpc/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- mm/mmap: add new config ARCH_HAS_VM_GET_PAGE_PROT
+ (jsc#PED-1981).
+- mm/mmap: clarify protection_map[] indices (jsc#PED-1981).
+- mm: generalize ARCH_HAS_FILTER_PGPROT (jsc#PED-1981).
+- commit a3908cf
+
+- scsi: core: Remove the request member from struct scsi_cmnd
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Use-a-structure-member-to-track-the-SCSI-command-submitter.patch.
+- Refresh
+ patches.suse/scsi-do-not-print-reservation-conflict-for-TEST-UNIT.patch.
+- commit 202c860
+
+- Move upstreamed patches into sorted section
+- commit 490afd7
+
+- KVM: x86: Cap KVM_CAP_NR_VCPUS by KVM_CAP_MAX_VCPUS
+ (jsc#PED-2064).
+- commit 4798ea3
+
+- x86/sev: Don't use cc_platform_has() for early SEV-SNP calls
+ (bsc#1204970).
+- x86/boot: Don't propagate uninitialized
+ boot_params->cc_blob_address (bsc#1204970).
+- x86/boot: Fix the setup data types max limit (bsc#1204970).
+- x86/compressed/64: Add identity mappings for setup_data entries
+ (bsc#1204970).
+- x86/sev: Annotate stack change in the #VC handler (bsc#1204970).
+- x86/sev: Remove duplicated assignment to variable info
+ (bsc#1204970).
+- commit 1ad6c0c
+
+- KVM: x86: Drop arbitrary KVM_SOFT_MAX_VCPUS (jsc#PED-2064).
+- commit 749b13f
+
+- kvm: rename KVM_MAX_VCPU_ID to KVM_MAX_VCPU_IDS (jsc#PED-2064).
+- commit 41fefea
+
+- kvm: x86: Increase KVM_SOFT_MAX_VCPUS to 710 (jsc#PED-2064).
+- commit 6f118a7
+
+- kvm: x86: Increase MAX_VCPUS to 1024 (jsc#PED-2064).
+- commit 7046326
+
+- selftests/pidfd_test: Remove the erroneous ',' (git-fixes).
+- vsock: fix possible infinite sleep in
+ vsock_connectible_wait_data() (git-fixes).
+- vsock: remove the unused 'wait' in vsock_connectible_recvmsg()
+ (git-fixes).
+- mISDN: fix possible memory leak in mISDN_register_device()
+ (git-fixes).
+- rose: Fix NULL pointer dereference in rose_send_frame()
+ (git-fixes).
+- nfc: nfcmrvl: Fix potential memory leak in
+ nfcmrvl_i2c_nci_send() (git-fixes).
+- nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()
+ (git-fixes).
+- nfc: nxp-nci: Fix potential memory leak in nxp_nci_send()
+ (git-fixes).
+- nfc: fdp: Fix potential memory leak in fdp_nci_send()
+ (git-fixes).
+- xhci: Remove device endpoints from bandwidth list when freeing
+ the device (git-fixes).
+- xhci-pci: Set runtime PM as default policy on all xHC 1.2 or
+ later devices (git-fixes).
+- xhci: Add quirk to reset host back to default state at shutdown
+ (git-fixes).
+- usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being
+ a V0.96 controller (git-fixes).
+- kernfs: fix use-after-free in __kernfs_remove (git-fixes).
+- serial: core: move RS485 configuration tasks from drivers into
+ core (git-fixes).
+- commit 356bf7e
+
+- ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes).
+- Bluetooth: virtio_bt: Use skb_put to set length (git-fixes).
+- Bluetooth: L2CAP: Fix use-after-free caused by
+ l2cap_reassemble_sdu (git-fixes).
+- isdn: mISDN: netjet: fix wrong check of device registration
+ (git-fixes).
+- fs/binfmt_elf: Fix memory leak in load_elf_binary() (git-fixes).
+- commit 9e67c0b
+
+- Move upstreamed BT fixes into sorted section
+- commit 9cff1e2
+
+- kvm: x86: Set KVM_MAX_VCPU_ID to 4*KVM_MAX_VCPUS (jsc#PED-2064).
+- commit 5a21e82
+
+- blacklist.conf: add 8250_mtk entry that was reverted
+- commit c43b30f
+
+- Update config files.
+- commit f8b438f
+
+- scsi: ufs: Request sense data asynchronously (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS.
+- commit 5b785bb
+
+- usb: dwc3: pci: Add PCIe device ID for USB3 controller on CPU
+ sub-system for Alder Lake P (jsc#PED-1817).
+- commit 5611b2f
+
+- usb: dwc3: pci: Update the macro names for USB PCIe device
+ ID's for Alder Lake platforms.
+- commit 4db7e75
+
+- usb: dwc3: pci: Add support for Intel Alder Lake (jsc#PED-1817).
+- commit 7c11f19
+
+- scsi: target: iscsi: Rename iscsi_conn to iscsit_conn
+ (jsc#PED-1509).
+- scsi: target: iscsi: Rename iscsi_cmd to iscsit_cmd
+ (jsc#PED-1509).
+- scsi: target: Add iscsi/cpus_allowed_list in configfs
+ (jsc#PED-1509).
+- scsi: target: cxgbit: Enable Delayed ACK (jsc#PED-1509).
+- scsi: target: cxgbit: Increase max DataSegmentLength
+ (jsc#PED-1509).
+- scsi: target: Remove redundant assignment to variable ret
+ (jsc#PED-1509).
+- commit 3c7b966
+
+- blacklist.conf: added two invasive scsi fixes (jsc#PED-1509)
+- commit 6611d69
+
+- scsi: storvsc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit abcefb7
+
+- scsi: usb-storage: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: tcm_loop: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: xen-scsifront: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: virtio_scsi: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- commit 66cf33c
+
+- scsi: ufs: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh patches.suse/scsi-ufs-core-scsi_get_lba-error-fix.patch.
+- commit 3b3c660
+
+- scsi: sym53c8xx: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: sun3_scsi: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- commit a1abc07
+
+- scsi: stex: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh patches.suse/scsi-stex-Call-scsi_done-directly.patch.
+- commit 3b9bdaf
+
+- scsi: snic: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: scsi_debug: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: qlogicpti: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: qla4xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: qla1280: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit 76b569f
+
+- scsi: ncr53c8xx: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: myrs: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: myrb: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: mvumi: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit 454ec4e
+
+- scsi: mpt3sas: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-mpt3sas-Use-the-proper-SCSI-midlayer-interfaces.patch.
+- commit 28339db
+
+- scsi: libsas: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: ips: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: ibmvscsi: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: ibmvfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: hpsa: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: hisi_sas: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- commit 40bbe2d
+
+- scsi: fnic: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Remove-the-done-argument-from-SCSI-queuecommand_lck-functions.patch.
+- Refresh patches.suse/scsi-fnic-Call-scsi_done-directly.patch.
+- Refresh patches.suse/scsi-fnic-Fix-a-tracing-statement.patch.
+- commit 5d696da
+
+- scsi: dpt_i2o: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: cxlflash: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: aha1542: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: advansys: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: NCR5380: Use sc_data_direction instead of rq_data_dir()
+ (jsc#PED-1559).
+- scsi: 53c700: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit 86603c7
+
+- scsi: ata: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh patches.suse/scsi-ata-Call-scsi_done-directly.patch.
+- commit d14876e
+
+- scsi: scsi_transport_spi: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: scsi_transport_fc: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: sr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: sd: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit 5ae2c44
+
+- scsi: core: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Add-helper-to-return-number-of-logical-blo.patch.
+- Refresh
+ patches.suse/scsi-core-Rename-scsi_mq_done-into-scsi_done-and-export-it.patch.
+- Refresh
+ patches.suse/scsi-core-Use-a-structure-member-to-track-the-SCSI-command-submitter.patch.
+- commit 65b943c
+
+- scsi: ufs: Synchronize SCSI and UFS error handling
+ (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-Fix-race-conditions-related-to-driver-data.
+- commit c27d199
+
+- usb: dwc3: core: fix some leaks in probe (git-fixes).
+- commit f151478
+
+- usb: dwc3: debug: show events parameters in hex (jsc#PED-1817).
+- commit bfc751a
+
+- scsi: ufs: Optimize SCSI command processing (jsc#PED-818).
+- Update
+ patches.suse/scsi-ufs-Retry-aborted-SCSI-commands-instead-of-comp.patch
+ (jsc#PED-818).
+- Update
+ patches.suse/scsi-ufs-ufs-pci-Fix-Intel-LKF-link-stability.patch
+ (jsc#PED-818).
+- commit 30ae188
+
+- usb: dwc3: Fix bare use of unsigned checkpatch warning
+ (jsc#PED-1817).
+- commit 909eacb
+
+- scsi: ufs: Inline ufshcd_outstanding_req_clear() (jsc#PED-818).
+- scsi: ufs: Remove several wmb() calls (jsc#PED-818).
+- commit 034dff5
+
+- scsi: ufs: Improve static type checking for the host
+ (jsc#PED-818).
+- Refresh patches.suse/scsi-ufs-Call-scsi_done-directly.patch.
+- Refresh
+ patches.suse/scsi-ufs-Fix-a-deadlock-in-the-error-handler.patch.
+- commit 83f5077
+
+- usb: dwc3: add power down scale setting.
+- commit 38b4418
+
+- scsi: ufs: Verify UIC locking requirements at runtime
+ (jsc#PED-818).
+- commit 3218f64
+
+- scsi: ufs: Remove ufshcd_valid_tag() (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-Fix-a-deadlock-in-the-error-handler.patch.
+- Refresh patches.suse/scsi-ufs-Fix-the-SCSI-abort-handler.patch.
+- Refresh
+ patches.suse/scsi-ufs-Fix-unsigned-int-compared-with-less-than-ze.patch.
+- Refresh patches.suse/scsi-ufs-Remove-dead-code.patch.
+- commit 4a4a476
+
+- usb: dwc3: host: Stop setting the ACPI companion (jsc#PED-1817).
+- commit 40c12b1
+
+- usb: dwc3: EP clear halt leading to clearing of delayed_status
+ (jsc#PED-1817).
+- commit 41e49dd
+
+- USB: gadget: Add ID numbers to gadget names (jsc#PED-1817).
+- commit abba912
+
+- USB: gadget: Add a new bus for gadgets (jsc#PED-1817).
+- commit 71557d2
+
+- scsi: ufs: Rename the second ufshcd_probe_hba() argument
+ (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS.
+- commit 81cd4a9
+
+- scsi: ufs: Only include power management code if necessary
+ (jsc#PED-818).
+- commit 7aae000
+
+- scsi: ufs: Reduce power management code duplication
+ (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-ufs-pci-Add-support-for-Intel-ADL.patch.
+- Refresh
+ patches.suse/scsi-ufs-ufs-pci-Add-support-for-Intel-MTL.patch.
+- commit 0798fbe
+
+- scsi: ufs: Allow async suspend/resume callbacks (jsc#PED-1559).
+- commit 859a0be
+
+- scsi: ufs: core: Use scsi_get_lba() to get LBA (jsc#PED-1559).
+- Refresh patches.suse/scsi-ufs-core-scsi_get_lba-error-fix.patch.
+- commit 53218d3
+
+- scsi: ufs: Refactor ufshcd_is_intr_aggr_allowed()
+ (jsc#PED-1559).
+- commit dd7279f
+
+- scsi: core: Make scsi_get_lba() return the LBA (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Add-helper-to-return-number-of-logical-blo.patch.
+- commit a435c49
+
+- scsi: pm8001: Remove redundant initialization of variable 'rv'
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-pm80xx-Update-WARN_ON-check-in-pm8001_mpi_build_cmd.
+- commit 4e95793
+
+- scsi: elx: efct: Remove redundant initialization of variable
+ (jsc#PED-1559).
+- scsi: snic: Remove redundant assignment to variable ret
+ (jsc#PED-1559).
+- commit ac4f44c
+
+- scsi: bsg-lib: Fix commands without data transfer in
+ (jsc#PED-1559).
+- scsi: bsg: Fix commands without data transfer in (jsc#PED-1559).
+- scsi: bsg: Move the whole request execution into the
+ (jsc#PED-1559).
+- scsi: block: Remove the remaining SG_IO-related fields from
+ (jsc#PED-1559).
+- scsi: block: Remove BLK_SCSI_MAX_CMDS (jsc#PED-1559).
+- commit b97a71c
+
+- ALSA: hda: cs35l41: Utilize acpi_get_subsystem_id()
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ALSA-hda-cs35l41-Support-System-Suspend.patch.
+- commit 8550ce4
+
+- scsi: bsg: Simplify device registration (jsc#PED-1559).
+- Update
+ patches.suse/scsi-core-Register-sysfs-attributes-earlier.patch
+ (jsc#PED-1559).
+- commit 16ae25e
+
+- ALSA: hda/realtek: simplify the return of comp_bind()
+ (jsc#PED-850).
+- ALSA: hda/hdmi: Limit the maximal count of PCM devices to 8
+ (jsc#PED-850).
+- ALSA: hda/hdmi: Use only dynamic PCM device allocation
+ (jsc#PED-850).
+- ALSA: hda/ca0132 - remove the unneeded result variable
+ (jsc#PED-850).
+- ALSA: hda/hdmi: ELD procfs - print the codec NIDs (jsc#PED-850).
+- ALSA: hda/hdmi: Simplify the pcm_idx condition in
+ hdmi_pcm_setup_pin() (jsc#PED-850).
+- ALSA: hda: add snd_hdac_stop_streams() helper (jsc#PED-850).
+- ALSA: hda: cs35l41: Call put_device() in the scope of
+ get_device() (jsc#PED-850).
+- ALSA: hda: beep: Simplify keep-power-at-enable behavior
+ (jsc#PED-850).
+- ALSA: hda/hdmi: Replace zero-length array with
+ DECLARE_FLEX_ARRAY() helper (jsc#PED-850).
+- ALSA: hda: cleanup definitions for multi-link registers
+ (jsc#PED-850).
+- ALSA: hda: Remove unused defines (jsc#PED-850).
+- ALSA: hda: Remove unused MAX_PIN_CONFIGS constant (jsc#PED-850).
+- ALSA: hda: Always free codec on the device release
+ (jsc#PED-850).
+- commit d98a166
+
+- scsi: sr: cdrom: Move cdrom_read_cdda_bpc() into the sr
+ (jsc#PED-1559).
+- commit 8b9b02b
+
+- scsi: libsas: Drop BLK_DEV_BSGLIB selection (jsc#PED-1559).
+- scsi: libsas: Allow libsas to include SCSI header files
+ (jsc#PED-1559).
+- commit dd3b173
+
+- ALSA: hda: cs35l41: Fix build error unused-function
+ (jsc#PED-850).
+- blacklist.conf: drop the backported entry
+- Refresh
+ patches.suse/ALSA-hda-cs35l41-Support-System-Suspend.patch.
+- commit 1949e96
+
+- PM: core: Add new *_PM_OPS macros, deprecate old ones
+ (jsc#PED-850).
+- PM: core: Redefine pm_ptr() macro (jsc#PED-850).
+- commit 7226af8
+
+- ALSA: hda/realtek: Make use of the helper
+ component_compare_dev_name (jsc#PED-850).
+- Refresh
+ patches.suse/ALSA-hda-cs35l41-Remove-Set-Channel-Map-api-from-bin.patch.
+- Refresh
+ patches.suse/ALSA-hda-cs35l41-Save-codec-object-inside-component-.patch.
+- Refresh
+ patches.suse/ALSA-hda-realtek-More-robust-component-matching-for-.patch.
+- commit 2370fb9
+
+- ASoC: amd: yc: Add Lenovo Yoga Slim 7 Pro X to quirks table
+ (jsc#PED-850).
+- ASoC: amd: yc: Add ASUS UM5302TA into DMI table (jsc#PED-850).
+- ALSA: intel-dspconfig: add ES8336 support for AlderLake-PS
+ (jsc#PED-850).
+- commit 88de70c
+
+- scsi: sd: Fix crashes in sd_resume_runtime() (jsc#PED-1559).
+- scsi: scsi_ioctl: Unexport sg_scsi_ioctl() (jsc#PED-1559).
+- scsi: scsi_ioctl: Factor SG_IO handling into a helper
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Factor SCSI_IOCTL_GET_IDLUN handling into
+ a helper (jsc#PED-1559).
+- scsi: scsi_ioctl: Consolidate the START STOP UNIT handling
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Remove a very misleading comment
+ (jsc#PED-1559).
+- scsi: core: Rename CONFIG_BLK_SCSI_REQUEST to CONFIG_SCSI_COMMON
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Move the "block layer" SCSI ioctl handling
+ to drivers/scsi (jsc#PED-1559).
+- scsi: scsi_ioctl: Simplify SCSI passthrough permission
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Move scsi_command_size_tbl to scsi_common.c
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Remove scsi_req_init() (jsc#PED-1559).
+- scsi: bsg: Move bsg_scsi_ops to drivers/scsi/ (jsc#PED-1559).
+- scsi: bsg: Decouple from scsi_cmd_ioctl() (jsc#PED-1559).
+- scsi: block: Add a queue_max_bytes() helper (jsc#PED-1559).
+- scsi: scsi_ioctl: Call scsi_cmd_ioctl() from scsi_ioctl()
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Remove scsi_verify_blk_ioctl() (jsc#PED-1559).
+- scsi: scsi_ioctl: Remove scsi_cmd_blk_ioctl() (jsc#PED-1559).
+- scsi: cdrom: Remove the call to scsi_cmd_blk_ioctl() from
+ cdrom_ioctl() (jsc#PED-1559).
+- scsi: st: Simplify ioctl handling (jsc#PED-1559).
+- scsi: core: Remove scsi_compat_ioctl() (jsc#PED-1559).
+- scsi: sg: Consolidate compat ioctl handling (jsc#PED-1559).
+- scsi: ch: Consolidate compat ioctl handling (jsc#PED-1559).
+- scsi: sd: Consolidate compat ioctl handling (jsc#PED-1559).
+- scsi: sr: Consolidate compat ioctl handling (jsc#PED-1559).
+- scsi: core: Add BLIST_IGN_MEDIA_CHANGE for Ultra HS-SD/MMC
+ (jsc#PED-1559).
+- scsi: sd: REQUEST SENSE for BLIST_IGN_MEDIA_CHANGE devices in
+ (jsc#PED-1559).
+- commit 14236ba
+
+- scsi: core: Add new flag BLIST_IGN_MEDIA_CHANGE (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Add-BLIST_NO_ASK_VPD_SIZE-for-some-VDASD.patch.
+- Refresh
+ patches.suse/scsi-core-sd-Add-silence_suspend-flag-to-suppress-some-PM-messages.patch.
+- Refresh
+ patches.suse/scsi-make-sure-that-request-queue-queiesce-and-unqui.patch.
+- commit 5ec93ba
+
+- scsi: scsi_debug: Improve RDPROTECT/WRPROTECT handling
+ (jsc#PED-1559).
+- scsi: scsi_debug: Remove dump_sector() (jsc#PED-1559).
+- commit aedbc46
+
+- IB/core: Fix a nested dead lock as part of ODP flow (git-fixes)
+- commit 6f2ee60
+
+- USB: gadget: Fix mistakes in UDC core kerneldoc (jsc#PED-1817).
+- commit e2b3f30
+
+- USB: gadget: Register udc before gadget (jsc#PED-1817).
+- commit ce73342
+
+- usb: Remove redundant 'flush_workqueue()' calls (jsc#PED-1817).
+- commit a7fc6e6
+
+- usb: gadget: udc: core: Revise comments for USB ep
+ enable/disable (jsc#PED-1817).
+- commit fa96de3
+
+- USB: gadget: udc: Remove some dead code (jsc#PED-1817).
+- commit c4d776a
+
+- usb: gadget: udc: core: Print error code in
+ usb_gadget_probe_driver() (jsc#PED-1817).
+- commit 172a5d3
+
+- usb: gadget: aspeed: Remove repeated verbose license text
+ (jsc#PED-1917).
+- commit 86efa6c
+
+- ASoC: soc-pcm.c: call __soc_pcm_close() in soc_pcm_close()
+ (jsc#PED-850).
+- commit cff81ba
+
+- Refresh patches.suse/ppc64-kdump-Limit-kdump-base-to-512MB.patch
+ to upstream version.
+- commit 0f63234
+
+- ASoC: tegra20-spdif: stop setting slave_id (jsc#PED-850).
+- commit 4702843
+
+- ASoC: rt5640: Fix the issue of the abnormal JD2 status
+ (jsc#PED-850).
+- ASoC: rt5640: Fix the JD voltage dropping issue (jsc#PED-850).
+- ASoC: codecs: rt274: Set component to NULL on remove
+ (jsc#PED-850).
+- ASoC: codecs: rt298: Set component to NULL on remove
+ (jsc#PED-850).
+- ASoC: codecs: rt286: Set component to NULL on remove
+ (jsc#PED-850).
+- ASoC: codecs: rt298: Fix jack detection (jsc#PED-850).
+- ASoC: codecs: rt298: Fix NULL jack in interrupt (jsc#PED-850).
+- ASoC: rt5640: Add the MICBIAS1 to the dapm routing
+ (jsc#PED-850).
+- ASoC: codecs: soundwire: call pm_runtime_resume() in component
+ probe (jsc#PED-850).
+- ASoC: codecs: rt274: Always init jack_detect_work (jsc#PED-850).
+- ASoC: rt5640: Fix the wrong state of JD1 and JD2 (jsc#PED-850).
+- ASoC: rt1308-sdw: add the default value of register 0xc320
+ (jsc#PED-850).
+- ASoC: rt5645: Fix the error handling of rt5645_i2c_probe()
+ (jsc#PED-850).
+- ASoC: rt1316-sdw: Add endianness flag in
+ snd_soc_component_driver (jsc#PED-850).
+- ASoC: rt1308-sdw: Add endianness flag in
+ snd_soc_component_driver (jsc#PED-850).
+- ASoC: rt715-sdca: Add endianness flag in
+ snd_soc_component_driver (jsc#PED-850).
+- ASoC: rt715: Add endianness flag in snd_soc_component_driver
+ (jsc#PED-850).
+- ASoC: rt700: Add endianness flag in snd_soc_component_driver
+ (jsc#PED-850).
+- ASoC: rt1019: Add endianness flag in snd_soc_component_driver
+ (jsc#PED-850).
+- commit 0f6c8bf
+
+- ASoC: rt711/5682: check if bus is active before deferred jack
+ detection (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-rt7-sdw-harden-jack_detect_handler.patch.
+- commit dfab873
+
+- ASoC: rt*: use simple i2c probe function (jsc#PED-850).
+- ASoC: rt5682s: Separate the regulator consumer controls
+ (jsc#PED-850).
+- ASoC: rt1308-sdw: get calibration params after power on
+ (jsc#PED-850).
+- ASoC: rt5682s: Stabilize the combo jack detection (jsc#PED-850).
+- ASoC: rt5640: Remove the sysclk and sysclk_src checking
+ (jsc#PED-850).
+- ASoC: rt5682s: Fix the wrong jack type detected (jsc#PED-850).
+- ASoC: rt5682s: do not block workqueue if card is unbound
+ (jsc#PED-850).
+- ASoC: rt5682: Register wclk with its parent_hws instead of
+ parent_data (jsc#PED-850).
+- ASoC: rt1011: revert 'I2S Reference' to SOC_ENUM_EXT
+ (jsc#PED-850).
+- ASoC: rt5682s: use 'static' qualifier (jsc#PED-850).
+- ASoC: rt5682-i2c: Use devm_clk_get_optional for optional clock
+ (jsc#PED-850).
+- ASoC: rt5682s: Downsizing the DAC volume scale (jsc#PED-850).
+- ASoC: rt1011: Fix 'I2S Reference' enum control (jsc#PED-850).
+- ASoC: rt1011: Fix 'I2S Reference' enum control caused error
+ (jsc#PED-850).
+- ASoC: rt5682s: Fix hp pop produced immediately after resuming
+ (jsc#PED-850).
+- ASoC: rt5682s: Fix HP noise caused by SAR mode switch when
+ the system resumes (jsc#PED-850).
+- ASoC: rt5682s: Enable ASRC auto-disable to fix pop during jack
+ plug-in while playback (jsc#PED-850).
+- ASoC: rt5682s: Revise the macro RT5682S_PLLB_SRC_MASK
+ (jsc#PED-850).
+- ASoC: rt5682s: Use dev_dbg instead of pr_debug (jsc#PED-850).
+- ASoC: rt5682s: Remove the volatile SW reset register from
+ reg_default (jsc#PED-850).
+- ASoC: rt5682s: make rt5682s_aif2_dai_ops and
+ rt5682s_soc_component_dev (jsc#PED-850).
+- ASoC: rt1011: add i2s reference control for rt1011
+ (jsc#PED-850).
+- commit db632b2
+
+- ASoC: core: Correct spelling fliped -> flipped (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-core-Always-send-the-CPU-DAI-a-direct-clock-spe.patch.
+- commit 2306d72
+
+- ASoC: soc-component: Add comment for the endianness flag
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-soc-component-Add-legacy_dai_naming-flag.patch.
+- commit 9c88bef
+
+- ASoC: madera: Replace kernel.h with the necessary inclusions
+ (jsc#PED-850).
+- ASoC: core: Add new SOC_DOUBLE_SX_TLV macro (jsc#PED-850).
+- ASoC: hdmi-codec: Update to modern DAI terminology
+ (jsc#PED-850).
+- ASoC: soc.h: Add SOC_SINGLE_S_EXT_TLV macro (jsc#PED-850).
+- ASoC: soc.h: Introduce SOC_DOUBLE_R_S_EXT_TLV() macro
+ (jsc#PED-850).
+- ASoC: Intel: avs: Declare vendor tokens (jsc#PED-850).
+- ASoC: soc.h: Add SOC_SINGLE_S_TLV() macro (jsc#PED-850).
+- ALSA: cleanup double word in comment (jsc#PED-850).
+- ASoC: rt5682s: add delay time to fix pop sound issue
+ (jsc#PED-850).
+- ALSA: uapi: use C90 comment style instead of C99 style
+ (jsc#PED-850).
+- ALSA: pcm: comment about relation between msbits hw parameter
+ and [S|U]32 formats (jsc#PED-850).
+- commit f97ebfc
+
+- ASoC: soc-component: Remove conditional definition of debugfs
+ data members (jsc#PED-850).
+- Refresh patches.suse/asoc-suse-kabi-padding.patch.
+- commit b948484
+
+- ASoC: SOF: Drop resindex_dma_base, dma_engine, dma_size from
+ sof_dev_desc (jsc#PED-850).
+- ALSA: hda_audio_ext: fix kernel-doc (jsc#PED-850).
+- commit 1783f94
+
+- ALSA: hda: Once again fix regression of page allocations with
+ IOMMU (jsc#PED-850).
+- ALSA: memalloc: Revive x86-specific WC page allocations again
+ (jsc#PED-850).
+- ASoC: DPCM: Don't pick up BE without substream (jsc#PED-850).
+- ALSA: pcm: Replace sprintf() with sysfs_emit() (jsc#PED-850).
+- ALSA: core: Replace scnprintf() with sysfs_emit() (jsc#PED-850).
+- ALSA: control-led: Replace sprintf() with sysfs_emit()
+ (jsc#PED-850).
+- ALSA: pcm: Use deferred fasync helper (jsc#PED-850).
+- ASoC: soc-pcm: demote warnings on non-atomic BE connection
+ (jsc#PED-850).
+- ASoC: soc-core.c: share code for
+ snd_soc_of_get_dai_link_cpus/codecs() (jsc#PED-850).
+- ASoC: soc-core.c: fixup snd_soc_of_get_dai_link_cpus()
+ (jsc#PED-850).
+- ASoC: dapm: Move stereo autodisable check (jsc#PED-850).
+- ASoC: topology: KUnit: Followup prototype change of
+ snd_soc_unregister_card() (jsc#PED-850).
+- ASoC: ops: Fix integer detection for when max possible values >
+ 1 (jsc#PED-850).
+- ASoC: ops: Fix boolean/integer detection for simple controls
+ (jsc#PED-850).
+- ASoC: ops: Don't modify the driver's plaform_max when reading
+ state (jsc#PED-850).
+- ASoC: Introduce 'fixup_controls' card method (jsc#PED-850).
+- ASoC: soc-dai: Remove set_fmt_new callback (jsc#PED-850).
+- ASoC: core: Always send the CPU DAI a direct clock specifier
+ (jsc#PED-850).
+- ASoC: ops: Remove unneeded delay.h inclusion (jsc#PED-850).
+- ASoC: ops: Clarify snd_soc_info_volsw_sx() (jsc#PED-850).
+- ALSA: core: Fix missing return value comments for kernel docs
+ (jsc#PED-850).
+- ALSA: memalloc: Fix missing return value comments for kernel
+ docs (jsc#PED-850).
+- ALSA: control: Fix missing return value comments for kernel docs
+ (jsc#PED-850).
+- ALSA: compress: Fix kernel doc warnings (jsc#PED-850).
+- ALSA: dmaengine: Fix missing return value comments for kernel
+ docs (jsc#PED-850).
+- ALSA: pcm: Fix missing return value comments for kernel docs
+ (jsc#PED-850).
+- ALSA: compress: Enable kernel doc markers for some functions
+ (jsc#PED-850).
+- ALSA: rawmidi: Take buffer refcount while draining output
+ (jsc#PED-850).
+- ALSA: rawmidi: Check stream state at exported functions
+ (jsc#PED-850).
+- ALSA: rawmidi: Take open_mutex around parameter changes
+ (jsc#PED-850).
+- ALSA: rawmidi: Move lock to snd_rawmidi_substream (jsc#PED-850).
+- ALSA: rawmidi: Make internal functions local static
+ (jsc#PED-850).
+- ASoC: topology: Drop superfluous check of
+ CONFIG_SND_CTL_VALIDATION (jsc#PED-850).
+- ALSA: memalloc: Drop x86-specific hack for WC allocations
+ (jsc#PED-850).
+- ASoC: soc-pcm: fix BE transition for TRIGGER_START
+ (jsc#PED-850).
+- ASoC: soc-component: Update handling to component delays
+ (jsc#PED-850).
+- ASoC: core: Pass legacy_dai_naming flag directly (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: Use default config when none
+ is given (jsc#PED-850).
+- ASoC: soc-core: remove always-false path (jsc#PED-850).
+- ASoC: soc-pcm: improve BE transition for TRIGGER_START
+ (jsc#PED-850).
+- ASoC: soc-pcm: improve BE transition for PAUSE_RELEASE
+ (jsc#PED-850).
+- commit e51218e
+
+- ASoC: soc-utils: Add helper to calculate BCLK from TDM info
+ (jsc#PED-850).
+- ASoC: topology: Rename soc_tplg_init_kcontrol() function
+ (jsc#PED-850).
+- ASoC: topology: Correct error message (jsc#PED-850).
+- ASoC: topology: Rename SOC_TPLG_PASS_MIXER to _CONTROL
+ (jsc#PED-850).
+- ASoC: topology: Return bool instead of int (jsc#PED-850).
+- ASoC: topology: Remove unnecessary looping (jsc#PED-850).
+- ASoC: topology: Use for loop instead of while (jsc#PED-850).
+- ASoC: Introduce snd_soc_of_get_dai_link_cpus (jsc#PED-850).
+- ALSA: seq: replace ternary operator with max() (jsc#PED-850).
+- ASoC: soc-core: add debugfs_prefix member to
+ snd_soc_component_driver (jsc#PED-850).
+- ASoC: soc-pcm: use GFP_KERNEL when the code is sleepable
+ (jsc#PED-850).
+- ALSA: memalloc: Add fallback SG-buffer allocations for x86
+ (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: set period_bytes_min based
+ on maxburst (jsc#PED-850).
+- ASoC: topology: Remove superfluous error prints (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: separate max_buffer_size
+ assignment (jsc#PED-850).
+- ALSA: oss: Release temporary buffers upon errors (jsc#PED-850).
+- ALSA: core: Fix typo in 'PCM Timer Interface' help
+ (jsc#PED-850).
+- ALSA: seq: oss: fix typo (jsc#PED-850).
+- ALSA: seq: oss: use kzalloc (jsc#PED-850).
+- commit 9ab936f
+
+- ASoC: ops: Check for negative values before reading them
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-7f3d90a35196.patch.
+- Refresh
+ patches.suse/ASoC-ops-Shift-tested-values-in-snd_soc_put_volsw-by.patch.
+- commit 08e21d0
+
+- ASoC: soc-pcm: Move debugfs removal out of spinlock
+ (jsc#PED-850).
+- ASoC: soc-pcm: Fix DPCM lockdep warning due to nested stream
+ locks (jsc#PED-850).
+- ASoC: topology: Fix typo (jsc#PED-850).
+- ASoC: core: Add snd_soc_of_parse_pin_switches() from
+ simple-card-utils (jsc#PED-850).
+- ASoC: dai_dma: remove slave_id field (jsc#PED-850).
+- ASoC: soc-pcm: fix BE handling of PAUSE_RELEASE (jsc#PED-850).
+- ASoC: soc-pcm: test refcount before triggering (jsc#PED-850).
+- ASoC: soc-pcm: serialize BE triggers (jsc#PED-850).
+- commit 0a8975a
+
+- ASoC: soc-pcm: Fix and cleanup DPCM locking (jsc#PED-850).
+- ASoC: soc-pcm: align BE 'atomicity' with that of the FE
+ (jsc#PED-850).
+- ASoC: soc-pcm: use GFP_ATOMIC for dpcm structure (jsc#PED-850).
+- ASoC: soc-pcm: tidyup soc_pcm_pointer()'s delay update method
+ (jsc#PED-850).
+- ALSA: oss: remove useless NULL check before kfree (jsc#PED-850).
+- ALSA: memalloc: Unify x86 SG-buffer handling (take#3)
+ (jsc#PED-850).
+- ASoC: Stop dummy from overriding hwparams (jsc#PED-850).
+- ASoC: topology: Change topology device to card device
+ (jsc#PED-850).
+- ASoC: topology: Use correct device for prints (jsc#PED-850).
+- commit 7db64dd
+
+- ASoC: topology: handle endianness warning (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-topology-Correct-error-handling-in-soc_tplg_dap.patch.
+- commit 1aa23db
+
+- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at
+ dmaengine_pcm_hw_params() (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-dmaengine-Restore-NULL-prepare_slave_config-cal.patch.
+- Refresh
+ patches.suse/ASoC-dmaengine-do-not-use-a-NULL-prepare_slave_confi.patch.
+- commit 2a6f02e
+
+- ASoC: topology: Check for dapm widget completeness
+ (jsc#PED-850).
+- ASoC: topology: Add header payload_size verification
+ (jsc#PED-850).
+- ASoC: core: Remove invalid snd_soc_component_set_jack call
+ (jsc#PED-850).
+- ASoC: soc-core: accept zero format at
+ snd_soc_runtime_set_dai_fmt() (jsc#PED-850).
+- ASoC: soc-core: tidyup empty function (jsc#PED-850).
+- ASoC: soc-pcm: tidyup soc_pcm_hw_clean() - step2 (jsc#PED-850).
+- ASoC: soc-pcm: tidyup soc_pcm_hw_clean() - step1 (jsc#PED-850).
+- ASoC: soc-component: improve error reporting for register access
+ (jsc#PED-850).
+- ASoC: dmaengine: Introduce module option
+ prealloc_buffer_size_kbytes (jsc#PED-850).
+- ASoC: compress/component: Use
+ module_get_when_open/put_when_close for cstream (jsc#PED-850).
+- ASoC: soc-component: Convert the mark_module to void*
+ (jsc#PED-850).
+- ASoC: soc-topology: Move template info print
+ soc_tplg_dapm_widget_create() (jsc#PED-850).
+- ASoC: Revert PCM trigger changes (jsc#PED-850).
+- ASoC: soc-pcm: test refcount before triggering (jsc#PED-850).
+- ASoC: soc-ac97: cleanup cppcheck warning (jsc#PED-850).
+- ASoC: soc-component: cleanup cppcheck warning at
+ snd_soc_pcm_component_pm_runtime_get() (jsc#PED-850).
+- ASoC: soc-jack: cleanup cppcheck warning for CONFIG_GPIOLIB
+ (jsc#PED-850).
+- ASoC: soc-jack: cleanup cppcheck warning at
+ snd_soc_jack_report() (jsc#PED-850).
+- ASoC: soc-dai: cleanup cppcheck warning at snd_soc_pcm_dai_new()
+ (jsc#PED-850).
+- ASoC: soc-dai: cleanup cppcheck warning at
+ snd_soc_dai_link_set_capabilities() (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at
+ dmaengine_copy_user() (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at
+ dmaengine_pcm_new() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ soc_dapm_dai_stream_event() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ snd_soc_dapm_new_controls() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ snd_soc_dapm_weak_routes() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ snd_soc_dapm_add_routes() (jsc#PED-850).
+- commit b5f8c2c
+
+- ASoC: soc-ops: cleanup cppcheck warning at snd_soc_put_xr_sx()
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-2b7c46369f09.patch.
+- Refresh
+ patches.suse/ASoC-ops-Reject-out-of-bounds-values-in-snd_soc_put_-4cf28e9ae6e2.patch.
+- commit 6287e8d
+
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ snd_soc_dapm_del_route() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_seq_run()
+ (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ dapm_seq_check_event() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_new_dai_link()
+ (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_new_pga()
+ (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ dapm_set_mixer_path_status() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_connect_mux()
+ (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_wcache_lookup()
+ (jsc#PED-850).
+- ASoC: soc-ops: cleanup cppcheck warning at snd_soc_get_xr_sx()
+ (jsc#PED-850).
+- commit 426f2b5
+
+- ASoC: soc-ops: cleanup cppcheck warning at
+ snd_soc_put_volsw_sx() (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-7f3d90a35196.patch.
+- Refresh
+ patches.suse/ASoC-ops-Reject-out-of-bounds-values-in-snd_soc_put_-4f1e50d6a9cf.patch.
+- commit 26b601a
+
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_get_dai_name() (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-soc-core-skip-zero-num_dai-component-in-searchi.patch.
+- commit 09f5c3a
+
+- ASoC: soc-ops: cleanup cppcheck warning at
+ snd_soc_limit_volume() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ snd_soc_find_dai_link() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ soc_tplg_kcontrol_elems_load() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ soc_tplg_dapm_widget_elems_load() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ soc_tplg_dai_elems_load() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ soc_tplg_process_headers() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_of_parse_audio_routing() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_of_parse_audio_simple_widgets() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_add_controls() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_unregister_component() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_daifmt_parse_format() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_set_dmi_name() (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at
+ dpcm_runtime_setup_be_chan() (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at dpcm_be_is_active()
+ (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at
+ soc_get_playback_capture() (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at
+ soc_pcm_components_close() (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at soc_pcm_apply_msb()
+ (jsc#PED-850).
+- commit f269c98
+
+- ASoC: Export DAI register and widget ctor and dctor functions
+ (jsc#PED-850).
+- commit 7fc094d
+
+- ALSA: Add snd_pcm_direction_name() helper (jsc#PED-850).
+- commit d9a2cc8
+
+- Update config files: enable CONFIG_SND_SOC_HDA (jsc#PED-850)
+- commit 7be7af9
+
+- ASoC: hdac_hda: Add endianness flag in snd_soc_component_driver
+ (jsc#PED-850).
+- ASoC: hdac_hda: Avoid unexpected match when pcm_name is "Analog"
+ (jsc#PED-850).
+- commit 5773ce0
+
+- ALSA: hda: Skip event processing for unregistered codecs
+ (jsc#PED-850).
+- Refresh patches.suse/hdaudio-suse-kabi-padding.patch.
+- commit cc04cc9
+
+- ALSA: hda/hdmi: add keep-alive support for ADL-P and DG2
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ALSA-hda-hdmi-Fix-the-converter-allocation-for-the-s.patch.
+- Refresh
+ patches.suse/ALSA-hda-hdmi-change-type-for-the-assigned-variable.patch.
+- commit d6b0bb5
+
+- ALSA: hda: Fix crash due to jack poll in suspend (jsc#PED-850).
+- Revert "ALSA: hda: Fix page fault in snd_hda_codec_shutdown()"
+ (jsc#PED-850).
+- ASoC: codecs: Add HD-Audio codec driver (jsc#PED-850).
+- ALSA: hda: Fix page fault in snd_hda_codec_shutdown()
+ (jsc#PED-850).
+- ALSA: hda: Fix put_device() inconsistency in error path
+ (jsc#PED-850).
+- ALSA: hda: Make device usage_count consistent across subsequent
+ probing (jsc#PED-850).
+- ALSA: hda: Fix null-ptr-deref when i915 fails and hdmi is
+ denylisted (jsc#PED-850).
+- ALSA: hda: MTL: add HD Audio PCI ID and HDMI codec vendor ID
+ (jsc#PED-850).
+- ALSA: hda/via: Delete does not require return (jsc#PED-850).
+- ALSA: hda/tegra: Enable Jack poll for tegra (jsc#PED-850).
+- ALSA: hda: Jack detection poll in suspend state (jsc#PED-850).
+- ALSA: hda/hdmi: add HDMI codec VID for Raptorlake-P
+ (jsc#PED-850).
+- ALSA: hda: Add helper macros for DSP capable devices
+ (jsc#PED-850).
+- ALSA: hda: Expose codec cleanup and power-save functions
+ (jsc#PED-850).
+- ALSA: hda: Update and expose codec register procedures
+ (jsc#PED-850).
+- ALSA: hda: Update and expose snd_hda_codec_device_init()
+ (jsc#PED-850).
+- commit 47acdb2
+
+- ALSA: hda: intel-dsp-config: add missing RaptorLake PCI IDs
+ (jsc#PED-850).
+- ALSA: hda: Replace sprintf() with sysfs_emit() (jsc#PED-850).
+- ALSA: hda: Remove unused macro definition (jsc#PED-850).
+- ALSA: hda: Reset all SIE bits in INTCTL (jsc#PED-850).
+- tracing: ALSA: hda: Remove string manipulation out of the fast
+ path (jsc#PED-850).
+- ALSA: intel-dspconfig: add ES8336 support for CNL (jsc#PED-850).
+- ALSA: intel-dsp-config: add more ACPI HIDs for ES83x6 devices
+ (jsc#PED-850).
+- ALSA: hda/i915 - avoid hung task timeout in i915 wait
+ (jsc#PED-850).
+- ALSA: hda: Add snd_hdac_ext_bus_link_at() helper (jsc#PED-850).
+- ALSA: HDA: hdac_ext_stream: use consistent prefixes for
+ variables (jsc#PED-850).
+- commit 4592dc3
+
+- Add already cherry-picked IDs for ASoC fixes
+- commit 1873074
+
+- ASoC: SOF: Intel: pci-mtl: fix firmware name (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Free the ida when IPC fails in
+ sof_ipc4_widget_setup() (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195: Import namespace
+ SND_SOC_SOF_MTK_COMMON (jsc#PED-850).
+- ASoC: amd: acp: add missing platform_device_unregister()
+ in acp_pci_probe() (jsc#PED-850).
+- ALSA: hda: intel-nhlt: Move structs out of #define block
+ (jsc#PED-850).
+- codecs: rt5682s: fix an incorrect NULL check on list iterator
+ (jsc#PED-850).
+- ASoC: rt5682s: Fix crash due to out of scope stack vars
+ (jsc#PED-850).
+- ASoC: soc-acpi: Set mach->id field on comp_ids matches
+ (jsc#PED-850).
+- commit 36bf397
+
+- ASoC: Intel: sof_sdw: add support for Dell SKU 0AFF
+ (jsc#PED-850).
+- ASoC: SOF: Kconfig: Make IPC_MESSAGE_INJECTOR depend on
+ SND_SOC_SOF (jsc#PED-850).
+- ASoC: SOF: Kconfig: Make IPC_FLOOD_TEST depend on SND_SOC_SOF
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: fix alh_group_ida max value
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: fix wrong use of sizeof in
+ sof_ipc4_widget_setup_comp_src() (jsc#PED-850).
+- soundwire: qcom: remove duplicate reset control get
+ (jsc#PED-850).
+- ASoC: Intel: fix sof_es8336 probe (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Fix potential buffer overflow by
+ snprintf() (jsc#PED-850).
+- ASoC: Intel: avs: Fix potential buffer overflow by snprintf()
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Fix clang -Wformat warning
+ (jsc#PED-850).
+- ASoC: amd: yc: Update DMI table entries for AMD platforms
+ (jsc#PED-850).
+- ASoC: amd: acp: Fix initialization of ext_intr_stat1 in
+ i2s_irq_handler() (jsc#PED-850).
+- ASoC: Intel: sof_nau8825: Move quirk check to the front in
+ late probe (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Perform quirk check first in card
+ late probe (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Add support for mtl_mx98357_rt5682
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: remove hard-coded SSP selection
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: reset the num_links during probe
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add support for HDMI_In capture
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: ignore GpioInt when looking for
+ speaker/headset GPIO lines (jsc#PED-850).
+- ASoC: Intel: sof_es8336: Fix GPIO quirks set via module option
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: Add entry for sof_es8336 in ADL match
+ table (jsc#PED-850).
+- ASoC: Intel: sof_sdw: add support for Dell SKU 0AF0
+ (jsc#PED-850).
+- ASoC: SOF: dai-intel: add SOF_DAI_INTEL_SSP_CLKCTRL_MCLK_AON
+ bit (jsc#PED-850).
+- ASoC: SOF: Add cont_update_posn to platform parameters
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: add sanity check on SSP index reported
+ by NHLT (jsc#PED-850).
+- ASoC: amd: yc: Update DMI table entries (jsc#PED-850).
+- ASoC: SOF: dai-intel: add SOF_DAI_INTEL_SSP_CLKCTRL_MCLK/BCLK_ES
+ bits (jsc#PED-850).
+- commit a3024d1
+
+- Update config files: update for AMD ACP (jsc#PED-850)
+- commit a6ab389
+
+- ASoC: Intel: avs: Use lookup table to create modules
+ (jsc#PED-850).
+- ASoC: amd: vangogh: Use non-legacy DAI naming for cs35l41
+ (jsc#PED-850).
+- ASoC: amd: enable RPL Platform acp drivers build (jsc#PED-850).
+- ASoC: amd: add RPL Platform pci driver pm-ops (jsc#PED-850).
+- ASoC: amd: add RPL Platform init/de-init functions
+ (jsc#PED-850).
+- ASoC: amd: add ACP PCI driver for RPL platform (jsc#PED-850).
+- ASoC: amd: add RPL Platform acp header file (jsc#PED-850).
+- ASoC: amd: acp: Add error handling cases (jsc#PED-850).
+- ASoC: amd: acp: Modify const resource struct variable to generic
+ (jsc#PED-850).
+- ASoC: amd: acp: Drop superfluous mmap callback (jsc#PED-850).
+- ASoC: amd: acp: Modify local variables name to generic
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: test DMA buffer first in hw_params
+ (jsc#PED-850).
+- ASoC: SOF: probes: rename assign/free callbacks as
+ startup/shutdown (jsc#PED-850).
+- ASoC: SOF: Intel: hda: only fixup topology name if not set
+ already (jsc#PED-850).
+- ASoC: SOF: Intel: hda: don't set fw_filename (jsc#PED-850).
+- ASoC: SOF: Intel: atom: don't keep a temporary string in
+ fixup_tplg_name (jsc#PED-850).
+- ASoC: SOF: ipc3-loader: Print out the non matching ext_man
+ magic number (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: set domain bit based on dp domain type
+ (jsc#PED-850).
+- ASoC: SOF: add ipc4 SRC module support (jsc#PED-850).
+- ASoC: SOF: ipc4-pcm: set pcm rate to dai setting (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: move ida allocate/free to
+ widget_setup/free (jsc#PED-850).
+- ASoC: SOF: Intel: MTL: remove redundant snd_sof_dsp_read()
+ call (jsc#PED-850).
+- ASoC: SOF: mediatek: fix mt8195 StatvectorSel wrong setting
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Revise mt8195 boot flow (jsc#PED-850).
+- ASoC: amd: yc: Decrease level of error message (jsc#PED-850).
+- ASoC: SOF: Intel: enable dmic handling with 2 or fewer SoundWire
+ links (jsc#PED-850).
+- ASoC: Intel: sof_sdw: add quirk for HP Omen 16-k0005TX
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add table for HP Omen 16-k0005TX
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: avoid oops in error handling
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt5677: Mark BE DAI as nonatomic (jsc#PED-850).
+- ASoC: Intel: bdw_rt5650: Mark BE DAI as nonatomic (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Mark BE DAI as nonatomic (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Mark BE DAI as nonatomic (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: fix copy in
+ sof_msg_inject_ipc4_dfs_write() (jsc#PED-850).
+- ASoC: SOF: Intel: add trigger callback into sdw_callback
+ (jsc#PED-850).
+- soundwire: Intel: add trigger callback (jsc#PED-850).
+- ASoC: amd: fix Jadeite kconfig warning and build errors
+ (jsc#PED-850).
+- ASoC: amd: Fix error pointer dereference (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Correct the ROM/FW state reporting code
+ (jsc#PED-850).
+- uapi: sof: abi: Bump SOF ABI for ext_data_length (jsc#PED-850).
+- ASoC: SOF: compress: Prevent current kernel running with older
+ FW (jsc#PED-850).
+- ASoC: SOF: Copy compress parameters into extended data
+ (jsc#PED-850).
+- ASoC: SOF: compress: Dynamically allocate pcm params struct
+ (jsc#PED-850).
+- ASoC: SOF: Intel: mtl: Do not process IPC reply before firmware
+ boot (jsc#PED-850).
+- ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before
+ firmware boot (jsc#PED-850).
+- ASoC: SOF: Intel: cnl: Do not process IPC reply before firmware
+ boot (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: Do snd_hdac_ext_stream_decouple()
+ only once (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: Drop misleading comment regarding
+ dma_data (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Prevent double freeing of
+ ipc_control_data via load_bytes (jsc#PED-850).
+- ASoC: SOF: sof-client-probes: Only load the driver if IPC3 is
+ used (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Introduce skip_imr_boot flag
+ (jsc#PED-850).
+- ASoC: SOF: topology: remove unused variable (jsc#PED-850).
+- ASoC: Intel: avs: Update AVS_FW_INIT_TIMEOUT_US declaration
+ (jsc#PED-850).
+- ASoC: Intel: avs: Lower UNLOAD_MULTIPLE_MODULES IPC timeout
+ (jsc#PED-850).
+- ASoC: Intel: avs: Replace hardcodes with SD_CTL_STREAM_RESET
+ (jsc#PED-850).
+- ASoC: Intel: avs: Recognize FW_CFG_RESERVED (jsc#PED-850).
+- ASoC: Intel: avs: Use helper function to set up DMA
+ (jsc#PED-850).
+- ASoC: Intel: avs: Set max DMA segment size (jsc#PED-850).
+- ASoC: Intel: avs: Block IPC channel on suspend (jsc#PED-850).
+- ASoC: Intel: avs: Shield LARGE_CONFIG_GETs against zero
+ payload_size (jsc#PED-850).
+- commit aa38bc3
+
+- Update config files: update for AMD MCP (jsc#PED-850)
+- commit 4e8f3fb
+
+- ASoC: Intel: avs: Copy only as many RX bytes as necessary
+ (jsc#PED-850).
+- ASoC: Intel: avs: Relax DSP core transition timings
+ (jsc#PED-850).
+- ASoC: Intel: avs: Assign I2S gateway when parsing topology
+ (jsc#PED-850).
+- ASoC: Intel: avs: Register HDAudio ext-bus operations
+ (jsc#PED-850).
+- ASoC: amd: acp: Add legacy audio driver support for Rembrandt
+ platform (jsc#PED-850).
+- ASoC: amd: acp: ACP code generic to support newer platforms
+ (jsc#PED-850).
+- ASoC: amd: acp: Remove rt1019_1 codec conf from machine driver
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: free memories allocated in
+ sof_ipc4_get_audio_fmt (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: check dai->private in ipc_free()
+ (jsc#PED-850).
+- ASoC: SOF: remove warning on ABI checks (jsc#PED-850).
+- commit 22832f9
+
+- Update config files: update for AMD MCP (jsc#PED-850)
+- commit aca4025
+
+- ASoC: Intel: sof_cs42l42: add adl_mx98360a_cs4242 board config
+ (jsc#PED-850).
+- ASoC: Intel: sof_cs42l42: support BT offload audio
+ (jsc#PED-850).
+- ASoC: amd: Remove duplicated include in acp-es8336.c
+ (jsc#PED-850).
+- ASoC: amd: fix for variable set but not used warning
+ (jsc#PED-850).
+- ASoC: amd: drop machine driver remove function (jsc#PED-850).
+- ASoC: amd: remove unused header file inclusion (jsc#PED-850).
+- ASoC: amd: acp-es8336: use static variables (jsc#PED-850).
+- ASoC: amd: fix ACPI dependency compile errors and warnings
+ (jsc#PED-850).
+- ASoC: Intel: avs: Fix i2s_test card name initialization
+ (jsc#PED-850).
+- ASoC: amd: enable machine driver build for Jadeite platform
+ (jsc#PED-850).
+- ASoC: amd: add Machine driver for Jadeite platform
+ (jsc#PED-850).
+- ASoC: amd: add I2S MICSP instance support (jsc#PED-850).
+- ASoC: SOF: Intel: byt: remove duplicating driver data retrieval
+ (jsc#PED-850).
+- ASoC: SOF: Intel: bdw: remove duplicating driver data retrieval
+ (jsc#PED-850).
+- ASoC: Intel: catpt: remove duplicating driver data retrieval
+ (jsc#PED-850).
+- ASoC: Intel: avs: correct config reference for I2S test board
+ (jsc#PED-850).
+- ASoC: Intel: avs: Remove now redundant non_legacy_dai_naming
+ flag (jsc#PED-850).
+- ASoC: sof: Migrate to new style legacy DAI naming flag
+ (jsc#PED-850).
+- ASoC: amd: Migrate to new style legacy DAI naming flag
+ (jsc#PED-850).
+- ASoC: Intel: Migrate to new style legacy DAI naming flag
+ (jsc#PED-850).
+- commit f8a95a0
+
+- soundwire: intel: Migrate to new style legacy DAI naming flag
+ (jsc#PED-850).
+- ASoC: soc-component: Add legacy_dai_naming flag (jsc#PED-850).
+- ASoC: Intel: skylake: skl-pcm: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: Intel: catpt: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Remove FE DAI ops (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Improve codec_init() quality
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Improve hw_params() debug-ability
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Improve probe() function quality
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Update file comments (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Update code indentation (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Reword driver name (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Reword prefixes of all driver members
+ (jsc#PED-850).
+- ASoC: Intel: Rename broadwell source file to bdw_rt286
+ (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Improve hw_params() debug-ability
+ (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Improve probe() function quality
+ (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Update file comments (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Update code indentation (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Reword driver name (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Reword prefixes of all driver members
+ (jsc#PED-850).
+- ASoC: Intel: Rename haswell source file to hsw_rt5640
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Align mt8186 clock names with dt-bindings
+ (jsc#PED-850).
+- ASoC: amd: acp: Fix error handling in .remove() (jsc#PED-850).
+- ASoC: SOF: pcm: use pm_resume_and_get() on component probe
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: remap jack pins (jsc#PED-850).
+- ASoC: Intel: sof_nau8825: remap jack pins (jsc#PED-850).
+- ASoC: Intel: sof_da7219_max98373: remap jack pins (jsc#PED-850).
+- ASoC: Intel: sof_cs42l42: remap jack pins (jsc#PED-850).
+- ASoC: Intel: cml_rt1011_rt5682: remap jack pins (jsc#PED-850).
+- ASoC: Intel: glk_rt5682_max98357a: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: bxt_da7219_max98357a: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: kbl_rt5663_rt5514_max98927: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: kbl_da7219_max98927: remap jack pins (jsc#PED-850).
+- ASoC: Intel: kbl_da7219_max98357a: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: kbl_rt5663_max98927: remap jack pins (jsc#PED-850).
+- ASoC: Intel: skl_nau88l25_ssm4567: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: skl_nau88l25_max98357a: remap jack pins
+ (jsc#PED-850).
+- commit cd8bc63
+
+- ASoC: codecs: rt715-sdca: remove useless assignment of ops
+ (jsc#PED-850).
+- commit e71653e
+
+- ASoC: soc-card: Create jack kcontrol without pins (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-Intel-sof_rt5682-fix-out-of-bounds-array-access.patch.
+- Refresh
+ patches.suse/ASoC-amd-acp-Add-support-for-nau8825-and-max98360-ca.patch.
+- commit 796e1db
+
+- ASoC: Intel: boards: sof_sdw: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: Intel: boards: hda: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc4: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-loader: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: Intel: mtl: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- commit eb5209d
+
+- Update config files: Intel SOF updates (jsc#PED-850)
+- commit 8eabe5a
+
+- ASoC: SOF: Intel: hda-dai: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: report error on stream not opened
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dsp: report error on power-up/down
+ (jsc#PED-850).
+- ASoC: SOF: Intel: IPC4: enable IMR boot (jsc#PED-850).
+- ASoC: Intel: Skylake: remove redundant re-assignments to
+ pointer array (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Fix error code in
+ sof_ipc4_volume_put() (jsc#PED-850).
+- ASoC: SOF: Intel: Add support for MeteorLake (MTL)
+ (jsc#PED-850).
+- ASoC: SOC: Intel: introduce cl_init callback (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: add SoundWire/ALH aggregation support
+ (jsc#PED-850).
+- ASoC: SOF: Compile and runtime IPC version selection
+ (jsc#PED-850).
+- ASoC: SOF: topology: add code to parse config params for
+ ACPDMIC dai (jsc#PED-850).
+- ASoC: SOF: reduce default verbosity of IPC logs (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: enhance debug messages (jsc#PED-850).
+- ASoC: intel: sof_sdw: add RT711 SDCA card for MTL platform
+ (jsc#PED-850).
+- ASoC: SOF: IPC4: add sdw blob (jsc#PED-850).
+- AsoC: SOF: ipc4-topology: Add dai_get_clk op (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for SSP/DMIC DAI's
+ (jsc#PED-850).
+- ASoC: SOF: Add a new IPC op for parsing topology manifest
+ (jsc#PED-850).
+- ASoC: SOF: Add two new structures for topology manifest data
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: init NHLT for IPC4 (jsc#PED-850).
+- ASoC: SOF: Add ops_free (jsc#PED-850).
+- ASoC: SOF: IPC4: set the BE DAI ops (jsc#PED-850).
+- ASoC: SOF: ipc4-pcm: Expose sof_ipc4_set_pipeline_state()
+ (jsc#PED-850).
+- commit 164020c
+
+- ASoC: SOF: ipc4-topology: Add the dai_config op (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add route_setup/route_free ops
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add widget_setup/widget_free ops
+ (jsc#PED-850).
+- ASoC: SOF: IPC4: Add pcm ops (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add control IO ops (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add control_setup op (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for parsing mixer widgets
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for parsing and preparing
+ pga widgets (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add prepare op for DAI type widgets
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add prepare op for AIF type widgets
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for parsing DAI_IN/DAI_OUT
+ widgets (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for parsing AIF_IN/AIF_OUT
+ widgets (jsc#PED-850).
+- ASoC: SOF: IPC4: Introduce topology ops (jsc#PED-850).
+- ASoC: SOF: Add topology tokens for IPC4 (jsc#PED-850).
+- ASoC: SOF: ipc4: implement pm ctx_save callback (jsc#PED-850).
+- ASoC: SOF: Intel: Switch to use the generic
+ pm_ops.set_core_state (jsc#PED-850).
+- ASoC: SOF: ipc4: Add set_core_state pm_ops implementation
+ (jsc#PED-850).
+- ASoC: SOF: ipc3: Add set_core_state pm_ops implementation
+ (jsc#PED-850).
+- ASoC: SOF: sof_ipc_pm_ops: Add support for DSP core power
+ management (jsc#PED-850).
+- ASoC: SOF: make ctx_store and ctx_restore as optional
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Return from dtrace_read if there is
+ no new data available (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Add helper function to update the
+ sdev->host_offset (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Introduce SOF_DTRACE_INITIALIZING state
+ (jsc#PED-850).
+- ASoC: codecs: rt298: Reorganize jack detect handling
+ (jsc#PED-850).
+- ASoC: codecs: rt286: Reorganize jack detect handling
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: SOF: debug: Clarify the IPC timeout handling path
+ (jsc#PED-850).
+- ASoC: Intel: Rename set_fmt_new back to set_fmt (jsc#PED-850).
+- ASoC: amd: vangogh: Rename set_fmt_new back to set_fmt
+ (jsc#PED-850).
+- ASoC: Intel: Update to use set_fmt_new callback (jsc#PED-850).
+- commit f503879
+
+- ASoC: amd: vangogh: Update to use set_fmt_new callback
+ (jsc#PED-850).
+- ASoC: core: Add set_fmt_new callback that directly specifies
+ provider (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195 suspend check dsp idle
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195 modify dram type as non-cache
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Add shared_size for mediatek common chip
+ information (jsc#PED-850).
+- ASoC: SOF: mediatek: revise mt8195 clock sequence (jsc#PED-850).
+- ASoC: SOF: amd: Add SOF pm ops callback for Renoir
+ (jsc#PED-850).
+- ASoC: Intel: broadwell: Make broadwell_disable_jack() return
+ void (jsc#PED-850).
+- ASoC: amd: acp: Add support for rt5682s and rt1019 card with
+ hs instance (jsc#PED-850).
+- ASoC: amd: acp: Add support for nau8825 and max98360 card
+ (jsc#PED-850).
+- ASoC: Intel: sof_pcm512x: remove unnecessary init (jsc#PED-850).
+- ASoC: Intel: boards: reset acpi_chan_package (jsc#PED-850).
+- ASoC: Intel: atom: controls: remove useless initializations
+ (jsc#PED-850).
+- ASoC: Intel: atom: sst_ipc: remove useless initializations
+ (jsc#PED-850).
+- ASoC: Intel: atom: sst_ipc: remove redundant test (jsc#PED-850).
+- ASoC: Intel: atom: sst: remove useless initialization
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add da7219 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add max98373 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add max98357a machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add ssm4567 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add nau8825 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add rt5682 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add rt298 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add rt286 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add rt274 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add I2S-test machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add DMIC machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add HDAudio machine board (jsc#PED-850).
+- ASoC: Intel: sof_sdw: allow HDaudio/HDMI disable (jsc#PED-850).
+- ASoC: Intel: boards: rename RTL1019 compatible driver to rt1019p
+ (jsc#PED-850).
+- ASoC: SOF: Intel: add MeteorLake machines (jsc#PED-850).
+- commit b5fa9c4
+
+- ASoC: amd: acp: fix typo in comment (jsc#PED-850).
+- soundwire: qcom: Enable software clock gating requirement flag
+ (jsc#PED-850).
+- soundwire: qcom: Add flag for software clock gating check
+ (jsc#PED-850).
+- soundwire: qcom: Add support for controlling audio CGCR from
+ HLOS (jsc#PED-850).
+- soundwire: intel: use pm_runtime_resume() on component probe
+ (jsc#PED-850).
+- soundwire: peripheral: remove useless ops pointer (jsc#PED-850).
+- soundwire: revisit driver bind/unbind and callbacks
+ (jsc#PED-850).
+- commit cf9d935
+
+- ASoC: Intel: sof_rt5682: fix out-of-bounds array access
+ (jsc#PED-850).
+- ASoC: SOF: Intel: disable IMR boot when resuming from ACPI S4
+ and S5 states (jsc#PED-850).
+- ASoC: SOF: pm: add definitions for S4 and S5 states
+ (jsc#PED-850).
+- ASoC: SOF: pm: add explicit behavior for ACPI S1 and S2
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Fix compressed stream position tracking
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Fix error code in probe (jsc#PED-850).
+- ASoC: Intel: avs: Fix parsing UUIDs in topology (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Move and correct size checks in
+ sof_ipc3_control_load_bytes() (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: Make sure that the fw load
+ sequence is followed (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dsp: Expose hda_dsp_core_power_up()
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Fix reversed if statement
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Propagate write errors correctly
+ (jsc#PED-850).
+- ASoC: SOF: Fix potential NULL pointer dereference (jsc#PED-850).
+- ASoC: Intel: cirrus-common: fix incorrect channel mapping
+ (jsc#PED-850).
+- soundwire: qcom: use pm_runtime_resume_and_get() (jsc#PED-850).
+- soundwire: intel: use pm_runtime_resume_and_get() (jsc#PED-850).
+- soundwire: cadence: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- soundwire: bus: use pm_runtime_resume_and_get() (jsc#PED-850).
+- soundwire: qcom: return error when pm_runtime_get_sync fails
+ (jsc#PED-850).
+- soundwire: bus: pm_runtime_request_resume on peripheral
+ attachment (jsc#PED-850).
+- soundwire: intel: disable WAKEEN in pm_runtime resume
+ (jsc#PED-850).
+- soundwire: cadence: recheck device0 attachment after status
+ change (jsc#PED-850).
+- soundwire: qcom: Add compatible name for v1.6.0 (jsc#PED-850).
+- soundwire: stream: Fix error return code in do_bank_switch()
+ (jsc#PED-850).
+- soundwire: qcom: fix an error message in
+ swrm_wait_for_frame_gen_enabled() (jsc#PED-850).
+- ASoC: Intel: avs: Fix build error on arc, m68k and sparc
+ (jsc#PED-850).
+- ASoC: Intel: common: fix typo for tplg naming (jsc#PED-850).
+- ASoC: rt5640: Do not manipulate pin "Platform Clock" if the
+ "Platform Clock" is not in the DAPM (jsc#PED-850).
+- ASoC: SOF: amd: Fixed Build error (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Move dtrace related variables local
+ from sof_dev (jsc#PED-850).
+- ASoC: SOF: Introduce opaque storage of private data for firmware
+ tracing (jsc#PED-850).
+- ASoC: SOF: Modify the host trace_init parameter list to include
+ dmab (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Move host ops wrappers from generic
+ header to private (jsc#PED-850).
+- ASoC: SOF: Switch to IPC generic firmware tracing (jsc#PED-850).
+- ASoC: SOF: Clone the trace code to ipc3-dtrace as fw_tracing
+ implementation (jsc#PED-850).
+- ASoC: SOF: Rename dtrace_is_supported flag to
+ fw_trace_is_supported (jsc#PED-850).
+- ASoC: SOF: Introduce IPC independent ops for firmware tracing
+ support (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8195 debug dump (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mediatek common debug dump
+ (jsc#PED-850).
+- ASoC: amd: acp: Set Speaker enable/disable pin through rt1019
+ codec driver (jsc#PED-850).
+- ASoC: SOF: sof-client-ipc-flood-test: use
+ pm_runtime_resume_and_get() (jsc#PED-850).
+- commit 477ca2d
+
+- ASoC: SOF: mediatek: remove duplicate include in mt8195.c
+ (jsc#PED-850).
+- ASoC: Intel: avs: APL-based platforms support (jsc#PED-850).
+- ASoC: Intel: avs: SKL-based platforms support (jsc#PED-850).
+- ASoC: Intel: avs: Power management (jsc#PED-850).
+- ASoC: Intel: avs: PCI driver implementation (jsc#PED-850).
+- ASoC: Intel: avs: Machine board registration (jsc#PED-850).
+- ASoC: Intel: avs: Replace link_mask usage with i2s_link_mask
+ (jsc#PED-850).
+- ASoC: Intel: avs: Event tracing (jsc#PED-850).
+- ASoC: Intel: avs: D0ix power state support (jsc#PED-850).
+- ASoC: Intel: avs: Prepare for firmware tracing (jsc#PED-850).
+- ASoC: Intel: avs: Coredump and recovery flow (jsc#PED-850).
+- ASoC: Intel: avs: HDA PCM BE operations (jsc#PED-850).
+- ASoC: Intel: avs: non-HDA PCM BE operations (jsc#PED-850).
+- ASoC: Intel: avs: Generic PCM FE operations (jsc#PED-850).
+- ASoC: Intel: avs: Generic soc component driver (jsc#PED-850).
+- ASoC: Intel: avs: Account for libraries when booting basefw
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Cap the rmaining to count in IPC4
+ mode (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8186 ipc support (jsc#PED-850).
+- ASoC: SOF: mediatek: Add ipc support for mt8195 (jsc#PED-850).
+- ASoC: amd: vangogh: Remove duplicate include files
+ (jsc#PED-850).
+- ASoC: SOF: Intel: HDA: Set up sof_ipc4_fw_data for IPC4
+ (jsc#PED-850).
+- ASoC: SOF: IPC4: Add FW loader ops (jsc#PED-850).
+- ASoC: SOF: Add header for IPC4 manifest (jsc#PED-850).
+- ASoC: SOF: Add IPC4 private header (jsc#PED-850).
+- ASoC: SOF: Intel: HDA: Set IPC4-specific DSP ops for CaVS
+ platforms (jsc#PED-850).
+- ASoC: SOF: amd: add missing platform_device_unregister in
+ acp_pci_rn_probe (jsc#PED-850).
+- ASoC: Intel: sof_ssp_amp: enable capture stream from cs35l41
+ (jsc#PED-850).
+- ASoC: Intel: sof_ssp_amp: fix no DMIC BE Link on Chromebooks
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Add support for adl_rt1019_rt5682s
+ (jsc#PED-850).
+- ASoC: SOF: ipc: introduce cont_update_posn in
+ sof_ipc_stream_params struct (jsc#PED-850).
+- ASoC: SOF: sof-client: IPC flood test can only work with SOF_IPC
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Add support for IPC4 messages
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Separate the message sending
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: Add support IPC4 message sending
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: Add API to get the ipc_type
+ (jsc#PED-850).
+- ASoC: SOF: sof-client-probes: Query the maximum IPC payload size
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Query the maximum IPC payload size
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: Add API to get the maximum IPC payload
+ size (jsc#PED-850).
+- ASoC: SOF: trace: The dtrace is only available with SOF_IPC
+ (jsc#PED-850).
+- ASoC: SOF: ipc4: Add support for mandatory message handling
+ functionality (jsc#PED-850).
+- ASoC: SOF: Add initial header file for ipc4 (jsc#PED-850).
+- ASoC: SOF: Add rx_data pointer to snd_sof_ipc_msg struct
+ (jsc#PED-850).
+- ASoC: SOF: ipc3: Remove the ipc3-ops.h header file
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Correct get_control_data for non
+ bytes payload (jsc#PED-850).
+- ASoC: SOF: Add a prepare op to IPC topology widget ops
+ (jsc#PED-850).
+- ASoC: SOF: clarify use of widget complete flag (jsc#PED-850).
+- ASoC: SOF: topology: Skip parsing DAI link tokens if not needed
+ (jsc#PED-850).
+- ASoC: SOF: pcm: remove unnecessary function declaration
+ (jsc#PED-850).
+- ASoC: SOF: Add two new fields to struct snd_sof_widget
+ (jsc#PED-850).
+- ASoC: SOF: Add a route_free op in struct sof_ipc_tplg_ops
+ (jsc#PED-850).
+- ASoC: SOF: bump SOF_ABI_MINOR (jsc#PED-850).
+- commit a12ea22
+
+- ASoC: SOF: expose a couple of functions (jsc#PED-850).
+- ASoC: SOF: pcm: Move the call to
+ snd_sof_pcm_platform_hw_params() (jsc#PED-850).
+- ASoC: SOF: sof-audio: Set up widgets from source to sink
+ (jsc#PED-850).
+- ASoC: SOF: sof-audio: reset route status before freeing widget
+ (jsc#PED-850).
+- ASoC: SOF: Add a new op to set up volume table (jsc#PED-850).
+- ASoC: SOF: loader: Call optional query_fw_configuration on
+ first boot (jsc#PED-850).
+- ASoC: SOF: loader: Remove snd_sof_parse_module_memcpy() as it
+ is not used (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195: Do not set the load_module ops
+ (jsc#PED-850).
+- ASoC: SOF: Intel: bdw/byt/pci-tng: Do not set the load_module
+ ops (jsc#PED-850).
+- ASoC: SOF: imx: Do not set the load_module ops (jsc#PED-850).
+- ASoC: SOF: amd: renoir: Do not set the load_module ops
+ (jsc#PED-850).
+- ASoC: SOF: loader: Switch to use the fw_loader ops
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Add check for fw_loader ops (jsc#PED-850).
+- ASoC: SOF: ipc3-loader: Implement firmware parsing and loading
+ (jsc#PED-850).
+- ASoC: SOF: Introduce IPC dependent ops for firmware handling,
+ loading (jsc#PED-850).
+- ASoC: SOF: sof-pci-dev: fix missing pci_release_regions()
+ on error in sof_pci_probe() (jsc#PED-850).
+- ASoC: SOF: sof-client-ipc-msg-injector: use
+ pm_runtime_resume_and_get() (jsc#PED-850).
+- ASoC: SOF: debug: use pm_runtime_resume_and_get() (jsc#PED-850).
+- ASoC: SOF: control: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Fix allyesconfig build error (jsc#PED-850).
+- ASoC: Intel: avs: Drop direct ACPI dependency (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195 change ipc timeout as 1 second
+ (jsc#PED-850).
+- ASoC: SOF: Intel: Do not (wrongly) assume positive return
+ value in IMR path (jsc#PED-850).
+- ASoC: Intel: atom: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: protect hw_params against successive
+ calls (jsc#PED-850).
+- ASoC: SOF: Intel: add helper for link DMA cleanups
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: reset dma_data and release stream
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: improve suspend case (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: move code to deal with hda
+ dai/dailink suspend (jsc#PED-850).
+- ASOC: SOF: Intel: hda-dai: add hda_dai_hw_free_ipc() helper
+ (jsc#PED-850).
+- ASoC: SOF: sof-audio: flag errors on pipeline teardown
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: regroup dai and link DMA operations
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: split link DMA and dai operations
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: use snd_soc_dai_get_widget() helper
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: simplify hda_dai_widget_update()
+ prototype (jsc#PED-850).
+- ASOC: SOF: Intel: hda-dai: consistent naming for HDA DAI and
+ HDA link DMA (jsc#PED-850).
+- ASoC: SOF: Intel: Add IPC-specific dai ops for IPC3
+ (jsc#PED-850).
+- ASoC: SOF: remove incorrect clearing of prepared flag
+ (jsc#PED-850).
+- ASoC: SOF: loader: Remove the old fw_ready related code
+ (jsc#PED-850).
+- ASoC: SOF: Intel: Do not set fw_ready callback (jsc#PED-850).
+- ASoC: SOF: imx: Do not set fw_ready callback (jsc#PED-850).
+- ASoC: SOF: amd: Do not set fw_ready callback (jsc#PED-850).
+- ASoC: SOF: Do not check for the fw_ready callback (jsc#PED-850).
+- ASoC: SOF: ipc3: Add local implementation for handling fw_ready
+ message (jsc#PED-850).
+- ASoC: SOF: mediatek: Add DSP system PM callback for mt8186
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8186 dsp clock support (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8186 sof fw loader and dsp ops
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8186 hardware support (jsc#PED-850).
+- ASoC: Intel: avs: Depend on SND_INTEL_DSP_CONFIG (jsc#PED-850).
+- ASoC: Intel: avs: Enable AVS driver only on x86 platforms
+ (jsc#PED-850).
+- commit f4a81b7
+
+- ASoC: SOF: sof-pci-dev: don't use the community key on APL
+ Chromebooks (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-SOF-pci-Change-DMI-match-info-to-support-all-Ch.patch.
+- commit a625481
+
+- ASoC: SOF: Intel: hda: Revisit IMR boot sequence (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-SOF-Intel-hda-loader-Clarify-the-cl_dsp_init-fl.patch.
+- commit cbf86ae
+
+- ASOC: SOF: pci: add ipc_type override for Intel IPC4 tests
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: simplify NHLT handling (jsc#PED-850).
+- ASoC: SOF: topology: Check w->sname validity once in
+ sof_connect_dai_widget() (jsc#PED-850).
+- ASoC: SOF: sof-audio: remove useless assignment (jsc#PED-850).
+- ASoC: SOF: amd: Use dedicated MBOX for ACP and PSP communication
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add psp_mbox_ready() and psp_send_cmd() callback
+ (jsc#PED-850).
+- ASoC: Intel: sof_ssp_amp: remove 'set-but-not-used' warning
+ (jsc#PED-850).
+- ASoC: SOF: using pm_runtime_resume_and_get to simplify the code
+ (jsc#PED-850).
+- ASoC: amd: acp: Add pm ops callback in machine driver
+ (jsc#PED-850).
+- ASoC: SOF: Intel: add IP identifier (jsc#PED-850).
+- ASoC: SOF: Intel: hda: expose some codeloader functions
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Define rom_status_reg in
+ sof_intel_dsp_desc (jsc#PED-850).
+- ASoC: SOF: Intel: hda: define check_ipc_irq op (jsc#PED-850).
+- ASoC: SOF: Intel: hda: use BIT() macros for consistency
+ (jsc#PED-850).
+- ASoC: SOF: Intel: move HDA_CL_STREAM_FORMAT definition to header
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: use common ops across platforms
+ (jsc#PED-850).
+- ASoC: SOF: remove const qualifier for 'struct snd_sof_dsp_ops'
+ (jsc#PED-850).
+- ASoC: SOF: sof-audio: preserve topology filename override in
+ nocodec mode (jsc#PED-850).
+- ASoC: SOF: sof-pci-dev: add parameter to override topology
+ filename (jsc#PED-850).
+- ASoC: SOF: sof-pci-dev: add parameter to override firmware
+ filename (jsc#PED-850).
+- ASoC: SOF: add IPC-dependent file names (jsc#PED-850).
+- ASoC: SOF: add default IPC capability and file paths
+ (jsc#PED-850).
+- ASoC: SOF: add path indirection to each IPC type (jsc#PED-850).
+- ASoC: SOF: add definitions for different IPC types
+ (jsc#PED-850).
+- ASoC: Intel: avs: Configure modules according to their type
+ (jsc#PED-850).
+- ASoC: Intel: avs: Prepare modules before bindings them
+ (jsc#PED-850).
+- ASoC: Intel: avs: Arm paths after creating them (jsc#PED-850).
+- ASoC: Intel: avs: Path state management (jsc#PED-850).
+- ASoC: Intel: avs: Path creation and freeing (jsc#PED-850).
+- ASoC: Intel: avs: Declare path and its components (jsc#PED-850).
+- ASoC: Intel: avs: Support link_mask formatted string
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add topology loading operations (jsc#PED-850).
+- ASoC: Intel: avs: Parse path and path templates tuples
+ (jsc#PED-850).
+- ASoC: Intel: avs: Parse pipeline and module tuples
+ (jsc#PED-850).
+- ASoC: Intel: avs: Parse pplcfg and binding tuples (jsc#PED-850).
+- ASoC: Intel: avs: Parse module-extension tuples (jsc#PED-850).
+- ASoC: Intel: avs: Add topology parsing infrastructure
+ (jsc#PED-850).
+- ASoC: SOF: Kconfig: Make SND_SOC_SOF_HDA_PROBES tristate
+ (jsc#PED-850).
+- commit e038201
+
+- ASoC: SOF: Intel: Check the bar size before remapping
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Move the ipc_set_get_comp_data() local to
+ ipc3-control (jsc#PED-850).
+- ASoC: SOF: sof-audio: Use the widget_kcontrol_setup ops for
+ kcontrol set up (jsc#PED-850).
+- ASoC: SOF: Add widget_kcontrol_setup control ops for IPC3
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Switch over to use the rx_msg ops (jsc#PED-850).
+- ASoC: SOF: ipc: Switch over to use the tx_msg and set_get_data
+ ops (jsc#PED-850).
+- ASoC: SOF: ipc: Use the get_reply ops in snd_sof_ipc_get_reply()
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Add check for mandatory IPC message handling
+ ops (jsc#PED-850).
+- ASoC: SOF: ipc: Separate the ops checks by functions/topics
+ (jsc#PED-850).
+- ASoC: SOF: ipc3: Implement rx_msg IPC ops (jsc#PED-850).
+- ASoC: SOF: ipc3: Implement the get_reply IPC ops (jsc#PED-850).
+- ASoC: SOF: ipc3: Implement the set_get_data IPC ops
+ (jsc#PED-850).
+- ASoC: SOF: ipc3: Use sof_ipc3_tx_msg() internally for message
+ sending (jsc#PED-850).
+- ASoC: SOF: ipc3: Implement the tx_msg IPC ops (jsc#PED-850).
+- ASoC: SOF: Add high level IPC IO callback definitions to ipc_ops
+ (jsc#PED-850).
+- ASoC: SOF: Add helper function to prepare and send an IPC
+ message (jsc#PED-850).
+- ASoC: amd: Add support for enabling DMIC on acp6x via _DSD
+ (jsc#PED-850).
+- ASoC: amd: Add driver data to acp6x machine driver
+ (jsc#PED-850).
+- ASoC: amd: yc: add new YC platform varaint support
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195 add shutdown callback (jsc#PED-850).
+- ASoC: SOF: OF: Add shutdown callback for SOF OF device
+ (jsc#PED-850).
+- ASoC: SOF: topology: Avoid open coded arithmetic in memory
+ allocation (jsc#PED-850).
+- ASoC: Intel: boards: Use temporary variable for struct device
+ (jsc#PED-850).
+- ASoC: SOF: Remove redundant return statements (jsc#PED-850).
+- ASoC: SOF: Remove header from struct snd_sof_ipc_msg
+ (jsc#PED-850).
+- ASoC: SOF: Drop 'header' parameter from tx_message() API
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Use msg->reply_data directly in
+ snd_sof_ipc_get_reply() (jsc#PED-850).
+- ASoC: SOF: disable dma trace in s0ix (jsc#PED-850).
+- ASoC: SOF: extend the interface to stop DMA trace (jsc#PED-850).
+- ASoC: SOF: Drop support for mapped control data (jsc#PED-850).
+- ASoC: SOF: ipc: Use ipc->max_payload_size for message/reply
+ size checking (jsc#PED-850).
+- ASoC: SOF: ipc: Add max_payload_size field in struct snd_sof_ipc
+ (jsc#PED-850).
+- ASoC: SOF: Remove dmab and dmab_bdl from snd_sof_dev struct
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: Use local snd_dma_buffer
+ (jsc#PED-850).
+- ASoC: Intel: catpt: Drop redundant enum constant (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Set scontrol->priv to NULL after
+ freeing it (jsc#PED-850).
+- ASoC: intel: atom: Remove superfluous flush_scheduled_work()
+ (jsc#PED-850).
+- ASoC: SOF: topology: use new sound control LED layer
+ (jsc#PED-850).
+- commit 96cf6fb
+
+- ASoC: Intel: sof_es8336: Add a quirk for Huawei Matebook D15
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add a quirk for headset at mic1 port
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: support a separate gpio to control
+ headphone (jsc#PED-850).
+- ASoC: Intel: sof_es8336: simplify speaker gpio naming
+ (jsc#PED-850).
+- ASoC: SOF: topology: Fix memory leak in sof_control_load()
+ (jsc#PED-850).
+- ASoC: SOF: topology: cleanup dailinks on widget unload
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Add support for max98360a speaker
+ amp on SSP2 (jsc#PED-850).
+- ASoC: SOF: topology: Fix memory leak of scontrol->name
+ (jsc#PED-850).
+- soundwire: qcom: use __maybe_unused for swrm_runtime_resume()
+ (jsc#PED-850).
+- soundwire: qcom: constify static struct qcom_swrm_data global
+ variables (jsc#PED-850).
+- soundwire: qcom: add in-band wake up interrupt support
+ (jsc#PED-850).
+- soundwire: qcom: add runtime pm support (jsc#PED-850).
+- soundwire: stream: make enable/disable/deprepare idempotent
+ (jsc#PED-850).
+- soundwire: stream: sdw_stream_add_ functions can be called
+ multiple times (jsc#PED-850).
+- soundwire: stream: introduce sdw_slave_rt_find() helper
+ (jsc#PED-850).
+- soundwire: stream: separate alloc and config within
+ sdw_stream_add_xxx() (jsc#PED-850).
+- soundwire: stream: move list addition to sdw_slave_alloc_rt()
+ (jsc#PED-850).
+- soundwire: stream: rename and move master/slave_rt_free routines
+ (jsc#PED-850).
+- soundwire: stream: group sdw_stream_ functions (jsc#PED-850).
+- soundwire: stream: split sdw_alloc_slave_rt() in alloc and
+ config (jsc#PED-850).
+- soundwire: stream: move sdw_alloc_slave_rt() before 'master'
+ helpers (jsc#PED-850).
+- soundwire: stream: split sdw_alloc_master_rt() in alloc and
+ config (jsc#PED-850).
+- soundwire: stream: simplify sdw_alloc_master_rt() (jsc#PED-850).
+- soundwire: stream: group sdw_port and sdw_master/slave_port
+ functions (jsc#PED-850).
+- soundwire: stream: add 'slave' prefix for port range checks
+ (jsc#PED-850).
+- soundwire: stream: split alloc and config in two functions
+ (jsc#PED-850).
+- soundwire: stream: split port allocation and configuration loops
+ (jsc#PED-850).
+- soundwire: stream: add alloc/config/free helpers for ports
+ (jsc#PED-850).
+- soundwire: stream: simplify check on port range (jsc#PED-850).
+- soundwire: stream: add slave runtime to list earlier
+ (jsc#PED-850).
+- soundwire: stream: remove unused parameter in
+ sdw_stream_add_slave (jsc#PED-850).
+- soundwire: Replace acpi_bus_get_device() (jsc#PED-850).
+- soundwire: bus: add dev_warn() messages to track UNATTACHED
+ devices (jsc#PED-850).
+- ASoC: SOF: Add a new dai_get_clk topology IPC op (jsc#PED-850).
+- ASoC: SOF: topology: Add ops for setting up and tearing down
+ pipelines (jsc#PED-850).
+- ASoC: SOF: expose sof_route_setup() (jsc#PED-850).
+- commit 82a7627
+
+- ASoC: SOF: Add dai_link_fixup PCM op for IPC3 (jsc#PED-850).
+- ASoC: SOF: Add trigger PCM op for IPC3 (jsc#PED-850).
+- ASoC: SOF: Define hw_params PCM op for IPC3 (jsc#PED-850).
+- ASoC: SOF: Introduce IPC3 PCM hw_free op (jsc#PED-850).
+- ASoC: SOF: pcm: expose the sof_pcm_setup_connected_widgets()
+ function (jsc#PED-850).
+- ASoC: SOF: Introduce IPC-specific PCM ops (jsc#PED-850).
+- ASoC: SOF: Add bytes_ext control IPC ops for IPC3 (jsc#PED-850).
+- ASoC: SOF: Add bytes_get/put control IPC ops for IPC3
+ (jsc#PED-850).
+- ASoC: SOF: Add enum_get/put control ops for IPC3 (jsc#PED-850).
+- ASoC: SOF: Add switch get/put IPC3 ops (jsc#PED-850).
+- ASoC: SOF: Add volume_get/put IPC3 ops (jsc#PED-850).
+- ASoC: SOF: Add IPC3 topology control ops (jsc#PED-850).
+- ASoC: SOF: Introduce IPC ops for kcontrol IO (jsc#PED-850).
+- ASoC: SOF: Make sof_suspend/resume IPC agnostic (jsc#PED-850).
+- ASoC: SOF: Make sof_widget_setup/free IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: set up scheduler widget before all other widgets
+ in the pipeline (jsc#PED-850).
+- ASoC: SOF: topology: Use kmemdup() to replace kzalloc + memcpy
+ (jsc#PED-850).
+- ASoC: SOF: topology: remove snd_sof_complete_pipeline()
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make widget binding IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make control parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make DAI widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make route setup IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make effect widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make siggen widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make asrc widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make src widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make mux/demux widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make mixer widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make pga widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make buffer widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make scheduler widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: Introduce IPC3 ops (jsc#PED-850).
+- ASoC: SOF: topology: Add helper function for processing tuple
+ arrays (jsc#PED-850).
+- ASoC: SOF: IPC: Introduce IPC ops (jsc#PED-850).
+- ASoC: SOF: Introduce struct snd_sof_dai_link (jsc#PED-850).
+- ASoC: SOF: Remove ipc_pcm_params() ops (jsc#PED-850).
+- ASoC: SOF: imx: Convert to use the generic
+ set_stream_data_offset ops (jsc#PED-850).
