July 2020 - Linux-stable-mirror

[PATCH v3] usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails

by Martin Blumenstingl

Call dwc2_debugfs_exit() and dwc2_hcd_remove() (if the HCD was enabled earlier) when usb_add_gadget_udc() has failed. This ensures that the debugfs entries created by dwc2_debugfs_init() as well as the HCD are cleaned up in the error path. Fixes: 207324a321a866 ("usb: dwc2: Postponed gadget registration to the udc class driver") Signed-off-by: Martin Blumenstingl <martin.blumenstingl(a)googlemail.com> --- Changes since v2 at [1]: - add #if around the new label and it's code to prevent the following warning found by the Kernel test robot: unused label 'error_debugfs' [-Wunused-label] Changes since v1 at [0] - also cleanup the HCD as suggested by Minas (thank you!) - updated the subject accordingly [0] https://patchwork.kernel.org/patch/11631381/ [1] https://patchwork.kernel.org/patch/11642957/ drivers/usb/dwc2/platform.c | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/drivers/usb/dwc2/platform.c b/drivers/usb/dwc2/platform.c index cb8ddbd53718..b74099764b2d 100644 --- a/drivers/usb/dwc2/platform.c +++ b/drivers/usb/dwc2/platform.c @@ -583,12 +583,19 @@ static int dwc2_driver_probe(struct platform_device *dev) retval = usb_add_gadget_udc(hsotg->dev, &hsotg->gadget); if (retval) { dwc2_hsotg_remove(hsotg); - goto error_init; + goto error_debugfs; } } #endif /* CONFIG_USB_DWC2_PERIPHERAL || CONFIG_USB_DWC2_DUAL_ROLE */ return 0; +#if IS_ENABLED(CONFIG_USB_DWC2_PERIPHERAL) || \ + IS_ENABLED(CONFIG_USB_DWC2_DUAL_ROLE) +error_debugfs: + dwc2_debugfs_exit(hsotg); + if (hsotg->hcd_enabled) + dwc2_hcd_remove(hsotg); +#endif error_init: if (hsotg->params.activate_stm_id_vb_detection) regulator_disable(hsotg->usb33d); -- 2.27.0

4 years, 5 months

2
1
0 0

UDP data corruption in v4.4

by Dexuan Cui

Hi, The v4.4 stable kernel (currently it's v4.4.231) lacks this bugfix: 327868212381 ("make skb_copy_datagram_msg() et.al. preserve ->msg_iter on error") , as a result, the v4.4 kernel can deliver corrupt data to the application when a corrupt UDP packet is closely followed by a valid UDP packet: when the same invocation of the recvmsg() syscall delivers the corrupt packet's UDP payload to the application's receive buffer, it provides the UDP payload length and the "from IP/Port" of the valid packet to the application -- this mismatch makes the issue worse. Details: For a UDP packet longer than 76 bytes (see the v5.8-rc6 kernel's include/linux/skbuff.h:3951), Linux delays the UDP checksum verification until the application invokes the syscall recvmsg(). In the recvmsg() syscall handler, while Linux is copying the UDP payload to the application's memory, it calculates the UDP checksum. If the calculated checksum doesn't match the received checksum, Linux drops the corrupt UDP packet, and then starts to process the next packet (if any), and if the next packet is valid (i.e. the checksum is correct), Linux will copy the valid UDP packet's payload to the application's receiver buffer. The bug is: before Linux starts to copy the valid UDP packet, the data structure used to track how many more bytes should be copied to the application memory is not reset to what it was when the application just entered the kernel by the syscall! Consequently, only a small portion or none of the valid packet's payload is copied to the application's receive buffer, and later when the application exits from the kernel, actually most of the application's receive buffer contains the payload of the corrupt packet while recvmsg() returns the length of the UDP payload of the valid packet. For the mainline kernel, the bug was fixed by Al Viro in the commit 327868212381, but unluckily the bugfix is only backported to the upstream v4.9+ kernels. I hope the bugfix can be backported to the v4.4 stable kernel, since it's a "longterm" kernel and is still used by some Linux distros. It turns out backporting 327868212381 to v4.4 means that some Supporting patches must be backported first, so the overall changes are pretty big... I made the below one-line workaround patch to force the recvmsg() syscall handler to return to the userspace when Linux detects a corrupt UDP packet, so the application will invoke the syscall again to receive the following valid UDP packet (note: the patch may not work well with blocking sockets, for which typically the application doesn't expect an error of -EAGAIN. I guess it would be safer to return -EINTR instead?): --- a/net/ipv4/udp.c +++ b/net/ipv4/udp.c @@ -1367,6 +1367,7 @@ csum_copy_err: /* starting over for a new packet, but check if we need to yield */ cond_resched(); msg->msg_flags &= ~MSG_TRUNC; + return -EAGAIN; goto try_again; } Eric Dumazet made an alternative that performs the csum validation earlier: --- a/net/ipv4/udp.c +++ b/net/ipv4/udp.c @@ -1589,8 +1589,7 @@ int udp_queue_rcv_skb(struct sock *sk, struct sk_buff *skb) } } - if (rcu_access_pointer(sk->sk_filter) && - udp_lib_checksum_complete(skb)) + if (udp_lib_checksum_complete(skb)) goto csum_error; if (sk_rcvqueues_full(sk, sk->sk_rcvbuf)) { I personally like Eric's fix and IMHO we'd better have it in v4.4 rather than trying to backport 327868212381. Looking forward to your comments! Thanks, Dexuan Cui

4 years, 5 months

4
5
0 0

[PATCH] drm/dbi: Fix SPI Type 1 (9-bit) transfer

by Paul Cercueil

The function mipi_dbi_spi1_transfer() will transfer its payload as 9-bit data, the 9th (MSB) bit being the data/command bit. In order to do that, it unpacks the 8-bit values into 16-bit values, then sets the 9th bit if the byte corresponds to data, clears it otherwise. The 7 MSB are padding. The array of now 16-bit values is then passed to the SPI core for transfer. This function was broken since its introduction, as the length of the SPI transfer was set to the payload size before its conversion, but the payload doubled in size due to the 8-bit -> 16-bit conversion. Fixes: 02dd95fe3169 ("drm/tinydrm: Add MIPI DBI support") Cc: <stable(a)vger.kernel.org> # 4.10 Signed-off-by: Paul Cercueil <paul(a)crapouillou.net> --- drivers/gpu/drm/drm_mipi_dbi.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/gpu/drm/drm_mipi_dbi.c b/drivers/gpu/drm/drm_mipi_dbi.c index bb27c82757f1..bf7888ad9ad4 100644 --- a/drivers/gpu/drm/drm_mipi_dbi.c +++ b/drivers/gpu/drm/drm_mipi_dbi.c @@ -923,7 +923,7 @@ static int mipi_dbi_spi1_transfer(struct mipi_dbi *dbi, int dc, } } - tr.len = chunk; + tr.len = chunk * 2; len -= chunk; ret = spi_sync(spi, &m); -- 2.27.0

