BSD Commit Log Search

   drm/i915/psr: Do not use pipe_src as borders for SU area

   From Jouni Hogander
   de9aa7e89b98157d2650f25691e40711b8404151 in linux-6.18.y/6.18.23
   75519f5df2a9b23f7bf305e12dc9a6e3e65c24b7 in mainline linux

   drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat

   From Sebastian Brzezinka
   2af8b200cae3fdd0e917ecc2753b28bb40c876c1 in linux-6.18.y/6.18.23
   4c71fd099513bfa8acab529b626e1f0097b76061 in mainline linux

   7.9-current
   ok deraadt@

   correctly set extended type for client-side channels. Fixes
   interactive vs bulk IPQoS for client->server traffic. ok job@

   Patch btop to report active CPU usage correctly

   from upstream https://github.com/aristocratos/btop/pull/1587

   This also allows building on spark64 with gcc 15.

   shells/elvish: Update to 0.21.0

   The current version in ports is broken/non-functional.

   approved by naddy@

   login_chpass: No longer need to install this setuid root

   When the YP code was removed login_chpass became wrapper that just
   execs login_lchpass.

   OK deraadt@

   Update to png 1.6.58. ok deraadt@, naddy@.
   Fixes a regression introduced in 1.6.56

   Update to png 1.6.58. ok deraadt@, naddy@.
   Fixes a regression introduced in 1.6.56
   xenocara will be updated after unlock as it's not affected.

   Terminate SMBIOS vendor/product matching at first match.

   ok jsg@, tobhe@, deraadt@

   Extend the SEV bounce buffer implementation to make it usable for bouncing
   memory that isn't DMA reachable.

   ok deraadt@

   Get rid of the COM_CONSOLE ifdef maze.  This was introduced for sparc
   which is no longer with us.

   ok jsg@

   floating point state leakage can be observed on AMD Zen/Zen+ (Zen 1)

   This was discovered by the Rootsec research group at the CISPA Helmholtz
   Center for Information Security.  Rootsec named the problem
   Floating Point Divider State Sampling (FP-DSS).

   Do AMD's suggested mitigation, setting a chicken bit in an MSR.

   https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7053.html
   https://roots.ec/blog/fpdss/

   ok deraadt@ brynet@

   Stop cleaning gem artifacts

   Bulk builds have seen occasional failures building
   textproc/ruby-commonmarker, which is the only reverse dependency. I'm
   not positive the cleaning of gem artifacts is the cause of the failure,
   though I suspect it is.

   Discussed with naddy@

   Update godot/pack3 to latest release 4.6.2, a stable maintenance
   release. No known incompatibilities. Tested with Road to Vostok.

   MFC: luanti 5.15.2 (security update)
   From maintainer izzy Meyer

   Update to exfetch 1.6. From author & maintainer izzy Meyer - thanks!

   archivers/libarchive: update to 3.8.7

   Fixes for a motley collection of NULL pointer dereference,
   out-of-bounds accesses, heap overflow, etc.

   Prevent buffer overflow by checking the correct counter.

   An attacker on the same layer 2 network can send rogue router
   advertisements, potentially crashing slaacd.

   from Maurice Hieronymus (mhi AT mailbox.org), thanks!
   from florian@; OK deraadt

   this is errata/7.7/039_slaacd.patch.sig

   Prevent buffer overflow by checking the correct counter.

   An attacker on the same layer 2 network can send rogue router
   advertisements, potentially crashing slaacd.

   from Maurice Hieronymus (mhi AT mailbox.org), thanks!
   from florian@; OK deraadt

   this is errata/7.8/033_slaacd.patch.sig

   Attach puc in RAMDISK_CD on amd64 and i386

   Fixes breakage on my headless amd64. Untested on i386

   OK kettenis@

   The parking mutex uses data structures on the stack and expects CPUs to be
   able to modify that data for other CPUs.  Unfortunately on some sparc64
   systems (sun4u systems that don't use Fujitsu SPARC64 CPUs) use a trick
   where the interrupt stack is mapped using a fixed alias on each CPU.  This
   means a CPU can only access its own interrupt stack.  Fix this by using
   the "real" address of the interrupt stack.  We still need the fixed alias
   though to find our own "struct cpu_info" on these systems.  So on
   MULTIPROCESSOR kernel we need to use another locked TLB entry.

   tested by bluhm@, claudio@, tb@, jca@, dlg@
   ok dlg@, jca@

   Update to ruff 0.15.11, from maintainer

   https://github.com/astral-sh/ruff/releases/tag/0.15.11
   https://github.com/astral-sh/ruff/releases/tag/0.15.10

   Tell the SpacemiT K1 controller to change the link speed such that we get
   the PCIe gen2 speeds that the controller supports.

   ok mlarkin@, jsing@

   Copy SpacemiT K1 device trees onto the miniroot.  With this, installs
   should just work on the supported boards.  Make sure you install with a
   network connection such that fw_update can put the device trees into
   your new install as well.  Document that "make release" now needs the
   riscv64-spacemit-dtb firmware installed.

   ok deraadt@, jca@

   Update to uv 0.11.7

   https://github.com/astral-sh/uv/releases/tag/0.11.7

   pass --jitless to node when minifying js code to avoid random crashes

   idea from volker@

   Don't let malicious or confused scsi tape devices cause reading or writing
   outside a mode sense/select buffer.

   Original diff from Stanislav Fort of aisle.com with additional paranoia for
   negative values.

   Tweaks and ok from kettenis@

   Update to samba-4.24.1

   Changes: https://www.samba.org/samba/history/samba-4.24.1.html

   Test and OK Ian McWilliam (co-maintainer)

   link web2-module-monitoring to the build, spotted by florian@, thanks!