+- ASoC: SOF: Intel: Convert to use the generic
+ set_stream_data_offset ops (jsc#PED-850).
+- ASoC: SOF: Intel: hda-ipc: Add hda_set_stream_data_offset()
+ (jsc#PED-850).
+- ASoC: SOF: stream-ipc: Add sof_set_stream_data_offset()
+ (jsc#PED-850).
+- ASoC: SOF: Mark snd_sof_dsp_ops.ipc_pcm_params() callback
+ optional (jsc#PED-850).
+- ASoC: SOF: Introduce optional callback to configure stream
+ data offset (jsc#PED-850).
+- ASoC: SOF: pcm: Remove sof_pcm_dsp_params() wrapper
+ (jsc#PED-850).
+- ASoC: SOF: Make pcm_hw_params snd_sof_dsp_ops callback IPC
+ neutral (jsc#PED-850).
+- ASoC: SOF: sof-priv: Remove stale
+ snd_sof_ipc_stream_pcm_params() declaration (jsc#PED-850).
+- ASoC: Intel: soc-acpi: Add entry for rt711-sdca-sdw in ADL
+ match table (jsc#PED-850).
+- ASoC: SOF: Intel: add topology overwrite for Taniks
+ (jsc#PED-850).
+- ASoC: SOF: trace: Use proper DMA direction for the trace data
+ buffer (jsc#PED-850).
+- ASoC: SOF: compress: fix null check after dereference
+ (jsc#PED-850).
+- ASoC: Intel: avs: Code loading over HDA (jsc#PED-850).
+- commit 951b46c
+
+- Update config files: keep AVS config off (jsc#PED-850)
+- commit 3fd2397
+
+- ASoC: Intel: avs: Code loading over CLDMA (jsc#PED-850).
+- ASoC: Intel: avs: Implement CLDMA transfer (jsc#PED-850).
+- ASoC: Intel: avs: General code loading flow (jsc#PED-850).
+- ASoC: Intel: avs: Dynamic firmware resources management
+ (jsc#PED-850).
+- ASoC: Intel: avs: Declare module configuration types
+ (jsc#PED-850).
+- ASoC: Intel: avs: Firmware resources management utilities
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add basefw runtime-parameter requests
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add ROM requests (jsc#PED-850).
+- ASoC: Intel: avs: Add power management requests (jsc#PED-850).
+- ASoC: Intel: avs: Add module management requests (jsc#PED-850).
+- ASoC: Intel: avs: Add pipeline management requests
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add code loading requests (jsc#PED-850).
+- ASoC: Intel: avs: Inter process communication (jsc#PED-850).
+- ASoC: Intel: Introduce AVS driver (jsc#PED-850).
+- ASoC: SOF: move definition of snd_sof_ipc to header file
+ (jsc#PED-850).
+- ASoC: SOF: make struct snd_sof_dai IPC agnostic (jsc#PED-850).
+- ASoC: SOF: topology: Rename arguments in sof_parse_tokens()
+ (jsc#PED-850).
+- ASoC: SOF: topology: Rename arguments in sof_parse_token_sets()
+ (jsc#PED-850).
+- ASoC: SOF: topology: Modify signature for token parsing
+ functions (jsc#PED-850).
+- ASoC: SOF: Add a tuples array to struct snd_sof_widget
+ (jsc#PED-850).
+- ASoC: SOF: topology: make sof_route_load() IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: make struct snd_sof_widget IPC agnostic
+ (jsc#PED-850).
+- ASoC: Intel: bytcht_es8316: move comment to the right place
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add cfg-dmics component for UCM support
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: extend machine driver to support
+ ES8326 codec (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add support for JD inverted quirk
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: move comment to the right place
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: log all quirks (jsc#PED-850).
+- ASoC: Intel: sof_es8336: use NHLT information to set dmic and
+ SSP (jsc#PED-850).
+- ASoC: Intel: Revert "ASoC: Intel: sof_es8336: add quirk for
+ Huawei D15 2021" (jsc#PED-850).
+- commit 7695000
+
+- ASoC: Intel: sof_es8336: get codec device with ACPI instead
+ of bus search (jsc#PED-850).
+- ASoC: Intel: sof_es8336: make gpio optional (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add ESSX8336 support on Cannon Lake
+ machines (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add more ACPI HIDs for ES83x6 devices
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: quirk topology filename dynamically
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: report SSP link mask to machine driver
+ (jsc#PED-850).
+- ALSA: intel-nhlt: add helper to detect SSP link mask
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: retrieve DMIC number for I2S boards
+ (jsc#PED-850).
+- ASoC: soc-acpi: add information on I2S/TDM link mask
+ (jsc#PED-850).
+- ASoC: soc-acpi: fix kernel-doc descriptor (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Use devm_kzalloc() for the
+ rx_buffer (jsc#PED-850).
+- ASoC: SOF: amd: Remove unneeded semicolon (jsc#PED-850).
+- commit 83f31ef
+
+- Update config files: another Intel/AMD ASoC updates (jsc#PED-850)
+- commit dd56303
+
+- ASoC: Intel: boards: fix randconfig issue (jsc#PED-850).
+- ASoC: SOF: change comp_dai to a pointer in struct snd_sof_dai
+ (jsc#PED-850).
+- ASoC: SOF: topology: expose some get_token ops (jsc#PED-850).
+- ASoC: SOF: topology: Modify the get_token op for string tokens
+ (jsc#PED-850).
+- ASoC: SOF: topology: Drop the size parameter from struct
+ sof_topology_token (jsc#PED-850).
+- ASoC: SOF: topology: remove redundant code in
+ sof_link_afe_load() (jsc#PED-850).
+- ASoC: SOF: sof-audio: removed unused function (jsc#PED-850).
+- ASoC: SOF: set swidget's core for scheduler widget
+ (jsc#PED-850).
+- ASoC: SOF: simplify snd_sof_device_remove() (jsc#PED-850).
+- ASoC: SOF: remove snd_sof_pipeline_find() (jsc#PED-850).
+- ASoC: amd: acp3x: Fix signedness bug in acp3x (jsc#PED-850).
+- ASoC: amd: acp5x-pcm-dma: Fix signedness bug (jsc#PED-850).
+- ASoC: Intel: catpt: use asoc_substream_to_rtd() (jsc#PED-850).
+- ASoC: SOF: Intel: hda: clarify operator precedence
+ (jsc#PED-850).
+- ASoC: SOF: debug: clarify operator precedence (jsc#PED-850).
+- ASoC: SOF: fix 32 signed bit overflow (jsc#PED-850).
+- ASoC: SOF: amd: Increase ACP_HW_SEM_RETRY_COUNT value
+ (jsc#PED-850).
+- ASoC: SOF: amd: Move group register configuration to acp-loader
+ (jsc#PED-850).
+- ASoC: SOF: amd: Use semaphore register to synchronize ipc's irq
+ (jsc#PED-850).
+- ASoC: SOF: amd: Flush cache after ATU_BASE_ADDR_GRP register
+ update (jsc#PED-850).
+- ASoC: SOF: amd: Do not set ipc_pcm_params ops as it is optional
+ (jsc#PED-850).
+- ASoC: SOF: amd: acp-pcm: Take buffer information directly from
+ runtime (jsc#PED-850).
+- ASoC: Intel: boards: add GPIOLIB dependency where missed
+ (jsc#PED-850).
+- ASoC: Intel: boards: remove explicit dependency on GPIOLIB
+ when DMIC is used" (jsc#PED-850).
+- ASoC: amd: vg: fix signedness bug in acp5x_audio_probe()
+ (jsc#PED-850).
+- ASoC: amd: pcm-dma: Fix signedness bug in acp3x_audio_probe()
+ (jsc#PED-850).
+- ASoC: amd: pcm-dma: Fix signedness bug in acp_pdm_audio_probe()
+ (jsc#PED-850).
+- ASoC: amd: acp: Fix signedness bug in renoir_audio_probe()
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add entries in ADL match table
+ (jsc#PED-850).
+- ASoC: Intel: sof_ssp_amp: rename driver and support cs35l41
+ amplifier (jsc#PED-850).
+- commit ef4d791
+
+- Update config files: Intel SOF updates (jsc#PED-850)
+- commit 40ca354
+
+- ASoC: Intel: cirrus-common: support cs35l41 amplifier
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt1308: move rt1308 code to common module
+ (jsc#PED-850).
+- ASoC: Intel: boards: create sof-realtek-common module
+ (jsc#PED-850).
+- ASoC: Intel: add RT1308 I2S machine driver and HDMI-in capture
+ via I2S support (jsc#PED-850).
+- ASoC: Intel: boards: fix spelling in comments (jsc#PED-850).
+- ASoC: soc-acpi: remove sof_fw_filename (jsc#PED-850).
+- ASoC: amd: use asoc_substream_to_rtd() (jsc#PED-850).
+- ASoC: amd: vangogh: fix uninitialized symbol warning in machine
+ driver (jsc#PED-850).
+- ASoC: amd: vg: remove warnings and errors pointed out by
+ checkpatch pl (jsc#PED-850).
+- ASoC: amd: vg: update DAI link name (jsc#PED-850).
+- ASoC: amd: pcm-dma: Use platform_get_irq() to get the interrupt
+ (jsc#PED-850).
+- ASoC: acp: check the return value of devm_kzalloc() in
+ acp_legacy_dai_links_create() (jsc#PED-850).
+- ASoC: SOF: sof-priv: Drop duplicate sof_compressed_ops
+ declaration (jsc#PED-850).
+- ASoC: amd: Use platform_get_irq_byname() to get the interrupt
+ (jsc#PED-850).
+- ASoC: SOF: Declare sof_compress_ops in sof-priv.h (jsc#PED-850).
+- ASoC: amd: acp: Add DMIC machine driver ops (jsc#PED-850).
+- ASoC: amd: acp-legacy: Add legacy card support for new machines
+ (jsc#PED-850).
+- ASoC: amd: acp: Change card name for Guybrush Machine
+ (jsc#PED-850).
+- ASoC: SOF: pcm: Add compress_ops for SOF platform component
+ driver (jsc#PED-850).
+- ASoC: SOF: Intel: Add topology overwrite for Felwinter
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add quirk for Huawei D15 2021
+ (jsc#PED-850).
+- ASoC: SOF: Replace zero-length array with flexible-array member
+ (jsc#PED-850).
+- ASoC: SOF: core: unregister clients and machine drivers in
+ .shutdown (jsc#PED-850).
+- ASoC: SOF: Makefile: Fix randconfig sof-client build when
+ SND_SOC_SOF=y (jsc#PED-850).
+- ASoC: SOF: compr: Mark snd_compress_ops static (jsc#PED-850).
+- ASoC: Intel: bytcr_wm5102: use GFP_KERNEL (jsc#PED-850).
+- ASoC: SOF: Convert the generic probe support to SOF client
+ (jsc#PED-850).
+- ASoC: SOF: Convert the generic IPC message injector into SOF
+ client (jsc#PED-850).
+- ASoC: SOF: Convert the generic IPC flood test into SOF client
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: Add support for clients not managed by
+ pm framework (jsc#PED-850).
+- commit 1703e8b
+
+- Update config files: AMD ACP configs (jsc#PED-850)
+- commit d87a85e
+
+- ASoC: SOF: Introduce IPC SOF client support (jsc#PED-850).
+- ASoC: SOF: Split up utils.c into sof-utils and iomem-utils
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Read and pass the whole message to handlers
+ for IPC events (jsc#PED-850).
+- ASoC: SOF: Move the definition of enum sof_dsp_power_states
+ to global header (jsc#PED-850).
+- ASoC: SOF: Drop unused DSP power states: D3_HOT and D3_COLD
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hdac_ext_stream: consistent prefixes for
+ variables/members (jsc#PED-850).
+- ASoC: SOF: dma-trace: Pass pointer to params_ext struct in
+ trace_init() (jsc#PED-850).
+- ASoC: SOF: intel: hda-trace: Pass the dma buffer pointer to
+ hda_dsp_trace_prepare (jsc#PED-850).
+- ASoC: SOF: compr: Add compress ops implementation (jsc#PED-850).
+- ASoC: amd: renoir: Add check for acp configuration flags
+ (jsc#PED-850).
+- ASoC: amd: acp: acp-legacy: Add DMIC dai link support for Renoir
+ (jsc#PED-850).
+- ASoC: amd: acp: Add ACP init()/deinit() callback for Renoir
+ (jsc#PED-850).
+- ASoC: amd: acp: Add generic PCI driver module for ACP device
+ (jsc#PED-850).
+- ASoC: amd: acp: Add PDM controller based dmic dai for Renoir
+ (jsc#PED-850).
+- ASoC: amd: acp: Add generic support for PDM controller on ACP
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Do not allocate buffer for msg_data
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Drop header parameter from
+ sof_ipc_tx_message_unlocked() (jsc#PED-850).
+- ASoC: SOF: Intel: cnl: Use pm_gate->hdr.cmd in
+ cnl_compact_ipc_compress() (jsc#PED-850).
+- ASoC: SOF: trace: Simplify count adjustment in trace_read
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Remove link assignment limitation
+ (jsc#PED-850).
+- commit 5f8f1de
+
+- ASoC: Intel: sof_rt5682: Add support for platform without
+ amplifier (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: add support for systems without i915
+ audio (jsc#PED-850).
+- ASoC: SOF: Intel: Compare sdw adr directly (jsc#PED-850).
+- ASoC: SOF: add flag to disable IMR restore to sof_debug
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: add IMR restore support
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: add SSP helper (jsc#PED-850).
+- ASoC: SOF: Intel: use inclusive language for SSP clocks
+ (jsc#PED-850).
+- ASoC: SOF: add _D3_PERSISTENT flag to fw_ready message
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: add 512FS MCLK clock configuration
+ (jsc#PED-850).
+- ASoC: amd: sof-mach: Add support for RT5682S and RT1019 card
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi-byt: Add new WM5102 ACPI HID
+ (jsc#PED-850).
+- ASoC: amd: vg: update acp init and deinit sequence
+ (jsc#PED-850).
+- ASoC: amd: vg: apply sample bits pcm constraint (jsc#PED-850).
+- ASoC: amd: vg: update platform clock control sequence
+ (jsc#PED-850).
+- ASoC: amd: vangogh: refactor i2s master mode clock sequence code
+ (jsc#PED-850).
+- ASoC: amd: acp: Set gpio_spkr_en to None for max speaker
+ amplifer in machine driver (jsc#PED-850).
+- ASoC: amd: acp-mach: Fix Left and Right rt1019 amp devices
+ (jsc#PED-850).
+- ASoC: amd: acp: acp-mach: Change default RT1019 amp dev id
+ (jsc#PED-850).
+- ASoC: amd: acp: Power on/off the speaker enable gpio pin based
+ on DAPM callback (jsc#PED-850).
+- ASoC: amd: acp: Remove duplicate dependency in Kconfig
+ (jsc#PED-850).
+- commit 75e005d
+
+- ASoC: amd: acp-config: Update sof_tplg_filename for SOF machines
+ (jsc#PED-850).
+- ASoC: amd: acp-config: Enable SOF audio for Google chrome boards
+ (jsc#PED-850).
+- ASoC: AMD: fix depend/select mistake on SND_AMD_ACP_CONFIG
+ (jsc#PED-850).
+- ASoC: amd: Convert to new style DAI format definitions
+ (jsc#PED-850).
+- ASoC: AMD: acp-config: fix missing dependency on SND_SOC_ACPI
+ (jsc#PED-850).
+- ASoC: amd: acp6x-pdm-dma: Constify static snd_soc_dai_ops
+ (jsc#PED-850).
+- ASoC: amd: Fix dependency for SPI master (jsc#PED-850).
+- ASoC: amd: acp-pcm-dma: add .delay support (jsc#PED-850).
+- ASoC: amd: acp-config: Remove legacy acpi based machine struct
+ (jsc#PED-850).
+- commit 17b7741
+
+- soundwire: qcom: remove redundant version number read
+ (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Add support for external GPIO
+ jack-detect (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Support retrieving the codec IRQ
+ from the AMCR0F28 ACPI dev (jsc#PED-850).
+- commit 3629d01
+
+- ASoC: rt5640: Add support for boards with an external
+ jack-detect GPIO (jsc#PED-850).
+- ASoC: rt5640: Allow snd_soc_component_set_jack() to override
+ the codec IRQ (jsc#PED-850).
+- ASoC: rt5640: Change jack_work to a delayed_work (jsc#PED-850).
+- ASoC: rt5640: Fix possible NULL pointer deref on resume
+ (jsc#PED-850).
+- ASoC: rt5640: Fix the wrong state of the JD in the HDA header
+ (jsc#PED-850).
+- ASoC: rt5640: Add the HDA header support (jsc#PED-850).
+- ASoC: rt5640: Add the binding include file for the HDA header
+ support (jsc#PED-850).
+- ASoC: codecs: Fix spelling mistake "Unsupport" -> "Unsupported"
+ (jsc#PED-850).
+- commit 5e31cbb
+
+- soundwire: intel: remove PDM support (jsc#PED-850).
+- soundwire: intel: remove unnecessary init (jsc#PED-850).
+- ASoC: Intel/SOF: use set_stream() instead of set_tdm_slots()
+ for HDAudio (jsc#PED-850).
+- ASoC/SoundWire: dai: expand 'stream' concept beyond SoundWire
+ (jsc#PED-850).
+- soundwire: intel: improve suspend flows (jsc#PED-850).
+- ASoC/soundwire: intel: simplify callbacks for params/hw_free
+ (jsc#PED-850).
+- ASOC: SOF: Intel: use snd_soc_dai_get_widget() (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Use DEBUG log level for optional prints
+ (jsc#PED-850).
+- ASoC: SOF: debug: Use DEBUG log level for optional prints
+ (jsc#PED-850).
+- ASoC: SOF: Add clarifying comments for sof_core_debug and DSP
+ dump flags (jsc#PED-850).
+- ASoC: SOF: Rename snd_sof_get_status() and add kernel log
+ level parameter (jsc#PED-850).
+- ASoC: SOF: dsp_arch_ops: add kernel log level parameter for
+ oops and stack (jsc#PED-850).
+- ASoC: SOF: ops: Always print DSP Panic message but use different
+ message (jsc#PED-850).
+- ASoc: SOF: core: Update the FW boot state transition diagram
+ (jsc#PED-850).
+- ASoC: SOF: pm: Force DSP off on suspend in BOOT_FAILED state
+ also (jsc#PED-850).
+- ASoC: SOF: Set SOF_FW_BOOT_FAILED in case we have failure
+ during boot (jsc#PED-850).
+- ASoC: SOF: ipc: Only allow sending of an IPC in
+ SOF_FW_BOOT_COMPLETE state (jsc#PED-850).
+- ASoC: SOF: Rename 'enum snd_sof_fw_state' to 'enum sof_fw_state'
+ (jsc#PED-850).
+- ASoC: SOF: Move the definition of enum snd_sof_fw_state to
+ global header (jsc#PED-850).
+- ASoC: SOF: Introduce new firmware state: SOF_FW_BOOT_READY_OK
+ (jsc#PED-850).
+- ASoC: SOF: Introduce new firmware state: SOF_FW_CRASHED
+ (jsc#PED-850).
+- ASoC: SOF: Add a 'message' parameter to snd_sof_dsp_dbg_dump()
+ (jsc#PED-850).
+- ASoC: SOF: Add 'non_recoverable' parameter to
+ snd_sof_dsp_panic() (jsc#PED-850).
+- ASoC: SOF: Use sof_debug_check_flag() instead of sof_core_debug
+ directly (jsc#PED-850).
+- ASoC: SOF: core: Add simple wrapper to check flags in
+ sof_core_debug (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: Avoid re-defining the
+ HDA_FW_BOOT_ATTEMPTS (jsc#PED-850).
+- ASoC: SOF: ops: Use dev_warn() if the panic offsets differ
+ (jsc#PED-850).
+- ASoC: SOF: AMD: simplify return status handling (jsc#PED-850).
+- ASoC: Intel: catpt: Streamline locals declaration for
+ PCM-functions (jsc#PED-850).
+- ASoC: Intel: catpt: Reduce size of catpt_component_open()
+ (jsc#PED-850).
+- ipc: debug: Add shared memory heap to memory scan (jsc#PED-850).
+- ASoC: SOF: ipc: Add null pointer check for substream->runtime
+ (jsc#PED-850).
+- ASoC: SOF: avoid casting "const" attribute away (jsc#PED-850).
+- ASoC: SOF: Intel: hda: remove support for RESUME in platform
+ trigger (jsc#PED-850).
+- ASoC: SOF: Intel: hda: remove support for RESUME trigger
+ (jsc#PED-850).
+- ASoC: SOF: pcm: remove support for RESUME trigger (jsc#PED-850).
+- commit 3f0d25e
+
+- ASoC: SOF: Kconfig: Make the SOF_DEVELOPER_SUPPORT depend on
+ SND_SOC_SOF (jsc#PED-850).
+- ASoC: SOF: topology: read back control data from DSP
+ (jsc#PED-850).
+- ASoC: SOF: Drop ctrl_type parameter for
+ snd_sof_ipc_set_get_comp_data() (jsc#PED-850).
+- ASoC: SOF: control: Do not handle control notification with
+ component type (jsc#PED-850).
+- ASoC: SOF: sof-audio: Drop the `cmd` member from struct
+ snd_sof_control (jsc#PED-850).
+- ASoC: SOF: Drop ctrl_cmd parameter for
+ snd_sof_ipc_set_get_comp_data() (jsc#PED-850).
+- ASoC: SOF: topology: Set control_data->cmd alongside
+ scontrol->cmd (jsc#PED-850).
+- ASoC: SOF: Drop ipc_cmd parameter for
+ snd_sof_ipc_set_get_comp_data() (jsc#PED-850).
+- ASoC: SOF: ipc: Rename send parameter in
+ snd_sof_ipc_set_get_comp_data() (jsc#PED-850).
+- ASoC: SOF: OF: Avoid reverse module dependency (jsc#PED-850).
+- ASoC: SOF: sof-probes: Constify sof_probe_compr_ops
+ (jsc#PED-850).
+- ASoC: SOF: Remove pm_runtime_put_autosuspend() for SOF OF device
+ (jsc#PED-850).
+- ASoC: SOF: Intel: add comment on JasperLake support
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: remove unused fields (jsc#PED-850).
+- ASoC: SOF: Intel: hda: add quirks for HDAudio DMA position
+ information (jsc#PED-850).
+- ASoC: SOF: hda-stream: only enable DPIB if needed (jsc#PED-850).
+- ASoC: SOF: Intel: hda-ctrl: apply symmetry for DPIB
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: limit PROCEN workaround
+ (jsc#PED-850).
+- ASoC: SOF: Intel: ICL: move ICL-specific ops to icl.c
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Move rt1015 speaker amp to common file
+ (jsc#PED-850).
+- commit 1dca21d
+
+- ASoC: Intel: boards: add 'static' qualifiers for max98390 routes
+ (jsc#PED-850).
+- ASoC: SOF: Intel: fix build issue related to CODEC_PROBE_ENTRIES
+ (jsc#PED-850).
+- ASoC: Intel: boards: add max98390 2/4 speakers support
+ (jsc#PED-850).
+- ASoC: intel: boards: bytcht*: Constify static snd_soc_ops
+ (jsc#PED-850).
+- ASoC: Intel: hda_dsp_common: don't multiline PCM topology
+ warning (jsc#PED-850).
+- ASoC: intel: sst-mfld-platform-pcm: add .delay support
+ (jsc#PED-850).
+- ASoC: soc-component: add snd_soc_pcm_component_delay()
+ (jsc#PED-850).
+- ASoC: soc-dai: update snd_soc_dai_delay() to
+ snd_soc_pcm_dai_delay() (jsc#PED-850).
+- ASoC: SOF: Intel: hda: send DAI_CONFIG IPC during pause
+ (jsc#PED-850).
+- ASoC: SOF: IPC: dai: Expand DAI_CONFIG IPC flags (jsc#PED-850).
+- ASoC: SOF: align the hw_free sequence with stop (jsc#PED-850).
+- ASoC: SOF: pcm: move the check for prepared flag (jsc#PED-850).
+- ASoC: SOF: Add a helper for freeing PCM stream (jsc#PED-850).
+- ASoC: SOF: call platform hw_free for paused streams during
+ suspend (jsc#PED-850).
+- ASoC: SOF: pcm: invoke platform hw_free for STOP/SUSPEND
+ triggers (jsc#PED-850).
+- ASoC: SOF: Intel: hda: reset stream before coupling host and
+ link DMA's (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Add a helper function for stream reset
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: clear stream before freeing the DAI
+ widget (jsc#PED-850).
+- ASoC: SOF: mediatek: Use %pR/%pa to print resources/physical
+ addresses (jsc#PED-850).
+- ASoC: SOF: mediatek: Add missing of_node_put() in
+ platform_parse_resource() (jsc#PED-850).
+- ASoC: SOF: Intel: add .ack support for HDaudio platforms
+ (jsc#PED-850).
+- ASoC: SOF: pcm: add .ack callback support (jsc#PED-850).
+- ALSA: pcm: introduce INFO_NO_REWINDS flag (jsc#PED-850).
+- ALSA: pcm: unconditionally check if appl_ptr is in 0..boundary
+ range (jsc#PED-850).
+- ASoC: soc-component: add snd_soc_component_is_codec()
+ (jsc#PED-850).
+- commit 157062a
+
+- ASoC: SOF: handle paused streams during system suspend
+ (jsc#PED-850).
+- ASoC: SOF: topology: don't use list_for_each_entry_reverse()
+ (jsc#PED-850).
+- ASoC: SOF: sof-audio: setup sched widgets during pipeline
+ complete step (jsc#PED-850).
+- ASoC: SOF: imx8m: Implement reset callback (jsc#PED-850).
+- ASoC: SOF: imx8m: Implement DSP start (jsc#PED-850).
+- ASoC: SOF: imx8m: Add runtime PM / System PM support
+ (jsc#PED-850).
+- ASoC: SOF: imx8: Add runtime PM / System PM support
+ (jsc#PED-850).
+- ASoC: SOF: imx: Add code to manage DSP related clocks
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: free DAI widget during stop and suspend
+ (jsc#PED-850).
+- ASoC: SOF: add support for dynamic pipelines with multi-core
+ (jsc#PED-850).
+- ASoC: SOF: hda: don't use the core op for power up/power down
+ (jsc#PED-850).
+- ASoC: SOF: free widgets in sof_tear_down_pipelines() for static
+ pipelines (jsc#PED-850).
+- ASoC: SOF: topology: remove sof_load_pipeline_ipc()
+ (jsc#PED-850).
+- ASoC: SOF: Intel: CNL/ICL/APL: set core_get/core_put ops
+ (jsc#PED-850).
+- ASoC: SOF: Intel: TGL: set core_get/put ops (jsc#PED-850).
+- ASoC: SOF: Add ops for core_get and core_put (jsc#PED-850).
+- ASoC: SOF: Introduce num_cores and ref count per core
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: expose get_chip_info() (jsc#PED-850).
+- ASoC: SOF: sof-pci-dev: use community key on all Up boards
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Add DSP system PM callback for mt8195
+ (jsc#PED-850).
+- commit 513c226
+
+- ASoC: SOF: topology: Add support for Mediatek AFE DAI
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-SOF-topology-remove-redundant-code.patch.
+- commit dd56536
+
+- ASoC: SOF: mediatek: Add mt8195 dsp clock support (jsc#PED-850).
+- ASoC: SOF: mediatek: Add dai driver dsp ops callback for mt8195
+ (jsc#PED-850).
+- ASoC: SOF: Add mt8195 device descriptor (jsc#PED-850).
+- ASoC: SOF: mediatek: Add fw loader and mt8195 dsp ops to load
+ firmware (jsc#PED-850).
+- ASoC: SOF: tokens: add token for Mediatek AFE (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8195 hardware support (jsc#PED-850).
+- ASoC: SOF: amd: Add support for SOF firmware authentication
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add trace logger support (jsc#PED-850).
+- ASoC: SOF: topology: Add support for AMD ACP DAIs (jsc#PED-850).
+- ASoC: SOF: amd: Add Renoir PCI driver interface (jsc#PED-850).
+- ASoC: amd: Add module to determine ACP configuration
+ (jsc#PED-850).
+- commit 69a6968
+
+- Update config files: update AMD ACP configs (jsc#PED-850)
+- commit e5979cc
+
+- ASoC: amd: fix uninitialized variable in snd_acp6x_probe()
+ (jsc#PED-850).
+- ASoC: amd: acp: select CONFIG_SND_SOC_ACPI (jsc#PED-850).
+- ASoC: fix unmet dependencies on GPIOLIB for SND_SOC_DMIC
+ (jsc#PED-850).
+- ASoC: amd: acp: fix Kconfig dependencies (jsc#PED-850).
+- ASoC: nau8825: add clock management for power saving
+ (jsc#PED-850).
+- ASoC: nau8825: add set_jack coponment support (jsc#PED-850).
+- ASoC: nau8821: fix kernel-doc (jsc#PED-850).
+- ASoC: amd: acp: Fix return value check in acp_machine_select()
+ (jsc#PED-850).
+- ASoC: amd: acp: SND_SOC_AMD_ACP_COMMON should depend on X86 &&
+ PCI (jsc#PED-850).
+- ASoC: amd: acp: SND_SOC_AMD_{LEGACY_MACH,SOF_MACH} should
+ depend on X86 && PCI && I2C (jsc#PED-850).
+- ASoC: amd: acp: Wrap AMD Audio ACP components in
+ SND_SOC_AMD_ACP_COMMON (jsc#PED-850).
+- ASoC: amd: acp: Add acp_machine struct for renoir platform
+ (jsc#PED-850).
+- ASoC: amd: acp: Add support for RT5682-VS codec (jsc#PED-850).
+- ASoC: amd: acp: Add support for Maxim amplifier codec
+ (jsc#PED-850).
+- ASoC: amd: acp: Add SOF audio support on Chrome board
+ (jsc#PED-850).
+- ASoC: amd: acp: Add legacy sound card support for Chrome audio
+ (jsc#PED-850).
+- ASoC: amd: acp: Add generic machine driver support for ACP cards
+ (jsc#PED-850).
+- ASoC: amd: acp: Add callback for machine driver on ACP
+ (jsc#PED-850).
+- ASoC: amd: acp: Add I2S support on Renoir platform
+ (jsc#PED-850).
+- ASoC: amd: Add common framework to support I2S on ACP SOC
+ (jsc#PED-850).
+- ASoC: amd: enable Yellow Carp platform machine driver build
+ (jsc#PED-850).
+- ASoC: amd: add YC machine driver using dmic (jsc#PED-850).
+- ASoC: amd: create platform device for acp6x machine driver
+ (jsc#PED-850).
+- ASoC: amd: enable Yellow carp acp6x drivers build (jsc#PED-850).
+- ASoC: amd: add acp6x pdm driver pm ops (jsc#PED-850).
+- ASoC: amd: add acp6x pci driver pm ops (jsc#PED-850).
+- ASoC: amd: add acp6x pdm driver dma ops (jsc#PED-850).
+- ASoC: amd: add acp6x irq handler (jsc#PED-850).
+- ASoC: amd: add acp6x pdm platform driver (jsc#PED-850).
+- ASoC: amd: add platform devices for acp6x pdm driver and dmic
+ driver (jsc#PED-850).
+- ASoC: amd: add acp6x init/de-init functions (jsc#PED-850).
+- ASoC: amd: add Yellow Carp ACP PCI driver (jsc#PED-850).
+- ASoC: amd: add Yellow Carp ACP6x IP register header
+ (jsc#PED-850).
+- ASoC: amd: enable vangogh platform machine driver build
+ (jsc#PED-850).
+- ASoC: amd: add vangogh machine driver (jsc#PED-850).
+- ASoc: amd: create platform device for VG machine driver
+ (jsc#PED-850).
+- ASoC: amd: vangogh: constify static struct snd_soc_dai_ops
+ (jsc#PED-850).
+- ASoC: amd: Kconfig: Select fch clock support with machine driver
+ (jsc#PED-850).
+- ASoC: amd: acp-rt5645: Constify static snd_soc_ops
+ (jsc#PED-850).
+- ASoC: nau8824: Fix NAU8824_JACK_LOGIC define (jsc#PED-850).
+- ASoC: nau8821: new driver (jsc#PED-850).
+- ASoC: amd: acp: declare and add prefix to 'bt_uart_enable'
+ symbol (jsc#PED-850).
+- commit 9624970
+
+- Update config files: Drop unused SOF for arm, updates for NAU8825 and AMD (jsc#PED-850)
+- commit 31abee1
+
+- ASoC: SOF: amd: Add machine driver dsp ops for Renoir platform
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add PCM stream callback for Renoir dai's
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add dai driver dsp ops callback for Renoir
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add IPC support for ACP IP block (jsc#PED-850).
+- ASoC: SOF: amd: Add fw loader and renoir dsp ops to load
+ firmware (jsc#PED-850).
+- ASoC: SOF: amd: Add helper callbacks for ACP's DMA configuration
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add Renoir ACP HW support (jsc#PED-850).
+- ASoC: SOF: debug: Add support for IPC message injection
+ (jsc#PED-850).
+- ASoC: SOF: intel: Use the generic helper to get the reply
+ (jsc#PED-850).
+- ASoC: SOF: imx: Use the generic helper to get the reply
+ (jsc#PED-850).
+- commit a9ab47f
+
+- ALSA: Replace acpi_bus_get_device() (jsc#PED-850).
+- ALSA: hda: intel-dsp-config: reorder the config table
+ (jsc#PED-850).
+- ALSA: hda: intel-dsp-config: add JasperLake support
+ (jsc#PED-850).
+- ASoC: SOF: utils: Add generic function to get the reply for
+ a tx message (jsc#PED-850).
+- ASoC: SOF: i.MX: simplify Kconfig (jsc#PED-850).
+- ASoC: SOF: core: Unregister machine driver before IPC and
+ debugfs (jsc#PED-850).
+- ASoC: Intel: add sof-nau8825 machine driver (jsc#PED-850).
+- ASoC: intel: sof_sdw: add link adr order check (jsc#PED-850).
+- ASoC: intel: sof_sdw: remove get_next_be_id (jsc#PED-850).
+- ASoC: intel: sof_sdw: remove sof_sdw_mic_codec_mockup_init
+ (jsc#PED-850).
+- ASoC: intel: sof_sdw: remove SOF_RT715_DAI_ID_FIX quirk
+ (jsc#PED-850).
+- ASoC: intel: sof_sdw: move DMIC link id overwrite to
+ create_sdw_dailink (jsc#PED-850).
+- ASoC: intel: sof_sdw: Use a fixed DAI link id for AMP
+ (jsc#PED-850).
+- ASoC: intel: sof_sdw: rename be_index/link_id to link_index
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: add SKU for Dell Latitude 9520
+ (jsc#PED-850).
+- ASoC: intel: sof_sdw: return the original error number
+ (jsc#PED-850).
+- ASoC: SOF: trace: send DMA_TRACE_FREE IPC during release
+ (jsc#PED-850).
+- ASoC: SOF: IPC: update ipc_log_header() (jsc#PED-850).
+- ASoC: SOF: IPC: Add new IPC command to free trace DMA
+ (jsc#PED-850).
+- ALSA/ASoC: hda: move/rename snd_hdac_ext_stop_streams to
+ hdac_stream.c (jsc#PED-850).
+- ASoC: Intel: Skylake: Use NHLT API to search for blob
+ (jsc#PED-850).
+- ALSA: hda: Simplify DMIC-in-NHLT check (jsc#PED-850).
+- ALSA: hda: Fill gaps in NHLT endpoint-interface (jsc#PED-850).
+- soundwire: intel: Use auxiliary_device driver data helpers
+ (jsc#PED-850).
+- commit df611ff
+
+- ASoC: SOF: Intel: Retry codec probing if it fails (jsc#PED-850).
+- ASoC: SOF: hda: reset DAI widget before reconfiguring it
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add entry for ESSX8336 on CML
+ (jsc#PED-850).
+- ASoC: SOF: build compression interface into snd_sof.ko
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B12 product
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add SKU 0B29 SoundWire configuration
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B29 product
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add SKU 0B13 SoundWire configuration
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B13 product
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B11 product
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B00 and 0B01 products
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add SKU 0AF3 SoundWire configuration
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0AF3 product
+ (jsc#PED-850).
+- ASoC: SOF:control: Fix variable type in
+ snd_sof_refresh_control() (jsc#PED-850).
+- soundwire: qcom: add debugfs entry for soundwire register dump
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: use const for all uses of
+ snd_soc_acpi_codecs (jsc#PED-850).
+- ASoC: Intel: soc-acpi-cht: shrink tables using compatible IDs
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi-byt: shrink tables using compatible IDs
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: use comp_ids to enumerate rt5682s
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: detect codec variant in probe function
+ (jsc#PED-850).
+- ASoC: soc-acpi: add comp_ids field for machine driver matching
+ (jsc#PED-850).
+- ASoC: Intel: glk_rt5682_max98357a: support ALC5682I-VS codec
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add entry for ESSX8336 on JSL
+ (jsc#PED-850).
+- ASoC: fix unmet dependency on GPIOLIB for SND_SOC_MAX98357A
+ (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5651: Utilize dev_err_probe() to avoid
+ log saturation (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5651: use devm_clk_get_optional() for mclk
+ (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5651: Use temporary variable for struct
+ device (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5651: Get platform data via
+ dev_get_platdata() (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Utilize dev_err_probe() to avoid
+ log saturation (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: use devm_clk_get_optional() for mclk
+ (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Use temporary variable for struct
+ device (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Get platform data via
+ dev_get_platdata() (jsc#PED-850).
+- ASoC: SOF: prepare code to allocate IPC messages in fw_ready
+ (jsc#PED-850).
+- ASoC: SOF: Introduce fragment elapsed notification API
+ (jsc#PED-850).
+- commit a990efc
+
+- ASoC: SOF: imx: Use newly introduced generic IPC stream ops
+ (jsc#PED-850).
+- ASoC: SOF: Make Intel IPC stream ops generic (jsc#PED-850).
+- ASoC: SOF: Introduce snd_sof_mailbox_read /
+ snd_sof_mailbox_write callbacks (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Dump registers and stack when
+ SOF_DBG_DUMP_REGS is set (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: Drop SOF_DBG_DUMP_REGS flag from
+ dbg_dump calls (jsc#PED-850).
+- ASoC: SOF: loader: Drop SOF_DBG_DUMP_REGS flag when firmware
+ start fails (jsc#PED-850).
+- ASoC: SOF: core: Clean up snd_sof_get_status() prints
+ (jsc#PED-850).
+- ASoC: SOF: intel: hda: Drop 'error' prefix from error dump
+ functions (jsc#PED-850).
+- ASoC: SOF: Introduce macro to set the firmware state
+ (jsc#PED-850).
+- ASoC: SOF: ops: Force DSP panic dumps to be printed
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Re-enable dumps after successful IPC tx
+ (jsc#PED-850).
+- ASoC: SOF: debug: Print out the fw_state along with the DSP dump
+ (jsc#PED-850).
+- ASoC: SOF: Drop SOF_DBG_DUMP_FORCE_ERR_LEVEL and
+ sof_dev_dbg_or_err (jsc#PED-850).
+- ASoC: SOF: intel: hda-loader: Use snd_sof_dsp_dbg_dump()
+ for DSP dump (jsc#PED-850).
+- ASoC: SOF: debug: Add SOF_DBG_DUMP_OPTIONAL flag for DSP dumping
+ (jsc#PED-850).
+- ASoC: SOF: debug/ops: Move the IPC and DSP dump functions out
+ from the header (jsc#PED-850).
+- ASoC: SOF: intel: atom: No need to do a DSP dump in atom_run()
+ (jsc#PED-850).
+- ASoC: SOF: loader: Print the DSP dump if boot fails
+ (jsc#PED-850).
+- ASoC: SOF: Print the dbg_dump and ipc_dump once to reduce
+ kernel log noise (jsc#PED-850).
+- ASoC: SOF: ipc and dsp dump: Add markers for better visibility
+ (jsc#PED-850).
+- commit 5397d18
+
+- Update config files: enabled for SOF es8336 and rt5682s (jsc#PED-850)
+- commit 9447c50
+
+- ASoC: SOF: debug: Swap the dsp_dump and ipc_dump sequence for
+ fw_exception (jsc#PED-850).
+- ASoC: SOF: core: debug: force all processing on primary core
+ (jsc#PED-850).
+- ASoC: SOF: pipelines: Harmonize all functions to use struct
+ snd_sof_dev (jsc#PED-850).
+- ASoC: Intel: add machine driver for SOF+ES8336 (jsc#PED-850).
+- ASoC: Intel: soc-acpi: apl/glk/tgl: add entry for devices
+ based on ES8336 codec (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: improve SSP DAI handling for dynamic
+ pipelines (jsc#PED-850).
+- ASoC: SOF: Intel: hda: add new flags for DAI_CONFIG
+ (jsc#PED-850).
+- ASoC: SOF: dai: include new flags for DAI_CONFIG (jsc#PED-850).
+- ASoC: SOF: dai: mirror group_id definition added in firmware
+ (jsc#PED-850).
+- ASoC: SOF: topology: return error if sof_connect_dai_widget()
+ fails (jsc#PED-850).
+- ASoC: SOF: topology: allow for dynamic pipelines override for
+ debug (jsc#PED-850).
+- ASoC: SOF: topology: show clks_control value in dynamic debug
+ (jsc#PED-850).
+- commit 9734d36
+
+- ASoC: SOF: OF: Add fw_path and tplg_path parameters
+ (jsc#PED-850).
+- ASoC: Intel: cht_bsw_nau8824: Set card.components string
+ (jsc#PED-850).
+- ASoC: nau8824: Add a nau8824_components() helper (jsc#PED-850).
+- ASoC: SOF: topology: Add kernel parameter for topology
+ verification (jsc#PED-850).
+- ASoC: SOF: Add support for dynamic pipelines (jsc#PED-850).
+- ASoC: SOF: Intel: hda: make sure DAI widget is set up before
+ IPC (jsc#PED-850).
+- ASoC: SOF: Introduce widget use_count (jsc#PED-850).
+- ASoC: SOF: Don't set up widgets during topology parsing
+ (jsc#PED-850).
+- ASoC: SOF: restore kcontrols for widget during set up
+ (jsc#PED-850).
+- ASoC: SOF: Add new fields to snd_sof_route (jsc#PED-850).
+- AsoC: dapm: export a couple of functions (jsc#PED-850).
+- ASoC: SOF: sof-audio: add helpers for widgets, kcontrols and
+ dai config set up (jsc#PED-850).
+- ASoC: SOF: topology: Add new token for dynamic pipeline
+ (jsc#PED-850).
+- ASoC: SOF: control: Add access field in struct snd_sof_control
+ (jsc#PED-850).
+- ASoC: topology: change the complete op in snd_soc_tplg_ops to
+ return int (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Add support for max98360a speaker amp
+ (jsc#PED-850).
+- ASoC: SOF: Change SND_SOC_SOF_TOPLEVEL from config to menuconfig
+ (jsc#PED-850).
+- ASoC: intel: sof_rt5682: update platform device name for Maxim
+ amplifier (jsc#PED-850).
+- ASoC: SOF: ipc: Make the error prints consistent in
+ tx_wait_done() (jsc#PED-850).
+- ASoC: SOF: prefix some terse and cryptic dev_dbg() with __func__
+ (jsc#PED-850).
+- ASoC: SOF: add error handling to snd_sof_ipc_msg_data()
+ (jsc#PED-850).
+- ASoC: SOF: imx: add header file for ops (jsc#PED-850).
+- ASoC: SOF: pm: fix a stale comment (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: Print stream name on
+ STREAM_SD_OFFSET timeout (jsc#PED-850).
+- ASoC: Intel: boards: Update to modern clocking terminology
+ (jsc#PED-850).
+- ASoC: SOF: Remove struct sof_ops_table and sof_get_ops() macro
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Print 0x prefix for errors in
+ ipc_trace/stream_message() (jsc#PED-850).
+- ASoC: SOF: ipc: Clarify the parameter name for
+ ipc_trace_message() (jsc#PED-850).
+- ASoC: SOF: Rename sof_arch_ops to dsp_arch_ops (jsc#PED-850).
+- ASoC: SOF: ipc: Remove redundant error check from
+ sof_ipc_tx_message_unlocked (jsc#PED-850).
+- ASoC: SOF: sof-probes: Correct the function names used for
+ snd_soc_cdai_ops (jsc#PED-850).
+- ASoC: SOF: Intel: Rename hda-compress.c to hda-probes.c
+ (jsc#PED-850).
+- commit 6acbd79
+
+- ASoC: SOF: probe: Merge and clean up the probe and compress
+ files (jsc#PED-850).
+- ASoC: SOF: compress: move and export sof_probe_compr_ops
+ (jsc#PED-850).
+- ASoC: SOF: pcm: Remove non existent CONFIG_SND_SOC_SOF_COMPRESS
+ reference (jsc#PED-850).
+- ASoC: SOF: ipc: Add probe message logging to ipc_log_header()
+ (jsc#PED-850).
+- ASoC: SOF: imx8m: add SAI1 info (jsc#PED-850).
+- ASoC: SOF: core: Move probe work related code under a single if
+ () branch (jsc#PED-850).
+- ASoC: SOF: debug: No need to export the
+ snd_sof_debugfs_io_item() (jsc#PED-850).
+- ASoC: SOF: loader: Use the generic ops for region debugfs
+ handling (jsc#PED-850).
+- ASoC: SOF: Intel: Provide debugfs_add_region_item ops for core
+ (jsc#PED-850).
+- ASoC: SOF: imx: Provide debugfs_add_region_item ops for core
+ (jsc#PED-850).
+- ASoC: SOF: debug: Add generic API and ops for DSP regions
+ (jsc#PED-850).
+- ASoC: SOF: core: Do not use 'bar' as parameter for
+ block_read/write (jsc#PED-850).
+- ASoC: SOF: loader: No need to export snd_sof_fw_parse_ext_data()
+ (jsc#PED-850).
+- ASoC: SOF: imx: Do not initialize the snd_sof_dsp_ops.read64
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Remove snd_sof_dsp_mailbox_init() (jsc#PED-850).
+- ASoC: SOF: Intel: bdw: Set the mailbox offset directly in
+ bdw_probe (jsc#PED-850).
+- ASoC: SOF: intel: Do no initialize resindex_dma_base
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Relocate inline definitions from hda.h
+ to hda.c for sdw (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Remove boot_firmware skl and iccmax_icl
+ declarations (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dsp: Declare locally used functions as
+ static (jsc#PED-850).
+- ASoC: intel: sof_rt5682: support jsl_rt5682s_mx98360a board
+ (jsc#PED-850).
+- ASoC: intel: sof_rt5682: support jsl_rt5682s_rt1015 board
+ (jsc#PED-850).
+- ASoC: intel: sof_rt5682: support jsl_rt5682s_rt1015p board
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: support ALC5682I-VS codec
+ (jsc#PED-850).
+- ASoC: SOF: loader: load_firmware callback is mandatory, treat
+ it like that (jsc#PED-850).
+- ASoC: SOF: Handle control change notification from firmware
+ (jsc#PED-850).
+- ASoC: SOF: control: fix a typo in put operations for kcontrol
+ (jsc#PED-850).
+- ASoC: rt5682s: Add driver for ALC5682I-VS codec (jsc#PED-850).
+- ASoC: SOF: core: allow module parameter to override dma trace
+ Kconfig (jsc#PED-850).
+- ASoC: Intel: Move soc_intel_is_foo() helpers to a generic header
+ (jsc#PED-850).
+- commit bb7be03
+
+- xfs: convert XLOG_FORCED_SHUTDOWN() to xlog_is_shutdown()
+ (git-fixes).
+- commit ab97572
+
+- xfs: fix xfs_ifree() error handling to not leak perag ref
+ (git-fixes).
+- commit 2b17a84
+
+- s390/cpumf: add new extended counter set for IBM z16
+ (jsc#PED-606).
+- commit 34faf97
+
+- cifs: update internal module number (bsc#1193629).
+- commit 4202154
+
+- cifs: fix memory leaks in session setup (bsc#1193629).
+- commit 5c729d0
+
+- cifs: drop the lease for cached directories on rmdir or rename
+ (bsc#1193629).
+- commit 46e0f22
+
+- smb3: interface count displayed incorrectly (bsc#1193629).
+- commit e073a89
+
+- cifs: Fix memory leak when build ntlmssp negotiate blob failed
+ (bsc#1193629).
+- commit 7afbdb6
+
+- cifs: set rc to -ENOENT if we can not get a dentry for the
+ cached dir (bsc#1193629).
+- commit 328e60a
+
+- cifs: use LIST_HEAD() and list_move() to simplify code
+ (bsc#1193629).
+- commit e5c0c94
+
+- cifs: Fix xid leak in cifs_get_file_info_unix() (bsc#1193629).
+- commit a50e886
+
+- cifs: Fix xid leak in cifs_ses_add_channel() (bsc#1193629).
+- commit 45683eb
+
+- cifs: Fix xid leak in cifs_flock() (bsc#1193629).
+- commit d234b14
+
+- cifs: Fix xid leak in cifs_copy_file_range() (bsc#1193629).
+- commit f56cd1f
+
+- cifs: Fix xid leak in cifs_create() (bsc#1193629).
+- commit a1d5012
+
+- smb3: improve SMB3 change notification support (bsc#1193629).
+- commit 8a4313f
+
+- cifs: lease key is uninitialized in two additional functions
+ when smb1 (bsc#1193629).
+- commit 181d702
+
+- cifs: lease key is uninitialized in smb1 paths (bsc#1193629).
+- commit 395fb1f
+
+- smb3: must initialize two ACL struct fields to zero
+ (bsc#1193629).
+- commit 2dfd980
+
+- cifs: fix double-fault crash during ntlmssp (bsc#1193629).
+- commit 958d087
+
+- cifs: fix static checker warning (bsc#1193629).
+- commit 6695ea2
+
+- cifs: use ALIGN() and round_up() macros (bsc#1193629).
+- commit b4d4efd
+
+- cifs: find and use the dentry for cached non-root directories
+ also (bsc#1193629).
+- commit 14482fe
+
+- cifs: enable caching of directories for which a lease is held
+ (bsc#1193629).
+- commit cc4f4c4
+
+- cifs: prevent copying past input buffer boundaries
+ (bsc#1193629).
+- commit 9130844
+
+- cifs: fix uninitialised var in smb2_compound_op() (bsc#1193629).
+- commit bdc0943
+
+- cifs: improve symlink handling for smb2+ (bsc#1193629).
+- commit 0b6be9d
+
+- smb3: clarify multichannel warning (bsc#1193629).
+- commit 96b1224
+
+- cifs: fix skipping to incorrect offset in emit_cached_dirents
+ (bsc#1193629).
+- commit 6750b0a
+
+- smb3: fix oops in calculating shash_setkey (bsc#1193629).
+- commit fdb4064
+
+- cifs: secmech: use shash_desc directly, remove sdesc
+ (bsc#1193629).
+- commit d652300
+
+- smb3: rename encryption/decryption TFMs (bsc#1193629).
+- commit 074ff14
+
+- cifs: replace kfree() with kfree_sensitive() for sensitive data
+ (bsc#1193629).
+- commit a9c83e0
+
+- cifs: remove initialization value (bsc#1193629).
+- commit 650b157
+
+- cifs: Replace a couple of one-element arrays with flexible-array
+ members (bsc#1193629).
+- commit 2e6a4d1
+
+- smb3: do not log confusing message when server returns no
+ network interfaces (bsc#1193629).
+- commit fe343ed
+
+- cifs: store a pointer to a fid in the cfid structure instead
+ of the struct (bsc#1193629).
+- commit 4bc719f
+
+- cifs: improve handlecaching (bsc#1193629).
+- commit 460040b
+
+- cifs: Make tcon contain a wrapper structure cached_fids instead
+ of cached_fid (bsc#1193629).
+- commit 999f1a7
+
+- smb3: add dynamic trace points for tree disconnect
+ (bsc#1193629).
+- commit c71b282
+
+- Fix formatting of client smbdirect RDMA logging (bsc#1193629).
+- commit bc2ae55
+
+- Handle variable number of SGEs in client smbdirect send
+ (bsc#1193629).
+- commit af0f632
+
+- Reduce client smbdirect max receive segment size (bsc#1193629).
+- commit e36b32c
+
+- Decrease the number of SMB3 smbdirect client SGEs (bsc#1193629).
+- commit 1c625b9
+
+- cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message
+ (bsc#1193629).
+- commit 174687c
+
+- cifs: destage dirty pages before re-reading them for cache=none
+ (bsc#1193629).
+- commit 9eab309
+
+- cifs: return correct error in ->calc_signature() (bsc#1193629).
+- commit 0ace108
+
+- cifs: misc: fix spelling typo in comment (bsc#1193629).
+- commit 0177a68
+
+- cifs: update internal module number (bsc#1193629).
+- commit a83e618
+
+- cifs: add missing spinlock around tcon refcount (bsc#1193629).
+- commit a915086
+
+- cifs: always initialize struct msghdr smb_msg completely
+ (bsc#1193629).
+- commit 7ba2dbe
+
+- cifs: don't send down the destination address to sendmsg for
+ a SOCK_STREAM (bsc#1193629).
+- commit cc67d16
+
+- cifs: revalidate mapping when doing direct writes (bsc#1193629).
+- commit 3e6da03
+
+- cifs: fix small mempool leak in SMB2_negotiate() (bsc#1193629).
+- commit 9ad1214
+
+- smb3: use filemap_write_and_wait_range instead of
+ filemap_write_and_wait (bsc#1193629).
+- commit 569211d
+
+- smb3: fix temporary data corruption in insert range
+ (bsc#1193629).
+- commit 4153b9f
+
+- smb3: fix temporary data corruption in collapse range
+ (bsc#1193629).
+- commit e11095d
+
+- smb3: Move the flush out of smb2_copychunk_range() into its
+ callers (bsc#1193629).
+- commit 7cc3491
+
+- cifs: Add helper function to check smb1+ server (bsc#1193629).
+- commit 8d3cf57
+
+- cifs: Use help macro to get the mid header size (bsc#1193629).
+- commit 56cfb79
+
+- cifs: Use help macro to get the header preamble size
+ (bsc#1193629).
+- commit a32d0c7
+
+- cifs: skip extra NULL byte in filenames (bsc#1193629).
+- commit 3c2966f
+
+- smb3: missing inode locks in punch hole (bsc#1193629).
+- commit d5ef2ce
+
+- smb3: missing inode locks in zero range (bsc#1193629).
+- commit 67739d5
+
+- cifs: move from strlcpy with unused retval to strscpy
+ (bsc#1193629).
+- commit 1545859
+
+- cifs: Fix memory leak on the deferred close (bsc#1193629).
+- commit 0e66dd6
+
+- cifs: remove useless parameter 'is_fsctl' from SMB2_ioctl()
+ (bsc#1193629).
+- commit e09b402
+
+- cifs: remove unused server parameter from calc_smb_size()
+ (bsc#1193629).
+- commit 3f30130
+
+- cifs: Do not access tcon->cfids->cfid directly from
+ is_path_accessible (bsc#1193629).
+- commit 7188f4f
+
+- cifs: Add constructor/destructors for tcon->cfid (bsc#1193629).
+- commit 7eb31f4
+
+- SMB3: fix lease break timeout when multiple deferred close
+ handles for the same file (bsc#1193629).
+- commit 7267460
+
+- smb3: allow deferred close timeout to be configurable
+ (bsc#1193629).
+- commit 19f7caa
+
+- cifs: Do not use tcon->cfid directly, use the cfid we get from
+ open_cached_dir (bsc#1193629).
+- commit 25de0c1
+
+- cifs: Move cached-dir functions into a separate file
+ (bsc#1193629).
+- commit fc0e55e
+
+- cifs: fix lock length calculation (bsc#1193629).
+- commit 2661e11
+
+- cifs: update internal module number (bsc#1193629).
+- commit 53f5daf
+
+- cifs: alloc_mid function should be marked as static
+ (bsc#1193629).
+- commit f066ea5
+
+- cifs: remove "cifs_" prefix from init/destroy mids functions
+ (bsc#1193629).
+- commit 21e261c
+
+- cifs: remove useless DeleteMidQEntry() (bsc#1193629).
+- commit b684635
+
+- cifs: when insecure legacy is disabled shrink amount of SMB1
+ code (bsc#1193629).
+- commit 96f98e3
+
+- cifs: fix wrong unlock before return from cifs_tree_connect()
+ (bsc#1193629).
+- commit ca24a6e
+
+- cifs: avoid use of global locks for high contention data
+ (bsc#1193629).
+- commit 003b496
+
+- cifs: remove remaining build warnings (bsc#1193629).
+- commit 2a6d64f
+
+- cifs: list_for_each() -> list_for_each_entry() (bsc#1193629).
+- commit 98f1884
+
+- smb2: small refactor in smb2_check_message() (bsc#1193629).
+- commit 2913774
+
+- cifs: remove minor build warning (bsc#1193629).
+- commit 9dd2f9e
+
+- cifs: remove some camelCase and also some static build warnings
+ (bsc#1193629).
+- commit 7a903b5
+
+- cifs: remove unnecessary (void*) conversions (bsc#1193629).
+- commit 352182a
+
+- cifs: remove unnecessary type castings (bsc#1193629).
+- commit e2ea7fd
+
+- cifs: remove redundant initialization to variable
+ mnt_sign_enabled (bsc#1193629).
+- commit 8c39800
+
+- smb3: check xattr value length earlier (bsc#1193629).
+- commit 87cd516
+
+- smb3: workaround negprot bug in some Samba servers
+ (bsc#1193629).
+- commit 031af61
+
+- cifs: remove unnecessary locking of chan_lock while freeing
+ session (bsc#1193629).
+- commit 0303046
+
+- cifs: fix race condition with delayed threads (bsc#1193629).
+- commit 491d550
+
+- cifs: update cifs_ses::ip_addr after failover (bsc#1193629).
+- commit 9ed4aa9
+
+- cifs: avoid deadlocks while updating iface (bsc#1193629).
+- commit 3a5c612
+
+- cifs: periodically query network interfaces from server
+ (bsc#1193629).
+- commit dd3e063
+
+- cifs: during reconnect, update interface if necessary
+ (bsc#1193629).
+- commit 8dea5e1
+
+- cifs: change iface_list from array to sorted linked list
+ (bsc#1193629).
+- commit 1b05ccf
+
+- smb3: use netname when available on secondary channels
+ (bsc#1193629).
+- commit 6d17daa
+
+- smb3: fix empty netname context on secondary channels
+ (bsc#1193629).
+- commit 51fad96
+
+- cifs: when a channel is not found for server, log its connection
+ id (bsc#1193629).
+- commit 1b306b2
+
+- smb3: add trace point for SMB2_set_eof (bsc#1193629).
+- commit c6da1d3
+
+- cifs: populate empty hostnames for extra channels (bsc#1193629).
+- commit f2f92b2
+
+- cifs: return errors during session setup during reconnects
+ (bsc#1193629).
+- commit d557671
+
+- smb3: remove unneeded null check in cifs_readdir (bsc#1193629).
+- commit 7eaa3dc
+
+- cifs: cache the dirents for entries in a cached directory
+ (bsc#1193629).
+- commit 0ddb648
+
+- cifs: truncate the inode and mapping when we simulate fcollapse
+ (bsc#1193629).
+- commit 3b07034
+
+- blacklist.conf: Add reverted patch
+ d11219ad53dc amdgpu: disable powerpc support for the newer display engine
+ c653c591789b drm/amdgpu: Re-enable DCN for 64-bit powerpc
+- commit 15ec992
+
+- xfs: fix perag reference leak on iteration race with growfs
+ (git-fixes).
+- commit fc22ca3
+
+- SCSI: scsi_probe_lun: retry INQUIRY after timeout (bsc#1189297).
+- commit 623bb84
+
kernel-kvmsmall
+- Refresh
+ patches.suse/xfs-move-recovery-needed-state-updates-to-xfs_log_mo.patch.
+ Fix following error in x86_64/debug build:
+ ../fs/xfs/xfs_log.c:781:19: error: implicit declaration of function 'XLOG_FORCED_SHUTDOWN'; did you mean 'XFS_FORCED_SHUTDOWN'? [-Werror=implicit-function-declaration]
+- commit cafaa30
+
+- NFSD: Cap rsize_bop result based on send buffer size
+ (bsc#1205128 CVE-2022-43945).
+- NFSD: Protect against send buffer overflow in NFSv3 READ
+ (bsc#1205128 CVE-2022-43945).
+- NFSD: Protect against send buffer overflow in NFSv2 READ
+ (bsc#1205128 CVE-2022-43945).
+- NFSD: Protect against send buffer overflow in NFSv3 READDIR
+ (bsc#1205128 CVE-2022-43945).
+- NFSD: Protect against send buffer overflow in NFSv2 READDIR
+ (bsc#1205128 CVE-2022-43945).
+- SUNRPC: Fix svcxdr_init_encode's buflen calculation (bsc#1205128
+ CVE-2022-43945).
+- SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation
+ (bsc#1205128 CVE-2022-43945).
+- commit dd4f720
+
+- hyperv: simplify and rename generate_guest_id (bsc#1189965).
+- drm/hyperv: Fix an error handling path in hyperv_vmbus_probe() (git-fixes).
+- Drivers: hv: Create debugfs file with hyper-v balloon usage information (git-fixes).
+- Drivers: hv: vm_bus: Handle vmbus rescind calls after vmbus is suspended (git-fixes).
+- drm/hyperv-drm: Include framebuffer and EDID headers (git-fixes).
+- drm/hyperv : Removing the restruction of VRAM allocation with PCI bar size (git-fixes).
+- scsi: storvsc: Correct reporting of Hyper-V I/O size limits (git-fixes).
+- HID: hyperv: Correctly access fields declared as __le16 (git-fixes).
+- hv_balloon: Fix balloon_probe() and balloon_remove() error handling (git-fixes).
+- Drivers: hv: vmbus: Refactor the ring-buffer iterator functions (git-fixes).
+- Drivers: hv: vmbus: Rework use of DMA_BIT_MASK(64) (git-fixes).
+- commit 8f5f32b
+
+- xfs: reserve quota for dir expansion when linking/unlinking
+ files (bsc#1205616).
+- commit 1330e05
+
+- dmaengine: idxd: Only call idxd_enable_system_pasid() if
+ succeeded in enabling SVA feature (jsc#PED-2681).
+- commit 66991d9
+
+- dmaengine: idxd: Do not enable user type Work Queue without
+ Shared Virtual Addressing (jsc#PED-2681).
+- dmaengine: idxd: Separate user and kernel pasid enabling
+ (jsc#PED-2681).
+- dmaengine: idxd: don't load pasid config until needed
+ (jsc#PED-2681).
+- commit 65564cd
+
+- add another bug reference to some hyperv changes (bsc#1205617).
+- commit 0b5e3d4
+
+- net/smc: kABI workarounds for struct smc_sock (git-fixes).
+- commit d9f52e8
+
+- scsi: mpt3sas: re-do lost mpt3sas DMA mask fix (jsc#PED_1491).
+- scsi: mpt3sas: Don't change DMA mask while reallocating pools
+ (jsc#PED_1491).
+- commit 54e2dce
+
+- scsi: mpt3sas: Revert "scsi: mpt3sas: Fix ioc->base_readl() use"
+ (jsc#PED_1491).
+- scsi: mpt3sas: Revert "scsi: mpt3sas: Fix writel() use"
+ (jsc#PED_1491).
+- scsi: mpt3sas: Update driver version to 43.100.00.00
+ (jsc#PED_1491).
+- scsi: mpt3sas: Increase cmd_per_lun to 128 (jsc#PED_1491).
+- scsi: mpt3sas: Fix trace buffer registration failed
+ (jsc#PED_1491).
+- scsi: mpt3sas: Prevent error handler escalation when device
+ removed (jsc#PED_1491).
+- scsi: mpt3sas: Disable MPI2_FUNCTION_FW_DOWNLOAD for ATTO
+ devices (jsc#PED_1491).
+- scsi: mpt3sas: Add support for ATTO ExpressSAS H12xx GT devices
+ (jsc#PED_1491).
+- scsi: mpt3sas: Remove flush_scheduled_work() call
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix whitespace and spelling mistake
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix typo in comment (jsc#PED_1491).
+- scsi: mpt3sas: Fix out-of-bounds compiler warning
+ (jsc#PED_1491).
+- scsi: mpt3sas: Update driver version to 42.100.00.00
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix junk chars displayed while printing ChipName
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix adapter replyPostRegisterIndex declaration
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix event callback log_code value handling
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix ioc->base_readl() use (jsc#PED_1491).
+- scsi: mpt3sas: Fix writel() use (jsc#PED_1491).
+- scsi: mpt3sas: Fix _ctl_set_task_mid() TaskMID check
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fail reset operation if config request timed out
+ (jsc#PED_1491).
+- scsi: mpt3sas: Fix mpt3sas_check_same_4gb_region() kdoc comment
+ (jsc#PED_1491).
+- scsi: mpt3sas: Remove scsi_dma_map() error messages
+ (jsc#PED_1491).
+- scsi: mpt3sas: Convert to flexible arrays (jsc#PED_1491).
+- scsi: mpt3sas: Update persistent trigger pages from sysfs
+ interface (jsc#PED_1491).
+- scsi: mpt3sas: Use irq_set_affinity_and_hint() (jsc#PED_1491).
+- scsi: mpt3sas: Make mpt3sas_dev_attrs static (jsc#PED_1491).
+- commit dde21ab
+
+- scsi: smartpqi: Update version to 2.1.18-045 (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Update copyright to current year (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add ctrl ready timeout module parameter
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Update deleting a LUN via sysfs (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix RAID map race condition (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Stop logging spurious PQI reset failures
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add PCI IDs for Lenovo controllers
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add PCI ID for Adaptec SmartHBA 2100-8i
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix PCI control linkdown system hang
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add driver support for multi-LUN devices
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Close write read holes (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add PCI IDs for ramaxel controllers
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Add controller fw version to console log
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix typo in comment (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Stop using the SCSI pointer (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix unused variable pqi_pm_ops for clang
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Update version to 2.1.14-035 (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix lsscsi -t SAS addresses (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix hibernate and suspend (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix BUILD_BUG_ON() statements (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix NUMA node not updated during init
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Expose SAS address for SATA drives
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Speed up RAID 10 sequential reads
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix kdump issue when controller is locked up
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Update volume size after expansion
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Avoid drive spin-down during suspend
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Resolve delay issue with PQI_HZ value
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix a typo in func pqi_aio_submit_io()
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix a name typo and cleanup code (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Quickly propagate path failures to SCSI midlayer
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Eliminate drive spin down on warm boot
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Enable SATA NCQ priority in sysfs
+ (jsc#PED-1557, bsc#1201855).
+- scsi: smartpqi: Fix rmmod stack trace (jsc#PED-1557, bsc#1201855).
+- commit 0ad94d4
+
+- Refresh
+ patches.suse/scsi-qedf-Populate-sysfs-attributes-for-vport.patch.
+- commit 4269315
+
+- scsi: megaraid_sas: Use struct_size() in code related to struct
+ MR_PD_CFG_SEQ_NUM_SYNC (jsc#PED-1490).
+- scsi: megaraid_sas: Replace one-element array with
+ flexible-array member in MR_PD_CFG_SEQ_NUM_SYNC (jsc#PED-1490).
+- scsi: megaraid_sas: Replace one-element array with
+ flexible-array member in MR_DRV_RAID_MAP (jsc#PED-1490).
+- scsi: megaraid_sas: Replace one-element array with
+ flexible-array member in MR_FW_RAID_MAP_DYNAMIC (jsc#PED-1490).
+- commit 0683c19
+
+- scsi: megaraid: Convert sysfs snprintf() to sysfs_emit()
+ (jsc#PED-1490).
+- scsi: megaraid_sas: Use struct_size() in code related to struct
+ MR_FW_RAID_MAP (jsc#PED-1490).
+- scsi: megaraid_sas: Replace one-element array with
+ flexible-array member in MR_FW_RAID_MAP (jsc#PED-1490).
+- scsi: megaraid: Remove redundant assignment to variable
+ mfiStatus (jsc#PED-1490).
+- commit c25a799
+
+- scsi: megaraid_sas: Remove unnecessary kfree() (jsc#PED-1490).
+- scsi: megaraid_sas: Fix double kfree() (jsc#PED-1490).
+- scsi: megaraid_sas: Remove redundant variable cmd_type
+ (jsc#PED-1490).
+- scsi: megaraid: Remove the static variable initialisation
+ (jsc#PED-1490).
+- scsi: megaraid_sas: Clean up some inconsistent indenting
+ (jsc#PED-1490).
+- scsi: megaraid_sas: Remove redundant memset() statement
+ (jsc#PED-1490).
+- scsi: megaraid_sas: Remove unnecessary memset (jsc#PED-1490).
+- scsi: megaraid_sas: Target with invalid LUN ID is deleted
+ during scan (jsc#PED-1490).
+- scsi: megasas: Clean up some inconsistent indenting
+ (jsc#PED-1490).
+- scsi: megasas: Stop using the SCSI pointer (jsc#PED-1490).
+- scsi: megaraid: Fix a kernel-doc warning (jsc#PED-1490).
+- scsi: megaraid_sas: Use irq_set_affinity_and_hint()
+ (jsc#PED-1490).
+- commit d8c27e2
+
+- scsi: hpsa: Simplify {clear|set}_bit() parameters
+ (jsc#PED-1558).
+- scsi: hpsa: Use the bitmap API to allocate bitmaps
+ (jsc#PED-1558).
+- scsi: hpsa: Remove an unused variable in
+ hpsa_update_scsi_devices() (jsc#PED-1558).
+- commit 7a7e8b5
+
+- PM: runtime: Redefine pm_runtime_release_supplier() (git-fixes).
+- commit 53e36dd
+
+- efi: x86: Set the NX-compatibility flag in the PE header
+ (bsc#1205588).
+- commit 05aa191
+
+- blacklist.conf: kABI
+- commit f550bb4
+
+- tracing: kprobe: Fix potential null-ptr-deref on trace_array
+ in kprobe_event_gen_test_exit() (git-fixes).
+- commit dc34c13
+
+- tracing: kprobe: Fix potential null-ptr-deref on
+ trace_event_file in kprobe_event_gen_test_exit() (git-fixes).
+- commit 23caa81
+
+- tracing: Fix wild-memory-access in register_synth_event()
+ (git-fixes).
+- commit 9bbef30
+
+- tracing: Fix memory leak in test_gen_synth_cmd() and
+ test_empty_synth_event() (git-fixes).
+- commit 68dace2
+
+- ftrace: Fix null pointer dereference in ftrace_add_mod()
+ (git-fixes).
+- commit 2e9b117
+
+- ring_buffer: Do not deactivate non-existant pages (git-fixes).
+- commit 0458d7a
+
+- ftrace: Optimize the allocation for mcount entries (git-fixes).
+- commit 5b2b25a
+
+- ftrace: Fix the possible incorrect kernel message (git-fixes).
+- commit 7323c8c
+
+- tracing: Fix memory leak in tracing_read_pipe() (git-fixes).
+- commit 690c08a
+
+- net/smc: kABI workarounds for struct smc_link (git-fixes).
+- commit 0cbe94a
+
+- ring-buffer: Include dropped pages in counting dirty patches
+ (git-fixes).
+- commit 11920bc
+
+- blacklist.conf: duplicate
+- commit ddd82f9
+
+- powerpc/kvm: Fix kvm_use_magic_page (bsc#1156395).
+- Refresh patches.suse/gup-Turn-fault_in_pages_-readable-writeable-into-fault_in_-readable-writeable.patch.
+- commit aec526a
+
+- x86/fpu: Include vmalloc.h for vzalloc() (git-fixes).
+- blacklist.conf: revert blacklisting of 868c250bb463
+- commit 34cf832
+
+- blacklist.conf: duplicate
+- commit dcdcbbd
+
+- tcp: make tcp_read_sock() more robust (jsc#PED-1368).
+- bpf, sockmap: Do not ignore orig_len parameter (jsc#PED-1368).
+- bpf: Add schedule points in batch ops (jsc#PED-1368).
+- commit 1d3696a
+
+- MIPS: Loongson: Use hwmon_device_register_with_groups() to
+ register hwmon (git-fixes).
+- commit 16f21a3
+
+- tracing/ring-buffer: Have polling block on watermark
+ (git-fixes).
+- commit 5c3e4d5
+
+- powerpc/pseries/vas: Declare pseries_vas_fault_thread_fn()
+ as static (bsc#1194869).
+- commit 02a3582
+
+- platform: chrome: Split trace include file (git-fixes).
+- commit 4e9d9ce
+
+- ftrace: Fix use-after-free for dynamic ftrace_ops (git-fixes).
+- commit f98b221
+
+- blacklist.conf: kABI
+- commit 431bd9c
+
+- blacklist.conf: duplicate
+- commit 53c7bfc
+
+- platform/x86/intel: hid: add quirk to support Surface Go 3
+ (git-fixes).
+- commit 23ccaa2
+
+- selftests: bpf: Check bpf_msg_push_data return value
+ (jsc#PED-1368).
+- bpf: Fix a bpf_timer initialization issue (jsc#PED-1368).
+- commit 6da0cef
+
+- blacklist.conf: too intrusive
+- commit 67ad270
+
+- bpf: Emit bpf_timer in vmlinux BTF (jsc#PED-1368).
+- selftests/bpf: Add test for bpf_timer overwriting crash
+ (jsc#PED-1368).
+- bpf: Fix crash due to incorrect copy_map_value (jsc#PED-1368).
+- bpf: Do not try bpf_msg_push_data with len 0 (jsc#PED-1368).
+- tools/resolve_btfids: Do not print any commands when building
+ silently (jsc#PED-1368).
+- bpf: Use VM_MAP instead of VM_ALLOC for ringbuf (jsc#PED-1368).
+- tools headers UAPI: remove stale lirc.h (jsc#PED-1368).
+- bpf: Fix possible race in inc_misses_counter (jsc#PED-1368).
+- bpf: Fix renaming task_getsecid_subj->current_getsecid_subj
+ (jsc#PED-1368).
+- powerpc64/bpf: Limit 'ldbrx' to processors compliant with ISA
+ v2.06 (jsc#PED-1368).
+- tools/bpf: Rename 'struct event' to avoid naming conflict
+ (jsc#PED-1368).
+- powerpc32/bpf: Fix codegen for bpf-to-bpf calls (jsc#PED-1368).
+- bpf: Guard against accessing NULL pt_regs in
+ bpf_get_task_stack() (jsc#PED-1368).
+- bpf, selftests: Add ringbuf memory type confusion test
+ (jsc#PED-1368).
+- bpf: Fix ringbuf memory type confusion when passing to helpers
+ (jsc#PED-1368).
+- blacklist.conf: revert blacklisting of "bpf: Fix ringbuf memory type
+ confusion when passing to helpers"
+- Refresh patches.suse/bpf-Add-check_func_arg_reg_off-function.patch
+- bpf: Fix incorrect integer literal used for marking scratched
+ stack (jsc#PED-1368).
+- bpf/selftests: Add check for updating XDP bpf_link with wrong
+ program type (jsc#PED-1368).
+- bpf/selftests: convert xdp_link test to ASSERT_* macros
+ (jsc#PED-1368).
+- xdp: check prog type before updating BPF link (jsc#PED-1368).
+- bpf: Fix mount source show for bpffs (jsc#PED-1368).
+- tools/bpf/bpftool/skeleton: replace bpf_probe_read_kernel with
+ bpf_probe_read_kernel_str to get task comm (jsc#PED-1368).
+- samples/bpf/test_overhead_kprobe_kern: replace
+ bpf_probe_read_kernel with bpf_probe_read_kernel_str to get
+ task comm (jsc#PED-1368).
+- bpf ppc32: Access only if addr is kernel address (jsc#PED-1368).
+- bpf ppc32: Add BPF_PROBE_MEM support for JIT (jsc#PED-1368).
+- bpf ppc64: Access only if addr is kernel address (jsc#PED-1368).
+- bpf ppc64: Add BPF_PROBE_MEM support for JIT (jsc#PED-1368).
+- powerpc/ppc-opcode: introduce PPC_RAW_BRANCH() macro
+ (jsc#PED-1368).
+- bpf powerpc: refactor JIT compiler code (jsc#PED-1368).
+- bpf powerpc: Remove extra_pass from bpf_jit_build_body()
+ (jsc#PED-1368).
+- bpf powerpc: Remove unused SEEN_STACK (jsc#PED-1368).
+- bpf: selftests: Add bind retry for post_bind{4, 6}
+ (jsc#PED-1368).
+- bpf: selftests: Use C99 initializers in test_sock.c
+ (jsc#PED-1368).
+- net: bpf: Handle return value of
+ BPF_CGROUP_RUN_PROG_INET{4,6}_POST_BIND() (jsc#PED-1368).
+- bpf/selftests: Test bpf_d_path on rdonly_mem (jsc#PED-1368).
+- libbpf: Add documentation for bpf_map batch operations
+ (jsc#PED-1368).
+- selftests/bpf: Don't rely on preserving volatile in PT_REGS
+ macros in loop3 (jsc#PED-1368).
+- xdp: Add xdp_do_redirect_frame() for pre-computed xdp_frames
+ (jsc#PED-1368).
+- xdp: Move conversion to xdp_frame out of map functions
+ (jsc#PED-1368).
+- page_pool: Store the XDP mem id (jsc#PED-1368).
+- page_pool: Add callback to init pages when they are allocated
+ (jsc#PED-1368).
+- xdp: Allow registering memory model without rxq reference
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add timestamp for Tx-only operation
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add time-out for cleaning Tx
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add sched policy and priority support
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add cyclic TX operation capability
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add clockid selection support
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Add Dest and Src MAC setting for Tx-only
+ operation (jsc#PED-1368).
+- samples/bpf: xdpsock: Add VLAN support for Tx-only operation
+ (jsc#PED-1368).
+- libbpf 1.0: Deprecate bpf_object__find_map_by_offset() API
+ (jsc#PED-1368).
+- libbpf 1.0: Deprecate bpf_map__is_offload_neutral()
+ (jsc#PED-1368).
+- libbpf: Support repeated legacy kprobes on same function
+ (jsc#PED-1368).
+- libbpf: Use probe_name for legacy kprobe (jsc#PED-1368).
+- libbpf: Deprecate bpf_perf_event_read_simple() API
+ (jsc#PED-1368).
+- bpf: Add SO_RCVBUF/SO_SNDBUF in _bpf_getsockopt()
+ (jsc#PED-1368).
+- bpf: Fix SO_RCVBUF/SO_SNDBUF handling in _bpf_setsockopt()
+ (jsc#PED-1368).
+- bpf: Fix verifier support for validation of async callbacks
+ (jsc#PED-1368).
+- bpf, docs: Fully document the JMP mode modifiers (jsc#PED-1368).
+- bpf, docs: Fully document the JMP opcodes (jsc#PED-1368).
+- bpf, docs: Fully document the ALU opcodes (jsc#PED-1368).
+- bpf, docs: Document the opcode classes (jsc#PED-1368).
+- bpf, docs: Add subsections for ALU and JMP instructions
+ (jsc#PED-1368).
+- bpf, docs: Add a setion to explain the basic instruction
+ encoding (jsc#PED-1368).
+- bpf, selftests: Add verifier test for mem_or_null register
+ with offset (jsc#PED-1368).
+- bpf: Don't promote bogus looking registers after null check
+ (jsc#PED-1368).
+- bpf, sockmap: Fix double bpf_prog_put on error case in map_link
+ (jsc#PED-1368).
+- bpf, sockmap: Fix return codes from tcp_bpf_recvmsg_parser()
+ (jsc#PED-1368).
+- bpf, arm64: Use emit_addr_mov_i64() for BPF_PSEUDO_FUNC
+ (jsc#PED-1368).
+- bpf/selftests: Fix namespace mount setup in tc_redirect
+ (jsc#PED-1368).
+- bpftool: Probe for instruction set extensions (jsc#PED-1368).
+- bpftool: Probe for bounded loop support (jsc#PED-1368).
+- bpftool: Refactor misc. feature probe (jsc#PED-1368).
+- bpf: Fix typo in a comment in bpf lpm_trie (jsc#PED-1368).
+- bpf, docs: Move the packet access instructions last in
+ instruction-set.rst (jsc#PED-1368).
+- bpf, docs: Generate nicer tables for instruction encodings
+ (jsc#PED-1368).
+- bpf, docs: Split the comparism to classic BPF from
+ instruction-set.rst (jsc#PED-1368).
+- bpf, docs: Fix verifier references (jsc#PED-1368).
+- bpf: Invert the dependency between bpf-netns.h and netns/bpf.h
+ (jsc#PED-1368).
+- net: Add includes masked by netdevice.h including uapi/bpf.h
+ (jsc#PED-1368).
+- bpf/selftests: Update local storage selftest for sleepable
+ programs (jsc#PED-1368).
+- bpf: Allow bpf_local_storage to be used by sleepable programs
+ (jsc#PED-1368).
+- bpf: Add missing map_get_next_key method to bloom filter map
+ (jsc#PED-1368).
+- libbpf: Improve LINUX_VERSION_CODE detection (jsc#PED-1368).
+- libbpf: Use 100-character limit to make bpf_tracing.h easier
+ to read (jsc#PED-1368).
+- libbpf: Normalize PT_REGS_xxx() macro definitions
+ (jsc#PED-1368).
+- selftests/bpf: Add btf_dump__new to test_cpp (jsc#PED-1368).
+- libbpf: Do not use btf_dump__new() macro in C++ mode
+ (jsc#PED-1368).
+- bpftool: Enable line buffering for stdout (jsc#PED-1368).
+- bpf: Use struct_size() helper (jsc#PED-1368).
+- selftests/bpf: Correct the INDEX address in vmtest.sh
+ (jsc#PED-1368).
+- bpf: Extend kfunc with PTR_TO_CTX, PTR_TO_MEM argument support
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-Fix-PTR_TO_BTF_ID-var_off-check.patch
+- Refresh patches.suse/bpf-Fix-crash-due-to-out-of-bounds-access-into-reg2b.patch
+- Refresh patches.suse/bpf-Generalize-check_ctx_reg-for-reuse-with-other-ty.patch
+- commit 5734c73
+
+- powerpc/boot: Explicitly disable usage of SPE instructions
+ (bsc#1156395).
+- commit 7c94cdb
+
+- blacklist.conf: Add fixes for unsupported platforms
+- commit 10ca02b
+
+- net: smsc95xx: add support for Microchip EVB-LAN8670-USB
+ (git-fixes).
+- commit af40ba9
+
+- usbnet: smsc95xx: Don't reset PHY behind PHY driver's back
+ (git-fixes).
+- commit b693ef6
+
+- usb: smsc: use eth_hw_addr_set() (git-fixes).
+- commit 67dd1e9
+
+- powerpc/64: Fix build failure with allyesconfig in
+ book3s_64_entry.S (bsc#1194869).
+- commit 6d56eff
+
+- bpftool: Reimplement large insn size limit feature probing
+ (jsc#PED-1368).
+- selftests/bpf: Add libbpf feature-probing API selftests
+ (jsc#PED-1368).
+- libbpf: Rework feature-probing APIs (jsc#PED-1368).
+- Only output backtracking information in log level 2
+ (jsc#PED-1368).
+- bpf: Right align verifier states in verifier logs
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- bpf: Only print scratched registers and stack slots to verifier
+ logs (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- commit 652bd0c
+
+- selftests/bpf: Replace all uses of bpf_load_btf() with
+ bpf_btf_load() (jsc#PED-1368).
+- libbpf: Deprecate bpf_object__load_xattr() (jsc#PED-1368).
+- commit ed13628
+
+- treewide: Add missing includes masked by cgroup -> bpf
+ dependency (jsc#PED-1368).
+- commit dafa543
+
+- bpf: Remove the cgroup -> bpf header dependecy (jsc#PED-1368).
+- add missing bpf-cgroup.h includes (jsc#PED-1368).
+- add includes masked by cgroup -> bpf dependency (jsc#PED-1368).
+- selftests/bpf: Enable cross-building with clang (jsc#PED-1368).
+- tools/runqslower: Enable cross-building with clang
+ (jsc#PED-1368).
+- bpftool: Enable cross-building with clang (jsc#PED-1368).
+- tools/libbpf: Enable cross-building with clang (jsc#PED-1368).
+- tools/resolve_btfids: Support cross-building the kernel with
+ clang (jsc#PED-1368).
+- tools: Help cross-building with clang (jsc#PED-1368).
+- libbpf: Avoid reading past ELF data section end when copying
+ license (jsc#PED-1368).
+- libbpf: Mark bpf_object__find_program_by_title API deprecated
+ (jsc#PED-1368).
+- tools/perf: Stop using bpf_object__find_program_by_title API
+ (jsc#PED-1368).
+- samples/bpf: Stop using bpf_object__find_program_by_title API
+ (jsc#PED-1368).
+- selftests/bpf: Stop using bpf_object__find_program_by_title API
+ (jsc#PED-1368).
+- selftests/bpf: Remove explicit setrlimit(RLIMIT_MEMLOCK)
+ in main selftests (jsc#PED-1368).
+- libbpf: Auto-bump RLIMIT_MEMLOCK if kernel needs it for BPF
+ (jsc#PED-1368).
+- libbpf: Add sane strncpy alternative and use it internally
+ (jsc#PED-1368).
+- libbpf: Fix potential uninit memory read (jsc#PED-1368).
+- libbpf: Add doc comments for bpf_program__(un)pin()
+ (jsc#PED-1368).
+- selftests/bpf: Fix segfault in bpf_tcp_ca (jsc#PED-1368).
+- selftests/bpf: Add tests for get_func_[arg|ret|arg_cnt] helpers
+ (jsc#PED-1368).
+- bpf: Add get_func_[arg|ret|arg_cnt] helpers (jsc#PED-1368).
+- bpf, x64: Replace some stack_size usage with offset variables
+ (jsc#PED-1368).
+- selftests/bpf: Add test to access int ptr argument in tracing
+ program (jsc#PED-1368).
+- bpf: Allow access to int pointer arguments in tracing programs
+ (jsc#PED-1368).
+- libbpf: Don't validate TYPE_ID relo's original imm value
+ (jsc#PED-1368).
+- selftests/bpf: Remove last bpf_create_map_xattr from
+ test_verifier (jsc#PED-1368).
+- bpf: Silence coverity false positive warning (jsc#PED-1368).
+- bpf: Use kmemdup() to replace kmalloc + memcpy (jsc#PED-1368).
+- selftests/bpf: Add test cases for bpf_strncmp() (jsc#PED-1368).
+- selftests/bpf: Add benchmark for bpf_strncmp() helper
+ (jsc#PED-1368).
+- selftests/bpf: Fix checkpatch error on empty function parameter
+ (jsc#PED-1368).
+- bpf: Add bpf_strncmp helper (jsc#PED-1368).
+- libbpf: Fix gen_loader assumption on number of programs
+ (jsc#PED-1368).
+- libbpf: Add "bool skipped" to struct bpf_map (jsc#PED-1368).
+- libbpf: Fix typo in btf__dedup@LIBBPF_0.0.2 definition
+ (jsc#PED-1368).
+- bpftool: Switch bpf_object__load_xattr() to bpf_object__load()
+ (jsc#PED-1368).
+- selftests/bpf: Remove the only use of deprecated
+ bpf_object__load_xattr() (jsc#PED-1368).
+- selftests/bpf: Add test for libbpf's custom log_buf behavior
+ (jsc#PED-1368).
+- commit 5e271be
+
+- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch:
+ (bsc#1205521).
+- commit a75b0e8
+
+- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch:
+ (bsc#1205521).
+- commit de88f7d
+
+- ath10k: fix pointer arithmetic error in trace call (git-fixes).
+- commit eb74c76
+
+- VDUSE: fix documentation underline warning (git-fixes).
+- commit 82c2eb1
+
+- ath10k: abstract htt_rx_desc structure (git-fixes).
+- commit ce63216
+
+- mac80211: limit bandwidth in HE capabilities (git-fixes).
+- commit 07f026a
+
+- ALSA: memalloc: Try dma_alloc_noncontiguous() at first
+ (git-fixes).
+- commit 88c27ac
+
+- usb: typec: tipd: Prevent uninitialized event{1,2} in IRQ
+ handler (git-fixes).