4 years, 5 months

3
5
0 0

[PATCH 2/3] drm/ast: Store image size in HW cursor info

by Thomas Zimmermann

Store the image size as part of the HW cursor info, so that the cursor show function doesn't require the information from the caller. No functional changes. Signed-off-by: Thomas Zimmermann <tzimmermann(a)suse.de> Fixes: 4961eb60f145 ("drm/ast: Enable atomic modesetting") Cc: Thomas Zimmermann <tzimmermann(a)suse.de> Cc: Gerd Hoffmann <kraxel(a)redhat.com> Cc: Dave Airlie <airlied(a)redhat.com> Cc: Daniel Vetter <daniel.vetter(a)ffwll.ch> Cc: Sam Ravnborg <sam(a)ravnborg.org> Cc: Emil Velikov <emil.l.velikov(a)gmail.com> Cc: "Y.C. Chen" <yc_chen(a)aspeedtech.com> Cc: <stable(a)vger.kernel.org> # v5.6+ --- drivers/gpu/drm/ast/ast_cursor.c | 13 +++++++++++-- drivers/gpu/drm/ast/ast_drv.h | 7 +++++-- drivers/gpu/drm/ast/ast_mode.c | 8 +------- 3 files changed, 17 insertions(+), 11 deletions(-) diff --git a/drivers/gpu/drm/ast/ast_cursor.c b/drivers/gpu/drm/ast/ast_cursor.c index acf0d23514e8..8642a0ce9da6 100644 --- a/drivers/gpu/drm/ast/ast_cursor.c +++ b/drivers/gpu/drm/ast/ast_cursor.c @@ -87,6 +87,8 @@ int ast_cursor_init(struct ast_private *ast) ast->cursor.gbo[i] = gbo; ast->cursor.vaddr[i] = vaddr; + ast->cursor.size[i].width = 0; + ast->cursor.size[i].height = 0; } return drmm_add_action_or_reset(dev, ast_cursor_release, NULL); @@ -194,6 +196,9 @@ int ast_cursor_blit(struct ast_private *ast, struct drm_framebuffer *fb) /* do data transfer to cursor BO */ update_cursor_image(dst, src, fb->width, fb->height); + ast->cursor.size[ast->cursor.next_index].width = fb->width; + ast->cursor.size[ast->cursor.next_index].height = fb->height; + drm_gem_vram_vunmap(gbo, src); drm_gem_vram_unpin(gbo); @@ -249,14 +254,18 @@ static void ast_cursor_set_location(struct ast_private *ast, u16 x, u16 y, ast_set_index_reg(ast, AST_IO_CRTC_PORT, 0xc7, y1); } -void ast_cursor_show(struct ast_private *ast, int x, int y, - unsigned int offset_x, unsigned int offset_y) +void ast_cursor_show(struct ast_private *ast, int x, int y) { + unsigned int offset_x, offset_y; u8 x_offset, y_offset; u8 __iomem *dst, __iomem *sig; u8 jreg; dst = ast->cursor.vaddr[ast->cursor.next_index]; + offset_x = AST_MAX_HWC_WIDTH - + ast->cursor.size[ast->cursor.next_index].width; + offset_y = AST_MAX_HWC_HEIGHT - + ast->cursor.size[ast->cursor.next_index].height; sig = dst + AST_HWC_SIZE; writel(x, sig + AST_HWC_SIGNATURE_X); diff --git a/drivers/gpu/drm/ast/ast_drv.h b/drivers/gpu/drm/ast/ast_drv.h index e3a264ac7ee2..57414b429db3 100644 --- a/drivers/gpu/drm/ast/ast_drv.h +++ b/drivers/gpu/drm/ast/ast_drv.h @@ -116,6 +116,10 @@ struct ast_private { struct { struct drm_gem_vram_object *gbo[AST_DEFAULT_HWC_NUM]; void __iomem *vaddr[AST_DEFAULT_HWC_NUM]; + struct { + unsigned int width; + unsigned int height; + } size[AST_DEFAULT_HWC_NUM]; unsigned int next_index; } cursor; @@ -311,8 +315,7 @@ void ast_release_firmware(struct drm_device *dev); int ast_cursor_init(struct ast_private *ast); int ast_cursor_blit(struct ast_private *ast, struct drm_framebuffer *fb); void ast_cursor_page_flip(struct ast_private *ast); -void ast_cursor_show(struct ast_private *ast, int x, int y, - unsigned int offset_x, unsigned int offset_y); +void ast_cursor_show(struct ast_private *ast, int x, int y); void ast_cursor_hide(struct ast_private *ast); #endif diff --git a/drivers/gpu/drm/ast/ast_mode.c b/drivers/gpu/drm/ast/ast_mode.c index 3680a000b812..5b2b39c93033 100644 --- a/drivers/gpu/drm/ast/ast_mode.c +++ b/drivers/gpu/drm/ast/ast_mode.c @@ -671,20 +671,14 @@ ast_cursor_plane_helper_atomic_update(struct drm_plane *plane, struct drm_plane_state *old_state) { struct drm_plane_state *state = plane->state; - struct drm_framebuffer *fb = state->fb; struct ast_private *ast = plane->dev->dev_private; - unsigned int offset_x, offset_y; - - offset_x = AST_MAX_HWC_WIDTH - fb->width; - offset_y = AST_MAX_HWC_WIDTH - fb->height; if (state->fb != old_state->fb) { /* A new cursor image was installed. */ ast_cursor_page_flip(ast); } - ast_cursor_show(ast, state->crtc_x, state->crtc_y, - offset_x, offset_y); + ast_cursor_show(ast, state->crtc_x, state->crtc_y); } static void -- 2.27.0

4 years, 5 months

3
3
0 0

[PATCH 1/3] drm/ast: Do full modeset if the primary plane's format changes

by Thomas Zimmermann

The atomic modesetting code tried to distinguish format changes from full modesetting operations. In practice, this was buggy and the format registers were often updated even for simple pageflips. Instead do a full modeset if the primary plane changes formats. It's just as rare as an actual mode change, so there will be no performance penalty. The patch also replaces a reference to drm_crtc_state.allow_modeset with the correct call to drm_atomic_crtc_needs_modeset(). Signed-off-by: Thomas Zimmermann <tzimmermann(a)suse.de> Fixes: 4961eb60f145 ("drm/ast: Enable atomic modesetting") Cc: Thomas Zimmermann <tzimmermann(a)suse.de> Cc: Gerd Hoffmann <kraxel(a)redhat.com> Cc: Dave Airlie <airlied(a)redhat.com> Cc: Daniel Vetter <daniel.vetter(a)ffwll.ch> Cc: Sam Ravnborg <sam(a)ravnborg.org> Cc: Emil Velikov <emil.l.velikov(a)gmail.com> Cc: "Y.C. Chen" <yc_chen(a)aspeedtech.com> Cc: <stable(a)vger.kernel.org> # v5.6+ --- drivers/gpu/drm/ast/ast_mode.c | 23 ++++++++++++++++------- 1 file changed, 16 insertions(+), 7 deletions(-) diff --git a/drivers/gpu/drm/ast/ast_mode.c b/drivers/gpu/drm/ast/ast_mode.c index 154cd877d9d1..3680a000b812 100644 --- a/drivers/gpu/drm/ast/ast_mode.c +++ b/drivers/gpu/drm/ast/ast_mode.c @@ -527,8 +527,8 @@ static const uint32_t ast_primary_plane_formats[] = { static int ast_primary_plane_helper_atomic_check(struct drm_plane *plane, struct drm_plane_state *state) { - struct drm_crtc_state *crtc_state; - struct ast_crtc_state *ast_crtc_state; + struct drm_crtc_state *crtc_state, *old_crtc_state; + struct ast_crtc_state *ast_crtc_state, *old_ast_crtc_state; int ret; if (!state->crtc) @@ -550,6 +550,15 @@ static int ast_primary_plane_helper_atomic_check(struct drm_plane *plane, ast_crtc_state->format = state->fb->format; + old_crtc_state = drm_atomic_get_old_crtc_state(state->state, state->crtc); + if (!old_crtc_state) + return 0; + old_ast_crtc_state = to_ast_crtc_state(old_crtc_state); + if (!old_ast_crtc_state) + return 0; + if (ast_crtc_state->format != old_ast_crtc_state->format) + crtc_state->mode_changed = true; + return 0; } @@ -775,18 +784,18 @@ static void ast_crtc_helper_atomic_flush(struct drm_crtc *crtc, ast_state = to_ast_crtc_state(crtc->state); - format = ast_state->format; - if (!format) + if (!drm_atomic_crtc_needs_modeset(crtc->state)) return; + format = ast_state->format; + if (drm_WARN_ON_ONCE(dev, !format)) + return; /* BUG: We didn't set format in primary check(). */ + vbios_mode_info = &ast_state->vbios_mode_info; ast_set_color_reg(ast, format); ast_set_vbios_color_reg(ast, format, vbios_mode_info); - if (!crtc->state->mode_changed) - return; - adjusted_mode = &crtc->state->adjusted_mode; ast_set_vbios_mode_reg(ast, adjusted_mode, vbios_mode_info); -- 2.27.0

4 years, 5 months

3
3
0 0

[PATCH for-5.8 v2] usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails

by Martin Blumenstingl

Call dwc2_debugfs_exit() and dwc2_hcd_remove() (if the HCD was enabled earlier) when usb_add_gadget_udc() has failed. This ensures that the debugfs entries created by dwc2_debugfs_init() as well as the HCD are cleaned up in the error path. Fixes: 207324a321a866 ("usb: dwc2: Postponed gadget registration to the udc class driver") Signed-off-by: Martin Blumenstingl <martin.blumenstingl(a)googlemail.com> --- Changes since v1 at [0] - also cleanup the HCD as suggested by Minas (thank you!) - updated the subject accordingly [0] https://patchwork.kernel.org/patch/11631381/ drivers/usb/dwc2/platform.c | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/drivers/usb/dwc2/platform.c b/drivers/usb/dwc2/platform.c index c347d93eae64..9febae441069 100644 --- a/drivers/usb/dwc2/platform.c +++ b/drivers/usb/dwc2/platform.c @@ -582,12 +582,16 @@ static int dwc2_driver_probe(struct platform_device *dev) retval = usb_add_gadget_udc(hsotg->dev, &hsotg->gadget); if (retval) { dwc2_hsotg_remove(hsotg); - goto error_init; + goto error_debugfs; } } #endif /* CONFIG_USB_DWC2_PERIPHERAL || CONFIG_USB_DWC2_DUAL_ROLE */ return 0; +error_debugfs: + dwc2_debugfs_exit(hsotg); + if (hsotg->hcd_enabled) + dwc2_hcd_remove(hsotg); error_init: if (hsotg->params.activate_stm_id_vb_detection) regulator_disable(hsotg->usb33d); -- 2.27.0