+- ASoC: SOF: topology: No need to assign core ID if token parsing
+ failed (git-fixes).
+- ALSA: memalloc: Don't fall back for SG-buffer with IOMMU
+ (git-fixes).
+- usb: gadget: aspeed: Fix probe regression (git-fixes).
+- nouveau: fix migrate_to_ram() for faulting page (git-fixes).
+- xhci: Fix null pointer dereference in remove if xHC has only
+ one roothub (git-fixes).
+- thunderbolt: Check router generation before connecting xHCI
+ (git-fixes).
+- usb: xhci_plat_remove: avoid NULL dereference (git-fixes).
+- xhci: Fix null pointer dereference in resume if xhci has only
+ one roothub (git-fixes).
+- USB: gadget: Fix return of -EBUSY (git-fixes).
+- dmaengine: tegra: Fix build error without IOMMU_API (git-fixes).
+- PCI/IOV: Fix wrong kernel-doc identifier (git-fixes).
+- usb: core: Unregister device on component_add() failure
+ (git-fixes).
+- pcmcia: hide the MAC address helpers if !NET (git-fixes).
+- arch: Remove leftovers from prism54 wireless driver (git-fixes).
+- usb: typec: ucsi: Only check the contract if there is a
+ connection (git-fixes).
+- libata: libahci: declare ahci_shost_attr_group as static
+ (git-fixes).
+- commit 92b4a5a
+
+- ALSA: hda/realtek: Add quirk for ASUS Zenbook using CS35L41
+ (git-fixes).
+- commit c6c293f
+
+- ASoC: soc-utils: Remove __exit for snd_soc_util_exit()
+ (git-fixes).
+- commit 287b2ba
+
+- Input: i8042 - fix leaking of platform device on module removal
+ (git-fixes).
+- Input: iforce - invert valid length check when fetching device
+ IDs (git-fixes).
+- drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker()
+ (git-fixes).
+- drm/drv: Fix potential memory leak in drm_dev_init()
+ (git-fixes).
+- drm/panel: simple: set bpc field for logic technologies displays
+ (git-fixes).
+- drm/vc4: kms: Fix IS_ERR() vs NULL check for vc4_kms
+ (git-fixes).
+- usb: chipidea: fix deadlock in ci_otg_del_timer (git-fixes).
+- usb: typec: mux: Enter safe mode only when pins need to be
+ reconfigured (git-fixes).
+- Revert "usb: dwc3: disable USB core PHY management" (git-fixes).
+- serial: 8250: Flush DMA Rx on RLSI (git-fixes).
+- serial: 8250: Fall back to non-DMA Rx if IIR_RDI occurs
+ (git-fixes).
+- tty: n_gsm: fix sleep-in-atomic-context bug in gsm_control_send
+ (git-fixes).
+- Revert "tty: n_gsm: replace kicktimer with delayed_work"
+ (git-fixes).
+- Revert "tty: n_gsm: avoid call of sleeping functions from
+ atomic context" (git-fixes).
+- serial: imx: Add missing .thaw_noirq hook (git-fixes).
+- tty: serial: fsl_lpuart: don't break the on-going transfer
+ when global reset (git-fixes).
+- serial: 8250: omap: Flush PM QOS work on remove (git-fixes).
+- serial: 8250: omap: Fix unpaired pm_runtime_put_sync() in
+ omap8250_remove() (git-fixes).
+- serial: 8250_omap: remove wait loop from Errata i202 workaround
+ (git-fixes).
+- firmware: coreboot: Register bus in module init (git-fixes).
+- slimbus: stream: correct presence rate frequencies (git-fixes).
+- parport_pc: Avoid FIFO port location truncation (git-fixes).
+- siox: fix possible memory leak in siox_device_add() (git-fixes).
+- misc/vmw_vmci: fix an infoleak in
+ vmci_host_do_receive_datagram() (git-fixes).
+- speakup: fix a segfault caused by switching consoles
+ (git-fixes).
+- iio: adc: at91_adc: fix possible memory leak in
+ at91_adc_allocate_trigger() (git-fixes).
+- iio: adc: mp2629: fix potential array out of bound access
+ (git-fixes).
+- iio: adc: mp2629: fix wrong comparison of channel (git-fixes).
+- iio: pressure: ms5611: changed hardcoded SPI speed to value
+ limited (git-fixes).
+- iio: trigger: sysfs: fix possible memory leak in
+ iio_sysfs_trig_init() (git-fixes).
+- ASoC: tas2764: Fix set_tdm_slot in case of single slot
+ (git-fixes).
+- ASoC: tas2770: Fix set_tdm_slot in case of single slot
+ (git-fixes).
+- ASoC: core: Fix use-after-free in snd_soc_exit() (git-fixes).
+- mmc: sdhci-pci: Fix possible memory leak caused by missing
+ pci_dev_put() (git-fixes).
+- mmc: core: properly select voltage range without power cycle
+ (git-fixes).
+- commit 5d6506d
+
+- net/smc: Fix possible leaked pernet namespace in smc_init()
+ (git-fixes).
+- net/smc: Fix an error code in smc_lgr_create() (git-fixes).
+- net/smc: Fix possible access to freed memory in link clear
+ (git-fixes).
+- net/smc: Fix slab-out-of-bounds issue in fallback (git-fixes).
+- net/smc: Only save the original clcsock callback functions
+ (git-fixes).
+- net/smc: Fix sock leak when release after smc_shutdown()
+ (git-fixes).
+- net/smc: send directly on setting TCP_NODELAY (git-fixes).
+- net/smc: Send directly when TCP_CORK is cleared (git-fixes).
+- net/smc: Avoid overwriting the copies of clcsock callback
+ functions (git-fixes).
+- net/smc: Forward wakeup to smc socket waitqueue after fallback
+ (git-fixes).
+- commit a5aa4ad
+
+- PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (git-fixes).
+- x86/hyperv: fix invalid writes to MSRs during root partition kexec (git-fixes).
+- clocksource/drivers/hyperv: add data structure for reference TSC MSR (git-fixes).
+- Drivers: hv: fix repeated words in comments (git-fixes).
+- HID: hyperv: fix possible memory leak in mousevsc_probe() (git-fixes).
+- drm/hyperv: Add ratelimit on error message (git-fixes).
+- scsi: storvsc: remove an extraneous "to" in a comment (git-fixes).
+- Drivers: hv: vmbus: Don't wait for the ACPI device upon initialization (git-fixes).
+- Drivers: hv: vmbus: Use PCI_VENDOR_ID_MICROSOFT for better discoverability (git-fixes).
+- Drivers: hv: vmbus: Fix kernel-doc (git-fixes).
+- drm/hyperv: Don't overwrite dirt_needed value set by host (git-fixes).
+- Drivers: hv: vmbus: Optimize vmbus_on_event (git-fixes).
+- scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes).
+- Drivers: hv: Never allocate anything besides framebuffer from framebuffer memory region (git-fixes).
+- Drivers: hv: Always reserve framebuffer region for Gen1 VMs (git-fixes).
+- PCI: Move PCI_VENDOR_ID_MICROSOFT/PCI_DEVICE_ID_HYPERV_VIDEO definitions to pci_ids.h (git-fixes).
+- tools: hv: kvp: remove unnecessary (void*) conversions (git-fixes).
+- Drivers: hv: remove duplicate word in a comment (git-fixes).
+- tools: hv: Remove an extraneous "the" (git-fixes).
+- scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes).
+- Drivers: hv: vmbus: Release cpu lock in error case (git-fixes).
+- Drivers: hv: Fix syntax errors in comments (git-fixes).
+- scsi: storvsc: Fix typo in comment (git-fixes).
+- Drivers: hv: vmbus: fix typo in comment (git-fixes).
+- PCI: hv: Add validation for untrusted Hyper-V values (git-fixes).
+- x86/hyperv: Disable hardlockup detector by default in Hyper-V guests (git-fixes).
+- Drivers: hv: vmbus: Accept hv_sock offers in isolated guests (git-fixes).
+- hv_sock: Add validation for untrusted Hyper-V values (git-fixes).
+- hv_sock: Copy packets sent by Hyper-V out of the ring buffer (git-fixes).
+- hv_sock: Check hv_pkt_iter_first_raw()'s return value (git-fixes).
+- Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes).
+- hv_netvsc: Fix potential dereference of NULL pointer (git-fixes).
+- hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (git-fixes).
+- net: hyperv: remove use of bpf_op_t (git-fixes).
+- commit 5a5a746
+
+- Refresh patches.suse/io_uring-fix-io_try_cancel_userdata-race-for-iowq.patch
+ (bsc#1205572)
+- commit 1bf2e5b
+
+- Update kabi files. Update using the released November MU kernel
+ 5.14.21-150400.24.33.2
+- commit b0daa6c
+
+- s390/uaccess: introduce bit field for OAC specifier
+ (jsc#PED-579).
+- Refresh
+ patches.suse/s390-uaccess-add-missing-EX_TABLE-entries-to-__clear_user.
+- commit 871823b
+
+- KVM: s390: selftest: Test suppression indication on key prot
+ exception (jsc#PED-579).
+- KVM: s390: Don't indicate suppression on dirtying, failing memop
+ (jsc#PED-579).
+- KVM: s390: Fix lockdep issue in vm memop (jsc#PED-579).
+- KVM: s390: selftests: Add error memop tests (jsc#PED-579).
+- KVM: s390: selftests: Add more copy memop tests (jsc#PED-579).
+- KVM: s390: selftests: Add named stages for memop test
+ (jsc#PED-579).
+- KVM: s390: selftests: Add macro as abstraction for MEM_OP
+ (jsc#PED-579).
+- KVM: s390: selftests: Split memop tests (jsc#PED-579).
+- KVM: s390: Add missing vm MEM_OP size check (jsc#PED-579).
+- KVM: s390: Clarify key argument for MEM_OP in api docs
+ (jsc#PED-579).
+- selftests: kvm: Check whether SIDA memop fails for normal guests
+ (jsc#PED-579).
+- KVM: s390: Update api documentation for memop ioctl
+ (jsc#PED-579).
+- KVM: s390: Add capability for storage key extension of MEM_OP
+ IOCTL (jsc#PED-579).
+- KVM: s390: Rename existing vcpu memop functions (jsc#PED-579).
+- KVM: s390: Add vm IOCTL for key checked guest absolute memory
+ access (jsc#PED-579).
+- KVM: s390: Add optional storage key checking to MEMOP IOCTL
+ (jsc#PED-579).
+- KVM: s390: selftests: Test TEST PROTECTION emulation
+ (jsc#PED-579).
+- KVM: s390: handle_tprot: Honor storage keys (jsc#PED-579).
+- KVM: s390: Honor storage keys when accessing guest memory
+ (jsc#PED-579).
+- s390/uaccess: Add copy_from/to_user_key functions (jsc#PED-579).
+- s390/uaccess: fix compile error (jsc#PED-579).
+- KVM: s390: gaccess: Cleanup access to guest pages (jsc#PED-579).
+- KVM: s390: gaccess: Refactor access address range check
+ (jsc#PED-579).
+- KVM: s390: gaccess: Refactor gpa and length calculation
+ (jsc#PED-579).
+- KVM: s390: Function documentation fixes (jsc#PED-579).
+- commit 66cff37
+
+- sched: Clear ttwu_pending after enqueue_task() (git fixes
+ (sched/core)).
+- commit 8216675
+
+- soc: imx8m: Enable OCOTP clock before reading the register
+ (git-fixes).
+- arm64: dts: imx8mn: Fix NAND controller size-cells (git-fixes).
+- arm64: dts: imx8mm: Fix NAND controller size-cells (git-fixes).
+- ARM: dts: imx7: Fix NAND controller size-cells (git-fixes).
+- arm64: dts: qcom: sm8350-hdk: Specify which LDO modes are
+ allowed (git-fixes).
+- arm64: dts: qcom: sm8250-xperia-edo: Specify which LDO modes
+ are allowed (git-fixes).
+- arm64: dts: qcom: sm8150-xperia-kumano: Specify which LDO
+ modes are allowed (git-fixes).
+- arm64: dts: qcom: sa8155p-adp: Specify which LDO modes are
+ allowed (git-fixes).
+- net: thunderbolt: Fix error handling in tbnet_init()
+ (git-fixes).
+- net/x25: Fix skb leak in x25_lapb_receive_frame() (git-fixes).
+- bridge: switchdev: Fix memory leaks when changing VLAN protocol
+ (git-fixes).
+- net: phy: marvell: add sleep time after enabling the loopback
+ bit (git-fixes).
+- mISDN: fix misuse of put_device() in mISDN_register_device()
+ (git-fixes).
+- mISDN: fix possible memory leak in mISDN_dsp_element_register()
+ (git-fixes).
+- commit f0f96f8
+
+- soundwire: intel: Initialize clock stop timeout (bsc#1205507).
+- commit ed7ad85
+
+- io_uring: IRQ rw completion batching (bsc#1205205).
+- io_uring: batch task work locking (bsc#1205205).
+- io_uring: flush completions for fallbacks (bsc#1205205).
+- commit e122d49
+
+- io_uring: add clarifying comment for io_cqring_ev_posted()
+ (bsc#1205205).
+- io_uring: fix lack of protection for compl_nr (bsc#1205205).
+- io_uring: Add register support for non-4k PAGE_SIZE
+ (bsc#1205205).
+- io_uring: extend task put optimisations (bsc#1205205).
+- io_uring: add comments on why PF_EXITING checking is safe
+ (bsc#1205205).
+- io_uring: fix io_timeout_remove locking (bsc#1205205).
+- io_uring: improve same wq polling (bsc#1205205).
+- io_uring: reuse io_req_complete_post() (bsc#1205205).
+- io_uring: better encapsulate buffer select for rw (bsc#1205205).
+- commit 4eedcb8
+
+- io_uring: fix io_timeout_remove locking (git-fixes).
+- io_uring: correct __must_hold annotation (git-fixes).
+- commit afa1999
+
+- scsi: mpi3mr: Delete a stray tab (jsc#PED-1446).
+- scsi: mpi3mr: Unlock on error path (jsc#PED-1446).
+- scsi: mpi3mr: Reduce VD queue depth on detecting throttling
+ (jsc#PED-1446).
+- scsi: mpi3mr: Resource Based Metering (jsc#PED-1446).
+- scsi: mpi3mr: Increase cmd_per_lun to 128 (jsc#PED-1446).
+- scsi: mpi3mr: Enable shared host tagset (jsc#PED-1446).
+- scsi: mpi3mr: Fix kernel-doc (jsc#PED-1446).
+- scsi: mpi3mr: Rework mrioc->bsg_device model to fix warnings
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add target device related sysfs attributes
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add shost related sysfs attributes (jsc#PED-1446).
+- scsi: mpi3mr: Return error if dma_alloc_coherent() fails
+ (jsc#PED-1446).
+- scsi: mpi3mr: Fix a NULL vs IS_ERR() bug in mpi3mr_bsg_init()
+ (jsc#PED-1446).
+- scsi: mpi3mr: Return I/Os to an unrecoverable HBA with DID_ERROR
+ (jsc#PED-1446).
+- scsi: mpi3mr: Hidden drives not removed during soft reset
+ (jsc#PED-1446).
+- scsi: mpi3mr: Increase I/O timeout value to 60s (jsc#PED-1446).
+- scsi: mpi3mr: Update driver version to 8.0.0.69.0
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add support for NVMe passthrough (jsc#PED-1446).
+- scsi: mpi3mr: Expose adapter state to sysfs (jsc#PED-1446).
+- scsi: mpi3mr: Add support for PEL commands (jsc#PED-1446).
+- scsi: mpi3mr: Add support for MPT commands (jsc#PED-1446).
+- scsi: mpi3mr: Move data structures/definitions from MPI headers
+ to uapi header (jsc#PED-1446).
+- scsi: mpi3mr: Add support for driver commands (jsc#PED-1446).
+- scsi: mpi3mr: Add bsg device support (jsc#PED-1446).
+- scsi: mpi3mr: Fix flushing !WQ_MEM_RECLAIM events warning
+ (jsc#PED-1446).
+- scsi: mpi3mr: Bump driver version to 8.0.0.68.0 (jsc#PED-1446).
+- scsi: mpi3mr: Fix memory leaks (jsc#PED-1446).
+- scsi: mpi3mr: Update the copyright year (jsc#PED-1446).
+- scsi: mpi3mr: Fix reporting of actual data transfer size
+ (jsc#PED-1446).
+- scsi: mpi3mr: Fix cmnd getting marked as in use forever
+ (jsc#PED-1446).
+- scsi: mpi3mr: Fix hibernation issue (jsc#PED-1446).
+- scsi: mpi3mr: Update MPI3 headers (jsc#PED-1446).
+- scsi: mpi3mr: Fix printing of pending I/O count (jsc#PED-1446).
+- scsi: mpi3mr: Fix deadlock while canceling the fw event
+ (jsc#PED-1446).
+- commit 38ffa24
+
+- treewide: Replace zero-length arrays with flexible-array members
+ (jsc#PED-1446).
+- Refresh patches.suse/scsi-qla2xxx-edif-bsg-refactor.patch.
+- commit b341c8c
+
+- Update metadata references
+- commit 48537d5
+
+- KVM: SVM: move guest vmsave/vmload back to assembly (git-fixes).
+- commit 64aefe3
+
+- KVM: SVM: retrieve VMCB from assembly (git-fixes).
+- commit fdd0aa2
+
+- blk-mq: Properly init requests from blk_mq_alloc_request_hctx()
+ (git-fixes).
+- rbd: fix possible memory leak in rbd_sysfs_init() (git-fixes).
+- blk-wbt: call rq_qos_add() after wb_normal is initialized
+ (git-fixes).
+- block: blk_queue_enter() / __bio_queue_enter() must return
+ - EAGAIN for nowait (git-fixes).
+- blk-mq: fix io hung due to missing commit_rqs (git-fixes).
+- block/rnbd-srv: Set keep_id to true after mutex_trylock
+ (git-fixes).
+- blktrace: Trace remapped requests correctly (git-fixes).
+- blk-mq: don't create hctx debugfs dir until q->debugfs_dir is
+ created (git-fixes).
+- block: add bio_start_io_acct_time() to control start_time
+ (git-fixes).
+- blk-cgroup: fix missing put device in error path from
+ blkg_conf_pref() (git-fixes).
+- commit 58eed28
+
+- nbd: Fix incorrect error handle when first_minor is illegal
+ in nbd_dev_add (git-fixes).
+- Refresh for the above change,
+ patches.suse/0002-nbd-fix-possible-overflow-on-first_minor-in-nbd_dev_.patch.
+- commit 8281951
+
+- KVM: SVM: adjust register allocation for __svm_vcpu_run()
+ (git-fixes).
+- commit 7b25718
+
+- KVM: SVM: replace regs argument of __svm_vcpu_run() with
+ vcpu_svm (git-fixes).
+- commit 7867341
+
+- KVM: x86: use a separate asm-offsets.c file (git-fixes).
+- commit 0602ab1
+
+- KVM: x86: Hide IA32_PLATFORM_DCA_CAP[31:0] from the guest
+ (git-fixes).
+- commit 499c3ca
+
+- drm/amdkfd: Migrate in CPU page fault use current mm
+ (git-fixes).
+- commit f476661
+
+- pinctrl: devicetree: fix null pointer dereferencing in
+ pinctrl_dt_to_map (git-fixes).
+- pinctrl: rockchip: list all pins in a possible mux route for
+ PX30 (git-fixes).
+- platform/surface: aggregator: Do not check for repeated
+ unsequenced packets (git-fixes).
+- platform/x86/intel: pmc: Don't unconditionally attach Intel
+ PMC when virtualized (git-fixes).
+- arm64: efi: Fix handling of misaligned runtime regions and
+ drop warning (git-fixes).
+- ata: libata-scsi: fix SYNCHRONIZE CACHE (16) command failure
+ (git-fixes).
+- nilfs2: fix use-after-free bug of ns_writer on remount
+ (git-fixes).
+- mmc: sdhci_am654: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
+- mmc: sdhci-tegra: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
+- mms: sdhci-esdhc-imx: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
+- mmc: sdhci-of-arasan: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
+- mmc: cqhci: Provide helper for resetting both SDHCI and CQHCI
+ (git-fixes).
+- ALSA: hda: fix potential memleak in 'add_widget_node'
+ (git-fixes).
+- ALSA: hda/realtek: Add Positivo C6300 model quirk (git-fixes).
+- ALSA: usb-audio: Add DSD support for Accuphase DAC-60
+ (git-fixes).
+- ALSA: usb-audio: Add quirk entry for M-Audio Micro (git-fixes).
+- ALSA: hda/hdmi - enable runtime pm for more AMD display audio
+ (git-fixes).
+- ALSA: hda/ca0132: add quirk for EVGA Z390 DARK (git-fixes).
+- drm/amdgpu: disable BACO on special BEIGE_GOBY card (git-fixes).
+- wifi: ath11k: avoid deadlock during regulatory update in
+ ath11k_regd_update() (git-fixes).
+- platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi
+ (git-fixes).
+- drm/amdkfd: Fix NULL pointer dereference in svm_migrate_to_ram()
+ (git-fixes).
+- thunderbolt: Add DP OUT resource when DP tunnel is discovered
+ (git-fixes).
+- drm/amdkfd: handle CPU fault on COW mapping (git-fixes).
+- drm/amdkfd: avoid recursive lock in migrations back to RAM
+ (git-fixes).
+- commit 438c140
+
+- KVM: x86: Treat #DBs from the emulator as fault-like (code
+ and DR7.GD=1) (git-fixes).
+- commit 89491ed
+
+- libbpf: Add per-program log buffer setter and getter
+ (jsc#PED-1368).
+- libbpf: Preserve kernel error code and remove kprobe prog type
+ guessing (jsc#PED-1368).
+- libbpf: Improve logging around BPF program loading
+ (jsc#PED-1368).
+- libbpf: Allow passing user log setting through
+ bpf_object_open_opts (jsc#PED-1368).
+- libbpf: Allow passing preallocated log_buf when loading BTF
+ into kernel (jsc#PED-1368).
+- libbpf: Add OPTS-based bpf_btf_load() API (jsc#PED-1368).
+- libbpf: Fix bpf_prog_load() log_buf logic for log_level 0
+ (jsc#PED-1368).
+- samples/bpf: Remove unneeded variable (jsc#PED-1368).
+- bpf: Remove redundant assignment to pointer t (jsc#PED-1368).
+- selftests/bpf: Fix a compilation warning (jsc#PED-1368).
+- samples: bpf: Fix 'unknown warning group' build warning on Clang
+ (jsc#PED-1368).
+- samples: bpf: Fix xdp_sample_user.o linking with Clang
+ (jsc#PED-1368).
+- bpf: Silence purge_cand_cache build warning (jsc#PED-1368).
+- libbpf: Add doc comments in libbpf.h (jsc#PED-1368).
+- libbpf: Fix trivial typo (jsc#PED-1368).
+- bpftool: Add debug mode for gen_loader (jsc#PED-1368).
+- bpf: Fix the test_task_vma selftest to support output shorter
+ than 1 kB (jsc#PED-1368).
+- libbpf: Reduce bpf_core_apply_relo_insn() stack usage
+ (jsc#PED-1368).
+- libbpf: Deprecate bpf_prog_load_xattr() API (jsc#PED-1368).
+- samples/bpf: Get rid of deprecated libbpf API uses
+ (jsc#PED-1368).
+- samples/bpf: Clean up samples/bpf build failes (jsc#PED-1368).
+- selftests/bpf: Remove all the uses of deprecated
+ bpf_prog_load_xattr() (jsc#PED-1368).
+- selftests/bpf: Mute xdpxceiver.c's deprecation warnings
+ (jsc#PED-1368).
+- selftests/bpf: Remove recently reintroduced legacy btf__dedup()
+ use (jsc#PED-1368).
+- bpftool: Migrate off of deprecated bpf_create_map_xattr() API
+ (jsc#PED-1368).
+- libbpf: Add API to get/set log_level at per-program level
+ (jsc#PED-1368).
+- libbpf: Use __u32 fields in bpf_map_create_opts (jsc#PED-1368).
+- selftests/bpf: Update test names for xchg and cmpxchg
+ (jsc#PED-1368).
+- selftests/bpf: Build testing_helpers.o out of tree
+ (jsc#PED-1368).
+- selftests/bpf: Add CO-RE relocations to verifier scale test
+ (jsc#PED-1368).
+- selftests/bpf: Revert CO-RE removal in test_ksyms_weak
+ (jsc#PED-1368).
+- selftests/bpf: Additional test for CO-RE in the kernel
+ (jsc#PED-1368).
+- selftests/bpf: Convert map_ptr_kern test to use light skeleton
+ (jsc#PED-1368).
+- selftests/bpf: Improve inner_map test coverage (jsc#PED-1368).
+- selftests/bpf: Add lskel version of kfunc test (jsc#PED-1368).
+- libbpf: Clean gen_loader's attach kind (jsc#PED-1368).
+- libbpf: Support init of inner maps in light skeleton
+ (jsc#PED-1368).
+- libbpf: Use CO-RE in the kernel in light skeleton
+ (jsc#PED-1368).
+- bpf: Add bpf_core_add_cands() and wire it into
+ bpf_core_apply_relo_insn() (jsc#PED-1368).
+- libbpf: Cleanup struct bpf_core_cand (jsc#PED-1368).
+- commit 8a4479c
+
+- KVM: x86: Report error when setting CPUID if Hyper-V allocation
+ fails (git-fixes).
+- commit 335e5aa
+
+- virtio-blk: Use blk_validate_block_size() to validate block size
+ (git-fixes).
+- block: drop unused includes in <linux/genhd.h> (git-fixes).
+- commit a549255
+
+- blacklist.conf: add commits suggested by git-fixes which won't be backported
+- commit d1fe12d
+
+- KVM: SVM: Disable SEV-ES support if MMIO caching is disable
+ (git-fixes).
+- commit d6a15a7
+
+- KVM: x86/mmu: fix memoryleak in kvm_mmu_vendor_module_init()
+ (git-fixes).
+- commit ce66979
+
+- KVM: nVMX: Attempt to load PERF_GLOBAL_CTRL on nVMX xfer iff
+ it exists (git-fixes).
+- commit 3387324
+
+- KVM: VMX: Add helper to check if the guest PMU has
+ PERF_GLOBAL_CTRL (git-fixes).
+- commit 1b36b28
+
+- blacklist.conf: don't deprecate bpf_program__get_prog_info_linear
+- commit 0b5cdb8
+
+- nvdimm/blk: Fix title level (jsc#PED-1689, jsc#PED-1690).
+- commit 5555a12
+
+- scsi: mpi3mr: Fix formatting problems in some kernel-doc
+ comments (jsc#PED-1446).
+- scsi: mpi3mr: Fix some spelling mistakes (jsc#PED-1446).
+- scsi: mpi3mr: Bump driver version to 8.0.0.61.0 (jsc#PED-1446).
+- scsi: mpi3mr: Fixes around reply request queues (jsc#PED-1446).
+- scsi: mpi3mr: Enhanced Task Management Support Reply handling
+ (jsc#PED-1446).
+- scsi: mpi3mr: Use TM response codes from MPI3 headers
+ (jsc#PED-1446).
+- commit b2509ba
+
+- scsi: mpi3mr: Add io_uring interface support in I/O-polled mode
+ (jsc#PED-1446).
+- Refresh
+ patches.suse/scsi-mpi3mr-Schedule-IRQ-kthreads-only-on-non-RT-kernels.patch.
+- commit b6105c2
+
+- scsi: mpi3mr: Print cable mngnt and temp threshold events
+ (jsc#PED-1446).
+- scsi: mpi3mr: Support Prepare for Reset event (jsc#PED-1446).
+- commit 589f645
+
+- scsi: mpi3mr: Add Event acknowledgment logic (jsc#PED-1446).
+- scsi: mpi3mr: Gracefully handle online FW update operation
+ (jsc#PED-1446).
+- scsi: mpi3mr: Detect async reset that occurred in firmware
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add IOC reinit function (jsc#PED-1446).
+- scsi: mpi3mr: Handle offline FW activation in graceful manner
+ (jsc#PED-1446).
+- scsi: mpi3mr: Code refactor of IOC init - part2 (jsc#PED-1446).
+- scsi: mpi3mr: Code refactor of IOC init - part1 (jsc#PED-1446).
+- scsi: mpi3mr: Fault IOC when internal command gets timeout
+ (jsc#PED-1446).
+- scsi: mpi3mr: Display IOC firmware package version
+ (jsc#PED-1446).
+- scsi: mpi3mr: Handle unaligned PLL in unmap cmnds
+ (jsc#PED-1446).
+- scsi: mpi3mr: Increase internal cmnds timeout to 60s
+ (jsc#PED-1446).
+- scsi: mpi3mr: Do access status validation before adding devices
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add support for PCIe Managed Switch SES device
+ (jsc#PED-1446).
+- scsi: mpi3mr: Update MPI3 headers - part2 (jsc#PED-1446).
+- scsi: mpi3mr: Update MPI3 headers - part1 (jsc#PED-1446).
+- scsi: mpi3mr: Don't reset IOC if cmnds flush with reset status
+ (jsc#PED-1446).
+- scsi: mpi3mr: Replace spin_lock() with spin_lock_irqsave()
+ (jsc#PED-1446).
+- scsi: mpi3mr: Add debug APIs based on logging_level bits
+ (jsc#PED-1446).
+- scsi: mpi3mr: Use scnprintf() instead of snprintf()
+ (jsc#PED-1446).
+- scsi: mpi3mr: Clean up mpi3mr_print_ioc_info() (jsc#PED-1446).
+- commit 528c787
+
+- KVM: VMX: Mark all PERF_GLOBAL_(OVF)_CTRL bits reserved if
+ there's no vPMU (git-fixes).
+- commit 3ada3ae
+
+- tcp: Fix data races around icsk->icsk_af_ops (CVE-2022-3566
+ bsc#1204405).
+- commit f7cc985
+
+- ipv6: Fix data races around sk->sk_prot (CVE-2022-3567
+ bsc#1204414).
+- ipv6: annotate some data-races around sk->sk_prot (CVE-2022-3567
+ bsc#1204414).
+- commit 654a4f7
+
+- KVM: nVMX: Rename handle_vm{on,off}() to handle_vmx{on,off}()
+ (git-fixes).
+- commit 7218ba7
+
+- KVM: nVMX: Always enable TSC scaling for L2 when it was enabled
+ for L1 (git-fixes).
+- commit b0f3ab9
+
+- KVM: x86: Fully initialize 'struct kvm_lapic_irq' in
+ kvm_pv_kick_cpu_op() (git-fixes).
+- commit 81fd9e6
+
+- KVM: x86: Signal #GP, not -EPERM, on bad WRMSR(MCi_CTL/STATUS)
+ (git-fixes).
+- commit 1a1eab3
+
+- KVM: SVM: Stuff next_rip on emulated INT3 injection if NRIPS
+ is supported (git-fixes).
+- commit e7e1382
+
+- KVM: SEV: Mark nested locking of vcpu->lock (git-fixes).
+- commit 5f6bf6f
+
+- KVM: x86/svm: Account for family 17h event renumberings in
+ amd_pmc_perf_hw_id (git-fixes).
+- commit e3ae104
+
+- KVM: x86: avoid loading a vCPU after .vm_destroy was called
+ (git-fixes).
+- commit 29af845
+
+- KVM: Move wiping of the kvm->vcpus array to common code
+ (git-fixes).
+- commit 9720dc5
+
+- s390/pci: add missing EX_TABLE entries to
+ __pcistg_mio_inuser()/__pcilg_mio_inuser() (bsc#1205427
+ LTC#200502).
+- s390/futex: add missing EX_TABLE entry to __futex_atomic_op()
+ (bsc#1205427 LTC#200502).
+- s390/uaccess: add missing EX_TABLE entries to __clear_user(),
+ copy_in_user_mvcos(), copy_in_user_mvc(), clear_user_xc()
+ and __strnlen_user() (bsc#1205428 LTC#200501).
+- commit ad7cfae
+
+- nilfs2: fix deadlock in nilfs_count_free_blocks() (git-fixes).
+- dmaengine: at_hdmac: Check return code of
+ dma_async_device_register (git-fixes).
+- dmaengine: at_hdmac: Fix impossible condition (git-fixes).
+- dmaengine: at_hdmac: Don't allow CPU to reorder channel enable
+ (git-fixes).
+- dmaengine: at_hdmac: Fix completion of unissued descriptor in
+ case of errors (git-fixes).
+- dmaengine: at_hdmac: Fix descriptor handling when issuing it
+ to hardware (git-fixes).
+- spi: stm32: Print summary 'callbacks suppressed' message
+ (git-fixes).
+- mmc: sdhci-esdhc-imx: use the correct host caps for
+ MMC_CAP_8_BIT_DATA (git-fixes).
+- drm/i915/dmabuf: fix sg_table handling in map_dma_buf
+ (git-fixes).
+- drm/vc4: Fix missing platform_unregister_drivers() call in
+ vc4_drm_register() (git-fixes).
+- nilfs2: replace WARN_ONs by nilfs_error for checkpoint
+ acquisition failure (git-fixes).
+- commit f7fc242
+
+- dmaengine: at_hdmac: Fix concurrency over the active list
+ (git-fixes).
+- dmaengine: at_hdmac: Free the memset buf without holding the
+ chan lock (git-fixes).
+- dmaengine: at_hdmac: Fix concurrency over descriptor
+ (git-fixes).
+- dmaengine: at_hdmac: Fix concurrency problems by removing
+ atc_complete_all() (git-fixes).
+- dmaengine: at_hdmac: Protect atchan->status with the channel
+ lock (git-fixes).
+- dmaengine: at_hdmac: Do not call the complete callback on
+ device_terminate_all (git-fixes).
+- dmaengine: at_hdmac: Fix premature completion of desc in
+ issue_pending (git-fixes).
+- dmaengine: at_hdmac: Start transfer for cyclic channels in
+ issue_pending (git-fixes).
+- dmaengine: at_hdmac: Don't start transactions at tx_submit level
+ (git-fixes).
+- dmaengine: at_hdmac: Fix at_lli struct definition (git-fixes).
+- commit 718fc6d
+
+- KVM: x86/pmu: Update AMD PMC sample period to fix guest
+ NMI-watchdog (git-fixes).
+- commit d582f6e
+
+- ata: libata-transport: fix error handling in ata_tdev_add()
+ (git-fixes).
+- ata: libata-transport: fix error handling in ata_tlink_add()
+ (git-fixes).
+- ata: libata-transport: fix error handling in ata_tport_add()
+ (git-fixes).
+- ata: libata-transport: fix double ata_host_put() in
+ ata_tport_add() (git-fixes).
+- dmaengine: ti: k3-udma-glue: fix memory leak when register
+ device fail (git-fixes).
+- dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove()
+ (git-fixes).
+- dmaengine: pxa_dma: use platform_get_irq_optional (git-fixes).
+- commit 3e58402
+
+- x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473).
+- commit d022167
+
+- KVM: x86: Use __try_cmpxchg_user() to emulate atomic accesses
+ (git-fixes).
+- commit af8969b
+
+- KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits
+ (git-fixes).
+- commit 4c10c2f
+
+- bpf: Pass a set of bpf_core_relo-s to prog_load command
+ (jsc#PED-1368).
+- Refresh patches.suse/x86-speculation-include-unprivileged-ebpf-status-in-spectre-v2-mitigation-reporting.patch
+- bpf: Define enum bpf_core_relo_kind as uapi (jsc#PED-1368).
+- bpf: Prepare relo_core.c for kernel duty (jsc#PED-1368).
+- bpf: Rename btf_member accessors (jsc#PED-1368).
+- libbpf: Replace btf__type_by_id() with btf_type_by_id()
+ (jsc#PED-1368).
+- samples: bpf: Fix conflicting types in fds_example
+ (jsc#PED-1368).
+- bpf: Clean-up bpf_verifier_vlog() for BPF_LOG_KERNEL log level
+ (jsc#PED-1368).
+- libbpf: Avoid reload of imm for weak, unresolved, repeating ksym
+ (jsc#PED-1368).
+- libbpf: Avoid double stores for success/failure case of ksym
+ relocations (jsc#PED-1368).
+- bpf: Change bpf_kallsyms_lookup_name size type to
+ ARG_CONST_SIZE_OR_ZERO (jsc#PED-1368).
+- selftest/bpf/benchs: Add bpf_loop benchmark (jsc#PED-1368).
+- selftests/bpf: Measure bpf_loop verifier performance
+ (jsc#PED-1368).
+- selftests/bpf: Add bpf_loop test (jsc#PED-1368).
+- bpf: Add bpf_loop helper (jsc#PED-1368).
+- bpf, docs: Split general purpose eBPF documentation out of
+ filter.rst (jsc#PED-1368).
+- bpf, docs: Move handling of maps to Documentation/bpf/maps.rst
+ (jsc#PED-1368).
+- bpf, docs: Prune all references to "internal BPF"
+ (jsc#PED-1368).
+- bpf: Remove a redundant comment on bpf_prog_free (jsc#PED-1368).
+- x86, bpf: Cleanup the top of file header in bpf_jit_comp.c
+ (jsc#PED-1368).
+- libbpf: Remove duplicate assignments (jsc#PED-1368).
+- libbpf: Silence uninitialized warning/error in
+ btf_dump_dump_type_data (jsc#PED-1368).
+- selftests/bpf: Test BPF_MAP_TYPE_PROG_ARRAY static
+ initialization (jsc#PED-1368).
+- libbpf: Support static initialization of BPF_MAP_TYPE_PROG_ARRAY
+ (jsc#PED-1368).
+- bpf, mips: Fix build errors about __NR_bpf undeclared
+ (jsc#PED-1368).
+- selftests/bpf: Fix misaligned accesses in xdp and xdp_bpf2bpf
+ tests (jsc#PED-1368).
+- selftests/bpf: Fix misaligned memory accesses in xdp_bonding
+ test (jsc#PED-1368).
+- selftests/bpf: Prevent out-of-bounds stack access in test_bpffs
+ (jsc#PED-1368).
+- selftests/bpf: Fix misaligned memory access in queue_stack_map
+ test (jsc#PED-1368).
+- selftests/bpf: Prevent misaligned memory access in
+ get_stack_raw_tp test (jsc#PED-1368).
+- selftests/bpf: Fix possible NULL passed to memcpy() with zero
+ size (jsc#PED-1368).
+- selftests/bpf: Fix UBSan complaint about signed __int128
+ overflow (jsc#PED-1368).
+- libbpf: Fix using invalidated memory in bpf_linker
+ (jsc#PED-1368).
+- libbpf: Fix glob_syms memory leak in bpf_linker (jsc#PED-1368).
+- libbpf: Don't call libc APIs with NULL pointers (jsc#PED-1368).
+- libbpf: Fix potential misaligned memory access in btf_ext__new()
+ (jsc#PED-1368).
+- tools/resolve_btf_ids: Close ELF file on error (jsc#PED-1368).
+- selftests/bpf: Migrate selftests to bpf_map_create()
+ (jsc#PED-1368).
+- libbpf: Prevent deprecation warnings in xsk.c (jsc#PED-1368).
+- libbpf: Use bpf_map_create() consistently internally
+ (jsc#PED-1368).
+- libbpf: Unify low-level map creation APIs w/ new
+ bpf_map_create() (jsc#PED-1368).
+- selftests/bpf: Mix legacy (maps) and modern (vars) BPF in one
+ test (jsc#PED-1368).
+- libbpf: Load global data maps lazily on legacy kernels
+ (jsc#PED-1368).
+- selftests/bpf: Fix trivial typo (jsc#PED-1368).
+- libbpf: Change bpf_program__set_extra_flags to
+ bpf_program__set_flags (jsc#PED-1368).
+- selftests/bpf: Add btf_dedup case with duplicated structs
+ within CU (jsc#PED-1368).
+- libbpf: Accommodate DWARF/compiler bug with duplicated structs
+ (jsc#PED-1368).
+- libbpf: Add runtime APIs to query libbpf version (jsc#PED-1368).
+- selfetests/bpf: Adapt vmtest.sh to s390 libbpf CI changes
+ (jsc#PED-1368).
+- selftests/bpf: Fix xdpxceiver failures for no hugepages
+ (jsc#PED-1368).
+- skbuff: Move conditional preprocessor directives out of struct
+ sk_buff (jsc#PED-1368).
+- selftests/bpf: Test RENAME_EXCHANGE and RENAME_NOREPLACE on
+ bpffs (jsc#PED-1368).
+- commit 30264f0
+
+- x86/futex: Remove .fixup usage (git-fixes).
+- commit 687839d
+
+- ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy
+ Book Pro 360 (bsc#1205100).
+- ALSA: hda/realtek: fix speakers for Samsung Galaxy Book Pro
+ (bsc#1205100).
+- commit ca2ce49
+
+- bpf, docs: Fix ordering of bpf documentation (jsc#PED-1368).
+- libbpf: Rename libbpf documentation index file (jsc#PED-1368).
+- commit fd082d1
+
+- x86/extable: Extend extable functionality (git-fixes).
+- commit 28f726d
+
+- bpf, docs: Rename bpf_lsm.rst to prog_lsm.rst (jsc#PED-1368).
+- bpf, docs: Change underline in btf to match style guide
+ (jsc#PED-1368).
+- selftests/bpf: Mark variable as static (jsc#PED-1368).
+- selftests/bpf: Variable naming fix (jsc#PED-1368).
+- selftests/bpf: Move summary line after the error logs
+ (jsc#PED-1368).
+- selftests/bpf: Add uprobe triggering overhead benchmarks
+ (jsc#PED-1368).
+- bpf: Change value of MAX_TAIL_CALL_CNT from 32 to 33
+ (jsc#PED-1368).
+- selftests/bpf: Configure dir paths via env in
+ test_bpftool_synctypes.py (jsc#PED-1368).
+- bpftool: Update doc (use susbtitutions) and
+ test_bpftool_synctypes.py (jsc#PED-1368).
+- bpftool: Add SPDX tags to RST documentation files
+ (jsc#PED-1368).
+- selftests/bpf: Add a dedup selftest with equivalent structure
+ types (jsc#PED-1368).
+- libbpf: Fix a couple of missed btf_type_tag handling in btf.c
+ (jsc#PED-1368).
+- bpftool: Add current libbpf_strict mode to version output
+ (jsc#PED-1368).
+- bpftool: Use libbpf_get_error() to check error (jsc#PED-1368).
+- bpftool: Fix mixed indentation in documentation (jsc#PED-1368).
+- bpftool: Update the lists of names for maps and prog-attach
+ types (jsc#PED-1368).
+- bpftool: Fix indent in option lists in the documentation
+ (jsc#PED-1368).
+- selftests/bpf: Fix a tautological-constant-out-of-range-compare
+ compiler warning (jsc#PED-1368).
+- selftests/bpf: Fix an unused-but-set-variable compiler warning
+ (jsc#PED-1368).
+- bpf: Introduce btf_tracing_ids (jsc#PED-1368).
+- bpf: Extend BTF_ID_LIST_GLOBAL with parameter for number of IDs
+ (jsc#PED-1368).
+- bpftool: Enable libbpf's strict mode by default (jsc#PED-1368).
+- docs/bpf: Update documentation for BTF_KIND_TYPE_TAG support
+ (jsc#PED-1368).
+- selftests/bpf: Clarify llvm dependency with btf_tag selftest
+ (jsc#PED-1368).
+- selftests/bpf: Add a C test for btf_type_tag (jsc#PED-1368).
+- selftests/bpf: Rename progs/tag.c to progs/btf_decl_tag.c
+ (jsc#PED-1368).
+- selftests/bpf: Test BTF_KIND_DECL_TAG for deduplication
+ (jsc#PED-1368).
+- selftests/bpf: Add BTF_KIND_TYPE_TAG unit tests (jsc#PED-1368).
+- selftests/bpf: Test libbpf API function btf__add_type_tag()
+ (jsc#PED-1368).
+- bpftool: Support BTF_KIND_TYPE_TAG (jsc#PED-1368).
+- libbpf: Support BTF_KIND_TYPE_TAG (jsc#PED-1368).
+- bpf: Support BTF_KIND_TYPE_TAG for btf_type_tag attributes
+ (jsc#PED-1368).
+- bpftool: Update btf_dump__new() and perf_buffer__new_raw()
+ calls (jsc#PED-1368).
+- tools/runqslower: Update perf_buffer__new() calls
+ (jsc#PED-1368).
+- selftests/bpf: Update btf_dump__new() uses to v1.0+ variant
+ (jsc#PED-1368).
+- selftests/bpf: Migrate all deprecated perf_buffer uses
+ (jsc#PED-1368).
+- libbpf: Make perf_buffer__new() use OPTS-based interface
+ (jsc#PED-1368).
+- libbpf: Ensure btf_dump__new() and btf_dump_opts are
+ future-proof (jsc#PED-1368).
+- libbpf: Turn btf_dedup_opts into OPTS-based struct
+ (jsc#PED-1368).
+- selftests/bpf: Minor cleanups and normalization of Makefile
+ (jsc#PED-1368).
+- bpftool: Normalize compile rules to specify output file last
+ (jsc#PED-1368).
+- selftests/bpf: Fix bpf_prog_test_load() logic to pass extra
+ log level (jsc#PED-1368).
+- libbpf: Add ability to get/set per-program load flags
+ (jsc#PED-1368).
+- selftests/bpf: Add tests for accessing ingress_ifindex in
+ bpf_sk_lookup (jsc#PED-1368).
+- bpf: Add ingress_ifindex to bpf_sk_lookup (jsc#PED-1368).
+- bpftool: Fix SPDX tag for Makefiles and .gitignore
+ (jsc#PED-1368).
+- Refresh patches.suse/bpftool-Remove-inclusion-of-utilities.mak-from-Makef.patch
+- libbpf: Compile using -std=gnu89 (jsc#PED-1368).
+- selftests/bpf: Add exception handling selftests for tp_bpf
+ program (jsc#PED-1368).
+- selftests/bpf: Add tests for bpf_find_vma (jsc#PED-1368).
+- bpf: Introduce helper bpf_find_vma (jsc#PED-1368).
+- selftests/bpf: Fix bpf_object leak in skb_ctx selftest
+ (jsc#PED-1368).
+- selftests/bpf: Destroy XDP link correctly (jsc#PED-1368).
+- selftests/bpf: Avoid duplicate btf__parse() call (jsc#PED-1368).
+- selftests/bpf: Clean up btf and btf_dump in dump_datasec test
+ (jsc#PED-1368).
+- selftests/bpf: Free inner strings index in btf selftest
+ (jsc#PED-1368).
+- selftests/bpf: Free per-cpu values array in bpf_iter selftest
+ (jsc#PED-1368).
+- selftests/bpf: Fix memory leaks in btf_type_c_dump() helper
+ (jsc#PED-1368).
+- selftests/bpf: Pass sanitizer flags to linker through LDFLAGS
+ (jsc#PED-1368).
+- selftests/bpf: Use explicit bpf_test_load_program() helper calls
+ (jsc#PED-1368).
+- selftests/bpf: Use explicit bpf_prog_test_load() calls
+ everywhere (jsc#PED-1368).
+- selftests/bpf: Merge test_stub.c into testing_helpers.c
+ (jsc#PED-1368).
+- selftests/bpf: Convert legacy prog load APIs to bpf_prog_load()
+ (jsc#PED-1368).
+- selftests/bpf: Fix non-strict SEC() program sections
+ (jsc#PED-1368).
+- libbpf: Remove deprecation attribute from struct
+ bpf_prog_prep_result (jsc#PED-1368).
+- bpftool: Stop using deprecated bpf_load_program()
+ (jsc#PED-1368).
+- libbpf: Stop using to-be-deprecated APIs (jsc#PED-1368).
+- libbpf: Remove internal use of deprecated bpf_prog_load()
+ variants (jsc#PED-1368).
+- libbpf: Unify low-level BPF_PROG_LOAD APIs into bpf_prog_load()
+ (jsc#PED-1368).
+- libbpf: Pass number of prog load attempts explicitly
+ (jsc#PED-1368).
+- libbpf: Rename DECLARE_LIBBPF_OPTS into LIBBPF_OPTS
+ (jsc#PED-1368).
+- libbpf: Fix non-C89 loop variable declaration in gen_loader.c
+ (jsc#PED-1368).
+- libbpf: Deprecate bpf_program__load() API (jsc#PED-1368).
+- libbpf: Improve ELF relo sanitization (jsc#PED-1368).
+- libbpf: Fix section counting logic (jsc#PED-1368).
+- libbpf: Validate that .BTF and .BTF.ext sections contain data
+ (jsc#PED-1368).
+- libbpf: Improve sanity checking during BTF fix up
+ (jsc#PED-1368).
+- libbpf: Detect corrupted ELF symbols section (jsc#PED-1368).
+- bpftool: Use bpf_obj_get_info_by_fd directly (jsc#PED-1368).
+- bpftool: Migrate -1 err checks of libbpf fn calls
+ (jsc#PED-1368).
+- bpf: Document BPF licensing (jsc#PED-1368).
+- commit d7e0919
+
+- x86/microcode/AMD: Apply the patch early on every logical thread
+ (bsc#1205264).
+- commit 6805cb3
+
+- x86/uaccess: Implement macros for CMPXCHG on user addresses
+ (git-fixes).
+- commit 680ab7c
+
+- Kconfig: Add option for asm goto w/ tied outputs to workaround
+ clang-13 bug (git-fixes).
+- Refresh config.
+- commit 7888244
+
+- KVM: x86/pmu: Fix and isolate TSX-specific performance event
+ logic (git-fixes).
+- commit e13feb1
+
+- kABI: Fix kABI after "KVM: x86/pmu: Use different raw event
+ masks for AMD and Intel" (git-fixes).
+- commit d086901
+
+- KVM: x86/pmu: Use different raw event masks for AMD and Intel
+ (git-fixes).
+- commit fd5bd7c
+
+- xen/gntdev: Accommodate VMA splitting (git-fixes).
+- commit 0745691
+
+- KVM: x86/mmu: WARN if old _or_ new SPTE is REMOVED in non-atomic
+ path (git-fixes).
+- commit bc980a8
+
+- KVM: x86/mmu: Fix wrong/misleading comments in TDP MMU fast zap
+ (git-fixes).
+- commit d3e6160
+
+- blacklist.conf: add fcb732d8f8cf ("KVM: x86/xen: Fix runstate
+ updates to be atomic when preempting vCPU")
+- commit d42ecb5
+
+- blacklist.conf: add 55749769fe60 ("KVM: x86: Fix wall clock writes
+ in Xen shared_info not to mark page dirty")
+- commit 08e6ef4
+
+- KVM: x86: Mask off reserved bits in CPUID.80000001H (git-fixes).
+- commit a7fc31c
+
+- nvdimm/region: Delete nd_blk_region infrastructure
+ (jsc#PED-1689, jsc#PED-1690).
+- ACPI: NFIT: Remove block aperture support (jsc#PED-1689,
+ jsc#PED-1690).
+- nvdimm/namespace: Delete nd_namespace_blk (jsc#PED-1689,
+ jsc#PED-1690).
+- nvdimm/namespace: Delete blk namespace consideration in shared
+ paths (jsc#PED-1689, jsc#PED-1690).
+- nvdimm/blk: Delete the block-aperture window driver
+ (jsc#PED-1689, jsc#PED-1690).
+- nvdimm/region: Fix default alignment for small regions
+ (jsc#PED-1689, jsc#PED-1690).
+- libnvdimm/labels: Add uuid helpers (jsc#PED-1689, jsc#PED-1690).
+- libnvdimm/labels: Introduce label setter helpers (jsc#PED-1689,
+ jsc#PED-1690).
+- libnvdimm/labels: Add isetcookie validation helper
+ (jsc#PED-1689, jsc#PED-1690).
+- libnvdimm/labels: Introduce getters for namespace label fields
+ (jsc#PED-1689, jsc#PED-1690).
+- commit f3a7636
+
+- KVM: x86: emulator: update the emulation mode after CR0 write
+ (git-fixes).
+- commit f0c4a2c
+
+- KVM: x86: emulator: update the emulation mode after rsm
+ (git-fixes).
+- commit debb42a
+
+- KVM: x86: emulator: introduce emulator_recalc_and_set_mode
+ (git-fixes).
+- commit a9da797
+
+- blacklist.conf: add xsk entry that was reverted
+- commit 8c1c3d4
+
+- KVM: x86: emulator: em_sysexit should update ctxt->mode
+ (git-fixes).
+- commit e252f98
+
+- KVM: VMX: fully disable SGX if SECONDARY_EXEC_ENCLS_EXITING
+ unavailable (git-fixes).
+- commit f452678
+
+- KVM: x86: Mask off reserved bits in CPUID.8000001AH (git-fixes).
+- commit c7494f8
+
+- KVM: x86: Mask off reserved bits in CPUID.80000008H (git-fixes).
+- commit b042017
+
+- KVM: x86: Mask off reserved bits in CPUID.80000006H (git-fixes).
+- commit ce5ff67
+
+- KVM: VMX: Drop bits 31:16 when shoving exception error code
+ into VMCS (git-fixes).
+- commit e0caade
+
+- Update patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch
+ Patch (44b3834b2eed5 "arm64: errata: Remove AES hwcap for COMPAT tasks") added
+ new workaround identifier. Remove one placeholder to keep kABI intact.
+- commit e23b992
+
+- xsk: Initialise xskb free_list_node (jsc#PED-1368).
+- selftests/bpf: Fix OOB write in test_verifier (jsc#PED-1368).
+- bpf: Add selftests to cover packet access corner cases
+ (jsc#PED-1368).
+- bpf: Fix the off-by-two error in range markings (jsc#PED-1368).
+- tools/resolve_btfids: Skip unresolved symbol warning for empty
+ BTF sets (jsc#PED-1368).
+- bpf: Fix bpf_check_mod_kfunc_call for built-in modules
+ (jsc#PED-1368).
+- bpf: Make CONFIG_DEBUG_INFO_BTF depend upon CONFIG_BPF_SYSCALL
+ (jsc#PED-1368).
+- bpf, sockmap: Re-evaluate proto ops when psock is removed from
+ sockmap (jsc#PED-1368).
+- bpf, sockmap: Attach map progs to psock early for feature probes
+ (jsc#PED-1368).
+- selftests/bpf: Add tests for restricted helpers (jsc#PED-1368).
+- bpf: Forbid bpf_ktime_get_coarse_ns and bpf_timer_* in tracing
+ progs (jsc#PED-1368).
+- libbpf: Perform map fd cleanup for gen_loader in case of error
+ (jsc#PED-1368).
+- tools/runqslower: Fix cross-build (jsc#PED-1368).
+- bpf: Fix inner map state pruning regression (jsc#PED-1368).
+- bpf, sockmap: Use stricter sk state checks in sk_lookup_assign
+ (jsc#PED-1368).
+- bpf: selftest: Trigger a DCE on the whole subprog
+ (jsc#PED-1368).
+- riscv, bpf: Fix RV32 broken build, and silence RV64 warning
+ (jsc#PED-1368).
+- bpftool: Install libbpf headers for the bootstrap version,
+ too (jsc#PED-1368).
+- bpf: Do not reject when the stack read size is different from
+ the tracked scalar size (jsc#PED-1368).
+- selftests/bpf: Make netcnt selftests serial to avoid spurious
+ failures (jsc#PED-1368).
+- selftests/bpf: Convert test_bpffs to ASSERT macros
+ (jsc#PED-1368).
+- libfs: Support RENAME_EXCHANGE in simple_rename()
+ (jsc#PED-1368).
+- libfs: Move shmem_exchange to simple_rename_exchange
+ (jsc#PED-1368).
+- scripts: documentation-file-ref-check: fix bpf selftests path
+ (jsc#PED-1368).
+- libbpf: Deprecate AF_XDP support (jsc#PED-1368).
+- selftests/bpf: Add a testcase for 64-bit bounds propagation
+ issue (jsc#PED-1368).
+- bpf: Add missing map_delete_elem method to bloom filter map
+ (jsc#PED-1368).
+- selftests/bpf: Add bloom map success test for userspace calls
+ (jsc#PED-1368).
+- bpf: Add alignment padding for "map_extra" + consolidate holes
+ (jsc#PED-1368).
+- Refresh patches.suse/kABI-padding-for-bpf.patch
+- bpf: Bloom filter map naming fixups (jsc#PED-1368).
+- selftests/bpf: Add test cases for struct_ops prog
+ (jsc#PED-1368).
+- bpf: Add dummy BPF STRUCT_OPS for test purpose (jsc#PED-1368).
+- bpf: Factor out helpers for ctx access checking (jsc#PED-1368).
+- bpf: Factor out a helper to prepare trampoline for struct_ops
+ prog (jsc#PED-1368).
+- riscv, libbpf: Add RISC-V (RV64) support to bpf_tracing.h
+ (jsc#PED-1368).
+- tools, build: Add RISC-V to HOSTARCH parsing (jsc#PED-1368).
+- riscv, bpf: Increase the maximum number of iterations
+ (jsc#PED-1368).
+- selftests, bpf: Add one test for sockmap with strparser
+ (jsc#PED-1368).
+- selftests, bpf: Fix test_txmsg_ingress_parser error
+ (jsc#PED-1368).
+- selftests/bpf: Add weak/typeless ksym test for light skeleton
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-selftests-Test-PTR_TO_RDONLY_MEM.patch
+- libbpf: Use O_CLOEXEC uniformly when opening fds (jsc#PED-1368).
+- libbpf: Ensure that BPF syscall fds are never 0, 1, or 2
+ (jsc#PED-1368).
+- libbpf: Add weak ksym support to gen_loader (jsc#PED-1368).
+- libbpf: Add typeless ksym support to gen_loader (jsc#PED-1368).
+- bpf: Add bpf_kallsyms_lookup_name helper (jsc#PED-1368).
+- bpf/benchs: Add benchmarks for comparing hashmap lookups w/
+ vs. w/out bloom filter (jsc#PED-1368).
+- bpf/benchs: Add benchmark tests for bloom filter throughput +
+ false positive (jsc#PED-1368).
+- selftests/bpf: Add bloom filter map test cases (jsc#PED-1368).
+- libbpf: Add "map_extra" as a per-map-type extra flag
+ (jsc#PED-1368).
+- bpf: Add bloom filter map implementation (jsc#PED-1368).
+- riscv, bpf: Add BPF exception tables (jsc#PED-1368).
+- selftests/bpf: Adding a namespace reset for tc_redirect
+ (jsc#PED-1368).
+- selftests/bpf: Fix attach_probe in parallel mode (jsc#PED-1368).
+- selfetests/bpf: Update vmtest.sh defaults (jsc#PED-1368).
+- bpf: Use u64_stats_t in struct bpf_prog_stats (jsc#PED-1368).
+- libbpf: Deprecate bpf_objects_list (jsc#PED-1368).
+- selftests/bpf: Guess function end for test_get_branch_snapshot
+ (jsc#PED-1368).
+- selftests/bpf: Skip all serial_test_get_branch_snapshot in vm
+ (jsc#PED-1368).
+- selftests/seccomp: Use __BYTE_ORDER__ (jsc#PED-1368).
+- samples: seccomp: Use __BYTE_ORDER__ (jsc#PED-1368).
+- selftests/bpf: Use __BYTE_ORDER__ (jsc#PED-1368).
+- libbpf: Use __BYTE_ORDER__ (jsc#PED-1368).
+- libbpf: Deprecate ambiguously-named bpf_program__size() API
+ (jsc#PED-1368).
+- libbpf: Deprecate multi-instance bpf_program APIs
+ (jsc#PED-1368).
+- libbpf: Add ability to fetch bpf_program's underlying
+ instructions (jsc#PED-1368).
+- libbpf: Fix off-by-one bug in bpf_core_apply_relo()
+ (jsc#PED-1368).
+- bpftool: Switch to libbpf's hashmap for PIDs/names references
+ (jsc#PED-1368).
+- bpftool: Switch to libbpf's hashmap for programs/maps in BTF
+ listing (jsc#PED-1368).
+- bpftool: Switch to libbpf's hashmap for pinned paths of BPF
+ objects (jsc#PED-1368).
+- bpftool: Do not expose and init hash maps for pinned path in
+ main.c (jsc#PED-1368).
+- bpftool: Remove Makefile dep. on $(LIBBPF) for
+ $(LIBBPF_INTERNAL_HDRS) (jsc#PED-1368).
+- selftests/bpf: Split out bpf_verif_scale selftests into multiple
+ tests (jsc#PED-1368).
+- selftests/bpf: Mark tc_redirect selftest as serial
+ (jsc#PED-1368).
+- selftests/bpf: Support multiple tests per file (jsc#PED-1368).
+- selftests/bpf: Normalize selftest entry points (jsc#PED-1368).
+- docs/bpf: Update documentation for BTF_KIND_DECL_TAG typedef
+ support (jsc#PED-1368).
+- selftests/bpf: Add BTF_KIND_DECL_TAG typedef example in tag.c
+ (jsc#PED-1368).
+- selftests/bpf: Test deduplication for BTF_KIND_DECL_TAG typedef
+ (jsc#PED-1368).
+- selftests/bpf: Add BTF_KIND_DECL_TAG typedef unit tests
+ (jsc#PED-1368).
+- bpf: Add BTF_KIND_DECL_TAG typedef support (jsc#PED-1368).
+- selftests/bpf: Fix flow dissector tests (jsc#PED-1368).
+- libbpf: Use func name when pinning programs with
+ LIBBPF_STRICT_SEC_NAME (jsc#PED-1368).
+- bpf, tests: Add more LD_IMM64 tests (jsc#PED-1368).
+- libbpf: Add legacy uprobe attaching support (jsc#PED-1368).
+- libbpf: Refactor and simplify legacy kprobe code (jsc#PED-1368).
+- selftests/bpf: Adopt attach_probe selftest to work on old
+ kernels (jsc#PED-1368).
+- libbpf: Fix memory leak in legacy kprobe attach logic
+ (jsc#PED-1368).
+- commit f05c9f9
+
+- arm64: errata: Remove AES hwcap for COMPAT tasks (git-fixes)
+ Enable CONFIG_ARM64_ERRATUM_1742098 in arm64/default
+- commit fbe1536
+
+- arm64: Fix bit-shifting UB in the MIDR_CPU_MODEL() macro (git-fixes)
+- commit c70ddd5
+
+- arm64: fix rodata=full again (git-fixes)
+- commit 62260a8
+
+- selftests/bpf: Switch to new btf__type_cnt/btf__raw_data APIs
+ (jsc#PED-1368).
+- bpftool: Switch to new btf__type_cnt API (jsc#PED-1368).
+- tools/resolve_btfids: Switch to new btf__type_cnt API
+ (jsc#PED-1368).
+- perf bpf: Switch to new btf__raw_data API (jsc#PED-1368).
+- libbpf: Add btf__type_cnt() and btf__raw_data() APIs
+ (jsc#PED-1368).
+- selftests/bpf: Make perf_buffer selftests work on 4.9 kernel
+ again (jsc#PED-1368).
+- libbpf: Fix the use of aligned attribute (jsc#PED-1368).
+- selftests/bpf: Switch to ".bss"/".rodata"/".data" lookups for
+ internal maps (jsc#PED-1368).
+- libbpf: Simplify look up by name of internal maps
+ (jsc#PED-1368).
+- selftests/bpf: Demonstrate use of custom .rodata/.data sections
+ (jsc#PED-1368).
+- libbpf: Support multiple .rodata.* and .data.* BPF maps
+ (jsc#PED-1368).
+- bpftool: Improve skeleton generation for data maps without
+ DATASEC type (jsc#PED-1368).
+- bpftool: Support multiple .rodata/.data internal maps in
+ skeleton (jsc#PED-1368).
+- libbpf: Remove assumptions about uniqueness of
+ .rodata/.data/.bss maps (jsc#PED-1368).
+- libbpf: Use Elf64-specific types explicitly for dealing with
+ ELF (jsc#PED-1368).
+- libbpf: Extract ELF processing state into separate struct
+ (jsc#PED-1368).
+- libbpf: Deprecate btf__finalize_data() and move it into libbpf.c
+ (jsc#PED-1368).
+- selftests/bpf: Use nanosleep tracepoint in perf buffer test
+ (jsc#PED-1368).
+- selftests/bpf: Fix possible/online index mismatch in perf_buffer
+ test (jsc#PED-1368).
+- selftests/bpf: Add verif_stats test (jsc#PED-1368).
+- bpf: Add verified_insns to bpf_prog_info and fdinfo
+ (jsc#PED-1368).
+- libbpf: Fix ptr_is_aligned() usages (jsc#PED-1368).
+- selftests/bpf: Test bpf_skc_to_unix_sock() helper
+ (jsc#PED-1368).
+- bpf: Add bpf_skc_to_unix_sock() helper (jsc#PED-1368).
+- samples: bpf: Suppress readelf stderr when probing for BTF
+ support (jsc#PED-1368).
+- net: bpf: Switch over to memdup_user() (jsc#PED-1368).
+- libbpf: Fix dumping non-aligned __int128 (jsc#PED-1368).
+- libbpf: Fix dumping big-endian bitfields (jsc#PED-1368).
+- selftests/bpf: Use cpu_number only on arches that have it
+ (jsc#PED-1368).
+- bpf/preload: Clean up .gitignore and "clean-files" target
+ (jsc#PED-1368).
+- bpf: Silence Coverity warning for find_kfunc_desc_btf
+ (jsc#PED-1368).
+- bpftool: Turn check on zlib from a phony target into a
+ conditional error (jsc#PED-1368).
+- bpftool: Do not FORCE-build libbpf (jsc#PED-1368).
+- selftests/bpf: Switch sk_lookup selftests to strict
+ SEC("sk_lookup") use (jsc#PED-1368).
+- libbpf: Add opt-in strict BPF program section name handling
+ logic (jsc#PED-1368).
+- libbpf: Complete SEC() table unification for
+ BPF_APROG_SEC/BPF_EAPROG_SEC (jsc#PED-1368).
+- libbpf: Refactor ELF section handler definitions (jsc#PED-1368).
+- libbpf: Reduce reliance of attach_fns on sec_def internals
+ (jsc#PED-1368).
+- libbpf: Refactor internal sec_def handling to enable
+ pluggability (jsc#PED-1368).
+- Refresh patches.suse/libbpf-Support-kernel-module-function-calls.patch
+- selftests/bpf: Normalize all the rest SEC() uses (jsc#PED-1368).
+- selftests/bpf: Switch SEC("classifier*") usage to a strict
+ SEC("tc") (jsc#PED-1368).
+- commit 6e3d638
+
+- bpftool: Fix install for libbpf's internal header(s)
+ (jsc#PED-1368).
+- libbpf: Remove Makefile warnings on out-of-sync
+ netlink.h/if_link.h (jsc#PED-1368).
+- bpf: Rename BTF_KIND_TAG to BTF_KIND_DECL_TAG (jsc#PED-1368).
+- selfetest/bpf: Make some tests serial (jsc#PED-1368).
+- selftests/bpf: Fix pid check in fexit_sleep test (jsc#PED-1368).
+- selftests/bpf: Adding pid filtering for atomics test
+ (jsc#PED-1368).
+- selftests/bpf: Make cgroup_v1v2 use its own port (jsc#PED-1368).
+- selftests/bpf: Fix race condition in enable_stats
+ (jsc#PED-1368).
+- selftests/bpf: Add per worker cgroup suffix (jsc#PED-1368).
+- selftests/bpf: Allow some tests to be executed in sequence
+ (jsc#PED-1368).
+- selftests/bpf: Add parallelism to test_progs (jsc#PED-1368).
+- bpf: Support writable context for bare tracepoint
+ (jsc#PED-1368).
+- bpftool: Add install-bin target to install binary only
+ (jsc#PED-1368).
+- selftests/bpf: Better clean up for runqslower in
+ test_bpftool_build.sh (jsc#PED-1368).
+- samples/bpf: Do not FORCE-recompile libbpf (jsc#PED-1368).
+- samples/bpf: Install libbpf headers when building
+ (jsc#PED-1368).
+- samples/bpf: Update .gitignore (jsc#PED-1368).
+- bpf: iterators: Install libbpf headers when building
+ (jsc#PED-1368).
+- bpf: preload: Install libbpf headers when building
+ (jsc#PED-1368).
+- tools/runqslower: Install libbpf headers when building
+ (jsc#PED-1368).
+- tools/resolve_btfids: Install libbpf headers when building
+ (jsc#PED-1368).
+- bpftool: Install libbpf headers instead of including the dir
+ (jsc#PED-1368).
+- Refresh patches.suse/bpftool-Remove-useless-include-to-perf-sys.h-from-ma.patch
+- libbpf: Skip re-installing headers file if source is older
+ than target (jsc#PED-1368).
+- selftests/bpf: Remove SEC("version") from test progs
+ (jsc#PED-1368).
+- selftests/bpf: Skip the second half of get_branch_snapshot in vm
+ (jsc#PED-1368).
+- selftests/bpf: Switch to new bpf_object__next_{map,program}
+ APIs (jsc#PED-1368).
+- libbpf: Deprecate bpf_{map,program}__{prev,next} APIs since v0.7
+ (jsc#PED-1368).
+- libbpf: Add API documentation convention guidelines
+ (jsc#PED-1368).
+- bpf: Use $(pound) instead of \# in Makefiles (jsc#PED-1368).
+- selftests/bpf: Test new btf__add_btf() API (jsc#PED-1368).
+- selftests/bpf: Refactor btf_write selftest to reuse BTF
+ generation logic (jsc#PED-1368).
+- libbpf: Add API that copies all BTF types from one BTF object
+ to another (jsc#PED-1368).
+- bpf: Avoid retpoline for bpf_for_each_map_elem (jsc#PED-1368).
+- bpf: selftests: Add selftests for module kfunc support
+ (jsc#PED-1368).
+- libbpf: Update gen_loader to emit BTF_KIND_FUNC relocations
+ (jsc#PED-1368).
+- libbpf: Resolve invalid weak kfunc calls with imm = 0, off =
+ 0 (jsc#PED-1368).
+- libbpf: Support kernel module function calls (jsc#PED-1368).
+- bpf: Enable TCP congestion control kfunc from modules
+ (jsc#PED-1368).
+- tools: Allow specifying base BTF file in resolve_btfids
+ (jsc#PED-1368).
+- bpf: btf: Introduce helpers for dynamic BTF set registration
+ (jsc#PED-1368).
+- bpf: Be conservative while processing invalid kfunc calls
+ (jsc#PED-1368).
+- bpf: Introduce BPF support for kernel module function calls
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-Stop-caching-subprog-index-in-the-bpf_pseudo_fun.patch
+- Refresh patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch
+- selftests/bpf: Use BTF-defined key/value for map definitions
+ (jsc#PED-1368).
+- libbpf: Support uniform BTF-defined key/value specification
+ across all BPF maps (jsc#PED-1368).
+- bpf/tests: Add test of LDX_MEM with operand aliasing
+ (jsc#PED-1368).
+- bpf/tests: Add test of ALU shifts with operand register aliasing
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of BPF_ATOMIC register
+ combinations (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of ALU register combinations
+ (jsc#PED-1368).
+- bpf/tests: Minor restructuring of ALU tests (jsc#PED-1368).
+- bpf/tests: Add more tests for ALU and ATOMIC register clobbering
+ (jsc#PED-1368).
+- bpf/tests: Add tests to check source register zero-extension
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of BPF_ATOMIC magnitudes
+ (jsc#PED-1368).
+- bpf/tests: Add zero-extension checks in BPF_ATOMIC tests
+ (jsc#PED-1368).
+- bpf/tests: Add tests of BPF_LDX and BPF_STX with small sizes
+ (jsc#PED-1368).
+- selftests/bpf: Use kselftest skip code for skipped tests
+ (jsc#PED-1368).
+- libbpf: Properly ignore STT_SECTION symbols in legacy map
+ definitions (jsc#PED-1368).
+- bpf: Do not invoke the XDP dispatcher for PROG_RUN with single
+ repeat (jsc#PED-1368).
+- libbpf: Make gen_loader data aligned (jsc#PED-1368).
+- bpf: selftests: Fix fd cleanup in get_branch_snapshot
+ (jsc#PED-1368).
+- xsk: Fix clang build error in __xp_alloc (jsc#PED-1368).
+- selftests/bpf: Fix probe_user test failure with clang build
+ kernel (jsc#PED-1368).
+- bpf: Replace callers of BPF_CAST_CALL with proper function
+ typedef (jsc#PED-1368).
+- bpf: Replace "want address" users of BPF_CAST_CALL with
+ BPF_CALL_IMM (jsc#PED-1368).
+- selftests/bpf: Normalize XDP section names in selftests
+ (jsc#PED-1368).
+- Refresh patches.suse/selftests-bpf-xdp_redirect_multi-Limit-the-tests-in-.patch
+- libbpf: Add "tc" SEC_DEF which is a better name for "classifier"
+ (jsc#PED-1368).
+- bpf/tests: Add tail call limit test with external function call
+ (jsc#PED-1368).
+- bpf/tests: Fix error in tail call limit tests (jsc#PED-1368).
+- bpf/tests: Add more BPF_END byte order conversion tests
+ (jsc#PED-1368).
+- bpf/tests: Expand branch conversion JIT test (jsc#PED-1368).
+- bpf/tests: Add JMP tests with degenerate conditional
+ (jsc#PED-1368).
+- bpf/tests: Add JMP tests with small offsets (jsc#PED-1368).
+- bpf/tests: Add test case flag for verifier zero-extension
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive test of LD_IMM64 immediate magnitudes
+ (jsc#PED-1368).
+- bpf/tests: Add staggered JMP and JMP32 tests (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of JMP operand magnitudes
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of ALU operand magnitudes
+ (jsc#PED-1368).
+- bpf/tests: Add exhaustive tests of ALU shift values
+ (jsc#PED-1368).
+- bpf/tests: Reduce memory footprint of test suite (jsc#PED-1368).
+- bpf/tests: Allow different number of runs per test case
+ (jsc#PED-1368).
+- libbpf: Ignore STT_SECTION symbols in 'maps' section
+ (jsc#PED-1368).
+- bpf: selftest: Add verifier tests for <8-byte scalar spill
+ and refill (jsc#PED-1368).
+- bpf: selftest: A bpf prog that has a 32bit scalar spill
+ (jsc#PED-1368).
+- bpf: Support <8-byte scalar spill and refill (jsc#PED-1368).
+- bpf: Check the other end of slot_type for STACK_SPILL
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- bpf: Clarify data_len param in bpf_snprintf and bpf_seq_printf
+ comments (jsc#PED-1368).
+- selftests/bpf: Add trace_vprintk test prog (jsc#PED-1368).
+- selftests/bpf: Migrate prog_tests/trace_printk CHECKs to ASSERTs
+ (jsc#PED-1368).
+- bpftool: Only probe trace_vprintk feature in 'full' mode
+ (jsc#PED-1368).
+- libbpf: Use static const fmt string in __bpf_printk
+ (jsc#PED-1368).
+- libbpf: Modify bpf_printk to choose helper based on arg count
+ (jsc#PED-1368).
+- bpf: Add bpf_trace_vprintk helper (jsc#PED-1368).
+- selftests/bpf: Stop using bpf_program__load (jsc#PED-1368).
+- bpf: Merge printk and seq_printf VARARG max macros
+ (jsc#PED-1368).
+- bpf, tests: Add tail call test suite (jsc#PED-1368).
+- bpf, tests: Add tests for BPF_CMPXCHG (jsc#PED-1368).
+- bpf, tests: Add tests for atomic operations (jsc#PED-1368).
+- bpf, tests: Add test for 32-bit context pointer argument passing
+ (jsc#PED-1368).
+- bpf, tests: Add branch conversion JIT test (jsc#PED-1368).
+- bpf, tests: Add word-order tests for load/store of double words
+ (jsc#PED-1368).
+- bpf, tests: Add tests for ALU operations implemented with
+ function calls (jsc#PED-1368).
+- bpf, tests: Add more ALU64 BPF_MUL tests (jsc#PED-1368).
+- bpf, tests: Add more BPF_LSH/RSH/ARSH tests for ALU64
+ (jsc#PED-1368).
+- bpf, tests: Add more ALU32 tests for BPF_LSH/RSH/ARSH
+ (jsc#PED-1368).
+- bpf, tests: Add more tests of ALU32 and ALU64 bitwise operations
+ (jsc#PED-1368).
+- bpf, tests: Fix typos in test case descriptions (jsc#PED-1368).
+- bpf, tests: Add BPF_MOV tests for zero and sign extension
+ (jsc#PED-1368).
+- bpf, tests: Add BPF_JMP32 test cases (jsc#PED-1368).
+- commit da02160
+
+- selftests: xsk: Add frame_headroom test (jsc#PED-1368).
+- selftests: xsk: Change interleaving of packets in unaligned mode
+ (jsc#PED-1368).
+- selftests: xsk: Add single packet test (jsc#PED-1368).
+- selftests: xsk: Introduce pacing of traffic (jsc#PED-1368).
+- selftests: xsk: Fix socket creation retry (jsc#PED-1368).
+- selftests: xsk: Put the same buffer only once in the fill ring
+ (jsc#PED-1368).
+- selftests: xsk: Fix missing initialization (jsc#PED-1368).
+- xsk: Get rid of unused entry in struct xdp_buff_xsk
+ (jsc#PED-1368).
+- selftests/bpf: Fix a few compiler warnings (jsc#PED-1368).
+- libbpf: Constify all high-level program attach APIs
+ (jsc#PED-1368).
+- libbpf: Schedule open_opts.attach_prog_fd deprecation since v0.7
+ (jsc#PED-1368).
+- selftests/bpf: Switch fexit_bpf2bpf selftest to
+ set_attach_target() API (jsc#PED-1368).
+- libbpf: Allow skipping attach_func_name in
+ bpf_program__set_attach_target() (jsc#PED-1368).
+- libbpf: Deprecated bpf_object_open_opts.relaxed_core_relocs
+ (jsc#PED-1368).
+- selftests/bpf: Stop using relaxed_core_relocs which has no
+ effect (jsc#PED-1368).
+- libbpf: Use pre-setup sec_def in libbpf_find_attach_btf_id()
+ (jsc#PED-1368).
+- bpf: Update bpf_get_smp_processor_id() documentation
+ (jsc#PED-1368).
+- libbpf: Add sphinx code documentation comments (jsc#PED-1368).
+- selftests/bpf: Skip btf_tag test if btf_tag attribute not
+ supported (jsc#PED-1368).
+- docs/bpf: Add documentation for BTF_KIND_TAG (jsc#PED-1368).
+- selftests/bpf: Add a test with a bpf program with btf_tag
+ attributes (jsc#PED-1368).
+- selftests/bpf: Test BTF_KIND_TAG for deduplication
+ (jsc#PED-1368).
+- selftests/bpf: Add BTF_KIND_TAG unit tests (jsc#PED-1368).
+- selftests/bpf: Change NAME_NTH/IS_NAME_NTH for BTF_KIND_TAG
+ format (jsc#PED-1368).
+- selftests/bpf: Test libbpf API function btf__add_tag()
+ (jsc#PED-1368).
+- bpftool: Add support for BTF_KIND_TAG (jsc#PED-1368).
+- libbpf: Add support for BTF_KIND_TAG (jsc#PED-1368).
+- libbpf: Rename btf_{hash,equal}_int to btf_{hash,equal}_int_tag
+ (jsc#PED-1368).
+- bpf: Support for new btf kind BTF_KIND_TAG (jsc#PED-1368).
+- btf: Change BTF_KIND_* macros to enums (jsc#PED-1368).
+- commit 3c45813
+
+- selftests/bpf: Fix .gitignore to not ignore test_progs.c
+ (jsc#PED-1368).
+- bpf,x64 Emit IMUL instead of MUL for x86-64 (jsc#PED-1368).
+- libbpf: Minimize explicit iterator of section definition array
+ (jsc#PED-1368).
+- libbpf: Simplify BPF program auto-attach code (jsc#PED-1368).
+- libbpf: Ensure BPF prog types are set before relocations
+ (jsc#PED-1368).
+- selftests/bpf: Update selftests to always provide "struct_ops"
+ SEC (jsc#PED-1368).
+- libbpf: Introduce legacy kprobe events support (jsc#PED-1368).
+- libbpf: Make libbpf_version.h non-auto-generated (jsc#PED-1368).
+- bpf, selftests: Replicate tailcall limit test for indirect
+ call case (jsc#PED-1368).
+- selftests/bpf: Add test for bpf_get_branch_snapshot
+ (jsc#PED-1368).
+- bpf: Introduce helper bpf_get_branch_snapshot (jsc#PED-1368).
+- perf: Enable branch record for software events (jsc#PED-1368).
+- Refresh patches.suse/ACPI-Add-perf-low-power-callback.patch
+- selftests/bpf: Test new __sk_buff field hwtstamp (jsc#PED-1368).
+- bpf: Add hardware timestamp field to __sk_buff (jsc#PED-1368).
+- commit 079b8cc
+
+- selftests: xsk: Add tests for 2K frame size (jsc#PED-1368).
+- selftests: xsk: Add tests for invalid xsk descriptors
+ (jsc#PED-1368).
+- selftests: xsk: Eliminate test specific if-statement in test
+ runner (jsc#PED-1368).
+- selftests: xsk: Add test for unaligned mode (jsc#PED-1368).
+- selftests: xsk: Introduce replacing the default packet stream
+ (jsc#PED-1368).
+- selftests: xsk: Allow for invalid packets (jsc#PED-1368).
+- selftests: xsk: Eliminate MAX_SOCKS define (jsc#PED-1368).
+- selftests: xsx: Make pthreads local scope (jsc#PED-1368).
+- selftests: xsk: Make xdp_flags and bind_flags local
+ (jsc#PED-1368).
+- selftests: xsk: Specify number of sockets to create
+ (jsc#PED-1368).
+- selftests: xsk: Replace second_step global variable
+ (jsc#PED-1368).
+- selftests: xsk: Introduce rx_on and tx_on in ifobject
+ (jsc#PED-1368).
+- selftests: xsk: Add use_poll to ifobject (jsc#PED-1368).
+- selftests: xsx: Introduce test name in test spec (jsc#PED-1368).
+- selftests: xsk: Make frame_size configurable (jsc#PED-1368).
+- selftests: xsk: Move rxqsize into xsk_socket_info
+ (jsc#PED-1368).
+- selftests: xsk: Move num_frames and frame_headroom to
+ xsk_umem_info (jsc#PED-1368).
+- selftests: xsk: Introduce test specifications (jsc#PED-1368).
+- selftests: xsk: Introduce type for thread function
+ (jsc#PED-1368).
+- selftests: xsk: Simplify xsk and umem arrays (jsc#PED-1368).
+- libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API
+ deprecations (jsc#PED-1368).
+- libbpf: Fix build with latest gcc/binutils with LTO
+ (jsc#PED-1368).
+- selftests/bpf: Add checks for X__elf_bytes() skeleton helper
+ (jsc#PED-1368).
+- bpftool: Provide a helper method for accessing skeleton's
+ embedded ELF data (jsc#PED-1368).
+- libbpf: Change bpf_object_skeleton data field to const pointer
+ (jsc#PED-1368).
+- bpf: Permit ingress_ifindex in bpf_prog_test_run_xattr
+ (jsc#PED-1368).
+- commit db25468
+
+- kabi: sk_buff.scm_io_uring (bsc#1204228 CVE-2022-2602).
+- commit 9a9bd27
+
+- scsi: scsi_transport_sas: Fix error handling in sas_phy_add()
+ (git-fixes).
+- scsi: megaraid_sas: Correct value passed to scsi_device_lookup()
+ (git-fixes).
+- scsi: qedf: Populate sysfs attributes for vport (git-fixes).
+- scsi: mpt3sas: Fix return value check of dma_get_required_mask()
+ (git-fixes).
+- commit 71fe2f3
+
+- intel_idle: make SPR C1 and C1E be independent (jsc#PED-1936).
+- commit 6f9a5d3
+
+- cpuidle: intel_idle: Drop redundant backslash at line end (jsc#PED-1936).
+- commit 593da52
+
+- cpufreq: intel_pstate: Support Sapphire Rapids OOB mode (jsc#PED-849).
+- commit 4bf905f
+
+- cpufreq: intel_pstate: Handle no_turbo in frequency invariance (jsc#PED-849).
+- commit 41e314e
+
+- intel_idle: Fix SPR C6 optimization (jsc#PED-824 jsc#PED-1936).
+- commit 29ea7f2
+
+- intel_idle: Fix the 'preferred_cstates' module parameter (jsc#PED-824 jsc#PED-1936).
+- commit 07146fb
+
+- intel_idle: Add AlderLake support (jsc#PED-824).
+- commit 6094f58
+
+- panic, kexec: make __crash_kexec() NMI safe (git-fixes).
+- kexec: turn all kexec_mutex acquisitions into trylocks
+ (git-fixes).
+- commit 1a14cb1
+
+- x86/insn-eval: Handle insn_get_opcode() failure (jsc#PED-342).
+- commit 94de1a1
+
+- s390/pai: Add support for PAI Extension 1 NNPA counters
+ (jsc#PED-1973).
+- commit a366504
+
+- s390: block/xpram include <linux/major.h> (bsc#1205381).
+- commit ad01f4b
+
+- KVM: VMX: clear vmx_x86_ops.sync_pir_to_irr if APICv is disabled
+ (bsc#1205007).
+- commit a0ddd6a
+
+- Update config files.
+- commit 6867f80
+
+- io_uring/af_unix: defer registered files gc to io_uring release
+ (bsc#1204228 CVE-2022-2602).
+- commit 52299ff
+
+- scsi: aacraid: Fix undefined behavior due to shift overflowing
+ the constant (jsc#PED-1560).
+- scsi: aacraid: Clean up some inconsistent indenting
+ (jsc#PED-1560).
+- scsi: aacraid: Move the SCSI pointer to private command data
+ (jsc#PED-1560).
+- commit 919bd0a
+
+- block: mark __bio_try_merge_page static (jsc#PED-1183).
+- iomap: simplify iomap_add_to_ioend (jsc#PED-1183).
+- iomap: simplify iomap_readpage_actor (jsc#PED-1183).
+- commit 49fac04
+
+- block: improve batched tag allocation (jsc#PED-1183).
+- sbitmap: add __sbitmap_queue_get_batch() (jsc#PED-1183).
+- blk-mq: optimise *end_request non-stat path (jsc#PED-1183).
+- block: mark bio_truncate static (jsc#PED-1183).
+- block: move bio_get_{first,last}_bvec out of bio.h
+ (jsc#PED-1183).
+- block: move bio_full out of bio.h (jsc#PED-1183).
+- block: fold bio_cur_bytes into blk_rq_cur_bytes (jsc#PED-1183).
+- block: move bio_mergeable out of bio.h (jsc#PED-1183).
+- block: don't include <linux/ioprio.h> in <linux/bio.h>
+ (jsc#PED-1183).
+- block: remove BIO_BUG_ON (jsc#PED-1183).
+- blk-mq: inline hot part of __blk_mq_sched_restart
+ (jsc#PED-1183).
+- commit bda310c
+
+- block: inline hot paths of blk_account_io_*() (jsc#PED-1183).
+- Refresh patches.suse/block-update-io_ticks-when-io-hang.patch.
+- commit 190f0ed
+
+- block: merge block_ioctl into blkdev_ioctl (jsc#PED-1183).
+- block: move the *blkdev_ioctl declarations out of blkdev.h
+ (jsc#PED-1183).
+- block: unexport blkdev_ioctl (jsc#PED-1183).
+- block: don't dereference request after flush insertion
+ (jsc#PED-1183).
+- blk-mq: cleanup blk_mq_submit_bio (jsc#PED-1183).
+- blk-mq: cleanup and rename __blk_mq_alloc_request
+ (jsc#PED-1183).
+- block: pre-allocate requests if plug is started and is a batch
+ (jsc#PED-1183).
+- commit d1bcd5e
+
+- blk-mq: Change shared sbitmap naming to shared tags
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch.
+- commit 9042063
+
+- blk-mq: Stop using pointers for blk_mq_tags bitmap tags
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/bfq-Limit-number-of-requests-consumed-by-each-cgroup.patch.
+- Refresh
+ patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch.
+- commit 0b26e0b
+
+- blk-mq: Use shared tags for shared sbitmap support
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/blk-mq-don-t-free-tags-if-the-tag_set-is-used-by-oth.patch.
+- Refresh
+ patches.suse/blk-mq-fix-tag_get-wait-task-can-t-be-awakened.patch.
+- commit 439e1ef
+
+- blk-mq: Refactor and rename
+ blk_mq_free_map_and_{requests->rqs}() (jsc#PED-1183).
+- Refresh
+ patches.suse/blk-mq-don-t-free-tags-if-the-tag_set-is-used-by-oth.patch.
+- commit 258a969
+
+- block: move struct request to blk-mq.h (jsc#PED-1183).
+- Refresh
+ patches.suse/block-Add-a-helper-to-validate-the-block-size.patch.
+- Refresh
+ patches.suse/block-don-t-merge-across-cgroup-boundaries-if-blkcg-.patch.
+- Refresh
+ patches.suse/block-move-the-SECTOR_SIZE-related-definitions-to-bl.patch.
+- commit 8c609f9
+
+- Update config files: enable CONFIG_NET_SOCK_MSG in s390x-zfcpdump (jsc#PED-1368)
+- commit 47cc0bc
+
+- fuse: add file_modified() to fallocate (bsc#1205332).
+- fuse: fix readdir cache race (bsc#1205331).
+- commit 75f741e
+
+- block/mq-deadline: Prioritize high-priority requests
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/block-fix-async_depth-sysfs-interface-for-mq-deadlin.patch.
+- commit f999f8f
+
+- net: phy: mscc: macsec: clear encryption keys when freeing a
+ flow (git-fixes).
+- macsec: clear encryption keys from the stack after setting up
+ offload (git-fixes).
+- macsec: fix detection of RXSCs when toggling offloading
+ (git-fixes).
+- macsec: fix secy->n_rx_sc accounting (git-fixes).
+- macsec: delete new rxsc when offload fails (git-fixes).
+- wifi: cfg80211: fix memory leak in query_regdb_file()
+ (git-fixes).
+- wifi: cfg80211: silence a sparse RCU warning (git-fixes).
+- soundwire: qcom: check for outanding writes before doing a read
+ (git-fixes).
+- soundwire: qcom: reinit broadcast completion (git-fixes).
+- phy: ralink: mt7621-pci: add sentinel to quirks table
+ (git-fixes).
+- phy: stm32: fix an error code in probe (git-fixes).
+- mtd: parsers: bcm47xxpart: Fix halfblock reads (git-fixes).
+- media: v4l: subdev: Fail graciously when getting try data for
+ NULL state (git-fixes).
+- media: meson: vdec: fix possible refcount leak in vdec_probe()
+ (git-fixes).
+- media: dvb-frontends/drxk: initialize err to 0 (git-fixes).
+- media: cros-ec-cec: limit msg.len to CEC_MAX_MSG_SIZE
+ (git-fixes).
+- media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE (git-fixes).
+- media: rkisp1: Zero v4l2_subdev_format fields in when validating
+ links (git-fixes).
+- media: rkisp1: Use correct macro for gradient registers
+ (git-fixes).
+- media: rkisp1: Initialize color space on resizer sink and
+ source pads (git-fixes).
+- media: rkisp1: Don't pass the quantization to
+ rkisp1_csm_config() (git-fixes).
+- mtd: parsers: bcm47xxpart: print correct offset on read error
+ (git-fixes).
+- video/fbdev/stifb: Implement the stifb_fillrect() function
+ (git-fixes).
+- commit 5883e57
+
+- block: move the SECTOR_SIZE related definitions to blk_types.h
+ (jsc#PED-1183).
+- commit 631102f
+
+- can: j1939: j1939_send_one(): fix missing CAN header
+ initialization (git-fixes).
+- can: af_can: fix NULL pointer dereference in can_rx_register()
+ (git-fixes).
+- hamradio: fix issue of dev reference count leakage in
+ bpq_device_event() (git-fixes).
+- efi: random: Use 'ACPI reclaim' memory for random seed
+ (git-fixes).
+- efi: random: reduce seed size to 32 bytes (git-fixes).
+- drm/i915/sdvo: Setup DDC fully before output init (git-fixes).
+- drm/i915/sdvo: Filter out invalid outputs more sensibly
+ (git-fixes).
+- drm/rockchip: dsi: Force synchronous probe (git-fixes).
+- Bluetooth: L2CAP: Fix attempting to access uninitialized memory
+ (git-fixes).
+- Bluetooth: L2CAP: Fix accepting connection request for invalid
+ SPSM (git-fixes).
+- drm/msm/hdmi: fix IRQ lifetime (git-fixes).
+- i2c: xiic: Add platform module alias (git-fixes).
+- ACPI: APEI: Fix integer overflow in ghes_estatus_pool_init()
+ (git-fixes).
+- HID: saitek: add madcatz variant of MMO7 mouse device ID
+ (git-fixes).
+- HID: playstation: add initial DualSense Edge controller support
+ (git-fixes).
+- drm/amdgpu: set vm_update_mode=0 as default for Sienna Cichlid
+ in SRIOV case (git-fixes).
+- drm/msm/hdmi: Remove spurious IRQF_ONESHOT flag (git-fixes).
+- commit 5a3b429
+
+- selftests/bpf: Fix test_core_reloc_mods on big-endian machines
+ (jsc#PED-1368).
+- selftests/bpf: Use recv_timeout() instead of retries
+ (jsc#PED-1368).
+- skmsg: Extract and reuse sk_msg_is_readable() (jsc#PED-1368).
+- Refresh patches.suse/bpf-sockmap-Remove-unhash-handler-for-BPF-sockmap-us.patch
+- net: Rename ->stream_memory_read to ->sock_is_readable
+ (jsc#PED-1368).
+- Refresh patches.suse/bpf-sockmap-Remove-unhash-handler-for-BPF-sockmap-us.patch
+- samples/bpf: Relicense bpf_insn.h as GPL-2.0-only OR
+ BSD-2-Clause (jsc#PED-1368).
+- samples: bpf: Fix vmlinux.h generation for XDP samples
+ (jsc#PED-1368).
+- bpf, selftests: Add test case for mixed cgroup v1/v2
+ (jsc#PED-1368).
+- bpf, selftests: Add cgroup v1 net_cls classid helpers
+ (jsc#PED-1368).
+- selftests/bpf: Fix build of task_pt_regs test for arm64
+ (jsc#PED-1368).
+- bpf: Relicense disassembler as GPL-2.0-only OR BSD-2-Clause
+ (jsc#PED-1368).
+- selftests/bpf: Test XDP bonding nest and unwind (jsc#PED-1368).
+- perf trace: Update cmd string table to decode sys_bpf first arg
+ (jsc#PED-1368).
+- samples: bpf: Fix uninitialized variable in xdp_redirect_cpu
+ (jsc#PED-1368).
+- selftests/bpf: Reduce more flakyness in sockmap_listen
+ (jsc#PED-1368).
+- bpf: Fix bpf-next builds without CONFIG_BPF_EVENTS
+ (jsc#PED-1368).
+- bpf: selftests: Add dctcp fallback test (jsc#PED-1368).
+- bpf: selftests: Add connect_to_fd_opts to network_helpers
+ (jsc#PED-1368).
+- bpf: selftests: Add sk_state to bpf_tcp_helpers.h
+ (jsc#PED-1368).
+- bpf: tcp: Allow bpf-tcp-cc to call bpf_(get|set)sockopt
+ (jsc#PED-1368).
+- selftests: xsk: Preface options with opt (jsc#PED-1368).
+- selftests: xsk: Make enums lower case (jsc#PED-1368).
+- selftests: xsk: Generate packets from specification
+ (jsc#PED-1368).
+- selftests: xsk: Generate packet directly in umem (jsc#PED-1368).
+- selftests: xsk: Simplify cleanup of ifobjects (jsc#PED-1368).
+- selftests: xsk: Decrease sending speed (jsc#PED-1368).
+- selftests: xsk: Validate tx stats on tx thread (jsc#PED-1368).
+- selftests: xsk: Simplify packet validation in xsk tests
+ (jsc#PED-1368).
+- selftests: xsk: Rename worker_* functions that are not thread
+ entry points (jsc#PED-1368).
+- selftests: xsk: Disassociate umem size with packets sent
+ (jsc#PED-1368).
+- selftests: xsk: Remove end-of-test packet (jsc#PED-1368).
+- selftests: xsk: Simplify the retry code (jsc#PED-1368).
+- selftests: xsk: Return correct error codes (jsc#PED-1368).
+- selftests: xsk: Remove unused variables (jsc#PED-1368).
+- selftests: xsk: Remove the num_tx_packets option (jsc#PED-1368).
+- selftests: xsk: Remove color mode (jsc#PED-1368).
+- bpf: selftests: Add bpf_task_pt_regs() selftest (jsc#PED-1368).
+- bpf: Add bpf_task_pt_regs() helper (jsc#PED-1368).
+- bpf: Extend bpf_base_func_proto helpers with
+ bpf_get_current_task_btf() (jsc#PED-1368).
+- bpf: Consolidate task_struct BTF_ID declarations (jsc#PED-1368).
+- bpf: Add BTF_ID_LIST_GLOBAL_SINGLE macro (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_map_multi to XDP samples
+ helper (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_map_multi_kern.o to XDP
+ samples helper (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_map to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_map_kern.o to XDP samples
+ helper (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_cpu to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_cpu_kern.o to XDP samples
+ helper (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_redirect_kern.o to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_monitor to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Convert xdp_monitor_kern.o to XDP samples helper
+ (jsc#PED-1368).
+- samples: bpf: Add vmlinux.h generation support (jsc#PED-1368).
+- samples: bpf: Add devmap_xmit tracepoint statistics support
+ (jsc#PED-1368).
+- samples: bpf: Add BPF support for devmap_xmit tracepoint
+ (jsc#PED-1368).
+- samples: bpf: Add cpumap tracepoint statistics support
+ (jsc#PED-1368).
+- samples: bpf: Add BPF support for cpumap tracepoints
+ (jsc#PED-1368).
+- samples: bpf: Add xdp_exception tracepoint statistics support
+ (jsc#PED-1368).
+- samples: bpf: Add BPF support for xdp_exception tracepoint
+ (jsc#PED-1368).
+- samples: bpf: Add redirect tracepoint statistics support
+ (jsc#PED-1368).
+- samples: bpf: Add BPF support for redirect tracepoint
+ (jsc#PED-1368).
+- samples: bpf: Add basic infrastructure for XDP samples
+ (jsc#PED-1368).
+- tools: include: Add ethtool_drvinfo definition to UAPI header
+ (jsc#PED-1368).
+- samples: bpf: Fix a couple of warnings (jsc#PED-1368).
+- selftests/bpf: Test for get_netns_cookie (jsc#PED-1368).
+- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_SK_MSG
+ (jsc#PED-1368).
+- selftests/bpf: Exit with KSFT_SKIP if no Makefile found
+ (jsc#PED-1368).
+- selftests/bpf: Add missing files required by test_bpftool.sh
+ for installing (jsc#PED-1368).
+- selftests/bpf: Add default bpftool built by selftests to PATH
+ (jsc#PED-1368).
+- selftests/bpf: Make test_doc_build.sh work from script directory
+ (jsc#PED-1368).
+- selftests/bpf: Reduce flakyness in timer_mim (jsc#PED-1368).
+- bpf: Migrate cgroup_bpf to internal cgroup_bpf_attach_type enum
+ (jsc#PED-1368).
+- selftests/bpf: Add tests for {set|get} socket option from
+ setsockopt BPF (jsc#PED-1368).
+- bpf: Add support for {set|get} socket options from setsockopt
+ BPF (jsc#PED-1368).
+- selftests/bpf: Adding delay in socketmap_listen to reduce
+ flakyness (jsc#PED-1368).
+- bpf: Fix NULL event->prog pointer access in bpf_overflow_handler
+ (jsc#PED-1368).
+- bpf: Undo off-by-one in interpreter tail call count limit
+ (jsc#PED-1368).
+- selftests/bpf: Test for get_netns_cookie (jsc#PED-1368).
+- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_SOCK_OPS
+ (jsc#PED-1368).
+- bpf: Remove redundant initialization of variable allow
+ (jsc#PED-1368).
+- selftests/bpf: Replace CHECK with ASSERT_* macros in
+ send_signal.c (jsc#PED-1368).
+- Refresh patches.suse/selftests-bpf-Fix-flaky-send_signal-test.patch
+- selftests/bpf: Support glob matching for test selector
+ (jsc#PED-1368).
+- selftests/bpf: Also print test name in subtest status message
+ (jsc#PED-1368).
+- selftests/bpf: Skip loading bpf_testmod when using -l to list
+ tests (jsc#PED-1368).
+- selftests/bpf: Add exponential backoff to map_delete_retriable
+ in test_maps (jsc#PED-1368).
+- selftests/bpf: Add exponential backoff to map_update_retriable
+ in test_maps (jsc#PED-1368).
+- selftest/bpf: Add new tests in sockmap for unix stream to tcp
+ (jsc#PED-1368).
+- selftest/bpf: Change udp to inet in some function names
+ (jsc#PED-1368).
+- selftest/bpf: Add tests for sockmap with unix stream type
+ (jsc#PED-1368).
+- af_unix: Add read_sock for stream socket types (jsc#PED-1368).
+- selftests/bpf: Test btf__load_vmlinux_btf/btf__load_module_btf
+ APIs (jsc#PED-1368).
+- bpf: Reconfigure libbpf docs to remove unversioned API
+ (jsc#PED-1368).
+- selftests/bpf: Add ref_ctr_offset selftests (jsc#PED-1368).
+- libbpf: Add uprobe ref counter offset support for USDT
+ semaphores (jsc#PED-1368).
+- selftests/bpf: Add bpf_cookie selftests for high-level APIs
+ (jsc#PED-1368).
+- selftests/bpf: Extract uprobe-related helpers into
+ trace_helpers.{c,h} (jsc#PED-1368).
+- selftests/bpf: Test low-level perf BPF link API (jsc#PED-1368).
+- libbpf: Add bpf_cookie to perf_event, kprobe, uprobe, and tp
+ attach APIs (jsc#PED-1368).
+- libbpf: Add bpf_cookie support to bpf_link_create() API
+ (jsc#PED-1368).
+- libbpf: Use BPF perf link when supported by kernel
+ (jsc#PED-1368).
+- libbpf: Remove unused bpf_link's destroy operation, but add
+ dealloc (jsc#PED-1368).
+- bpf: Add bpf_get_attach_cookie() BPF helper to access bpf_cookie
+ value (jsc#PED-1368).
+- bpf: Allow to specify user-provided bpf_cookie for BPF perf
+ links (jsc#PED-1368).
+- bpf: Implement minimal BPF perf link (jsc#PED-1368).
+- bpf: Refactor perf_event_set_bpf_prog() to use struct bpf_prog
+ input (jsc#PED-1368).
+- bpf: Refactor BPF_PROG_RUN_ARRAY family of macros into functions
+ (jsc#PED-1368).
+- bpf: Refactor BPF_PROG_RUN into a function (jsc#PED-1368).
+- Refresh patches.suse/bpf-Avoid-races-in-__bpf_prog_run-for-32bit-arches.patch
+- selftest/bpf: Extend the bpf_snprintf() test for "%c"
+ (jsc#PED-1368).
+- selftest/bpf: Implement sample UNIX domain socket iterator
+ program (jsc#PED-1368).
+- bpf: Support "%c" in bpf_bprintf_prepare() (jsc#PED-1368).
+- bpf: af_unix: Implement BPF iterator for UNIX domain socket
+ (jsc#PED-1368).
+- selftests/bpf: Verify bpf_get_netns_cookie in
+ BPF_PROG_TYPE_CGROUP_SOCKOPT (jsc#PED-1368).
+- bpf: Allow bpf_get_netns_cookie in BPF_PROG_TYPE_CGROUP_SOCKOPT
+ (jsc#PED-1368).
+- libbpf: Support weak typed ksyms (jsc#PED-1368).
+- Refresh patches.suse/bpf-selftests-Test-PTR_TO_RDONLY_MEM.patch
+- selftests/bpf: Fix running of XDP bonding tests (jsc#PED-1368).
+- net: in_irq() cleanup (jsc#PED-1368).
+- selftests/bpf: Add tests for XDP bonding (jsc#PED-1368).
+- net, core: Allow netdev_lower_get_next_private_rcu in bh context
+ (jsc#PED-1368).
+- net, bonding: Add XDP support to the bonding driver
+ (jsc#PED-1368).
+- net, core: Add support for XDP redirection to slave device
+ (jsc#PED-1368).
+- net, bonding: Refactor bond_xmit_hash for use with xdp_buff
+ (jsc#PED-1368).
+- samples/bpf: xdpsock: Remove forward declaration of
+ ip_fast_csum() (jsc#PED-1368).
+- samples/bpf: xdpsock: Make the sample more useful outside the
+ tree (jsc#PED-1368).
+- selftests/bpf: Rename reference_tracking BPF programs
+ (jsc#PED-1368).
+- selftests/bpf: Move netcnt test under test_progs (jsc#PED-1368).
+- bpf, unix: Check socket type in unix_bpf_update_proto()
+ (jsc#PED-1368).
+- bpf: Fix off-by-one in tail call count limiting (jsc#PED-1368).
+- selftests/bpf: Update bpftool's consistency script for checking
+ options (jsc#PED-1368).
+- tools: bpftool: Complete and synchronise attach or map types
+ (jsc#PED-1368).
+- Refresh patches.suse/tools-bpftool-Complete-metrics-list-in-bpftool-prog-.patch
+- Refresh patches.suse/tools-bpftool-Document-and-add-bash-completion-for-L.patch
+- Refresh patches.suse/tools-bpftool-Update-and-synchronise-option-list-in-.patch
+- selftests/bpf: Check consistency between bpftool source, doc,
+ completion (jsc#PED-1368).
+- tools: bpftool: Slightly ease bash completion updates
+ (jsc#PED-1368).
+- libbpf: Add btf__load_vmlinux_btf/btf__load_module_btf
+ (jsc#PED-1368).
+- tools: bpftool: Support dumping split BTF by id (jsc#PED-1368).
+- libbpf: Add split BTF support for btf__load_from_kernel_by_id()
+ (jsc#PED-1368).
+- tools: Replace btf__get_from_id() with
+ btf__load_from_kernel_by_id() (jsc#PED-1368).
+- libbpf: Rename btf__get_from_id() as
+ btf__load_from_kernel_by_id() (jsc#PED-1368).
+- libbpf: Rename btf__load() as btf__load_into_kernel()
+ (jsc#PED-1368).
+- bpf: Emit better log message if bpf_iter ctx arg btf_id == 0
+ (jsc#PED-1368).
+- tools/resolve_btfids: Emit warnings and patch zero id for
+ missing symbols (jsc#PED-1368).
+- bpf: Increase supported cgroup storage value size
+ (jsc#PED-1368).
+- libbpf: Fix comment typo (jsc#PED-1368).
+- samples: bpf: Add the omitted xdp samples to .gitignore
+ (jsc#PED-1368).
+- selftests/bpf: Use ping6 only if available in tc_redirect
+ (jsc#PED-1368).
+- libbpf: Split CO-RE logic into relo_core.c (jsc#PED-1368).
+- libbpf: Move CO-RE types into relo_core.h (jsc#PED-1368).
+- libbpf: Split bpf_core_apply_relo() into bpf_program independent
+ helper (jsc#PED-1368).
+- libbpf: Cleanup the layering between CORE and bpf_program
+ (jsc#PED-1368).
+- selftests/bpf: Document vmtest.sh dependencies (jsc#PED-1368).
+- libbpf: Add bpf_map__pin_path function (jsc#PED-1368).
+- bpf: selftest: Test batching and bpf_(get|set)sockopt in bpf
+ tcp iter (jsc#PED-1368).
+- bpf: tcp: Support bpf_(get|set)sockopt in bpf tcp iter
+ (jsc#PED-1368).
+- bpf: tcp: Bpf iter batching and lock_sock (jsc#PED-1368).
+- tcp: seq_file: Replace listening_hash with lhash2
+ (jsc#PED-1368).
+- tcp: seq_file: Add listening_get_first() (jsc#PED-1368).
+- bpf: tcp: seq_file: Remove bpf_seq_afinfo from tcp_iter_state
+ (jsc#PED-1368).
+- tcp: seq_file: Refactor net and family matching (jsc#PED-1368).
+- libbpf: Export bpf_program__attach_kprobe_opts function
+ (jsc#PED-1368).
+- libbpf: Allow decimal offset for kprobes (jsc#PED-1368).
+- libbpf: Fix func leak in attach_kprobe (jsc#PED-1368).
+- selftests/bpf: Mute expected invalid map creation error msg
+ (jsc#PED-1368).
+- bpf: Remove redundant intiialization of variable stype
+ (jsc#PED-1368).
+- bpf: Fix pointer cast warning (jsc#PED-1368).
+- libbpf: Propagate errors when retrieving enum value for typed
+ data display (jsc#PED-1368).
+- selftests/bpf: Add __int128-specific tests for typed data dump
+ (jsc#PED-1368).
+- libbpf: Avoid use of __int128 in typed dump display
+ (jsc#PED-1368).
+- selftests, bpf: test_tc_tunnel.sh nc: Cannot use -p and -l
+ (jsc#PED-1368).
+- selftests/bpf: Check inner map deletion (jsc#PED-1368).
+- libbpf: Btf typed dump does not need to allocate dump data
+ (jsc#PED-1368).
+- libbpf: Fix compilation errors on ppc64le for btf dump typed
+ data (jsc#PED-1368).
+- libbpf: Clarify/fix unaligned data issues for btf typed dump
+ (jsc#PED-1368).
+- selftests/bpf: Add dump type data tests to btf dump tests
+ (jsc#PED-1368).
+- selftests/bpf: Add ASSERT_STRNEQ() variant for test_progs
+ (jsc#PED-1368).
+- libbpf: BTF dumper support for typed data (jsc#PED-1368).
+- selftests/bpf: Switch existing selftests to using open_opts
+ for custom BTF (jsc#PED-1368).
+- libbpf: Introduce 'btf_custom_path' to 'bpf_obj_open_opts'
+ (jsc#PED-1368).
+- selftests/bpf: Add test cases for redirection between udp and
+ unix (jsc#PED-1368).
+- selftests/bpf: Add a test case for unix sockmap (jsc#PED-1368).
+- selftests/bpf: Factor out add_to_sockmap() (jsc#PED-1368).
+- selftests/bpf: Factor out udp_socketpair() (jsc#PED-1368).
+- af_unix: Implement unix_dgram_bpf_recvmsg() (jsc#PED-1368).
+- af_unix: Implement ->psock_update_sk_prot() (jsc#PED-1368).
+- af_unix: Add a dummy ->close() for sockmap (jsc#PED-1368).
+- af_unix: Set TCP_ESTABLISHED for datagram sockets too
+ (jsc#PED-1368).
+- af_unix: Implement ->read_sock() for sockmap (jsc#PED-1368).
+- sock_map: Lift socket state restriction for datagram sockets
+ (jsc#PED-1368).
+- sock_map: Relax config dependency to CONFIG_NET (jsc#PED-1368).
+- Refesh patches.suse/of-net-move-of_net-under-net.patch
+- selftests/bpf: Add test for bpf_get_func_ip in kprobe+offset
+ probe (jsc#PED-1368).
+- libbpf: Allow specification of "kprobe/function+offset"
+ (jsc#PED-1368).
+- libbpf: Add bpf_program__attach_kprobe_opts function
+ (jsc#PED-1368).
+- selftests/bpf: Add test for bpf_get_func_ip helper
+ (jsc#PED-1368).
+- bpf: Add bpf_get_func_ip helper for kprobe programs
+ (jsc#PED-1368).
+- bpf: Add bpf_get_func_ip helper for tracing programs
+ (jsc#PED-1368).
+- bpf: Enable BPF_TRAMP_F_IP_ARG for trampolines with
+ call_get_func_ip (jsc#PED-1368).
+- bpf, x86: Store caller's ip in trampoline stack (jsc#PED-1368).
+- Refresh patches.suse/bpf-Handle-return-value-of-BPF_PROG_TYPE_STRUCT_OPS-.patch
+- selftests/bpf: Add a test with bpf_timer in inner map
+ (jsc#PED-1368).
+- selftests/bpf: Add bpf_timer test (jsc#PED-1368).
+- bpf: Teach stack depth check about async callbacks
+ (jsc#PED-1368).
+- bpf: Implement verifier support for validation of async
+ callbacks (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- bpf: Relax verifier recursion check (jsc#PED-1368).
+- bpf: Remember BTF of inner maps (jsc#PED-1368).
+- bpf: Prevent pointer mismatch in bpf_timer_init (jsc#PED-1368).
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- Refresh patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch
+- bpf: Add map side support for bpf timers (jsc#PED-1368).
+- bpf: Introduce bpf timers (jsc#PED-1368).
+- Refresh patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch
+- Refresh patches.suse/bpf-Replace-ARG_XXX_OR_NULL-with-ARG_XXX-PTR_MAYBE_N.patch
+- Refresh patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+- Refresh patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch
+- bpf: Factor out bpf_spin_lock into helpers (jsc#PED-1368).
+- bpf: Prepare bpf_prog_put() to be called from irq context
+ (jsc#PED-1368).
+- samples/bpf: xdp_redirect_cpu_user: Cpumap qsize set larger
+ default (jsc#PED-1368).
+- bpf: Tidy xdp attach selftests (jsc#PED-1368).
+- selftests/bpf: Add test for xdp_md context in BPF_PROG_TEST_RUN
+ (jsc#PED-1368).
+- bpf: Support specifying ingress via xdp_md context in
+ BPF_PROG_TEST_RUN (jsc#PED-1368).
+- bpf: Support input xdp_md context in BPF_PROG_TEST_RUN
+ (jsc#PED-1368).
+- commit e693794
+
+- net: phy: mxl-gpy: add temperature sensor (jsc#PED-829).
+- Update config files.
+- supported.conf: added lib/polynomial.ko
+- commit 60a46b1
+
+- x86/fpu: Drop fpregs lock before inheriting FPU permissions
+ (bnc#1205282).
+- commit bbde2ef
+
+- mac80211: mesh: clean up rx_bcn_presp API (git-fixes).
+- Refresh
+ patches.suse/mac80211-always-allocate-struct-ieee802_11_elems.patch.
+- commit ffa0643
+
+- blacklist.conf: cleanup designed to break kABI
+- commit e1ca2ce
+
+- net/mlx5: Add MACsec offload Tx command support (jsc#PED-1549).
+- Update config files.
+- commit d527e6d
+
+- blacklist.conf: cleanup designed to break kABI
+- commit 3471afe
+
+- net/mlx5e: Validate striding RQ before enabling XDP
+ (jsc#PED-1549).
+- Refresh
+ patches.suse/s390-Fix-mlx5-RoCE-throuput-degradtion.patch.
+- commit af8a650
+
+- RDMA/rxe: Cleanup rxe_pool_entry (jsc#PED-1111).
+- Refresh patches.suse/RDMA-rxe-Fix-rnr-retry-behavior.patch.
+- commit 817ae4c
+
+- PM: core: Add EXPORT[_GPL]_SIMPLE_DEV_PM_OPS macros (git-fixes).
+- commit 652c0d1
+
+- RDMA/rxe: Remove qp->grp_lock and qp->grp_list (jsc#PED-1111).
+- Refresh
+ patches.suse/RDMA-rxe-Fix-error-unwind-in-rxe_create_qp.patch.
+- commit 30d623b
+
+- PM: core: Remove static qualifier in DEFINE_SIMPLE_DEV_PM_OPS
+ macro (git-fixes).
+- commit 34f1483
+
+- mmc: mxc: Use the new PM macros (git-fixes).
+- commit 1480bad
+
+- mmc: jz4740: Use the new PM macros (git-fixes).
+- commit 0e7751d
+
+- PM: runtime: Capture device status before disabling runtime PM
+ (git-fixes).
+- commit 533efbb
+
+- sfc: Fix an error handling path in efx_pci_probe()
+ (jsc#PED-1565).
+- RDMA/qedr: clean up work queue on failure in
+ qedr_alloc_resources() (jsc#PED-1529).
+- RDMA/rxe: Fix mr leak in RESPST_ERR_RNR (jsc#PED-1111).
+- net/mlx5e: Fix macsec sci endianness at rx sa update
+ (jsc#PED-1549).
+- net/mlx5e: Fix wrong bitwise comparison usage in
+ macsec_fs_rx_add_rule function (jsc#PED-1549).
+- net/mlx5e: Fix macsec rx security association (SA) update/delete
+ (jsc#PED-1549).
+- net/mlx5e: Fix macsec coverity issue at rx sa update
+ (jsc#PED-1549).
+- net/mlx5: Fix crash during sync firmware reset (jsc#PED-1549).
+- net/mlx5: Update fw fatal reporter state on PCI handlers
+ successful recover (jsc#PED-1549).
+- net/mlx5e: TC, Fix cloned flow attr instance dests are not
+ zeroed (jsc#PED-1549).
+- net/mlx5e: TC, Reject forwarding from internal port to internal
+ port (jsc#PED-1549).
+- net/mlx5: Fix possible use-after-free in async command interface
+ (jsc#PED-1549).
+- net/mlx5: ASO, Create the ASO SQ with the correct timestamp
+ format (jsc#PED-1549).
+- net/mlx5e: Update restore chain id for slow path packets
+ (jsc#PED-1549).
+- net/mlx5e: Extend SKB room check to include PTP-SQ
+ (jsc#PED-1549).
+- net/mlx5: DR, Fix matcher disconnect error flow (jsc#PED-1549).
+- net/mlx5: Wait for firmware to enable CRS before
+ pci_restore_state (jsc#PED-1549).
+- net/mlx5e: Do not increment ESN when updating IPsec ESN state
+ (jsc#PED-1549).
+- i40e: Fix flow-type by setting GL_HASH_INSET registers
+ (jsc#PED-372).
+- i40e: Fix VF hang when reset is triggered on another VF
+ (jsc#PED-372).
+- i40e: Fix ethtool rx-flow-hash setting for X722 (jsc#PED-372).
+- net/mlx5e: Cleanup MACsec uninitialization routine
+ (jsc#PED-1549).
+- sfc: include vport_id in filter spec hash and equal()
+ (jsc#PED-1565).
+- bnxt_en: fix memory leak in bnxt_nvm_test() (jsc#PED-1495).
+- sfc: Change VF mac via PF as first preference if available
+ (jsc#PED-1565).
+- i40e: Fix DMA mappings leak (jsc#PED-372).
+- net/mlx5: Make ASO poll CQ usable in atomic context
+ (jsc#PED-1549).
+- scsi: qedf: Populate sysfs attributes for vport (jsc#PED-1524).
+- RDMA/rxe: Remove error/warning messages from packet receiver
+ path (jsc#PED-1111).
+- RDMA/rxe: Remove redundant num_sge fields (jsc#PED-1111).
+- RDMA/mlx5: Enable ATS support for MRs and umems (jsc#PED-1552).
+- RDMA/mlx5: Add support for dmabuf to devx umem (jsc#PED-1552).
+- RDMA/core: Add UVERBS_ATTR_RAW_FD (jsc#PED-1552).
+- net/mlx5: Add IFC bits for mkey ATS (jsc#PED-1549).
+- RDMA/rxe: Set pd early in mr alloc routines (jsc#PED-1111).
+- RDMA/rxe: Add send_common_ack() helper (jsc#PED-1111).
+- RDMA/rxe: Use members of generic struct in rxe_mr
+ (jsc#PED-1111).
+- IB: Set IOVA/LENGTH on IB_MR in core/uverbs layers
+ (jsc#PED-1547).
+- RDMA/mlx5: Remove duplicate assignment in umr_rereg_pas()
+ (jsc#PED-1552).
+- RDMA/rxe: convert pr_warn to pr_debug (jsc#PED-1111).
+- RDMA/rxe: use %u to print u32 variables (jsc#PED-1111).
+- IB/mlx5: Support querying eswitch functions from DEVX
+ (jsc#PED-1552).
+- RDMA/siw: Add missing Kconfig selections (jsc#PED-1503).
+- RDMA/rxe: Delete error messages triggered by incoming Read
+ requests (jsc#PED-1111).
+- RDMA/rxe: Remove the unused variable obj (jsc#PED-1111).
+- RDMA/rxe: Remove an unused member from struct rxe_mr
+ (jsc#PED-1111).
+- IB/mlx5: Remove duplicate header inclusion related to ODP
+ (jsc#PED-1552).
+- IB/mlx5: Call io_stop_wc() after writing to WC MMIO
+ (jsc#PED-1552).
+- net/mlx5: E-Switch, Return EBUSY if can't get mode lock
+ (jsc#PED-1549).
+- net/mlx5: E-switch, Don't update group if qos is not enabled
+ (jsc#PED-1549).
+- net/mlx5: E-Switch, Allow offloading fwd dest flow table with
+ vport (jsc#PED-1549).
+- net/mlx5: Set default grace period based on function type
+ (jsc#PED-1549).
+- net/mlx5: Start health poll at earlier stage of driver load
+ (jsc#PED-1549).
+- net/mlx5e: Expose rx_oversize_pkts_buffer counter
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Optimize for unaligned mode with 3072-byte
+ frames (jsc#PED-1549).
+- net/mlx5e: xsk: Print a warning in slow configurations
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use KLM to protect frame overrun in unaligned
+ mode (jsc#PED-1549).
+- net/mlx5e: Improve MTT/KSM alignment (jsc#PED-1549).
+- net/mlx5e: xsk: Use umr_mode to calculate striding RQ parameters
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Improve need_wakeup logic (jsc#PED-1549).
+- net/mlx5e: xsk: Include XSK skb_from_cqe callbacks in
+ INDIRECT_CALL (jsc#PED-1549).
+- net/mlx5e: xsk: Set napi_id to support busy polling
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Flush RQ on XSK activation to save memory
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use queue indices starting from 0 for XSK queues
+ (jsc#PED-1549).
+- net/mlx5e: Introduce the mlx5e_flush_rq function (jsc#PED-1549).
+- net/mlx5e: xsk: Support XDP metadata on XSK RQs (jsc#PED-1549).
+- net/mlx5e: Optimize RQ page deallocation (jsc#PED-1549).
+- net/mlx5e: Call mlx5e_page_release_dynamic directly where
+ possible (jsc#PED-1549).
+- net/mlx5e: Use non-XSK page allocator in SHAMPO (jsc#PED-1549).
+- net/mlx5e: xsk: Use xsk_buff_alloc_batch on striding RQ
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use xsk_buff_alloc_batch on legacy RQ
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Split out WQE allocation for legacy XSK RQ
+ (jsc#PED-1549).
+- net/mlx5e: Remove the outer loop when allocating legacy RQ WQEs
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use partial batches in legacy RQ with XSK
+ (jsc#PED-1549).
+- net/mlx5e: Use partial batches in legacy RQ (jsc#PED-1549).
+- net/mlx5e: Make the wqe_index_mask calculation more exact
+ (jsc#PED-1549).
+- net/mlx5e: Introduce wqe_index_mask for legacy RQ
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Drop the check for XSK state in mlx5e_xsk_wakeup
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Use mlx5e_trigger_napi_icosq for XSK wakeup
+ (jsc#PED-1549).
+- net/mlx5e: Clean up and fix error flows in mlx5e_alloc_rq
+ (jsc#PED-1549).
+- net/mlx5e: Move repeating clear_bit in
+ mlx5e_rx_reporter_err_rq_cqe_recover (jsc#PED-1549).
+- net/mlx5e: Split out channel (de)activation in rx_res
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Remove mlx5e_xsk_page_alloc_pool (jsc#PED-1549).
+- net/mlx5e: Convert struct mlx5e_alloc_unit to a union
+ (jsc#PED-1549).
+- net/mlx5e: Remove DMA address from mlx5e_alloc_unit
+ (jsc#PED-1549).
+- net/mlx5e: Rename mlx5e_dma_info to prepare for removal of
+ DMA address (jsc#PED-1549).
+- net/mlx5e: Optimize the page cache reducing its size 2x
+ (jsc#PED-1549).
+- net/mlx5e: Fix calculations for ICOSQ size (jsc#PED-1549).
+- net/mlx5e: xsk: Use KSM for unaligned XSK (jsc#PED-1549).
+- net/mlx5: Add MLX5_FLEXIBLE_INLEN to safely calculate cmd inlen
+ (jsc#PED-1549).
+- net/mlx5e: Keep a separate MKey for striding RQ (jsc#PED-1549).
+- net/mlx5e: xsk: Use XSK frame size as striding RQ page size
+ (jsc#PED-1549).
+- net/mlx5e: Use runtime page_shift for striding RQ
+ (jsc#PED-1549).
+- xsk: Expose min chunk size to drivers (jsc#PED-1549).
+- net/mlx5: Fix spelling mistake "syndrom" -> "syndrome"
+ (jsc#PED-1549).
+- bnx2: Fix spelling mistake "bufferred" -> "buffered"
+ (jsc#PED-1187).
+- ice: Add support for VLAN priority filters in switchdev
+ (jsc#PED-376).
+- ice: support features on new E810T variants (jsc#PED-376).
+- ice: Merge pin initialization of E810 and E810T adapters
+ (jsc#PED-376).
+- net/mlx5e: Use runtime values of striding RQ parameters in
+ datapath (jsc#PED-1549).
+- net/mlx5e: Make dma_info array dynamic in struct mlx5e_mpw_info
+ (jsc#PED-1549).
+- net/mlx5e: Improve the MTU change shortcut (jsc#PED-1549).
+- net/mlx5e: xsk: Fix SKB headroom calculation in validation
+ (jsc#PED-1549).
+- net/mlx5e: xsk: Remove dead code in validation (jsc#PED-1549).
+- net/mlx5e: Simplify stride size calculation for linear RQ
+ (jsc#PED-1549).
+- net/mlx5e: kTLS, Check ICOSQ WQE size in advance (jsc#PED-1549).
+- net/mlx5e: Use the aligned max TX MPWQE size (jsc#PED-1549).
+- net/mlx5e: Fix a typo in mlx5e_xdp_mpwqe_is_full (jsc#PED-1549).
+- net/mlx5e: Use mlx5e_stop_room_for_max_wqe where appropriate
+ (jsc#PED-1549).
+- net/mlx5e: Let mlx5e_get_sw_max_sq_mpw_wqebbs accept mdev
+ (jsc#PED-1549).
+- net/mlx5e: Make mlx5e_verify_rx_mpwqe_strides static
+ (jsc#PED-1549).
+- net/mlx5e: Remove unused fields from datapath structs
+ (jsc#PED-1549).
+- net/mlx5e: Convert mlx5e_get_max_sq_wqebbs to u8 (jsc#PED-1549).
+- net/mlx5: Add the log_min_mkey_entity_size capability
+ (jsc#PED-1549).
+- net/mlx5: Remove from FPGA IFC file not-needed definitions
+ (jsc#PED-1549).
+- net/mlx5: Remove unused structs (jsc#PED-1549).
+- net/mlx5: Remove unused functions (jsc#PED-1549).
+- net/mlx5: detect and enable bypass port select flow table
+ (jsc#PED-1549).
+- net/mlx5: Lag, enable hash mode by default for all NICs
+ (jsc#PED-1549).
+- net/mlx5: Lag, set active ports if support bypass port select
+ flow table (jsc#PED-1549).
+- RDMA/mlx5: Don't set tx affinity when lag is in hash mode
+ (jsc#PED-1549).
+- net/mlx5: add IFC bits for bypassing port select flow table
+ (jsc#PED-1549).
+- net/mlx5: Add support for NPPS with real time mode
+ (jsc#PED-1549).
+- net/mlx5: Expose NPPS related registers (jsc#PED-1549).
+- net/mlx5: Query ADV_VIRTUALIZATION capabilities (jsc#PED-1549).
+- net/mlx5: Introduce ifc bits for page tracker (jsc#PED-1549).
+- RDMA/mlx5: Move function mlx5_core_query_ib_ppcnt() to mlx5_ib
+ (jsc#PED-1549).
+- sfc: bare bones TC offload on EF100 (jsc#PED-1565).
+- sfc: interrogate MAE capabilities at probe time (jsc#PED-1565).
+- sfc: add a hashtable for offloaded TC rules (jsc#PED-1565).
+- sfc: optional logging of TC offload errors (jsc#PED-1565).
+- sfc: bind indirect blocks for TC offload on EF100
+ (jsc#PED-1565).
+- sfc: bind blocks for TC offload on EF100 (jsc#PED-1565).
+- ice: reorder PF/representor devlink port register/unregister
+ flows (jsc#PED-376).
+- macsec: don't free NULL metadata_dst (jsc#PED-1549).
+- net: macsec: remove the prepare flag from the MACsec offloading
+ context (jsc#PED-1549).
+- net/mlx5e: macsec: remove checks on the prepare phase
+ (jsc#PED-1549).
+- net: atlantic: macsec: remove checks on the prepare phase
+ (jsc#PED-1549).
+- net: phy: mscc: macsec: remove checks on the prepare phase
+ (jsc#PED-1549).
+- net: macsec: remove the prepare phase when offloading
+ (jsc#PED-1549).
+- net: atlantic: macsec: make the prepare phase a noop
+ (jsc#PED-1549).
+- net: phy: mscc: macsec: make the prepare phase a noop
+ (jsc#PED-1549).
+- net/mlx5e: Support MACsec offload replay window (jsc#PED-1549).
+- net/mlx5e: Support MACsec offload extended packet number (EPN)
+ (jsc#PED-1549).
+- net/mlx5e: Move MACsec initialization from profile init stage
+ to profile enable stage (jsc#PED-1549).
+- net/mlx5e: Create advanced steering operation (ASO) object
+ for MACsec (jsc#PED-1549).
+- net/mlx5e: Expose memory key creation (mkey) function
+ (jsc#PED-1549).
+- net/mlx5: Add ifc bits for MACsec extended packet number (EPN)
+ and replay protection (jsc#PED-1549).
+- net/mlx5e: Fix MACsec initial packet number (jsc#PED-1549).
+- net/mlx5e: Fix MACsec initialization error path (jsc#PED-1549).
+- net/mlx5: Fix fields name prefix in MACsec (jsc#PED-1549).
+- net: macsec: Expose extended packet number (EPN) properties
+ to macsec offload (jsc#PED-1549).
+- net/mlx5e: Support 256 bit keys with kTLS device offload
+ (jsc#PED-1549).
+- bnxt_en: replace reset with config timestamps (jsc#PED-1495).
+- ice: Add low latency Tx timestamp read (jsc#PED-376).
+- net/mlx5e: Ensure macsec_rule is always initiailized in
+ macsec_fs_{r,t}x_add_rule() (jsc#PED-1549).
+- ice: Add L2TPv3 hardware offload support (jsc#PED-376).
+- flow_offload: Introduce flow_match_l2tpv3 (jsc#PED-376).
+- flow_dissector: Add L2TPv3 dissectors (jsc#PED-376).
+- net/mlx5e: Switch to kmemdup() when allocate dev_addr
+ (jsc#PED-1549).
+- net/mlx5e: add missing error code in error path (jsc#PED-1549).
+- igc: Remove IGC_MDIC_INT_EN definition (jsc#PED-375).
+- drivers/net/ethernet/e1000e: check return value of e1e_rphy()
+ (jsc#PED-837).
+- sfc: introduce shutdown entry point in efx pci driver
+ (jsc#PED-1565).
+- iavf: Fix race between iavf_close and iavf_reset_task
+ (jsc#PED-835).
+- i40e: add description and modify interrupts configuration
+ procedure (jsc#PED-372).
+- i40e: Add basic support for I710 devices (jsc#PED-372).
+- ice: Simplify memory allocation in ice_sched_init_port()
+ (jsc#PED-376).
+- ice: switch: Simplify memory allocation (jsc#PED-376).
+- ice: add helper function to check FW API version (jsc#PED-376).
+- ice: Check if reset in progress while waiting for offsets
+ (jsc#PED-376).
+- net/mlx5e: Add support to configure more than one macsec
+ offload device (jsc#PED-1549).
+- net/mlx5e: Add MACsec stats support for Rx/Tx flows
+ (jsc#PED-1549).
+- net/mlx5e: Add MACsec offload SecY support (jsc#PED-1549).
+- net/mlx5e: Implement MACsec Rx data path using MACsec
+ skb_metadata_dst (jsc#PED-1549).
+- net/mlx5e: Add MACsec RX steering rules (jsc#PED-1549).
+- net/mlx5: Add MACsec Rx tables support to fs_core
+ (jsc#PED-1549).
+- net/mlx5e: Add MACsec offload Rx command support (jsc#PED-1549).
+- net/mlx5e: Implement MACsec Tx data path using MACsec
+ skb_metadata_dst (jsc#PED-1549).
+- net/mlx5e: Add MACsec TX steering rules (jsc#PED-1549).
+- net/mlx5: Add MACsec Tx tables support to fs_core
+ (jsc#PED-1549).
+- net/mlx5: Introduce MACsec Connect-X offload hardware bits
+ and structures (jsc#PED-1549).
+- net/mlx5: Generalize Flow Context for new crypto fields
+ (jsc#PED-1549).
+- net/mlx5: Removed esp_id from struct mlx5_flow_act
+ (jsc#PED-1549).
+- net/macsec: Move some code for sharing with various drivers
+ that implements offload (jsc#PED-1549).
+- net/macsec: Add MACsec skb_metadata_dst Rx Data path support
+ (jsc#PED-1549).
+- net/macsec: Add MACsec skb_metadata_dst Tx Data path support
+ (jsc#PED-1549).
+- sfc: support PTP over Ethernet (jsc#PED-1565).
+- sfc: support PTP over IPv6/UDP (jsc#PED-1565).
+- sfc: allow more flexible way of adding filters for PTP
+ (jsc#PED-1565).
+- net/mlx5e: Do not use err uninitialized in
+ mlx5e_rep_add_meta_tunnel_rule() (jsc#PED-1549).
+- net/mlx4: Fix error check for dma_map_sg (jsc#PED-1548).
+- mlx4: Do type_clear() for devlink ports when type_set() was
+ called previously (jsc#PED-1548).
+- ice: Print human-friendly PHY types (jsc#PED-376).
+- ice: Implement devlink port split operations (jsc#PED-376).
+- ice: Add additional flags to ice_nvm_write_activate
+ (jsc#PED-376).
+- ice: Add port option admin queue commands (jsc#PED-376).
+- ice: Add support for ip TTL & ToS offload (jsc#PED-376).
+- net/mlx5: TC, Add support for SF tunnel offload (jsc#PED-1549).
+- net/mlx5: E-Switch, Move send to vport meta rule creation
+ (jsc#PED-1549).
+- net/mlx5: E-Switch, Split creating fdb tables into smaller
+ chunks (jsc#PED-1549).
+- net/mlx5: E-Switch, Add default drop rule for unmatched packets
+ (jsc#PED-1549).
+- net/mlx5e: Completely eliminate priv from fs.h (jsc#PED-1549).
+- net/mlx5e: Make all ttc functions of en_fs get fs struct as
+ argument (jsc#PED-1549).
+- net/mlx5e: Make flow steering arfs independent of priv
+ (jsc#PED-1549).
+- net/mlx5e: Introduce flow steering debug macros (jsc#PED-1549).
+- net/mlx5e: Separate ethtool_steering from fs.h and make private
+ (jsc#PED-1549).
+- net/mlx5e: Directly get flow_steering struct as input when
+ init/cleanup ethtool steering (jsc#PED-1549).
+- net/mlx5e: Convert ethtool_steering member of flow_steering
+ struct to pointer (jsc#PED-1549).
+- net/mlx5e: Drop priv argument of ptp function in en_fs
+ (jsc#PED-1549).
+- net/mlx5e: Decouple fs_tcp from en.h (jsc#PED-1549).
+- net/mlx5e: Decouple fs_tt_redirect from en.h (jsc#PED-1549).
+- net/mlx5e: Introduce flow steering API (jsc#PED-1549).
+- ixgbe: Manual AN-37 for troublesome link partners for X550 SFI
+ (jsc#PED-373).
+- ixgbe: Don't call kmap() on page allocated with GFP_ATOMIC
+ (jsc#PED-373).
+- ice: remove non-inclusive language (jsc#PED-376).
+- ice: Remove ucast_shared (jsc#PED-376).
+- ice: Allow 100M speeds for some devices (jsc#PED-376).
+- ice: Implement FCS/CRC and VLAN stripping co-existence policy
+ (jsc#PED-376).
+- ice: Implement control of FCS/CRC stripping (jsc#PED-376).
+- igc: add xdp frags support to ndo_xdp_xmit (jsc#PED-375).
+- net: macsec: Expose MACSEC_SALT_LEN definition to user space
+ (jsc#PED-1549).
+- ice: introduce ice_ptp_reset_cached_phctime function
+ (jsc#PED-376).
+- ice: re-arrange some static functions in ice_ptp.c
+ (jsc#PED-376).
+- ice: track and warn when PHC update is late (jsc#PED-376).
+- ice: track Tx timestamp stats similar to other Intel drivers
+ (jsc#PED-376).
+- ice: initialize cached_phctime when creating Rx rings
+ (jsc#PED-376).
+- ice: set tx_tstamps when creating new Tx rings via ethtool
+ (jsc#PED-376).
+- vdpa/mlx5: Fix MQ to support non power of two num queues
+ (jsc#PED-1549).
+- ice: xsk: drop power of 2 ring size restriction for AF_XDP
+ (jsc#PED-376).
+- ice: xsk: change batched Tx descriptor cleaning (jsc#PED-376).
+- sfc: correct filter_table_remove method for EF10 PFs
+ (jsc#PED-1565).
+- bnxt: prevent skb UAF after handing over to PTP worker
+ (jsc#PED-1495).
+- ice: Fix interface being down after reset with
+ link-down-on-close flag on (jsc#PED-376).
+- ice: config netdev tc before setting queues number
+ (jsc#PED-376).
+- ice: Fix ice_xdp_xmit() when XDP TX queue number is not
+ sufficient (jsc#PED-376).
+- i40e: Fix set max_tx_rate when it is lower than 1 Mbps
+ (jsc#PED-372).
+- i40e: Fix VF set max MTU size (jsc#PED-372).
+- iavf: Fix set max MTU size with port VLAN and jumbo frames
+ (jsc#PED-835).
+- iavf: Fix bad page state (jsc#PED-835).
+- sfc/siena: fix null pointer dereference in efx_hard_start_xmit
+ (jsc#PED-1565).
+- sfc/siena: fix TX channel offset when using legacy interrupts
+ (jsc#PED-1565).
+- bnxt_en: fix flags to check for supported fw version
+ (jsc#PED-1495).
+- sfc: fix null pointer dereference in efx_hard_start_xmit
+ (jsc#PED-1565).
+- sfc: fix TX channel offset when using legacy interrupts
+ (jsc#PED-1565).
+- iavf: Fix cached head and tail value for iavf_get_tx_pending
+ (jsc#PED-835).
+- iavf: Fix change VF's mac address (jsc#PED-835).
+- ice: Fix crash by keep old cfg when update TCs more than queues
+ (jsc#PED-376).
+- ice: Don't double unplug aux on peer initiated reset
+ (jsc#PED-376).
+- RDMA/irdma: Use s/g array in post send only when its valid
+ (jsc#PED-377).
+- RDMA/mlx5: Fix UMR cleanup on error flow of driver init
+ (jsc#PED-1552).
+- RDMA/mlx5: Set local port to one when accessing counters
+ (jsc#PED-1552).
+- RDMA/mlx5: Rely on RoCE fw cap instead of devlink when setting
+ profile (jsc#PED-1549).
+- RDMA/irdma: Fix drain SQ hang with no completion (jsc#PED-377).
+- iavf: Detach device during reset task (jsc#PED-835).
+- i40e: Fix kernel crash during module removal (jsc#PED-372).
+- i40e: Fix ADQ rate limiting for PF (jsc#PED-372).
+- ice: use bitmap_free instead of devm_kfree (jsc#PED-376).
+- ice: Fix DMA mappings leak (jsc#PED-376).
+- Revert "net: macsec: update SCI upon MAC address
+ change." (jsc#PED-1549).
+- macsec: Fix traffic counters/statistics (jsc#PED-1549).
+- RDMA/rxe: Split qp state for requester and completer
+ (jsc#PED-1111).
+- RDMA/rxe: Generate error completion for error requester QP state
+ (jsc#PED-1111).
+- RDMA/rxe: Update wqe_index for each wqe error completion
+ (jsc#PED-1111).
+- Revert "RDMA/rxe: Create duplicate mapping tables for FMRs"
+ (jsc#PED-1111).
+- RDMA/rxe: Replace __rxe_do_task by rxe_run_task (jsc#PED-1111).
+- RDMA/rxe: Limit the number of calls to each tasklet
+ (jsc#PED-1111).
+- RDMA/rxe: Make the tasklet exits the same (jsc#PED-1111).
+- RDMA/rxe: Add rxe_is_fenced() subroutine (jsc#PED-1111).
+- RDMA/rxe: Fix spelling mistake in error print (jsc#PED-1111).
+- RDMA/rxe: Remove unused qp parameter (jsc#PED-1111).
+- RDMA/rxe: Remove unused mask parameter (jsc#PED-1111).
+- RDMA/rxe: Rename rxe_atomic_reply to atomic_reply
+ (jsc#PED-1111).
+- RDMA/rxe: Add common rxe_prepare_res() (jsc#PED-1111).
+- RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup
+ (jsc#PED-1111).
+- RDMA/rxe: Remove unnecessary include statement (jsc#PED-1111).
+- RDMA/rxe: Replace include statement (jsc#PED-1111).
+- RDMA/rxe: Convert pr_warn/err to pr_debug in pyverbs
+ (jsc#PED-1111).
+- RDMA/rxe: Merge normal and retry atomic flows (jsc#PED-1111).
+- RDMA/rxe: Move atomic original value to res (jsc#PED-1111).
+- RDMA/rxe: Move atomic responder res to atomic_reply
+ (jsc#PED-1111).
+- RDMA/rxe: Add a responder state for atomic reply (jsc#PED-1111).
+- RDMA/rxe: Move code to rxe_prepare_atomic_res() (jsc#PED-1111).
+- RDMA/rxe: Convert read side locking to rcu (jsc#PED-1111).
+- RDMA/rxe: Stop lookup of partially built objects (jsc#PED-1111).
+- RDMA/rxe: Remove useless pkt parameters (jsc#PED-1111).
+- RDMA/rxe: fix xa_alloc_cycle() error return value check again
+ (jsc#PED-1111).
+- net/mlx5e: Fix wrong use of skb_tcp_all_headers() with
+ encapsulation (jsc#PED-1549).
+- net: phy: mxl-gpy: print firmware in human readable form
+ (jsc#PED-829).
+- net: phy: mxl-gpy: rename the FW type field name (jsc#PED-829).
+- net: phy: mxl-gpy: cache PHY firmware version (jsc#PED-829).
+- net: phy: mxl-gpy: fix version reporting (jsc#PED-829).
+- net: phy: add support to get Master-Slave configuration
+ (jsc#PED-829).
+- net/mlx5e: Fix matchall police parameters validation
+ (jsc#PED-1549).
+- net/sched: act_police: allow 'continue' action offload
+ (jsc#PED-1549).
+- macsec: fix UAF bug for real_dev (jsc#PED-1549).
+- RDMA/rxe: Fix an error handling path in rxe_get_mcg()
+ (jsc#PED-1111).
+- RDMA/rxe: Enforce IBA C11-17 (jsc#PED-1111).
+- RDMA/rxe: Move mw cleanup code to rxe_mw_cleanup()
+ (jsc#PED-1111).
+- RDMA/rxe: Move mr cleanup code to rxe_mr_cleanup()
+ (jsc#PED-1111).
+- RDMA/rxe: Move qp cleanup code to rxe_qp_do_cleanup()
+ (jsc#PED-1111).
+- RDMA/rxe: Check rxe_get() return value (jsc#PED-1111).
+- RDMA/rxe: Add rxe_srq_cleanup() (jsc#PED-1111).
+- RDMA/rxe: Remove IB_SRQ_INIT_MASK (jsc#PED-1111).
+- RDMA/rxe: Skip adjusting remote addr for write in retry
+ operation (jsc#PED-1111).
+- RDMA/rxe: Optimize the mr pool struct (jsc#PED-1111).
+- RDMA/rxe: Replace paylen by payload (jsc#PED-1111).
+- RDMA/rxe: Remove useless parameters for update_state()
+ (jsc#PED-1111).
+- RDMA/rxe: Remove reliable datagram support (jsc#PED-1111).
+- RDMA/rxe: Remove support for SMI QPs from rdma_rxe
+ (jsc#PED-1111).
+- RDMA/rxe: Remove mc_grp_pool from struct rxe_dev (jsc#PED-1111).
+- RDMA/rxe: Remove type 2A memory window capability
+ (jsc#PED-1111).
+- net/sched: act_police: Add extack messages for offload failure
+ (jsc#PED-1549).
+- net/sched: act_api: Add extack to offload_act_setup() callback
+ (jsc#PED-1549).
+- net/sched: flower: Take verbose flag into account when logging
+ error messages (jsc#PED-1549).
+- net/sched: matchall: Take verbose flag into account when
+ logging error messages (jsc#PED-1549).
+- lib: add generic polynomial calculation (jsc#PED-829).
+- RDMA/rxe: Change mcg_lock to a _bh lock (jsc#PED-1111).
+- RDMA/rxe: Do not call dev_mc_add/del() under a spinlock
+ (jsc#PED-1111).
+- RDMA/rxe: Recheck the MR in when generating a READ reply
+ (jsc#PED-1111).
+- RDMA/rxe: Fix "Replace mr by rkey in responder resources"
+ (jsc#PED-1111).
+- RDMA/rxe: Use standard names for ref counting (jsc#PED-1111).
+- RDMA/rxe: Replace red-black trees by xarrays (jsc#PED-1111).
+- RDMA/rxe: Shorten pool names in rxe_pool.c (jsc#PED-1111).
+- RDMA/rxe: Move max_elem into rxe_type_info (jsc#PED-1111).
+- RDMA/rxe: Replace obj by elem in declaration (jsc#PED-1111).
+- RDMA/rxe: Delete _locked() APIs for pool objects (jsc#PED-1111).
+- RDMA/rxe: Reverse the sense of RXE_POOL_NO_ALLOC (jsc#PED-1111).
+- RDMA/rxe: Replace mr by rkey in responder resources
+ (jsc#PED-1111).
+- RDMA/rxe: Remove useless argument for update_state()
+ (jsc#PED-1111).
+- RDMA/rxe: Cleanup rxe_mcast.c (jsc#PED-1111).
+- RDMA/rxe: Collect cleanup mca code in a subroutine
+ (jsc#PED-1111).
+- RDMA/rxe: Collect mca init code in a subroutine (jsc#PED-1111).
+- RDMA/rxe: Warn if mcast memory is not freed (jsc#PED-1111).
+- RDMA/rxe: Remove mcg from rxe pools (jsc#PED-1111).
+- RDMA/rxe: Remove key'ed object support (jsc#PED-1111).
+- RDMA/rxe: Replace pool key by rxe->mcg_tree (jsc#PED-1111).
+- RDMA/rxe: Replace int num_qp by atomic_t qp_num (jsc#PED-1111).
+- RDMA/rxe: Replace grp by mcg, mce by mca (jsc#PED-1111).
+- RDMA/rxe: Use kzmalloc/kfree for mca (jsc#PED-1111).
+- RDMA/rxe: Move mcg_lock to rxe (jsc#PED-1111).
+- RDMA/rxe: Revert changes from irqsave to bh locks
+ (jsc#PED-1111).
+- RDMA/rxe: Remove rxe_drop_all_macst_groups (jsc#PED-1111).
+- RDMA/rxe: Enforce IBA o10-2.2.3 (jsc#PED-1111).
+- RDMA/rxe: Rename rxe_mc_grp and rxe_mc_elem (jsc#PED-1111).
+- RDMA/rxe: Move rxe_mcast_attach/detach to rxe_mcast.c
+ (jsc#PED-1111).
+- RDMA/rxe: Move rxe_mcast_add/delete to rxe_mcast.c
+ (jsc#PED-1111).
+- RDMA/rxe: Delete useless module.h include (jsc#PED-1111).
+- net: phy: exported the genphy_read_master_slave function
+ (jsc#PED-829).
+- flow_offload: improve extack msg for user when adding invalid
+ filter (jsc#PED-1549).
+- net: sched: avoid newline at end of message in
+ NL_SET_ERR_MSG_MOD (jsc#PED-1549).
+- net: sched: limit TC_ACT_REPEAT loops (jsc#PED-1549).
+- asm-generic: Add missing brackets for io_stop_wc macro
+ (jsc#PED-1552).
+- hash.h: remove unused define directive (jsc#PED-1111).
+- RDMA/rxe: Use the standard method to produce udp source port
+ (jsc#PED-1111).
+- RDMA/rxe: Delete deprecated module parameters interface
+ (jsc#PED-1111).
+- RDMA/rxe: Fix indentations and operators sytle (jsc#PED-1111).
+- RDMA/rxe: Remove the unused xmit_errors member (jsc#PED-1111).
+- RDMA/rxe: Remove redundant err variable (jsc#PED-1111).
+- RDMA/ocrdma: Remove unneeded variable (jsc#PED-1695).
+- RDMA/ocrdma: Simplify code in 'ocrdma_search_mmap()'
+ (jsc#PED-1695).
+- RDMA/ocrdma: Use bitmap_zalloc() when applicable (jsc#PED-1695).
+- RDMA/rxe: Remove some #defines from rxe_pool.h (jsc#PED-1111).
+- RDMA/rxe: Remove #include "rxe_loc.h" from rxe_pool.c
+ (jsc#PED-1111).
+- RDMA/rxe: Save object pointer in pool element (jsc#PED-1111).
+- RDMA/rxe: Copy setup parameters into rxe_pool (jsc#PED-1111).
+- RDMA/rxe: Replace irqsave locks with bh locks (jsc#PED-1111).
+- RDMA/ocrdma: Use helper function to set GUIDs (jsc#PED-1695).
+- flow_offload: fix suspicious RCU usage when offloading tc action
+ (jsc#PED-1549).
+- asm-generic: introduce io_stop_wc() and add implementation
+ for ARM64 (jsc#PED-1552).
+- net: phy: Remove unused including <linux/version.h>
+ (jsc#PED-829).
+- commit fac2fda
+
+- x86/insn: Add AMX instructions to the x86 instruction decoder
+ (bnc#1205282).
+- commit 4ba8580
+
+- usb: gadget: uvc: decrease the interrupt load to a quarter
+ (git-fixes).
+- commit d4215d5
+
+- usb: gadget: uvc: add scatter gather support (git-fixes).
+- commit 8256025
+
+- usb: gadget: uvc: make uvc_num_requests depend on gadget speed
+ (git-fixes).
+- commit 12e1352
+
+- ipv6: ping: fix wrong checksum for large frames (bsc#1203183).
+- commit f29a164
+
+- io_uring: disable polling signalfd pollfree files (CVE-2022-3176
+ bsc#1203391).
+- commit ff11e05
+
+- blacklist.conf: kABI
+- commit 52ff77d
+
+- usb: typec: ucsi: acpi: Implement resume callback (git-fixes).
+- commit 0b832f1
+
+- blacklist.conf: prerequisites would break kABI
+- commit 3f3b1f5
+
+- virtio_blk: add error handling support for add_disk()
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/Revert-virtio-blk-Add-validation-for-block-size-in-c.patch.
+- commit 5f63f70
+
+- block: inherit request start time from bio for BLK_CGROUP
+ (jsc#PED-1183).
+- block: move blk-throtl fast path inline (jsc#PED-1183).
+- commit 6137b58
+
+- io_uring: optimise io_prep_linked_timeout() (bnc#1205205).
+- io_uring: cancel not-armed linked touts separately
+ (bnc#1205205).
+- io_uring: simplify io_prep_linked_timeout (bnc#1205205).
+- io_uring: kill REQ_F_LTIMEOUT_ACTIVE (bnc#1205205).
+ - Update patches.suse/io_uring-Fix-undefined-behaviour-in-io_issue_sqe.patch
+ - Update patches.suse/io_uring-fix-race-between-timeout-flush-and-removal.patch
+- io_uring: deduplicate cancellation code (bnc#1205205).
+- io_uring: kill not necessary resubmit switch (bnc#1205205).
+- io_uring: optimise initial ltimeout refcounting (bnc#1205205).
+- io_uring: don't inflight-track linked timeouts (bnc#1205205).
+ - Update patches.suse/io_uring-Fix-undefined-behaviour-in-io_issue_sqe.patch
+ - Update patches.suse/io_uring-fix-race-between-timeout-flush-and-removal.patch
+- io_uring: optimise iowq refcounting (bnc#1205205).
+- io_uring: remove files pointer in cancellation functions
+ (bnc#1205205).
+- io_uring: extract io_uring_files_cancel() in
+ io_uring_task_cancel() (bnc#1205205).
+- commit 8175601
+
+- io_uring: optimise hot path of ltimeout prep (bnc#1205205).
+- io_uring: skip request refcounting (bnc#1205205).
+- io_uring: remove submission references (bnc#1205205).
+- io_uring: remove req_ref_sub_and_test() (bnc#1205205).
+- io_uring: move req_ref_get() and friends (bnc#1205205).
+- commit a6d17c7
+
+- usb: typec: ucsi: Check the connection on resume (git-fixes).
+- commit 94056b2
+
+- blacklist.conf: this patch would need an inordinary number of
+ prerequisites for a race in a corner case
+- commit 4987ef8
+
+- blacklist.conf: kABI
+- commit 29e4b4e
+
+- blk-mq: Add blk_mq_alloc_map_and_rqs() (jsc#PED-1183).
+- blk-mq: Add blk_mq_tag_update_sched_shared_sbitmap()
+ (jsc#PED-1183).
+- blk-mq: Don't clear driver tags own mapping (jsc#PED-1183).
+- blk-mq: Pass driver tags to blk_mq_clear_rq_mapping()
+ (jsc#PED-1183).
+- blk-mq-sched: Rename blk_mq_sched_free_{requests -> rqs}()
+ (jsc#PED-1183).
+- blk-mq-sched: Rename blk_mq_sched_alloc_{tags -> map_and_rqs}()
+ (jsc#PED-1183).
+- blk-mq: Invert check in blk_mq_update_nr_requests()
+ (jsc#PED-1183).
+- blk-mq: Relocate shared sbitmap resize in
+ blk_mq_update_nr_requests() (jsc#PED-1183).
+- commit 8bfc591
+
+- block: Rename BLKDEV_MAX_RQ -> BLKDEV_DEFAULT_RQ (jsc#PED-1183).
+- Refresh patches.suse/block-Provide-blk_mq_sched_get_icq.patch.
+- commit 52ac9ca
+
+- blk-mq: Change rqs check in blk_mq_free_rqs() (jsc#PED-1183).
+- commit 386aed8
+
+- block: print the current process in handle_bad_sector
+ (jsc#PED-1183).
+- commit 3c96a17
+
+- Update patch metadata for media fix (CVE-2022-3903 bsc#1205220)
+- commit 899a453
+
+- block/mq-deadline: Stop using per-CPU counters (jsc#PED-1183).
+- block/mq-deadline: Add an invariant check (jsc#PED-1183).
+- commit 8b4880d
+
+- block: move some macros to blkdev.h (jsc#PED-1183).
+- commit 0c6d0ca
+
+- block: move integrity handling out of <linux/blkdev.h>
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/block-don-t-merge-across-cgroup-boundaries-if-blkcg-.patch.
+- Refresh
+ patches.suse/mm-don-t-include-linux-memremap.h-in-linux-mm.h.patch.
+- commit 4916dfc
+
+- x86/tdx: Panic on bad configs that #VE on "private" memory
+ access (jsc#PED-342).
+- commit a423135
+
+- capabilities: fix undefined behavior in bit shift for
+ CAP_TO_MASK (git-fixes).
+- capabilities: fix potential memleak on error path from
+ vfs_getxattr_alloc() (git-fixes).
+- commit 9091aa0
+
+- x86/tdx: Prepare for using "INFO" call for a second purpose
+ (jsc#PED-342).
+- commit 4b44375
+
+- x86/tdx: Handle load_unaligned_zeropad() page-cross to a shared
+ page (jsc#PED-342).
+- commit 19687ce
+
+- x86/tdx: Clarify RIP adjustments in #VE handler (jsc#PED-342).
+- commit 0259aa5
+
+- block: move a few merge helpers out of <linux/blkdev.h>
+ (jsc#PED-1183).
+- block: drop unused includes in <linux/genhd.h> (jsc#PED-1183).
+- block: drop unused includes in <linux/blkdev.h> (jsc#PED-1183).
+- block: move elevator.h to block/ (jsc#PED-1183).
+- block: remove the struct blk_queue_ctx forward declaration
+ (jsc#PED-1183).
+- block: remove the cmd_size field from struct request_queue
+ (jsc#PED-1183).
+- block: remove the unused blk_queue_state enum (jsc#PED-1183).
+- block: remove the unused rq_end_sector macro (jsc#PED-1183).
+- sched: move the <linux/blkdev.h> include out of
+ kernel/sched/sched.h (jsc#PED-1183).
+- kernel: remove spurious blkdev.h includes (jsc#PED-1183).
+- arch: remove spurious blkdev.h includes (jsc#PED-1183).
+- mm: remove spurious blkdev.h includes (jsc#PED-1183).
+- mm: don't include <linux/blkdev.h> in <linux/backing-dev.h>
+ (jsc#PED-1183).
+- mm: don't include <linux/blk-cgroup.h> in <linux/backing-dev.h>
+ (jsc#PED-1183).
+- mm: don't include <linux/blk-cgroup.h> in <linux/writeback.h>
+ (jsc#PED-1183).
+- commit f4c4b1a
+
+- dm ima: prefix ima event name related to device mapper with dm_
+ (jsc#PED-1183).
+- dm ima: add version info to dm related events in ima log
+ (jsc#PED-1183).
+- dm ima: prefix dm table hashes in ima log with hash algorithm
+ (jsc#PED-1183).
+- dm ima: measure data on device rename (jsc#PED-1183).
+- dm ima: measure data on table clear (jsc#PED-1183).
+- dm ima: measure data on device remove (jsc#PED-1183).
+- dm ima: measure data on device resume (jsc#PED-1183).
+- dm ima: measure data on table load (jsc#PED-1183).
+- commit e6250e4
+
+- block: warn when putting the final reference on a registered
+ (jsc#PED-1183).
+- brd: reduce the brd_devices_mutex scope (jsc#PED-1183).
+- kyber: avoid q->disk dereferences in trace points
+ (jsc#PED-1183).
+- block: keep q_usage_counter in atomic mode after del_gendisk
+ (jsc#PED-1183).
+- block: drain file system I/O on del_gendisk (jsc#PED-1183).
+- block: split bio_queue_enter from blk_queue_enter
+ (jsc#PED-1183).
+- block: factor out a blk_try_enter_queue helper (jsc#PED-1183).
+- block: call submit_bio_checks under q_usage_counter
+ (jsc#PED-1183).
+- commit 3c9365f
+
+- block: genhd: fix double kfree() in __alloc_disk_node()
+ (jsc#PED-1183).
+- scsi: bsg: Fix device unregistration (jsc#PED-1183).
+- block: hold ->invalidate_lock in blkdev_fallocate
+ (jsc#PED-1183).
+- commit 502e581
+
+- block: move fs/block_dev.c to block/bdev.c (jsc#PED-1183).
+- block: split out operations on block special files
+ (jsc#PED-1183).
+- bio: fix kerneldoc documentation for bio_alloc_kiocb()
+ (jsc#PED-1183).
+- cdrom: update uniform CD-ROM maintainership in MAINTAINERS file
+ (jsc#PED-1183).
+- commit 18be238
+
+- sg: pass the device name to blk_trace_setup (jsc#PED-1183).
+- block, bfq: cleanup the repeated declaration (jsc#PED-1183).
+- block: mark blkdev_fsync static (jsc#PED-1183).
+- block: refine the disk_live check in del_gendisk (jsc#PED-1183).
+- mmc: sdhci-tegra: Enable MMC_CAP2_ALT_GPT_TEGRA (jsc#PED-1183).
+- mmc: block: Support alternative_gpt_sector() operation
+ (jsc#PED-1183).
+- partitions/efi: Support non-standard GPT location
+ (jsc#PED-1183).
+- block: Add alternative_gpt_sector() operation (jsc#PED-1183).
+- commit 5f12e3d
+
+- x86/tdx: Fix early #VE handling (jsc#PED-342).
+- commit bdcffa5
+
+- scsi: csiostor: Convert sysfs snprintf() to sysfs_emit()
+ (jsc#PED-1504).
+- scsi: csio: Stop using the SCSI pointer (jsc#PED-1504).
+- commit 67b0269
+
+- crypto: hisilicon/qm: Set the VF QM state register
+ (jsc#PED-1109).
+- hisi_acc_vfio_pci: Add helper to retrieve the struct pci_driver
+ (jsc#PED-1109).
+- hisi_acc_qm: Move VF PCI device IDs to common header
+ (jsc#PED-1109).
+- crypto: hisilicon/qm: Move few definitions to common header
+ (jsc#PED-1109).
+- crypto: hisilicon/qm: Move the QM header to include/linux
+ (jsc#PED-1109).
+- crypto: hisilicon/qm - fix deadlock for remove driver
+ (jsc#PED-1109).
+- commit a420954
+
+- x86/tdx: Fix RETs in TDX asm (jsc#PED-342).
+- commit fce07e1
+
+- bio: improve kerneldoc documentation for bio_alloc_kiocb()
+ (jsc#PED-1183).
+- block: provide bio_clear_hipri() helper (jsc#PED-1183).
+- block: use the percpu bio cache in __blkdev_direct_IO
+ (jsc#PED-1183).
+- io_uring: enable use of bio alloc cache (jsc#PED-1183).
+- block: clear BIO_PERCPU_CACHE flag if polling isn't supported
+ (jsc#PED-1183).
+- commit bce5f8e
+
+- Update patches.suse/scsi-ibmvfc-Avoid-path-failures-during-live-migratio.patch
+ (bsc#1065729 bsc#1204810 ltc#200162).
+- commit ba4e679
+
+- bio: add allocation cache abstraction (jsc#PED-1183).
+- Refresh
+ patches.suse/block-fix-rq-qos-breakage-from-skipping-rq_qos_done_.patch.
+- commit 17a0991
+
+- x86/tdx: Annotate a noreturn function (jsc#PED-342).
+- commit 8553815
+
+- fs: add kiocb alloc cache flag (jsc#PED-1183).
+- bio: optimize initialization of a bio (jsc#PED-1183).
+- commit 9a0b8ca
+
+- x86,objtool: Move the ASM_REACHABLE annotation to objtool.h
+ (jsc#PED-342).
+- Refresh
+ patches.suse/objtool-Re-add-UNWIND_HINT_-SAVE_RESTORE.patch.
+- commit 2f94159
+
+- Update config files.
+- commit 5d7c7c6
+
+- block: remove CONFIG_DEBUG_BLOCK_EXT_DEVT (jsc#PED-1183).
+- Refresh
+ patches.suse/block-Fix-the-maximum-minor-value-is-blk_alloc_ext_m.patch.
+- commit 754b820
+
+- block: remove a pointless call to MINOR() in device_add_disk
+ (jsc#PED-1183).
+- commit 9543e11
+
+- block: fix argument type of bio_trim() (jsc#PED-1183).
+- docs: sysfs-block-device: document ncq_prio_supported
+ (jsc#PED-1183).
+- docs: sysfs-block-device: improve ncq_prio_enable documentation
+ (jsc#PED-1183).
+- commit fd778db
+
+- null_blk: add error handling support for add_disk()
+ (jsc#PED-1183).
+- commit 3aa258a
+
+- x86/mm: Fix spacing within memory encryption features message
+ (jsc#PED-342).
+- commit 881d16c
+
+- x86/kaslr: Fix build warning in KASLR code in boot stub
+ (jsc#PED-342).
+- commit e3d83a1
+
+- block: add error handling for device_add_disk / add_disk
+ (jsc#PED-1183).
+- block: return errors from disk_alloc_events (jsc#PED-1183).
+- block: return errors from blk_integrity_add (jsc#PED-1183).
+- block: call blk_register_queue earlier in device_add_disk
+ (jsc#PED-1183).
+- block: call blk_integrity_add earlier in device_add_disk
+ (jsc#PED-1183).
+- block: create the bdi link earlier in device_add_disk
+ (jsc#PED-1183).
+- block: call bdev_add later in device_add_disk (jsc#PED-1183).
+- block: fold register_disk into device_add_disk (jsc#PED-1183).
+- block: add a sanity check for a live disk in del_gendisk
+ (jsc#PED-1183).
+- block: add an explicit ->disk backpointer to the request_queue
+ (jsc#PED-1183).
+- block: hold a request_queue reference for the lifetime of
+ struct gendisk (jsc#PED-1183).
+- block: pass a request_queue to __blk_alloc_disk (jsc#PED-1183).
+- block: remove the minors argument to __alloc_disk_node
+ (jsc#PED-1183).
+- block: remove alloc_disk and alloc_disk_node (jsc#PED-1183).
+- block: cleanup the lockdep handling in *alloc_disk
+ (jsc#PED-1183).
+- commit 46310ce
+
+- ext4: only allow test_dummy_encryption when supported
+ (bsc#1202772 bsc#1205173).
+- blacklist.conf: Remove above patch from blacklist
+- commit 091cd9f
+
+- sg: do not allocate a gendisk (jsc#PED-1183).
+- commit 37d18a6
+
+- st: do not allocate a gendisk (jsc#PED-1183).
+- Refresh
+ patches.suse/scsi-scsi_ioctl-Call-scsi_cmd_ioctl-from-scsi_ioctl.patch.
+- Refresh patches.suse/scsi-st-Simplify-ioctl-handling.patch.
+- commit 3c5d6ed
+
+- Documentation/x86: Document TDX kernel architecture
+ (jsc#PED-342).
+- commit 33bbdec
+
+- x86/tdx/ioapic: Add shared bit for IOAPIC base address
+ (jsc#PED-342).
+- commit 04231d0
+
+- x86/mm: Make DMA memory shared for TD guest (jsc#PED-342).
+- Update config files.
+- Refresh
+ patches.suse/x86-mm-move-protection_map-inside-the-platform.patch.
+- commit 48058a1
+
+- drm/i915/gvt: fix double free bug in split_2MB_gtt_entry (bsc#1204780, CVE-2022-3707)
+- commit 3d29636
+
+- x86/mm/cpa: Add support for TDX shared memory (jsc#PED-342).
+- commit 818b3a3
+
+- x86/tdx: Make pages shared in ioremap() (jsc#PED-342).
+- commit 0b05d9e
+
+- x86/topology: Disable CPU online/offline control for TDX guests
+ (jsc#PED-342).
+- commit 9d93879
+
+- scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
+ (bsc#1156395).
+- commit 32de176
+
+- x86/boot: Avoid #VE during boot for TDX platforms (jsc#PED-342).
+- commit 6a73875
+
+- x86/boot: Set CR0.NE early and keep it set during the boot
+ (jsc#PED-342).
+- commit 5319e24
+
+- x86/acpi/x86/boot: Add multiprocessor wake-up support
+ (jsc#PED-342).
+- commit 28d025a
+
+- Refresh patches.suse/scsi-ibmvfc-Do-not-wait-for-initial-device-scan.patch.
+ Refresh to upstream version of patch.
+- commit aba4ad9
+
+- x86/boot: Add a trampoline for booting APs via firmware handoff
+ (jsc#PED-342).
+- commit d10a201
+
+- Refresh sorted patches.
+- commit 3d3be93
+
+- x86/tdx: Wire up KVM hypercalls (jsc#PED-342).
+- commit 4edd4de
+
+- scsi: ibmvfc: Avoid path failures during live migration
+ (bsc#1065729).
+- commit 2f0fa7f
+
+- Update patches.suse/arm64-Add-AMPERE1-to-the-Spectre-BHB-affected-list.patch (git-fixes, bsc#1205153).
+ Add reference to bsc#1205153.
+- commit 08070be
+
+- x86/tdx: Port I/O: Add early boot support (jsc#PED-342).
+- commit ee7bb95
+
+- x86/tdx: Port I/O: Add runtime hypercalls (jsc#PED-342).
+- commit 6a328ea
+
+- x86/boot: Port I/O: Add decompression-time support for TDX
+ (jsc#PED-342).
+- commit 959a061
+
+- arm64: Add AMPERE1 to the Spectre-BHB affected list (git-fixes).
+- arm64: errata: Add Cortex-A55 to the repeat tlbi list (git-fixes).
+ Enable CONFIG_ARM64_ERRATUM_2441007, too
+- commit 57ef351
+
+- ALSA: usb-audio: Remove redundant workaround for Roland quirk
+ (bsc#1205111).
+- ALSA: usb-audio: Yet more regression for for the delayed card
+ registration (bsc#1205111).
+- commit fdb6d05
+
+- x86/boot: Port I/O: Allow to hook up alternative helpers
+ (jsc#PED-342).
+- commit 63333dd
+
+- x86: Consolidate port I/O helpers (jsc#PED-342).
+- commit 6e8ed87
+
+- rpm/check-for-config-changes: add TOOLCHAIN_HAS_* to IGNORED_CONFIGS_RE
+ This new form was added in commit b8c86872d1dc (riscv: fix detection of
+ toolchain Zicbom support).
+- commit e9f2ba6
+
+- Update config files.
+- commit d4d6656
+
+- x86: Adjust types used in port I/O helpers (jsc#PED-342).
+- commit ae6e9eb
+
+- x86/tdx: Detect TDX at early kernel decompression time
+ (jsc#PED-342).
+- commit 0d313b1
+
+- docs: perf: Include hns3-pmu.rst in toctree to fix 'htmldocs'
+ WARNING (jsc#PED-1113).
+- drivers/perf: hisi: add driver for HNS3 PMU (jsc#PED-1113).
+- drivers/perf: hisi: Add description for HNS3 PMU driver
+ (jsc#PED-1113).
+- commit 924185b
+
+- x86/tdx: Handle in-kernel MMIO (jsc#PED-342).
+- commit 0ac9a9a
+
+- x86/insn-eval: Introduce insn_get_modrm_reg_ptr() (jsc#PED-342).
+- commit 7042e81
+
+- x86/insn-eval: Introduce insn_decode_mmio() (jsc#PED-342).
+- commit 098c34f
+
+- tracing: kprobe: Fix memory leak in
+ test_gen_kprobe/kretprobe_cmd() (git-fixes).
+- commit 4b18e0d
+
+- io-wq: don't retry task_work creation failure on fatal
+ conditions (bnc#1205113).
+- io-wq: Remove duplicate code in io_workqueue_create()
+ (bnc#1205113).
+- io-wq: fix silly logic error in io_task_work_match()
+ (bnc#1205113).
+- io-wq: fix cancellation on create-worker failure (bnc#1205113).
+- commit f9f6f38
+
+- x86/tdx: Handle CPUID via #VE (jsc#PED-342).
+- commit d9569a7
+
+- x86/tdx: Add MSR support for TDX guests (jsc#PED-342).
+- commit c351cc8
+
+- block: add back the bd_holder_dir reference in
+ bd_link_disk_holder (jsc#PED-1183).
+- block: fix default IO priority handling (jsc#PED-1183).
+- block: Introduce IOPRIO_NR_LEVELS (jsc#PED-1183).
+- block: fix IOPRIO_PRIO_CLASS() and IOPRIO_PRIO_VALUE() macros
+ (jsc#PED-1183).
+- block: change ioprio_valid() to an inline function
+ (jsc#PED-1183).
+- block: improve ioprio class description comment (jsc#PED-1183).
+- ioprio: move user space relevant ioprio bits to UAPI includes
+ (jsc#PED-1183).
+- commit 7035d24
+
+- Add suse-kernel-rpm-scriptlets to kmp buildreqs (boo#1205149)
+- commit 888e01e
+
+- cifs: fix use-after-free on the link name (bsc#1193629).
+- commit c8e18d6
+
+- cifs: avoid unnecessary iteration of tcp sessions (bsc#1193629).
+- commit 3b19f83
+
+- cifs: always iterate smb sessions using primary channel
+ (bsc#1193629).
+- commit 5cac47b
+
+- cifs: fix use-after-free caused by invalid pointer `hostname`
+ (bsc#1193629).
+- commit 6bd980d
+
+- cifs: Fix pages leak when writedata alloc failed in
+ cifs_write_from_iter() (bsc#1193629).
+- commit 4170ae6
+
+- cifs: Fix pages array leak when writedata alloc failed in
+ cifs_writedata_alloc() (bsc#1193629).
+- commit b7ff361
+
+- x86/tdx: Add HLT support for TDX guests (jsc#PED-342).
+- commit fa8f2ad
+
+- block: unexport blk_register_queue (jsc#PED-1183).
+- blk-cgroup: stop using seq_get_buf (jsc#PED-1183).
+- blk-cgroup: refactor blkcg_print_stat (jsc#PED-1183).
+- nvme: use bvec_virt (jsc#PED-1183).
+- dcssblk: use bvec_virt (jsc#PED-1183).
+- dasd: use bvec_virt (jsc#PED-1183).
+- ps3vram: use bvec_virt (jsc#PED-1183).
+- ubd: use bvec_virt (jsc#PED-1183).
+- sd: use bvec_virt (jsc#PED-1183).
+- bcache: use bvec_virt (jsc#PED-1183).
+- virtio_blk: use bvec_virt (jsc#PED-1183).
+- rbd: use bvec_virt (jsc#PED-1183).
+- squashfs: use bvec_virt (jsc#PED-1183).
+- dm-integrity: use bvec_virt (jsc#PED-1183).
+- dm-ebs: use bvec_virt (jsc#PED-1183).
+- dm: make EBS depend on !HIGHMEM (jsc#PED-1183).
+- block: use bvec_virt in bio_integrity_{process,free}
+ (jsc#PED-1183).
+- bvec: add a bvec_virt helper (jsc#PED-1183).
+- commit 1fa6c4f
+
+- x86/traps: Add #VE support for TDX guest (jsc#PED-342).
+- commit 0845fe8
+
+- block: free the extended dev_t minor later (jsc#PED-1183).
+- block: pass a gendisk to bdev_resize_partition (jsc#PED-1183).
+- block: pass a gendisk to bdev_del_partition (jsc#PED-1183).
+- block: pass a gendisk to bdev_add_partition (jsc#PED-1183).
+- block: store a gendisk in struct parsed_partitions
+ (jsc#PED-1183).
+- block: remove GENHD_FL_UP (jsc#PED-1183).
+- commit a8e4fd9
+
+- bcache: move the del_gendisk call out of bcache_device_free
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/0001-bcache-fix-use-after-free-problem-in-bcache_device_f.patch.
+- commit 1509972
+
+- sx8: use the internal state machine to check if del_gendisk
+ needs to be called (jsc#PED-1183).
+- commit fb76d3a
+
+- nvme: replace the GENHD_FL_UP check in nvme_mpath_shutdown_disk
+ (jsc#PED-1183).
+- commit 415dd0f
+
+- Update config files for enabling CONFIG_SECONDARY_TRUSTED_KEYRING
+ In x86_64 config, we have enabled the CONFIG_SECONDARY_TRUSTED_KEYRING
+ and children kernel config since SLE12-SP4 and SLE15. But we didn't
+ enable it in other architectures because the original this option is
+ for secure boot.
+ In the future, the CONFIG_SECONDARY_TRUSTED_KEYRING will be used with
+ IMA in different architectures. So let's enable it in SLE in arm64,
+ armv7hl, ppc64le and s390x architectures. Then Leap or even SLE users
+ can use it for preparing IMA functions with secondary trusted keyring.
+ (bsc#1203739)
+- commit 7d983f7
+
+- x86/traps: Refactor exc_general_protection() (jsc#PED-342).
+- commit 4d05e70
+
+- block: ensure the bdi is freed after inode_detach_wb (jsc#PED-1183). - blacklist.conf:
+- commit 9224fa7
+
+- nvme: remove the GENHD_FL_UP check in nvme_ns_remove
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/nvme-fix-RCU-hole-that-allowed-for-endless-looping-i.patch.
+- Refresh
+ patches.suse/nvme-only-call-synchronize_srcu-when-clearing-curren.patch.
+- commit 5f9ae94
+
+- x86/tdx: Exclude shared bit from __PHYSICAL_MASK (jsc#PED-342).