4 years, 5 months

2
3
0 0

[PATCH 5.7 000/244] 5.7.10-rc1 review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 5.7.10 release. There are 244 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Wed, 22 Jul 2020 15:27:31 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.7.10-rc1… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.7.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 5.7.10-rc1 Umesh Nerlige Ramappa <umesh.nerlige.ramappa(a)intel.com> drm/i915/perf: Use GTT when saving/restoring engine GPR Lorenz Bauer <lmb(a)cloudflare.com> bpf: sockmap: Require attach_bpf_fd when detaching a program Lorenz Bauer <lmb(a)cloudflare.com> bpf: sockmap: Check value of unused args to BPF_PROG_ATTACH Andy Shevchenko <andriy.shevchenko(a)linux.intel.com> gpio: pca953x: disable regmap locking for automatic address incrementing Colin Xu <colin.xu(a)intel.com> drm/i915/gvt: Fix two CFL MMIO handling caused by regression. Arjun Roy <arjunroy(a)google.com> mm/memory.c: properly pte_offset_map_lock/unlock in vm_insert_pages() Lu Baolu <baolu.lu(a)linux.intel.com> iommu/vt-d: Make Intel SVM code 64-bit only Shannon Nelson <snelson(a)pensando.io> ionic: export features for vlans to use Shannon Nelson <snelson(a)pensando.io> ionic: no link check while resetting queues Lingling Xu <ling_ling.xu(a)unisoc.com> spi: sprd: switch the sequence of setting WDG_LOAD_LOW and _HIGH David Howells <dhowells(a)redhat.com> rxrpc: Fix trace string Atish Patra <atish.patra(a)wdc.com> RISC-V: Acquire mmap lock before invoking walk_page_range Ilya Dryomov <idryomov(a)gmail.com> libceph: don't omit recovery_deletes in target_copy() Chris Wilson <chris(a)chris-wilson.co.uk> drm/i915/gt: Only swap to a random sibling once upon creation Chris Wilson <chris(a)chris-wilson.co.uk> drm/i915/gt: Ignore irq enabling on the virtual engines Maarten Lankhorst <maarten.lankhorst(a)linux.intel.com> drm/i915: Move cec_notifier to intel_hdmi_connector_unregister, v2. Alex Deucher <alexander.deucher(a)amd.com> drm/amdgpu/display: create fake mst encoders ahead of time (v4) hersen wu <hersenxs.wu(a)amd.com> drm/amd/display: OLED panel backlight adjust not work with external display connected Josip Pavic <Josip.Pavic(a)amd.com> drm/amd/display: handle failed allocation during stream construction Xiaojie Yuan <xiaojie.yuan(a)amd.com> drm/amdgpu/sdma5: fix wptr overwritten in ->get_wptr() chen gong <curry.gong(a)amd.com> drm/amdgpu/powerplay: Modify SMC message name for setting power profile mode Roland Scheidegger <sroland(a)vmware.com> drm/vmwgfx: fix update of display surface when resolution changes Thomas Gleixner <tglx(a)linutronix.de> genirq/affinity: Handle affinity setting on inactive interrupts correctly Andy Lutomirski <luto(a)kernel.org> x86/ioperm: Fix io bitmap invalidation on Xen PV Vincent Guittot <vincent.guittot(a)linaro.org> sched/fair: handle case of task_h_load() returning 0 Mathieu Desnoyers <mathieu.desnoyers(a)efficios.com> sched: Fix unreliable rseq cpu_id for new tasks Will Deacon <will(a)kernel.org> arm64: compat: Ensure upper 32 bits of x0 are zero on syscall return Will Deacon <will(a)kernel.org> arm64: ptrace: Consistently use pseudo-singlestep exceptions Will Deacon <will(a)kernel.org> arm64: ptrace: Override SPSR.SS when single-stepping is enabled Dinh Nguyen <dinh.nguyen(a)intel.com> arm64: dts: stratix10: increase QSPI reg address in nand dts file Dinh Nguyen <dinguyen(a)kernel.org> arm64: dts: stratix10: add status to qspi dts node Dinh Nguyen <dinguyen(a)kernel.org> arm64: dts: agilex: add status to qspi dts node Tim Harvey <tharvey(a)gateworks.com> ARM: dts: imx6qdl-gw551x: fix audio SSI Alex Hung <alex.hung(a)canonical.com> thermal: int3403_thermal: Downgrade error message Charan Teja Kalla <charante(a)codeaurora.org> dmabuf: use spinlock to access dmabuf->name Michał Mirosław <mirq-linux(a)rere.qmqm.pl> misc: atmel-ssc: lock with mutex instead of spinlock Robin Gong <yibin.gong(a)nxp.com> dmaengine: fsl-edma-common: correct DSIZE_32BYTE Krzysztof Kozlowski <krzk(a)kernel.org> dmaengine: mcf-edma: Fix NULL pointer exception in mcf_edma_tx_handler Krzysztof Kozlowski <krzk(a)kernel.org> dmaengine: fsl-edma: Fix NULL pointer exception in fsl_edma_tx_handler Walter Lozano <walter.lozano(a)collabora.com> opp: Increase parsed_static_opps in _of_add_opp_table_v1() Alexander Shishkin <alexander.shishkin(a)linux.intel.com> intel_th: Fix a NULL dereference when hub driver is not loaded Alexander Shishkin <alexander.shishkin(a)linux.intel.com> intel_th: pci: Add Emmitsburg PCH support Alexander Shishkin <alexander.shishkin(a)linux.intel.com> intel_th: pci: Add Tiger Lake PCH-H support Alexander Shishkin <alexander.shishkin(a)linux.intel.com> intel_th: pci: Add Jasper Lake CPU support Satheesh Rajendran <sathnaga(a)linux.vnet.ibm.com> powerpc/pseries/svm: Fix incorrect check for shared_lppaca_size Aneesh Kumar K.V <aneesh.kumar(a)linux.ibm.com> powerpc/book3s64/pkeys: Fix pkey_access_permitted() for execute disable pkey Maciej S. Szmigiero <mail(a)maciej.szmigiero.name> hwmon: (drivetemp) Avoid SCT usage on Toshiba DT01ACA family drives Vishwas M <vishwas.reddy.vr(a)gmail.com> hwmon: (emc2103) fix unable to change fan pwm1_enable attribute Andreas Schwab <schwab(a)suse.de> riscv: use 16KB kernel stack on 64-bit Frederic Weisbecker <frederic(a)kernel.org> timer: Fix wheel index calculation on last level Frederic Weisbecker <frederic(a)kernel.org> timer: Prevent base->clk from moving backward Chandrakanth Patil <chandrakanth.patil(a)broadcom.com> scsi: megaraid_sas: Remove undefined ENABLE_IRQ_POLL macro Esben Haabendal <esben(a)geanix.com> uio_pdrv_genirq: fix use without device tree and no interrupt Esben Haabendal <esben(a)geanix.com> uio_pdrv_genirq: Remove warning when irq is not specified Mike Leach <mike.leach(a)linaro.org> coresight: etmv4: Fix CPU power management setup in probe() function Dave Wang <dave.wang(a)emc.com.tw> Input: elan_i2c - add more hardware ID for Lenovo laptops David Pedersen <limero1337(a)gmail.com> Input: i8042 - add Lenovo XiaoXin Air 12 to i8042 nomux list Dmitry Torokhov <dmitry.torokhov(a)gmail.com> Revert "Input: elants_i2c - report resolution information for touch major" Alexander Usyskin <alexander.usyskin(a)intel.com> mei: bus: don't clean driver pointer Wade Mealing <wmealing(a)redhat.com> Revert "zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()" Chirantan Ekbote <chirantan(a)chromium.org> fuse: Fix parameter for FS_IOC_{GET,SET}FLAGS Miklos Szeredi <mszeredi(a)redhat.com> fuse: use ->reconfigure() instead of ->remount_fs() Miklos Szeredi <mszeredi(a)redhat.com> fuse: ignore 'data' argument of mount(..., MS_REMOUNT) Amir Goldstein <amir73il(a)gmail.com> ovl: fix unneeded call to ovl_change_flags() Amir Goldstein <amir73il(a)gmail.com> ovl: relax WARN_ON() when decoding lower directory file handle youngjun <her0gyugyu(a)gmail.com> ovl: inode reference leak in ovl_is_inuse true