+- commit 7c06d91
+
+- mmc: block: cleanup gendisk creation (jsc#PED-1183).
+- mmc: block: let device_add_disk create disk attributes
+ (jsc#PED-1183).
+- commit d09b05c
+
+- block: remove the bd_bdi in struct block_device (jsc#PED-1183).
+- block: move the bdi from the request_queue to the gendisk
+ (jsc#PED-1183).
+- block: add a queue_has_disk helper (jsc#PED-1183).
+- commit 6bd4b8b
+
+- block: pass a gendisk to blk_queue_update_readahead
+ (jsc#PED-1183).
+- Refresh
+ patches.suse/nvme-multipath-revalidate-paths-during-rescan.patch.
+- commit 0d9ee3a
+
+- mm: hide laptop_mode_wb_timer entirely behind the BDI API
+ (jsc#PED-1183).
+- block: remove support for delayed queue registrations
+ (jsc#PED-1183).
+- dm: delay registering the gendisk (jsc#PED-1183).
+- dm: move setting md->type into dm_setup_md_queue (jsc#PED-1183).
+- dm: cleanup cleanup_mapped_device (jsc#PED-1183).
+- block: support delayed holder registration (jsc#PED-1183).
+- block: look up holders by bdev (jsc#PED-1183).
+- block: remove the extra kobject reference in bd_link_disk_holder
+ (jsc#PED-1183).
+- block: make the block holder code optional (jsc#PED-1183).
+- blk-mq: Introduce the BLK_MQ_F_NO_SCHED_BY_DEFAULT flag
+ (jsc#PED-1183).
+- block: remove blk-mq-sysfs dead code (jsc#PED-1183).
+- commit e8944f6
+
+- loop: raise media_change event (jsc#PED-1183).
+- Refresh patches.suse/loop-reduce-the-loop_ctl_mutex-scope.patch.
+- commit 6fac71e
+
+- block: add a helper to raise a media changed event
+ (jsc#PED-1183).
+- block: export diskseq in sysfs (jsc#PED-1183).
+- block: add ioctl to read the disk sequence number
+ (jsc#PED-1183).
+- block: export the diskseq in uevents (jsc#PED-1183).
+- block: add disk sequence number (jsc#PED-1183).
+- commit 08404d0
+
+- x86/tdx: Extend the confidential computing API to support TDX
+ guests (jsc#PED-342).
+- commit ee89ba2
+
+- block: remove cmdline-parser.c (jsc#PED-1183).
+- block: remove disk_name() (jsc#PED-1183).
+- block: simplify disk name formatting in check_partition
+ (jsc#PED-1183).
+- block: simplify printing the device names disk_stack_limits
+ (jsc#PED-1183).
+- block: use the %pg format specifier in show_partition
+ (jsc#PED-1183).
+- block: use the %pg format specifier in printk_all_partitions
+ (jsc#PED-1183).
+- commit ae60bd5
+
+- block: reduce stack usage in diskstats_show (jsc#PED-1183).
+- Refresh patches.suse/block-update-io_ticks-when-io-hang.patch.
+- commit 0a2cd44
+
+- block: remove bdput (jsc#PED-1183).
+- block: remove bdgrab (jsc#PED-1183).
+- commit e133466
+
+- loop: don't grab a reference to the block device (jsc#PED-1183).
+- block: change the refcounting for partitions (jsc#PED-1183).
+- block: allocate bd_meta_info later in add_partitions
+ (jsc#PED-1183).
+- commit 2f8408c
+
+- block: unhash the whole device inode earlier (jsc#PED-1183).
+- block: assert the locking state in delete_partition
+ (jsc#PED-1183).
+- commit 8def158
+
+- x86/tdx: Add __tdx_module_call() and __tdx_hypercall() helper
+ functions (jsc#PED-342).
+- commit 4d36a19
+
+- block: take destination bvec offsets into account in
+ bio_copy_data_iter (jsc#PED1183).
+- commit 5428532
+
+- block: use bvec_kmap_local in bio_integrity_process
+ (jsc#PED1183).
+- block: use bvec_kmap_local in t10_pi_type1_{prepare,complete}
+ (jsc#PED1183).
+- block: use memcpy_from_bvec in __blk_queue_bounce (jsc#PED1183).
+- block: use memcpy_from_bvec in bio_copy_kern_endio_read
+ (jsc#PED1183).
+- block: use memcpy_to_bvec in copy_to_high_bio_irq (jsc#PED1183).
+- block: rewrite bio_copy_data_iter to use bvec_kmap_local and
+ memcpy_to_bvec (jsc#PED1183).
+- block: remove bvec_kmap_irq and bvec_kunmap_irq (jsc#PED1183).
+- ps3disk: use memcpy_{from,to}_bvec (jsc#PED1183).
+- dm-writecache: use bvec_kmap_local instead of bvec_kmap_irq
+ (jsc#PED1183).
+- rbd: use memzero_bvec (jsc#PED1183).
+- block: use memzero_page in zero_fill_bio (jsc#PED1183).
+- bvec: add memcpy_{from,to}_bvec and memzero_bvec helper
+ (jsc#PED1183).
+- bvec: add a bvec_kmap_local helper (jsc#PED1183).
+- bvec: fix the include guards for bvec.h (jsc#PED1183).
+- MIPS: don't include <linux/genhd.h> in <asm/mach-rc32434/rb.h>
+ (jsc#PED1183).
+- commit f380fe3
+
+- x86/tdx: Provide common base for SEAMCALL and TDCALL C wrappers
+ (jsc#PED-342).
+- Refresh
+ patches.suse/KVM-VMX-Prevent-RSB-underflow-before-vmenter.patch.
+- commit 5700a12
+
+- x86/tdx: Detect running as a TDX guest in early boot
+ (jsc#PED-342).
+- Update config files.
+- Refresh patches.suse/x86-retpoline-Cleanup-some-ifdefery.patch.
+- commit 4cddcd7
+
+- mm/debug_vm_pgtable: drop protection_map[] usage (jsc#PED-1981).
+- mm: debug_vm_pgtable: don't use __P000 directly (jsc#PED-1981).
+- commit 3e71232
+
+- Move upstreamed tracing patch into sorted section
+- commit c9209ac
+
+- hv_netvsc: Fix race between VF offering and VF association
+ message from host (bsc#1204850).
+- commit e9c6d7c
+
+- arm64: entry: avoid kprobe recursion (git-fixes).
+- Documentation: devres: add missing I2C helper (git-fixes).
+- i2c: piix4: Fix adapter not be removed in piix4_remove()
+ (git-fixes).
+- efi/tpm: Pass correct address to memblock_reserve (git-fixes).
+- arm64: dts: juno: Add thermal critical trip points (git-fixes).
+- firmware: arm_scmi: Make Rx chan_setup fail on memory errors
+ (git-fixes).
+- firmware: arm_scmi: Suppress the driver's bind attributes
+ (git-fixes).
+- arm64: dts: ls208xa: specify clock frequencies for the MDIO
+ controllers (git-fixes).
+- arm64: dts: ls1088a: specify clock frequencies for the MDIO
+ controllers (git-fixes).
+- arm64: dts: lx2160a: specify clock frequencies for the MDIO
+ controllers (git-fixes).
+- dt-bindings: power: gpcv2: add power-domains property
+ (git-fixes).
+- arm64: dts: imx8: correct clock order (git-fixes).
+- ARM: dts: imx6qdl-gw59{10,13}: fix user pushbutton GPIO offset
+ (git-fixes).
+- commit 9fbcbe8
+
+- scsi: bnx2fc: Avoid using get_cpu() in bnx2fc_cmd_alloc()
+ (jsc#PED-1517).
+- scsi: fcoe: Use per-CPU API to update per-CPU statistics
+ (jsc#PED-1517).
+- scsi: bnx2fc: Fix spelling mistake "mis-match" -> "mismatch"
+ (jsc#PED-1517).
+- scsi: bnx2fc: Stop using the SCSI pointer (jsc#PED-1517).
+- scsi: bnx2fc: Make use of the helper macro kthread_run()
+ (jsc#PED-1517).
+- scsi: bnx2fc: Fix typo in comments (jsc#PED-1517).
+- commit 248604a
+
+- x86/mm: disable instrumentations of mm/pgprot.c (jsc#PED-1981).
+- commit 204bb3e
+
+- powerpc/mm: Support execute-only memory on the Radix MMU
+ (jsc#PED-1981).
+- mm/mmap: drop ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- arm/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- s390/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- mm/mmap: build protect protection_map[] with
+ ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- x86/mm: move protection_map[] inside the platform
+ (jsc#PED-1981).
+- arm64/mm: move protection_map[] inside the platform
+ (jsc#PED-1981).
+- powerpc/mm: move protection_map[] inside the platform
+ (jsc#PED-1981).
+- mm/mmap: define DECLARE_VM_GET_PAGE_PROT (jsc#PED-1981).
+- mm/mmap: build protect protection_map[] with __P000
+ (jsc#PED-1981).
+- mm/mmap: drop arch_vm_get_page_pgprot() (jsc#PED-1981).
+- mm/mmap: drop arch_filter_pgprot() (jsc#PED-1981).
+- x86/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- arm64/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- powerpc/mm: enable ARCH_HAS_VM_GET_PAGE_PROT (jsc#PED-1981).
+- mm/mmap: add new config ARCH_HAS_VM_GET_PAGE_PROT
+ (jsc#PED-1981).
+- mm/mmap: clarify protection_map[] indices (jsc#PED-1981).
+- mm: generalize ARCH_HAS_FILTER_PGPROT (jsc#PED-1981).
+- commit a3908cf
+
+- scsi: core: Remove the request member from struct scsi_cmnd
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Use-a-structure-member-to-track-the-SCSI-command-submitter.patch.
+- Refresh
+ patches.suse/scsi-do-not-print-reservation-conflict-for-TEST-UNIT.patch.
+- commit 202c860
+
+- Move upstreamed patches into sorted section
+- commit 490afd7
+
+- KVM: x86: Cap KVM_CAP_NR_VCPUS by KVM_CAP_MAX_VCPUS
+ (jsc#PED-2064).
+- commit 4798ea3
+
+- x86/sev: Don't use cc_platform_has() for early SEV-SNP calls
+ (bsc#1204970).
+- x86/boot: Don't propagate uninitialized
+ boot_params->cc_blob_address (bsc#1204970).
+- x86/boot: Fix the setup data types max limit (bsc#1204970).
+- x86/compressed/64: Add identity mappings for setup_data entries
+ (bsc#1204970).
+- x86/sev: Annotate stack change in the #VC handler (bsc#1204970).
+- x86/sev: Remove duplicated assignment to variable info
+ (bsc#1204970).
+- commit 1ad6c0c
+
+- KVM: x86: Drop arbitrary KVM_SOFT_MAX_VCPUS (jsc#PED-2064).
+- commit 749b13f
+
+- kvm: rename KVM_MAX_VCPU_ID to KVM_MAX_VCPU_IDS (jsc#PED-2064).
+- commit 41fefea
+
+- kvm: x86: Increase KVM_SOFT_MAX_VCPUS to 710 (jsc#PED-2064).
+- commit 6f118a7
+
+- kvm: x86: Increase MAX_VCPUS to 1024 (jsc#PED-2064).
+- commit 7046326
+
+- selftests/pidfd_test: Remove the erroneous ',' (git-fixes).
+- vsock: fix possible infinite sleep in
+ vsock_connectible_wait_data() (git-fixes).
+- vsock: remove the unused 'wait' in vsock_connectible_recvmsg()
+ (git-fixes).
+- mISDN: fix possible memory leak in mISDN_register_device()
+ (git-fixes).
+- rose: Fix NULL pointer dereference in rose_send_frame()
+ (git-fixes).
+- nfc: nfcmrvl: Fix potential memory leak in
+ nfcmrvl_i2c_nci_send() (git-fixes).
+- nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()
+ (git-fixes).
+- nfc: nxp-nci: Fix potential memory leak in nxp_nci_send()
+ (git-fixes).
+- nfc: fdp: Fix potential memory leak in fdp_nci_send()
+ (git-fixes).
+- xhci: Remove device endpoints from bandwidth list when freeing
+ the device (git-fixes).
+- xhci-pci: Set runtime PM as default policy on all xHC 1.2 or
+ later devices (git-fixes).
+- xhci: Add quirk to reset host back to default state at shutdown
+ (git-fixes).
+- usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being
+ a V0.96 controller (git-fixes).
+- kernfs: fix use-after-free in __kernfs_remove (git-fixes).
+- serial: core: move RS485 configuration tasks from drivers into
+ core (git-fixes).
+- commit 356bf7e
+
+- ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes).
+- Bluetooth: virtio_bt: Use skb_put to set length (git-fixes).
+- Bluetooth: L2CAP: Fix use-after-free caused by
+ l2cap_reassemble_sdu (git-fixes).
+- isdn: mISDN: netjet: fix wrong check of device registration
+ (git-fixes).
+- fs/binfmt_elf: Fix memory leak in load_elf_binary() (git-fixes).
+- commit 9e67c0b
+
+- Move upstreamed BT fixes into sorted section
+- commit 9cff1e2
+
+- kvm: x86: Set KVM_MAX_VCPU_ID to 4*KVM_MAX_VCPUS (jsc#PED-2064).
+- commit 5a21e82
+
+- blacklist.conf: add 8250_mtk entry that was reverted
+- commit c43b30f
+
+- Update config files.
+- commit f8b438f
+
+- scsi: ufs: Request sense data asynchronously (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS.
+- commit 5b785bb
+
+- usb: dwc3: pci: Add PCIe device ID for USB3 controller on CPU
+ sub-system for Alder Lake P (jsc#PED-1817).
+- commit 5611b2f
+
+- usb: dwc3: pci: Update the macro names for USB PCIe device
+ ID's for Alder Lake platforms.
+- commit 4db7e75
+
+- usb: dwc3: pci: Add support for Intel Alder Lake (jsc#PED-1817).
+- commit 7c11f19
+
+- scsi: target: iscsi: Rename iscsi_conn to iscsit_conn
+ (jsc#PED-1509).
+- scsi: target: iscsi: Rename iscsi_cmd to iscsit_cmd
+ (jsc#PED-1509).
+- scsi: target: Add iscsi/cpus_allowed_list in configfs
+ (jsc#PED-1509).
+- scsi: target: cxgbit: Enable Delayed ACK (jsc#PED-1509).
+- scsi: target: cxgbit: Increase max DataSegmentLength
+ (jsc#PED-1509).
+- scsi: target: Remove redundant assignment to variable ret
+ (jsc#PED-1509).
+- commit 3c7b966
+
+- blacklist.conf: added two invasive scsi fixes (jsc#PED-1509)
+- commit 6611d69
+
+- scsi: storvsc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit abcefb7
+
+- scsi: usb-storage: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: tcm_loop: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: xen-scsifront: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: virtio_scsi: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- commit 66cf33c
+
+- scsi: ufs: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh patches.suse/scsi-ufs-core-scsi_get_lba-error-fix.patch.
+- commit 3b3c660
+
+- scsi: sym53c8xx: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: sun3_scsi: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- commit a1abc07
+
+- scsi: stex: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh patches.suse/scsi-stex-Call-scsi_done-directly.patch.
+- commit 3b9bdaf
+
+- scsi: snic: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: scsi_debug: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: qlogicpti: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: qla4xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: qla1280: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit 76b569f
+
+- scsi: ncr53c8xx: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: myrs: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: myrb: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: mvumi: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit 454ec4e
+
+- scsi: mpt3sas: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-mpt3sas-Use-the-proper-SCSI-midlayer-interfaces.patch.
+- commit 28339db
+
+- scsi: libsas: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: ips: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: ibmvscsi: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: ibmvfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: hpsa: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: hisi_sas: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- commit 40bbe2d
+
+- scsi: fnic: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Remove-the-done-argument-from-SCSI-queuecommand_lck-functions.patch.
+- Refresh patches.suse/scsi-fnic-Call-scsi_done-directly.patch.
+- Refresh patches.suse/scsi-fnic-Fix-a-tracing-statement.patch.
+- commit 5d696da
+
+- scsi: dpt_i2o: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: cxlflash: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: aha1542: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: advansys: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: NCR5380: Use sc_data_direction instead of rq_data_dir()
+ (jsc#PED-1559).
+- scsi: 53c700: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit 86603c7
+
+- scsi: ata: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh patches.suse/scsi-ata-Call-scsi_done-directly.patch.
+- commit d14876e
+
+- scsi: scsi_transport_spi: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: scsi_transport_fc: Use scsi_cmd_to_rq() instead of
+ scsi_cmnd.request (jsc#PED-1559).
+- scsi: sr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- scsi: sd: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- commit 5ae2c44
+
+- scsi: core: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Add-helper-to-return-number-of-logical-blo.patch.
+- Refresh
+ patches.suse/scsi-core-Rename-scsi_mq_done-into-scsi_done-and-export-it.patch.
+- Refresh
+ patches.suse/scsi-core-Use-a-structure-member-to-track-the-SCSI-command-submitter.patch.
+- commit 65b943c
+
+- scsi: ufs: Synchronize SCSI and UFS error handling
+ (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-Fix-race-conditions-related-to-driver-data.
+- commit c27d199
+
+- usb: dwc3: core: fix some leaks in probe (git-fixes).
+- commit f151478
+
+- usb: dwc3: debug: show events parameters in hex (jsc#PED-1817).
+- commit bfc751a
+
+- scsi: ufs: Optimize SCSI command processing (jsc#PED-818).
+- Update
+ patches.suse/scsi-ufs-Retry-aborted-SCSI-commands-instead-of-comp.patch
+ (jsc#PED-818).
+- Update
+ patches.suse/scsi-ufs-ufs-pci-Fix-Intel-LKF-link-stability.patch
+ (jsc#PED-818).
+- commit 30ae188
+
+- usb: dwc3: Fix bare use of unsigned checkpatch warning
+ (jsc#PED-1817).
+- commit 909eacb
+
+- scsi: ufs: Inline ufshcd_outstanding_req_clear() (jsc#PED-818).
+- scsi: ufs: Remove several wmb() calls (jsc#PED-818).
+- commit 034dff5
+
+- scsi: ufs: Improve static type checking for the host
+ (jsc#PED-818).
+- Refresh patches.suse/scsi-ufs-Call-scsi_done-directly.patch.
+- Refresh
+ patches.suse/scsi-ufs-Fix-a-deadlock-in-the-error-handler.patch.
+- commit 83f5077
+
+- usb: dwc3: add power down scale setting.
+- commit 38b4418
+
+- scsi: ufs: Verify UIC locking requirements at runtime
+ (jsc#PED-818).
+- commit 3218f64
+
+- scsi: ufs: Remove ufshcd_valid_tag() (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-Fix-a-deadlock-in-the-error-handler.patch.
+- Refresh patches.suse/scsi-ufs-Fix-the-SCSI-abort-handler.patch.
+- Refresh
+ patches.suse/scsi-ufs-Fix-unsigned-int-compared-with-less-than-ze.patch.
+- Refresh patches.suse/scsi-ufs-Remove-dead-code.patch.
+- commit 4a4a476
+
+- usb: dwc3: host: Stop setting the ACPI companion (jsc#PED-1817).
+- commit 40c12b1
+
+- usb: dwc3: EP clear halt leading to clearing of delayed_status
+ (jsc#PED-1817).
+- commit 41e49dd
+
+- USB: gadget: Add ID numbers to gadget names (jsc#PED-1817).
+- commit abba912
+
+- USB: gadget: Add a new bus for gadgets (jsc#PED-1817).
+- commit 71557d2
+
+- scsi: ufs: Rename the second ufshcd_probe_hba() argument
+ (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS.
+- commit 81cd4a9
+
+- scsi: ufs: Only include power management code if necessary
+ (jsc#PED-818).
+- commit 7aae000
+
+- scsi: ufs: Reduce power management code duplication
+ (jsc#PED-818).
+- Refresh
+ patches.suse/scsi-ufs-ufs-pci-Add-support-for-Intel-ADL.patch.
+- Refresh
+ patches.suse/scsi-ufs-ufs-pci-Add-support-for-Intel-MTL.patch.
+- commit 0798fbe
+
+- scsi: ufs: Allow async suspend/resume callbacks (jsc#PED-1559).
+- commit 859a0be
+
+- scsi: ufs: core: Use scsi_get_lba() to get LBA (jsc#PED-1559).
+- Refresh patches.suse/scsi-ufs-core-scsi_get_lba-error-fix.patch.
+- commit 53218d3
+
+- scsi: ufs: Refactor ufshcd_is_intr_aggr_allowed()
+ (jsc#PED-1559).
+- commit dd7279f
+
+- scsi: core: Make scsi_get_lba() return the LBA (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Add-helper-to-return-number-of-logical-blo.patch.
+- commit a435c49
+
+- scsi: pm8001: Remove redundant initialization of variable 'rv'
+ (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-pm80xx-Update-WARN_ON-check-in-pm8001_mpi_build_cmd.
+- commit 4e95793
+
+- scsi: elx: efct: Remove redundant initialization of variable
+ (jsc#PED-1559).
+- scsi: snic: Remove redundant assignment to variable ret
+ (jsc#PED-1559).
+- commit ac4f44c
+
+- scsi: bsg-lib: Fix commands without data transfer in
+ (jsc#PED-1559).
+- scsi: bsg: Fix commands without data transfer in (jsc#PED-1559).
+- scsi: bsg: Move the whole request execution into the
+ (jsc#PED-1559).
+- scsi: block: Remove the remaining SG_IO-related fields from
+ (jsc#PED-1559).
+- scsi: block: Remove BLK_SCSI_MAX_CMDS (jsc#PED-1559).
+- commit b97a71c
+
+- ALSA: hda: cs35l41: Utilize acpi_get_subsystem_id()
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ALSA-hda-cs35l41-Support-System-Suspend.patch.
+- commit 8550ce4
+
+- scsi: bsg: Simplify device registration (jsc#PED-1559).
+- Update
+ patches.suse/scsi-core-Register-sysfs-attributes-earlier.patch
+ (jsc#PED-1559).
+- commit 16ae25e
+
+- ALSA: hda/realtek: simplify the return of comp_bind()
+ (jsc#PED-850).
+- ALSA: hda/hdmi: Limit the maximal count of PCM devices to 8
+ (jsc#PED-850).
+- ALSA: hda/hdmi: Use only dynamic PCM device allocation
+ (jsc#PED-850).
+- ALSA: hda/ca0132 - remove the unneeded result variable
+ (jsc#PED-850).
+- ALSA: hda/hdmi: ELD procfs - print the codec NIDs (jsc#PED-850).
+- ALSA: hda/hdmi: Simplify the pcm_idx condition in
+ hdmi_pcm_setup_pin() (jsc#PED-850).
+- ALSA: hda: add snd_hdac_stop_streams() helper (jsc#PED-850).
+- ALSA: hda: cs35l41: Call put_device() in the scope of
+ get_device() (jsc#PED-850).
+- ALSA: hda: beep: Simplify keep-power-at-enable behavior
+ (jsc#PED-850).
+- ALSA: hda/hdmi: Replace zero-length array with
+ DECLARE_FLEX_ARRAY() helper (jsc#PED-850).
+- ALSA: hda: cleanup definitions for multi-link registers
+ (jsc#PED-850).
+- ALSA: hda: Remove unused defines (jsc#PED-850).
+- ALSA: hda: Remove unused MAX_PIN_CONFIGS constant (jsc#PED-850).
+- ALSA: hda: Always free codec on the device release
+ (jsc#PED-850).
+- commit d98a166
+
+- scsi: sr: cdrom: Move cdrom_read_cdda_bpc() into the sr
+ (jsc#PED-1559).
+- commit 8b9b02b
+
+- scsi: libsas: Drop BLK_DEV_BSGLIB selection (jsc#PED-1559).
+- scsi: libsas: Allow libsas to include SCSI header files
+ (jsc#PED-1559).
+- commit dd3b173
+
+- ALSA: hda: cs35l41: Fix build error unused-function
+ (jsc#PED-850).
+- blacklist.conf: drop the backported entry
+- Refresh
+ patches.suse/ALSA-hda-cs35l41-Support-System-Suspend.patch.
+- commit 1949e96
+
+- PM: core: Add new *_PM_OPS macros, deprecate old ones
+ (jsc#PED-850).
+- PM: core: Redefine pm_ptr() macro (jsc#PED-850).
+- commit 7226af8
+
+- ALSA: hda/realtek: Make use of the helper
+ component_compare_dev_name (jsc#PED-850).
+- Refresh
+ patches.suse/ALSA-hda-cs35l41-Remove-Set-Channel-Map-api-from-bin.patch.
+- Refresh
+ patches.suse/ALSA-hda-cs35l41-Save-codec-object-inside-component-.patch.
+- Refresh
+ patches.suse/ALSA-hda-realtek-More-robust-component-matching-for-.patch.
+- commit 2370fb9
+
+- ASoC: amd: yc: Add Lenovo Yoga Slim 7 Pro X to quirks table
+ (jsc#PED-850).
+- ASoC: amd: yc: Add ASUS UM5302TA into DMI table (jsc#PED-850).
+- ALSA: intel-dspconfig: add ES8336 support for AlderLake-PS
+ (jsc#PED-850).
+- commit 88de70c
+
+- scsi: sd: Fix crashes in sd_resume_runtime() (jsc#PED-1559).
+- scsi: scsi_ioctl: Unexport sg_scsi_ioctl() (jsc#PED-1559).
+- scsi: scsi_ioctl: Factor SG_IO handling into a helper
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Factor SCSI_IOCTL_GET_IDLUN handling into
+ a helper (jsc#PED-1559).
+- scsi: scsi_ioctl: Consolidate the START STOP UNIT handling
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Remove a very misleading comment
+ (jsc#PED-1559).
+- scsi: core: Rename CONFIG_BLK_SCSI_REQUEST to CONFIG_SCSI_COMMON
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Move the "block layer" SCSI ioctl handling
+ to drivers/scsi (jsc#PED-1559).
+- scsi: scsi_ioctl: Simplify SCSI passthrough permission
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Move scsi_command_size_tbl to scsi_common.c
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Remove scsi_req_init() (jsc#PED-1559).
+- scsi: bsg: Move bsg_scsi_ops to drivers/scsi/ (jsc#PED-1559).
+- scsi: bsg: Decouple from scsi_cmd_ioctl() (jsc#PED-1559).
+- scsi: block: Add a queue_max_bytes() helper (jsc#PED-1559).
+- scsi: scsi_ioctl: Call scsi_cmd_ioctl() from scsi_ioctl()
+ (jsc#PED-1559).
+- scsi: scsi_ioctl: Remove scsi_verify_blk_ioctl() (jsc#PED-1559).
+- scsi: scsi_ioctl: Remove scsi_cmd_blk_ioctl() (jsc#PED-1559).
+- scsi: cdrom: Remove the call to scsi_cmd_blk_ioctl() from
+ cdrom_ioctl() (jsc#PED-1559).
+- scsi: st: Simplify ioctl handling (jsc#PED-1559).
+- scsi: core: Remove scsi_compat_ioctl() (jsc#PED-1559).
+- scsi: sg: Consolidate compat ioctl handling (jsc#PED-1559).
+- scsi: ch: Consolidate compat ioctl handling (jsc#PED-1559).
+- scsi: sd: Consolidate compat ioctl handling (jsc#PED-1559).
+- scsi: sr: Consolidate compat ioctl handling (jsc#PED-1559).
+- scsi: core: Add BLIST_IGN_MEDIA_CHANGE for Ultra HS-SD/MMC
+ (jsc#PED-1559).
+- scsi: sd: REQUEST SENSE for BLIST_IGN_MEDIA_CHANGE devices in
+ (jsc#PED-1559).
+- commit 14236ba
+
+- scsi: core: Add new flag BLIST_IGN_MEDIA_CHANGE (jsc#PED-1559).
+- Refresh
+ patches.suse/scsi-core-Add-BLIST_NO_ASK_VPD_SIZE-for-some-VDASD.patch.
+- Refresh
+ patches.suse/scsi-core-sd-Add-silence_suspend-flag-to-suppress-some-PM-messages.patch.
+- Refresh
+ patches.suse/scsi-make-sure-that-request-queue-queiesce-and-unqui.patch.
+- commit 5ec93ba
+
+- scsi: scsi_debug: Improve RDPROTECT/WRPROTECT handling
+ (jsc#PED-1559).
+- scsi: scsi_debug: Remove dump_sector() (jsc#PED-1559).
+- commit aedbc46
+
+- IB/core: Fix a nested dead lock as part of ODP flow (git-fixes)
+- commit 6f2ee60
+
+- USB: gadget: Fix mistakes in UDC core kerneldoc (jsc#PED-1817).
+- commit e2b3f30
+
+- USB: gadget: Register udc before gadget (jsc#PED-1817).
+- commit ce73342
+
+- usb: Remove redundant 'flush_workqueue()' calls (jsc#PED-1817).
+- commit a7fc6e6
+
+- usb: gadget: udc: core: Revise comments for USB ep
+ enable/disable (jsc#PED-1817).
+- commit fa96de3
+
+- USB: gadget: udc: Remove some dead code (jsc#PED-1817).
+- commit c4d776a
+
+- usb: gadget: udc: core: Print error code in
+ usb_gadget_probe_driver() (jsc#PED-1817).
+- commit 172a5d3
+
+- usb: gadget: aspeed: Remove repeated verbose license text
+ (jsc#PED-1917).
+- commit 86efa6c
+
+- ASoC: soc-pcm.c: call __soc_pcm_close() in soc_pcm_close()
+ (jsc#PED-850).
+- commit cff81ba
+
+- Refresh patches.suse/ppc64-kdump-Limit-kdump-base-to-512MB.patch
+ to upstream version.
+- commit 0f63234
+
+- ASoC: tegra20-spdif: stop setting slave_id (jsc#PED-850).
+- commit 4702843
+
+- ASoC: rt5640: Fix the issue of the abnormal JD2 status
+ (jsc#PED-850).
+- ASoC: rt5640: Fix the JD voltage dropping issue (jsc#PED-850).
+- ASoC: codecs: rt274: Set component to NULL on remove
+ (jsc#PED-850).
+- ASoC: codecs: rt298: Set component to NULL on remove
+ (jsc#PED-850).
+- ASoC: codecs: rt286: Set component to NULL on remove
+ (jsc#PED-850).
+- ASoC: codecs: rt298: Fix jack detection (jsc#PED-850).
+- ASoC: codecs: rt298: Fix NULL jack in interrupt (jsc#PED-850).
+- ASoC: rt5640: Add the MICBIAS1 to the dapm routing
+ (jsc#PED-850).
+- ASoC: codecs: soundwire: call pm_runtime_resume() in component
+ probe (jsc#PED-850).
+- ASoC: codecs: rt274: Always init jack_detect_work (jsc#PED-850).
+- ASoC: rt5640: Fix the wrong state of JD1 and JD2 (jsc#PED-850).
+- ASoC: rt1308-sdw: add the default value of register 0xc320
+ (jsc#PED-850).
+- ASoC: rt5645: Fix the error handling of rt5645_i2c_probe()
+ (jsc#PED-850).
+- ASoC: rt1316-sdw: Add endianness flag in
+ snd_soc_component_driver (jsc#PED-850).
+- ASoC: rt1308-sdw: Add endianness flag in
+ snd_soc_component_driver (jsc#PED-850).
+- ASoC: rt715-sdca: Add endianness flag in
+ snd_soc_component_driver (jsc#PED-850).
+- ASoC: rt715: Add endianness flag in snd_soc_component_driver
+ (jsc#PED-850).
+- ASoC: rt700: Add endianness flag in snd_soc_component_driver
+ (jsc#PED-850).
+- ASoC: rt1019: Add endianness flag in snd_soc_component_driver
+ (jsc#PED-850).
+- commit 0f6c8bf
+
+- ASoC: rt711/5682: check if bus is active before deferred jack
+ detection (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-rt7-sdw-harden-jack_detect_handler.patch.
+- commit dfab873
+
+- ASoC: rt*: use simple i2c probe function (jsc#PED-850).
+- ASoC: rt5682s: Separate the regulator consumer controls
+ (jsc#PED-850).
+- ASoC: rt1308-sdw: get calibration params after power on
+ (jsc#PED-850).
+- ASoC: rt5682s: Stabilize the combo jack detection (jsc#PED-850).
+- ASoC: rt5640: Remove the sysclk and sysclk_src checking
+ (jsc#PED-850).
+- ASoC: rt5682s: Fix the wrong jack type detected (jsc#PED-850).
+- ASoC: rt5682s: do not block workqueue if card is unbound
+ (jsc#PED-850).
+- ASoC: rt5682: Register wclk with its parent_hws instead of
+ parent_data (jsc#PED-850).
+- ASoC: rt1011: revert 'I2S Reference' to SOC_ENUM_EXT
+ (jsc#PED-850).
+- ASoC: rt5682s: use 'static' qualifier (jsc#PED-850).
+- ASoC: rt5682-i2c: Use devm_clk_get_optional for optional clock
+ (jsc#PED-850).
+- ASoC: rt5682s: Downsizing the DAC volume scale (jsc#PED-850).
+- ASoC: rt1011: Fix 'I2S Reference' enum control (jsc#PED-850).
+- ASoC: rt1011: Fix 'I2S Reference' enum control caused error
+ (jsc#PED-850).
+- ASoC: rt5682s: Fix hp pop produced immediately after resuming
+ (jsc#PED-850).
+- ASoC: rt5682s: Fix HP noise caused by SAR mode switch when
+ the system resumes (jsc#PED-850).
+- ASoC: rt5682s: Enable ASRC auto-disable to fix pop during jack
+ plug-in while playback (jsc#PED-850).
+- ASoC: rt5682s: Revise the macro RT5682S_PLLB_SRC_MASK
+ (jsc#PED-850).
+- ASoC: rt5682s: Use dev_dbg instead of pr_debug (jsc#PED-850).
+- ASoC: rt5682s: Remove the volatile SW reset register from
+ reg_default (jsc#PED-850).
+- ASoC: rt5682s: make rt5682s_aif2_dai_ops and
+ rt5682s_soc_component_dev (jsc#PED-850).
+- ASoC: rt1011: add i2s reference control for rt1011
+ (jsc#PED-850).
+- commit db632b2
+
+- ASoC: core: Correct spelling fliped -> flipped (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-core-Always-send-the-CPU-DAI-a-direct-clock-spe.patch.
+- commit 2306d72
+
+- ASoC: soc-component: Add comment for the endianness flag
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-soc-component-Add-legacy_dai_naming-flag.patch.
+- commit 9c88bef
+
+- ASoC: madera: Replace kernel.h with the necessary inclusions
+ (jsc#PED-850).
+- ASoC: core: Add new SOC_DOUBLE_SX_TLV macro (jsc#PED-850).
+- ASoC: hdmi-codec: Update to modern DAI terminology
+ (jsc#PED-850).
+- ASoC: soc.h: Add SOC_SINGLE_S_EXT_TLV macro (jsc#PED-850).
+- ASoC: soc.h: Introduce SOC_DOUBLE_R_S_EXT_TLV() macro
+ (jsc#PED-850).
+- ASoC: Intel: avs: Declare vendor tokens (jsc#PED-850).
+- ASoC: soc.h: Add SOC_SINGLE_S_TLV() macro (jsc#PED-850).
+- ALSA: cleanup double word in comment (jsc#PED-850).
+- ASoC: rt5682s: add delay time to fix pop sound issue
+ (jsc#PED-850).
+- ALSA: uapi: use C90 comment style instead of C99 style
+ (jsc#PED-850).
+- ALSA: pcm: comment about relation between msbits hw parameter
+ and [S|U]32 formats (jsc#PED-850).
+- commit f97ebfc
+
+- ASoC: soc-component: Remove conditional definition of debugfs
+ data members (jsc#PED-850).
+- Refresh patches.suse/asoc-suse-kabi-padding.patch.
+- commit b948484
+
+- ASoC: SOF: Drop resindex_dma_base, dma_engine, dma_size from
+ sof_dev_desc (jsc#PED-850).
+- ALSA: hda_audio_ext: fix kernel-doc (jsc#PED-850).
+- commit 1783f94
+
+- ALSA: hda: Once again fix regression of page allocations with
+ IOMMU (jsc#PED-850).
+- ALSA: memalloc: Revive x86-specific WC page allocations again
+ (jsc#PED-850).
+- ASoC: DPCM: Don't pick up BE without substream (jsc#PED-850).
+- ALSA: pcm: Replace sprintf() with sysfs_emit() (jsc#PED-850).
+- ALSA: core: Replace scnprintf() with sysfs_emit() (jsc#PED-850).
+- ALSA: control-led: Replace sprintf() with sysfs_emit()
+ (jsc#PED-850).
+- ALSA: pcm: Use deferred fasync helper (jsc#PED-850).
+- ASoC: soc-pcm: demote warnings on non-atomic BE connection
+ (jsc#PED-850).
+- ASoC: soc-core.c: share code for
+ snd_soc_of_get_dai_link_cpus/codecs() (jsc#PED-850).
+- ASoC: soc-core.c: fixup snd_soc_of_get_dai_link_cpus()
+ (jsc#PED-850).
+- ASoC: dapm: Move stereo autodisable check (jsc#PED-850).
+- ASoC: topology: KUnit: Followup prototype change of
+ snd_soc_unregister_card() (jsc#PED-850).
+- ASoC: ops: Fix integer detection for when max possible values >
+ 1 (jsc#PED-850).
+- ASoC: ops: Fix boolean/integer detection for simple controls
+ (jsc#PED-850).
+- ASoC: ops: Don't modify the driver's plaform_max when reading
+ state (jsc#PED-850).
+- ASoC: Introduce 'fixup_controls' card method (jsc#PED-850).
+- ASoC: soc-dai: Remove set_fmt_new callback (jsc#PED-850).
+- ASoC: core: Always send the CPU DAI a direct clock specifier
+ (jsc#PED-850).
+- ASoC: ops: Remove unneeded delay.h inclusion (jsc#PED-850).
+- ASoC: ops: Clarify snd_soc_info_volsw_sx() (jsc#PED-850).
+- ALSA: core: Fix missing return value comments for kernel docs
+ (jsc#PED-850).
+- ALSA: memalloc: Fix missing return value comments for kernel
+ docs (jsc#PED-850).
+- ALSA: control: Fix missing return value comments for kernel docs
+ (jsc#PED-850).
+- ALSA: compress: Fix kernel doc warnings (jsc#PED-850).
+- ALSA: dmaengine: Fix missing return value comments for kernel
+ docs (jsc#PED-850).
+- ALSA: pcm: Fix missing return value comments for kernel docs
+ (jsc#PED-850).
+- ALSA: compress: Enable kernel doc markers for some functions
+ (jsc#PED-850).
+- ALSA: rawmidi: Take buffer refcount while draining output
+ (jsc#PED-850).
+- ALSA: rawmidi: Check stream state at exported functions
+ (jsc#PED-850).
+- ALSA: rawmidi: Take open_mutex around parameter changes
+ (jsc#PED-850).
+- ALSA: rawmidi: Move lock to snd_rawmidi_substream (jsc#PED-850).
+- ALSA: rawmidi: Make internal functions local static
+ (jsc#PED-850).
+- ASoC: topology: Drop superfluous check of
+ CONFIG_SND_CTL_VALIDATION (jsc#PED-850).
+- ALSA: memalloc: Drop x86-specific hack for WC allocations
+ (jsc#PED-850).
+- ASoC: soc-pcm: fix BE transition for TRIGGER_START
+ (jsc#PED-850).
+- ASoC: soc-component: Update handling to component delays
+ (jsc#PED-850).
+- ASoC: core: Pass legacy_dai_naming flag directly (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: Use default config when none
+ is given (jsc#PED-850).
+- ASoC: soc-core: remove always-false path (jsc#PED-850).
+- ASoC: soc-pcm: improve BE transition for TRIGGER_START
+ (jsc#PED-850).
+- ASoC: soc-pcm: improve BE transition for PAUSE_RELEASE
+ (jsc#PED-850).
+- commit e51218e
+
+- ASoC: soc-utils: Add helper to calculate BCLK from TDM info
+ (jsc#PED-850).
+- ASoC: topology: Rename soc_tplg_init_kcontrol() function
+ (jsc#PED-850).
+- ASoC: topology: Correct error message (jsc#PED-850).
+- ASoC: topology: Rename SOC_TPLG_PASS_MIXER to _CONTROL
+ (jsc#PED-850).
+- ASoC: topology: Return bool instead of int (jsc#PED-850).
+- ASoC: topology: Remove unnecessary looping (jsc#PED-850).
+- ASoC: topology: Use for loop instead of while (jsc#PED-850).
+- ASoC: Introduce snd_soc_of_get_dai_link_cpus (jsc#PED-850).
+- ALSA: seq: replace ternary operator with max() (jsc#PED-850).
+- ASoC: soc-core: add debugfs_prefix member to
+ snd_soc_component_driver (jsc#PED-850).
+- ASoC: soc-pcm: use GFP_KERNEL when the code is sleepable
+ (jsc#PED-850).
+- ALSA: memalloc: Add fallback SG-buffer allocations for x86
+ (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: set period_bytes_min based
+ on maxburst (jsc#PED-850).
+- ASoC: topology: Remove superfluous error prints (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: separate max_buffer_size
+ assignment (jsc#PED-850).
+- ALSA: oss: Release temporary buffers upon errors (jsc#PED-850).
+- ALSA: core: Fix typo in 'PCM Timer Interface' help
+ (jsc#PED-850).
+- ALSA: seq: oss: fix typo (jsc#PED-850).
+- ALSA: seq: oss: use kzalloc (jsc#PED-850).
+- commit 9ab936f
+
+- ASoC: ops: Check for negative values before reading them
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-7f3d90a35196.patch.
+- Refresh
+ patches.suse/ASoC-ops-Shift-tested-values-in-snd_soc_put_volsw-by.patch.
+- commit 08e21d0
+
+- ASoC: soc-pcm: Move debugfs removal out of spinlock
+ (jsc#PED-850).
+- ASoC: soc-pcm: Fix DPCM lockdep warning due to nested stream
+ locks (jsc#PED-850).
+- ASoC: topology: Fix typo (jsc#PED-850).
+- ASoC: core: Add snd_soc_of_parse_pin_switches() from
+ simple-card-utils (jsc#PED-850).
+- ASoC: dai_dma: remove slave_id field (jsc#PED-850).
+- ASoC: soc-pcm: fix BE handling of PAUSE_RELEASE (jsc#PED-850).
+- ASoC: soc-pcm: test refcount before triggering (jsc#PED-850).
+- ASoC: soc-pcm: serialize BE triggers (jsc#PED-850).
+- commit 0a8975a
+
+- ASoC: soc-pcm: Fix and cleanup DPCM locking (jsc#PED-850).
+- ASoC: soc-pcm: align BE 'atomicity' with that of the FE
+ (jsc#PED-850).
+- ASoC: soc-pcm: use GFP_ATOMIC for dpcm structure (jsc#PED-850).
+- ASoC: soc-pcm: tidyup soc_pcm_pointer()'s delay update method
+ (jsc#PED-850).
+- ALSA: oss: remove useless NULL check before kfree (jsc#PED-850).
+- ALSA: memalloc: Unify x86 SG-buffer handling (take#3)
+ (jsc#PED-850).
+- ASoC: Stop dummy from overriding hwparams (jsc#PED-850).
+- ASoC: topology: Change topology device to card device
+ (jsc#PED-850).
+- ASoC: topology: Use correct device for prints (jsc#PED-850).
+- commit 7db64dd
+
+- ASoC: topology: handle endianness warning (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-topology-Correct-error-handling-in-soc_tplg_dap.patch.
+- commit 1aa23db
+
+- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at
+ dmaengine_pcm_hw_params() (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-dmaengine-Restore-NULL-prepare_slave_config-cal.patch.
+- Refresh
+ patches.suse/ASoC-dmaengine-do-not-use-a-NULL-prepare_slave_confi.patch.
+- commit 2a6f02e
+
+- ASoC: topology: Check for dapm widget completeness
+ (jsc#PED-850).
+- ASoC: topology: Add header payload_size verification
+ (jsc#PED-850).
+- ASoC: core: Remove invalid snd_soc_component_set_jack call
+ (jsc#PED-850).
+- ASoC: soc-core: accept zero format at
+ snd_soc_runtime_set_dai_fmt() (jsc#PED-850).
+- ASoC: soc-core: tidyup empty function (jsc#PED-850).
+- ASoC: soc-pcm: tidyup soc_pcm_hw_clean() - step2 (jsc#PED-850).
+- ASoC: soc-pcm: tidyup soc_pcm_hw_clean() - step1 (jsc#PED-850).
+- ASoC: soc-component: improve error reporting for register access
+ (jsc#PED-850).
+- ASoC: dmaengine: Introduce module option
+ prealloc_buffer_size_kbytes (jsc#PED-850).
+- ASoC: compress/component: Use
+ module_get_when_open/put_when_close for cstream (jsc#PED-850).
+- ASoC: soc-component: Convert the mark_module to void*
+ (jsc#PED-850).
+- ASoC: soc-topology: Move template info print
+ soc_tplg_dapm_widget_create() (jsc#PED-850).
+- ASoC: Revert PCM trigger changes (jsc#PED-850).
+- ASoC: soc-pcm: test refcount before triggering (jsc#PED-850).
+- ASoC: soc-ac97: cleanup cppcheck warning (jsc#PED-850).
+- ASoC: soc-component: cleanup cppcheck warning at
+ snd_soc_pcm_component_pm_runtime_get() (jsc#PED-850).
+- ASoC: soc-jack: cleanup cppcheck warning for CONFIG_GPIOLIB
+ (jsc#PED-850).
+- ASoC: soc-jack: cleanup cppcheck warning at
+ snd_soc_jack_report() (jsc#PED-850).
+- ASoC: soc-dai: cleanup cppcheck warning at snd_soc_pcm_dai_new()
+ (jsc#PED-850).
+- ASoC: soc-dai: cleanup cppcheck warning at
+ snd_soc_dai_link_set_capabilities() (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at
+ dmaengine_copy_user() (jsc#PED-850).
+- ASoC: soc-generic-dmaengine-pcm: cleanup cppcheck warning at
+ dmaengine_pcm_new() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ soc_dapm_dai_stream_event() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ snd_soc_dapm_new_controls() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ snd_soc_dapm_weak_routes() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ snd_soc_dapm_add_routes() (jsc#PED-850).
+- commit b5f8c2c
+
+- ASoC: soc-ops: cleanup cppcheck warning at snd_soc_put_xr_sx()
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-2b7c46369f09.patch.
+- Refresh
+ patches.suse/ASoC-ops-Reject-out-of-bounds-values-in-snd_soc_put_-4cf28e9ae6e2.patch.
+- commit 6287e8d
+
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ snd_soc_dapm_del_route() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_seq_run()
+ (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ dapm_seq_check_event() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_new_dai_link()
+ (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_new_pga()
+ (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at
+ dapm_set_mixer_path_status() (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_connect_mux()
+ (jsc#PED-850).
+- ASoC: soc-dapm: cleanup cppcheck warning at dapm_wcache_lookup()
+ (jsc#PED-850).
+- ASoC: soc-ops: cleanup cppcheck warning at snd_soc_get_xr_sx()
+ (jsc#PED-850).
+- commit 426f2b5
+
+- ASoC: soc-ops: cleanup cppcheck warning at
+ snd_soc_put_volsw_sx() (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-ops-Fix-stereo-change-notifications-in-snd_soc_-7f3d90a35196.patch.
+- Refresh
+ patches.suse/ASoC-ops-Reject-out-of-bounds-values-in-snd_soc_put_-4f1e50d6a9cf.patch.
+- commit 26b601a
+
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_get_dai_name() (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-soc-core-skip-zero-num_dai-component-in-searchi.patch.
+- commit 09f5c3a
+
+- ASoC: soc-ops: cleanup cppcheck warning at
+ snd_soc_limit_volume() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ snd_soc_find_dai_link() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ soc_tplg_kcontrol_elems_load() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ soc_tplg_dapm_widget_elems_load() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ soc_tplg_dai_elems_load() (jsc#PED-850).
+- ASoC: soc-topology: cleanup cppcheck warning at
+ soc_tplg_process_headers() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_of_parse_audio_routing() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_of_parse_audio_simple_widgets() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_add_controls() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_unregister_component() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_daifmt_parse_format() (jsc#PED-850).
+- ASoC: soc-core: cleanup cppcheck warning at
+ snd_soc_set_dmi_name() (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at
+ dpcm_runtime_setup_be_chan() (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at dpcm_be_is_active()
+ (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at
+ soc_get_playback_capture() (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at
+ soc_pcm_components_close() (jsc#PED-850).
+- ASoC: soc-pcm: cleanup cppcheck warning at soc_pcm_apply_msb()
+ (jsc#PED-850).
+- commit f269c98
+
+- ASoC: Export DAI register and widget ctor and dctor functions
+ (jsc#PED-850).
+- commit 7fc094d
+
+- ALSA: Add snd_pcm_direction_name() helper (jsc#PED-850).
+- commit d9a2cc8
+
+- Update config files: enable CONFIG_SND_SOC_HDA (jsc#PED-850)
+- commit 7be7af9
+
+- ASoC: hdac_hda: Add endianness flag in snd_soc_component_driver
+ (jsc#PED-850).
+- ASoC: hdac_hda: Avoid unexpected match when pcm_name is "Analog"
+ (jsc#PED-850).
+- commit 5773ce0
+
+- ALSA: hda: Skip event processing for unregistered codecs
+ (jsc#PED-850).
+- Refresh patches.suse/hdaudio-suse-kabi-padding.patch.
+- commit cc04cc9
+
+- ALSA: hda/hdmi: add keep-alive support for ADL-P and DG2
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ALSA-hda-hdmi-Fix-the-converter-allocation-for-the-s.patch.
+- Refresh
+ patches.suse/ALSA-hda-hdmi-change-type-for-the-assigned-variable.patch.
+- commit d6b0bb5
+
+- ALSA: hda: Fix crash due to jack poll in suspend (jsc#PED-850).
+- Revert "ALSA: hda: Fix page fault in snd_hda_codec_shutdown()"
+ (jsc#PED-850).
+- ASoC: codecs: Add HD-Audio codec driver (jsc#PED-850).
+- ALSA: hda: Fix page fault in snd_hda_codec_shutdown()
+ (jsc#PED-850).
+- ALSA: hda: Fix put_device() inconsistency in error path
+ (jsc#PED-850).
+- ALSA: hda: Make device usage_count consistent across subsequent
+ probing (jsc#PED-850).
+- ALSA: hda: Fix null-ptr-deref when i915 fails and hdmi is
+ denylisted (jsc#PED-850).
+- ALSA: hda: MTL: add HD Audio PCI ID and HDMI codec vendor ID
+ (jsc#PED-850).
+- ALSA: hda/via: Delete does not require return (jsc#PED-850).
+- ALSA: hda/tegra: Enable Jack poll for tegra (jsc#PED-850).
+- ALSA: hda: Jack detection poll in suspend state (jsc#PED-850).
+- ALSA: hda/hdmi: add HDMI codec VID for Raptorlake-P
+ (jsc#PED-850).
+- ALSA: hda: Add helper macros for DSP capable devices
+ (jsc#PED-850).
+- ALSA: hda: Expose codec cleanup and power-save functions
+ (jsc#PED-850).
+- ALSA: hda: Update and expose codec register procedures
+ (jsc#PED-850).
+- ALSA: hda: Update and expose snd_hda_codec_device_init()
+ (jsc#PED-850).
+- commit 47acdb2
+
+- ALSA: hda: intel-dsp-config: add missing RaptorLake PCI IDs
+ (jsc#PED-850).
+- ALSA: hda: Replace sprintf() with sysfs_emit() (jsc#PED-850).
+- ALSA: hda: Remove unused macro definition (jsc#PED-850).
+- ALSA: hda: Reset all SIE bits in INTCTL (jsc#PED-850).
+- tracing: ALSA: hda: Remove string manipulation out of the fast
+ path (jsc#PED-850).
+- ALSA: intel-dspconfig: add ES8336 support for CNL (jsc#PED-850).
+- ALSA: intel-dsp-config: add more ACPI HIDs for ES83x6 devices
+ (jsc#PED-850).
+- ALSA: hda/i915 - avoid hung task timeout in i915 wait
+ (jsc#PED-850).
+- ALSA: hda: Add snd_hdac_ext_bus_link_at() helper (jsc#PED-850).
+- ALSA: HDA: hdac_ext_stream: use consistent prefixes for
+ variables (jsc#PED-850).
+- commit 4592dc3
+
+- Add already cherry-picked IDs for ASoC fixes
+- commit 1873074
+
+- ASoC: SOF: Intel: pci-mtl: fix firmware name (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Free the ida when IPC fails in
+ sof_ipc4_widget_setup() (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195: Import namespace
+ SND_SOC_SOF_MTK_COMMON (jsc#PED-850).
+- ASoC: amd: acp: add missing platform_device_unregister()
+ in acp_pci_probe() (jsc#PED-850).
+- ALSA: hda: intel-nhlt: Move structs out of #define block
+ (jsc#PED-850).
+- codecs: rt5682s: fix an incorrect NULL check on list iterator
+ (jsc#PED-850).
+- ASoC: rt5682s: Fix crash due to out of scope stack vars
+ (jsc#PED-850).
+- ASoC: soc-acpi: Set mach->id field on comp_ids matches
+ (jsc#PED-850).
+- commit 36bf397
+
+- ASoC: Intel: sof_sdw: add support for Dell SKU 0AFF
+ (jsc#PED-850).
+- ASoC: SOF: Kconfig: Make IPC_MESSAGE_INJECTOR depend on
+ SND_SOC_SOF (jsc#PED-850).
+- ASoC: SOF: Kconfig: Make IPC_FLOOD_TEST depend on SND_SOC_SOF
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: fix alh_group_ida max value
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: fix wrong use of sizeof in
+ sof_ipc4_widget_setup_comp_src() (jsc#PED-850).
+- soundwire: qcom: remove duplicate reset control get
+ (jsc#PED-850).
+- ASoC: Intel: fix sof_es8336 probe (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Fix potential buffer overflow by
+ snprintf() (jsc#PED-850).
+- ASoC: Intel: avs: Fix potential buffer overflow by snprintf()
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Fix clang -Wformat warning
+ (jsc#PED-850).
+- ASoC: amd: yc: Update DMI table entries for AMD platforms
+ (jsc#PED-850).
+- ASoC: amd: acp: Fix initialization of ext_intr_stat1 in
+ i2s_irq_handler() (jsc#PED-850).
+- ASoC: Intel: sof_nau8825: Move quirk check to the front in
+ late probe (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Perform quirk check first in card
+ late probe (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Add support for mtl_mx98357_rt5682
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: remove hard-coded SSP selection
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: reset the num_links during probe
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add support for HDMI_In capture
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: ignore GpioInt when looking for
+ speaker/headset GPIO lines (jsc#PED-850).
+- ASoC: Intel: sof_es8336: Fix GPIO quirks set via module option
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: Add entry for sof_es8336 in ADL match
+ table (jsc#PED-850).
+- ASoC: Intel: sof_sdw: add support for Dell SKU 0AF0
+ (jsc#PED-850).
+- ASoC: SOF: dai-intel: add SOF_DAI_INTEL_SSP_CLKCTRL_MCLK_AON
+ bit (jsc#PED-850).
+- ASoC: SOF: Add cont_update_posn to platform parameters
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: add sanity check on SSP index reported
+ by NHLT (jsc#PED-850).
+- ASoC: amd: yc: Update DMI table entries (jsc#PED-850).
+- ASoC: SOF: dai-intel: add SOF_DAI_INTEL_SSP_CLKCTRL_MCLK/BCLK_ES
+ bits (jsc#PED-850).
+- commit a3024d1
+
+- Update config files: update for AMD ACP (jsc#PED-850)
+- commit a6ab389
+
+- ASoC: Intel: avs: Use lookup table to create modules
+ (jsc#PED-850).
+- ASoC: amd: vangogh: Use non-legacy DAI naming for cs35l41
+ (jsc#PED-850).
+- ASoC: amd: enable RPL Platform acp drivers build (jsc#PED-850).
+- ASoC: amd: add RPL Platform pci driver pm-ops (jsc#PED-850).
+- ASoC: amd: add RPL Platform init/de-init functions
+ (jsc#PED-850).
+- ASoC: amd: add ACP PCI driver for RPL platform (jsc#PED-850).
+- ASoC: amd: add RPL Platform acp header file (jsc#PED-850).
+- ASoC: amd: acp: Add error handling cases (jsc#PED-850).
+- ASoC: amd: acp: Modify const resource struct variable to generic
+ (jsc#PED-850).
+- ASoC: amd: acp: Drop superfluous mmap callback (jsc#PED-850).
+- ASoC: amd: acp: Modify local variables name to generic
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: test DMA buffer first in hw_params
+ (jsc#PED-850).
+- ASoC: SOF: probes: rename assign/free callbacks as
+ startup/shutdown (jsc#PED-850).
+- ASoC: SOF: Intel: hda: only fixup topology name if not set
+ already (jsc#PED-850).
+- ASoC: SOF: Intel: hda: don't set fw_filename (jsc#PED-850).
+- ASoC: SOF: Intel: atom: don't keep a temporary string in
+ fixup_tplg_name (jsc#PED-850).
+- ASoC: SOF: ipc3-loader: Print out the non matching ext_man
+ magic number (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: set domain bit based on dp domain type
+ (jsc#PED-850).
+- ASoC: SOF: add ipc4 SRC module support (jsc#PED-850).
+- ASoC: SOF: ipc4-pcm: set pcm rate to dai setting (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: move ida allocate/free to
+ widget_setup/free (jsc#PED-850).
+- ASoC: SOF: Intel: MTL: remove redundant snd_sof_dsp_read()
+ call (jsc#PED-850).
+- ASoC: SOF: mediatek: fix mt8195 StatvectorSel wrong setting
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Revise mt8195 boot flow (jsc#PED-850).
+- ASoC: amd: yc: Decrease level of error message (jsc#PED-850).
+- ASoC: SOF: Intel: enable dmic handling with 2 or fewer SoundWire
+ links (jsc#PED-850).
+- ASoC: Intel: sof_sdw: add quirk for HP Omen 16-k0005TX
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add table for HP Omen 16-k0005TX
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: avoid oops in error handling
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt5677: Mark BE DAI as nonatomic (jsc#PED-850).
+- ASoC: Intel: bdw_rt5650: Mark BE DAI as nonatomic (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Mark BE DAI as nonatomic (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Mark BE DAI as nonatomic (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: fix copy in
+ sof_msg_inject_ipc4_dfs_write() (jsc#PED-850).
+- ASoC: SOF: Intel: add trigger callback into sdw_callback
+ (jsc#PED-850).
+- soundwire: Intel: add trigger callback (jsc#PED-850).
+- ASoC: amd: fix Jadeite kconfig warning and build errors
+ (jsc#PED-850).
+- ASoC: amd: Fix error pointer dereference (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Correct the ROM/FW state reporting code
+ (jsc#PED-850).
+- uapi: sof: abi: Bump SOF ABI for ext_data_length (jsc#PED-850).
+- ASoC: SOF: compress: Prevent current kernel running with older
+ FW (jsc#PED-850).
+- ASoC: SOF: Copy compress parameters into extended data
+ (jsc#PED-850).
+- ASoC: SOF: compress: Dynamically allocate pcm params struct
+ (jsc#PED-850).
+- ASoC: SOF: Intel: mtl: Do not process IPC reply before firmware
+ boot (jsc#PED-850).
+- ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before
+ firmware boot (jsc#PED-850).
+- ASoC: SOF: Intel: cnl: Do not process IPC reply before firmware
+ boot (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: Do snd_hdac_ext_stream_decouple()
+ only once (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: Drop misleading comment regarding
+ dma_data (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Prevent double freeing of
+ ipc_control_data via load_bytes (jsc#PED-850).
+- ASoC: SOF: sof-client-probes: Only load the driver if IPC3 is
+ used (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Introduce skip_imr_boot flag
+ (jsc#PED-850).
+- ASoC: SOF: topology: remove unused variable (jsc#PED-850).
+- ASoC: Intel: avs: Update AVS_FW_INIT_TIMEOUT_US declaration
+ (jsc#PED-850).
+- ASoC: Intel: avs: Lower UNLOAD_MULTIPLE_MODULES IPC timeout
+ (jsc#PED-850).
+- ASoC: Intel: avs: Replace hardcodes with SD_CTL_STREAM_RESET
+ (jsc#PED-850).
+- ASoC: Intel: avs: Recognize FW_CFG_RESERVED (jsc#PED-850).
+- ASoC: Intel: avs: Use helper function to set up DMA
+ (jsc#PED-850).
+- ASoC: Intel: avs: Set max DMA segment size (jsc#PED-850).
+- ASoC: Intel: avs: Block IPC channel on suspend (jsc#PED-850).
+- ASoC: Intel: avs: Shield LARGE_CONFIG_GETs against zero
+ payload_size (jsc#PED-850).
+- commit aa38bc3
+
+- Update config files: update for AMD MCP (jsc#PED-850)
+- commit 4e8f3fb
+
+- ASoC: Intel: avs: Copy only as many RX bytes as necessary
+ (jsc#PED-850).
+- ASoC: Intel: avs: Relax DSP core transition timings
+ (jsc#PED-850).
+- ASoC: Intel: avs: Assign I2S gateway when parsing topology
+ (jsc#PED-850).
+- ASoC: Intel: avs: Register HDAudio ext-bus operations
+ (jsc#PED-850).
+- ASoC: amd: acp: Add legacy audio driver support for Rembrandt
+ platform (jsc#PED-850).
+- ASoC: amd: acp: ACP code generic to support newer platforms
+ (jsc#PED-850).
+- ASoC: amd: acp: Remove rt1019_1 codec conf from machine driver
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: free memories allocated in
+ sof_ipc4_get_audio_fmt (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: check dai->private in ipc_free()
+ (jsc#PED-850).
+- ASoC: SOF: remove warning on ABI checks (jsc#PED-850).
+- commit 22832f9
+
+- Update config files: update for AMD MCP (jsc#PED-850)
+- commit aca4025
+
+- ASoC: Intel: sof_cs42l42: add adl_mx98360a_cs4242 board config
+ (jsc#PED-850).
+- ASoC: Intel: sof_cs42l42: support BT offload audio
+ (jsc#PED-850).
+- ASoC: amd: Remove duplicated include in acp-es8336.c
+ (jsc#PED-850).
+- ASoC: amd: fix for variable set but not used warning
+ (jsc#PED-850).
+- ASoC: amd: drop machine driver remove function (jsc#PED-850).
+- ASoC: amd: remove unused header file inclusion (jsc#PED-850).
+- ASoC: amd: acp-es8336: use static variables (jsc#PED-850).
+- ASoC: amd: fix ACPI dependency compile errors and warnings
+ (jsc#PED-850).
+- ASoC: Intel: avs: Fix i2s_test card name initialization
+ (jsc#PED-850).
+- ASoC: amd: enable machine driver build for Jadeite platform
+ (jsc#PED-850).
+- ASoC: amd: add Machine driver for Jadeite platform
+ (jsc#PED-850).
+- ASoC: amd: add I2S MICSP instance support (jsc#PED-850).
+- ASoC: SOF: Intel: byt: remove duplicating driver data retrieval
+ (jsc#PED-850).
+- ASoC: SOF: Intel: bdw: remove duplicating driver data retrieval
+ (jsc#PED-850).
+- ASoC: Intel: catpt: remove duplicating driver data retrieval
+ (jsc#PED-850).
+- ASoC: Intel: avs: correct config reference for I2S test board
+ (jsc#PED-850).
+- ASoC: Intel: avs: Remove now redundant non_legacy_dai_naming
+ flag (jsc#PED-850).
+- ASoC: sof: Migrate to new style legacy DAI naming flag
+ (jsc#PED-850).
+- ASoC: amd: Migrate to new style legacy DAI naming flag
+ (jsc#PED-850).
+- ASoC: Intel: Migrate to new style legacy DAI naming flag
+ (jsc#PED-850).
+- commit f8a95a0
+
+- soundwire: intel: Migrate to new style legacy DAI naming flag
+ (jsc#PED-850).
+- ASoC: soc-component: Add legacy_dai_naming flag (jsc#PED-850).
+- ASoC: Intel: skylake: skl-pcm: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: Intel: catpt: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Remove FE DAI ops (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Improve codec_init() quality
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Improve hw_params() debug-ability
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Improve probe() function quality
+ (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Update file comments (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Update code indentation (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Reword driver name (jsc#PED-850).
+- ASoC: Intel: bdw_rt286: Reword prefixes of all driver members
+ (jsc#PED-850).
+- ASoC: Intel: Rename broadwell source file to bdw_rt286
+ (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Improve hw_params() debug-ability
+ (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Improve probe() function quality
+ (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Update file comments (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Update code indentation (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Reword driver name (jsc#PED-850).
+- ASoC: Intel: hsw_rt5640: Reword prefixes of all driver members
+ (jsc#PED-850).
+- ASoC: Intel: Rename haswell source file to hsw_rt5640
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Align mt8186 clock names with dt-bindings
+ (jsc#PED-850).
+- ASoC: amd: acp: Fix error handling in .remove() (jsc#PED-850).
+- ASoC: SOF: pcm: use pm_resume_and_get() on component probe
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: remap jack pins (jsc#PED-850).
+- ASoC: Intel: sof_nau8825: remap jack pins (jsc#PED-850).
+- ASoC: Intel: sof_da7219_max98373: remap jack pins (jsc#PED-850).
+- ASoC: Intel: sof_cs42l42: remap jack pins (jsc#PED-850).
+- ASoC: Intel: cml_rt1011_rt5682: remap jack pins (jsc#PED-850).
+- ASoC: Intel: glk_rt5682_max98357a: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: bxt_da7219_max98357a: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: kbl_rt5663_rt5514_max98927: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: kbl_da7219_max98927: remap jack pins (jsc#PED-850).
+- ASoC: Intel: kbl_da7219_max98357a: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: kbl_rt5663_max98927: remap jack pins (jsc#PED-850).
+- ASoC: Intel: skl_nau88l25_ssm4567: remap jack pins
+ (jsc#PED-850).
+- ASoC: Intel: skl_nau88l25_max98357a: remap jack pins
+ (jsc#PED-850).
+- commit cd8bc63
+
+- ASoC: codecs: rt715-sdca: remove useless assignment of ops
+ (jsc#PED-850).
+- commit e71653e
+
+- ASoC: soc-card: Create jack kcontrol without pins (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-Intel-sof_rt5682-fix-out-of-bounds-array-access.patch.
+- Refresh
+ patches.suse/ASoC-amd-acp-Add-support-for-nau8825-and-max98360-ca.patch.
+- commit 796e1db
+
+- ASoC: Intel: boards: sof_sdw: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: Intel: boards: hda: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc4: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-loader: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: Intel: mtl: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- commit eb5209d
+
+- Update config files: Intel SOF updates (jsc#PED-850)
+- commit 8eabe5a
+
+- ASoC: SOF: Intel: hda-dai: remove use of __func__ in dev_dbg
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: report error on stream not opened
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dsp: report error on power-up/down
+ (jsc#PED-850).
+- ASoC: SOF: Intel: IPC4: enable IMR boot (jsc#PED-850).
+- ASoC: Intel: Skylake: remove redundant re-assignments to
+ pointer array (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Fix error code in
+ sof_ipc4_volume_put() (jsc#PED-850).
+- ASoC: SOF: Intel: Add support for MeteorLake (MTL)
+ (jsc#PED-850).
+- ASoC: SOC: Intel: introduce cl_init callback (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: add SoundWire/ALH aggregation support
+ (jsc#PED-850).
+- ASoC: SOF: Compile and runtime IPC version selection
+ (jsc#PED-850).
+- ASoC: SOF: topology: add code to parse config params for
+ ACPDMIC dai (jsc#PED-850).
+- ASoC: SOF: reduce default verbosity of IPC logs (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: enhance debug messages (jsc#PED-850).
+- ASoC: intel: sof_sdw: add RT711 SDCA card for MTL platform
+ (jsc#PED-850).
+- ASoC: SOF: IPC4: add sdw blob (jsc#PED-850).
+- AsoC: SOF: ipc4-topology: Add dai_get_clk op (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for SSP/DMIC DAI's
+ (jsc#PED-850).
+- ASoC: SOF: Add a new IPC op for parsing topology manifest
+ (jsc#PED-850).
+- ASoC: SOF: Add two new structures for topology manifest data
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: init NHLT for IPC4 (jsc#PED-850).
+- ASoC: SOF: Add ops_free (jsc#PED-850).
+- ASoC: SOF: IPC4: set the BE DAI ops (jsc#PED-850).
+- ASoC: SOF: ipc4-pcm: Expose sof_ipc4_set_pipeline_state()
+ (jsc#PED-850).
+- commit 164020c
+
+- ASoC: SOF: ipc4-topology: Add the dai_config op (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add route_setup/route_free ops
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add widget_setup/widget_free ops
+ (jsc#PED-850).
+- ASoC: SOF: IPC4: Add pcm ops (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add control IO ops (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add control_setup op (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for parsing mixer widgets
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for parsing and preparing
+ pga widgets (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add prepare op for DAI type widgets
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add prepare op for AIF type widgets
+ (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for parsing DAI_IN/DAI_OUT
+ widgets (jsc#PED-850).
+- ASoC: SOF: ipc4-topology: Add support for parsing AIF_IN/AIF_OUT
+ widgets (jsc#PED-850).
+- ASoC: SOF: IPC4: Introduce topology ops (jsc#PED-850).
+- ASoC: SOF: Add topology tokens for IPC4 (jsc#PED-850).
+- ASoC: SOF: ipc4: implement pm ctx_save callback (jsc#PED-850).
+- ASoC: SOF: Intel: Switch to use the generic
+ pm_ops.set_core_state (jsc#PED-850).
+- ASoC: SOF: ipc4: Add set_core_state pm_ops implementation
+ (jsc#PED-850).
+- ASoC: SOF: ipc3: Add set_core_state pm_ops implementation
+ (jsc#PED-850).
+- ASoC: SOF: sof_ipc_pm_ops: Add support for DSP core power
+ management (jsc#PED-850).
+- ASoC: SOF: make ctx_store and ctx_restore as optional
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Return from dtrace_read if there is
+ no new data available (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Add helper function to update the
+ sdev->host_offset (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Introduce SOF_DTRACE_INITIALIZING state
+ (jsc#PED-850).
+- ASoC: codecs: rt298: Reorganize jack detect handling
+ (jsc#PED-850).
+- ASoC: codecs: rt286: Reorganize jack detect handling
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: SOF: debug: Clarify the IPC timeout handling path
+ (jsc#PED-850).
+- ASoC: Intel: Rename set_fmt_new back to set_fmt (jsc#PED-850).
+- ASoC: amd: vangogh: Rename set_fmt_new back to set_fmt
+ (jsc#PED-850).
+- ASoC: Intel: Update to use set_fmt_new callback (jsc#PED-850).
+- commit f503879
+
+- ASoC: amd: vangogh: Update to use set_fmt_new callback
+ (jsc#PED-850).
+- ASoC: core: Add set_fmt_new callback that directly specifies
+ provider (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195 suspend check dsp idle
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195 modify dram type as non-cache
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Add shared_size for mediatek common chip
+ information (jsc#PED-850).
+- ASoC: SOF: mediatek: revise mt8195 clock sequence (jsc#PED-850).
+- ASoC: SOF: amd: Add SOF pm ops callback for Renoir
+ (jsc#PED-850).
+- ASoC: Intel: broadwell: Make broadwell_disable_jack() return
+ void (jsc#PED-850).
+- ASoC: amd: acp: Add support for rt5682s and rt1019 card with
+ hs instance (jsc#PED-850).
+- ASoC: amd: acp: Add support for nau8825 and max98360 card
+ (jsc#PED-850).
+- ASoC: Intel: sof_pcm512x: remove unnecessary init (jsc#PED-850).
+- ASoC: Intel: boards: reset acpi_chan_package (jsc#PED-850).
+- ASoC: Intel: atom: controls: remove useless initializations
+ (jsc#PED-850).
+- ASoC: Intel: atom: sst_ipc: remove useless initializations
+ (jsc#PED-850).
+- ASoC: Intel: atom: sst_ipc: remove redundant test (jsc#PED-850).
+- ASoC: Intel: atom: sst: remove useless initialization
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add da7219 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add max98373 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add max98357a machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add ssm4567 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add nau8825 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add rt5682 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add rt298 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add rt286 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add rt274 machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add I2S-test machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add DMIC machine board (jsc#PED-850).
+- ASoC: Intel: avs: Add HDAudio machine board (jsc#PED-850).
+- ASoC: Intel: sof_sdw: allow HDaudio/HDMI disable (jsc#PED-850).
+- ASoC: Intel: boards: rename RTL1019 compatible driver to rt1019p
+ (jsc#PED-850).
+- ASoC: SOF: Intel: add MeteorLake machines (jsc#PED-850).
+- commit b5fa9c4
+
+- ASoC: amd: acp: fix typo in comment (jsc#PED-850).
+- soundwire: qcom: Enable software clock gating requirement flag
+ (jsc#PED-850).
+- soundwire: qcom: Add flag for software clock gating check
+ (jsc#PED-850).
+- soundwire: qcom: Add support for controlling audio CGCR from
+ HLOS (jsc#PED-850).
+- soundwire: intel: use pm_runtime_resume() on component probe
+ (jsc#PED-850).
+- soundwire: peripheral: remove useless ops pointer (jsc#PED-850).
+- soundwire: revisit driver bind/unbind and callbacks
+ (jsc#PED-850).
+- commit cf9d935
+
+- ASoC: Intel: sof_rt5682: fix out-of-bounds array access
+ (jsc#PED-850).
+- ASoC: SOF: Intel: disable IMR boot when resuming from ACPI S4
+ and S5 states (jsc#PED-850).
+- ASoC: SOF: pm: add definitions for S4 and S5 states
+ (jsc#PED-850).
+- ASoC: SOF: pm: add explicit behavior for ACPI S1 and S2
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Fix compressed stream position tracking
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Fix error code in probe (jsc#PED-850).
+- ASoC: Intel: avs: Fix parsing UUIDs in topology (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Move and correct size checks in
+ sof_ipc3_control_load_bytes() (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: Make sure that the fw load
+ sequence is followed (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dsp: Expose hda_dsp_core_power_up()
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Fix reversed if statement
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Propagate write errors correctly
+ (jsc#PED-850).
+- ASoC: SOF: Fix potential NULL pointer dereference (jsc#PED-850).
+- ASoC: Intel: cirrus-common: fix incorrect channel mapping
+ (jsc#PED-850).
+- soundwire: qcom: use pm_runtime_resume_and_get() (jsc#PED-850).
+- soundwire: intel: use pm_runtime_resume_and_get() (jsc#PED-850).
+- soundwire: cadence: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- soundwire: bus: use pm_runtime_resume_and_get() (jsc#PED-850).
+- soundwire: qcom: return error when pm_runtime_get_sync fails
+ (jsc#PED-850).
+- soundwire: bus: pm_runtime_request_resume on peripheral
+ attachment (jsc#PED-850).
+- soundwire: intel: disable WAKEEN in pm_runtime resume
+ (jsc#PED-850).
+- soundwire: cadence: recheck device0 attachment after status
+ change (jsc#PED-850).
+- soundwire: qcom: Add compatible name for v1.6.0 (jsc#PED-850).
+- soundwire: stream: Fix error return code in do_bank_switch()
+ (jsc#PED-850).
+- soundwire: qcom: fix an error message in
+ swrm_wait_for_frame_gen_enabled() (jsc#PED-850).
+- ASoC: Intel: avs: Fix build error on arc, m68k and sparc
+ (jsc#PED-850).
+- ASoC: Intel: common: fix typo for tplg naming (jsc#PED-850).
+- ASoC: rt5640: Do not manipulate pin "Platform Clock" if the
+ "Platform Clock" is not in the DAPM (jsc#PED-850).
+- ASoC: SOF: amd: Fixed Build error (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Move dtrace related variables local
+ from sof_dev (jsc#PED-850).
+- ASoC: SOF: Introduce opaque storage of private data for firmware
+ tracing (jsc#PED-850).
+- ASoC: SOF: Modify the host trace_init parameter list to include
+ dmab (jsc#PED-850).
+- ASoC: SOF: ipc3-dtrace: Move host ops wrappers from generic
+ header to private (jsc#PED-850).
+- ASoC: SOF: Switch to IPC generic firmware tracing (jsc#PED-850).
+- ASoC: SOF: Clone the trace code to ipc3-dtrace as fw_tracing
+ implementation (jsc#PED-850).
+- ASoC: SOF: Rename dtrace_is_supported flag to
+ fw_trace_is_supported (jsc#PED-850).
+- ASoC: SOF: Introduce IPC independent ops for firmware tracing
+ support (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8195 debug dump (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mediatek common debug dump
+ (jsc#PED-850).
+- ASoC: amd: acp: Set Speaker enable/disable pin through rt1019
+ codec driver (jsc#PED-850).
+- ASoC: SOF: sof-client-ipc-flood-test: use
+ pm_runtime_resume_and_get() (jsc#PED-850).
+- commit 477ca2d
+
+- ASoC: SOF: mediatek: remove duplicate include in mt8195.c
+ (jsc#PED-850).
+- ASoC: Intel: avs: APL-based platforms support (jsc#PED-850).
+- ASoC: Intel: avs: SKL-based platforms support (jsc#PED-850).
+- ASoC: Intel: avs: Power management (jsc#PED-850).
+- ASoC: Intel: avs: PCI driver implementation (jsc#PED-850).
+- ASoC: Intel: avs: Machine board registration (jsc#PED-850).
+- ASoC: Intel: avs: Replace link_mask usage with i2s_link_mask
+ (jsc#PED-850).
+- ASoC: Intel: avs: Event tracing (jsc#PED-850).
+- ASoC: Intel: avs: D0ix power state support (jsc#PED-850).
+- ASoC: Intel: avs: Prepare for firmware tracing (jsc#PED-850).
+- ASoC: Intel: avs: Coredump and recovery flow (jsc#PED-850).
+- ASoC: Intel: avs: HDA PCM BE operations (jsc#PED-850).
+- ASoC: Intel: avs: non-HDA PCM BE operations (jsc#PED-850).
+- ASoC: Intel: avs: Generic PCM FE operations (jsc#PED-850).
+- ASoC: Intel: avs: Generic soc component driver (jsc#PED-850).
+- ASoC: Intel: avs: Account for libraries when booting basefw
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Cap the rmaining to count in IPC4
+ mode (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8186 ipc support (jsc#PED-850).
+- ASoC: SOF: mediatek: Add ipc support for mt8195 (jsc#PED-850).
+- ASoC: amd: vangogh: Remove duplicate include files
+ (jsc#PED-850).
+- ASoC: SOF: Intel: HDA: Set up sof_ipc4_fw_data for IPC4
+ (jsc#PED-850).
+- ASoC: SOF: IPC4: Add FW loader ops (jsc#PED-850).
+- ASoC: SOF: Add header for IPC4 manifest (jsc#PED-850).
+- ASoC: SOF: Add IPC4 private header (jsc#PED-850).
+- ASoC: SOF: Intel: HDA: Set IPC4-specific DSP ops for CaVS
+ platforms (jsc#PED-850).
+- ASoC: SOF: amd: add missing platform_device_unregister in
+ acp_pci_rn_probe (jsc#PED-850).
+- ASoC: Intel: sof_ssp_amp: enable capture stream from cs35l41
+ (jsc#PED-850).
+- ASoC: Intel: sof_ssp_amp: fix no DMIC BE Link on Chromebooks
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Add support for adl_rt1019_rt5682s
+ (jsc#PED-850).
+- ASoC: SOF: ipc: introduce cont_update_posn in
+ sof_ipc_stream_params struct (jsc#PED-850).
+- ASoC: SOF: sof-client: IPC flood test can only work with SOF_IPC
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Add support for IPC4 messages
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Separate the message sending
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: Add support IPC4 message sending
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: Add API to get the ipc_type
+ (jsc#PED-850).
+- ASoC: SOF: sof-client-probes: Query the maximum IPC payload size
+ (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Query the maximum IPC payload size
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: Add API to get the maximum IPC payload
+ size (jsc#PED-850).
+- ASoC: SOF: trace: The dtrace is only available with SOF_IPC
+ (jsc#PED-850).
+- ASoC: SOF: ipc4: Add support for mandatory message handling
+ functionality (jsc#PED-850).
+- ASoC: SOF: Add initial header file for ipc4 (jsc#PED-850).
+- ASoC: SOF: Add rx_data pointer to snd_sof_ipc_msg struct
+ (jsc#PED-850).
+- ASoC: SOF: ipc3: Remove the ipc3-ops.h header file
+ (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Correct get_control_data for non
+ bytes payload (jsc#PED-850).
+- ASoC: SOF: Add a prepare op to IPC topology widget ops
+ (jsc#PED-850).
+- ASoC: SOF: clarify use of widget complete flag (jsc#PED-850).
+- ASoC: SOF: topology: Skip parsing DAI link tokens if not needed
+ (jsc#PED-850).
+- ASoC: SOF: pcm: remove unnecessary function declaration
+ (jsc#PED-850).
+- ASoC: SOF: Add two new fields to struct snd_sof_widget
+ (jsc#PED-850).
+- ASoC: SOF: Add a route_free op in struct sof_ipc_tplg_ops
+ (jsc#PED-850).
+- ASoC: SOF: bump SOF_ABI_MINOR (jsc#PED-850).
+- commit a12ea22
+
+- ASoC: SOF: expose a couple of functions (jsc#PED-850).
+- ASoC: SOF: pcm: Move the call to
+ snd_sof_pcm_platform_hw_params() (jsc#PED-850).
+- ASoC: SOF: sof-audio: Set up widgets from source to sink
+ (jsc#PED-850).
+- ASoC: SOF: sof-audio: reset route status before freeing widget
+ (jsc#PED-850).
+- ASoC: SOF: Add a new op to set up volume table (jsc#PED-850).
+- ASoC: SOF: loader: Call optional query_fw_configuration on
+ first boot (jsc#PED-850).
+- ASoC: SOF: loader: Remove snd_sof_parse_module_memcpy() as it
+ is not used (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195: Do not set the load_module ops
+ (jsc#PED-850).
+- ASoC: SOF: Intel: bdw/byt/pci-tng: Do not set the load_module
+ ops (jsc#PED-850).
+- ASoC: SOF: imx: Do not set the load_module ops (jsc#PED-850).
+- ASoC: SOF: amd: renoir: Do not set the load_module ops
+ (jsc#PED-850).
+- ASoC: SOF: loader: Switch to use the fw_loader ops
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Add check for fw_loader ops (jsc#PED-850).
+- ASoC: SOF: ipc3-loader: Implement firmware parsing and loading
+ (jsc#PED-850).
+- ASoC: SOF: Introduce IPC dependent ops for firmware handling,
+ loading (jsc#PED-850).
+- ASoC: SOF: sof-pci-dev: fix missing pci_release_regions()
+ on error in sof_pci_probe() (jsc#PED-850).
+- ASoC: SOF: sof-client-ipc-msg-injector: use
+ pm_runtime_resume_and_get() (jsc#PED-850).
+- ASoC: SOF: debug: use pm_runtime_resume_and_get() (jsc#PED-850).
+- ASoC: SOF: control: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Fix allyesconfig build error (jsc#PED-850).
+- ASoC: Intel: avs: Drop direct ACPI dependency (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195 change ipc timeout as 1 second
+ (jsc#PED-850).
+- ASoC: SOF: Intel: Do not (wrongly) assume positive return
+ value in IMR path (jsc#PED-850).
+- ASoC: Intel: atom: use pm_runtime_resume_and_get()
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: protect hw_params against successive
+ calls (jsc#PED-850).
+- ASoC: SOF: Intel: add helper for link DMA cleanups
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: reset dma_data and release stream
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: improve suspend case (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: move code to deal with hda
+ dai/dailink suspend (jsc#PED-850).
+- ASOC: SOF: Intel: hda-dai: add hda_dai_hw_free_ipc() helper
+ (jsc#PED-850).
+- ASoC: SOF: sof-audio: flag errors on pipeline teardown
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: regroup dai and link DMA operations
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: split link DMA and dai operations
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: use snd_soc_dai_get_widget() helper
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: simplify hda_dai_widget_update()
+ prototype (jsc#PED-850).
+- ASOC: SOF: Intel: hda-dai: consistent naming for HDA DAI and
+ HDA link DMA (jsc#PED-850).
+- ASoC: SOF: Intel: Add IPC-specific dai ops for IPC3
+ (jsc#PED-850).
+- ASoC: SOF: remove incorrect clearing of prepared flag
+ (jsc#PED-850).
+- ASoC: SOF: loader: Remove the old fw_ready related code
+ (jsc#PED-850).
+- ASoC: SOF: Intel: Do not set fw_ready callback (jsc#PED-850).
+- ASoC: SOF: imx: Do not set fw_ready callback (jsc#PED-850).
+- ASoC: SOF: amd: Do not set fw_ready callback (jsc#PED-850).
+- ASoC: SOF: Do not check for the fw_ready callback (jsc#PED-850).
+- ASoC: SOF: ipc3: Add local implementation for handling fw_ready
+ message (jsc#PED-850).
+- ASoC: SOF: mediatek: Add DSP system PM callback for mt8186
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8186 dsp clock support (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8186 sof fw loader and dsp ops
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8186 hardware support (jsc#PED-850).
+- ASoC: Intel: avs: Depend on SND_INTEL_DSP_CONFIG (jsc#PED-850).
+- ASoC: Intel: avs: Enable AVS driver only on x86 platforms
+ (jsc#PED-850).
+- commit f4a81b7
+
+- ASoC: SOF: sof-pci-dev: don't use the community key on APL
+ Chromebooks (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-SOF-pci-Change-DMI-match-info-to-support-all-Ch.patch.
+- commit a625481
+
+- ASoC: SOF: Intel: hda: Revisit IMR boot sequence (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-SOF-Intel-hda-loader-Clarify-the-cl_dsp_init-fl.patch.
+- commit cbf86ae
+
+- ASOC: SOF: pci: add ipc_type override for Intel IPC4 tests
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: simplify NHLT handling (jsc#PED-850).
+- ASoC: SOF: topology: Check w->sname validity once in
+ sof_connect_dai_widget() (jsc#PED-850).
+- ASoC: SOF: sof-audio: remove useless assignment (jsc#PED-850).
+- ASoC: SOF: amd: Use dedicated MBOX for ACP and PSP communication
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add psp_mbox_ready() and psp_send_cmd() callback
+ (jsc#PED-850).
+- ASoC: Intel: sof_ssp_amp: remove 'set-but-not-used' warning
+ (jsc#PED-850).
+- ASoC: SOF: using pm_runtime_resume_and_get to simplify the code
+ (jsc#PED-850).
+- ASoC: amd: acp: Add pm ops callback in machine driver
+ (jsc#PED-850).
+- ASoC: SOF: Intel: add IP identifier (jsc#PED-850).
+- ASoC: SOF: Intel: hda: expose some codeloader functions
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Define rom_status_reg in
+ sof_intel_dsp_desc (jsc#PED-850).
+- ASoC: SOF: Intel: hda: define check_ipc_irq op (jsc#PED-850).
+- ASoC: SOF: Intel: hda: use BIT() macros for consistency
+ (jsc#PED-850).
+- ASoC: SOF: Intel: move HDA_CL_STREAM_FORMAT definition to header
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: use common ops across platforms
+ (jsc#PED-850).
+- ASoC: SOF: remove const qualifier for 'struct snd_sof_dsp_ops'
+ (jsc#PED-850).
+- ASoC: SOF: sof-audio: preserve topology filename override in
+ nocodec mode (jsc#PED-850).
+- ASoC: SOF: sof-pci-dev: add parameter to override topology
+ filename (jsc#PED-850).
+- ASoC: SOF: sof-pci-dev: add parameter to override firmware
+ filename (jsc#PED-850).
+- ASoC: SOF: add IPC-dependent file names (jsc#PED-850).
+- ASoC: SOF: add default IPC capability and file paths
+ (jsc#PED-850).
+- ASoC: SOF: add path indirection to each IPC type (jsc#PED-850).
+- ASoC: SOF: add definitions for different IPC types
+ (jsc#PED-850).
+- ASoC: Intel: avs: Configure modules according to their type
+ (jsc#PED-850).
+- ASoC: Intel: avs: Prepare modules before bindings them
+ (jsc#PED-850).
+- ASoC: Intel: avs: Arm paths after creating them (jsc#PED-850).
+- ASoC: Intel: avs: Path state management (jsc#PED-850).
+- ASoC: Intel: avs: Path creation and freeing (jsc#PED-850).
+- ASoC: Intel: avs: Declare path and its components (jsc#PED-850).
+- ASoC: Intel: avs: Support link_mask formatted string
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add topology loading operations (jsc#PED-850).
+- ASoC: Intel: avs: Parse path and path templates tuples
+ (jsc#PED-850).
+- ASoC: Intel: avs: Parse pipeline and module tuples
+ (jsc#PED-850).
+- ASoC: Intel: avs: Parse pplcfg and binding tuples (jsc#PED-850).
+- ASoC: Intel: avs: Parse module-extension tuples (jsc#PED-850).
+- ASoC: Intel: avs: Add topology parsing infrastructure
+ (jsc#PED-850).
+- ASoC: SOF: Kconfig: Make SND_SOC_SOF_HDA_PROBES tristate
+ (jsc#PED-850).
+- commit e038201
+
+- ASoC: SOF: Intel: Check the bar size before remapping
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Move the ipc_set_get_comp_data() local to
+ ipc3-control (jsc#PED-850).
+- ASoC: SOF: sof-audio: Use the widget_kcontrol_setup ops for
+ kcontrol set up (jsc#PED-850).
+- ASoC: SOF: Add widget_kcontrol_setup control ops for IPC3
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Switch over to use the rx_msg ops (jsc#PED-850).
+- ASoC: SOF: ipc: Switch over to use the tx_msg and set_get_data
+ ops (jsc#PED-850).
+- ASoC: SOF: ipc: Use the get_reply ops in snd_sof_ipc_get_reply()
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Add check for mandatory IPC message handling
+ ops (jsc#PED-850).
+- ASoC: SOF: ipc: Separate the ops checks by functions/topics
+ (jsc#PED-850).
+- ASoC: SOF: ipc3: Implement rx_msg IPC ops (jsc#PED-850).
+- ASoC: SOF: ipc3: Implement the get_reply IPC ops (jsc#PED-850).
+- ASoC: SOF: ipc3: Implement the set_get_data IPC ops
+ (jsc#PED-850).
+- ASoC: SOF: ipc3: Use sof_ipc3_tx_msg() internally for message
+ sending (jsc#PED-850).
+- ASoC: SOF: ipc3: Implement the tx_msg IPC ops (jsc#PED-850).
+- ASoC: SOF: Add high level IPC IO callback definitions to ipc_ops
+ (jsc#PED-850).
+- ASoC: SOF: Add helper function to prepare and send an IPC
+ message (jsc#PED-850).
+- ASoC: amd: Add support for enabling DMIC on acp6x via _DSD
+ (jsc#PED-850).
+- ASoC: amd: Add driver data to acp6x machine driver
+ (jsc#PED-850).
+- ASoC: amd: yc: add new YC platform varaint support
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: mt8195 add shutdown callback (jsc#PED-850).
+- ASoC: SOF: OF: Add shutdown callback for SOF OF device
+ (jsc#PED-850).
+- ASoC: SOF: topology: Avoid open coded arithmetic in memory
+ allocation (jsc#PED-850).
+- ASoC: Intel: boards: Use temporary variable for struct device
+ (jsc#PED-850).
+- ASoC: SOF: Remove redundant return statements (jsc#PED-850).
+- ASoC: SOF: Remove header from struct snd_sof_ipc_msg
+ (jsc#PED-850).
+- ASoC: SOF: Drop 'header' parameter from tx_message() API
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Use msg->reply_data directly in
+ snd_sof_ipc_get_reply() (jsc#PED-850).
+- ASoC: SOF: disable dma trace in s0ix (jsc#PED-850).
+- ASoC: SOF: extend the interface to stop DMA trace (jsc#PED-850).
+- ASoC: SOF: Drop support for mapped control data (jsc#PED-850).
+- ASoC: SOF: ipc: Use ipc->max_payload_size for message/reply
+ size checking (jsc#PED-850).
+- ASoC: SOF: ipc: Add max_payload_size field in struct snd_sof_ipc
+ (jsc#PED-850).
+- ASoC: SOF: Remove dmab and dmab_bdl from snd_sof_dev struct
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: Use local snd_dma_buffer
+ (jsc#PED-850).
+- ASoC: Intel: catpt: Drop redundant enum constant (jsc#PED-850).
+- ASoC: SOF: ipc3-topology: Set scontrol->priv to NULL after
+ freeing it (jsc#PED-850).
+- ASoC: intel: atom: Remove superfluous flush_scheduled_work()
+ (jsc#PED-850).
+- ASoC: SOF: topology: use new sound control LED layer
+ (jsc#PED-850).
+- commit 96cf6fb
+
+- ASoC: Intel: sof_es8336: Add a quirk for Huawei Matebook D15
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add a quirk for headset at mic1 port
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: support a separate gpio to control
+ headphone (jsc#PED-850).
+- ASoC: Intel: sof_es8336: simplify speaker gpio naming
+ (jsc#PED-850).
+- ASoC: SOF: topology: Fix memory leak in sof_control_load()
+ (jsc#PED-850).
+- ASoC: SOF: topology: cleanup dailinks on widget unload
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Add support for max98360a speaker
+ amp on SSP2 (jsc#PED-850).
+- ASoC: SOF: topology: Fix memory leak of scontrol->name
+ (jsc#PED-850).
+- soundwire: qcom: use __maybe_unused for swrm_runtime_resume()
+ (jsc#PED-850).
+- soundwire: qcom: constify static struct qcom_swrm_data global
+ variables (jsc#PED-850).
+- soundwire: qcom: add in-band wake up interrupt support
+ (jsc#PED-850).
+- soundwire: qcom: add runtime pm support (jsc#PED-850).
+- soundwire: stream: make enable/disable/deprepare idempotent
+ (jsc#PED-850).
+- soundwire: stream: sdw_stream_add_ functions can be called
+ multiple times (jsc#PED-850).
+- soundwire: stream: introduce sdw_slave_rt_find() helper
+ (jsc#PED-850).
+- soundwire: stream: separate alloc and config within
+ sdw_stream_add_xxx() (jsc#PED-850).
+- soundwire: stream: move list addition to sdw_slave_alloc_rt()
+ (jsc#PED-850).
+- soundwire: stream: rename and move master/slave_rt_free routines
+ (jsc#PED-850).
+- soundwire: stream: group sdw_stream_ functions (jsc#PED-850).
+- soundwire: stream: split sdw_alloc_slave_rt() in alloc and
+ config (jsc#PED-850).
+- soundwire: stream: move sdw_alloc_slave_rt() before 'master'
+ helpers (jsc#PED-850).
+- soundwire: stream: split sdw_alloc_master_rt() in alloc and
+ config (jsc#PED-850).
+- soundwire: stream: simplify sdw_alloc_master_rt() (jsc#PED-850).
+- soundwire: stream: group sdw_port and sdw_master/slave_port
+ functions (jsc#PED-850).
+- soundwire: stream: add 'slave' prefix for port range checks
+ (jsc#PED-850).
+- soundwire: stream: split alloc and config in two functions
+ (jsc#PED-850).
+- soundwire: stream: split port allocation and configuration loops
+ (jsc#PED-850).
+- soundwire: stream: add alloc/config/free helpers for ports
+ (jsc#PED-850).
+- soundwire: stream: simplify check on port range (jsc#PED-850).
+- soundwire: stream: add slave runtime to list earlier
+ (jsc#PED-850).
+- soundwire: stream: remove unused parameter in
+ sdw_stream_add_slave (jsc#PED-850).
+- soundwire: Replace acpi_bus_get_device() (jsc#PED-850).
+- soundwire: bus: add dev_warn() messages to track UNATTACHED
+ devices (jsc#PED-850).
+- ASoC: SOF: Add a new dai_get_clk topology IPC op (jsc#PED-850).
+- ASoC: SOF: topology: Add ops for setting up and tearing down
+ pipelines (jsc#PED-850).
+- ASoC: SOF: expose sof_route_setup() (jsc#PED-850).
+- commit 82a7627
+
+- ASoC: SOF: Add dai_link_fixup PCM op for IPC3 (jsc#PED-850).
+- ASoC: SOF: Add trigger PCM op for IPC3 (jsc#PED-850).
+- ASoC: SOF: Define hw_params PCM op for IPC3 (jsc#PED-850).
+- ASoC: SOF: Introduce IPC3 PCM hw_free op (jsc#PED-850).
+- ASoC: SOF: pcm: expose the sof_pcm_setup_connected_widgets()
+ function (jsc#PED-850).
+- ASoC: SOF: Introduce IPC-specific PCM ops (jsc#PED-850).
+- ASoC: SOF: Add bytes_ext control IPC ops for IPC3 (jsc#PED-850).
+- ASoC: SOF: Add bytes_get/put control IPC ops for IPC3
+ (jsc#PED-850).
+- ASoC: SOF: Add enum_get/put control ops for IPC3 (jsc#PED-850).
+- ASoC: SOF: Add switch get/put IPC3 ops (jsc#PED-850).
+- ASoC: SOF: Add volume_get/put IPC3 ops (jsc#PED-850).
+- ASoC: SOF: Add IPC3 topology control ops (jsc#PED-850).
+- ASoC: SOF: Introduce IPC ops for kcontrol IO (jsc#PED-850).
+- ASoC: SOF: Make sof_suspend/resume IPC agnostic (jsc#PED-850).
+- ASoC: SOF: Make sof_widget_setup/free IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: set up scheduler widget before all other widgets
+ in the pipeline (jsc#PED-850).
+- ASoC: SOF: topology: Use kmemdup() to replace kzalloc + memcpy
+ (jsc#PED-850).
+- ASoC: SOF: topology: remove snd_sof_complete_pipeline()
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make widget binding IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make control parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make DAI widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make route setup IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make effect widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make siggen widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make asrc widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make src widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make mux/demux widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make mixer widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make pga widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make buffer widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: topology: Make scheduler widget parsing IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: Introduce IPC3 ops (jsc#PED-850).
+- ASoC: SOF: topology: Add helper function for processing tuple
+ arrays (jsc#PED-850).
+- ASoC: SOF: IPC: Introduce IPC ops (jsc#PED-850).
+- ASoC: SOF: Introduce struct snd_sof_dai_link (jsc#PED-850).
+- ASoC: SOF: Remove ipc_pcm_params() ops (jsc#PED-850).
+- ASoC: SOF: imx: Convert to use the generic
+ set_stream_data_offset ops (jsc#PED-850).
+- ASoC: SOF: Intel: Convert to use the generic
+ set_stream_data_offset ops (jsc#PED-850).
+- ASoC: SOF: Intel: hda-ipc: Add hda_set_stream_data_offset()
+ (jsc#PED-850).
+- ASoC: SOF: stream-ipc: Add sof_set_stream_data_offset()
+ (jsc#PED-850).
+- ASoC: SOF: Mark snd_sof_dsp_ops.ipc_pcm_params() callback
+ optional (jsc#PED-850).
+- ASoC: SOF: Introduce optional callback to configure stream
+ data offset (jsc#PED-850).
+- ASoC: SOF: pcm: Remove sof_pcm_dsp_params() wrapper
+ (jsc#PED-850).
+- ASoC: SOF: Make pcm_hw_params snd_sof_dsp_ops callback IPC
+ neutral (jsc#PED-850).
+- ASoC: SOF: sof-priv: Remove stale
+ snd_sof_ipc_stream_pcm_params() declaration (jsc#PED-850).
+- ASoC: Intel: soc-acpi: Add entry for rt711-sdca-sdw in ADL
+ match table (jsc#PED-850).
+- ASoC: SOF: Intel: add topology overwrite for Taniks
+ (jsc#PED-850).
+- ASoC: SOF: trace: Use proper DMA direction for the trace data
+ buffer (jsc#PED-850).
+- ASoC: SOF: compress: fix null check after dereference
+ (jsc#PED-850).
+- ASoC: Intel: avs: Code loading over HDA (jsc#PED-850).
+- commit 951b46c
+
+- Update config files: keep AVS config off (jsc#PED-850)
+- commit 3fd2397
+
+- ASoC: Intel: avs: Code loading over CLDMA (jsc#PED-850).
+- ASoC: Intel: avs: Implement CLDMA transfer (jsc#PED-850).
+- ASoC: Intel: avs: General code loading flow (jsc#PED-850).
+- ASoC: Intel: avs: Dynamic firmware resources management
+ (jsc#PED-850).
+- ASoC: Intel: avs: Declare module configuration types
+ (jsc#PED-850).
+- ASoC: Intel: avs: Firmware resources management utilities
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add basefw runtime-parameter requests
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add ROM requests (jsc#PED-850).
+- ASoC: Intel: avs: Add power management requests (jsc#PED-850).
+- ASoC: Intel: avs: Add module management requests (jsc#PED-850).
+- ASoC: Intel: avs: Add pipeline management requests
+ (jsc#PED-850).
+- ASoC: Intel: avs: Add code loading requests (jsc#PED-850).
+- ASoC: Intel: avs: Inter process communication (jsc#PED-850).
+- ASoC: Intel: Introduce AVS driver (jsc#PED-850).
+- ASoC: SOF: move definition of snd_sof_ipc to header file
+ (jsc#PED-850).
+- ASoC: SOF: make struct snd_sof_dai IPC agnostic (jsc#PED-850).
+- ASoC: SOF: topology: Rename arguments in sof_parse_tokens()
+ (jsc#PED-850).
+- ASoC: SOF: topology: Rename arguments in sof_parse_token_sets()
+ (jsc#PED-850).
+- ASoC: SOF: topology: Modify signature for token parsing
+ functions (jsc#PED-850).
+- ASoC: SOF: Add a tuples array to struct snd_sof_widget
+ (jsc#PED-850).
+- ASoC: SOF: topology: make sof_route_load() IPC agnostic
+ (jsc#PED-850).
+- ASoC: SOF: make struct snd_sof_widget IPC agnostic
+ (jsc#PED-850).
+- ASoC: Intel: bytcht_es8316: move comment to the right place
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add cfg-dmics component for UCM support
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: extend machine driver to support
+ ES8326 codec (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add support for JD inverted quirk
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: move comment to the right place
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: log all quirks (jsc#PED-850).
+- ASoC: Intel: sof_es8336: use NHLT information to set dmic and
+ SSP (jsc#PED-850).
+- ASoC: Intel: Revert "ASoC: Intel: sof_es8336: add quirk for
+ Huawei D15 2021" (jsc#PED-850).
+- commit 7695000
+
+- ASoC: Intel: sof_es8336: get codec device with ACPI instead
+ of bus search (jsc#PED-850).
+- ASoC: Intel: sof_es8336: make gpio optional (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add ESSX8336 support on Cannon Lake
+ machines (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add more ACPI HIDs for ES83x6 devices
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: quirk topology filename dynamically
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: report SSP link mask to machine driver
+ (jsc#PED-850).
+- ALSA: intel-nhlt: add helper to detect SSP link mask
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: retrieve DMIC number for I2S boards
+ (jsc#PED-850).
+- ASoC: soc-acpi: add information on I2S/TDM link mask
+ (jsc#PED-850).
+- ASoC: soc-acpi: fix kernel-doc descriptor (jsc#PED-850).
+- ASoC: SOF: ipc-msg-injector: Use devm_kzalloc() for the
+ rx_buffer (jsc#PED-850).
+- ASoC: SOF: amd: Remove unneeded semicolon (jsc#PED-850).
+- commit 83f31ef
+
+- Update config files: another Intel/AMD ASoC updates (jsc#PED-850)
+- commit dd56303
+
+- ASoC: Intel: boards: fix randconfig issue (jsc#PED-850).
+- ASoC: SOF: change comp_dai to a pointer in struct snd_sof_dai
+ (jsc#PED-850).
+- ASoC: SOF: topology: expose some get_token ops (jsc#PED-850).
+- ASoC: SOF: topology: Modify the get_token op for string tokens
+ (jsc#PED-850).
+- ASoC: SOF: topology: Drop the size parameter from struct
+ sof_topology_token (jsc#PED-850).
+- ASoC: SOF: topology: remove redundant code in
+ sof_link_afe_load() (jsc#PED-850).
+- ASoC: SOF: sof-audio: removed unused function (jsc#PED-850).
+- ASoC: SOF: set swidget's core for scheduler widget
+ (jsc#PED-850).
+- ASoC: SOF: simplify snd_sof_device_remove() (jsc#PED-850).
+- ASoC: SOF: remove snd_sof_pipeline_find() (jsc#PED-850).
+- ASoC: amd: acp3x: Fix signedness bug in acp3x (jsc#PED-850).
+- ASoC: amd: acp5x-pcm-dma: Fix signedness bug (jsc#PED-850).
+- ASoC: Intel: catpt: use asoc_substream_to_rtd() (jsc#PED-850).
+- ASoC: SOF: Intel: hda: clarify operator precedence
+ (jsc#PED-850).
+- ASoC: SOF: debug: clarify operator precedence (jsc#PED-850).
+- ASoC: SOF: fix 32 signed bit overflow (jsc#PED-850).
+- ASoC: SOF: amd: Increase ACP_HW_SEM_RETRY_COUNT value
+ (jsc#PED-850).
+- ASoC: SOF: amd: Move group register configuration to acp-loader
+ (jsc#PED-850).
+- ASoC: SOF: amd: Use semaphore register to synchronize ipc's irq
+ (jsc#PED-850).
+- ASoC: SOF: amd: Flush cache after ATU_BASE_ADDR_GRP register
+ update (jsc#PED-850).
+- ASoC: SOF: amd: Do not set ipc_pcm_params ops as it is optional
+ (jsc#PED-850).
+- ASoC: SOF: amd: acp-pcm: Take buffer information directly from
+ runtime (jsc#PED-850).
+- ASoC: Intel: boards: add GPIOLIB dependency where missed
+ (jsc#PED-850).
+- ASoC: Intel: boards: remove explicit dependency on GPIOLIB
+ when DMIC is used" (jsc#PED-850).
+- ASoC: amd: vg: fix signedness bug in acp5x_audio_probe()
+ (jsc#PED-850).
+- ASoC: amd: pcm-dma: Fix signedness bug in acp3x_audio_probe()
+ (jsc#PED-850).
+- ASoC: amd: pcm-dma: Fix signedness bug in acp_pdm_audio_probe()
+ (jsc#PED-850).
+- ASoC: amd: acp: Fix signedness bug in renoir_audio_probe()
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add entries in ADL match table
+ (jsc#PED-850).
+- ASoC: Intel: sof_ssp_amp: rename driver and support cs35l41
+ amplifier (jsc#PED-850).
+- commit ef4d791
+
+- Update config files: Intel SOF updates (jsc#PED-850)
+- commit 40ca354
+
+- ASoC: Intel: cirrus-common: support cs35l41 amplifier
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt1308: move rt1308 code to common module
+ (jsc#PED-850).
+- ASoC: Intel: boards: create sof-realtek-common module
+ (jsc#PED-850).
+- ASoC: Intel: add RT1308 I2S machine driver and HDMI-in capture
+ via I2S support (jsc#PED-850).
+- ASoC: Intel: boards: fix spelling in comments (jsc#PED-850).
+- ASoC: soc-acpi: remove sof_fw_filename (jsc#PED-850).
+- ASoC: amd: use asoc_substream_to_rtd() (jsc#PED-850).
+- ASoC: amd: vangogh: fix uninitialized symbol warning in machine
+ driver (jsc#PED-850).
+- ASoC: amd: vg: remove warnings and errors pointed out by
+ checkpatch pl (jsc#PED-850).
+- ASoC: amd: vg: update DAI link name (jsc#PED-850).
+- ASoC: amd: pcm-dma: Use platform_get_irq() to get the interrupt
+ (jsc#PED-850).
+- ASoC: acp: check the return value of devm_kzalloc() in
+ acp_legacy_dai_links_create() (jsc#PED-850).
+- ASoC: SOF: sof-priv: Drop duplicate sof_compressed_ops
+ declaration (jsc#PED-850).
+- ASoC: amd: Use platform_get_irq_byname() to get the interrupt
+ (jsc#PED-850).
+- ASoC: SOF: Declare sof_compress_ops in sof-priv.h (jsc#PED-850).
+- ASoC: amd: acp: Add DMIC machine driver ops (jsc#PED-850).
+- ASoC: amd: acp-legacy: Add legacy card support for new machines
+ (jsc#PED-850).
+- ASoC: amd: acp: Change card name for Guybrush Machine
+ (jsc#PED-850).
+- ASoC: SOF: pcm: Add compress_ops for SOF platform component
+ driver (jsc#PED-850).
+- ASoC: SOF: Intel: Add topology overwrite for Felwinter
+ (jsc#PED-850).
+- ASoC: Intel: sof_es8336: add quirk for Huawei D15 2021
+ (jsc#PED-850).
+- ASoC: SOF: Replace zero-length array with flexible-array member
+ (jsc#PED-850).
+- ASoC: SOF: core: unregister clients and machine drivers in
+ .shutdown (jsc#PED-850).
+- ASoC: SOF: Makefile: Fix randconfig sof-client build when
+ SND_SOC_SOF=y (jsc#PED-850).
+- ASoC: SOF: compr: Mark snd_compress_ops static (jsc#PED-850).
+- ASoC: Intel: bytcr_wm5102: use GFP_KERNEL (jsc#PED-850).
+- ASoC: SOF: Convert the generic probe support to SOF client
+ (jsc#PED-850).
+- ASoC: SOF: Convert the generic IPC message injector into SOF
+ client (jsc#PED-850).
+- ASoC: SOF: Convert the generic IPC flood test into SOF client
+ (jsc#PED-850).
+- ASoC: SOF: sof-client: Add support for clients not managed by
+ pm framework (jsc#PED-850).
+- commit 1703e8b
+
+- Update config files: AMD ACP configs (jsc#PED-850)
+- commit d87a85e
+
+- ASoC: SOF: Introduce IPC SOF client support (jsc#PED-850).
+- ASoC: SOF: Split up utils.c into sof-utils and iomem-utils
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Read and pass the whole message to handlers
+ for IPC events (jsc#PED-850).
+- ASoC: SOF: Move the definition of enum sof_dsp_power_states
+ to global header (jsc#PED-850).
+- ASoC: SOF: Drop unused DSP power states: D3_HOT and D3_COLD
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hdac_ext_stream: consistent prefixes for
+ variables/members (jsc#PED-850).
+- ASoC: SOF: dma-trace: Pass pointer to params_ext struct in
+ trace_init() (jsc#PED-850).
+- ASoC: SOF: intel: hda-trace: Pass the dma buffer pointer to
+ hda_dsp_trace_prepare (jsc#PED-850).
+- ASoC: SOF: compr: Add compress ops implementation (jsc#PED-850).
+- ASoC: amd: renoir: Add check for acp configuration flags
+ (jsc#PED-850).
+- ASoC: amd: acp: acp-legacy: Add DMIC dai link support for Renoir
+ (jsc#PED-850).
+- ASoC: amd: acp: Add ACP init()/deinit() callback for Renoir
+ (jsc#PED-850).
+- ASoC: amd: acp: Add generic PCI driver module for ACP device
+ (jsc#PED-850).
+- ASoC: amd: acp: Add PDM controller based dmic dai for Renoir
+ (jsc#PED-850).
+- ASoC: amd: acp: Add generic support for PDM controller on ACP
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Do not allocate buffer for msg_data
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Drop header parameter from
+ sof_ipc_tx_message_unlocked() (jsc#PED-850).
+- ASoC: SOF: Intel: cnl: Use pm_gate->hdr.cmd in
+ cnl_compact_ipc_compress() (jsc#PED-850).
+- ASoC: SOF: trace: Simplify count adjustment in trace_read
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Remove link assignment limitation
+ (jsc#PED-850).
+- commit 5f8f1de
+
+- ASoC: Intel: sof_rt5682: Add support for platform without
+ amplifier (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: add support for systems without i915
+ audio (jsc#PED-850).
+- ASoC: SOF: Intel: Compare sdw adr directly (jsc#PED-850).
+- ASoC: SOF: add flag to disable IMR restore to sof_debug
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: add IMR restore support
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: add SSP helper (jsc#PED-850).
+- ASoC: SOF: Intel: use inclusive language for SSP clocks
+ (jsc#PED-850).
+- ASoC: SOF: add _D3_PERSISTENT flag to fw_ready message
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: add 512FS MCLK clock configuration
+ (jsc#PED-850).
+- ASoC: amd: sof-mach: Add support for RT5682S and RT1019 card
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi-byt: Add new WM5102 ACPI HID
+ (jsc#PED-850).
+- ASoC: amd: vg: update acp init and deinit sequence
+ (jsc#PED-850).
+- ASoC: amd: vg: apply sample bits pcm constraint (jsc#PED-850).
+- ASoC: amd: vg: update platform clock control sequence
+ (jsc#PED-850).
+- ASoC: amd: vangogh: refactor i2s master mode clock sequence code
+ (jsc#PED-850).
+- ASoC: amd: acp: Set gpio_spkr_en to None for max speaker
+ amplifer in machine driver (jsc#PED-850).
+- ASoC: amd: acp-mach: Fix Left and Right rt1019 amp devices
+ (jsc#PED-850).
+- ASoC: amd: acp: acp-mach: Change default RT1019 amp dev id
+ (jsc#PED-850).
+- ASoC: amd: acp: Power on/off the speaker enable gpio pin based
+ on DAPM callback (jsc#PED-850).
+- ASoC: amd: acp: Remove duplicate dependency in Kconfig
+ (jsc#PED-850).
+- commit 75e005d
+
+- ASoC: amd: acp-config: Update sof_tplg_filename for SOF machines
+ (jsc#PED-850).
+- ASoC: amd: acp-config: Enable SOF audio for Google chrome boards
+ (jsc#PED-850).
+- ASoC: AMD: fix depend/select mistake on SND_AMD_ACP_CONFIG
+ (jsc#PED-850).
+- ASoC: amd: Convert to new style DAI format definitions
+ (jsc#PED-850).
+- ASoC: AMD: acp-config: fix missing dependency on SND_SOC_ACPI
+ (jsc#PED-850).
+- ASoC: amd: acp6x-pdm-dma: Constify static snd_soc_dai_ops
+ (jsc#PED-850).
+- ASoC: amd: Fix dependency for SPI master (jsc#PED-850).
+- ASoC: amd: acp-pcm-dma: add .delay support (jsc#PED-850).
+- ASoC: amd: acp-config: Remove legacy acpi based machine struct
+ (jsc#PED-850).
+- commit 17b7741
+
+- soundwire: qcom: remove redundant version number read
+ (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Add support for external GPIO
+ jack-detect (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Support retrieving the codec IRQ
+ from the AMCR0F28 ACPI dev (jsc#PED-850).
+- commit 3629d01
+
+- ASoC: rt5640: Add support for boards with an external
+ jack-detect GPIO (jsc#PED-850).
+- ASoC: rt5640: Allow snd_soc_component_set_jack() to override
+ the codec IRQ (jsc#PED-850).
+- ASoC: rt5640: Change jack_work to a delayed_work (jsc#PED-850).
+- ASoC: rt5640: Fix possible NULL pointer deref on resume
+ (jsc#PED-850).
+- ASoC: rt5640: Fix the wrong state of the JD in the HDA header
+ (jsc#PED-850).
+- ASoC: rt5640: Add the HDA header support (jsc#PED-850).
+- ASoC: rt5640: Add the binding include file for the HDA header
+ support (jsc#PED-850).
+- ASoC: codecs: Fix spelling mistake "Unsupport" -> "Unsupported"
+ (jsc#PED-850).
+- commit 5e31cbb
+
+- soundwire: intel: remove PDM support (jsc#PED-850).
+- soundwire: intel: remove unnecessary init (jsc#PED-850).
+- ASoC: Intel/SOF: use set_stream() instead of set_tdm_slots()
+ for HDAudio (jsc#PED-850).
+- ASoC/SoundWire: dai: expand 'stream' concept beyond SoundWire
+ (jsc#PED-850).
+- soundwire: intel: improve suspend flows (jsc#PED-850).
+- ASoC/soundwire: intel: simplify callbacks for params/hw_free
+ (jsc#PED-850).
+- ASOC: SOF: Intel: use snd_soc_dai_get_widget() (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Use DEBUG log level for optional prints
+ (jsc#PED-850).
+- ASoC: SOF: debug: Use DEBUG log level for optional prints
+ (jsc#PED-850).
+- ASoC: SOF: Add clarifying comments for sof_core_debug and DSP
+ dump flags (jsc#PED-850).
+- ASoC: SOF: Rename snd_sof_get_status() and add kernel log
+ level parameter (jsc#PED-850).
+- ASoC: SOF: dsp_arch_ops: add kernel log level parameter for
+ oops and stack (jsc#PED-850).
+- ASoC: SOF: ops: Always print DSP Panic message but use different
+ message (jsc#PED-850).
+- ASoc: SOF: core: Update the FW boot state transition diagram
+ (jsc#PED-850).
+- ASoC: SOF: pm: Force DSP off on suspend in BOOT_FAILED state
+ also (jsc#PED-850).
+- ASoC: SOF: Set SOF_FW_BOOT_FAILED in case we have failure
+ during boot (jsc#PED-850).
+- ASoC: SOF: ipc: Only allow sending of an IPC in
+ SOF_FW_BOOT_COMPLETE state (jsc#PED-850).
+- ASoC: SOF: Rename 'enum snd_sof_fw_state' to 'enum sof_fw_state'
+ (jsc#PED-850).
+- ASoC: SOF: Move the definition of enum snd_sof_fw_state to
+ global header (jsc#PED-850).
+- ASoC: SOF: Introduce new firmware state: SOF_FW_BOOT_READY_OK
+ (jsc#PED-850).
+- ASoC: SOF: Introduce new firmware state: SOF_FW_CRASHED
+ (jsc#PED-850).
+- ASoC: SOF: Add a 'message' parameter to snd_sof_dsp_dbg_dump()
+ (jsc#PED-850).
+- ASoC: SOF: Add 'non_recoverable' parameter to
+ snd_sof_dsp_panic() (jsc#PED-850).
+- ASoC: SOF: Use sof_debug_check_flag() instead of sof_core_debug
+ directly (jsc#PED-850).
+- ASoC: SOF: core: Add simple wrapper to check flags in
+ sof_core_debug (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: Avoid re-defining the
+ HDA_FW_BOOT_ATTEMPTS (jsc#PED-850).
+- ASoC: SOF: ops: Use dev_warn() if the panic offsets differ
+ (jsc#PED-850).
+- ASoC: SOF: AMD: simplify return status handling (jsc#PED-850).
+- ASoC: Intel: catpt: Streamline locals declaration for
+ PCM-functions (jsc#PED-850).
+- ASoC: Intel: catpt: Reduce size of catpt_component_open()
+ (jsc#PED-850).
+- ipc: debug: Add shared memory heap to memory scan (jsc#PED-850).
+- ASoC: SOF: ipc: Add null pointer check for substream->runtime
+ (jsc#PED-850).
+- ASoC: SOF: avoid casting "const" attribute away (jsc#PED-850).
+- ASoC: SOF: Intel: hda: remove support for RESUME in platform
+ trigger (jsc#PED-850).
+- ASoC: SOF: Intel: hda: remove support for RESUME trigger
+ (jsc#PED-850).
+- ASoC: SOF: pcm: remove support for RESUME trigger (jsc#PED-850).
+- commit 3f0d25e
+
+- ASoC: SOF: Kconfig: Make the SOF_DEVELOPER_SUPPORT depend on
+ SND_SOC_SOF (jsc#PED-850).
+- ASoC: SOF: topology: read back control data from DSP
+ (jsc#PED-850).
+- ASoC: SOF: Drop ctrl_type parameter for
+ snd_sof_ipc_set_get_comp_data() (jsc#PED-850).
+- ASoC: SOF: control: Do not handle control notification with
+ component type (jsc#PED-850).
+- ASoC: SOF: sof-audio: Drop the `cmd` member from struct
+ snd_sof_control (jsc#PED-850).
+- ASoC: SOF: Drop ctrl_cmd parameter for
+ snd_sof_ipc_set_get_comp_data() (jsc#PED-850).
+- ASoC: SOF: topology: Set control_data->cmd alongside
+ scontrol->cmd (jsc#PED-850).
+- ASoC: SOF: Drop ipc_cmd parameter for
+ snd_sof_ipc_set_get_comp_data() (jsc#PED-850).
+- ASoC: SOF: ipc: Rename send parameter in
+ snd_sof_ipc_set_get_comp_data() (jsc#PED-850).
+- ASoC: SOF: OF: Avoid reverse module dependency (jsc#PED-850).
+- ASoC: SOF: sof-probes: Constify sof_probe_compr_ops
+ (jsc#PED-850).
+- ASoC: SOF: Remove pm_runtime_put_autosuspend() for SOF OF device
+ (jsc#PED-850).
+- ASoC: SOF: Intel: add comment on JasperLake support
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: remove unused fields (jsc#PED-850).
+- ASoC: SOF: Intel: hda: add quirks for HDAudio DMA position
+ information (jsc#PED-850).
+- ASoC: SOF: hda-stream: only enable DPIB if needed (jsc#PED-850).
+- ASoC: SOF: Intel: hda-ctrl: apply symmetry for DPIB
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: limit PROCEN workaround
+ (jsc#PED-850).
+- ASoC: SOF: Intel: ICL: move ICL-specific ops to icl.c
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Move rt1015 speaker amp to common file
+ (jsc#PED-850).
+- commit 1dca21d
+
+- ASoC: Intel: boards: add 'static' qualifiers for max98390 routes
+ (jsc#PED-850).
+- ASoC: SOF: Intel: fix build issue related to CODEC_PROBE_ENTRIES
+ (jsc#PED-850).
+- ASoC: Intel: boards: add max98390 2/4 speakers support
+ (jsc#PED-850).
+- ASoC: intel: boards: bytcht*: Constify static snd_soc_ops
+ (jsc#PED-850).
+- ASoC: Intel: hda_dsp_common: don't multiline PCM topology
+ warning (jsc#PED-850).
+- ASoC: intel: sst-mfld-platform-pcm: add .delay support
+ (jsc#PED-850).
+- ASoC: soc-component: add snd_soc_pcm_component_delay()
+ (jsc#PED-850).
+- ASoC: soc-dai: update snd_soc_dai_delay() to
+ snd_soc_pcm_dai_delay() (jsc#PED-850).
+- ASoC: SOF: Intel: hda: send DAI_CONFIG IPC during pause
+ (jsc#PED-850).
+- ASoC: SOF: IPC: dai: Expand DAI_CONFIG IPC flags (jsc#PED-850).
+- ASoC: SOF: align the hw_free sequence with stop (jsc#PED-850).
+- ASoC: SOF: pcm: move the check for prepared flag (jsc#PED-850).
+- ASoC: SOF: Add a helper for freeing PCM stream (jsc#PED-850).
+- ASoC: SOF: call platform hw_free for paused streams during
+ suspend (jsc#PED-850).
+- ASoC: SOF: pcm: invoke platform hw_free for STOP/SUSPEND
+ triggers (jsc#PED-850).
+- ASoC: SOF: Intel: hda: reset stream before coupling host and
+ link DMA's (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Add a helper function for stream reset
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: clear stream before freeing the DAI
+ widget (jsc#PED-850).
+- ASoC: SOF: mediatek: Use %pR/%pa to print resources/physical
+ addresses (jsc#PED-850).
+- ASoC: SOF: mediatek: Add missing of_node_put() in
+ platform_parse_resource() (jsc#PED-850).
+- ASoC: SOF: Intel: add .ack support for HDaudio platforms
+ (jsc#PED-850).
+- ASoC: SOF: pcm: add .ack callback support (jsc#PED-850).
+- ALSA: pcm: introduce INFO_NO_REWINDS flag (jsc#PED-850).
+- ALSA: pcm: unconditionally check if appl_ptr is in 0..boundary
+ range (jsc#PED-850).
+- ASoC: soc-component: add snd_soc_component_is_codec()
+ (jsc#PED-850).
+- commit 157062a
+
+- ASoC: SOF: handle paused streams during system suspend
+ (jsc#PED-850).
+- ASoC: SOF: topology: don't use list_for_each_entry_reverse()
+ (jsc#PED-850).
+- ASoC: SOF: sof-audio: setup sched widgets during pipeline
+ complete step (jsc#PED-850).
+- ASoC: SOF: imx8m: Implement reset callback (jsc#PED-850).
+- ASoC: SOF: imx8m: Implement DSP start (jsc#PED-850).
+- ASoC: SOF: imx8m: Add runtime PM / System PM support
+ (jsc#PED-850).
+- ASoC: SOF: imx8: Add runtime PM / System PM support
+ (jsc#PED-850).
+- ASoC: SOF: imx: Add code to manage DSP related clocks
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: free DAI widget during stop and suspend
+ (jsc#PED-850).
+- ASoC: SOF: add support for dynamic pipelines with multi-core
+ (jsc#PED-850).
+- ASoC: SOF: hda: don't use the core op for power up/power down
+ (jsc#PED-850).
+- ASoC: SOF: free widgets in sof_tear_down_pipelines() for static
+ pipelines (jsc#PED-850).
+- ASoC: SOF: topology: remove sof_load_pipeline_ipc()
+ (jsc#PED-850).
+- ASoC: SOF: Intel: CNL/ICL/APL: set core_get/core_put ops
+ (jsc#PED-850).
+- ASoC: SOF: Intel: TGL: set core_get/put ops (jsc#PED-850).
+- ASoC: SOF: Add ops for core_get and core_put (jsc#PED-850).
+- ASoC: SOF: Introduce num_cores and ref count per core
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: expose get_chip_info() (jsc#PED-850).
+- ASoC: SOF: sof-pci-dev: use community key on all Up boards
+ (jsc#PED-850).
+- ASoC: SOF: mediatek: Add DSP system PM callback for mt8195
+ (jsc#PED-850).
+- commit 513c226
+
+- ASoC: SOF: topology: Add support for Mediatek AFE DAI
+ (jsc#PED-850).
+- Refresh
+ patches.suse/ASoC-SOF-topology-remove-redundant-code.patch.
+- commit dd56536
+
+- ASoC: SOF: mediatek: Add mt8195 dsp clock support (jsc#PED-850).
+- ASoC: SOF: mediatek: Add dai driver dsp ops callback for mt8195
+ (jsc#PED-850).
+- ASoC: SOF: Add mt8195 device descriptor (jsc#PED-850).
+- ASoC: SOF: mediatek: Add fw loader and mt8195 dsp ops to load
+ firmware (jsc#PED-850).
+- ASoC: SOF: tokens: add token for Mediatek AFE (jsc#PED-850).
+- ASoC: SOF: mediatek: Add mt8195 hardware support (jsc#PED-850).
+- ASoC: SOF: amd: Add support for SOF firmware authentication
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add trace logger support (jsc#PED-850).
+- ASoC: SOF: topology: Add support for AMD ACP DAIs (jsc#PED-850).
+- ASoC: SOF: amd: Add Renoir PCI driver interface (jsc#PED-850).
+- ASoC: amd: Add module to determine ACP configuration
+ (jsc#PED-850).
+- commit 69a6968
+
+- Update config files: update AMD ACP configs (jsc#PED-850)
+- commit e5979cc
+
+- ASoC: amd: fix uninitialized variable in snd_acp6x_probe()
+ (jsc#PED-850).
+- ASoC: amd: acp: select CONFIG_SND_SOC_ACPI (jsc#PED-850).
+- ASoC: fix unmet dependencies on GPIOLIB for SND_SOC_DMIC
+ (jsc#PED-850).
+- ASoC: amd: acp: fix Kconfig dependencies (jsc#PED-850).
+- ASoC: nau8825: add clock management for power saving
+ (jsc#PED-850).
+- ASoC: nau8825: add set_jack coponment support (jsc#PED-850).
+- ASoC: nau8821: fix kernel-doc (jsc#PED-850).
+- ASoC: amd: acp: Fix return value check in acp_machine_select()
+ (jsc#PED-850).
+- ASoC: amd: acp: SND_SOC_AMD_ACP_COMMON should depend on X86 &&
+ PCI (jsc#PED-850).
+- ASoC: amd: acp: SND_SOC_AMD_{LEGACY_MACH,SOF_MACH} should
+ depend on X86 && PCI && I2C (jsc#PED-850).
+- ASoC: amd: acp: Wrap AMD Audio ACP components in
+ SND_SOC_AMD_ACP_COMMON (jsc#PED-850).
+- ASoC: amd: acp: Add acp_machine struct for renoir platform
+ (jsc#PED-850).
+- ASoC: amd: acp: Add support for RT5682-VS codec (jsc#PED-850).
+- ASoC: amd: acp: Add support for Maxim amplifier codec
+ (jsc#PED-850).
+- ASoC: amd: acp: Add SOF audio support on Chrome board
+ (jsc#PED-850).
+- ASoC: amd: acp: Add legacy sound card support for Chrome audio
+ (jsc#PED-850).
+- ASoC: amd: acp: Add generic machine driver support for ACP cards
+ (jsc#PED-850).
+- ASoC: amd: acp: Add callback for machine driver on ACP
+ (jsc#PED-850).
+- ASoC: amd: acp: Add I2S support on Renoir platform
+ (jsc#PED-850).
+- ASoC: amd: Add common framework to support I2S on ACP SOC
+ (jsc#PED-850).
+- ASoC: amd: enable Yellow Carp platform machine driver build
+ (jsc#PED-850).
+- ASoC: amd: add YC machine driver using dmic (jsc#PED-850).
+- ASoC: amd: create platform device for acp6x machine driver
+ (jsc#PED-850).
+- ASoC: amd: enable Yellow carp acp6x drivers build (jsc#PED-850).
+- ASoC: amd: add acp6x pdm driver pm ops (jsc#PED-850).
+- ASoC: amd: add acp6x pci driver pm ops (jsc#PED-850).
+- ASoC: amd: add acp6x pdm driver dma ops (jsc#PED-850).
+- ASoC: amd: add acp6x irq handler (jsc#PED-850).
+- ASoC: amd: add acp6x pdm platform driver (jsc#PED-850).
+- ASoC: amd: add platform devices for acp6x pdm driver and dmic
+ driver (jsc#PED-850).
+- ASoC: amd: add acp6x init/de-init functions (jsc#PED-850).
+- ASoC: amd: add Yellow Carp ACP PCI driver (jsc#PED-850).
+- ASoC: amd: add Yellow Carp ACP6x IP register header
+ (jsc#PED-850).
+- ASoC: amd: enable vangogh platform machine driver build
+ (jsc#PED-850).
+- ASoC: amd: add vangogh machine driver (jsc#PED-850).
+- ASoc: amd: create platform device for VG machine driver
+ (jsc#PED-850).
+- ASoC: amd: vangogh: constify static struct snd_soc_dai_ops
+ (jsc#PED-850).
+- ASoC: amd: Kconfig: Select fch clock support with machine driver
+ (jsc#PED-850).
+- ASoC: amd: acp-rt5645: Constify static snd_soc_ops
+ (jsc#PED-850).
+- ASoC: nau8824: Fix NAU8824_JACK_LOGIC define (jsc#PED-850).
+- ASoC: nau8821: new driver (jsc#PED-850).
+- ASoC: amd: acp: declare and add prefix to 'bt_uart_enable'
+ symbol (jsc#PED-850).
+- commit 9624970
+
+- Update config files: Drop unused SOF for arm, updates for NAU8825 and AMD (jsc#PED-850)
+- commit 31abee1
+
+- ASoC: SOF: amd: Add machine driver dsp ops for Renoir platform
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add PCM stream callback for Renoir dai's
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add dai driver dsp ops callback for Renoir
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add IPC support for ACP IP block (jsc#PED-850).
+- ASoC: SOF: amd: Add fw loader and renoir dsp ops to load
+ firmware (jsc#PED-850).
+- ASoC: SOF: amd: Add helper callbacks for ACP's DMA configuration
+ (jsc#PED-850).
+- ASoC: SOF: amd: Add Renoir ACP HW support (jsc#PED-850).
+- ASoC: SOF: debug: Add support for IPC message injection
+ (jsc#PED-850).
+- ASoC: SOF: intel: Use the generic helper to get the reply
+ (jsc#PED-850).
+- ASoC: SOF: imx: Use the generic helper to get the reply
+ (jsc#PED-850).
+- commit a9ab47f
+
+- ALSA: Replace acpi_bus_get_device() (jsc#PED-850).
+- ALSA: hda: intel-dsp-config: reorder the config table
+ (jsc#PED-850).
+- ALSA: hda: intel-dsp-config: add JasperLake support
+ (jsc#PED-850).
+- ASoC: SOF: utils: Add generic function to get the reply for
+ a tx message (jsc#PED-850).
+- ASoC: SOF: i.MX: simplify Kconfig (jsc#PED-850).
+- ASoC: SOF: core: Unregister machine driver before IPC and
+ debugfs (jsc#PED-850).
+- ASoC: Intel: add sof-nau8825 machine driver (jsc#PED-850).
+- ASoC: intel: sof_sdw: add link adr order check (jsc#PED-850).
+- ASoC: intel: sof_sdw: remove get_next_be_id (jsc#PED-850).
+- ASoC: intel: sof_sdw: remove sof_sdw_mic_codec_mockup_init
+ (jsc#PED-850).
+- ASoC: intel: sof_sdw: remove SOF_RT715_DAI_ID_FIX quirk
+ (jsc#PED-850).
+- ASoC: intel: sof_sdw: move DMIC link id overwrite to
+ create_sdw_dailink (jsc#PED-850).
+- ASoC: intel: sof_sdw: Use a fixed DAI link id for AMP
+ (jsc#PED-850).
+- ASoC: intel: sof_sdw: rename be_index/link_id to link_index
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: add SKU for Dell Latitude 9520
+ (jsc#PED-850).
+- ASoC: intel: sof_sdw: return the original error number
+ (jsc#PED-850).
+- ASoC: SOF: trace: send DMA_TRACE_FREE IPC during release
+ (jsc#PED-850).
+- ASoC: SOF: IPC: update ipc_log_header() (jsc#PED-850).
+- ASoC: SOF: IPC: Add new IPC command to free trace DMA
+ (jsc#PED-850).
+- ALSA/ASoC: hda: move/rename snd_hdac_ext_stop_streams to
+ hdac_stream.c (jsc#PED-850).
+- ASoC: Intel: Skylake: Use NHLT API to search for blob
+ (jsc#PED-850).
+- ALSA: hda: Simplify DMIC-in-NHLT check (jsc#PED-850).
+- ALSA: hda: Fill gaps in NHLT endpoint-interface (jsc#PED-850).
+- soundwire: intel: Use auxiliary_device driver data helpers
+ (jsc#PED-850).
+- commit df611ff
+
+- ASoC: SOF: Intel: Retry codec probing if it fails (jsc#PED-850).
+- ASoC: SOF: hda: reset DAI widget before reconfiguring it
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add entry for ESSX8336 on CML
+ (jsc#PED-850).
+- ASoC: SOF: build compression interface into snd_sof.ko
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B12 product
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add SKU 0B29 SoundWire configuration
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B29 product
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add SKU 0B13 SoundWire configuration
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B13 product
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B11 product
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0B00 and 0B01 products
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add SKU 0AF3 SoundWire configuration
+ (jsc#PED-850).
+- ASoC: Intel: sof_sdw: Add support for SKU 0AF3 product
+ (jsc#PED-850).
+- ASoC: SOF:control: Fix variable type in
+ snd_sof_refresh_control() (jsc#PED-850).
+- soundwire: qcom: add debugfs entry for soundwire register dump
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: use const for all uses of
+ snd_soc_acpi_codecs (jsc#PED-850).
+- ASoC: Intel: soc-acpi-cht: shrink tables using compatible IDs
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi-byt: shrink tables using compatible IDs
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: use comp_ids to enumerate rt5682s
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: detect codec variant in probe function
+ (jsc#PED-850).
+- ASoC: soc-acpi: add comp_ids field for machine driver matching
+ (jsc#PED-850).
+- ASoC: Intel: glk_rt5682_max98357a: support ALC5682I-VS codec
+ (jsc#PED-850).
+- ASoC: Intel: soc-acpi: add entry for ESSX8336 on JSL
+ (jsc#PED-850).
+- ASoC: fix unmet dependency on GPIOLIB for SND_SOC_MAX98357A
+ (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5651: Utilize dev_err_probe() to avoid
+ log saturation (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5651: use devm_clk_get_optional() for mclk
+ (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5651: Use temporary variable for struct
+ device (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5651: Get platform data via
+ dev_get_platdata() (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Utilize dev_err_probe() to avoid
+ log saturation (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: use devm_clk_get_optional() for mclk
+ (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Use temporary variable for struct
+ device (jsc#PED-850).
+- ASoC: Intel: bytcr_rt5640: Get platform data via
+ dev_get_platdata() (jsc#PED-850).
+- ASoC: SOF: prepare code to allocate IPC messages in fw_ready
+ (jsc#PED-850).
+- ASoC: SOF: Introduce fragment elapsed notification API
+ (jsc#PED-850).
+- commit a990efc
+
+- ASoC: SOF: imx: Use newly introduced generic IPC stream ops
+ (jsc#PED-850).
+- ASoC: SOF: Make Intel IPC stream ops generic (jsc#PED-850).
+- ASoC: SOF: Introduce snd_sof_mailbox_read /
+ snd_sof_mailbox_write callbacks (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Dump registers and stack when
+ SOF_DBG_DUMP_REGS is set (jsc#PED-850).
+- ASoC: SOF: Intel: hda-loader: Drop SOF_DBG_DUMP_REGS flag from
+ dbg_dump calls (jsc#PED-850).
+- ASoC: SOF: loader: Drop SOF_DBG_DUMP_REGS flag when firmware
+ start fails (jsc#PED-850).
+- ASoC: SOF: core: Clean up snd_sof_get_status() prints
+ (jsc#PED-850).
+- ASoC: SOF: intel: hda: Drop 'error' prefix from error dump
+ functions (jsc#PED-850).
+- ASoC: SOF: Introduce macro to set the firmware state
+ (jsc#PED-850).
+- ASoC: SOF: ops: Force DSP panic dumps to be printed
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Re-enable dumps after successful IPC tx
+ (jsc#PED-850).
+- ASoC: SOF: debug: Print out the fw_state along with the DSP dump
+ (jsc#PED-850).
+- ASoC: SOF: Drop SOF_DBG_DUMP_FORCE_ERR_LEVEL and
+ sof_dev_dbg_or_err (jsc#PED-850).
+- ASoC: SOF: intel: hda-loader: Use snd_sof_dsp_dbg_dump()
+ for DSP dump (jsc#PED-850).
+- ASoC: SOF: debug: Add SOF_DBG_DUMP_OPTIONAL flag for DSP dumping
+ (jsc#PED-850).
+- ASoC: SOF: debug/ops: Move the IPC and DSP dump functions out
+ from the header (jsc#PED-850).
+- ASoC: SOF: intel: atom: No need to do a DSP dump in atom_run()
+ (jsc#PED-850).
+- ASoC: SOF: loader: Print the DSP dump if boot fails
+ (jsc#PED-850).
+- ASoC: SOF: Print the dbg_dump and ipc_dump once to reduce
+ kernel log noise (jsc#PED-850).
+- ASoC: SOF: ipc and dsp dump: Add markers for better visibility
+ (jsc#PED-850).
+- commit 5397d18
+
+- Update config files: enabled for SOF es8336 and rt5682s (jsc#PED-850)
+- commit 9447c50
+
+- ASoC: SOF: debug: Swap the dsp_dump and ipc_dump sequence for
+ fw_exception (jsc#PED-850).
+- ASoC: SOF: core: debug: force all processing on primary core
+ (jsc#PED-850).
+- ASoC: SOF: pipelines: Harmonize all functions to use struct
+ snd_sof_dev (jsc#PED-850).
+- ASoC: Intel: add machine driver for SOF+ES8336 (jsc#PED-850).
+- ASoC: Intel: soc-acpi: apl/glk/tgl: add entry for devices
+ based on ES8336 codec (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dai: improve SSP DAI handling for dynamic
+ pipelines (jsc#PED-850).
+- ASoC: SOF: Intel: hda: add new flags for DAI_CONFIG
+ (jsc#PED-850).
+- ASoC: SOF: dai: include new flags for DAI_CONFIG (jsc#PED-850).
+- ASoC: SOF: dai: mirror group_id definition added in firmware
+ (jsc#PED-850).
+- ASoC: SOF: topology: return error if sof_connect_dai_widget()
+ fails (jsc#PED-850).
+- ASoC: SOF: topology: allow for dynamic pipelines override for
+ debug (jsc#PED-850).
+- ASoC: SOF: topology: show clks_control value in dynamic debug
+ (jsc#PED-850).
+- commit 9734d36
+
+- ASoC: SOF: OF: Add fw_path and tplg_path parameters
+ (jsc#PED-850).
+- ASoC: Intel: cht_bsw_nau8824: Set card.components string
+ (jsc#PED-850).
+- ASoC: nau8824: Add a nau8824_components() helper (jsc#PED-850).
+- ASoC: SOF: topology: Add kernel parameter for topology
+ verification (jsc#PED-850).
+- ASoC: SOF: Add support for dynamic pipelines (jsc#PED-850).
+- ASoC: SOF: Intel: hda: make sure DAI widget is set up before
+ IPC (jsc#PED-850).
+- ASoC: SOF: Introduce widget use_count (jsc#PED-850).
+- ASoC: SOF: Don't set up widgets during topology parsing
+ (jsc#PED-850).
+- ASoC: SOF: restore kcontrols for widget during set up
+ (jsc#PED-850).
+- ASoC: SOF: Add new fields to snd_sof_route (jsc#PED-850).
+- AsoC: dapm: export a couple of functions (jsc#PED-850).
+- ASoC: SOF: sof-audio: add helpers for widgets, kcontrols and
+ dai config set up (jsc#PED-850).
+- ASoC: SOF: topology: Add new token for dynamic pipeline
+ (jsc#PED-850).
+- ASoC: SOF: control: Add access field in struct snd_sof_control
+ (jsc#PED-850).
+- ASoC: topology: change the complete op in snd_soc_tplg_ops to
+ return int (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: Add support for max98360a speaker amp
+ (jsc#PED-850).
+- ASoC: SOF: Change SND_SOC_SOF_TOPLEVEL from config to menuconfig
+ (jsc#PED-850).
+- ASoC: intel: sof_rt5682: update platform device name for Maxim
+ amplifier (jsc#PED-850).
+- ASoC: SOF: ipc: Make the error prints consistent in
+ tx_wait_done() (jsc#PED-850).
+- ASoC: SOF: prefix some terse and cryptic dev_dbg() with __func__
+ (jsc#PED-850).
+- ASoC: SOF: add error handling to snd_sof_ipc_msg_data()
+ (jsc#PED-850).
+- ASoC: SOF: imx: add header file for ops (jsc#PED-850).
+- ASoC: SOF: pm: fix a stale comment (jsc#PED-850).
+- ASoC: SOF: Intel: hda-stream: Print stream name on
+ STREAM_SD_OFFSET timeout (jsc#PED-850).
+- ASoC: Intel: boards: Update to modern clocking terminology
+ (jsc#PED-850).
+- ASoC: SOF: Remove struct sof_ops_table and sof_get_ops() macro
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Print 0x prefix for errors in
+ ipc_trace/stream_message() (jsc#PED-850).
+- ASoC: SOF: ipc: Clarify the parameter name for
+ ipc_trace_message() (jsc#PED-850).
+- ASoC: SOF: Rename sof_arch_ops to dsp_arch_ops (jsc#PED-850).
+- ASoC: SOF: ipc: Remove redundant error check from
+ sof_ipc_tx_message_unlocked (jsc#PED-850).
+- ASoC: SOF: sof-probes: Correct the function names used for
+ snd_soc_cdai_ops (jsc#PED-850).
+- ASoC: SOF: Intel: Rename hda-compress.c to hda-probes.c
+ (jsc#PED-850).
+- commit 6acbd79
+
+- ASoC: SOF: probe: Merge and clean up the probe and compress
+ files (jsc#PED-850).
+- ASoC: SOF: compress: move and export sof_probe_compr_ops
+ (jsc#PED-850).
+- ASoC: SOF: pcm: Remove non existent CONFIG_SND_SOC_SOF_COMPRESS
+ reference (jsc#PED-850).
+- ASoC: SOF: ipc: Add probe message logging to ipc_log_header()
+ (jsc#PED-850).
+- ASoC: SOF: imx8m: add SAI1 info (jsc#PED-850).
+- ASoC: SOF: core: Move probe work related code under a single if
+ () branch (jsc#PED-850).
+- ASoC: SOF: debug: No need to export the
+ snd_sof_debugfs_io_item() (jsc#PED-850).
+- ASoC: SOF: loader: Use the generic ops for region debugfs
+ handling (jsc#PED-850).
+- ASoC: SOF: Intel: Provide debugfs_add_region_item ops for core
+ (jsc#PED-850).
+- ASoC: SOF: imx: Provide debugfs_add_region_item ops for core
+ (jsc#PED-850).
+- ASoC: SOF: debug: Add generic API and ops for DSP regions
+ (jsc#PED-850).
+- ASoC: SOF: core: Do not use 'bar' as parameter for
+ block_read/write (jsc#PED-850).
+- ASoC: SOF: loader: No need to export snd_sof_fw_parse_ext_data()
+ (jsc#PED-850).
+- ASoC: SOF: imx: Do not initialize the snd_sof_dsp_ops.read64
+ (jsc#PED-850).
+- ASoC: SOF: ipc: Remove snd_sof_dsp_mailbox_init() (jsc#PED-850).
+- ASoC: SOF: Intel: bdw: Set the mailbox offset directly in
+ bdw_probe (jsc#PED-850).
+- ASoC: SOF: intel: Do no initialize resindex_dma_base
+ (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Relocate inline definitions from hda.h
+ to hda.c for sdw (jsc#PED-850).
+- ASoC: SOF: Intel: hda: Remove boot_firmware skl and iccmax_icl
+ declarations (jsc#PED-850).
+- ASoC: SOF: Intel: hda-dsp: Declare locally used functions as
+ static (jsc#PED-850).
+- ASoC: intel: sof_rt5682: support jsl_rt5682s_mx98360a board
+ (jsc#PED-850).
+- ASoC: intel: sof_rt5682: support jsl_rt5682s_rt1015 board
+ (jsc#PED-850).
+- ASoC: intel: sof_rt5682: support jsl_rt5682s_rt1015p board
+ (jsc#PED-850).
+- ASoC: Intel: sof_rt5682: support ALC5682I-VS codec
+ (jsc#PED-850).
+- ASoC: SOF: loader: load_firmware callback is mandatory, treat
+ it like that (jsc#PED-850).
+- ASoC: SOF: Handle control change notification from firmware
+ (jsc#PED-850).
+- ASoC: SOF: control: fix a typo in put operations for kcontrol
+ (jsc#PED-850).
+- ASoC: rt5682s: Add driver for ALC5682I-VS codec (jsc#PED-850).
+- ASoC: SOF: core: allow module parameter to override dma trace
+ Kconfig (jsc#PED-850).
+- ASoC: Intel: Move soc_intel_is_foo() helpers to a generic header
+ (jsc#PED-850).
+- commit bb7be03
+
+- xfs: convert XLOG_FORCED_SHUTDOWN() to xlog_is_shutdown()
+ (git-fixes).
+- commit ab97572
+
+- xfs: fix xfs_ifree() error handling to not leak perag ref
+ (git-fixes).
+- commit 2b17a84
+
+- s390/cpumf: add new extended counter set for IBM z16
+ (jsc#PED-606).
+- commit 34faf97
+
+- cifs: update internal module number (bsc#1193629).
+- commit 4202154
+
+- cifs: fix memory leaks in session setup (bsc#1193629).
+- commit 5c729d0
+
+- cifs: drop the lease for cached directories on rmdir or rename
+ (bsc#1193629).
+- commit 46e0f22
+
+- smb3: interface count displayed incorrectly (bsc#1193629).
+- commit e073a89
+
+- cifs: Fix memory leak when build ntlmssp negotiate blob failed
+ (bsc#1193629).
+- commit 7afbdb6
+
+- cifs: set rc to -ENOENT if we can not get a dentry for the
+ cached dir (bsc#1193629).
+- commit 328e60a
+
+- cifs: use LIST_HEAD() and list_move() to simplify code
+ (bsc#1193629).
+- commit e5c0c94
+
+- cifs: Fix xid leak in cifs_get_file_info_unix() (bsc#1193629).
+- commit a50e886
+
+- cifs: Fix xid leak in cifs_ses_add_channel() (bsc#1193629).
+- commit 45683eb
+
+- cifs: Fix xid leak in cifs_flock() (bsc#1193629).
+- commit d234b14
+
+- cifs: Fix xid leak in cifs_copy_file_range() (bsc#1193629).
+- commit f56cd1f
+
+- cifs: Fix xid leak in cifs_create() (bsc#1193629).
+- commit a1d5012
+
+- smb3: improve SMB3 change notification support (bsc#1193629).
+- commit 8a4313f
+
+- cifs: lease key is uninitialized in two additional functions
+ when smb1 (bsc#1193629).
+- commit 181d702
+
+- cifs: lease key is uninitialized in smb1 paths (bsc#1193629).
+- commit 395fb1f
+
+- smb3: must initialize two ACL struct fields to zero
+ (bsc#1193629).
+- commit 2dfd980
+
+- cifs: fix double-fault crash during ntlmssp (bsc#1193629).
+- commit 958d087
+
+- cifs: fix static checker warning (bsc#1193629).
+- commit 6695ea2
+
+- cifs: use ALIGN() and round_up() macros (bsc#1193629).
+- commit b4d4efd
+
+- cifs: find and use the dentry for cached non-root directories
+ also (bsc#1193629).
+- commit 14482fe
+
+- cifs: enable caching of directories for which a lease is held
+ (bsc#1193629).
+- commit cc4f4c4
+
+- cifs: prevent copying past input buffer boundaries
+ (bsc#1193629).
+- commit 9130844
+
+- cifs: fix uninitialised var in smb2_compound_op() (bsc#1193629).
+- commit bdc0943
+
+- cifs: improve symlink handling for smb2+ (bsc#1193629).
+- commit 0b6be9d
+
+- smb3: clarify multichannel warning (bsc#1193629).
+- commit 96b1224
+
+- cifs: fix skipping to incorrect offset in emit_cached_dirents
+ (bsc#1193629).
+- commit 6750b0a
+
+- smb3: fix oops in calculating shash_setkey (bsc#1193629).
+- commit fdb4064
+
+- cifs: secmech: use shash_desc directly, remove sdesc
+ (bsc#1193629).
+- commit d652300
+
+- smb3: rename encryption/decryption TFMs (bsc#1193629).
+- commit 074ff14
+
+- cifs: replace kfree() with kfree_sensitive() for sensitive data
+ (bsc#1193629).
+- commit a9c83e0
+
+- cifs: remove initialization value (bsc#1193629).
+- commit 650b157
+
+- cifs: Replace a couple of one-element arrays with flexible-array
+ members (bsc#1193629).
+- commit 2e6a4d1
+
+- smb3: do not log confusing message when server returns no
+ network interfaces (bsc#1193629).
+- commit fe343ed
+
+- cifs: store a pointer to a fid in the cfid structure instead
+ of the struct (bsc#1193629).
+- commit 4bc719f
+
+- cifs: improve handlecaching (bsc#1193629).
+- commit 460040b
+
+- cifs: Make tcon contain a wrapper structure cached_fids instead
+ of cached_fid (bsc#1193629).
+- commit 999f1a7
+
+- smb3: add dynamic trace points for tree disconnect
+ (bsc#1193629).
+- commit c71b282
+
+- Fix formatting of client smbdirect RDMA logging (bsc#1193629).
+- commit bc2ae55
+
+- Handle variable number of SGEs in client smbdirect send
+ (bsc#1193629).
+- commit af0f632
+
+- Reduce client smbdirect max receive segment size (bsc#1193629).
+- commit e36b32c
+
+- Decrease the number of SMB3 smbdirect client SGEs (bsc#1193629).
+- commit 1c625b9
+
+- cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message
+ (bsc#1193629).
+- commit 174687c
+
+- cifs: destage dirty pages before re-reading them for cache=none
+ (bsc#1193629).
+- commit 9eab309
+
+- cifs: return correct error in ->calc_signature() (bsc#1193629).
+- commit 0ace108
+
+- cifs: misc: fix spelling typo in comment (bsc#1193629).
+- commit 0177a68
+
+- cifs: update internal module number (bsc#1193629).
+- commit a83e618
+
+- cifs: add missing spinlock around tcon refcount (bsc#1193629).
+- commit a915086
+
+- cifs: always initialize struct msghdr smb_msg completely
+ (bsc#1193629).
+- commit 7ba2dbe
+
+- cifs: don't send down the destination address to sendmsg for
+ a SOCK_STREAM (bsc#1193629).
+- commit cc67d16
+
+- cifs: revalidate mapping when doing direct writes (bsc#1193629).
+- commit 3e6da03
+
+- cifs: fix small mempool leak in SMB2_negotiate() (bsc#1193629).
+- commit 9ad1214
+
+- smb3: use filemap_write_and_wait_range instead of
+ filemap_write_and_wait (bsc#1193629).
+- commit 569211d
+
+- smb3: fix temporary data corruption in insert range
+ (bsc#1193629).
+- commit 4153b9f
+
+- smb3: fix temporary data corruption in collapse range
+ (bsc#1193629).
+- commit e11095d
+
+- smb3: Move the flush out of smb2_copychunk_range() into its
+ callers (bsc#1193629).
+- commit 7cc3491
+
+- cifs: Add helper function to check smb1+ server (bsc#1193629).
+- commit 8d3cf57
+
+- cifs: Use help macro to get the mid header size (bsc#1193629).
+- commit 56cfb79
+
+- cifs: Use help macro to get the header preamble size
+ (bsc#1193629).
+- commit a32d0c7
+
+- cifs: skip extra NULL byte in filenames (bsc#1193629).
+- commit 3c2966f
+
+- smb3: missing inode locks in punch hole (bsc#1193629).
+- commit d5ef2ce
+
+- smb3: missing inode locks in zero range (bsc#1193629).
+- commit 67739d5
+
+- cifs: move from strlcpy with unused retval to strscpy
+ (bsc#1193629).
+- commit 1545859
+
+- cifs: Fix memory leak on the deferred close (bsc#1193629).
+- commit 0e66dd6
+
+- cifs: remove useless parameter 'is_fsctl' from SMB2_ioctl()
+ (bsc#1193629).
+- commit e09b402
+
+- cifs: remove unused server parameter from calc_smb_size()
+ (bsc#1193629).
+- commit 3f30130
+
+- cifs: Do not access tcon->cfids->cfid directly from
+ is_path_accessible (bsc#1193629).
+- commit 7188f4f
+
+- cifs: Add constructor/destructors for tcon->cfid (bsc#1193629).
+- commit 7eb31f4
+
+- SMB3: fix lease break timeout when multiple deferred close
+ handles for the same file (bsc#1193629).
+- commit 7267460
+
+- smb3: allow deferred close timeout to be configurable
+ (bsc#1193629).
+- commit 19f7caa
+
+- cifs: Do not use tcon->cfid directly, use the cfid we get from
+ open_cached_dir (bsc#1193629).
+- commit 25de0c1
+
+- cifs: Move cached-dir functions into a separate file
+ (bsc#1193629).
+- commit fc0e55e
+
+- cifs: fix lock length calculation (bsc#1193629).
+- commit 2661e11
+
+- cifs: update internal module number (bsc#1193629).
+- commit 53f5daf
+
+- cifs: alloc_mid function should be marked as static
+ (bsc#1193629).
+- commit f066ea5
+
+- cifs: remove "cifs_" prefix from init/destroy mids functions
+ (bsc#1193629).
+- commit 21e261c
+
+- cifs: remove useless DeleteMidQEntry() (bsc#1193629).
+- commit b684635
+
+- cifs: when insecure legacy is disabled shrink amount of SMB1
+ code (bsc#1193629).
+- commit 96f98e3
+
+- cifs: fix wrong unlock before return from cifs_tree_connect()
+ (bsc#1193629).
+- commit ca24a6e
+
+- cifs: avoid use of global locks for high contention data
+ (bsc#1193629).
+- commit 003b496
+
+- cifs: remove remaining build warnings (bsc#1193629).
+- commit 2a6d64f
+
+- cifs: list_for_each() -> list_for_each_entry() (bsc#1193629).
+- commit 98f1884
+
+- smb2: small refactor in smb2_check_message() (bsc#1193629).
+- commit 2913774
+
+- cifs: remove minor build warning (bsc#1193629).
+- commit 9dd2f9e
+
+- cifs: remove some camelCase and also some static build warnings
+ (bsc#1193629).
+- commit 7a903b5
+
+- cifs: remove unnecessary (void*) conversions (bsc#1193629).
+- commit 352182a
+
+- cifs: remove unnecessary type castings (bsc#1193629).
+- commit e2ea7fd
+
+- cifs: remove redundant initialization to variable
+ mnt_sign_enabled (bsc#1193629).
+- commit 8c39800
+
+- smb3: check xattr value length earlier (bsc#1193629).
+- commit 87cd516
+
+- smb3: workaround negprot bug in some Samba servers
+ (bsc#1193629).
+- commit 031af61
+
+- cifs: remove unnecessary locking of chan_lock while freeing
+ session (bsc#1193629).
+- commit 0303046
+
+- cifs: fix race condition with delayed threads (bsc#1193629).
+- commit 491d550
+
+- cifs: update cifs_ses::ip_addr after failover (bsc#1193629).
+- commit 9ed4aa9
+
+- cifs: avoid deadlocks while updating iface (bsc#1193629).
+- commit 3a5c612
+
+- cifs: periodically query network interfaces from server
+ (bsc#1193629).
+- commit dd3e063
+
+- cifs: during reconnect, update interface if necessary
+ (bsc#1193629).
+- commit 8dea5e1
+
+- cifs: change iface_list from array to sorted linked list
+ (bsc#1193629).
+- commit 1b05ccf
+
+- smb3: use netname when available on secondary channels
+ (bsc#1193629).
+- commit 6d17daa
+
+- smb3: fix empty netname context on secondary channels
+ (bsc#1193629).
+- commit 51fad96
+
+- cifs: when a channel is not found for server, log its connection
+ id (bsc#1193629).
+- commit 1b306b2
+
+- smb3: add trace point for SMB2_set_eof (bsc#1193629).
+- commit c6da1d3
+
+- cifs: populate empty hostnames for extra channels (bsc#1193629).
+- commit f2f92b2
+
+- cifs: return errors during session setup during reconnects
+ (bsc#1193629).
+- commit d557671
+
+- smb3: remove unneeded null check in cifs_readdir (bsc#1193629).
+- commit 7eaa3dc
+
+- cifs: cache the dirents for entries in a cached directory
+ (bsc#1193629).
+- commit 0ddb648
+
+- cifs: truncate the inode and mapping when we simulate fcollapse
+ (bsc#1193629).
+- commit 3b07034
+
+- blacklist.conf: Add reverted patch
+ d11219ad53dc amdgpu: disable powerpc support for the newer display engine
+ c653c591789b drm/amdgpu: Re-enable DCN for 64-bit powerpc
+- commit 15ec992
+
+- xfs: fix perag reference leak on iteration race with growfs
+ (git-fixes).
+- commit fc22ca3
+
+- SCSI: scsi_probe_lun: retry INQUIRY after timeout (bsc#1189297).
+- commit 623bb84
+
keyutils
+- Add /etc/keys/ and /usr/etc/keys/ directory (bsc#1187654)
+
+- adjust the library license to be LPGL-2.1+ only (the tools are GPL2+,
+ the library is just LGPL-2.1+) (bsc#1180603)
+
+- update to 1.6.3:
+ * Revert the change notifications that were using /dev/watch_queue.
+ * Apply the change notifications that use pipe2(O_NOTIFICATION_PIPE).
+ * Allow "keyctl supports" to retrieve raw capability data.
+ * Allow "keyctl id" to turn a symbolic key ID into a numeric ID.
+ * Allow "keyctl new_session" to name the keyring.
+ * Allow "keyctl add/padd/etc." to take hex-encoded data.
+ * Add "keyctl watch*" to expose kernel change notifications on keys.
+ * Add caps for namespacing and notifications.
+ * Set a default TTL on keys that upcall for name resolution.
+ * Explicitly clear memory after it's held sensitive information.
+ * Various manual page fixes.
+ * Fix C++-related errors.
+ * Add support for keyctl_move().
+ * Add support for keyctl_capabilities().
+ * Make key=val list optional for various public-key ops.
+ * Fix system call signature for KEYCTL_PKEY_QUERY.
+ * Fix 'keyctl pkey_query' argument passing.
+ * Use keyctl_read_alloc() in dump_key_tree_aux().
+ * Various manual page fixes.
+- spec-cleaner run (fixup failing homepage url)
+
+- prepare usrmerge (boo#1029961)
+
+- updated to 1.6
+ - Apply various specfile cleanups from Fedora.
+ - request-key: Provide a command line option to suppress helper execution.
+ - request-key: Find least-wildcard match rather than first match.
+ - Remove the dependency on MIT Kerberos.
+ - Fix some error messages
+ - keyctl_dh_compute.3: Suggest /proc/crypto for list of available hashes.
+ - Fix doc and comment typos.
+ - Add public key ops for encrypt, decrypt, sign and verify (needs linux-4.20).
+ - Add pkg-config support for finding libkeyutils.
+- upstream isn't offering PGP signatures for the source tarballs anymore
+
+- Replace krb5-devel BuildRequires with pkgconfig(krb5): Allow OBS
+ to shortcut the ring0 bootstrap cycle by also using krb5-mini.
+
+- add upstream signing key and verify source signature
+
+- updated to 1.5.11 (bsc#1113013)
+ - Add keyring restriction support.
+ - Add KDF support to the Diffie-Helman function.
+ - DNS: Add support for AFS config files and SRV records
+
+- Use %license (boo#1082318)
+
+- add keyutils-devel for baselibs, to allow biarch LTP builds.
+ (bsc#1061591)
+
+- updated to 1.5.10
+ - added "dh_compute" callback
+ - manpage improvements
+
+- move binaries from /bin to /usr/bin (bsc#1029969)
+- keyutils-usr-move.patch: also adjust the request-key.conf file
+
+- keyutils-nodate.patch: avoid including the timestamp. bsc#916180
+
krb5
+- Fix integer overflows in PAC parsing; (CVE-2022-42898);
+ (bso#15203), (bsc#1205126).
+- Added patches:
+ * 0010-Fix-integer-overflows-in-PAC-parsing.patch
+
+- Update to 1.19.2
+ * Fix a denial of service attack against the KDC encrypted challenge
+ code; (CVE-2021-36222);
+ * Fix a memory leak when gss_inquire_cred() is called without a
+ credential handle.
+- Changes from 1.19.1
+ * Fix a linking issue with Samba.
+ * Better support multiple pkinit_identities values by checking whether
+ certificates can be loaded for each value.
+- Changes from 1.19
+ Administrator experience
+ * When a client keytab is present, the GSSAPI krb5 mech will refresh
+ credentials even if the current credentials were acquired manually.
+ * It is now harder to accidentally delete the K/M entry from a KDB.
+ Developer experience
+ * gss_acquire_cred_from() now supports the "password" and "verify"
+ options, allowing credentials to be acquired via password and
+ verified using a keytab key.
+ * When an application accepts a GSS security context, the new
+ GSS_C_CHANNEL_BOUND_FLAG will be set if the initiator and acceptor
+ both provided matching channel bindings.
+ * Added the GSS_KRB5_NT_X509_CERT name type, allowing S4U2Self requests
+ to identify the desired client principal by certificate.
+ * PKINIT certauth modules can now cause the hw-authent flag to be set
+ in issued tickets.
+ * The krb5_init_creds_step() API will now issue the same password
+ expiration warnings as krb5_get_init_creds_password().
+ Protocol evolution
+ * Added client and KDC support for Microsoft's Resource-Based Constrained
+ Delegation, which allows cross-realm S4U2Proxy requests. A third-party
+ database module is required for KDC support.
+ * kadmin/admin is now the preferred server principal name for kadmin
+ connections, and the host-based form is no longer created by default.
+ The client will still try the host-based form as a fallback.
+ * Added client and server support for Microsoft's KERB_AP_OPTIONS_CBT
+ extension, which causes channel bindings to be required for the
+ initiator if the acceptor provided them. The client will send this
+ option if the client_aware_gss_bindings profile option is set.
+ User experience
+ * kinit will now issue a warning if the des3-cbc-sha1 encryption type is
+ used in the reply. This encryption type will be deprecated and removed
+ in future releases.
+ * Added kvno flags --out-cache, --no-store, and --cached-only
+ (inspired by Heimdal's kgetcred).
+- Changes from 1.18.3
+ * Fix a denial of service vulnerability when decoding Kerberos
+ protocol messages.
+ * Fix a locking issue with the LMDB KDB module which could cause
+ KDC and kadmind processes to lose access to the database.
+ * Fix an assertion failure when libgssapi_krb5 is repeatedly loaded
+ and unloaded while libkrb5support remains loaded.
+- Changes from 1.18.2
+ * Fix a SPNEGO regression where an acceptor using the default credential
+ would improperly filter mechanisms, causing a negotiation failure.
+ * Fix a bug where the KDC would fail to issue tickets if the local krbtgt
+ principal's first key has a single-DES enctype.
+ * Add stub functions to allow old versions of OpenSSL libcrypto to link
+ against libkrb5.
+ * Fix a NegoEx bug where the client name and delegated credential might
+ not be reported.
+- Changes from 1.18.1
+ * Fix a crash when qualifying short hostnames when the system has
+ no primary DNS domain.
+ * Fix a regression when an application imports "service@" as a GSS
+ host-based name for its acceptor credential handle.
+ * Fix KDC enforcement of auth indicators when they are modified by
+ the KDB module.
+ * Fix removal of require_auth string attributes when the LDAP KDB
+ module is used.
+ * Fix a compile error when building with musl libc on Linux.
+ * Fix a compile error when building with gcc 4.x.
+ * Change the KDC constrained delegation precedence order for consistency
+ with Windows KDCs.
+- Changes from 1.18
+ Administrator experience:
+ * Remove support for single-DES encryption types.
+ * Change the replay cache format to be more efficient and robust.
+ Replay cache filenames using the new format end with ".rcache2"
+ by default.
+ * setuid programs will automatically ignore environment variables
+ that normally affect krb5 API functions, even if the caller does
+ not use krb5_init_secure_context().
+ * Add an "enforce_ok_as_delegate" krb5.conf relation to disable
+ credential forwarding during GSSAPI authentication unless the KDC
+ sets the ok-as-delegate bit in the service ticket.
+ * Use the permitted_enctypes krb5.conf setting as the default value
+ for default_tkt_enctypes and default_tgs_enctypes.
+ Developer experience:
+ * Implement krb5_cc_remove_cred() for all credential cache types.
+ * Add the krb5_pac_get_client_info() API to get the client account
+ name from a PAC.
+ Protocol evolution:
+ * Add KDC support for S4U2Self requests where the user is identified
+ by X.509 certificate. (Requires support for certificate lookup from
+ a third-party KDB module.)
+ * Remove support for an old ("draft 9") variant of PKINIT.
+ * Add support for Microsoft NegoEx. (Requires one or more third-party
+ GSS modules implementing NegoEx mechanisms.)
+ User experience:
+ * Add support for "dns_canonicalize_hostname=fallback", causing
+ host-based principal names to be tried first without DNS
+ canonicalization, and again with DNS canonicalization if the
+ un-canonicalized server is not found.
+ * Expand single-component hostnames in host-based principal names
+ when DNS canonicalization is not used, adding the system's first DNS
+ search path as a suffix. Add a "qualify_shortname" krb5.conf relation
+ to override this suffix or disable expansion.
+ * Honor the transited-policy-checked ticket flag on application servers,
+ eliminating the requirement to configure capaths on servers in some
+ scenarios.
+ Code quality:
+ * The libkrb5 serialization code (used to export and import krb5 GSS
+ security contexts) has been simplified and made type-safe.
+ * The libkrb5 code for creating KRB-PRIV, KRB-SAFE, and KRB-CRED
+ messages has been revised to conform to current coding practices.
+ * The test suite has been modified to work with macOS System Integrity
+ Protection enabled.
+ * The test suite incorporates soft-pkcs11 so that PKINIT PKCS11 support
+ can always be tested.
+- Changes from 1.17.1
+ * Fix a bug preventing "addprinc -randkey -kvno" from working in kadmin.
+ * Fix a bug preventing time skew correction from working when a KCM
+ credential cache is used.
+- Changes from 1.17:
+ Administrator experience:
+ * A new Kerberos database module using the Lightning Memory-Mapped
+ Database library (LMDB) has been added. The LMDB KDB module should
+ be more performant and more robust than the DB2 module, and may
+ become the default module for new databases in a future release.
+ * "kdb5_util dump" will no longer dump policy entries when specific
+ principal names are requested.
+ Developer experience:
+ * The new krb5_get_etype_info() API can be used to retrieve enctype,
+ salt, and string-to-key parameters from the KDC for a client
+ principal.
+ * The new GSS_KRB5_NT_ENTERPRISE_NAME name type allows enterprise
+ principal names to be used with GSS-API functions.
+ * KDC and kadmind modules which call com_err() will now write to the
+ log file in a format more consistent with other log messages.
+ * Programs which use large numbers of memory credential caches should
+ perform better.
+ Protocol evolution:
+ * The SPAKE pre-authentication mechanism is now supported. This
+ mechanism protects against password dictionary attacks without
+ requiring any additional infrastructure such as certificates. SPAKE
+ is enabled by default on clients, but must be manually enabled on
+ the KDC for this release.
+ * PKINIT freshness tokens are now supported. Freshness tokens can
+ protect against scenarios where an attacker uses temporary access to
+ a smart card to generate authentication requests for the future.
+ * Password change operations now prefer TCP over UDP, to avoid
+ spurious error messages about replays when a response packet is
+ dropped.
+ * The KDC now supports cross-realm S4U2Self requests when used with a
+ third-party KDB module such as Samba's. The client code for
+ cross-realm S4U2Self requests is also now more robust.
+ User experience:
+ * The new ktutil addent -f flag can be used to fetch salt information
+ from the KDC for password-based keys.
+ * The new kdestroy -p option can be used to destroy a credential cache
+ within a collection by client principal name.
+ * The Kerberos man page has been restored, and documents the
+ environment variables that affect programs using the Kerberos
+ library.
+ Code quality:
+ * Python test scripts now use Python 3.
+ * Python test scripts now display markers in verbose output, making it
+ easier to find where a failure occurred within the scripts.
+ * The Windows build system has been simplified and updated to work
+ with more recent versions of Visual Studio. A large volume of
+ unused Windows-specific code has been removed. Visual Studio 2013
+ or later is now required.
+- Replace old $RPM_* shell vars
+- Removal of SuSEfirewall2 service since SuSEfirewall2 has been replaced
+ by firewalld
+- Remove cruft to support distributions older than SLE 12
+- Use macros where applicable
+- Switch to pkgconfig style dependencies
+- Use %_tmpfilesdir instead of the wrong %_libexecdir/tmpfiles.d
+ notation: libexecdir is likely changing away from /usr/lib to
+ /usr/libexec
+- Build with full Cyrus SASL support. Negotiating SASL credentials with
+ an EXTERNAL bind mechanism requires interaction. Kerberos provides its
+ own interaction function that skips all interaction, thus preventing the
+ mechanism from working.
+- Removed patches:
+ * 0007-krb5-1.12-ksu-path.patch
+ * 0010-Add-recursion-limit-for-ASN.1-indefinite-lengths.patch
+ * 0011-Fix-KDC-null-deref-on-bad-encrypted-challenge.patch
+- Renamed patches:
+ * 0001-krb5-1.12-pam.patch => 0001-ksu-pam-integration.patch
+ * 0003-krb5-1.12-buildconf.patch => 0003-Adjust-build-configuration.patch
+ * 0008-krb5-1.12-selinux-label.patch => 0007-SELinux-integration.patch
+ * 0009-krb5-1.9-debuginfo.patch => 0008-krb5-1.9-debuginfo.patch
+ * 0012-Fix-KDC-null-deref-on-TGS-inner-body-null-server.patch =>
+ 0009-Fix-KDC-null-deref-on-TGS-inner-body-null-server.patch
+
+- Fix KDC null pointer dereference via a FAST inner body that
+ lacks a server field; (CVE-2021-37750); (bsc#1189929);
+- Added patches:
+ * 0012-Fix-KDC-null-deref-on-TGS-inner-body-null-server.patch
+
+- Fix KDC null deref on bad encrypted challenge; (CVE-2021-36222);
+ (bsc#1188571);
+- Added patches:
+ * 0011-Fix-KDC-null-deref-on-bad-encrypted-challenge.patch
+
+- Use /run instead of /var/run for daemon PID files; (bsc#1185163);
+
+- Add recursion limit for ASN.1 indefinite lengths; (CVE-2020-28196);
+ (bsc#1178512);
+- Added patches:
+ * 0010-Add-recursion-limit-for-ASN.1-indefinite-lengths.patch
+
+- Fix prefix reported by krb5-config, libraries and headers are not
+ installed under /usr/lib/mit prefix. (bsc#1174079)
+
+- Update logrotate script, call systemd to reload the services
+ instead of init-scripts. (boo#1169357)
+
+- Integrate pam_keyinit pam module, ksu-pam.d; (bsc#1081947);
+ (bsc#1144047);
+
+- Move LDAP schema files from /usr/share/doc/packages/krb5 to
+ /usr/share/kerberos/ldap; (bsc#1134217);
+
+- Upgrade to 1.16.3
+ * Fix a regression in the MEMORY credential cache type which could cause
+ client programs to crash.
+ * MEMORY credential caches will not be listed in the global collection,
+ with the exception of the default credential cache if it is of type MEMORY.
+ * Remove an incorrect assertion in the KDC which could be used to cause
+ a crash [CVE-2018-20217].
+ * Fix bugs with concurrent use of MEMORY ccache handles.
+ * Fix a KDC crash when falling back between multiple OTP tokens configured
+ for a principal entry.
+ * Fix memory bugs when gss_add_cred() is used to create a new credential,
+ and fix a bug where it ignores the desired_name.
+ * Fix the behavior of gss_inquire_cred_by_mech() when the credential does
+ not contain an element of the requested mechanism.
+ * Make cross-realm S4U2Self requests work on the client when no
+ default_realm is configured.
+ * Add a kerberos(7) man page containing documentation of the environment
+ variables that affect Kerberos programs.
+- Use systemd-tmpfiles to create files under /var/lib/kerberos, required
+ by transactional updates; (bsc#1100126);
+- Rename patches:
+ * krb5-1.12-pam.patch => 0001-krb5-1.12-pam.patch
+ * krb5-1.9-manpaths.dif => 0002-krb5-1.9-manpaths.patch
+ * krb5-1.12-buildconf.patch => 0003-krb5-1.12-buildconf.patch
+ * krb5-1.6.3-gssapi_improve_errormessages.dif to
+ 0004-krb5-1.6.3-gssapi_improve_errormessages.patch
+ * krb5-1.6.3-ktutil-manpage.dif => 0005-krb5-1.6.3-ktutil-manpage.patch
+ * krb5-1.12-api.patch => 0006-krb5-1.12-api.patch
+ * krb5-1.12-ksu-path.patch => 0007-krb5-1.12-ksu-path.patch
+ * krb5-1.12-selinux-label.patch => 0008-krb5-1.12-selinux-label.patch
+ * krb5-1.9-debuginfo.patch => 0009-krb5-1.9-debuginfo.patch
+
+- Upgrade to 1.16.1
+ * kdc client cert matching on client principal entry
+ * Allow ktutil addent command to ignore key version and use
+ non-default salt string.
+ * add kpropd pidfile support
+ * enable "encrypted_challenge_indicator" realm option on tickets
+ obtained using FAST encrypted challenge pre-authentication.