case. Amir Goldstein <amir73il(a)gmail.com> ovl: fix regression with re-formatted lower squashfs Johan Hovold <johan(a)kernel.org> serial: core: fix sysrq overhead regression Johan Hovold <johan(a)kernel.org> Revert "serial: core: Refactor uart_unlock_and_check_sysrq()" Chuhong Yuan <hslester96(a)gmail.com> serial: mxs-auart: add missed iounmap() in probe failure and remove Lad Prabhakar <prabhakar.mahadev-lad.rj(a)bp.renesas.com> serial: sh-sci: Initialize spinlock for uart console Alexander Lobakin <alobakin(a)pm.me> virtio: virtio_console: add missing MODULE_DEVICE_TABLE() for rproc serial Christophe Leroy <christophe.leroy(a)csgroup.eu> tty: serial: cpm_uart: Fix behaviour for non existing GPIOs Jan Kiszka <jan.kiszka(a)siemens.com> Revert "tty: xilinx_uartps: Fix missing id assignment to the console" Hans de Goede <hdegoede(a)redhat.com> virt: vbox: Fix guest capabilities mask check Hans de Goede <hdegoede(a)redhat.com> virt: vbox: Fix VBGL_IOCTL_VMMDEV_REQUEST_BIG and _LOG req numbers to match upstream AceLan Kao <acelan.kao(a)canonical.com> USB: serial: option: add Quectel EG95 LTE modem Jörgen Storvist <jorgen.storvist(a)gmail.com> USB: serial: option: add GosunCn GM500 series Igor Moura <imphilippini(a)gmail.com> USB: serial: ch341: add new Product ID for CH340 James Hilliard <james.hilliard1(a)gmail.com> USB: serial: cypress_m8: enable Simply Automated UPB PIM Johan Hovold <johan(a)kernel.org> USB: serial: iuu_phoenix: fix memory corruption Zhang Qiang <qiang.zhang(a)windriver.com> usb: gadget: function: fix missing spinlock in f_uac1_legacy Peter Chen <peter.chen(a)nxp.com> usb: chipidea: core: add wakeup support for extcon Minas Harutyunyan <Minas.Harutyunyan(a)synopsys.com> usb: dwc2: Fix shutdown callback in platform Tom Rix <trix(a)redhat.com> USB: c67x00: fix use after free in c67x00_giveback_urb Mika Westerberg <mika.westerberg(a)linux.intel.com> thunderbolt: Fix path indices used in USB3 tunnel discovery Kailang Yang <kailang(a)realtek.com> ALSA: hda/realtek - Enable Speaker for ASUS UX563 Kailang Yang <kailang(a)realtek.com> ALSA: hda/realtek - Enable Speaker for ASUS UX533 and UX534 Jian-Hong Pan <jian-hong(a)endlessm.com> ALSA: hda/realtek: Enable headset mic of Acer TravelMate B311R-31 with ALC256 Armas Spann <zappel(a)retarded.farm> ALSA: hda/realtek: enable headset mic of ASUS ROG Zephyrus G14(G401) series with ALC289 Kailang Yang <kailang(a)realtek.com> ALSA: hda/realtek - change to suitable link model for ASUS platform Takashi Iwai <tiwai(a)suse.de> ALSA: usb-audio: Fix race against the error recovery URB submission Takashi Iwai <tiwai(a)suse.de> ALSA: line6: Sync the pending work cancel at disconnection Takashi Iwai <tiwai(a)suse.de> ALSA: line6: Perform sanity check for each URB creation James Hilliard <james.hilliard1(a)gmail.com> HID: quirks: Ignore Simply Automated UPB PIM Sebastian Parschauer <s.parschauer(a)gmx.de> HID: quirks: Always poll Obins Anne Pro 2 keyboard Dmitry Torokhov <dmitry.torokhov(a)gmail.com> HID: magicmouse: do not set up autorepeat Maciej S. Szmigiero <mail(a)maciej.szmigiero.name> HID: logitech-hidpp: avoid repeated "multiplier = " log messages Saravana Kannan <saravanak(a)google.com> slimbus: core: Fix mismatch in of_node_get/put Taniya Das <tdas(a)codeaurora.org> clk: qcom: gcc: Add support for a new frequency for SC7180 Vinod Koul <vkoul(a)kernel.org> clk: qcom: gcc: Add missing UFS clocks for SM8150 Vinod Koul <vkoul(a)kernel.org> clk: qcom: gcc: Add GPU and NPU clocks for SM8150 Miquel Raynal <miquel.raynal(a)bootlin.com> mtd: rawnand: oxnas: Release all devices in the _remove() path Miquel Raynal <miquel.raynal(a)bootlin.com> mtd: rawnand: oxnas: Unregister all devices on error Miquel Raynal <miquel.raynal(a)bootlin.com> mtd: rawnand: oxnas: Keep track of registered devices Álvaro Fernández Rojas <noltari(a)gmail.com> mtd: rawnand: brcmnand: fix CS0 layout Álvaro Fernández Rojas <noltari(a)gmail.com> mtd: rawnand: brcmnand: correctly verify erased pages Miquel Raynal <miquel.raynal(a)bootlin.com> mtd: rawnand: timings: Fix default tR_max and tCCS_min timings Miquel Raynal <miquel.raynal(a)bootlin.com> mtd: rawnand: marvell: Fix probe error path Miquel Raynal <miquel.raynal(a)bootlin.com> mtd: rawnand: marvell: Use nand_cleanup() when the device is not yet registered Miquel Raynal <miquel.raynal(a)bootlin.com> mtd: rawnand: marvell: Fix the condition on a return code Sergei Shtylyov <sergei.shtylyov(a)cogentembedded.com> mtd: spi-nor: spansion: fix writes on S25FS512S Mantas Pucka <mantas(a)8devices.com> mtd: spi-nor: winbond: Fix 4-byte opcode support for w25q256 Jeffrey Hugo <jeffrey.l.hugo(a)gmail.com> clk: qcom: Add missing msm8998 ufs_unipro_core_clk_src Aharon Landau <aharonl(a)mellanox.com> RDMA/mlx5: Verify that QP is created with RQ or SQ Maulik Shah <mkshah(a)codeaurora.org> soc: qcom: rpmh-rsc: Allow using free WAKE TCS for active request Raju P.L.S.S.S.N <rplsssn(a)codeaurora.org> soc: qcom: rpmh-rsc: Clear active mode configuration for wake TCS Maulik Shah <mkshah(a)codeaurora.org> soc: qcom: rpmh: Invalidate SLEEP and WAKE TCSes before flushing new data Maulik Shah <mkshah(a)codeaurora.org> soc: qcom: rpmh: Update dirty flag only when data changes Jin Yao <yao.jin(a)linux.intel.com> perf stat: Zero all the 'ena' and 'run' array slot stats for interval mode Bjorn Helgaas <bhelgaas(a)google.com> PCI/PM: Call .bridge_d3() hook only if non-NULL Zhu Yanjun <yanjunz(a)mellanox.com> RDMA/rxe: Set default vendor ID Tomer Tayar <ttayar(a)habana.ai> habanalabs: Align protection bits configuration of all TPCs John Johansen <john.johansen(a)canonical.com> apparmor: ensure that dfa state tables have entries Peter Ujfalusi <peter.ujfalusi(a)ti.com> dmaengine: ti: k3-udma: Disable memcopy via MCU NAVSS on am654 Srinivas Kandagatla <srinivas.kandagatla(a)linaro.org> soc: qcom: socinfo: add missing soc_id sysfs entry Sean Wang <sean.wang(a)mediatek.com> arm: dts: mt7623: add phy-mode property for gmac2 Kevin Buettner <kevinb(a)redhat.com> copy_xstate_to_kernel: Fix typo which caused GDB regression Douglas Anderson <dianders(a)chromium.org> regmap: debugfs: Don't sleep while atomic for fast_io regmaps Anthony Iliopoulos <ailiop(a)suse.com> nvme: explicitly update mpath disk capacity on revalidation Wei Yongjun <weiyongjun1(a)huawei.com> keys: asymmetric: fix error return code in software_key_query() Krzysztof Kozlowski <krzk(a)kernel.org> arm64: dts: spcfpga: Align GIC, NAND and UART nodenames with dtschema Krzysztof Kozlowski <krzk(a)kernel.org> ARM: dts: socfpga: Align L2 cache-controller nodename with dtschema Colin Ian King <colin.king(a)canonical.com> xprtrdma: fix incorrect header size calculations Enric Balletbo i Serra <enric.balletbo(a)collabora.com> Revert "thermal: mediatek: fix register index error" dillon min <dillon.minfei(a)gmail.com> ARM: dts: Fix dcan driver probe failed on am437x platform Vasily Averin <vvs(a)virtuozzo.com> fuse: don't ignore