+ * dates through 2106 accepted
+ * KDC support for trivially renewable tickets
+ * stop caching referral and alternate cross-realm TGTs to prevent
+ duplicate credential cache entries
+
+- BSC#1021402 move %{_libdir}/krb5/plugins/tls/k5tls.so to krb5 package
+ so it is avaiable for krb5-client as well.
+
+- Upgrade to 1.15.3
+ * Fix flaws in LDAP DN checking, including a null dereference KDC
+ crash which could be triggered by kadmin clients with administrative
+ privileges [CVE-2018-5729, CVE-2018-5730].
+ * Fix a KDC PKINIT memory leak.
+ * Fix a small KDC memory leak on transited or authdata errors when
+ processing TGS requests.
+ * Fix a null dereference when the KDC sends a large TGS reply.
+ * Fix "kdestroy -A" with the KCM credential cache type.
+ * Fix the handling of capaths "." values.
+ * Fix handling of repeated subsection specifications in profile files
+ (such as when multiple included files specify relations in the same
+ subsection).
+
+- Added support for /etc/krb5.conf.d/ for configuration snippets
+
+- Replace references to /var/adm/fillup-templates with new
+ %_fillupdir macro (boo#1069468)
+
+- Remove build dependency doxygen, python-Cheetah, python-Sphinx,
+ python-libxml2, python-lxml, most of which are python 2 programs.
+ Consequently remove -doc subpackage. Users are encouraged to use
+ online documentation. (bsc#1066461)
+
+- Update package descriptions.
+
+- Upgrade to 1.15.2
+ * Fix a KDC denial of service vulnerability caused by unset status
+ strings [CVE-2017-11368]
+ * Preserve GSS contexts on init/accept failure [CVE-2017-11462]
+ * Fix kadm5 setkey operation with LDAP KDB module
+ * Use a ten-second timeout after successful connection for HTTPS KDC
+ requests, as we do for TCP requests
+ * Fix client null dereference when KDC offers encrypted challenge
+ without FAST
+ * Ignore dotfiles when processing profile includedir directive
+ * Improve documentation
+
+- Set "rdns" and "dns_canonicalize_hostname" to false in krb5.conf
+ in order to improve client security in handling service principle
+ names. (bsc#1054028)
+
+- Prevent kadmind.service startup failure caused by absence of
+ LDAP service. (bsc#903543)
+
+- There is no change made about the package itself, this is only
+ copying over some changelog texts from SLE package:
+- bug#918595 owned by varkoly@suse.com: VUL-0: CVE-2014-5355
+ krb5: denial of service in krb5_read_message
+- bug#912002 owned by varkoly@suse.com: VUL-0
+ CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423:
+ krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token
+- bug#910458 owned by varkoly@suse.com: VUL-1
+ CVE-2014-5354: krb5: NULL pointer dereference when using keyless entries
+- bug#928978 owned by varkoly@suse.com: VUL-0
+ CVE-2015-2694: krb5: issues in OTP and PKINIT kdcpreauth modules leading
+ to requires_preauth bypass
+- bug#910457 owned by varkoly@suse.com: VUL-1
+ CVE-2014-5353: krb5: NULL pointer dereference when using a ticket policy
+ name as a password policy name
+- bug#991088 owned by hguo@suse.com: VUL-1
+ CVE-2016-3120: krb5: S4U2Self KDC crash when anon is restricted
+- bug#992853 owned by hguo@suse.com: krb5: bogus prerequires
+- [fate#320326](https://fate.suse.com/320326)
+- bug#982313 owned by pgajdos@suse.com: Doxygen unable to resolve reference
+ from \cite
+
+- Remove wrong PreRequires from krb5
+
+- use HTTPS project and source URLs
+
+- use source urls.
+- krb5.keyring: Added Greg Hudson
+
+- removed obsolete krb5-1.15-fix_kdb_free_principal_e_data.patch
+- Upgrade to 1.15.1
+ * Allow KDB modules to determine how the e_data field of principal
+ fields is freed
+ * Fix udp_preference_limit when the KDC location is configured with
+ SRV records
+ * Fix KDC and kadmind startup on some IPv4-only systems
+ * Fix the processing of PKINIT certificate matching rules which have
+ two components and no explicit relation
+ * Improve documentation
+
+- remove useless environment.pickle to make build-compare happy
+
+- Introduce patch
+ krb5-1.15-fix_kdb_free_principal_e_data.patch
+ to fix freeing of e_data in the kdb principal
+
+- Upgrade to 1.15
+- obsoleted Patch7 (krb5-1.7-doublelog.patch) fixed in 1.12.2
+- obsoleted patch to src/util/gss-kernel-lib/Makefile.in since
+ file is not available in upstream source anymore
+- obsoleted Patch15 (krb5-fix_interposer.patch) fixed in 1.15
+- Upgrade from 1.14.4 to 1.15 - major changes:
+ Administrator experience:
+ * Add support to kadmin for remote extraction of current keys without
+ changing them (requires a special kadmin permission that is excluded
+ from the wildcard permission), with the exception of highly
+ protected keys.
+ * Add a lockdown_keys principal attribute to prevent retrieval of the
+ principal's keys (old or new) via the kadmin protocol. In newly
+ created databases, this attribute is set on the krbtgt and kadmin
+ principals.
+ * Restore recursive dump capability for DB2 back end, so sites can
+ more easily recover from database corruption resulting from power
+ failure events.
+ * Add DNS auto-discovery of KDC and kpasswd servers from URI records,
+ in addition to SRV records. URI records can convey TCP and UDP
+ servers and master KDC status in a single DNS lookup, and can also
+ point to HTTPS proxy servers.
+ * Add support for password history to the LDAP back end.
+ * Add support for principal renaming to the LDAP back end.
+ * Use the getrandom system call on supported Linux kernels to avoid
+ blocking problems when getting entropy from the operating system.
+ * In the PKINIT client, use the correct DigestInfo encoding for PKCS
+ [#1] signatures, so that some especially strict smart cards will work.
+ Code quality:
+ * Clean up numerous compilation warnings.
+ * Remove various infrequently built modules, including some preauth
+ modules that were not built by default.
+ Developer experience:
+ * Add support for building with OpenSSL 1.1.
+ * Use SHA-256 instead of MD5 for (non-cryptographic) hashing of
+ authenticators in the replay cache. This helps sites that must
+ build with FIPS 140 conformant libraries that lack MD5.
+ Protocol evolution:
+ * Add support for the AES-SHA2 enctypes, which allows sites to conform
+ to Suite B crypto requirements.
+- Upgrade from 1.14.3 to 1.14.4 - major changes:
+ * Fix some rare btree data corruption bugs
+ * Fix numerous minor memory leaks
+ * Improve portability (Linux-ppc64el, FreeBSD)
+ * Improve some error messages
+ * Improve documentation
+
+- add pam configuration file required for ksu
+ just use a copy of "su" one from Tumbleweed
+
+- Upgrade from 1.14.2 to 1.14.3:
+ * Improve some error messages
+ * Improve documentation
+ * Allow a principal with nonexistent policy to bypass the minimum
+ password lifetime check, consistent with other aspects of
+ nonexistent policies
+ * Fix a rare KDC denial of service vulnerability when anonymous client
+ principals are restricted to obtaining TGTs only [CVE-2016-3120]
+
+- Remove comments breaking post scripts.
+
+- Do no use systemd_requires macros in main package, it adds
+ unneeded dependencies which pulls systemd into minimal chroot.
+- Only call %insserv_prereq when building for pre-systemd
+ distributions.
+- Optimise some %post/%postun when only /sbin/ldconfig is called.
+
+- Remove source file ccapi/common/win/OldCC/autolock.hxx
+ that is not needed and does not carry an acceptable license.
+ (bsc#968111)
+
+- removed obsolete patches:
+ * 0107-Fix-LDAP-null-deref-on-empty-arg-CVE-2016-3119.patch
+ * krb5-mechglue_inqure_attrs.patch
+- Upgrade from 1.14.1 to 1.14.2:
+ * Fix a moderate-severity vulnerability in the LDAP KDC back end that
+ could be exploited by a privileged kadmin user [CVE-2016-3119]
+ * Improve documentation
+ * Fix some interactions with GSSAPI interposer mechanisms
+
+- Upgrade from 1.14 to 1.14.1:
+ * Remove expired patches:
+ 0104-Verify-decoded-kadmin-C-strings-CVE-2015-8629.patch
+ 0105-Fix-leaks-in-kadmin-server-stubs-CVE-2015-8631.patch
+ 0106-Check-for-null-kadm5-policy-name-CVE-2015-8630.patch
+ krbdev.mit.edu-8301.patch
+ * Replace source archives:
+ krb5-1.14.tar.gz ->
+ krb5-1.14.1.tar.gz
+ krb5-1.14.tar.gz.asc ->
+ krb5-1.14.1.tar.gz.asc
+ * Adjust line numbers in:
+ krb5-fix_interposer.patch
+
+- Introduce patch
+ 0107-Fix-LDAP-null-deref-on-empty-arg-CVE-2016-3119.patch
+ to fix CVE-2016-3119 (bsc#971942)
+
+- Remove krb5-mini pieces from spec file.
+ Hence remove pre_checkin.sh
+- Remove expired macros and other minor clean-ups in spec file.
+
+- Fix CVE-2015-8629: krb5: xdr_nullstring() doesn't check for terminating null character
+ with patch 0104-Verify-decoded-kadmin-C-strings-CVE-2015-8629.patch
+ (bsc#963968)
+- Fix CVE-2015-8631: krb5: Memory leak caused by supplying a null principal name in request
+ with patch 0105-Fix-leaks-in-kadmin-server-stubs-CVE-2015-8631.patch
+ (bsc#963975)
+- Fix CVE-2015-8630: krb5: krb5 doesn't check for null policy when KADM5_POLICY is set in the mask
+ with patch 0106-Check-for-null-kadm5-policy-name-CVE-2015-8630.patch
+ (bsc#963964)
+
+- Add two patches from Fedora, fixing two crashes:
+ * krb5-fix_interposer.patch
+ * krb5-mechglue_inqure_attrs.patch
+
+- Update to 1.14
+- dropped krb5-kvno-230379.patch
+- added krbdev.mit.edu-8301.patch fixing wrong function call
+ Major changes in 1.14 (2015-11-20)
+ Administrator experience:
+ * Add a new kdb5_util tabdump command to provide reporting-friendly
+ tabular dump formats (tab-separated or CSV) for the KDC database.
+ Unlike the normal dump format, each output table has a fixed number
+ of fields. Some tables include human-readable forms of data that
+ are opaque in ordinary dump files. This format is also suitable for
+ importing into relational databases for complex queries.
+ * Add support to kadmin and kadmin.local for specifying a single
+ command line following any global options, where the command
+ arguments are split by the shell--for example, "kadmin getprinc
+ principalname". Commands issued this way do not prompt for
+ confirmation or display warning messages, and exit with non-zero
+ status if the operation fails.
+ * Accept the same principal flag names in kadmin as we do for the
+ default_principal_flags kdc.conf variable, and vice versa. Also
+ accept flag specifiers in the form that kadmin prints, as well as
+ hexadecimal numbers.
+ * Remove the triple-DES and RC4 encryption types from the default
+ value of supported_enctypes, which determines the default key and
+ salt types for new password-derived keys. By default, keys will
+ only created only for AES128 and AES256. This mitigates some types
+ of password guessing attacks.
+ * Add support for directory names in the KRB5_CONFIG and
+ KRB5_KDC_PROFILE environment variables.
+ * Add support for authentication indicators, which are ticket
+ annotations to indicate the strength of the initial authentication.
+ Add support for the "require_auth" string attribute, which can be
+ set on server principal entries to require an indicator when
+ authenticating to the server.
+ * Add support for key version numbers larger than 255 in keytab files,
+ and for version numbers up to 65535 in KDC databases.
+ * Transmit only one ETYPE-INFO and/or ETYPE-INFO2 entry from the KDC
+ during pre-authentication, corresponding to the client's most
+ preferred encryption type.
+ * Add support for server name identification (SNI) when proxying KDC
+ requests over HTTPS.
+ * Add support for the err_fmt profile parameter, which can be used to
+ generate custom-formatted error messages.
+ Code quality:
+ * Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that
+ could cause server crashes. [CVE-2015-2695] [CVE-2015-2696]
+ [CVE-2015-2698]
+ * Fix build_principal memory bug that could cause a KDC
+ crash. [CVE-2015-2697]
+ Developer experience:
+ * Change gss_acquire_cred_with_password() to acquire credentials into
+ a private memory credential cache. Applications can use
+ gss_store_cred() to make the resulting credentials visible to other
+ processes.
+ * Change gss_acquire_cred() and SPNEGO not to acquire credentials for
+ IAKERB or for non-standard variants of the krb5 mechanism OID unless
+ explicitly requested. (SPNEGO will still accept the Microsoft
+ variant of the krb5 mechanism OID during negotiation.)
+ * Change gss_accept_sec_context() not to accept tokens for IAKERB or
+ for non-standard variants of the krb5 mechanism OID unless an
+ acceptor credential is acquired for those mechanisms.
+ * Change gss_acquire_cred() to immediately resolve credentials if the
+ time_rec parameter is not NULL, so that a correct expiration time
+ can be returned. Normally credential resolution is delayed until
+ the target name is known.
+ * Add krb5_prepend_error_message() and krb5_wrap_error_message() APIs,
+ which can be used by plugin modules or applications to add prefixes
+ to existing detailed error messages.
+ * Add krb5_c_prfplus() and krb5_c_derive_prfplus() APIs, which
+ implement the RFC 6113 PRF+ operation and key derivation using PRF+.
+ * Add support for pre-authentication mechanisms which use multiple
+ round trips, using the the KDC_ERR_MORE_PREAUTH_DATA_REQUIRED error
+ code. Add get_cookie() and set_cookie() callbacks to the kdcpreauth
+ interface; these callbacks can be used to save marshalled state
+ information in an encrypted cookie for the next request.
+ * Add a client_key() callback to the kdcpreauth interface to retrieve
+ the chosen client key, corresponding to the ETYPE-INFO2 entry sent
+ by the KDC.
+ * Add an add_auth_indicator() callback to the kdcpreauth interface,
+ allowing pre-authentication modules to assert authentication
+ indicators.
+ * Add support for the GSS_KRB5_CRED_NO_CI_FLAGS_X cred option to
+ suppress sending the confidentiality and integrity flags in GSS
+ initiator tokens unless they are requested by the caller. These
+ flags control the negotiated SASL security layer for the Microsoft
+ GSS-SPNEGO SASL mechanism.
+ * Make the FILE credential cache implementation less prone to
+ corruption issues in multi-threaded programs, especially on
+ platforms with support for open file description locks.
+ Performance:
+ * On slave KDCs, poll the master KDC immediately after processing a
+ full resync, and do not require two full resyncs after the master
+ KDC's log file is reset.
+ User experience:
+ * Make gss_accept_sec_context() accept tickets near their expiration
+ but within clock skew tolerances, rather than rejecting them
+ immediately after the server's view of the ticket expiration time.
+
+- Update to 1.13.3
+- removed patches for security fixes now in upstream source:
+ 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch
+ 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch
+ 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch
+ 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch
+ Major changes in 1.13.3 (2015-12-04)
+ This is a bug fix release. The krb5-1.13 release series is in
+ maintenance, and for new deployments, installers should prefer the
+ krb5-1.14 release series or later.
+ * Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that
+ could cause server crashes. [CVE-2015-2695] [CVE-2015-2696]
+ [CVE-2015-2698]
+ * Fix build_principal memory bug that could cause a KDC
+ crash. [CVE-2015-2697]
+ * Allow an iprop slave to receive full resyncs from KDCs running
+ krb5-1.10 or earlier.
+
+- Apply patch 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch
+ to fix a memory corruption regression introduced by resolution of
+ CVE-2015-2698. bsc#954204
+
+- Make kadmin.local man page available without having to install krb5-client. bsc#948011
+- Apply patch 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch
+ to fix build_principal memory bug [CVE-2015-2697] bsc#952190
+- Apply patch 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch
+ to fix IAKERB context aliasing bugs [CVE-2015-2696] bsc#952189
+- Apply patch 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch
+ to fix SPNEGO context aliasing bugs [CVE-2015-2695] bsc#952188
+
+- Let server depend on libev (module of libverto). This was the
+ preferred implementation before the seperation of libverto from krb.
+
+- Drop libverto and libverto-libev Requires from the -server
+ package: those package names don't exist and the shared libs
+ are pulled in automatically.
+
+- Unconditionally buildrequire libverto-devel: krb5-mini also
+ depends on it.
+
+- pre_checkin.sh aligned changes between krb5/krb5-mini
+- added krb5.keyring
+
+- update to krb5 1.13.2
+- DES transition
+ ==============
+ The Data Encryption Standard (DES) is widely recognized as weak. The
+ krb5-1.7 release contains measures to encourage sites to migrate away
+- From using single-DES cryptosystems. Among these is a configuration
+ variable that enables "weak" enctypes, which defaults to "false"
+ beginning with krb5-1.8.
+ Major changes in 1.13.2 (2015-05-08)
+ This is a bug fix release.
+ * Fix a minor vulnerability in krb5_read_message, which is primarily
+ used in the BSD-derived kcmd suite of applications. [CVE-2014-5355]
+ * Fix a bypass of requires_preauth in KDCs that have PKINIT enabled.
+ [CVE-2015-2694]
+ * Fix some issues with the LDAP KDC database back end.
+ * Fix an iteration-related memory leak in the DB2 KDC database back
+ end.
+ * Fix issues with some less-used kadm5.acl functionality.
+ * Improve documentation.
+
+- Use externally built libverto
+
+- update to krb5 1.13.1
+ Major changes in 1.13.1 (2015-02-11)
+ This is a bug fix release.
+ * Fix multiple vulnerabilities in the LDAP KDC back end.
+ [CVE-2014-5354] [CVE-2014-5353]
+ * Fix multiple kadmind vulnerabilities, some of which are based in the
+ gssrpc library. [CVE-2014-5352 CVE-2014-5352 CVE-2014-9421
+ CVE-2014-9422 CVE-2014-9423]
+
+- Update to krb5 1.13
+ * Add support for accessing KDCs via an HTTPS proxy server using the
+ MS-KKDCP protocol.
+ * Add support for hierarchical incremental propagation, where slaves
+ can act as intermediates between an upstream master and other downstream
+ slaves.
+ * Add support for configuring GSS mechanisms using /etc/gss/mech.d/*.conf
+ files in addition to /etc/gss/mech.
+ * Add support to the LDAP KDB module for binding to the LDAP server using
+ SASL.
+ * The KDC listens for TCP connections by default.
+ * Fix a minor key disclosure vulnerability where using the "keepold" option
+ to the kadmin randkey operation could return the old keys. [CVE-2014-5351]
+ * Add client support for the Kerberos Cache Manager protocol. If the host
+ is running a Heimdal kcm daemon, caches served by the daemon can be
+ accessed with the KCM: cache type.
+ * When built on OS X 10.7 and higher, use "KCM:" as the default cache type,
+ unless overridden by command-line options or krb5-config values.
+ * Add support for doing unlocked database dumps for the DB2 KDC back end,
+ which would allow the KDC and kadmind to continue accessing the database
+ during lengthy database dumps.
+- Removed patches, useless or upstreamed
+ * krb5-1.9-kprop-mktemp.patch
+ * krb5-1.10-ksu-access.patch
+ * krb5-1.12-doxygen.patch
+ * bnc#897874-CVE-2014-5351.diff
+ * krb5-1.13-work-around-replay-cache-creation-race.patch
+ * krb5-1.10-kpasswd_tcp.patch
+- Refreshed patches
+ * krb5-1.12-pam.patch
+ * krb5-1.12-selinux-label.patch
+ * krb5-1.7-doublelog.patch
+
libgcrypt
+- POWER10 performance enhancements for cryptography [jsc#PED-566]
+ * Backport upstream fixes:
+ - AES-GCM: Bulk implementation of AES-GCM acceleration for ppc64le
+ - hwf-ppc: fix missing HWF_PPC_ARCH_3_10 in HW feature
+ - Chacha20/poly1305: Optimized chacha20/poly1305 for P10 operation
+ * Add patches:
+ - libgcrypt-Bulk-implementation-of-AES-GCM-acceleration-ppc64le.patch
+ - libgcrypt-hwf-ppc-fix-missing-HWF_PPC_ARCH_3_10-in-HW-feature.patch
+ - libgcrypt-Optimized-chacha20-poly1305-for-P10-operation.patch
+
libidn2
+- The library is actually dual licensed, GPL-2.0-or-later or LGPL-3.0-or-later,
+ match factory licenses (bsc#1180138)
+
+- Update to version 2.2.0 CVE-2019-12290 bsc#1154884:
+ * Perform A-Label roundtrip for lookup functions by default
+ * Stricter check of input to punycode decoder
+ * Fix punycode decoding with no ASCII chars but given delimiter
+ * Fix 'idn2 --no-tr64' (was a no-op)
+ * Allow _ as a basic code point in domain labels
+ * Fail building documentation if 'ronn' isn't installed
+ * git tag changed to reflect https://semver.org/
+
+- update to 2.1.1 CVE-2019-18224 bsc#1154887:
+ * Revert SONAME bump from release 2.1.0
+ * Fix NULL dereference in idn2_register_u8() and
+ idn2_register_ul()
+ * Fix free of random value in idn2_to_ascii_4i()
+ * Improved fuzzer (which found the above issues)
+ * Check for valid unicode input in punycode encoder
+ * Avoid excessive CPU usage in punycode encoding with
+ large inputs
+ * Deprecate idn2_to_ascii_4i() in favor of idn2_to_ascii_4i2()
+ * Restrict output length of idn2_to_ascii_4i() to 63 bytes
+
+- update to 2.1.0:
+ * Two internal functions are no longer exposed, soname bump
+ * Fix label length check for idn2_register_u8()
+ * Add missing error messages to idn2_strerror_name()
+
+- update to 2.0.5:
+ * Switch the default library behavior to IDNA2008 as amended by
+ TR#46 (non-transitional). That default behavior is enabled when
+ no flags are specified to function calls. Applications can
+ utilize the %IDN2_NO_TR46 flag to switch to the unamended
+ IDNA2008. This is done in the interest of interoperability
+ based on the fact that this is what application writers care
+ about rather than strict compliance with a particular protocol
+ * Fixed memory leak in idn2_to_unicode_8zlz()
+ * Return error (IDN2_ICONV_FAIL) on charset conversion errors
+ * Fixed issue with STD3 rules applying in non-transitional TR46
+ mode
+ * idn2: added option --usestd3asciirules
+- put translations into libidn2-lang
+- correct location of install_info_prereq macro to be on tools
+
+- update to 2.0.4:
+ * Fix integer overflow in bidi.c/_isBidi() bsc#1056451
+ * Fix integer overflow in puny_decode.c/decode_digit()
+ bsc#1056450
+ * Fix idna_free() to idn_free()
+- enable documentation again
+
+- update to 2.0.3:
+ * %IDN2_USE_STD3_ASCII_RULES disabled by default.
+ Previously libidn2 was eliminating non-STD3 characters from
+ domain strings such as _443._tcp.example.com, or IPs such as
+ 1.2.3.4/24 provided to libidn2 functions. That was an
+ unexpected regression for applications switching from libidn
+ and thus it is no longer applied by default.
+ Use %IDN2_USE_STD3_ASCII_RULES to enable that behavior again.
+- disable documentation, does not build correctly
+
+- update to 2.0.2:
+ * Fix TR46 transitional mode
+ * Fix several documentation issues
+
+- Sources updated from http://alpha.gnu.org to https://ftp.gnu.org
+
+- Update to version 2.0.1
+- Version 2.0.1 (released 2017-04-22)
+ * idn2 utility now using IDNA2008 + TR46 by default
+- Version 2.0.0 (released 2017-03-29) [alpha]
+ * Version numbering scheme changed
+ * Added to ASCII conversion functions corresponding to libidn1
+ functions:
+ - idn2_to_ascii_4i - idn2_to_ascii_4z
+ - idn2_to_ascii_8z - idn2_to_ascii_lz
+ * Added to unicode conversion functions corresponding to libidn1
+ functions:
+ - idn2_to_unicode_8z4z - idn2_to_unicode_4z4z
+ - idn2_to_unicode_44i - idn2_to_unicode_8z8z
+ - idn2_to_unicode_8zlz - idn2_to_unicode_lzlz
+ * Including idn2.h will provide libidn1 compatibility functions
+ unless IDN2_SKIP_LIBIDN_COMPAT is defined. That allows converting
+ applications from libidn1 (which offers IDNA2003) to libidn2 (which
+ offers IDNA2008) by replacing idna.h to idn2.h in the applications'
+ source.
+- Dropped patch not needed after revision
+ * libidn2-no-examples-build.patch
+
+- Update to version 0.16
+ * build: Fix idn2_cmd.h build rule.
+ * API and ABI is backwards compatible with the previous version.
+- Update to version 0.15 (released 2017-01-14)
+ * Fix out-of-bounds read.
+ * Fix NFC input conversion (regression).
+ * Shrink TR46 static mapping data.
+ * API and ABI is backwards compatible with the previous version.
+- Update to version 0.14 (released 2016-12-30)
+ * build: Fix gentr46map build.
+ * API and ABI is backwards compatible with the previous version.
+- Update to version 0.13:
+ * build: Doesn't download external files during build.
+ * doc: Clarify license.
+ * build: Generate ChangeLog file properly.
+ * doc: API documentation related to TR46 flags.
+ * API and ABI is backwards compatible with the previous version.
+- Update to version 0.12:
+ * Builds/links with libunistring.
+ * Fix two possible crashes with unchecked NULL pointers.
+ * Memleak fix.
+ * Binary search for codepoints in tables.
+ * Do not taint output variable on error in idn2_register_u8().
+ * Do not taint output variable on error in idn2_lookup_u8().
+ * Update to Unicode 6.3.0 IDNA tables.
+ * Add TR46 / UTS#46 support to API and idn2 utility.
+ * Add NFC quick check.
+ * Add make target 'check-coverage' for test coverage report.
+ * Add tests to increase test code coverage.
+ * API and ABI is backwards compatible with the previous version.
+
+- update to 0.11:
+ * Fix stack underflow in 'idn2' command line tool. [boo#1014473]
+ * Fix gdoc script to fix texinfo syntax error.
+ * API and ABI is backwards compatible with the previous version.
+
+- Convert to libidn2 package started to being used, namely by curl
+- Alternative implementation based on new specification from 2008
+ + completely different codebase with no ties to libidn
+
+- libidn 1.33:
+ * bnc#990189 CVE-2015-8948 CVE-2016-6262
+ * bnc#990190 CVE-2016-6261
+ * bnc#990191 CVE-2016-6263
+ * libidn: Fix out-of-bounds stack read in idna_to_ascii_4i.
+ * idn: Solve out-of-bounds-read when reading one zero byte as input.
+ * libidn: stringprep_utf8_nfkc_normalize reject invalid UTF-8.
+
+- Update to 1.32
+ * libidn: Fix crash in idna_to_unicode_8z8z and
+ idna_to_unicode_8zlz. This problem was introduced in 1.31.
+ * API and ABI is backwards compatible with the previous version.
+- Update gpg keyring
+
+- Add Apache-2.0 license to the license line. Under this is the
+ java code, but we don't build it -> just the sources license
+
+- Version bump to 1.31:
+ * Fixes bnc#923241 CVE-2015-2059 out-of-bounds read with stringprep on
+ invalid UTF-8
+ * Few other triv changes
+
+- Version bump to 1.30:
+ * punycode.{c,h} files were reimported
+- Cleanup with spec-cleaner
+
+- update version 1.29:
+ * libidn: Mark internal variable "g_utf8_skip" as static.
+ * idn: Flush stdout to simplify for tools that buffer too heavily.
+ * i18n: Added Brazilian Portuguese translation.
+ * Update gnulib files.
+ * API and ABI is backwards compatible with the previous version.
+
libogg
+- Orthographic fixes to descriptions. RPM group fix.
+
+- Update to version 1.3.2
+ * Fix an bug in oggpack_writecopy().
+
+- Xiph libogg 1.3.1
+ * Guard against very large packets.
+ * Respect the configure --docdir override.
+ * Documentation fixes.
+- fix SLE build
+
+- own aclocal directory
+
+- -O20 optimization level does not exist, use -O3
+
+- updated to version 1.3.0
+ * Add ogg_stream_flush_fill() call
+ This produces longer packets on flush, similar to
+ what ogg_stream_pageout_fill() does for single pages.
+- run spec-cleaner on it
+- remove "SLES10 -> SLES11 upgrade path" parts since the upgrade
+ already happened and anyway the entry in bugzilla is not public
+
+- replace _service with real file
+
+- update to version 1.2.2
+ * Build fix (types correction) for Mac OS X
+ * Update win32 project files to Visual Studio 2008
+ * ogg_stream_pageout_fill documentation fix
+
+- update to version 1.2.1
+ * Various build updates (see SVN)
+ * Add ogg_stream_pageout_fill() to API to allow applications
+ greater explicit flexibility in page sizing.
+ * Documentation updates including multiplexing description,
+ terminology and API (incl. ogg_packet_clear(),
+ ogg_stream_pageout_fill())
+ * Correct possible buffer overwrite in stream encoding on 32 bit
+ when a single packet exceed 250MB.
+ * Correct read-buffer overrun [without side effects] under
+ similar circumstances.
+ * Update unit testing to work properly with new page spill
+ heuristic.
+ * Alter default flushing behavior to span less often and use
+ larger page sizes when packet sizes are large.
+ * Build fixes for additional compilers
+ * Documentation updates
+- run spec-cleaner
+- removed configure.dif (reapply if -fsigned-char causes problems)
+- removed libogg-compile-warning-fix.diff (upstreamed)
+
+- add baselibs.conf as a source
+
libpng16
-- security update
-- added patches
- CVE-2019-7317 [bsc#1124211]
- + libpng16-CVE-2019-7317.patch
-
-- asan_build: build ASAN included
-- debug_build: build more suitable for debugging, install pngcp
-- usecase example: [bsc#1121624]
-
-- security update:
- * CVE-2018-13785 [bsc#1100687]
- + libpng16-CVE-2018-13785.patch
-
-- check with -j1
-
-- Fix SRPM group and grammar issues.
-
-- removed obsoleted Obsoletes
-
-- update to 1.6.34:
- * Removed contrib/pngsuite/i*.png; some of these were incorrect
- and caused test failures.
-- includes 1.6.33:
- * Added PNGMINUS_UNUSED macro to contrib/pngminus/p*.c and added
- missing parenthesis in contrib/pngminus/pnm2png.c
- * Fixed off-by-one error in png_do_check_palette_indexes()
- * Initialize png_handler.row_ptr in libpng_read_fuzzer.cc
- to fix shortlived oss-fuzz issue 3234.
- * Compute a larger limit on IDAT because some applications write
- a deflate buffer for each row
- * Use current date (DATE) instead of release-date (RDATE) in last
- changed date of contrib/oss-fuzz files.
- * Enabled ARM support in CMakeLists.txt
- * Fixed incorrect typecast of some arguments to png_malloc() and
- png_calloc() that were png_uint_32 instead of png_alloc_size_t
- * Use pnglibconf.h.prebuilt when building for ANDROID with cmake
- * Initialize memory allocated by png_inflate to zero, using
- memset, to stop an oss-fuzz "use of uninitialized value"
- detection in png_set_text_2() due to truncated iTXt or zTXt
- chunk.
- * Initialize memory allocated by png_read_buffer to zero, using
- memset, to stop an oss-fuzz "use of uninitialized value"
- detection in png_icc_check_tag_table() due to truncated iCCP
- chunk.
- * Removed redundant tests
- * Added an interlaced version of each file in contrib/pngsuite.
- * Relocate new memset() call in pngrutil.c
- * Add support for loading images with associated alpha in the
- Simplified API
- * Revert contrib/oss-fuzz/libpng_read_fuzzer.cc to libpng-1.6.32
- state
- * Initialize png_handler.row_ptr in libpng_read_fuzzer.cc
- * Add end_info structure and png_read_end() to the libpng fuzzer
-- includes 1.6.32:
- * Avoid possible NULL dereference in png_handle_eXIf when
- benign_errors are allowed. Avoid leaking the input buffer
- "eXIf_buf".
- * Eliminated png_ptr->num_exif member from pngstruct.h and added
- num_exif to arguments for png_get_eXIf() and png_set_eXIf().
- * Added calls to png_handle_eXIf(() in pngread.c and
- png_write_eXIf() in pngwrite.c, and made various other fixes
- to png_write_eXIf().
- * Changed name of png_get_eXIF and png_set_eXIf() to
- png_get_eXIf_1() and png_set_eXIf_1(), respectively, to avoid
- breaking API compatibility with libpng-1.6.31.
- * Updated contrib/libtests/pngunknown.c with eXIf chunk.
- * Initialized btoa[] in pngstest.c
- * Stop memory leak when returning from png_handle_eXIf() with an
- error
- * Replaced local eXIf_buf with info_ptr-eXIf_buf in png_handle_eXIf().
- * Update libpng.3 and libpng-manual.txt about eXIf functions.
- * Restored png_get_eXIf() and png_set_eXIf() to maintain API
- compatability.
- * Removed png_get_eXIf_1() and png_set_eXIf_1().
- * Check length of all chunks except IDAT against user limit to
- fix an OSS-fuzz issue (Fixes CVE-2017-12652)
- * Check length of IDAT against maximum possible IDAT size,
- accounting for height, rowbytes, interlacing and zlib/deflate
- overhead.
- * Restored png_get_eXIf_1() and png_set_eXIf_1(), because
- strlen(eXIf_buf) does not work (the eXIf chunk data can
- contain zeroes).
- * Revised symlink creation, no longer using deprecated cmake
- LOCATION feature
- * Fixed five-byte error in the calculation of IDAT maximum
- possible size.
- * Moved chunk-length check into a png_check_chunk_length()
- private function
- * Moved bad pngs from tests to contrib/libtests/crashers
- * Moved testing of bad pngs into a separate
- tests/pngtest-badpngs script
- * Added the --xfail (expected FAIL) option to pngtest.c. It
- writes XFAIL in the output but PASS for the libpng test.
- * Require cmake-3.0.2 in CMakeLists.txt
- * Fix "const" declaration info_ptr argument to png_get_eXIf_1()
- and the num_exif argument to png_get_eXIf_1()
- * Added "eXIf" to "chunks_to_ignore[]" in png_set_keep_unknown_chunks().
- * Added huge_IDAT.png and empty_ancillary_chunks.png to
- testpngs/crashers.
- * Make pngtest --strict, --relax, --xfail options imply -m
- (multiple).
- * Removed unused chunk_name parameter from png_check_chunk_length().
- * Relocated setting free_me for eXIf data, to stop an OSS-fuzz'
- leak.
- * Initialize profile_header[] in png_handle_iCCP() to fix
- OSS-fuzz issue.
- * Initialize png_ptr->row_buf[0] to 255 in png_read_row() to fix
- OSS-fuzz UMR.
- * Attempt to fix a UMR in png_set_text_2() to fix OSS-fuzz issue.
- * Increase minimum zlib stream from 9 to 14 in png_handle_iCCP(),
- to account for the minimum 'deflate' stream, and relocate the
- test to a point after the keyword has been read.
- * Check that the eXIf chunk has at least 2 bytes and begins with
- "II" or "MM".
- * Added a set of "huge_xxxx_chunk.png" files to
- contrib/testpngs/crashers, one for each known chunk type, with
- length = 2GB-1.
- * Check for 0 return from png_get_rowbytes() and added some
- (size_t) typecasts in contrib/pngminus/*.c to stop some Coverity
- issues (162705, 162706, and 162707).
- * Renamed chunks in contrib/testpngs/crashers to avoid having
- files whose names differ only in case; this causes problems with
- some platforms
- * Added contrib/oss-fuzz directory which contains files used by
- the oss-fuzz project
-- cleanup with spec-cleaner
-
-- update to 1.6.31:
- * Guard the definition of _POSIX_SOURCE in pngpriv.h.
- * Revised pngpriv.h to work around failure to compile
- arm/filter_neon.S.
- * Added "Requires: zlib" to libpng.pc.in.
- * Added special case for FreeBSD in arm/filter_neon.S.
- * Changed "int" to "png_size_t" in intel/filter_sse2.c to prevent
- possible integer overflow.
- * Added eXIf chunk support.
-- remove upstreamed
- 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch
-
-- Drop png-version-info-only.patch, it has no effect after applying
- 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch
- Both patches achieve the same, prefer the upstream version
-
-- Add 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch
- Fix build on ARM
-
-- png-version-info-only.patch: fix missing PNG_VERSION_INFO_ONLY check
-
-- update to 1.6.30:
- Revised documentation of png_get_error_ptr() in the libpng manual.
- Document need to check for integer overflow when allocating a pixel
- buffer for multiple rows in contrib/gregbook, contrib/pngminus,
- example.c, and in the manual (suggested by Jaeseung Choi). This
- is similar to the bug reported against pngquant in CVE-2016-5735.
- Check for integer overflow in contrib/visupng and contrib/tools/genpng.
- Do not double evaluate CMAKE_SYSTEM_PROCESSOR in CMakeLists.txt.
- Avoid writing an empty IDAT when the last IDAT exactly fills the
- compression buffer (bug report by Brian Baird). This bug was
- introduced in libpng-1.6.0.
- Add a reference to the libpng.download site in README.
-
-- update to 1.6.29:
- Moved SSE2 optimization code into the main libpng source directory.
- Configure libpng with "configure --enable-intel-sse" or compile
- libpng with "-DPNG_INTEL_SSE" in CPPFLAGS to enable it.
- Added code for PowerPC VSX optimisation (Vadim Barkov).
- Avoid potential overflow of shift operations in png_do_expand() (Aaron Boxer).
-
-- update to 1.6.28: fix build issues
-
-- update to 1.6.27: fixes CVE-2016-10087
-
-- update to 1.6.26:
- Fixed handling zero length IDAT in pngfix (bug report by Agostino Sarubbo,
- bugfix by John Bowler).
- Do not issue a png_error() on read in png_set_pCAL() because
- png_handle_pCAL has allocated memory that libpng needs to free.
- Issue a png_benign_error instead of a png_error on ADLER32 mismatch
- while decoding compressed data chunks.
- Changed PNG_ZLIB_VERNUM to ZLIB_VERNUM in pngpriv.h, pngstruct.h, and
- pngrutil.c.
- If CRC handling of critical chunks has been set to PNG_CRC_QUIET_USE,
- ignore the ADLER32 checksum in the IDAT chunk as well as the chunk CRCs.
- Issue png_benign_error() on ADLER32 checksum mismatch instead of
- png_error().
- Updated the documentation about CRC and ADLER32 handling.
- Fixed offsets in contrib/intel/intel_sse.patch
- Changed integer constant 4294967294 to unsigned 4294967294U in pngconf.h
- to avoid a signed/unsigned compare in the preprocessor.
- Use zlib-1.2.8.1 inflateValidate() instead of inflateReset2() to
- optionally avoid ADLER32 evaluation.
-
-- update to 1.6.25:
- Reject oversized iCCP profile immediately.
- Conditionally compile png_inflate().
- Don't install pngcp; it conflicts with pngcp in the pngtools package.
- Added MIPS support (Mandar Sahastrabuddhe <
-
-- update to 1.6.24:
- Avoid potential overflow of the PNG_IMAGE_SIZE macro.
- Correct filter heuristic overflow handling.
- Use a more efficient absolute value calculation on SSE2.
- Added pngcp.
- etc. see ANNOUNCE
-
-- Update to new upstream release 1.6.23
- * Fixes a potential memleak in png_set_tRNS.
- * Fixed the progressive reader to handle empty first IDAT
- chunk properly.
- * Added tests in pngvalid.c to check zero-length IDAT chunks
- in various positions.
- * Fixed the sequential reader to handle these more robustly.
- * Corrected progressive read input buffer in pngvalid.c.
- * Moved sse2 prototype from pngpriv.h to
- contrib/intel/intel_sse.patch.
- * Fixed undefined behavior in png_push_save_buffer().
- Do not call memcpy() with a null source, even if count is zero.
- * Fixed bad link to RFC2083 in png.5.
-
-- update to 1.6.22:
- Added a png_image_write_to_memory() API and a number of assist macros
- to allow an application that uses the simplified API write to bypass
- stdio and write directly to memory.
- Relaxed limit checks on gamma values in pngrtran.c. As suggested in
- the comments gamma values outside the range currently permitted
- by png_set_alpha_mode are useful for HDR data encoding. These values
- are already permitted by png_set_gamma so it is reasonable caution to
- extend the png_set_alpha_mode range as HDR imaging systems are starting
- to emerge.
- Restored "& 0xff" in png_save_uint_16() and png_save_uint_32() that
- were accidentally removed from libpng-1.6.17.
- Changed PNG_INFO_cHNK and PNG_FREE_cHNK from 0xnnnn to 0xnnnnU in png.h
- (Robert C. Seacord).
- Added INTEL-SSE2 support (Mike Klein and Matt Sarett, Google, Inc.).
- SSE filter speed improvements for bpp=3:
- memcpy-free implementations of load3() / store3().
- Added PNG_FAST_FILTERS macro (defined as
- PNG_FILTER_NONE|PNG_FILTER_SUB|PNG_FILTER_UP).
-
-- Update to new upstream release 1.6.21
- * Widened the 'limit' check on the internally calculated error limits in
- the 'DIGITIZE' case (the code used prior to 1.7 for rgb_to_gray error
- checks) and changed the check to only operate in non-release builds
- (base build type not RC or RELEASE.)
- * Fixed undefined behavior in pngvalid.c, undefined because
- (png_byte) << shift is undefined if it changes the signed bit
- (because png_byte is promoted to int). The libpng exported functions
- png_get_uint_32 and png_get_uint_16 handle this.
-
-- update to 1.6.20:
- Avoid potential pointer overflow/underflow in png_handle_sPLT() and
- png_handle_pCAL() (Bug report by John Regehr).
- Fixed incorrect implementation of png_set_PLTE() that uses png_ptr
- not info_ptr, that left png_set_PLTE() open to the CVE-2015-8126
- vulnerability.
- Backported tests from libpng-1.7.0beta69.
- Fixed an error in handling of bad zlib CMINFO field in pngfix, found by
- American Fuzzy Lop, reported by Brian Carpenter. inflate() doesn't
- immediately fault a bad CMINFO field; instead a 'too far back' error
- happens later (at least some times). pngfix failed to limit CMINFO to
- the allowed values but then assumed that window_bits was in range,
- triggering an assert. The bug is mostly harmless; the PNG file cannot
- be fixed.
- In libpng 1.6 zlib initialization was changed to use the window size
- in the zlib stream, not a fixed value. This causes some invalid images,
- where CINFO is too large, to display 'correctly' if the rest of the
- data is valid. This provides a workaround for zlib versions where the
- error arises (ones that support the API change to use the window size
- in the stream).
-
-- update to 1.6.19:
- Fixed potential leak of png_pixels in contrib/pngminus/pnm2png.c
- Fixed uninitialized variable in contrib/gregbook/rpng2-x.c
- Fixed the recently reported 1's complement security issue.
- Fixed png_save_int_32 when int is not 2's complement by replacing
- the value that is illegal in the PNG spec, in both signed and
- unsigned values, with 0.
- etc., see ANNOUNCE and CHANGES for details
-- removed: libpng-rgb_to_gray-checks.patch (upstreamed)
-
-- drop unknown configure switch
-
-- Fixed rgb_to_gray checks and added tRNS checks to pngvalid.c.
- + libpng-rgb_to_gray-checks.patch
-
-- updated to 1.6.17:
- Corrected the width limit calculation in png_check_IHDR().
- Removed user limits from pngfix. Also pass NULL pointers to
- png_read_row to skip the unnecessary row de-interlace stuff.
- Implement previously untested cases of libpng transforms in pngvalid.c
- Fixed byte order in 2-byte filler, in png_do_read_filler().
- Made the check for out-of-range values in png_set_tRNS() detect
- values that are exactly 2^bit_depth, and work on 16-bit platforms.
- Merged some parts of libpng-1.6.17beta01 and libpng-1.7.0beta47.
- Added #ifndef __COVERITY__ where needed in png.c, pngrutil.c and
- pngset.c to avoid warnings about dead code.
- Do not build png_product2() when it is unused.
- Display user limits in the output from pngtest.
- Eliminated the PNG_SAFE_LIMITS macro and restored the 1-million-column
- and 1-million-row default limits in pnglibconf.dfa, that can be reset
- by the user at build time or run time. This provides a more robust
- defense against DOS and as-yet undiscovered overflows.
- Added PNG_WRITE_CUSTOMIZE_COMPRESSION_SUPPORTED macro, on by default.
- Allow user to call png_get_IHDR() with NULL arguments (Reuben Hawkins).
- Moved png_set_filter() prototype into a PNG_WRITE_SUPPORTED block
- of png.h.
- Free the unknown_chunks structure even when it contains no data.
- Fixed simplified 8-bit-linear to sRGB alpha. The calculated alpha
- value was wrong. It's not clear if this affected the final stored
- value; in the obvious code path the upper and lower 8-bits of the
- alpha value were identical and the alpha was truncated to 8-bits
- rather than dividing by 257 (John Bowler).
-
-- build with PNG_SAFE_LIMITS_SUPPORTED [bnc#912076], [bnc#912929]
-
-- updated to 1.6.16:
- * Restored a test on width that was removed from png.c at libpng-1.6.9
- (Bug report by Alex Eubanks).
- * Fixed an overflow in png_combine_row with very wide interlaced images.
-
-- updated to 1.6.15:
- * Avoid out-of-bounds memory access in png_user_version_check().
- * Fixed incorrect handling of the iTXt compression.
- * Free all allocated memory in pngimage.
- * Fixed array size calculations to avoid warnings.
- etc. see ANNOUNCE
-
libpsl
-- fix [bsc#1197771] - FTBFS: libpsl won't compile on SP4
-- added patches
- https://github.com/rockdaboot/libpsl/commit/f364cea73e351ce62e0b337fd1fbc21e70b52d56
- + libpsl-fix-test-data.patch
-
-- update to 0.20.1:
- * Fix issue introduced with PSL_TYPE_NO_STAR_RULE in V0.20.0
- * Fix SO_VERSION to 8:0:3
- * Improve unit tests
-
-- Use %license (boo#1082318)
-
-- update to 0.20.0:
- * Remove hard-coded gcc flag in Makefile.am
- * Prevent excessive CPU cycles on large inputs
- * New flag PSL_TYPE_NO_STAR_RULE to skip star rule
-
-- Make sure to use python3 during build instead of calling env
-
-- update to 0.19.1:
- * New function psl_free_string()
- * psl_make_dafsa now works with python2 and python3
- * psl_*count() functions now return -1 if info is not available
- * Fixed unsigned integer overflow in _mem_is_ascii()
- * Add -fsanitize-address-use-after-scope to --enable-asan if
- available
-
-- update to 0.18.0:
- * Fix order of files in psl_latest()
- * Add fuzzing architecture
- * Fix memleak in _psl_is_public_suffix()
- * Add configure option --enable-asan (Address sanitizer)
- * Add configure option --enable-usan (Undefined sanitizer)
- * Add configure option --enable-cfi (Control Flow Integrity)
- * Fix finding libidn2 for static builds
- * Fix use of uninitialized stack value
- * Fix buffer overflow in libicu build
- * Use libidn2 as default for builds (former libicu)
- * Add pkg-config support for libidn and libidn2
-
-- Use idn2 runtime instead of libicu - as libicu requires 30MB
- of unicode data - while idn2 is already part of minimal system
-
-- libpsl 0.17.0:
- * Use TR46 non-transitional for IDNA (libicu, libidn2 >= 0.14)
- * Fix coverage upload from TravisCI to Coveralls
- * New tests to cover psl_latest() and psl_dist_filename()
-
-- libpsl 0.16.1:
- This version enables consumers of the library to dynamically load
- the latest public suffix data from a binary data file in the
- publicsuffix package which can then updated without re-building
- libpsl.
- * Add functions psl_latest() and psl_dist_filename()
- * Do not taint out variable on error in psl_str_to_utf8lower()
- * Replace psl2c by psl-make-dafsa
-- correct licenses for package and subpackages
-- package HTML docs in -devel package
-
-- libpsl 0.15.0:
- * Python3 compatibility for psl-make-dafsa
- * Support for UTF-8 in DAFSA data
- * Skip punycode conversion if DAFSA has UTF-8
- * Better code coverage by test suite
- * Code cleanup and enhancements
- * Install man pages for psl-make-dafsa and psl
- * Enhancements to the documentation
-
-- libpsl 0.14.0:
- * Remove unneeded libraries from tools/psl link step
- * Use https instead of http where possible
- * Add man page for tools/psl
- * Add header magic to DAFSA files
- * Rename make_dafsa.py to psl-make-dafsa
- * Add man page for psl-make-dafsa
-
-- libpsl 0.13.0:
- * Use tests.txt as PSL test file by default
- * Slightly shorter DAFSA array when sorting input
- * Check for python 2.7+ in configure.ac
- * Fix python3 incompatibilities in make_dafsa.py
-
-- Add baselibs.conf
-
-- libpsl 0.12.0 (libpsl.so.5 5:0:0)
- * Remove psl_builtin_compile_time()
- * Add function psl_is_public_suffix2()
- * Avoid libicu dependency with --enable-runtime=no
-- drop upstreamed 0001-Remove-include-of-bits-stat.h.patch
-
-- fix SLE 11 build:
- * adding 0001-Remove-include-of-bits-stat.h.patch
- * skip IDN feature
-- update descriptions and categories
-
-- initial package for libpsl based on Fedora Spec
-
libsndfile
-- Fix heap buffer overflow in flac_buffer_copy (CVE-2021-4156,
- bsc#1194006):
- libsndfile-CVE-2021-4156.patch
-
-- Fix heap buffer overflow vulnerability in msadpcm_decode_block
- (CVE-2021-3246, bsc#1188540):
- ms_adpcm-Fix-and-extend-size-checks.patch
-
-- Fix segfault in wav conversion due to the invalid loop count
- (CVE-2018-19758, bsc#1117954):
- libsndfile-wav-loop-count-fix.patch
-
-- Fix buffer overflow in sndfile-deinterleave, which isn't really a
- security issue (bsc#1100167, CVE-2018-13139, bsc#1116993,
- CVE-2018-19432):
- sndfile-deinterlace-channels-check.patch
-
-- Use license file tag
-
-- Fix potential overflow in d2alaw_array() (CVE-2017-17456,
- bsc#1071777):
- libsndfile-CVE-2017-17456-alaw-range-check.patch
-- Fix potential overflow in d2ulaw_array() (CVE-2017-17457,
- bsc#1071767):
- libsndfile-CVE-2017-17457-ulaw-range-check.patch
-
-- Fix VUL-0: divide-by-zero error exists in the function
- double64_init() in double64.c (CVE-2017-14634, bsc#1059911):
- 0030-double64_init-Check-psf-sf.channels-against-upper-bo.patch
-- Tentative fix for VUL-0: out of bounds read in the function
- d2alaw_array() in alaw.c (CVE-2017-14245, bsc#1059912) and
- VUL-0: out of bounds read in the function d2ulaw_array() in
- ulaw.c (CVE-2017-14246, bsc#1059913):
- 0031-sfe_copy_data_fp-check-value-of-max-variable.patch
-
-- Fix Heap-based Buffer Overflow in the psf_binheader_writef
- (CVE-2017-12562, bsc#1052476):
- 0020-src-common.c-Fix-heap-buffer-overflows-when-writing-.patch
-
-- Fix out-of-bounds read memory access in the aiff_read_chanmap()
- (CVE-2017-6892, bsc#1043978):
- 0010-src-aiff.c-Fix-a-buffer-read-overflow.patch
-
-- Fix FLAC buffer overflows (CVE-2017-8361 CVE-2017-8363
- CVE-2017-8365 CVE-2017-8362 bsc#1036944 bsc#1036945 bsc#1036946
- bsc#1036943):
- 0001-FLAC-Fix-a-buffer-read-overrun.patch
- 0002-src-flac.c-Fix-a-buffer-read-overflow.patch
-
-- Update to version 1.0.27:
- * Fix a seek regression in 1.0.26
- * Add metadata read/write for CAF and RF64
- * FIx PAF endian-ness issue
-- Update to version 1.0.28
- * Fix buffer overruns in FLAC and ID3 handling code
- (CVE-2017-7585, CVE-2017-7586, bsc#1033054, bsc#1033053)
- * Reduce default header memory requirements
- * Fix detection of Large File Support for 32 bit systems.
-- Obsoleted patch:
- libsndfile-psf_strlcpy_crlf-fix-CVE-2015-8075.patch
-
-- Fix spec file to enable builds on non opensuse OS
-
-- Update to version 1.0.26:
- * Fix for CVE-2014-9496, CVE-2014-9756 and CVE-2015-7805.
- * Add ALAC/CAF support. Minor bug fixes and improvements.
-- Refreshed patches:
- sndfile-ocloexec.patch
- libsndfile-psf_strlcpy_crlf-fix-CVE-2015-8075.patch
-- Removed obsoleted patches:
- libsndfile-example-fix.diff
- libsndfile-fix-header-read-CVE-2015-7805.patch
- libsndfile-paf-zero-division-fix.diff
- libsndfile-src-common.c-Fix-a-header-parsing-bug.patch
- libsndfile-src-file_io.c-Prevent-potential-divide-by-zero.patch
- sndfile-src-sd2.c-Fix-segfault-in-SD2-RSRC-parser.patch
- sndfile-src-sd2.c-Fix-two-potential-buffer-read-overflows.patch
-
-- VUL-0: libsndfile 1.0.25 heap overflow (CVE-2015-7805, bsc#953516)
- libsndfile-src-common.c-Fix-a-header-parsing-bug.patch
- libsndfile-fix-header-read-CVE-2015-7805.patch
-- VUL-0: libsndfile 1.0.25 heap overflow (CVE-2015-8075, bsc#953519)
- libsndfile-psf_strlcpy_crlf-fix-CVE-2015-8075.patch
-- Fix the build with SLE11-SP3 due to AM_SILENT_RULE macro
-
-- VUL-1: libsndfile DoS/divide-by-zero (CVE-2014-9756, bsc#953521):
- libsndfile-src-file_io.c-Prevent-potential-divide-by-zero.patch
-
-- Cleanup spec file with spec-cleaner
-- Add gpg signature
-- Remove old ppc provides/obsoletes
-
-- VUL-0: two buffer read overflows in sd2_parse_rsrc_fork()
- (CVE-2014-9496, bnc#911796): backported upstream fix patches
- sndfile-src-sd2.c-Fix-segfault-in-SD2-RSRC-parser.patch
- sndfile-src-sd2.c-Fix-two-potential-buffer-read-overflows.patch
-
libsodium
+- Update in SLE-15 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629)
+
+- Revert previous change about cpuid as previous change rejected
+ in https://build.opensuse.org/request/show/724809
+- Disable LTO as bypass boo#1148184
+
+- Add libsodium_configure_cpuid_chg.patch and call autoconf
+ to regenerate configure script with proper CPUID checking.
+ Required at least for PowerPC and ARM now that LTO enabled.
+
+- Update to 1.0.18
+ - Enterprise versions of Visual Studio are now supported.
+ - Visual Studio 2019 is now supported.
+ - 32-bit binaries for Visual Studio 2010 are now provided.
+ - A test designed to trigger an OOM condition didn't work on
+ Linux systems with memory overcommit turned on. It has been
+ removed in order to fix Ansible builds.
+ - Emscripten: print and printErr functions are overridden to send
+ errors to the console, if there is one.
+ - Emscripten: UTF8ToString() is now exported since
+ Pointer_stringify() has been deprecated.
+ - Libsodium version detection has been fixed in the CMake recipe.
+ - Generic hashing got a 10% speedup on AVX2.
+ - New target: WebAssembly/WASI
+ (compile with dist-builds/wasm32-wasi.sh).
+ - New functions to map a hash to an edwards25519 point
+ or get a random point:
+ core_ed25519_from_hash() and core_ed25519_random().
+ - crypto_core_ed25519_scalar_mul() has been implemented for
+ scalar*scalar (mod L) multiplication.
+ - Support for the Ristretto group has been implemented for
+ interoperability with wasm-crypto.
+ - Improvements have been made to the test suite.
+ - Portability improvements have been made.
+ - getentropy() is now used on systems providing this system call.
+ - randombytes_salsa20 has been renamed to randombytes_internal.
+ - Support for NativeClient has been removed.
+ - Most ((nonnull)) attributes have been relaxed to allow 0-length
+ inputs to be NULL.
+ - The -ftree-vectorize and -ftree-slp-vectorize compiler switches
+ are now used, if available, for optimized builds.
+
+- Update to 1.0.17
+ - Bug fix: sodium_pad() didn't properly support block sizes
+ >= 256 bytes.
+ - JS/WebAssembly: some old iOS versions can't instantiate the
+ WebAssembly module; fall back to Javascript on these.
+ - JS/WebAssembly: compatibility with newer Emscripten versions.
+ - Bug fix: crypto_pwhash_scryptsalsa208sha256_str_verify() and
+ crypto_pwhash_scryptsalsa208sha256_str_needs_rehash()didn't
+ returnEINVAL` on input strings with a short length, unlike
+ their high-level counterpart.
+ - Added a workaround for Visual Studio 2010 bug causing CPU
+ features not to be detected.
+ - Portability improvements.
+ - Test vectors from Project Wycheproof have been added.
+ - New low-level APIs for arithmetic mod the order of the prime
+ order group:
+ - crypto_core_ed25519_scalar_random(),
+ crypto_core_ed25519_scalar_reduce(),
+ - crypto_core_ed25519_scalar_invert(),
+ crypto_core_ed25519_scalar_negate(),
+ - crypto_core_ed25519_scalar_complement(),
+ crypto_core_ed25519_scalar_add() and
+ crypto_core_ed25519_scalar_sub().
+ - New low-level APIs for scalar multiplication without clamping:
+ crypto_scalarmult_ed25519_base_noclamp() and
+ crypto_scalarmult_ed25519_noclamp().
+ These new APIs are especially useful for blinding.
+ - sodium_sub() has been implemented.
+ - Support for WatchOS has been added.
+ - getrandom(2) is now used on FreeBSD 12+.
+ - The nonnull attribute has been added to all relevant
+ prototypes.
+ - More reliable AVX512 detection.
+ - Javascript/Webassembly builds now use dynamic memory growth.
+
libtirpc
+- fix CVE-2021-46828: libtirpc: DoS vulnerability with lots of
+ connections (bsc#1201680)
+ - add 0001-Fix-DoS-vulnerability-in-libtirpc.patch
+
+-exclude ipv6 addresses in client protocol 2 code (bsc#1200800)
+ - update 0001-rpcb_clnt.c-config-to-try-protocolversion-2-first.patch
+
+- fix memory leak in params.r_addr assignement (bsc#1198752)
+ - add 0001-fix-parms.r_addr-memory-leak.patch
+
+- check for nullpointer in check_address (bsc#1198176)
+ update 0001-rpcb_clnt.c-config-to-try-protocolversion-2-first.patch
+
+- add option to enforce connection via protocol version 2 first
+ (bsc#1196647)
+ add 0001-rpcb_clnt.c-config-to-try-protocolversion-2-first.patch
+
+- Update to libtirpc 1.2.6
+ - Drop patches all patches backported from this release
+ (0001-Add-authdes_seccreate-stub.patch,
+ 0001-Avoid-multiple-definiton-with-gcc-fno-common.patch)
+
+- Backport upstream fix daed7ee ("Avoid multiple-definiton with gcc -fno-common")
+ to fix build error with gcc flag -fno-common (bsc#1160875).
+ Tested on gcc-9 and gcc-10.
+ 0001-Avoid-multiple-definiton-with-gcc-fno-common.patch
+
+- Skip unneeded autogen.sh run (configure is up-to-date), drop
+ dependencies: libtool, autoconf
+- Replace krb5-mini-devel/krb5-devel with pkgconfig(krb5)
+
+- Update to libtirpc 1.2.5
+ - A number resource leaks and other issues were fix which were identified
+ by a Coverity Scan.
+ - The AUTH_DES authentication has been deprecated. If any of those routines
+ are called, they will fail immediately.
+ - numerous bug fixes
+- Package changes:
+ - Build without AUTH_DES authentication
+ - Add patch from next release 0001-Add-authdes_seccreate-stub.patch
+ (a86b4ff Add authdes_seccreate() stub)
+ - Drop rc patches (libtirpc-1-1-5-rc1.patch, libtirpc-1-1-5-rc2.patch)
+ - Drop patches all patches backported from this release
+ (0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch,
+ 0002-man-rpc_secure.3t-Fix-typo-in-manpage.patch,
+ 0003-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch)
+
+- Fix previous version:
+ - actually delete
+ 0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch
+ - use 0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch
+ - use 0002-man-rpc_secure.3t-Fix-typo-in-manpage.patch (renamed from
+ 0003-man-rpc_secure.3t-Fix-typo-in-manpage.patch)
+ - use 0003-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch
+ (renamed from
+ 0004-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch)
+
+- Updated to libtirpc 1.1.5 rc2 (this includes changes in 1.1.4 release)
+ - add libtirpc-1-1-5-rc1.patch and libtirpc-1-1-5-rc2.patch to reflect
+ upstream changes after 1.1.4 release
+ - remove /etc/bindresvport.blacklist as it's still supported by glibc
+ although it's not compiled with --enable-obsolete-rpc
+- Drop patches accepted in previous releases or not needed
+ - 000-bindresvport_blacklist.patch (accepted in 5b037cc9, libtirpc 1.1.4)
+ - 001-new-rpcbindsock-path.patch (not needed, rpcbind now uses /var/run directory)
+ - 002-revert-binddynport.patch (fixed in 2802259, libtirpc-1-0-4-rc1)
+ - 0001-Fix-regression-introduced-by-change-rpc-version-orde.patch
+ (backport of 25d38d7, libtirpc-1-0-4-rc1)
+ - 0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch
+ (backport of 145272c, libtirpc-1-0-4-rc2)
+- Add fixes from upcomming release
+ - 0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch
+ - 0003-man-rpc_secure.3t-Fix-typo-in-manpage.patch
+ - 0004-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch
+
+- Fix SLES 15 - yp_bind_client_create_v3: RPC: Unknown host (bsc#1126096).
+ - Add upstream patch
+ 0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch
+
+- fix socket leak introduced by change-rpc-protocol-version-order patch
+ (bsc#1087925)
+ - add 0001-Fix-regression-introduced-by-change-rpc-version-orde.patch
+
+- Revert binddynport changes as they break backward compatibility
+ [brc#1562169].
+ - add 002-revert-binddynport.patch
+
+- Remove ineffective --with-pic.
+
+- Update to libtirpc 1.0.3
+ - clnt_dg_call: Fix a buffer overflow (CVE-2016-4429)
+ - Avoid choosing reserved ports in legacy RPC APIs
+ - rpcinfo: change order of version to be tried to 4, 3, 2
+ - includes 003-rpc-types.patch
+ - includes 004-replace-bzero-with-memset.patch
+ - includes 005-missing-includes.patch
+ - includes 011-Fix-typo-in-src-libtirpc.map-which-prevents-that-key.patch
+ - includes decls.patch
+- Drop COPYING.GPLv2, GPLv2 code was removed from library
+
+- Adjust include directory [bsc#1083902]
+
+- Use %license (boo#1082318)
+
+- Move /usr/include/tirpc to /usr/include
+
+- Add COPYING.GPLv2 and install Licenses for GPLv2 code.
+
+- 005-missing-includes.patch: add missing includes to make headers
+ compatible to sunrpc.
+
+- Update to version 1.0.2
+ - 002-old-automake.patch: not needed anymore
+ - 005-libtirpc-1.0.2-rc1.patch: dropped
+ - 006-Remove-old-meanwhile-wrong-comment-about-FD_SETSIZE-.patch:
+ removed, merged upstream
+ - 007-Change-rtime-function-to-use-poll-instead-of-select.patch:
+ removed, merged upstream
+ - 008-Add-parameters-to-local-prototypes-to-fix-compiler-w.patch:
+ removed, merged upstream
+ - 009-makefd_xprt-checks-that-the-filedesriptor-is-lower-t.patch:
+ removed, merged upstream
+ - 010-The-goto-again-statement-was-an-left-over-from-the-p.patch:
+ removed, merged upstream
+ - 012-libtirpc-needs-rpcsvc-nis.h-for-compiling-but-does-n.patch:
+ removed, merged upstream
+ - 013-If-we-don-t-compile-in-YP-support-don-t-include-YP-h.patch:
+ removed, merged upstream
+ - 014-Add-des_crypt.c-and-des_impl.c-to-become-independent.patch:
+ removed, merged upstream
+ - 015-Fix-includes-to-compile-without-deprecated-glibc-fun.patch:
+ removed, merged upstream
+ - patch6_7.diff: obsolete
+ - Replace explicit_bzero.patch with
+ 004-replace-bzero-with-memset.patch from git
+ - Rename libtirpc-new-path-rpcbindsock.patch to
+ 001-new-rpcbindsock-path.patch
+
+- 003-rpc-types.patch: Add some typedefs to rpc/types.h to allow
+ applications be compiled with -std=iso9899:1990
+
+- Rectify RPM groups and summaries,
+ and update old macro/variable constructs.
+
+- decls.patch: fix missing declarations
+- explicit_bzero.patch: use explicit_bzero if available
+
+- Add some patches to get libtirpc compiled without needing glibc
+ deprecated functions:
+ - 015-Fix-includes-to-compile-without-deprecated-glibc-fun.patch
+ - 014-Add-des_crypt.c-and-des_impl.c-to-become-independent.patch
+ - 013-If-we-don-t-compile-in-YP-support-don-t-include-YP-h.patch
+- Add 012-libtirpc-needs-rpcsvc-nis.h-for-compiling-but-does-n.patch
+ to allow bootstrapping of libtirpc without glibc sunrpc code or
+ libnsl NIS+ code.
+
+- Add 011-Fix-typo-in-src-libtirpc.map-which-prevents-that-key.patch
+ (fix export of key_secretkey_is_set)
+
+- Add the following patches to fix some bugs from the poll()
+ port and an endless loop:
+ - 006-Remove-old-meanwhile-wrong-comment-about-FD_SETSIZE-.patch
+ - 007-Change-rtime-function-to-use-poll-instead-of-select.patch
+ - 008-Add-parameters-to-local-prototypes-to-fix-compiler-w.patch
+ - 009-makefd_xprt-checks-that-the-filedesriptor-is-lower-t.patch
+ - 010-The-goto-again-statement-was-an-left-over-from-the-p.patch
+
+- Remove 004-netconfig-prefer-IPv6.patch for SLES12.
+- Remove libtirpc-getnetconfig-races.patch (was backport).
+ [FATE#320393]
+
+- Split the netconfig configuration file and manual page off into
+ an own RPM. Else it is not possible to install the old and new
+ libtirpc libraries in parallel.
+
+- Update to libtirpc-1.0.1
+ - new major soname
+ - Adjust auth code to match other RPC implementations
+ - Implement more gss auth stuff
+ - use poll() instead of select() in svc_run()
+ - Add more sunrpc compat functions
+ - Sync compat headers with real functions
+- Drop 005-missing-symvers.patch (upstream)
+- Drop 006-memleak1.patch (upstream)
+- Drop 007-memleak2.patch (upstream)
+- Drop 008-fix-undef-ref.patch (upstream)
+- Drop 009-authdes_pk_create.patch (upstream)
+- Drop 010-xdr_sizeof.patch (upstream)
+- Drop 011-authdes_create.patch (upstream)
+- Drop 012-xp_sock.patch (upstream)
+- Drop 099-poll.patch (upstream)
+- Drop libtirpc-xdr-header.patch (was backport)
+- Add 005-libtirpc-1.0.2-rc1.patch (fixes deadlock)
+
+- Fix public xdr.h header - xdr_rpcvers() were broken (bsc#902439)
+ Added: libtirpc-xdr-header.patch
+
+- Update 099-poll.patch with newest version send upstream.
+
+- Add 099-poll.patch: change svc_run from select() to poll().
+
+- Add 012-xp_sock.patch: add sunrpc compatibility define
+
+- Update 009-authdes_pk_create.patch (fix syncaddr handling)
+- Add 011-authdes_create.patch (fix syncaddr handling)
+
+- Add 010-xdr_sizeof.patch (enable xdr_sizeof)
+
+- Add 009-authdes_pk_create.patch (missing SunRPC compat function)
+
+- Add 008-fix-undef-ref.patch to fix a undefined reference bug
+
+- Update to version 0.3.2 (bring authdes back)
+- Remove 005-no_IPv6_for_old_code.patch (accepted upstream)
+- Remove 001-tirpc-features.patch (obsolete)
+- Add 005-missing-symvers.patch (fix missing, new symbols)
+- Add 006-memleak1.patch (fix memory leak)
+- Add 007-memleak2.patch (fix memory leak)
+
+- Remove krb5-devel from -devel requires, not needed anymore
+
+- Update to libtirpc 0.3.1, which incorporates the following
+ patches:
+ - 011-gssapi-update1.patch
+ - 012-gssapi-update2.patch
+ - 013-gssapi-update3.patch
+ - 014-gssapi-update4.patch
+ - 015-gssapi-update5.patch
+ - 016-gssapi-update6.patch
+ - 017-gssapi-update7.patch
+ - 018-gssapi-update8.patch
+ Not needed anymore:
+ - 007-fix-tirpc_map.patch
+ Adjusted:
+ - 001-tirpc-features.patch, merged with 006-rework-features.diff
+ - 002-old-automake.patch
+
+- 007-fix-tirpc_map.patch: fix symbol version for new global names
+
+- 006-rework-features.diff: Adjust for set of gssapi patches
+- 003-fix-gssapi.patch replaced by 011-gssapi-update1.patch
+- 012-gssapi-update2.patch: fix krb5-config usage
+- 013-gssapi-update3.patch: check for gssapi.h
+- 014-gssapi-update4.patch: don't include rpcsec_gss.h
+- 015-gssapi-update5.patch: don't install GSSAPI files if disabled
+- 016-gssapi-update6.patch: fix rpc_gss_seccreate
+- 017-gssapi-update7.patch: officialy export two internal functions
+- 018-gssapi-update8.patch: don't use glibc special header files
+
+- 003-fix-gssapi.patch: Correct fix for GSS ABI breakage
+- 005-no_IPv6_for_old_code.patch: Update comment
+- 006-rework-features.diff: Rework tirpc-features.h
+
+- 003-fix-gssapi.patch: Update, one chunk did go lost
+
+- 001-tirpc-features.patch: update with official git version
+- 002-old-automake.patch: re-add for SLES11
+- 003-fix-gssapi.patch: try to fix the disable-gssapi option correct
+
+- Fix HAVE_AUTHDES/HAVE_GSSAPI in public header files
+ (001-tirpc-features.patch)
+
+- Update to official release 0.3.0. authdes was disabled by default
+ upstream.
+- Following patches were merged:
+ - 001-symbol-versions-v5.patch
+ - 003-add-des_crypt.diff
+- Remove 002-old-automake.patch, not needed anymore
+
+- Update 001-symbol-versions-v4.patch with
+ 001-symbol-versions-v5.patch: Add --disable-symvers option
+
+- Update 003-add-des_crypt.diff, fix unresolved des functions
+
+- Update to git
+- Add 003-add-des_crypt.diff to fix unresolved *_crypt() functions
+
+- Disable gssapi for SLE11, kerberos version is too old
+
+- rpc/rpc.h requires now indirectly gssapi.h from krb5-devel
+
+- Update to current git.
+- The following patches were accepted upstream:
+ - 003-xdr_h-fix.patch
+ - 005-disable-rpcent.patch
+ - 006-no-libnsl.patch
+ - patch1_7.diff
+ - patch2_7.diff
+ - patch3_7.diff
+- patch7_7.diff: removed, rejected upstream
+- 001-symbol-versions-v3.patch: replace with 001-symbol-versions-v4.patch
+
+- Add the following patches from the libtirpc-devel mailing list:
+ - patch1_7.diff (remove wrong config.h.in)
+ - patch2_7.diff (fix function name of yp_check)
+ - patch3_7.diff (make sure config.h is included)
+ - patch6_7.diff (use getaddrinfo in getrpcport)
+ - patch7_7.diff (remove prototypes from headers we don't supply)
+
+- Add following patches:
+ - 003-xdr_h-fix.patch (fix wrong defines using xdr_u_int32)
+ - 005-disable-rpcent.patch (use rpcent functions from glibc)
+ - 006-no-libnsl.patch (don't link against libnsl)
+
+- Update to 0.2.5.git from 20150423
+ - following patches are accepted upstream:
+ - 003-rpc_broadcast_misformed_replies.patch
+ - libtirpc-misc-segfaults.patch
+ - replace 001-symbol-versions-v2.patch with
+ 001-symbol-versions-v3.patch
+ - enable symbol versioning patch
+
+- Fix race conditions in getnetconfig (bsc#899576, bsc#882973)
+ Added: libtirpc-getnetconfig-races.patch
+
+- 004-netconfig-prefer-IPv6.patch: Prever IPv6 over IPv4 (configured
+ in /etc/netconfig)
+
+- 002-old-automake.patch: make buildable on old systems
+
+- Update to 0.2.5.git from 20141217
+ - following patches are accepted upstream:
+ - 002-clnt_broadcast_fix.patch
+ - 004-getpmaphandle.patch
+ - libtirpc-clntunix_create.patch
+ - libtirpc-getbroadifs-crash.patch
+ - libtirpc-taddr2uaddr-local.patch
+
+- Update to upstream 0.2.5 release
+- Add symbol versioning to fix symbol conflicts
+ (001-symbol-versions-v2.patch), but disable until commited upstream
+- Adjust libtirpc-clnt_broadcast_fix.patch and rename to
+ 002-clnt_broadcast_fix.patch
+- Adjust libtirpc-rpc_broadcast_misformed_replies.patch and rename
+ to 003-rpc_broadcast_misformed_replies.patch
+- Rename libtirpc-getpmaphandle.patch to 004-getpmaphandle.patch
+- Adjust libtirpc-bindresvport_blacklist.patch and rename to
+ 000-bindresvport_blacklist.patch
+- Drop libtirpc-pmap-setunset.patch, not needed anymore
+- Apply libtirpc-new-path-rpcbindsock.patch only on openSUSE 13.1
+ and later
+
libtpms
+- fix build for ppc64le: use -Wl,--no-as-needed in check-local
+ [bsc#1204556]
+
+- Added patches:
+ 0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
+ 0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
+ 0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch
+- CVE-2021-3623: Fixed out-of-bounds access when trying to resume the
+ state of the vTPM (bsc#1187767)
+
-- import 0.5.1
- - software TPM driver library for hooking into QEMU
-
libvirt
+- Update to libvirt 8.10.0
+ - jsc#PED-1472
+ - New virt-qemu-sev-validate utility for validating the
+ measurement reported for a domain launched with AMD SEV
+ - Many incremental improvements and bug fixes, see
+ https://libvirt.org/news.html#v8-10-0-2022-12-01
+ - Dropped patches:
+ f81ee7b5-tests-Fix-libxlxml2domconfigtest.patch
+
libxcb
+- u_don-t-flag-extra-reply-in-xcb_take_socket.patch
+ * Fix IO errors with KWin in combination with NVIDIA driver.
+ (bnc#1101560)
+
+- Update to version 1.13
+ * As with xcb-proto, this release mainly enables multi-planar buffers in
+ DRI3 v1.2 via support for variable-sized lists of FDs, and enables
+ sending GenericEvents to other clients. Present v1.2 and RandR v1.6
+ did not require any specific library changes.
+- supersedes U_add-support-for-eventstruct.patch,
+ u_build_python3.patch
+
+- Really conditionalize the python3 option to allow us building
+ without any python2 present
+ * u_build_python3.patch
+- Convert to pkgconfig style deps
+- Format bit with spec-cleaner
+
+- Enable xinput extension. (bnc#1074249)
+- U_add-support-for-eventstruct.patch
+ * Update xinput to the state when it was enabled by default
+ upstream.
+
+- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch
+ * Prevent infinite loop also in case DISPLAY is non-local.
+
+- Use spaces instead of tabs in the patches (as does the original
+ source code) to avoid confusion.
+- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch
+ * If authentication (with *stage == 0) failed and the variable
+ XAUTHLOCALHOSTNAME wasn't set, we were never getting to stage 2
+ in the original patch, causing calls to xcb_connect_to_display
+ to be stuck in an infinite loop.
+ Now we also go to stage 2 if the variable isn't set.
+
+- fixes build against python3 (package rename of
+ python-xcb-proto-devel to python3-xcb-proto-devel)
+
+- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch
+ * Modify this patch to do what it say - retry not only if the current hostname is
+ not found in the xauthority file, but also when it is rejected by X server.
+ (bnc#1043221)
+
+- Update to version 1.12
+ * here is a new version of libxcb for you to enjoy. The
+ highlights are the same as for the new xcb-proto release:
+ xinput support, RandR 1.5 and an automatic alignment checker.
+- removed libxcb-xevie0/libxcb-xprint0 subpackages
+
+- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch:
+ If auth with credentials for hostname fails retry with XAUTHLOCALHOSTNAME
+ (boo#906622).
+
+- Update to version 1.11.1:
+ This fixes some threading-related bugs with
+ xcb_wait_for_special_event() and adds 64-bit versions of
+ functions that work with sequence numbers.
+
libyui
+- YQPkg: Scroll patterns list by pixels, not by item to avoid problems
+ caused by non-uniform item heights (bsc#1189550)
+- 4.4.7
+
libyui:libyui-ncurses
+- YQPkg: Scroll patterns list by pixels, not by item to avoid problems
+ caused by non-uniform item heights (bsc#1189550)
+- 4.4.7
+
libyui:libyui-ncurses-pkg
+- YQPkg: Scroll patterns list by pixels, not by item to avoid problems
+ caused by non-uniform item heights (bsc#1189550)
+- 4.4.7
+
libyui:libyui-qt
+- YQPkg: Scroll patterns list by pixels, not by item to avoid problems
+ caused by non-uniform item heights (bsc#1189550)
+- 4.4.7
+
libyui:libyui-qt-graph
+- YQPkg: Scroll patterns list by pixels, not by item to avoid problems
+ caused by non-uniform item heights (bsc#1189550)
+- 4.4.7
+
libyui:libyui-qt-pkg
+- YQPkg: Scroll patterns list by pixels, not by item to avoid problems
+ caused by non-uniform item heights (bsc#1189550)
+- 4.4.7
+
mozilla-nss
+- Update nss-fips-approved-crypto-non-ec.patch to disapprove the
+ creation of DSA keys, i.e. mark them as not-fips (bsc#1201298)
+
+- Update nss-fips-approved-crypto-non-ec.patch to allow the use SHA
+ keygen mechs (bsc#1191546).
+- Update nss-fips-constructor-self-tests.patch to ensure abort() is
+ called when the repeat integrity check fails (bsc#1198980).
+
nghttp2
-- security update
-- added patches
- fix CVE-2020-11080 [bsc#1181358], HTTP/2 Large Settings Frame DoS
- + nghttp2-CVE-2020-11080.patch
-
-- Update to version 1.40.0 to fix CVE-2019-18802 in envoy-proxy and
- cilium-proxy (bsc#1166481)
- * lib: Add nghttp2_check_authority as public API
- * lib: Fix the bug that stream is closed with wrong error code
- * lib: Faster huffman encoding and decoding
- * build: Avoid filename collision of static and dynamic lib
- * build: Add new flag ENABLE_STATIC_CRT for Windows
- * build: cmake: Support building nghttpx with systemd
- * third-party: Update neverbleed to fix memory leak
- * nghttpx: Fix bug that mruby is incorrectly shared between
- backends
- * nghttpx: Reconnect h1 backend if it lost connection before
- sending headers
- * nghttpx: Returns 408 if backend timed out before sending
- headers
- * nghttpx: Fix request stal
-
-- Conditionally remove dependecy on jemalloc for SLE-12
-
-- Require correct library from devel package - boo#1125689
-
-- Update to version 1.39.2 (bsc#1146184, bsc#1146182):
- * This release fixes CVE-2019-9511 “Data Dribble†and CVE-2019-9513
- “Resource Loop†vulnerability in nghttpx and nghttpd. Specially crafted HTTP/2
- frames cause Denial of Service by consuming CPU time. Check out
- https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md
- for details. For nghttpx, additionally limiting inbound traffic by
- - -read-rate and --read-burst options is quite effective against
- this kind of attack.
- * Add nghttp2_option_set_max_outbound_ack API function
- * nghttpx: Fix request stall
-
-- Update to version 1.39.1:
- * This release fixes the bug that log-level is not set with
- cmd-line or configuration file. It also fixes FPE with default
- backend.
-- Changes for version 1.39.0:
- * libnghttp2 now ignores content-length in 200 response to
- CONNECT request as per RFC 7230.
- * mruby has been upgraded to 2.0.1.
- * libnghttp2-asio now supports boost-1.70.
- * http-parser has been replaced with llhttp.
- * nghttpx now ignores Content-Length and Transfer-Encoding in 1xx
- or 200 to CONNECT.
-- Drop no longer needed boost170.patch
-
-- Update to 1.38.0:
- * This release fixes the bug that authority and path altered by per-pattern mruby script can affect backend selection on retry.
- * It also fixes the bug that HTTP/1.1 chunked request stalls.
- * Now nghttpx does not log authorization request header field value with -LINFO.
- * This release fixes possible backend stall when header and request body are sent in their own packets.
- * The backend option gets weight parameter to influence backend selection.
- * This release fixes compile error with BoringSSL.
-- Add patch from upstream to build with new boost bsc#1134616:
- * boost170.patch
-
-- Update to 1.36.0
- * build: disable shared library if ENABLE_SHARED_LIB is off
- * third-party: use http-parser to v2.9.0 (GH-1294)
- * third-party: Update mruby to 2.0.0
- * nghttpx: Pool h1 backend connection per address (GH-1292)
- * nghttpx: Randomize backend address round robin order per thread
- (GH-1291)
- * nghttpx: Fix getting long SNs for openssl < 1.1 (GH-1287)
- * h2load: add an option to write per-request logs (GH-1256)
- * asio: added access to # of the current server port (GH-1257)
-
-- Use multibuild to not pull in python3 in first build, nghttp2
- is low in the system
-
-- Update to version 1.35.1:
- * nghttpx: Fix broken trailing slash handling (GH-1276)
-- Changes for version 1.35:
- * build: cmake: Fix libevent version detection (Patch from Jan Kundrát) (GH-1238)
- * lib: Use __has_declspec_attribute for shared builds (Patch from Don) (GH-1222)
- * src: Require C++14 language feature
- * nghttpx: Write mruby send_info early
- * nghttpx: Fix assertion failure on mruby send_info with HTTP/1 frontend
- * h2load: Handle HTTP/1 non-final response (GH-1259)
- * h2load: Clarify that time for connect includes TLS handshake
-
-- Update to version 1.34.0: (bsc#1112438, FATE#326776)
- * lib: Implement RFC 8441 :protocol support
- * nghttpx: Add read/write-timeout parameters to backend option
- * nghttpx: Fix mruby parameter validation in backend option
- * nghttpx: Implement RFC 8441 Bootstrapping WebSocket with HTTP/2
- * nghttpx: Update neverbleed to fix OpenSSL 1.1.1 issues
- * nghttpx: Update mruby 1.4.1
- * nghttpx: Add mruby env.tls_handshake_finished
- * nghttpx: Add --tls13-ciphers and --tls-client-ciphers options
- * nghttpx: Add RFC 8470 Early-Data header field support
- * nghttpx: Add RFC 8446 TLSv1.3 0-RTT early data support
-
-- Update to version 1.33.0:
- * lib: Tweak nghttp2_session_set_stream_user_data
- * lib: Fix handling of SETTINGS_MAX_CONCURRENT_STREAMS.
- * lib: Implement ORIGIN frame
- * asio: support definition of local endpoint for cleartext
- client session
- * integration: Remove remaining SPDY code from the integration tests
- * nghttpx: Fix worker process crash with neverbleed write error
- * nghttpx: Support per-backend mruby script
- * nghttpx: Fix stream reset if data from client is arrived before
- dconn is attached
-
-- Update to version 1.32.0:
- * lib: Ignore all input after calling session_terminate_session
- * lib: Fix treatment of padding
- * lib: Don't allow 101 HTTP status code because HTTP/2 removes
- HTTP Upgrade
- * build: add ENABLE_STATIC_LIB option to build static lib
- * third-party: Upgrade neverbleed to the latest master
- * asio: Support client side SNI
- * src: Compile with libressl 2.7.2
- * src: Allow building without NPN
- * h2load: -r and --duration are mutually exclusive
-
-- Version umpdate to 1.31.1:
- * Fix bsc#1088639 CVE-2018-1000168
- * https://nghttp2.org/blog/2018/04/12/nghttp2-v1-31-1/
-
-- Version update to 1.31.0:
- * lib: Add nghttp2_session_set_user_data() public API function (GH-1137)
- * src: Define nghttp2_inet_pton wrapper to avoid inet_pton macro (GH-1128)
- * nghttpx: Close listening socket on graceful shutdown
- * nghttpx: Add an option to accept expired client certificate (GH-1126)
- * nghttpx: Add mruby tls_client_not_before, and tls_client_not_after (GH-1123)
- * nghttpx: Fix potential memory leak
- * lib: Allow PING frame to be sent after GOAWAY (GH-1103)
- * nghttpx: Fix bug that h1 backend idle timeout expires sooner
- * nghttpx: Stop overwrite of first header on mruby call to env.req.set_header(..) (Patch from Dylan Plecki) (GH-1119)
- * nghttpx: Add upgrade-scheme parameter to backend option (GH-1099)
- * nghttpx: Fix missing ALPN validation (--npn-list) (GH-1094)
- * nghttpx: Remember which resource is pushed for RFC 8297 (GH-1101)
-
-- Drop spdylay dependency as it is deprecated since version 1.28.0
- and removed from cofnigure.ac since 1.29.0
-
-- Use %license (boo#1082318)
-
-- Update to version 1.29.0:
- * lib: Use NGHTTP2_REFUSED_STREAM for streams which are closed by
- GOAWAY
- * build: Remove SPDY
- * build: Fix CMAKE_MODULE_PATH
- * nghttpx: Revert "nghttpx: Use an existing h2 backend connection
- as much as possible"
- * nghttpx: Write API request body in temporary file
- * nghttpx: Increase api-max-request-body
- * nghttpx: Faster configuration loading with lots of backends
- * nghttpx: Fix crash with --backend-http-proxy-uri option
-
-- Export PYTHON=/usr/bin/python3 before running configure: allow to
- build without (comnplete) python2 in the buildroot. In any case
- we only ship python3-bindings already.
-
-- Upodate to version 1.28.0:
- * lib: Add nghttp2_error_callback2
- * build: Add deprecation warning when spdylay support is enabled
- * Switch to clang-format-5.0
- * examples: Make client and server work with libevent-2.1.8
- * third-party: Update neverbleed
- * integration: Fix issues reported by the go vet tool.
- * nghttpx: Fix affinity retry
- * nghttpx: Fix stalled backend connection on retry
- * nghttpx: Cookie based session affinity
- * nghttpx: Expose additional TLS related variables to mruby and
- accesslog
-
-- Drop forgotten python2 build dependency
-
-- Update to version 1.27.0:
- * h2load: Print out h2 header fields with --verbose option
- * nghttpx: Send non-final response to HTTP/1.1 or HTTP/2 client
- only
-- Changes for version 1.26.0:
- * docs: Fix some typos in the nghttpx how-to
- * h2load: Fix bug that timing script stalls with -m1
- * h2load: Reservoir sampling (GH-984)
- * h2load: Add timing-based load-testing in h2load
-- Switch to python3 support
-
-- Don't use jemalloc on ppc or %arm, where it is broken.