errors from fuse_writepages_fill() Anna Schumaker <Anna.Schumaker(a)Netapp.com> NFS: Fix interrupted slots by sending a solo SEQUENCE operation Chuck Lever <chuck.lever(a)oracle.com> xprtrdma: Fix handling of connect errors Chuck Lever <chuck.lever(a)oracle.com> xprtrdma: Fix return code from rpcrdma_xprt_connect() Chuck Lever <chuck.lever(a)oracle.com> xprtrdma: Fix recursion into rpcrdma_xprt_disconnect() Chuck Lever <chuck.lever(a)oracle.com> xprtrdma: Fix double-free in rpcrdma_ep_create() Eddie James <eajames(a)linux.ibm.com> clk: AST2600: Add mux for EMMC clock Nathan Chancellor <natechancellor(a)gmail.com> clk: mvebu: ARMADA_AP_CPU_CLK needs to select ARMADA_AP_CP_HELPER Andy Shevchenko <andriy.shevchenko(a)linux.intel.com> serial: core: Initialise spin lock before use in uart_configure_port() Dan Carpenter <dan.carpenter(a)oracle.com> staging: comedi: verify array index is correct before using it Michał Mirosław <mirq-linux(a)rere.qmqm.pl> usb: gadget: udc: atmel: fix uninitialized read in debug printk Marc Kleine-Budde <mkl(a)pengutronix.de> spi: spi-sun6i: sun6i_spi_transfer_one(): fix setting of clock rate Peter Ujfalusi <peter.ujfalusi(a)ti.com> dmaengine: dmatest: stop completed threads when running without set channel Andy Shevchenko <andriy.shevchenko(a)linux.intel.com> dmaengine: dw: Initialize channel before each transfer Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> iio: adc: ad7780: Fix a resource handling path in 'ad7780_probe()' Tony Lindgren <tony(a)atomide.com> bus: ti-sysc: Do not disable on suspend for no-idle Tony Lindgren <tony(a)atomide.com> bus: ti-sysc: Fix sleeping function called from invalid context for RTC quirk Tony Lindgren <tony(a)atomide.com> bus: ti-sysc: Fix wakeirq sleeping function called from invalid context Dave Jiang <dave.jiang(a)intel.com> dmaengine: idxd: fix misc interrupt handler thread unmasking Dave Jiang <dave.jiang(a)intel.com> dmaengine: idxd: cleanup workqueue config after disabling Neil Armstrong <narmstrong(a)baylibre.com> arm64: dts: meson-gxl-s805x: reduce initial Mali450 core frequency Jerome Brunet <jbrunet(a)baylibre.com> arm64: dts: meson: add missing gxl rng clock Colin Ian King <colin.king(a)canonical.com> phy: sun4i-usb: fix dereference of pointer phy0 before it is null checked Tiezhu Yang <yangtiezhu(a)loongson.cn> phy: rockchip: Fix return value of inno_dsidphy_probe() Yoshihiro Shimoda <yoshihiro.shimoda.uh(a)renesas.com> dmaengine: sh: usb-dmac: set tx_result parameters Peter Ujfalusi <peter.ujfalusi(a)ti.com> dmaengine: ti: k3-udma: Fix delayed_work usage for tx drain workaround Nikhil Rao <nikhil.rao(a)intel.com> dmaengine: idxd: fix cdev locking for open and release Pierre-Louis Bossart <pierre-louis.bossart(a)linux.intel.com> soundwire: intel: fix memory leak with devm_kasprintf Peter Ujfalusi <peter.ujfalusi(a)ti.com> dmaengine: ti: k3-udma: Use correct node to read "ti,udma-atype" Syed Nayyar Waris <syednwaris(a)gmail.com> counter: 104-quad-8: Add lock guards - filter clock prescaler Syed Nayyar Waris <syednwaris(a)gmail.com> counter: 104-quad-8: Add lock guards - differential encoder Jonathan Cameron <Jonathan.Cameron(a)huawei.com> iio:health:afe4404 Fix timestamp alignment and prevent data leak. Stephan Gerhold <stephan(a)gerhold.net> Input: mms114 - add extra compatible for mms345l Pavel Begunkov <asml.silence(a)gmail.com> io_uring: fix recvmsg memory leak with buffer selection Krzysztof Kozlowski <krzk(a)kernel.org> spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer Colin Ian King <colin.king(a)canonical.com> scsi: qla2xxx: make 1-bit bit-fields unsigned int Sascha Hauer <s.hauer(a)pengutronix.de> net: ethernet: mvneta: Add back interface mode validation Sascha Hauer <s.hauer(a)pengutronix.de> net: ethernet: mvneta: Do not error out in non serdes modes Dan Carpenter <dan.carpenter(a)oracle.com> xen/xenbus: Fix a double free in xenbus_map_ring_pv() Florian Fainelli <f.fainelli(a)gmail.com> arm64: Add missing sentinel to erratum_1463225 Jonathan Cameron <Jonathan.Cameron(a)huawei.com> iio:health:afe4403 Fix timestamp alignment and prevent data leak. Jonathan Cameron <Jonathan.Cameron(a)huawei.com> iio:pressure:ms5611 Fix buffer element alignment Jonathan Cameron <Jonathan.Cameron(a)huawei.com> iio:humidity:hts221 Fix alignment and data leak issues Navid Emamdoost <navid.emamdoost(a)gmail.com> iio: pressure: zpa2326: handle pm_runtime_get_sync failure Chuhong Yuan <hslester96(a)gmail.com> iio: mma8452: Add missed iio_device_unregister() call in mma8452_probe() Matt Ranostay <matt.ranostay(a)konsulko.com> iio: core: add missing IIO_MOD_H2/ETHANOL string identifiers Dinghao Liu <dinghao.liu(a)zju.edu.cn> iio: magnetometer: ak8974: Fix runtime PM imbalance on error Jonathan Cameron <Jonathan.Cameron(a)huawei.com> iio:humidity:hdc100x Fix alignment and data leak issues Jonathan Cameron <Jonathan.Cameron(a)huawei.com> iio:magnetometer:ak8974: Fix alignment and data leak issues Ard Biesheuvel <ardb(a)kernel.org> arm64/alternatives: don't patch up internal branches Andy Shevchenko <andriy.shevchenko(a)linux.intel.com> i2c: eg20t: Load module automatically if ID matches Sai Prakash Ranjan <saiprakash.ranjan(a)codeaurora.org> arm64: Add KRYO4XX silver CPU cores to erratum list 1530923 and 1024718 Sai Prakash Ranjan <saiprakash.ranjan(a)codeaurora.org> arm64: Add KRYO4XX gold CPU cores to erratum list 1463225 and 1418040 Sai Prakash Ranjan <saiprakash.ranjan(a)codeaurora.org> arm64: Add MIDR value for KRYO4XX gold CPU cores Bob Peterson <rpeterso(a)redhat.com> gfs2: The freeze glock should never be frozen Bob Peterson <rpeterso(a)redhat.com> gfs2: When freezing gfs2, use GL_EXACT and not GL_NOCACHE Bob Peterson <rpeterso(a)redhat.com> gfs2: read-only mounts should grab the sd_freeze_gl glock Bob Peterson <rpeterso(a)redhat.com> gfs2: freeze should work on read-only mounts Bob Peterson <rpeterso(a)redhat.com> gfs2: eliminate GIF_ORDERED in favor of list_empty Juergen Gross <jgross(a)suse.com> xen/xenbus: let xenbus_map_ring_valloc() return errno values only Juergen Gross <jgross(a)suse.com> xen/xenbus: avoid large structs and arrays on the stack Vasily Averin <vvs(a)virtuozzo.com> tpm_tis: extra chip->ops check on error path in tpm_tis_core_init Ard Biesheuvel <ardb(a)kernel.org> arm64/alternatives: use subsections for replacement sequences Ronnie Sahlberg <lsahlber(a)redhat.com> cifs: prevent truncation from long to int in wait_for_free_credits Masahiro Yamada <masahiroy(a)kernel.org> dt-bindings: fix error in 'make clean' after 'make dt_binding_check' Kangmin Park <l4stpr0gr4m(a)gmail.com> dt-bindings: mailbox: zynqmp_ipi: fix unit address Masahiro Yamada <yamada.masahiro(a)socionext.com> dt-bindings: bus: uniphier-system-bus: fix warning in example Angelo Dureghello <angelo.dureghello(a)timesys.com> m68k: mm: fix node memblock init Mike Rapoport <rppt(a)linux.ibm.com> m68k: nommu: register start of the memory with memblock Hou