-
-- Update to version 1.25.0:
- * lib: add nghttp2_rcbuf_is_static() (Patch from Anna Henningsen) (GH-983)
- * nghttpx: Fix bug that forwarded for is not affected by proxy protocol (GH-979)
- * nghttpx: Update mruby to 1.3.0 (GH-957)
-
-- Drop doc building
-- Rename python subpackage to python2
-
-- Update to version 1.24.0:
- * doc: README.rst: fix typo (Patch from Simone Basso) (GH-947)
- * doc: fix up grammar in submit_trailer docs (Patch from Benjamin Peterson) (GH-945)
- * doc: fix cleaning in out-of-tree builds (Patch from Benjamin Peterson) (GH-938)
- * nghttp: Fix bug that upgrade fails if reason-phrase is missing (GH-949)
- * nghttpx: Verify OCSP response using trusted CA certificates (GH-943)
- * nghttpx: Set default minimum TLS version to TLSv1.2 (GH-937)
-- Changes for version 1.23.1:
- * nghttpx: Fix crash in OCSP response verification
-- Changes for version 1.23.0:
- * lib: nghttp2_session: Allow for compiling library with -DNDEBUG set (Patch from Angus Gratton) (GH-919)
- * lib: Treat incoming invalid regular header field as stream error (GH-900)
- * lib: Call nghttp2_on_invalid_frame_callback if altsvc validation fails (GH-904)
- * doc: spelling mistake in arguments to build nghttp apps (Patch from Soham Sinha) (GH-925)
- * doc: Add notes for installation on linux systems (Patch from Tapanito) (GH-917)
- * doc: Clarify the effect of nghttp2_option_set_no_http_messaging
- * nghttpx: Verify OCSP response (GH-929)
- * nghttpx: Fix certificate selection based on pub key algorithm (GH-924)
- * nghttpx: Fix certificate indexing bug
- * nghttpx: Run OCSP at startup (GH-922)
- * nghttpx: Wildcard path matching (GH-914)
- * nghttpx: Forward multiple via, xff, and xfp header fields (GH-903)
- * nghttp: Add -y, --no-verify-peer option to suppress peer verify warn (GH-906)
-
-- Update to version 1.22.0:
- * lib: Add missing free call on error in inflight_settings_new() (Patch from lstefani) (GH-884)
- * asio: Support specifying stream priority via session::submit() (Patch from Matt Way) (GH-881)
- * nghttpx: Clarify --conf option behaviour
- * nghttpx: Add $tls_sni access log variable (GH-896)
- * nghttpx: Rename ssl_* log variables as tls_* (GH-895)
- * nghttpx: Fix path matching bug (GH-894)
- * nghttpx: SNI based backend server selection (GH-892)
- * nghttpx: Enable signed_certificate_timestamp extension for TLSv1.3 (GH-878)
- * nghttpx: Add options for X-Forwarded-Proto header field (GH-872)
- * nghttpx: Add --single-process option (GH-869)
- * nghttpx: Use 502 as server error code
- * nghttpx: Use SSL_CTX_set_early_data_enabled with boringssl
- * nghttp: Verify server certificate and show warning if it fails (GH-870)
- * integration: Use nip.io instead of xip.io
-
-- Update to version 1.21.1:
- * asio: Fix crash if connect takes longer time than ping interval (GH-866)
- * nghttpx: Fix bug that 204 from h1 backend is always treated as error (GH-871)
-- Changes for version 1.21.0:
- * lib: Fix nghttp2_session_want_write (GH-832)
- * doc: Document pkg-config path usage
- * build: Eliminate U macro; Instead use (void)VAR for better compiler compatibility.
- * src: BoringSSL supports SSL_CTX_set_{min,max}_proto_version. (Patch from Piotr Sikora) (GH-853)
- * src: Use Mozilla's "Modern compatibility" ciphers by default
- * src: nghttp2_gzip: fix this statement may fall through [-Werror=implicit-fallthrough=] found by gcc7 (Patch from Alexis La Goutte) (GH-823)
- * nghttpx: Print version number with -v option
- * nghttpx: Enable X25519 with boringssl
- * nghttpx: Retry getaddrinfo without AI_ADDRCONFIG (GH-858)
- * nghttpx: Failing to listen on server socket is fatal error
- * nghttpx: Escape certain characters in access log (GH-856)
- * nghttpx: Ignore further input if connection is going to close
- * nghttpx: Don't call functions which are not async-signal-safe after fork but before execv in multithreaded process.
- * nghttpx: Enable backend pattern matching with http2-proxy (GH-733)
- * asio: client: Send PING after 30 seconds idle (GH-847)
-
-- Update to version 1.20.0:
- * lib: nghttp2_session: fix The 'then' statement is equivalent to the subsequent code fragment found by PVS Studio (V523) (Patch from Alexis La Goutte) (GH-814)
- * lib: Add nghttp2_option_set_no_closed_streams (GH-810)
- * build: Disable spdylay detection by default
- * build: Add --with-systemd option to configure
- * fuzz: Add fuzzer for oss-fuzz (GH-799)
- * src: Enable TLSv1.3 if it is supported by OpenSSL (or BoringSSL) (GH-816)
- * src: h2 requires >= TLSv1.2
- * asio: More graceful stop of nghttp2::asio_http2::server::http2 (Patch from Amir Pakdel) (GH-805)
- * asio: Holding more shared_ptrs instead of raw ptrs to make sure called objects don't get deleted. (Patch from clemahieu)
- * asio: Fix infinite loop in acceptor handler (Patch from clemahieu) (GH-794)
- * asio: close_stream erases from streams_ while it's being iterated over. (Patch from clemahieu) (GH-795)
- * nghttpx: Strip version number from server header field
- * nghttpx: Add --single-worker option
- * nghttpx: Fix bug that send_reply does not participate graceful shutdown
- * nghttpx: Add --frontend-max-requests option
- * nghttpx: Enable stream-write-timeout by default
- * nghttpx: Fix stream write timer handling
- * nghttpx: Add configrevision API endpoint (GH-820)
- * nghttpx: Redirect to HTTPS URI with redirect-if-not-tls parameter (GH-819)
- * nghttpx: Update log time stamp in millisecond interval
- * nghttpx: Better error message when private key and certificate are missing
- * nghttpx: Fix bug that old config is used during reloading configuration
- * nghttpx: Specify TLS protocol by version range (GH-809)
- * nghttpx: Send SIGQUIT to the original master process (GH-807)
- * nghttpx: Restrict HTTP major and minor in 0 or 1
- * nghttpx: Drop privilege of neverbleed daemon first
- * nghttpx: add systemd support (Patch from Tomasz Torcz) (GH-802)
- * nghttpx: Fix crash on SIGHUP with multi thread configuration (GH-801)
- * nghttpx: Send 1xx non-final response using mruby script (GH-800)
- * nghttpx: Select certificate by client's supported signature algorithm (GH-792)
- * nghttpx: Recommend POST for backendconfig API request
- * nghttpx: Don't build PSK features with LibreSSL (Patch from Bernard Spil) (GH-789)
- * nghttp: add support for link rel="preload" for --get-assets (Patch from Benedikt Christoph Wolters) (GH-791)
- * h2load: Fix wrong req_stat updates
- * h2load: Explicitly count the number of requests left and inflight
- * integration: Fix deprecation warnings
- * integration: Redirect nghttpx stdout/stderr to test driver's stdout/stderr
-- Changes for version 1.19.0:
- * lib: Fix memory leak of nghttp2_stream object in server side nghttp2_session object
- * Fix issues found by PVS Studio (Patch from Alexis La Goutte) (GH-769)
- * doc: Update README file to write about the issue of Alpine Linux's inability to replace malloc (Patch from makovich) (GH-768)
- * build: Compile with Android NDK r13b using clang
- * src: Fix assertion error with boringssl
- * nghttp: Take into account scheme and port when parsing HTML links
- * nghttp: Fix authority for --get-assets if IP address is used in conjunction with user-defined :authority header (Patch from Benedikt Christoph Wolters) (GH-783)
- * nghttpx: Add --accesslog-write-early option (GH-777)
- * nghttpx: Fix access.log timestamp (GH-778)
- * nghttpx: Show default cipher list in -h
- * nghttpx: Add client-ciphers option
- * nghttpx: Add client-no-http2-cipher-black-list option
- * nghttpx: Fix the bug that no-http2-cipher-black-list does not work on backend HTTP/2 connections.
- * nghttpx: Add --client-psk-secret option to enable PSK in backend (GH-612)
- * nghttpx: Add --psk-secret option to enable PSK in frontend connection (GH-612)
- * nghttpx: Enable SCT with OpenSSL 1.1.0
- * nghttpx: Add proxyproto to frontend option to accept PROXY protocol (GH-765)
- * h2load: Show default cipher list in -h
- * h2load: Show custom server temp key such as X25519
- * h2load: Fix incorrect return value from spdylay_send_callback
-- Changes for version 1.18.1:
- * nghttpx: Fix assertion error in libev ev_io_start (GH-759)
- * nghttpx: Handle c-ares success without result
- * nghttpx: Fix bug that DNS timeout was erroneously disabled (GH-763)
- * nghttpx: Fix bug that DNS timeout was ignored (GH-763)
-
-- use individual libboost-*-devel packages instead of boost-devel
-
-- Update to version 1.18.0:
- * lib: Accept and ignore content-length: 0 in 204 response for now
- * build: Use pkg-config to detect libxml2
- * build: Require c-ares to compile applications under src
- * build: Add Windows CI via AppVeyor (Patch from Alexis La Goutte)
- * examples: Delete tiny-nghttpd
- * nghttpx: Retry h1 backend request if first write fails (GH-757)
- * nghttpx: Keep reading after backend write failed (GH-756)
- * nghttpx: Add frontend-keep-alive-timeout option (GH-755)
- * nghttpx: New error log format (GH-749)
- * nghttpx: Fix bug that fetch-ocsp-response does not work with OpenSSL 1.1.0 (GH-742)
- * nghttpx: Backend API call allows non-numeric host with dns parameter (GH-731)
- * nghttpx: Lookup backend host name dynamically (GH-721)
- * nghttpx: Accept and ignore content-length: 0 in 204 response for now (GH-735)
- * nghttpx: Wait for child process to exit
-
-- Update to version 1.17.0:
- * lib: Disallow content-length in 1xx, 204, or 200 to a CONNECT request (GH-722)
- * lib: Avoid memcpy against NULL src
- * build: MSVC version resource support (Patch from Remo E) (GH-718)
- * asio: server: Call on_close callback on connection close (GH-729)
- * nghttpx: Fix frequent crash with --backend-http-proxy-uri
- * nghttpx: Robust backend read timeout
- * nghttpx: Fix bug that mishandles response header from h1 backend
- * nghttpx: Fix bug that zero-length POST is not forwarded (GH-726)
- * nghttpx: Remove optional reason-phrase from SPDY :status
- * nghttpx: Header key and value must be string in mruby script
- * nghttpx: Strip content-length with 204 or 200 to CONNECT in mruby (GH-722)
- * nghttpx: Strict handling for Content-Length or Transfer-Encoding in h1 (GH-722)
- * nghttpx: Fix compilation with BoringSSL (Patch from dalf) (GH-717)
- * nghttpd, nghttpx, asio: Add missing mandatory SP after status code
-
-- Update to version 1.16.1:
- * lib: Prevent undefined behavior in decode_length
- * nghttpx: Fix bug which may crash nghttpx if non-final response
- is forwarded from origin server to HTTP/1.1 client
-- Changes for version 1.16.0:
- * lib: Add nghttp2_set_debug_vprintf_callback to take advantage
- of DEBUGF statements in when building DEBUGBUILD.
- * Update .clang-format for clang-format-3.9
- * build: Make it possible to include nghttp2/CMakeLists.txt in
- another project using add_subdirectory.
- * third-party: Update http-parser to
- feae95a3a69f111bc1897b9048d9acbc290992f9
- * asio: Fix crash when end() is called outside nghttp2 callback
- * nghttpx: Add --backend-connect-timeout option
- * nghttpx: Add TLS signed_certificate_timestamp extension support
- * nghttpx: Add --ecdh-curves option to specify list of named
- curves
- * h2load: Add --header-table-size and --encoder-header-table-size
- options
-
-- Update to version 1.15.0:
- * lib: Add nghttp2_option_set_max_deflate_dynamic_table_size()
- API function (GH-684)
- * lib: Allow NGHTTP2_ERR_PAUSE from
- nghttp2_data_source_read_callback (GH-671)
- * lib: Add nghttp2_session_get_hd_deflate_dynamic_table_size()
- and nghttp2_session_get_hd_inflate_dynamic_table_size() API
- functions to get current HPACK dynamic table size (GH-664)
- * lib: Add nghttp2_session_get_local_settings() API function
- * lib: Add nghttp2_session_get_local_window_size() and
- nghttp2_session_get_stream_local_window_size() API functions
- * build: Add -lsocket -lnsl to APPLDFLAGS for solaris build
- * neverbleed: Update neverbleed to support ECDSA certificate
- * doc: Mention --enable-lib-only configure option in README
- * integration: Fix test failure with go1.7.1
- * src: Fix compile error with openssl 1.1.0
- * nghttpx: Improve performance with HTTP/1.1 backend when
- request body is involved
- * nghttpx: Use std::atomic_* overloads for std::shared_ptr if
- available
- * nghttpx: Migrate backend stream to another h2 session on
- graceful shutdown
- * nghttpx: Add option to specify HPACK encoder/decoder dynamic
- table size
- * nghttpx: Log client address
- * nghttpx: Add tls_sni to mruby Nghttpx::Env class
- * nghttpx: Add --frontend-http2-window-size option, and its
- family functions
- * nghttpx: Add experimental TCP optimization for h2 frontend
- * nghttpx: Workaround for std::make_shared bug in Xcode7, 7.1,
- and 7.2 (GH-670)
- * nghttpx: Fix bug that bytes are doubly counted to rate limit
- for TLS connections
- * nghttpx: Add --no-server-rewrite option not to rewrite server
- header field (GH-667)
- * nghttpx: Retry if backend h1 connection cannot be established
- due to timeout
- * nghttpx: Reset stream if invalid header field is received in h2
- * nghttpx: Add --server-name option to change server response
- header field (GH-667)
- * nghttpd: Add --encoder-header-table-size option
- * nghttp: Add --encoder-header-table-size option
- * python: Support ALPN, require Python 3.5
-
-- Update to version 1.14.0:
- * lib: Make emit_header() return void since it always succeed
- * lib: Add nghttp2_hd_deflate_hd_vec() deflate API to support
- multiple buffer input
- * lib: since hd_inflate_commit_indexed() always return 0,
- remove the return value check in nghttp2_hd_inflate_hd_nv()
- * lib: Use memeq() instead of lstreq() in lookup_token()
- * lib: More strict stream state handling
- * lib: Modify genlibtokenlookup.py to remove redundant header
- comparisons and remove inline qualifier of lookup_token()
- in genlibtokenlookup.py
- * lib: Fix wrong tree operation to avoid cycle
- * lib: Make get_max_index() return the max index in frame,
- so we don't need to do extra calculation
- * lib: Add nghttp2_on_invalid_header_callback
- * lib: Log frame's stream ID for header debug logging
- * doc: Remove old doc about differential encoding in HPACK
- * doc: Document about ALPN in nghttpx howto
- * nghttpx: Log error code from getsockopt(SO_ERROR) on first
- write event
- * nghttpx: Don't change pushed stream's priority
- * nghttpx: Log backend connection failure in WARN level
- * nghttpx: Fix bug that api and healthmon parameters do not work
- with http2 proxy
- * nghttpx: Add access log variable for backend host and port
- * nghttpx: Use copy instead of const reference of backend group
- * nghttpx: Reload configuration with SIGHUP
- * nghttp: Adjust weight according to Firefox stable
- * nghttp: Call error callback when invalid header field is
- received and ignored
- * nghttp: Allow multiple -p option
- * deflatehd: Call nghttp2_hd_deflate_change_table_size only
- if table size is changed from default
-
-- Update to version 1.13.0:
- * lib: Cancel non-DATA frame transmission from
- nghttp2_before_frame_send_callback
- * doc: Fix warning with Sphinx 1.4
- * build: Work with Android NDK r12b
- * nghttpx: Use consistent hashing for client IP based session
- affinity
- * nghttpx: Fix FTBFS on armel by explicitly including the header
- * nghttpx: Cast to double to fix build with gcc 4.8 on Solaris 11
- * nghttpx: Fix build error with libressl
- * examples: Fix compile error with OpenSSL v1.1.0-beta2
-
-- Update to version 1.12.0:
- * Add nghttp2_session_set_local_window_size API function
- * Add nghttp2_option_set_max_send_header_block_length API
- function (GH-613)
- * Fix warning: declaration of 'free' shadows a global declaration
- (Patch from Alexis La Goutte)
- * examples: Add ALPN support to tutorial client/server (GH-614)
- * nghttpx: Reduce TTFB with large number of incoming connections
- * nghttpx: Rewrite read timer handling
- * nghttpx: Clean up neverbleed AF_UNIX socket
- * nghttpx: Add --backend-max-backoff option
- * nghttpx: Use 16KiB buffer for reading to match TLS record size
- * nghttpx: Add healthmon parameter to -f option to enable health
- monitor mode
- * nghttpx: Receive reference of std::mt19937, not making a copy
- * nghttpx: Fix bug that backend never return to online (GH-615)
- * nghttpx: Implement client IP based session affinity
- * nghttpx: Add --api-max-request-body option to set maximum API
- request body size
- * nghttpx: Add api parameter to --frontend option to mark API
- endpoint
- * h2load: Add content-length header field for HTTP/2 and SPDY as
- well
- * h2load: Implement HTTP/1 upload (GH-611)
-
-- Update to 1.11.1
- * lib: Add nghttp2_hd_inflate_hd2() and deprecate
- nghttp2_hd_inflate_hd()
- * lib: Avoid 0-length DATA if NGHTTP2_DATA_FLAG_NO_END_STREAM is set
- * lib: Fix bug that PING flags are ignored in nghttp2_submit_ping
- * integration: Workaround runtime error: cgo argument has Go pointer
- to Go pointer
- * nghttp: Eliminate zero length DATA frame at the end if possible
- * nghttpd: Set content-length in status response
- * nghttpx: Add sni keyword to --backend option
- * nghttpx: Allow mixed protocol and TLS settings among backends under
- same pattern
- * nghttpx: Don't add 0-length DATA when response HEADERS bears
- END_STREAM flag
- * nghttpx: Don't add chunked encoded response body for HEAD request
- * nghttpx: Don't use CN if we have dNSName or iPAddress field
- * nghttpx: Just call execv instead of execve to pass environ
- * nghttpx: Make SETTINGS timeout value configurable
- * nghttpx: Save PID file after it is ready to accept connections
- * nghttpx: Treat backend failure if SETTINGS is not received within
- timeout
- * nghttpx: Wait for SETTINGS ACK to make sure that backend h2 server
- is alive
-
-- Update to 1.10.0
- * Pass unknown SETTINGS values to nghttp2_on_frame_recv_callback
- * Add ALTSVC frame support
- * Run error callback when peer does not send initial SETTINGS
- frame
- * Update http-parser
- * Update sphinx_rtd_theme
- * nghttp: add an --expect-continue option
- * nghttpx: Fix downstream connect callback called early
- * nghttpx: Truncate too long -b option signature
- * nghttpx: Fix bug that server push from mruby script did not
- work
- * nghttpx: Try next HTTP/1 backend address when connection
- cannot be made
- * nghttpx: Retry next HTTP/2 backend address when connection
- cannot be made
- * nghttpx: Enable link header field based push for non-final
- response
- * nghttpx: Detect online/offline state of backend servers
- * nghttpx: Better load balancing between backend HTTP/2 servers
- * nghttpx: Fix crash with backend failure
-
-- Update to 1.9.2
- * nghttpx: Fix crash with backend failure
- * nghttpx: Better distribute load to backend h2 servers
- * nghttpx: Fix error messages on deprecated mode
- * nghttpx: Fix bug that logger wrote string which was not
- NULL-terminated
- * nghttpx: Fix bug that proxy with HTTP/1.1 CONNECT did not work
-
-- Update to 1.9.1
- * nghttpx: Fix bug that backend tls keyword did not work with -s
- option
- * nghttpx: Fix handing stream after connection check was failed
-- Changes for 1.9.0
- * lib: Add nghttp2_error_callback to tell application human
- readable error message
- * lib: Reference counted HPACK name/value pair, adding
- * nghttp2_on_header_callback2
- * lib: Add nghttp2_option_set_no_auto_ping_ack() option
- * lib: Add nghttp2_http2_strerror() to return HTTP/2 error code
- string
- * build: Makefile.msvc enhancements (Patch from Jan-E)
- * build: Lower libev version requirement (Patch from Peter Wu)
- * build: cmake build support (Patch from Peter Wu)
- * asio: Fix bug that server event loop breaks with exception
- * integration: Disable tests that sometimes break randomly on
- travis
- * integration: do not use recursive target (Patch from Peter Wu)
- * h2load: Fix bug that it did not try to connect to server again
- * h2load: Fix bug that initial max concurrent streams was too
- large
- * nghttpx: Memcached connection encryption with tls keyword
- * nghttpx: Enable/disable TLS per frontend address
- * nghttpx: Configure TLS per backend routing pattern
- * nghttpx: Workaround for Ubuntu 15.04 which does not
- value-initialize on std::make_shared.
- * nghttpx: Add --error-page option to set custom error pages
- * nghttpx: Add wildcard host routing
- * nghttpx: Change read timeout reset timing
- * nghttpx: Don't push if Link header field includes nopush
- * nghttpx: Deprecate backend-http1-connections-per-host in favor
- of backend-connections-per-host
- * nghttpx: Restructure mode settings, removing --http2-bridge,
- - -client, and --client-proxy options
- * nghttpx: Deprecate backend-http1-connections-per-frontend in
- favor of backend-connections-per-frontend
- * nghttpx: Don't share session which is already in draining
- state
- * nghttpx: Effectively disable backend HTTP/2 connection flow
- control
- * nghttpx: Add --frontend-http2-max-concurrent-streams and
- - -backend-http2-max-concurrent-streams, and deprecate
- - -http2-max-concurrent-streams option
- * nghttpx: Deprecate --backend-http2-connections-per-worker
- option
- * nghttpx: Share TLS session cache between HTTP/2 and HTTP/1
- backend
- * nghttpx: Rewrite backend HTTP/2 connection coalesce strategy
-
-- Update to 1.8.0
- * Add Architecture documents (work in progress)
- * List all contributors in AUTHORS
- * doc: fix out-of-tree doc builds (Patch from Peter Wu)
- * Wrap AM_PATH_XML2 by m4_ifdef to handle the case when
- _PATH_XML2 is not found
- * Fix configure script for non-gcc, clang build
- * Document compiling apps and include h2load in configure (Patch
- from David Beitey)
- * Don't check for dlopen/libdl on *BSD (Patch from Bernard Spil)
- * Don't taint CXXFLAGS from AX_CXX_COMPILE_STDCXX_11
- * Fixing Windows Makefile version detection (Patch from Reza
- Tavakoli)
- * lib: Tokenize extra HTTP header fields
- * lib: Fix typo in HAVE_CONFIG_H name (Patch from Peter Wu)
- * lib: Add HTTP/2 extension framework to send and receive
- non-critical frames
- * tests: remove unused macros (Patch from Peter Wu)
- * src: Update default cipher list
- * src: Fix compile error with gcc-6 which enables C++14 by default
- * asio: client: Fix connect timeout does not work, return from cb
- if session stopped, removing client::session::connect_timeout()
- functon
- * nghttpd: Start SETTINGS timer after it is written to output
- buffer
- * nghttpd: Add trailer header field to status responses
- * nghttpd: Add -w and -W options to change window size
- * nghttpx: Worker wide blocker which is used when socket(2) is
- failed
- * nghttpx: ConnectBlocker per backend address
- * nghttpx: Interleave text/html pushed resources with associated
- resource
- * nghttpx: Add headers given in add-response-headers for mruby
- response
- * nghttpx: Deprecate --backend-ipv4 and --backend-ipv6 in favor
- of --backend-address-family
- * nghttpx: Add options to specify address family of memcached
- connections
- * nghttpx: Add encryption support for TLS ticket key retrieval
- * nghttpx: Add TLS support for session cache memcached connection
- * nghttpx: Refactor blacklisted cipher suite check (Patch from
- Jay Satiro)
- * nghttpx: Add TLS support for HTTP/1 backend
- * nghttpx: Add request-header-field-buffer and
- max-request-header-fields options, deprecating
- header-field-buffer and max-header-fields options.
- * nghttpx: Add --no-http2-cipher-black-list to allow black listed
- cipher suite
- * nghttpx: Limit header fields from backend
- * nghttpx: Fix bug that IPv6 address in Forwarded "for" is not
- quoted-string
- * nghttpx: Support multiple frontend addresses
- * integration-tests: support out-of-tree tests (Patch from Peter
- Wu)
- * examples: fix compile warnings (Patch from Peter Wu)
-- Drop upstreamed nghttp2-c++14.patch
-
-- Update to 1.7.1
- * Fix CVE-2016-1544 (boo#966514)
-
-- Add nghttp2-c++14.patch to properly guard make_unique templates.
- [bsc#964140]
-
-- Update to 1.7.0
- * Reset (RST_STREAM) stream if flow control window gets overflow
- * Validate :authroity, host, and :scheme value more strictly
- * Check request/response submission error based side of session
- * Strict outgoing idle stream detection
- * Return error from nghttp2_submit_{headers,request} when self
- dependency is made
- * Add -ldl to APPLDFLAGS for static openssl linking
- * asio: Stop acceptor on server::http2::stop
- * asio: Rename http2::get_io_services() as http2::io_services()
- * h2load: Support UNIX domain socket
- * h2load: Improve readability of traffic numbers
- * h2load: Remove "auto" for -m option
- * h2load: Show progress in rate mode
- * h2load: Perform sampling for request and connection timings to
- reduce memory consumption
- * nghttpd: Add --no-content-length option to omit content-length
- in response
- * nghttpx: Interleave pushed streams with the associated stream
- if pushed streams are javascript and CSS resources
- * nghttpx: The initial value of request/response buffer is
- increased to 128K
- * nghttpx: Fix bug that --listener-disable-timeout option is not
- used
- * nghttpx: Don't emit :authority if request does not contain
- authority information
- * nghttpx: Add clarification of quotes in configuration file
- * nghttpx: Don't allow certain characters in host and :scheme
- header field
- * nghttpx: Add RFC 7239 Forwarded header field support
- * nghttpx: Fix crash when running on IPv6 only (Patch from Vernon
- Tang)
- * nghttpx: Take into account of trailers when applying
- max_header_fields
- * nghttpx: Don't apply max_header_fields and header_field_buffer
- limit to response
- * nghttpx: Strict validation for header fields given in
- configuration
- * nghttpx: header value should not be lower-cased (Patch from
- ayanamist)
-
-- fixed typo in libnghttp2_asio1 [bsc#962914]
-
-- Update to 1.6.0
- * Fix heap-use-after-free bug when handling idle streams
- * Strict error handling for frames which are not allowed after
- closed (remote)
- * Set max number of outgoing concurrent streams to 100 by
- default
- * Keep incoming streams only at server side
- * Create stream object for pushed resource during
- nghttp2_submit_push_promise()
- * Add nghttp2_session_create_idle_stream() API
- * Handle response in nghttp2_on_begin_frame_callback
- * Add --lib-only configure option
- * Compile with OpenSSL 1.1.0-pre1
- * Fix build when OpenSSL 1.0.2 is not available (patch from
- Sunpoet Po-Chuan Hsieh)
- * asio: Add connect and read timeout to client API
- * asio: Add TLS handshake and read timeout to server API
- * asio: Added access to a requests remote endpoint (patch from
- Andreas Pohl)
- * asio: libnghttp2_asio: Added io_service accessors (patch from
- Andreas Pohl)
- * h2load: Add req/s min, max, mean and sd for clients
- * h2load: Fix broken connection times
-
-- Update to 1.5.0
- * Fix bug that nghttp2_session_find_stream(session, 0) returned
- NULL
- * Add nghttp2_session_change_stream_priority() to change stream
- priority without sending PRIORITY frame
- * Add nghttp2_session_check_server_session() API
- * Consider to use CANCEL error code when closing streams with
- GOAWAY
- * Don't send push response if GOAWAY has been received
- * Use error code CANCEL to reset pushed reserved stream from
- remote
- * Add nghttp2_session_upgrade2(), deprecate
- nghttp2_session_upgrade()
- * Workaround HTTP upgrade with HEAD request in
- nghttp2_session_upgrade()
- * Introduce NGHTTP2_NV_FLAG_NO_COPY_NAME and
- NGHTTP2_NV_FLAG_NO_COPY_VALUE
- * Add nghttp2_session_check_request_allowed() API function
- * Switch to clang-format-3.6
- * Update mruby to 1.2.0
- * tests: fix broken linkage with --disable-static (Patch from
- Kamil Dudka)
- * python: Send RST_STREAM if remote side is not closed and
- response finished
- * asio: client: call on_error when connection is dropped
- * asio: ALPN support
- * h2load: Add --h1 option to force http/1.1 for both http and
- https URI
- * h2load: Fix crash when dealing with "connection: close" form
- HTTP/1.1 server
- * h2load: h2load goes into infinite loop when timing script file
- starts with 0.0 in first line (Patch from Kit Chan)
- * h2load: Override user-agent with -H option
- * h2load: Print "space savings" to measure header compression
- efficiency
- * h2load: Stream error should be counted toward errored
- * h2load: Show application protocol with OpenSSL < 1.0.2
- * nghttpx: Don't send RST_STREAM to h2 backend if backend is
- disconnected state
- * nghttpx: Support server push from HTTP/2 backend
- * nghttpx: Fix bug that causes connection failure with backend
- proxy URI
- * nghttpx: Use --backend-tls-sni-field to verify certificate
- hostname
- * nghttpx: Log :authority as $http_host if available
- * nghttpd: Fix crash with CONNECT request
- * nghttpd: Defered eviction of cached fd using timer
- * nghttpd: Read /etc/mime.types to set content-type header field
- * nghttp: Record request method to output it in har correctly
- * nghttp: Use method given in -H with ":method" in HTTP Upgrade
-- Drop nghttp2-1.4.0-fix-tests.patch (now in upstream)
-
-- Enable spdy and more example applications
-
-- Update to 1.4.0:
- * lib: Don't always expect dynamic table size update.
- * lib: Shrink to the minimum table size seen in local SETTINGS.
- * lib: Add new error code NGHTTP2_ERR_PAUSE to send_data_callback.
- * lib: Avoid excessive WINDOW_UPDATE queuing.
- * lib: Return fatal error if flooding is detected to close
- session immediately.
- * lib: Return type of nghttp2_submit_trailer is int.
- * lib: Don't send WINDOW_UPDATE with 0 increment.
- * lib: Fix bug that headers in CONTINUATION were ignored after
- HEADERS with padding.
- * package: Use -fvisibility=hidden for internal functions.
- * package: Show more information in configure summary.
- * package: Add PIDFile directive to systemd service.
- * package: Fix daemon upgrade when running under systemd.
- * app: Compile with BoringSSL.
- * nghttp: Allow multiple -c option occurrence, and take min and
- last value.
- * nghttpd: Fix leak when server failed to listen to given port.
- * nghttpx: Add TLS dynamic record size behaviour command line
- options.
- * nghttpx: Reduce default timeouts for read sockets to 1m.
- * nghttpx: Fix bug that PUT is replaced with POST.
- * nghttpx: Change mruby script handling.
- * nghttpx: Added support for RFC 7413 (TCP Fast Open) on nghttpx
- proxy listening connections.
- * nghttpx: Add neverbleed support.
- * h2load: Don't DOS our server!
- * h2load: Use duration syntax for timeouts.
- * h2load: Support subsecond rate period.
- * h2load: Simplify rate mode.
- * h2load: Add option for user-definable rate period.
- * h2load: Reuse SSL/TLS session.
- * h2load: Reconnect server on connection: close.
- * h2load: Don't exit in the case of no ALPN protocol overlap.
- * integration: Update go's http2 package URI.
-- Add missing baselibs.conf.
-- Add nghttp2-1.4.0-fix-tests.patch from commit 4825009.
-- Small spec cleanup.
-
-- Update to 1.3.4
- * Make traditional init script fail if new config file is broken
- (Patch from Janusz Dziemidowicz)
- * nghttpx-logrotate: Don't use killall since we have multiple
- processes
- * nghttpx: Fix improper signal handling
-- Changes for 1.3.3
- * Fix bug in padding handling of DATA frame
- * Use hash table for dynamic table lookup
- * More warning flags for --enable-werror
- * Update mruby
- * h2load: HTTP/1.1 support (Patch from Lucas Pardue)
- * nghttpx: Do not try to set TCP_NODELAY when frontend is an
- UNIX socket (Patch from Janusz Dziemidowicz)
- * nghttpx: Chown UNIX domain socket to user specified as --user
- * nghttpx: Split monolithic one process into control and worker
- processes
- * nghttpx: Handle SSL/TLS data following PROXY protocol line
-- Changes for 1.3.2
- * Check header block limit after new stream is opened
- * nghttp: Show error if HEADERS frame cannot be sent for
- whatever reason
- * nghttpx: Fix assertion failure on TLS handshake
- * nghttpx: Add x-http2-push header field for pushed resource
- * nghttpx: Fix compile error with --disable-threads
-
-- Update to 1.3.1
- * Avoid usage of typeof and replace __builtin_offsetof with
- offsetof
- * Honor stream->weight even if stream->last_writelen is 0
- * Compile third-party libraries if hpack-tools is enabled
- * nghttpx-init: Start nghttpx with --daemon
- * Bundle sphinxcontrib.rubydomain https://bitbucket.org/birkenfeld/sphinx-contrib/src/default/rubydomain/
- * Bundle mruby
- * h2load: Record TTFB on first byte of response body, rather
- than first socket read
- * h2load: Improve checking for timing script input, prevent
- false positive in certain situations
- * nghttpx: Implement PROXY protocol version 1
- (--accept-proxy-protocol option)
- * nghttpx: Allow link header server push for HTTP/2 backend
- as well
- * nghttpx: Don't initiate push if client disabled push
- * nghttpx: Allow absolute URI in Link header field for push
- * nghttpx: Fix crash with multi workers and QUIT signal
- * nghttpx: Add mruby support which is disabled by default
- (use --with-mruby configure option to enable it)
- * nghttpx: Drop connection before TLS finish if h2 requirement
- is not fulfilled
-- Fix typo in previous changelog entry
-
-- Update to 1.3.1
- * Limit the number of incoming reserved (remote) streams
- * Add stream public API
- * Rewrite priority tree handling
- * Fix parallel make distcheck
- * Define it and itprep recursive target if
- AM_EXTRA_RECURSIVE_TARGETS is defined
- * fetch-ocsp-response: Handle spurious openssl exist status 0
- * nghttpx: Use nghttp2::ssl::DEFAULT_CIPHER_LIST for backend TLS
- connection
- * nghttpx: Don't allow blacked listed cipher suites for HTTP/2
- connection
- * nghttpx: better handle /dev/stderr and /dev/stdout (Patch from
- Tomasz Buchert)
- * nghttpd: GOAWAY if SSL/TLS requirements for HTTP/2 are not met
- * nghttpd: Return date header field for 304
- * nghttpd: Support HEAD request
- * h2load: Add Timing-script and base URI support (Patch from
- Lucas Pardue)
- * h2load: Add timeout options (Patch from Nora)
-- Fix typo in changelog
-
-- Update to 1.2.1
- * doc: Reword the HPACK tutorial (Patch from Tom Harwood)
- * nghttpx: Fix stability issues
- * h2load: Fix crash if -r > -n
-
-- Update to 1.2.0
- * Fix crash if response or data is submitted to closing stream
- * Header table size UINT32_MAX must be accepted
- * Use PROTOCOL_ERROR against DATA sent to idle stream
- * Allow multiple in-flight SETTINGS
- * Strictly check occurrence of dynamic table size update
- * Fix configure warning that 'missing' is missing or too old
- * Fix rm: cannot remove ‘*.rst’: No such file or directory when
- "make clean" (Patch from Alexis La Goutte)
- * doc: Reword some of the server and client tutorial (Patch
- from Tom Harwood)
- * src: Remove monotonic_clock replacement macro for gcc-4.6
- * nghttpx: Add TLS ticket key sharing among nghttpx instances
- using memcached
- * nghttpx: Add shared session cache using memcached
- * nghttpx: Set SSL/TLS session timeout to 12 hours
- * nghttpx: Enable session resumption on HTTP/2 backend
- * nghttpx: Don't rewrite host header field by default
- * nghttpx: Generate new ticket key every 1hr and its life time
- is now 12hrs
- * nghttpx: Don't reuse backend connection if it is not clean
- * nghttpx: Add AES-256-CBC encryption for TLS session ticket
- * nghttpd: Fix the bug that 304 response has non-empty body
- * h2load: Add -r and -C options to h2load (Patch from
- Nora Shoemaker)
-- Changes for 1.1.2
- * Fix linker error with libnghttp2_asio
- * Allow custom installation location for Python bindings
-- Drop no longer needed missing_nghttp2_timegm.patch
-
-- Update to 1.1.1
- * nghttpx: Fix various stability issues and memory leak bug
-- Changes for 1.1.0
- * Fix DATA is not consumed if nghttp2_http_on_data_chunk failed
- * nghttp2_submit_response and nghttp2_submit_headers may return
- * NGHTTP2_ERR_DATA_EXIST
- * msvc build fixes and enchantments (Patch from Gabi Davar)
- * Compile with IRIX gcc-4.7 (Patch from Klaus Ziegler)
- * nghttp: Add --max-concurrent-streams option
- * nghttp: Add comment on HAR on pushed objects (Patch from
- acesso)
- * nghttpx: Add --include option to read additional configuration
- from given file
- * nghttpx: Add backend routing based on request host and path by
- extending -b option
- * nghttpx: Allow log variable to be enclosed by curly braces for
- disambiguation
- * nghttpx: Add log variables related to SSL/TLS connection
- * h2load: Add --ciphers option
-- Add patches
- * missing_nghttp2_timegm.patch to fix building of asio library
- * nghttp2-remove-python-build.patch to fix python bindings
- installation when autotools are used
-
-- Update to 1.0.5
- * Add STREAM_DEP_DEBUG macro switch to enable runtime validation
- of depedency tree
- * Fix another bug in priority handling; sibling's item is not
- queued when ancestor's item is detached
- * nghttpx: Fix crash with --http2-bridge and both frontend and
- backend TLS
-
-- Update to 1.0.4
- * Fix assertion failure in stream_update_dep_on_detach_item
- (GH-264)
-- Changes for 1.0.3
- * Fix bug that idle self-depending PRIORITY is not handled
- gracefully
- * Optimize dependency based priority code to Firefox style tree
- * enable third-party for asio_lib too (Patch from Mike
- Frysinger)
- * fetch-ocsp-response: Support LibreSSL, and include port in
- ocsp_host
- * src: Support compile with LibreSSL
- * nghttpx: Fix bug that x-forwarded-proto header field does not
- reflect frontend scheme on HTTP/2 backend
- * nghttpx: Validate :path on SPDY frontend
-
-- Update to 1.0.2
- * Fix bug that data are not consumed for connection in race
- condition (GH-253)
- * Define NGHTTP2_EXTERN to __declspec(dllimport) when using
- nghttp2 for Windows build
- * Translate fetch-ocsp-response into Python
- * libevent-client: Fix bug that path is broken if URI does not
- contain path part
- * python: Call on_close callback when connection is lost for
- server session
- * python: Expose client certificate, if available (Patch from
- Fabian Wiesel)
- * python: Catch and log failure to set TCP_NODELAY (Patch from
- Fabian Wiesel)
- * nghttpx: Add --add-request-header option
- * nghttpx: Make WebSocket upgrade work
- * nghttpx: Fix bug that END_STREAM is not set in backend for
- POST with Upgrade
- * nghttpx: Don't send "Expect" header field twice
-
-- Update to 1.0.1
- * Include stdint.h instead of inttypes.h when compiled with MSVC
- < 2013
- * Fix invalid memory free on out-of-memory handling
- * integration: Use our own copy of golang spdy package
- * android: Don't link zlib bundled with android NDK
- * Dockerfile.android: Update NDK ver, and ubuntu; build and link
- zlib
- * src, examples: Fix up OpenSSL initialization
- * nghttpx: Allow HTTP Upgrade from POST request if response
- header has not been sent to the client
- * nghttpx: Fix bug that PUSH_PROMISE is sent after associated
- response HEADERS
- * nghttpd: Close connection after settings timeout and GOAWAY
- was sent
- * h2load: Fix bug that NPN fails if ALPN is enabled
-
-- Update to 1.0.0
- * v1.0.0 introduced backward incompatible changes from 0.7
- series. Read https://nghttp2.org/documentation/package_README.html#migration-from-v0-7-15-or-earlier
- to migrate from older version to this latest version.
-- Changes for 0.7.15
- * Hopefully, this is the last release for 0.7.x series.
- Development continues in 1.x series.
- * Access violation in buffers (GH-232) (Patch from Etienne Cimon)
- * Retry finding jemalloc lib by je_malloc_stats_print (GH-233)
- * inflatehd: Fix crash if 'wire' value is not string (GH-235)
- * nghttpx: Revert 585af93 to fix crash with TLS (GH-234)
- * nghttpd: Add --echo-upload option to send back request body
-
-- Update to 0.7.14
- * Fix global-buffer-overflow in HPACK code
- * Fix doc for nghttp2_select_next_protocol
- * Fix bug that promised stream was not reset on decompression
- error
- * Add systemd and upstart configuration file for nghttpx
- (Patch from Zhuoyun Wei)
- * Improve nghttpx logrotate configuration file (Patch from
- Zhuoyun Wei)
- * Update sphinx_rtd_theme
- * h2load: Update h2load to give connect time and ttfb stats
- (Patch from ericcarlschwartz)
- * nghttpd: Add -m, --max-concurrent-streams option
- * nghttpx: Log absolute URI for HTTP/2 or client proxy request
- * nghttpx: Add --header-field-buffer and --max-header-fields
- options
- * nghttp: Fix assertion error if very large value is given to -t
-
-- Update to 0.7.13
- * Fix bug that promised stream was not reset by returning
- NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from
- nghttp2_on_header_callback. Instead, associated stream was reset.
- * Allow NGHTTP2_ERR_TEMPORAL_CALLBACK_FAILURE from
- nghttp2_on_begin_headers_callback
- * h2load: Effectively disable flow control by setting large
- window size
- * asio: Graceful shutdown and joinable server (Patch from
- Xiaoguang Sun)
-
-- Update to 0.7.12
- * Fix bug that nghttp2_session_set_next_stream_id accepts invalid
- stream_id
- * HPACK: Rewrite static header table handling
- * HPACK: Never index authorization and small cookie header field
- * Don't install libnghttp2_asio headers if they are disabled
- * doc: Specify program directive so that hyperlink to option is
- correctly pointed to the intended location
- * asio: client: Call error_cb on error occurred in do_read and
- do_write (Fixes GH-207)
- * nghttp: Add --no-push option to disable server push
- * nghttp: Show stream ID in statistics output
- * nghttp: Remove --dep-idle option
- * nghttp: Use same priority anchor nodes as Firefox does
- * nghttpx: Don't push resource if link header has non empty
- loadpolicy
- * nghttpx: Add logging for somewhat important events (logs,
- tickets, and ocsp)
- * nghttpx: Set Downstream to stream user data on HTTP Upgrade
- to h2
-
-- Update to 0.7.11
- * nghttpx: Fix waitpid race condition in ocsp response update
- * nghttp: Consider user-provided :authority header field for SNI
- as well as host header field
-- Changes for 0.7.10
- * Make sure that nghttp2 license is MIT license
- * Add nghttp2_session_consume_{connection,stream} to consume
- bytes independent
- * Add nghttp2_send_data_callback to send DATA payload without
- copying "static inline" fix for build with VS2013 (Patch from
- Remo E)
- * Update lib/Makefile.msvc (Patch from Remo E)
- * Remove dependency on libws2_32 on Windows build
- * Define NGHTTP2_EXTERN macro to export function for Windows
- build
- * doc: Generate API doc per function
- * python: Add async body generation support
- * python: Fix pseudo-header field ordering bug
- * nghttpx: Redirect stderr to errorlog file
- * nghttpx: Fix bug that data buffered in SSL object are not
- read
- * nghttpx: Remove --tls-ctx-per-worker option
- * nghttpx: Add OCSP stapling feature
-
-- Enable python bindings
-- Update to 0.7.9
- * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14)
- * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09)
- * h2load: Fix crash if -t > -c
- * h2load: Add -d option to upload data to server
- * nghttpx: Forward only "trailers" keyword in te when forwarding HTTP/2 backend
- * nghttpx: Fix PUSH_PROMISE header field corruption [GH-194]
- * nghttpx: Fix te header field is duplicated when forwarding HTTP/2 backend
- * nghttp, nghttpd: Add --hexdump option to hexdump incoming traffic.
- * examples: Place AM_CPPFLAGS first to use in-package header files first [GH-192]
-- Changes for 0.7.8
- * Implements h2-14 protocol (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14)
- * Implements HPACK 09 (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09)
- * Validate :path header field for http or https URI scheme
- * NULL-terminate header field name and value presented by callback
- * README.rst: Cleaned up the grammar a bit (Patch from Ross Smith II)
- * h2load: fix for segfault by reserving correct worker count (Patch from Stefan Eissing)
-
-- Avoid shipping documentation redundantly. Set RPM groups.
-
-- Fix rpm group
-
-- Update to 0.7.5
- * Implements h2-14 protocol
- (http://tools.ietf.org/html/draft-ietf-httpbis-http2-14)
- * Implements HPACK 09
- (http://tools.ietf.org/html/draft-ietf-httpbis-header-compression-09)
- * Validate HTTP semantics by default
- * Add nghttp2_option_set_no_http_messaging() API function
- * Update http-parser
- * nghttp, nghttpd, nghttpx: Use "sensitive" to indicate
- "never indexed" header field
- * nghttp, nghttpd, nghttpx, h2load: Select/announce h2 in
- ALPN/NPN
- * nghttp: Fix unaligned field output in --stat
- * nghttp: Fix -H does not work with -u upgrade request
- * nghttp: Update resource timing terminology according to
- Resource Timing TR
- * nghttpd: Add -a option which takes an address parameter that
- allows nghttpd to bind to a non-default address. Patch
- from Brian Card
- * nghttpx: Use omit minor version in case of HTTP/2 in via
- header and access log
- * nghttpx: Support UNIX domain socket on both frontend and backend
- * nghttpx: Fix crash in http/1 backend when backend returns more
- bytes than CL
- * nghttpx: Cast configuration value to rlim_t to avoid compile
- error on 32bit
- * nghttpx: Fix 1 second delay in HTTP/2 backend connection
- * nghttpx: Fix request re-submission bug in HTTP/2 backend
- * asio-sv2: Fix compile error with OS X
-
-- Initial packaging of 0.7.4
-
openslp
-- Implement automatic active discovery retries so that DAs do
- not get dropped if they are not reachable for some time
- [bnc#1166637] [bnc#1184008]
- new patch: openslp.unicastactivediscovery.diff
-
-- Add missing group(daemon) prerequires to the openslp-server
- package [bnc#1165050]
-- Add missing openslp requires to the openslp-server package
- [bnc#1165121]
-
-- Add missing zlib build dependency, which used to be pulled in
- by libopenssl-devel. The package fails to build since the openssl
- upgrade to 1.1.1 (bsc#1149792)
-
-- Use tcp connects to talk with other DAs [bnc#1117969]
- new patch: openslp.tcpknownda.diff
-- Fix segfault in predicate match if a registered service has
- a malformed attribute list [bnc#1136136]
- new patch: openslp.nullattr.diff
-
-- Fix memory corruption when the sendbuf gets reallocated
- [bnc#1090638] [CVE-2017-17833]
- new patch: openslp.sendbuf_move.diff
-- Fix out of bounds reads in message parsing
- new patch: openslp.parseoob.diff
-
-- move systemd notification before the chroot() call, otherwise
- the notify function cannot reach systend's unix domain socket
- [bnc#1089097]
-
-- Use %license (boo#1082318)
-- fix slpd using the peer address as local address for TCP
- connections [bnc#1076035]
- new patch: openslp.localaddr.diff
-- use tcp connections for unicast requests [bnc#1080964]
- new patch: openslp.tcpunicast.diff
-
-- add separate source openslp.logrotate.systemd to
- use systemctl reload for logrotate configuration
-
-- Add support for OpenSSL 1.1. Commit from upstream [bsc#1042665]
- new patch: openslp.openssl-1.1.diff
-
-- Also update openslp.sd_notify.diff to use the new systemd lib
-
-- Replace pkgconfig(libsystemd-*) with pkgconfig(libsystemd)
- Nowadays pkgconfig(libsystemd) replaces all libsystemd-* libs, which
- are obsolete.
-
-- Fix bounds check in SLPFoldWhiteSpace
- [bnc#1001600] [CVE-2016-7567]
- new patch: openslp.foldws.diff
-
-- remove convenience code as changes bytes in the message
- buffer breaking the verification code [bnc#994989]
- new patch: openslp.noconvenience.diff
-- fix storage handling in predicate code, it clashed with gcc's
- fortify_source extension [bnc#909195]
- new patch: openslp.predicatestorage.diff
-- bring back allowDoubleEqualInPredicate option
- new patch: openslp.doubleequal.diff
-- fix bug in openslp.initda.diff patch
-- fix rcopenslp helper
-- fix _xrealloc not checking the malloc return value
- [bnc#980722] [CVE-2016-4912]
- new patch: openslp.xrealloc.diff
-
-- Do not depend on fillup and insserv if the package build with
- systemd support; the dependencies are not needed in that case
-
openssh
+- Add openssh-dbus.sh, openssh-dbus.csh, openssh-dbus.fish: Make ssh
+ connections update their dbus environment (bsc#1179465).
+
pam
+- Update pam_motd to the most current version. This fixes various issues
+ and adds support for mot.d directories [jsc#PED-1712].
+ * Added: pam-ped1712-pam_motd-directory-feature.patch
+
+- Do not include obsolete libselinux header files flask.h and
+ av_permissions.h.
+ [bsc#1197794, pam-bsc1197794-do-not-include-obsolete-header-files.patch]
+
+- Between allocating the variable "ai" and free'ing them, there are
+ two "return NO" were we don't free this variable. This patch
+ inserts freaddrinfo() calls before the "return NO;"s.
+ [bsc#1197024, pam-bsc1197024-free-addrinfo-before-return.patch]
+
+- Define _pam_vendordir as "/%{_sysconfdir}/pam.d"
+ The variable is needed by systemd and others.
+ [bsc#1196093, macros.pam]
+
+- Corrected a bad directive file which resulted in
+ the "securetty" file to be installed as "macros.pam".
+ [pam.spec]
+
+- Added tmpfiles for pam to set up directory for pam_faillock.
+ [pam.conf]
+
+- Corrected macros.pam entry for %_pam_moduledir
+ Cleanup in pam.spec:
+ * Replaced all references to ${_lib}/security in pam.spec by
+ %{_pam_moduledir}
+ * Removed definition of (unused) "amdir".
+
+- Added new file macros.pam on request of systemd.
+ [bsc#1190052, macros.pam]
+
+- Added pam_faillock to the set of modules.
+ [jsc#sle-20638, pam-sle20638-add-pam_faillock.patch]
+
+- In the 32-bit compatibility package for 64-bit architectures,
+ require "systemd-32bit" to be also installed as it contains
+ pam_systemd.so for 32 bit applications.
+ [bsc#1185562, baselibs.conf]
+
+- If "LOCAL" is configured in access.conf, and a login attempt from
+ a remote host is made, pam_access tries to resolve "LOCAL" as
+ a hostname and logs a failure.
+ Checking explicitly for "LOCAL" and rejecting access in this case
+ resolves this issue.
+ [bsc#1184358, bsc1184358-prevent-LOCAL-from-being-resolved.patch]
+
+- pam_limits: "unlimited" is not a legitimate value for "nofile"
+ (see setrlimit(2)). So, when "nofile" is set to one of the
+ "unlimited" values, it is set to the contents of
+ "/proc/sys/fs/nr_open" instead.
+ Also changed the manpage of pam_limits to express this.
+ [bsc#1181443, pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch]
+
+- Add a definition for pamdir to pam.spec
+ So that a proper contents of macros.pam can be constructed.
+ [pam.spec]
+
+- Create macros.pam with definition of %_pamdir so packages which
+ are commonly shared between Factory and SLE can use this macro
+ [pam.spec]
+
+- pam_cracklib: added code to check whether the password contains
+ a substring of of the user's name of at least <N> characters length
+ in some form.
+ This is enabled by the new parameter "usersubstr=<N>"
+ See https://github.com/libpwquality/libpwquality/commit/bfef79dbe6aa525e9557bf4b0a61e6dde12749c4
+ [jsc#SLE-16719, jsc#SLE-16720, pam-pam_cracklib-add-usersubstr.patch]
+
+- pam_xauth.c: do not free() a string which has been (successfully)
+ passed to putenv().
+ [bsc#1177858, pam-bsc1177858-dont-free-environment-string.patch]
+
+- Initialize pam_unix pam_sm_acct_mgmt() local variable "daysleft"
+ to avoid spurious (and misleading)
+ Warning: your password will expire in ... days.
+ fixed upstream with commit db6b293046a
+ [bsc#1178727, pam-bsc1178727-initialize-daysleft.patch]
+
+- /usr/bin/xauth chokes on the old user's $HOME being on an NFS
+ file system. Run /usr/bin/xauth using the old user's uid/gid
+ Patch courtesy of Dr. Werner Fink.
+ [bsc#1174593, pam-xauth_ownership.patch]
+
+- Moved pam_userdb to a separate package pam-extra.
+ [bsc#1166510, pam.spec]
+
+- disable libdb usage and pam_userdb again, as this causes some license
+ conflicts. (bsc#1166510)
+
+- Add libdb as build-time dependency to enable pam_userdb module.
+ Enable pam_userdb.so
+ [jsc#sle-7258, bsc#1164562, pam.spec]
+
+- When comparing an incoming IP address with an entry in
+ access.conf that only specified a single host (ie no netmask),
+ the incoming IP address was used rather than the IP address from
+ access.conf, effectively comparing the incoming address with
+ itself. (Also fixed a small typo while I was at it)
+ [bsc#1115640, use-correct-IP-address.patch, CVE-2018-17953]
+
+- Remove limits for nproc from /etc/security/limits.conf
+ ie remove pam-limit-nproc.patch
+ [bsc#1110700, pam-limit-nproc.patch]
+
+- pam_umask.8 needed to be patched as well.
+ [bsc#1089884, pam-fix-config-order-in-manpage.patch]
+
+- Changed order of configuration files to reflect actual code.
+ [bsc#1089884, pam-fix-config-order-in-manpage.patch]
+
+- Use %license (boo#1082318)
+
+- Prerequire group(shadow), user(root)
+
+- Allow symbolic hostnames in access.conf file.
+ [pam-hostnames-in-access_conf.patch, boo#1019866]
+
+- Increased nproc limits for non-privileged users to 4069/16384.
+ Removed limits for "root".
+ [pam-limit-nproc.patch, bsc#1012494, bsc#1013706]
+
+- pam-limit-nproc.patch: increased process limit to help
+ Chrome/Chromuim users with really lots of tabs. New limit gets
+ closer to UserTasksMax parameter in logind.conf
+
+- Add doc directory to filelist.
+
+- Remove obsolete README.pam_tally [bsc#977973]
+
+- Update Linux-PAM to version 1.3.0
+- Rediff encryption_method_nis.diff
+- Link pam_unix against libtirpc and external libnsl to enable
+ IPv6 support.
+
+- Add /sbin/unix2_chkpwd (moved from pam-modules)
+
+- Remove (since accepted upstream):
+ - 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch
+ - 0002-Remove-enable-static-modules-option-and-support-from.patch
+ - 0003-fix-nis-checks.patch
+ - 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch
+ - 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch
+
+- Add 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch
+ - Replace IPv4 only functions
+
+- Fix typo in common-account.pamd [bnc#959439]
+
+- Add 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch
+ - readd PAM_EXTERN for external PAM modules
+
+- Add 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch
+- Add 0002-Remove-enable-static-modules-option-and-support-from.patch
+- Add 0003-fix-nis-checks.patch
+
+- Add folder /etc/security/limits.d as mentioned in 'man pam_limits'
+
+- Update to version 1.2.1
+ - security update for CVE-2015-3238
+
+- Update to version 1.2.0
+ - obsoletes Linux-PAM-git-20150109.diff
+
+- Re-add lost patch encryption_method_nis.diff [bnc#906660]
+
+- Update to current git:
+ - Linux-PAM-git-20150109.diff replaces Linux-PAM-git-20140127.diff
+ - obsoletes pam_loginuid-log_write_errors.diff
+ - obsoletes pam_xauth-sigpipe.diff
+ - obsoletes bug-870433_pam_timestamp-fix-directory-traversal.patch
+
+- increase process limit to 1200 to help chromium users with many tabs
+
patterns-base
+- Don't recommding glibc-locale-32bit for the -32bit pattern, it causes
+ dep-resolving trouble since it is no longer available in 32bit
+
poppler
+- Configure $CXX to the correct compiler version on codestreams
+ that have gcc12, such as SLE-15-SP5. [bsc#1206019]
+
+- The development compiler in SLE 15 has been updated to gcc12 via
+ maintenance update. Therefore adjusting the compiler version for
+ SLE 15 in the spec file, to not build with gcc11 anymore. This
+ resolves bsc#1206019.
+
+- update to 22.12.0:
+ core:
+ * Form::addFontToDefaultResources: Be stubborn in finding a font we can use. Issue #1272
+
+- update to 22.11.0:
+ core:
+ * CairoOutputDev: Update font after restore
+ * Protect against broken files
+ * Small code refactoring
+
+- update to 22.10.0:
+ * SplashOutputDev::tilingPatternFill: Properly restore CTM on failure.
+ * Protect against malformed files
+ * Refactor code to not use strndup
+ * Other small code refactoring
+ utils:
+ * pdftoppm: Avoid round-off errors when determining raster dimensions
+ * pdftocairo: Avoid round-off errors when determining raster dimensions
+ * pdftotext: Simplify memory handling
+ qt:
+ * Take into account flagNoView when getting/setting the visible status.
+ KDE bug #456313
+
+- update to 22.09.0 (CVE-2022-38784):
+ * Splash: Do not truncate line dash patterns with more than 20 entries. Issue #1281
+ * Various signature related improvements
+ * Fix FormField::getFullyQualifiedName in some scenarios
+ * Splash: Small optimization on dash pattern handling
+ * JBIG2Stream::readHalftoneRegionSeg: Fix potential memory leak
+ * Fix crashes on malformed files. Including CVE-2022-38784
+ * Fix string formatting in error reporting
+ * Fix two potential memory leaks in poppler_document_create_dests_tree
+ * pdfsig: List signature field names when listing signature information
+ * pdfsig: Add support for specifying signature by field name
+ * pdfunite: Fix crashes on malformed files
+ * pdfunite: Fix potential memory leak of docs
+- Bump soname following upstreams changes.
+
+- update to 22.08.0:
+ * Fix rendering text on some forms
+ * CairoOutputDev: Support Type3 charprocs having Resources
+ * Fix crashes on malformed files
+
+- update to 22.07.0:
+ * Fix crash when filling in forms in some files. Issue #1258
+ * Fix first lines of Annotations sometimes being cut off. Issue #1246
+ * Signatures: Don't crash if the signature doesn't have a common name
+ * CairoFontEngine: increment font_face reference when retrieving from the cache
+ * Add ToUnicode support for lessorequalslant and greaterorequalslant
+ glib:
+ * Add support for stamp annotation
+- add gpg keyring validation for the release tarball
+- drop da226d346e691f7545d995d6761d43e08855a3b7.patch (upstream)
+
+- Add da226d346e691f7545d995d6761d43e08855a3b7.patch --
+ CairoFontEnginer: increment font_face reference when retrieving
+ from the cache; this fixes crashes with certain pdfs
+ [glgo#GNOME/evince#1808, glfo#poppler/poppler#1212].
+
+- update to 22.06.0:
+ core:
+ * Forms: Fix crash in forms with their own DR
+ * Refactor CairoFontEngine caching
+ * CairoOutputDev: preserve text color when drawing type 3 glyphs
+ * Windows: font code simplification
+ * Minor code improvements
+ * pdfattach: Assume filename is utf8 encoded
+ * pdftohtml: Fix type 3 font size calculation
+- drop poppler-cairo_font_face_t-incorrect-cacheing.patch (upstream)
+
+- Add poppler-cairo_font_face_t-incorrect-cacheing.patch -- Fix
+ missing symbols after reloading some pdf files; patch taken from
+ upstream merge request [glfo#poppler/poppler#1247].
+
+- update to 22.05.0:
+ * Annotations: Make sure we embed fonts for the FreeText annots
+ * Forms: Make sure we embedd fonts as needed
+ * Signatures: Make sure we embed the needed fonts
+ * CairoOutputDev: color type 3 fonts
+ * fix two bugs in multiline find_text()
+ * code improvements
+ * pdftotext: added TSV mode
+ * HtmlOutputDev: don't use png.h
+ * Use time_t for time
+ * Add page_transition::durationReal
+ * Pass leftFontSize down to `FormWidgetSignature::signDocumentWithAppearence`
+
+- update to 22.04.0:
+ * Fix underline sometimes being drawn only partially
+ * Fix Adobe Reader not reading some of the contents we write correctly
+ * Fix code that workarounds some broken-ish files
+ * FoFiTrueType: Parse CFF2 fonts too
+ * FoFiTrueType: Support cmap types 2 and 13
+ * Fix a few small memory leaks
+ * code improvements
+ qt:
+ * Handle SaveAs named action
+ * Annotations: don't change the text color when changing the font
+ utils:
+ * pdftotext: print creation and modification date when using htmlmeta param
+ glib:
+ * Fix returning internal data of temporary strings
+ cpp:
+ * Fix code incompatibility with MSVC
+ build system:
+ * poppler internal library is no longer forced to static on MSVC
+ * Error out if iconv is not available and the cpp frontend is enabled
+ * Require FreeType 2.8
+
+- Update to version 22.03.0:
+ + core:
+ - Signature:
+ . Fix finding Signatures that are in Pages not not in the
+ global the Forms object
+ . Improve getting the path to the firefox certificate
+ database
+ - Splash: Fix rendering of some joints.
+ - Fix get_poppler_localdir for relocatable Windows builds
+ - Minor code improvements
+ + qt: Minor code improvements
+ + utils: pdfimages: Fix the wrong Stream being passed for
+ drawMaskedImage
+ + build system: Small code improvements
+- Changes from version 22.02.0:
+ + core:
+ - Signature:
+ . Add a way to detect unsigned FormFieldSignature
+ . Suport background image when using left and right text
+ . Fix path where to search for Firefox NSS in Windows
+ . Fix NSS code to work correctly in Windows/Android
+ - Count only signature fields in PDFDoc::getNumSignatureFields
+ - Minor code improvements
+ + qt:
+ - Allow signing unsigned signature fields
+ - Allow passing a background image for the signature when
+ signing
+ - Allow passing the document password when signing
+ - Fix leftFontSize being ignored when signing
+ + glib:
+ - Try with utf8 password if latin1 fails
+ - New method for getting all signature fields of a document
+ - Fix compile with MSVC
+ + utils: pdfsig: Fix compile with MSVC
+ + build system: Fix NSS cmake check for MSVC
+- Bump poppler sover following upstream changes.
+
poppler:qt5
+- Configure $CXX to the correct compiler version on codestreams
+ that have gcc12, such as SLE-15-SP5. [bsc#1206019]
+
+- The development compiler in SLE 15 has been updated to gcc12 via
+ maintenance update. Therefore adjusting the compiler version for
+ SLE 15 in the spec file, to not build with gcc11 anymore. This
+ resolves bsc#1206019.
+
+- update to 22.12.0:
+ core:
+ * Form::addFontToDefaultResources: Be stubborn in finding a font we can use. Issue #1272
+
+- update to 22.11.0:
+ core:
+ * CairoOutputDev: Update font after restore
+ * Protect against broken files
+ * Small code refactoring
+
+- update to 22.10.0:
+ * SplashOutputDev::tilingPatternFill: Properly restore CTM on failure.
+ * Protect against malformed files
+ * Refactor code to not use strndup
+ * Other small code refactoring
+ utils:
+ * pdftoppm: Avoid round-off errors when determining raster dimensions
+ * pdftocairo: Avoid round-off errors when determining raster dimensions
+ * pdftotext: Simplify memory handling
+ qt:
+ * Take into account flagNoView when getting/setting the visible status.
+ KDE bug #456313
+
+- update to 22.09.0 (CVE-2022-38784):
+ * Splash: Do not truncate line dash patterns with more than 20 entries. Issue #1281
+ * Various signature related improvements
+ * Fix FormField::getFullyQualifiedName in some scenarios
+ * Splash: Small optimization on dash pattern handling
+ * JBIG2Stream::readHalftoneRegionSeg: Fix potential memory leak
+ * Fix crashes on malformed files. Including CVE-2022-38784
+ * Fix string formatting in error reporting
+ * Fix two potential memory leaks in poppler_document_create_dests_tree
+ * pdfsig: List signature field names when listing signature information
+ * pdfsig: Add support for specifying signature by field name
+ * pdfunite: Fix crashes on malformed files
+ * pdfunite: Fix potential memory leak of docs
+- Bump soname following upstreams changes.
+
+- update to 22.08.0:
+ * Fix rendering text on some forms
+ * CairoOutputDev: Support Type3 charprocs having Resources
+ * Fix crashes on malformed files
+
+- update to 22.07.0:
+ * Fix crash when filling in forms in some files. Issue #1258
+ * Fix first lines of Annotations sometimes being cut off. Issue #1246
+ * Signatures: Don't crash if the signature doesn't have a common name
+ * CairoFontEngine: increment font_face reference when retrieving from the cache
+ * Add ToUnicode support for lessorequalslant and greaterorequalslant
+ glib:
+ * Add support for stamp annotation
+- add gpg keyring validation for the release tarball
+- drop da226d346e691f7545d995d6761d43e08855a3b7.patch (upstream)
+
+- Add da226d346e691f7545d995d6761d43e08855a3b7.patch --
+ CairoFontEnginer: increment font_face reference when retrieving
+ from the cache; this fixes crashes with certain pdfs
+ [glgo#GNOME/evince#1808, glfo#poppler/poppler#1212].
+
+- update to 22.06.0:
+ core:
+ * Forms: Fix crash in forms with their own DR
+ * Refactor CairoFontEngine caching
+ * CairoOutputDev: preserve text color when drawing type 3 glyphs
+ * Windows: font code simplification
+ * Minor code improvements
+ * pdfattach: Assume filename is utf8 encoded
+ * pdftohtml: Fix type 3 font size calculation
+- drop poppler-cairo_font_face_t-incorrect-cacheing.patch (upstream)
+
+- Add poppler-cairo_font_face_t-incorrect-cacheing.patch -- Fix
+ missing symbols after reloading some pdf files; patch taken from
+ upstream merge request [glfo#poppler/poppler#1247].
+
+- update to 22.05.0:
+ * Annotations: Make sure we embed fonts for the FreeText annots
+ * Forms: Make sure we embedd fonts as needed
+ * Signatures: Make sure we embed the needed fonts
+ * CairoOutputDev: color type 3 fonts
+ * fix two bugs in multiline find_text()
+ * code improvements
+ * pdftotext: added TSV mode
+ * HtmlOutputDev: don't use png.h
+ * Use time_t for time
+ * Add page_transition::durationReal
+ * Pass leftFontSize down to `FormWidgetSignature::signDocumentWithAppearence`
+
+- update to 22.04.0:
+ * Fix underline sometimes being drawn only partially
+ * Fix Adobe Reader not reading some of the contents we write correctly
+ * Fix code that workarounds some broken-ish files
+ * FoFiTrueType: Parse CFF2 fonts too
+ * FoFiTrueType: Support cmap types 2 and 13
+ * Fix a few small memory leaks
+ * code improvements
+ qt:
+ * Handle SaveAs named action
+ * Annotations: don't change the text color when changing the font
+ utils:
+ * pdftotext: print creation and modification date when using htmlmeta param
+ glib:
+ * Fix returning internal data of temporary strings
+ cpp:
+ * Fix code incompatibility with MSVC
+ build system:
+ * poppler internal library is no longer forced to static on MSVC
+ * Error out if iconv is not available and the cpp frontend is enabled
+ * Require FreeType 2.8
+
+- Update to version 22.03.0:
+ + core:
+ - Signature:
+ . Fix finding Signatures that are in Pages not not in the
+ global the Forms object
+ . Improve getting the path to the firefox certificate
+ database
+ - Splash: Fix rendering of some joints.
+ - Fix get_poppler_localdir for relocatable Windows builds
+ - Minor code improvements
+ + qt: Minor code improvements
+ + utils: pdfimages: Fix the wrong Stream being passed for
+ drawMaskedImage
+ + build system: Small code improvements
+- Changes from version 22.02.0:
+ + core:
+ - Signature:
+ . Add a way to detect unsigned FormFieldSignature
+ . Suport background image when using left and right text
+ . Fix path where to search for Firefox NSS in Windows
+ . Fix NSS code to work correctly in Windows/Android
+ - Count only signature fields in PDFDoc::getNumSignatureFields
+ - Minor code improvements
+ + qt:
+ - Allow signing unsigned signature fields
+ - Allow passing a background image for the signature when
+ signing
+ - Allow passing the document password when signing
+ - Fix leftFontSize being ignored when signing
+ + glib:
+ - Try with utf8 password if latin1 fails
+ - New method for getting all signature fields of a document
+ - Fix compile with MSVC
+ + utils: pdfsig: Fix compile with MSVC
+ + build system: Fix NSS cmake check for MSVC
+- Bump poppler sover following upstream changes.
+
python-libvirt-python
+- Update to 8.10.0
+ - Add all new APIs and constants in libvirt 8.10.0
+ - jsc#PED-1472
+
re2
+- update to 2022-12-01:
+ * Update to Unicode 15.0.0 data
+ * cmake install now installs the pkg-config file
+
rsyslog
+- fix parsing of legacy config syntax (bsc#1205275)
+ * add:
+ 0001-testbench-add-test-for-legacy-permittedPeer-statemen.patch
+ 0002-imtcp-bugfix-legacy-config-directives-did-no-longer-.patch
+
+- remove $klogConsoleLogLevel setting from rsyslog.conf (bsc#1191833)
+ * this legacy setting from pre-systemd times is obsolete and can
+ block important systemd messages
+
speex
-- Fix zero division error in read_samples (CVE-2020-23903 bsc#1192580)
- speex-CVE-2020-23903.patch
-
-- Update to stable 1.2 release
-
-- make speex-devel require speexdsp-devel to be backward compatible
-
-- Use the tilde versioning scheme; we are no longer bound to use
- the old hacks.
-
-- Move libname up and set it just once, easier for later on.
-
-- Split package to two separate packages
- * speexdsp contains libraries
- * speex contains tools
-- Update to 1.2rc2
- * This release splits the speex codec library and the speex DSP
- library into separate source trees. Both projects received
- build-system improvements, bugfixes, and cleanup. The speex
- codec's VBR tuning was improved, while the speexdsp resampler
- got some NEON optimizations.
-- Remove obsolete patch
- * speex-1.0.5-warning-fix.diff
-
-- Add Source URL, see https://en.opensuse.org/SourceUrls
-
-- add libtool as buildrequire to avoid implicit dependency
-
-- Do not include build date in binaries...
-
-- obsolete old -XXbit packages
-
sudo
+- Update to 1.9.12p1:
+ * Changes in 1.9.12p1:
+ - Sudo’s configure script now does a better job of detecting when
+ the -fstack-clash-protection compiler option does not work.
+ GitHub issue #191.
+ - Fixed CVE-2022-43995, a potential out-of-bounds write for passwords
+ smaller than 8 characters when passwd authentication is enabled.
+ This does not affect configurations that use other authentication
+ methods such as PAM, AIX authentication or BSD authentication.
+ - Fixed a build error with some configurations compiling host_port.c.
+ * Dropped sudo-CVE-2022-43995.patch
+
+- Added sudo-CVE-2022-43995.patch
+ * CVE-2022-43995
+ * bsc#1204986
+ * Fixed a potential heap-based buffer over-read when entering a password
+ of seven characters or fewer and using the crypt() password backend.
+
+- Update to 1.9.12:
+ * Dropped sudo-1.9.10-update_sudouser_to_utf8.patch
+ * Changes in Sudo 1.9.12:
+ * Fixed a bug when logging the command’s exit status in intercept mode.
+ The wrong command could be logged with the exit status.
+ * For ptrace-based intercept mode, sudo will now attempt to verify that
+ the command path name, arguments and environment have not changed from
+ the time when they were authorized by the security policy. The new
+ intercept_verify sudoers setting can be used to control this behavior.
+ * Fixed running commands with a relative path (e.g. ./foo) in intercept
+ mode. Previously, this would fail if sudo’s current working directory
+ was different from that of the command.
+ * Sudo now supports passing the execve(2) system call the NULL pointer
+ for the argv and/or envp arguments when in intercept mode. Linux treats
+ a NULL pointer like an empty array.
+ * The sudoers LDAP schema now allows sudoUser, sudoRunasUser and
+ sudoRunasGroup to include UTF-8 characters, not just 7-bit ASCII.
+ * Fixed a problem with sudo -i on SELinux when the target user’s home
+ directory is not searchable by sudo. GitHub issue #160.
+ * Neovim has been added to the list of visudo editors that support passing
+ the line number on the command line.
+ * Fixed a bug in sudo’s SHA384 and SHA512 message digest padding.
+ * Added a new -N (no-update) command line option to sudo which can be used
+ to prevent sudo from updating the user’s cached credentials. It is now
+ possible to determine whether or not a user’s cached credentials are
+ currently valid by running:
+ $ sudo -Nnv
+ and checking the exit value. One use case for this is to indicate in a
+ shell prompt that sudo is “active†for the user.
+ * PAM approval modules are no longer invoked when running sub-commands in
+ intercept mode unless the intercept_authenticate option is set. There is
+ a substantial performance penalty for calling into PAM for each command
+ run. PAM approval modules are still called for the initial command.
+ * Intercept mode on Linux now uses process_vm_readv(2) and process_vm_writev(2)
+ if available.
+ * The XDG_CURRENT_DESKTOP environment variable is now preserved by default.
+ This makes it possible for graphical applications to choose the correct
+ theme when run via sudo.
+ * On 64-bit systems, if sudo fails to load a sudoers group plugin, it will
+ use system-specific heuristics to try to locate a 64-bit version of the plugin.
+ * The cvtsudoers manual now documents the JSON and CSV output formats.
+ GitHub issue #172.
+ * Fixed a bug where sub-commands were not being logged to a remote log server
+ when log_subcmds was enabled. GitHub issue #174.
+ * The new log_stdin, log_stdout, log_stderr, log_ttyin, and log_ttyout
+ sudoers settings can be used to support more fine-grained I/O logging.
+ The sudo front-end no longer allocates a pseudo-terminal when running a
+ command if the I/O logging plugin requests logging of stdin, stdout, or
+ stderr but not terminal input/output.
+ * Quieted a libgcrypt run-time initialization warning. This fixes Debian
+ bug #1019428 and Ubuntu bug #1397663.
+ * Fixed a bug in visudo that caused literal backslashes to be removed from
+ the EDITOR environment variable. GitHub issue #179.
+ * The sudo Python plugin now implements the find_spec method instead of the
+ the deprecated find_module. This fixes a test failure when a newer version
+ of setuptools that doesn’t include find_module is found on the system.
+ * Fixed a bug introduced in sudo 1.9.9 where sudo_logsrvd created the process
+ ID file, usually /var/run/sudo/sudo_logsrvd.pid, as a directory instead of a
+ plain file. The same bug could result in I/O log directories that end in six
+ or more X’s being created literally in addition to the name being used as a
+ template for the mkdtemp(3) function.
+ * Fixed a long-standing bug where a sudoers rule with a command line argument
+ of “â€, which indicates the command may be run with no arguments, would also
+ match a literal "" on the command line. GitHub issue #182.
+ * Added the -I option to visudo which only edits the main sudoers file. Include
+ files are not edited unless a syntax error is found.
+ * Fixed sudo -l -U otheruser output when the runas list is empty. Previously,
+ sudo would list the invoking user instead of the list user. GitHub issue #183.
+ * Fixed the display of command tags and options in sudo -l output when the RunAs
+ user or group changes. A new line is started for RunAs changes which means we
+ need to display the command tags and options again. GitHub issue #184.
+ * The sesh helper program now uses getopt_long(3) to parse the command line options.
+ * The embedded copy of zlib has been updated to version 1.2.13.
+ * Fixed a bug that prevented event log data from being sent to the log server when
+ I/O logging was not enabled. This only affected systems without PAM or
+ configurations where the pam_session and pam_setcred options were disabled in
+ the sudoers file.
+ * Fixed a bug where sudo -l output included a carriage return after the newline.
+ This is only needed when displaying to a terminal in raw mode. Bug #1042.
+
tiff
+ * CVE-2022-3570 [bsc#1205422]
+ * CVE-2022-3598 [bsc#1204642]
+ + tiff-CVE-2022-3598,3570.patch
+
+- security update:
util-linux
+- libuuid continuous clock handling for time based UUIDs:
+ Prevent use of the new libuuid ABI by uuidd %post before update
+ of libuuid1 (bsc#1205646).
+- util-linux-uuidd-prevent-root-owning.patch: Use chown --quiet
+ to prevent error message if /var/lib/libuuid/clock.txt does not
+ exist.
+
util-linux-systemd
+- libuuid continuous clock handling for time based UUIDs:
+ Prevent use of the new libuuid ABI by uuidd %post before update
+ of libuuid1 (bsc#1205646).
+- util-linux-uuidd-prevent-root-owning.patch: Use chown --quiet
+ to prevent error message if /var/lib/libuuid/clock.txt does not
+ exist.
+
wayland
+- Update to release 1.21
+ * This new release adds a new wl_pointer high-resolution scroll
+ event, adds a few new convenience functions, and contains a
+ collection of bug fixes.
+- Drop wayland-shm-Close-file-descriptors-not-needed.patch
+
+- modernize spec file
+ * use licensedir
+ * use bcond
+ * use https:// urls
+ * spec-cleaner
+
+- Add wayland-shm-Close-file-descriptors-not-needed.patch: For
+ platforms that support mremap(), we don't need to hold file
+ descriptors all the time, because programs like Xwayland will
+ hold a lot of file descriptors and may crash, this patch close
+ file descriptors earlier for those platforms (bsc#1194190).
+
+- Update to release 1.20
+ * A few protocol additions: wl_surface.offset allows clients to
+ update a surface's buffer offset independently from the
+ buffer, wl_output.name and description allow clients to
+ identify outputs without depending on xdg-output-unstable-v1.
+ * In protocol definitions, events have a new "type" attribute
+ and can now be marked as destructors.
+ * A number of bug fixes, including a race condition when
+ destroying proxies in multi-threaded clients.
+
+- Switch to meson buildsystem: Add meson BuildRequires and macros.
+- Add generic c_compiler and c++_compiler BuildRequires, needed now
+ with the meson buildsystem.
+- Use ldconfig_scriptlets macro for post(un) handling for
+ Tumbleweed and newer.
+
xen
+- Update to Xen 4.17.0 FCS release (jsc#PED-1858)
+ xen-4.17.0-testing-src.tar.bz2
+ * On x86 "vga=current" can now be used together with GrUB2's gfxpayload setting. Note that
+ this requires use of "multiboot2" (and "module2") as the GrUB commands loading Xen.
+ * The "gnttab" option now has a new command line sub-option for disabling the
+ GNTTABOP_transfer functionality.
+ * The x86 MCE command line option info is now updated.
+ * Out-of-tree builds for the hypervisor now supported.
+ * __ro_after_init support, for marking data as immutable after boot.
+ * The project has officially adopted 4 directives and 24 rules of MISRA-C,
+ added MISRA-C checker build integration, and defined how to document
+ deviations.
+ * IOMMU superpage support on x86, affecting PV guests as well as HVM/PVH ones
+ when they don't share page tables with the CPU (HAP / EPT / NPT).
+ * Support for VIRT_SSBD and MSR_SPEC_CTRL for HVM guests on AMD.
+ * Improved TSC, CPU, and APIC clock frequency calibration on x86.
+ * Support for Xen using x86 Control Flow Enforcement technology for its own
+ protection. Both Shadow Stacks (ROP protection) and Indirect Branch
+ Tracking (COP/JOP protection).
+ * Add mwait-idle support for SPR and ADL on x86.
+ * Extend security support for hosts to 12 TiB of memory on x86.
+ * Add command line option to set cpuid parameters for dom0 at boot time on x86.
+ * Improved static configuration options on Arm.
+ * cpupools can be specified at boot using device tree on Arm.
+ * It is possible to use PV drivers with dom0less guests, allowing statically
+ booted dom0less guests with PV devices.
+ * On Arm, p2m structures are now allocated out of a pool of memory set aside at
+ domain creation.
+ * Improved mitigations against Spectre-BHB on Arm.
+ * Support VirtIO-MMIO devices device-tree binding creation in toolstack on Arm.
+ * Allow setting the number of CPUs to activate at runtime from command line
+ option on Arm.
+ * Grant-table support on Arm was improved and hardened by implementing
+ "simplified M2P-like approach for the xenheap pages"
+ * Add Renesas R-Car Gen4 IPMMU-VMSA support on Arm.
+ * Add i.MX lpuart and i.MX8QM support on Arm.
+ * Improved toolstack build system.
+ * Add Xue - console over USB 3 Debug Capability.
+ * gitlab-ci automation: Fixes and improvements together with new tests.
+ * dropped support for the (x86-only) "vesa-mtrr" and "vesa-remap" command line options
+- Drop patches contained in new tarball or invalid
+ 62fde97e-tools-libxl-Replace-deprecated-soundhw-on-QEMU-command-line.patch
+ 6306185f-x86-XSTATE-CPUID-subleaf-1-EBX.patch
+ 631b5ba6-gnttab-acquire-resource-vaddrs.patch
+ 63455f82-Arm-P2M-prevent-adding-mapping-when-dying.patch
+ 63455fa8-Arm-P2M-preempt-when-freeing-intermediate.patch
+ 63455fc3-x86-p2m_teardown-allow-skip-root-pt-removal.patch
+ 63455fe4-x86-HAP-monitor-table-error-handling.patch
+ 63456000-x86-tolerate-sh_set_toplevel_shadow-failure.patch
+ 6345601d-x86-tolerate-shadow_prealloc-failure.patch
+ 6345603a-x86-P2M-refuse-new-alloc-for-dying.patch
+ 63456057-x86-P2M-truly-free-paging-pool-for-dying.patch
+ 63456075-x86-P2M-free-paging-pool-preemptively.patch
+ 63456090-x86-p2m_teardown-preemption.patch
+ 63456175-libxl-per-arch-extra-default-paging-memory.patch
+ 63456177-Arm-construct-P2M-pool-for-guests.patch
+ 6345617a-Arm-XEN_DOMCTL_shadow_op.patch
+ 6345617c-Arm-take-P2M-pages-P2M-pool.patch
+ 634561aa-gnttab-locking-on-transitive-copy-error-path.patch
+ 634561f1-x86emul-respect-NSCB.patch
+ 6346e404-VMX-correct-error-handling-in-vmx_create_vmcs.patch
+ 6351095c-Arm-rework-p2m_init.patch
+ 6351096a-Arm-P2M-populate-pages-for-GICv2-mapping.patch
+ 635274c0-EFI-dont-convert-runtime-mem-to-RAM.patch
+ 635665fb-sched-fix-restore_vcpu_affinity.patch
+ 63569723-x86-shadow-replace-bogus-assertions.patch
+ 61dd5f64-limit-support-statement-for-Linux-and-Windows-frontends.patch
+ xsa326-01.patch
+ xsa326-02.patch
+ xsa326-03.patch
+ xsa326-04.patch
+ xsa326-05.patch
+ xsa326-06.patch
+ xsa326-07.patch
+ xsa326-08.patch
+ xsa326-09.patch
+ xsa326-10.patch
+ xsa326-11.patch
+ xsa326-12.patch
+ xsa326-13.patch
+ xsa326-14.patch
+ xsa326-15.patch
+ xsa326-16.patch
+ xsa412.patch
+ xsa414.patch
+ xsa415.patch
+ xsa416.patch
+ xsa417.patch
+ xsa418-01.patch
+ xsa418-02.patch
+ xsa418-03.patch
+ xsa418-04.patch
+ xsa418-05.patch
+ xsa418-06.patch
+ xsa418-07.patch
+ xsa419-01.patch
+ xsa419-02.patch
+ xsa419-03.patch
+ xsa421-01.patch
+ xsa421-02.patch
+
xorg-x11-server
+- U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch
+ * XkbGetKbdByName use-after-free (ZDI-CAN-19530, CVE-2022-4283,
+ bsc#1206017)
+
+- U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch
+ * Server XTestSwapFakeInput stack overflow (ZDI-CAN 19265,
+ CVE-2022-46340, bsc#1205874)
+- U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch
+ * Xi: return an error from XI property changes if verification
+ failed (no ZDI-CAN id, no CVE id, bsc#1205875)
+- U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch
+ * Server XIChangeProperty out-of-bounds access (ZDI-CAN 19405,
+ CVE-2022-46344, bsc#1205876)
+- U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch
+ * Server XIPassiveUngrabDevice out-of-bounds access (ZDI-CAN 19381,
+ CVE-2022-46341, bsc#1205877)
+- U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch
+ * Server ScreenSaverSetAttributes use-after-free (ZDI-CAN 19404,
+ CVE-2022-46343, bsc#1205878)
+- U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch
+ * Server XvdiSelectVideoNotify use-after-free (ZDI-CAN 19400,
+ CVE-2022-46342, bsc#1205879)
+
xwayland
+- U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch
+ * XkbGetKbdByName use-after-free (ZDI-CAN-19530, CVE-2022-4283,
+ bsc#1206017)
+
+- U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch
+ * Server XTestSwapFakeInput stack overflow (ZDI-CAN 19265,
+ CVE-2022-46340, bsc#1205874)
+- U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch
+ * Xi: return an error from XI property changes if verification
+ failed (no ZDI-CAN id, no CVE id, bsc#1205875)
+- U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch
+ * Server XIChangeProperty out-of-bounds access (ZDI-CAN 19405,
+ CVE-2022-46344, bsc#1205876)
+- U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch
+ * Server XIPassiveUngrabDevice out-of-bounds access (ZDI-CAN 19381,
+ CVE-2022-46341, bsc#1205877)
+- U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch
+ * Server ScreenSaverSetAttributes use-after-free (ZDI-CAN 19404,
+ CVE-2022-46343, bsc#1205878)
+- U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch
+ * Server XvdiSelectVideoNotify use-after-free (ZDI-CAN 19400,
+ CVE-2022-46342, bsc#1205879)
+
yast2
+- ArchFilter: Add new class to allow unified definition of hardware
+ architecture filter. The main use case is to read arch
+ specific configuration in various configuration files like
+ control.xml or d-installer.yml (gh#yast/d-installer#279)
+- 4.5.20
+
yast2-installation
+- Use default depth for Xvnc, no longer enforce depth 16
+ (bsc#1205585)
+- 4.5.11
+
yast2-kdump
+- Support fadump values in output of kdumptools calibrate
+ (jsc#PED-1927)
+- drop support for older kdumptools
+- remove limits when kdumptools calibrate failed to allow user
+ enter anything
+- 4.5.7
+
+- Changed default of KDUMP_AUTO_RESIZE to "no" as documented in
+ https://github.com/openSUSE/kdump/blob/SLE-15-SP5/sysconfig.kdump.in#L57-L65
+ (bsc#1205816)
+- 4.5.6
+
yast2-packager
+- Merged PR https://github.com/yast/yast-packager/pull/623
+ by Christopher Yeleighton <giecrilj@stegny.2a.pl>:
+ Do not call [Install done] on aborted packages (boo#1203302)
+- 4.5.9
+
yast2-security
+- Fixed wrong steps count causing a crash during saving (bsc#1205918)
+- 4.5.4
+
yast2-storage-ng
+- Allow reusing LVM volume groups
+- 4.5.15
+
+- Proposal: new setting to prevent reusing LVM volume groups
+ (related to gh#yast/d-installer#264).
+
yast2-users
+- Use a fallback if CHARACTER_CLASS cannot be read from /etc/login.defs
+ or /usr/etc/login.defs (bsc#1205783)
+- 4.5.3
+