Tao <houtao1(a)huawei.com> blk-mq-debugfs: update blk_queue_flag_name[] accordingly for new flags Srinivas Pandruvada <srinivas.pandruvada(a)linux.intel.com> ACPI: DPTF: Add battery participant for TigerLake Anson Huang <Anson.Huang(a)nxp.com> thermal/drivers: imx: Fix missing of_node_put() at probe time Petteri Aimonen <jpa(a)git.mail.kapsi.fi> x86/fpu: Reset MXCSR to default in kernel_fpu_begin() Navid Emamdoost <navid.emamdoost(a)gmail.com> drm/exynos: fix ref count leak in mic_pre_enable Marek Szyprowski <m.szyprowski(a)samsung.com> drm/exynos: Properly propagate return value in drm_iommu_attach_device() Krishna Manikandan <mkrishn(a)codeaurora.org> drm/msm/dpu: allow initialization of encoder locks during encoder init Bernard Zhao <bernard(a)vivo.com> drm/msm: fix potential memleak in error branch Taehee Yoo <ap420073(a)gmail.com> hsr: fix interface leak in error path of hsr_dev_finalize() Taehee Yoo <ap420073(a)gmail.com> net: rmnet: do not allow to add multiple bridge interfaces Paolo Abeni <pabeni(a)redhat.com> mptcp: fix DSS map generation on fin retransmission Michal Kubecek <mkubecek(a)suse.cz> ethtool: fix genlmsg_put() failure handling in ethnl_default_dumpit() Miaohe Lin <linmiaohe(a)huawei.com> net: ipv4: Fix wrong type conversion from hint to rt in ip_route_use_hint() Cong Wang <xiyou.wangcong(a)gmail.com> genetlink: get rid of family->attrbuf Willem de Bruijn <willemb(a)google.com> ip: Fix SO_MARK in RST, ACK and ICMP packets Alex Elder <elder(a)linaro.org> net: ipa: introduce ipa_cmd_tag_process() Alex Elder <elder(a)linaro.org> net: ipa: always check for stopped channel Cong Wang <xiyou.wangcong(a)gmail.com> cgroup: Fix sock_cgroup_data on big-endian. Cong Wang <xiyou.wangcong(a)gmail.com> cgroup: fix cgroup_sk_alloc() for sk_clone_lock() Eric Dumazet <edumazet(a)google.com> tcp: md5: allow changing MD5 keys in all socket states Eric Dumazet <edumazet(a)google.com> tcp: md5: refine tcp_md5_do_add()/tcp_md5_hash_key() barriers Toke Høiland-Jørgensen <toke(a)redhat.com> vlan: consolidate VLAN parsing code and limit max parsing depth Eric Dumazet <edumazet(a)google.com> tcp: md5: do not send silly options in SYNCOOKIES Eric Dumazet <edumazet(a)google.com> tcp: md5: add missing memory barriers in tcp_md5_do_add()/tcp_md5_hash_key() Christoph Paasch <cpaasch(a)apple.com> tcp: make sure listeners don't initialize congestion-control state Eric Dumazet <edumazet(a)google.com> tcp: fix SO_RCVLOWAT possible hangs under high mem pressure Toke Høiland-Jørgensen <toke(a)redhat.com> sched: consistently handle layer3 header accesses in the presence of VLANs AceLan Kao <acelan.kao(a)canonical.com> net: usb: qmi_wwan: add support for Quectel EG95 LTE modem Cong Wang <xiyou.wangcong(a)gmail.com> net_sched: fix a memory leak in atm_tc_init() Carl Huang <cjhuang(a)codeaurora.org> net: qrtr: free flow in __qrtr_node_release Codrin Ciubotariu <codrin.ciubotariu(a)microchip.com> net: dsa: microchip: set the correct number of ports Martin Varghese <martin.varghese(a)nokia.com> net: Added pointer check for dst->ops->neigh_lookup in dst_neigh_lookup_skb Eric Dumazet <edumazet(a)google.com> llc: make sure applications use ARPHRD_ETHER Xin Long <lucien.xin(a)gmail.com> l2tp: remove skb_dst_set() from l2tp_xmit_skb() David Ahern <dsahern(a)kernel.org> ipv6: Fix use of anycast address with loopback David Ahern <dsahern(a)kernel.org> ipv6: fib6_select_path can not use out path for nexthop objects Sabrina Dubroca <sd(a)queasysnail.net> ipv4: fill fl4_icmp_{type,code} in ping_v4_sendmsg Sean Tranchetti <stranche(a)codeaurora.org> genetlink: remove genl_bind Linus Lüssing <linus.luessing(a)c0d3.blue> bridge: mcast: Fix MLD2 Report IPv6 payload length check ------------- Diffstat: Documentation/arm64/silicon-errata.rst | 8 + Documentation/devicetree/bindings/Makefile | 5 + .../bus/socionext,uniphier-system-bus.yaml | 4 +- .../bindings/mailbox/xlnx,zynqmp-ipi-mailbox.txt | 2 +- Makefile | 4 +- arch/arm/boot/dts/am437x-l4.dtsi | 14 +- arch/arm/boot/dts/imx6qdl-gw551x.dtsi | 2 +- arch/arm/boot/dts/mt7623n-rfb-emmc.dts | 1 + arch/arm/boot/dts/socfpga.dtsi | 2 +- arch/arm/boot/dts/socfpga_arria10.dtsi | 2 +- arch/arm64/boot/dts/altera/socfpga_stratix10.dtsi | 8 +- .../boot/dts/altera/socfpga_stratix10_socdk.dts | 1 + .../dts/altera/socfpga_stratix10_socdk_nand.dts | 7 +- .../dts/amlogic/meson-gxl-s805x-libretech-ac.dts | 2 +- .../boot/dts/amlogic/meson-gxl-s805x-p241.dts | 2 +- arch/arm64/boot/dts/amlogic/meson-gxl-s805x.dtsi | 24 +++ arch/arm64/boot/dts/amlogic/meson-gxl.dtsi | 5 + arch/arm64/boot/dts/intel/socfpga_agilex_socdk.dts | 1 + arch/arm64/include/asm/alternative.h | 16 +- arch/arm64/include/asm/cputype.h | 2 + arch/arm64/include/asm/debug-monitors.h | 2 + arch/arm64/include/asm/syscall.h | 12 +- arch/arm64/include/asm/thread_info.h | 1 + arch/arm64/kernel/alternative.c | 16 +- arch/arm64/kernel/cpu_errata.c | 22 ++- arch/arm64/kernel/cpufeature.c | 2 + arch/arm64/kernel/debug-monitors.c | 20 ++- arch/arm64/kernel/ptrace.c | 29 +++- arch/arm64/kernel/signal.c | 11 +- arch/arm64/kernel/syscall.c | 5 +- arch/arm64/kernel/vmlinux.lds.S | 3 - arch/m68k/kernel/setup_no.c | 3 +- arch/m68k/mm/mcfmmu.c | 2 +- arch/powerpc/kernel/paca.c | 2 +- arch/powerpc/mm/book3s64/pkeys.c | 12 +- arch/riscv/include/asm/thread_info.h | 4 + arch/riscv/mm/pageattr.c | 14 +- arch/x86/include/asm/fpu/internal.h | 5 + arch/x86/include/asm/io_bitmap.h | 16 ++ arch/x86/include/asm/paravirt.h | 5 + arch/x86/include/asm/paravirt_types.h | 1 + arch/x86/kernel/apic/vector.c | 22 +-- arch/x86/kernel/fpu/core.c | 6 + arch/x86/kernel/fpu/xstate.c | 2 +- arch/x86/kernel/paravirt.c | 3 +- arch/x86/kernel/process.c | 18 +-- arch/x86/xen/enlighten_pv.c | 12 ++ block/blk-mq-debugfs.c | 3 + crypto/asymmetric_keys/public_key.c | 1 + drivers/acpi/dptf/dptf_power.c | 1 + drivers/base/regmap/regmap-debugfs.c | 52 ++++--- drivers/block/zram/zram_drv.c | 3 +- drivers/bus/ti-sysc.c | 23 +-- drivers/char/tpm/tpm_tis_core.c | 2 +- drivers/char/virtio_console.c | 3 +- drivers/clk/clk-ast2600.c | 49 +++++- drivers/clk/mvebu/Kconfig | 1 + drivers/clk/qcom/gcc-msm8998.c | 27 ++++ drivers/clk/qcom/gcc-sc7180.c | 73 ++++----- drivers/clk/qcom/gcc-sm8150.c | 148 ++++++++++++++++++ drivers/counter/104-quad-8.c | 22 ++- drivers/dma-buf/dma-buf.c | 11 +- drivers/dma/dmatest.c | 2 + drivers/dma/dw/core.c | 12 -- drivers/dma/fsl-edma-common.h | 2 +- drivers/dma/fsl-edma.c | 7 + drivers/dma/idxd/cdev.c | 19 ++- drivers/dma/idxd/device.c | 25 +++ drivers/dma/idxd/idxd.h | 1 + drivers/dma/idxd/irq.c | 3 +- drivers/dma/idxd/sysfs.c | 5 + drivers/dma/mcf-edma.c | 7 + drivers/dma/sh/usb-dmac.c | 2 + drivers/dma/ti/k3-udma.c | 8 +- drivers/gpio/gpio-pca953x.c | 1 + drivers/gpu/drm/amd/amdgpu/sdma_v5_0.c | 26 +--- drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 14 ++ drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.h | 11 +- .../amd/display/amdgpu_dm/amdgpu_dm_mst_types.c | 53 ++++--- .../amd/display/amdgpu_dm/amdgpu_dm_mst_types.h | 3 + drivers/gpu/drm/amd/display/dc/core/dc_stream.c | 19 ++- drivers/gpu/drm/amd/powerplay/renoir_ppt.c | 2 +- drivers/gpu/drm/exynos/exynos_drm_dma.c | 4 +- drivers/gpu/drm/exynos/exynos_drm_mic.c | 4 +- drivers/gpu/drm/i915/display/intel_hdmi.c | 10 +- drivers/gpu/drm/i915/gt/intel_lrc.c | 19 +-- drivers/gpu/drm/i915/gvt/handlers.c | 4 +- drivers/gpu/drm/i915/i915_perf.c | 1 + drivers/gpu/drm/msm/disp/dpu1/dpu_encoder.c | 4 +- drivers/gpu/drm/msm/msm_submitqueue.c | 4 +- drivers/gpu/drm/vmwgfx/vmwgfx_stdu.c | 8 +- drivers/hid/hid-ids.h | 3 + drivers/hid/hid-logitech-hidpp.c | 2 +- drivers/hid/hid-magicmouse.c | 6 + drivers/hid/hid-quirks.c | 2 + drivers/hwmon/drivetemp.c | 43 ++++++ drivers/hwmon/emc2103.c | 2 +- drivers/hwtracing/coresight/coresight-etm4x.c | 82 ++++++---- drivers/hwtracing/intel_th/core.c | 21 ++- drivers/hwtracing/intel_th/pci.c | 15 ++ drivers/hwtracing/intel_th/sth.c | 4 +- drivers/i2c/busses/i2c-eg20t.c | 1 + drivers/iio/accel/mma8452.c | 5 +- drivers/iio/adc/ad7780.c | 2 +- drivers/iio/health/afe4403.c | 13 +- drivers/iio/health/afe4404.c | 8 +- drivers/iio/humidity/hdc100x.c | 10 +- drivers/iio/humidity/hts221.h | 7 +- drivers/iio/humidity/hts221_buffer.c | 9 +- drivers/iio/industrialio-core.c | 2 + drivers/iio/magnetometer/ak8974.c | 29 ++-- drivers/iio/pressure/ms5611_core.c | 11 +- drivers/iio/pressure/zpa2326.c | 4 +- drivers/infiniband/hw/mlx5/qp.c | 2 + drivers/infiniband/sw/rxe/rxe.c | 1 + drivers/infiniband/sw/rxe/rxe_param.h | 3 + drivers/input/serio/i8042-x86ia64io.h | 7 + drivers/input/touchscreen/elants_i2c.c | 1 - drivers/input/touchscreen/mms114.c | 17 +- drivers/iommu/Kconfig | 2 +- drivers/misc/atmel-ssc.c | 24 +-- drivers/misc/habanalabs/goya/goya_security.c | 99 +++++++++++- drivers/misc/mei/bus.c | 3 +- drivers/mtd/nand/raw/brcmnand/brcmnand.c | 24 +-- drivers/mtd/nand/raw/marvell_nand.c | 27 ++-- drivers/mtd/nand/raw/nand_timings.c | 5 +- drivers/mtd/nand/raw/oxnas_nand.c | 24 ++- drivers/mtd/spi-nor/sfdp.c | 4 - drivers/mtd/spi-nor/sfdp.h | 6 + drivers/mtd/spi-nor/spansion.c | 25 ++- drivers/mtd/spi-nor/winbond.c | 29 +++- drivers/net/dsa/microchip/ksz8795.c | 3 + drivers/net/dsa/microchip/ksz9477.c | 3 + drivers/net/ethernet/marvell/mvneta.c | 24 ++- drivers/net/ethernet/pensando/ionic/ionic_lif.c | 4 +- drivers/net/ethernet/qualcomm/rmnet/rmnet_config.c | 5 + drivers/net/ipa/gsi.c | 13 +- drivers/net/ipa/ipa_cmd.c | 15 ++ drivers/net/ipa/ipa_cmd.h | 8 + drivers/net/ipa/ipa_endpoint.c | 2 + drivers/net/usb/qmi_wwan.c | 1 + drivers/nvme/host/core.c | 1 + drivers/nvme/host/nvme.h | 13 ++ drivers/opp/of.c | 4 + drivers/pci/pci.c | 4 +- drivers/phy/allwinner/phy-sun4i-usb.c | 5 +- drivers/phy/rockchip/phy-rockchip-inno-dsidphy.c | 4 +- drivers/scsi/megaraid/megaraid_sas_fusion.c | 2 - drivers/scsi/qla2xxx/qla_def.h | 4 +- drivers/slimbus/core.c | 1 + drivers/soc/qcom/rpmh-rsc.c | 98 ++++++++---- drivers/soc/qcom/rpmh.c | 56 ++++--- drivers/soc/qcom/socinfo.c | 2 + drivers/soundwire/intel.c | 5 +- drivers/spi/spi-fsl-dspi.c | 15 +- drivers/spi/spi-sprd-adi.c | 2 +- drivers/spi/spi-sun6i.c | 14 +- drivers/staging/comedi/drivers/addi_apci_1500.c | 10 +- drivers/thermal/imx_thermal.c | 7 +- .../intel/int340x_thermal/int3403_thermal.c | 2 +- drivers/thermal/mtk_thermal.c | 6 +- drivers/thunderbolt/tunnel.c | 12 +- drivers/tty/serial/cpm_uart/cpm_uart_core.c | 9 +- drivers/tty/serial/mxs-auart.c | 12 +- drivers/tty/serial/serial_core.c | 112 ++------------ drivers/tty/serial/sh-sci.c | 3 + drivers/tty/serial/xilinx_uartps.c | 1 - drivers/uio/uio_pdrv_genirq.c | 4 +- drivers/usb/c67x00/c67x00-sched.c | 2 +- drivers/usb/chipidea/core.c | 24 +++ drivers/usb/dwc2/platform.c | 3 +- drivers/usb/gadget/function/f_uac1_legacy.c | 2 + drivers/usb/gadget/udc/atmel_usba_udc.c | 2 +- drivers/usb/serial/ch341.c | 1 + drivers/usb/serial/cypress_m8.c | 2 + drivers/usb/serial/cypress_m8.h | 3 + drivers/usb/serial/iuu_phoenix.c | 8 +- drivers/usb/serial/option.c | 6 + drivers/virt/vboxguest/vboxguest_core.c | 6 +- drivers/virt/vboxguest/vboxguest_core.h | 15 ++ drivers/virt/vboxguest/vboxguest_linux.c | 3 +- drivers/virt/vboxguest/vmmdev.h | 2 + drivers/xen/xenbus/xenbus_client.c | 171 ++++++++++----------- fs/cifs/transport.c | 2 +- fs/fuse/file.c | 14 +- fs/fuse/inode.c | 15 +- fs/gfs2/glops.c | 10 +- fs/gfs2/incore.h | 1 - fs/gfs2/log.c | 15 +- fs/gfs2/log.h | 4 +- fs/gfs2/main.c | 1 + fs/gfs2/ops_fstype.c | 13 +- fs/gfs2/recovery.c | 4 +- fs/gfs2/super.c | 20 +-- fs/io_uring.c | 10 +- fs/nfs/nfs4proc.c | 20 ++- fs/overlayfs/export.c | 2 +- fs/overlayfs/file.c | 10 +- fs/overlayfs/super.c | 23 ++- include/dt-bindings/clock/qcom,gcc-msm8998.h | 1 + include/linux/blkdev.h | 1 + include/linux/bpf.h | 13 +- include/linux/cgroup-defs.h | 8 +- include/linux/cgroup.h | 4 +- include/linux/dma-buf.h | 1 + include/linux/if_vlan.h | 29 +++- include/linux/input/elan-i2c-ids.h | 7 + include/linux/serial_core.h | 102 +++++++++++- include/linux/skmsg.h | 13 ++ include/net/dst.h | 10 +- include/net/genetlink.h | 10 -- include/net/inet_ecn.h | 25 ++- include/net/pkt_sched.h | 11 -- include/trace/events/rxrpc.h | 2 +- include/uapi/linux/vboxguest.h | 4 +- kernel/bpf/syscall.c | 2 +- kernel/cgroup/cgroup.c | 31 ++-- kernel/irq/manage.c | 37 ++++- kernel/sched/core.c | 2 + kernel/sched/fair.c | 15 +- kernel/time/timer.c | 21 ++- mm/memory.c | 21 +-- net/bridge/br_multicast.c | 2 +- net/ceph/osd_client.c | 1 + net/core/filter.c | 10 +- net/core/sock.c | 2 +- net/core/sock_map.c | 53 ++++++- net/ethtool/netlink.c | 27 ++-- net/hsr/hsr_device.c | 11 +- net/ipv4/icmp.c | 4 +- net/ipv4/ip_output.c | 2 +- net/ipv4/ping.c | 3 + net/ipv4/route.c | 2 +- net/ipv4/tcp.c | 15 +- net/ipv4/tcp_cong.c | 2 +- net/ipv4/tcp_input.c | 2 + net/ipv4/tcp_ipv4.c | 15 +- net/ipv4/tcp_output.c | 8 +- net/ipv6/icmp.c | 4 +- net/ipv6/route.c | 7 +- net/l2tp/l2tp_core.c | 5 +- net/llc/af_llc.c | 10 +- net/mptcp/options.c | 6 +- net/netlink/genetlink.c | 97 ++---------- net/qrtr/qrtr.c | 4 +- net/sched/act_connmark.c | 9 +- net/sched/act_csum.c | 2 +- net/sched/act_ct.c | 9 +- net/sched/act_ctinfo.c | 9 +- net/sched/act_mpls.c | 2 +- net/sched/act_skbedit.c | 2 +- net/sched/cls_api.c | 2 +- net/sched/cls_flow.c | 8 +- net/sched/cls_flower.c | 2 +- net/sched/em_ipset.c | 2 +- net/sched/em_ipt.c | 2 +- net/sched/em_meta.c | 2 +- net/sched/sch_atm.c | 8 +- net/sched/sch_cake.c | 4 +- net/sched/sch_dsmark.c | 6 +- net/sched/sch_teql.c | 2 +- net/sunrpc/xprtrdma/rpc_rdma.c | 4 +- net/sunrpc/xprtrdma/transport.c | 5 + net/sunrpc/xprtrdma/verbs.c | 35 ++--- security/apparmor/match.c | 5 + sound/pci/hda/patch_realtek.c | 27 +++- sound/usb/line6/capture.c | 2 + sound/usb/line6/driver.c | 2 +- sound/usb/line6/playback.c | 2 + sound/usb/midi.c | 17 +- tools/perf/util/stat.c | 6 +- tools/testing/selftests/net/fib_nexthops.sh | 13 ++ 272 files changed, 2293 insertions(+), 1103 deletions(-)

4 years, 5 months

9
255
0 0

Please apply "ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb" and the corresponding fix to all stable kernels

by Viktor Jägersküpper

Hi Greg, Sasha and all the others, Hans de Goede requested to revert "ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb" from all stable and longterm kernels because this commit broke certain devices with Atheros 9271 and at that time it seemed that reverting the commit would be done in the mainline kernel. The revert was done in kernel 5.7.9 etc., however Mark O'Donovan found a fix for the original commit - which avoided the revert in the mainline kernel - and this fix is now included in 5.8-rc7 with commit 92f53e2fda8bb9a559ad61d57bfb397ce67ed0ab ("ath9k: Fix regression with Atheros 9271"). To be consistent with the mainline kernel, please apply the original commit again (or re-revert it, whatever is appropriate for stable kernels) and then apply Mark's fix. I have tested this with the current 5.7.10 kernel to confirm that it works because I was affected by the bug. All relevant people are CC'ed if someone wants to object. Thanks, Viktor

4 years, 5 months

2
1
0 0

FAILED: patch "[PATCH] x86, vmlinux.lds: Page-align end of ..page_aligned sections" failed to apply to 4.4-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 4.4-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. thanks, greg k-h ------------------ original commit in Linus's tree ------------------ >From de2b41be8fcccb2f5b6c480d35df590476344201 Mon Sep 17 00:00:00 2001 From: Joerg Roedel <jroedel(a)suse.de> Date: Tue, 21 Jul 2020 11:34:48 +0200 Subject: [PATCH] x86, vmlinux.lds: Page-align end of ..page_aligned sections On x86-32 the idt_table with 256 entries needs only 2048 bytes. It is page-aligned, but the end of the .bss..page_aligned section is not guaranteed to be page-aligned. As a result, objects from other .bss sections may end up on the same 4k page as the idt_table, and will accidentially get mapped read-only during boot, causing unexpected page-faults when the kernel writes to them. This could be worked around by making the objects in the page aligned sections page sized, but that's wrong. Explicit sections which store only page aligned objects have an implicit guarantee that the object is alone in the page in which it is placed. That works for all objects except the last one. That's inconsistent. Enforcing page sized objects for these sections would wreckage memory sanitizers, because the object becomes artificially larger than it should be and out of bound access becomes legit. Align the end of the .bss..page_aligned and .data..page_aligned section on page-size so all objects places in these sections are guaranteed to have their own page. [ tglx: Amended changelog ] Signed-off-by: Joerg Roedel <jroedel(a)suse.de> Signed-off-by: Thomas Gleixner <tglx(a)linutronix.de> Reviewed-by: Kees Cook <keescook(a)chromium.org> Cc: stable(a)vger.kernel.org Link: https://lkml.kernel.org/r/20200721093448.10417-1-joro@8bytes.org diff --git a/arch/x86/kernel/vmlinux.lds.S b/arch/x86/kernel/vmlinux.lds.S index 3bfc8dd8a43d..9a03e5b23135 100644 --- a/arch/x86/kernel/vmlinux.lds.S +++ b/arch/x86/kernel/vmlinux.lds.S @@ -358,6 +358,7 @@ SECTIONS .bss : AT(ADDR(.bss) - LOAD_OFFSET) { __bss_start = .; *(.bss..page_aligned) + . = ALIGN(PAGE_SIZE); *(BSS_MAIN) BSS_DECRYPTED . = ALIGN(PAGE_SIZE); diff --git a/include/asm-generic/vmlinux.lds.h b/include/asm-generic/vmlinux.lds.h index db600ef218d7..052e0f05a984 100644 --- a/include/asm-generic/vmlinux.lds.h +++ b/include/asm-generic/vmlinux.lds.h @@ -341,7 +341,8 @@ #define PAGE_ALIGNED_DATA(page_align) \ . = ALIGN(page_align); \ - *(.data..page_aligned) + *(.data..page_aligned) \ + . = ALIGN(page_align); #define READ_MOSTLY_DATA(align) \ . = ALIGN(align); \ @@ -737,7 +738,9 @@ . = ALIGN(bss_align); \ .bss : AT(ADDR(.bss) - LOAD_OFFSET) { \ BSS_FIRST_SECTIONS \ + . = ALIGN(PAGE_SIZE); \ *(.bss..page_aligned) \ + . = ALIGN(PAGE_SIZE); \ *(.dynbss) \ *(BSS_MAIN) \ *(COMMON) \

4 years, 5 months

1
0
0 0

FAILED: patch "[PATCH] x86, vmlinux.lds: Page-align end of ..page_aligned sections" failed to apply to 4.9-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 4.9-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. thanks, greg k-h ------------------ original commit in Linus's tree ------------------ >From de2b41be8fcccb2f5b6c480d35df590476344201 Mon Sep 17 00:00:00 2001 From: Joerg Roedel <jroedel(a)suse.de> Date: Tue, 21 Jul 2020 11:34:48 +0200 Subject: [PATCH] x86, vmlinux.lds: Page-align end of ..page_aligned sections On x86-32 the idt_table with 256 entries needs only 2048 bytes. It is page-aligned, but the end of the .bss..page_aligned section is not guaranteed to be page-aligned. As a result, objects from other .bss sections may end up on the same 4k page as the idt_table, and will accidentially get mapped read-only during boot, causing unexpected page-faults when the kernel writes to them. This could be worked around by making the objects in the page aligned sections page sized, but that's wrong. Explicit sections which store only page aligned objects have an implicit guarantee that the object is alone in the page in which it is placed. That works for all objects except the last one. That's inconsistent. Enforcing page sized objects for these sections would wreckage memory sanitizers, because the object becomes artificially larger than it should be and out of bound access becomes legit. Align the end of the .bss..page_aligned and .data..page_aligned section on page-size so all objects places in these sections are guaranteed to have their own page. [ tglx: Amended changelog ] Signed-off-by: Joerg Roedel <jroedel(a)suse.de> Signed-off-by: Thomas Gleixner <tglx(a)linutronix.de> Reviewed-by: Kees Cook <keescook(a)chromium.org> Cc: stable(a)vger.kernel.org Link: https://lkml.kernel.org/r/20200721093448.10417-1-joro@8bytes.org diff --git a/arch/x86/kernel/vmlinux.lds.S b/arch/x86/kernel/vmlinux.lds.S index 3bfc8dd8a43d..9a03e5b23135 100644 --- a/arch/x86/kernel/vmlinux.lds.S +++ b/arch/x86/kernel/vmlinux.lds.S @@ -358,6 +358,7 @@ SECTIONS .bss : AT(ADDR(.bss) - LOAD_OFFSET) { __bss_start = .; *(.bss..page_aligned) + . = ALIGN(PAGE_SIZE); *(BSS_MAIN) BSS_DECRYPTED . = ALIGN(PAGE_SIZE); diff --git a/include/asm-generic/vmlinux.lds.h b/include/asm-generic/vmlinux.lds.h index db600ef218d7..052e0f05a984 100644 --- a/include/asm-generic/vmlinux.lds.h +++ b/include/asm-generic/vmlinux.lds.h @@ -341,7 +341,8 @@ #define PAGE_ALIGNED_DATA(page_align) \ . = ALIGN(page_align); \ - *(.data..page_aligned) + *(.data..page_aligned) \ + . = ALIGN(page_align); #define READ_MOSTLY_DATA(align) \ . = ALIGN(align); \ @@ -737,7 +738,9 @@ . = ALIGN(bss_align); \ .bss : AT(ADDR(.bss) - LOAD_OFFSET) { \ BSS_FIRST_SECTIONS \ + . = ALIGN(PAGE_SIZE); \ *(.bss..page_aligned) \ + . = ALIGN(PAGE_SIZE); \ *(.dynbss) \ *(BSS_MAIN) \ *(COMMON) \

4 years, 5 months

1
0
0 0

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror July 2020