Linux-stable-mirror
August 2022
linux-stable-mirror@lists.linaro.org
- 381 participants
- 1728 discussions
[PATCH AUTOSEL 5.10 01/11] drm/amd/display: Avoid MPC infinite loop
by Sasha Levin
From: Josip Pavic <Josip.Pavic(a)amd.com>
[ Upstream commit 8de297dc046c180651c0500f8611663ae1c3828a ]
[why]
In some cases MPC tree bottom pipe ends up point to itself. This causes
iterating from top to bottom to hang the system in an infinite loop.
[how]
When looping to next MPC bottom pipe, check that the pointer is not same
as current to avoid infinite loop.
Reviewed-by: Josip Pavic <Josip.Pavic(a)amd.com>
Reviewed-by: Jun Lei <Jun.Lei(a)amd.com>
Acked-by: Alex Hung <alex.hung(a)amd.com>
Signed-off-by: Aric Cyr <aric.cyr(a)amd.com>
Tested-by: Daniel Wheeler <daniel.wheeler(a)amd.com>
Signed-off-by: Alex Deucher <alexander.deucher(a)amd.com>
Signed-off-by: Sasha Levin <sashal(a)kernel.org>
---
drivers/gpu/drm/amd/display/dc/dcn10/dcn10_mpc.c | 6 ++++++
drivers/gpu/drm/amd/display/dc/dcn20/dcn20_mpc.c | 6 ++++++
2 files changed, 12 insertions(+)
diff --git a/drivers/gpu/drm/amd/display/dc/dcn10/dcn10_mpc.c b/drivers/gpu/drm/amd/display/dc/dcn10/dcn10_mpc.c
index 3fcd408e9103..855682590c1b 100644
--- a/drivers/gpu/drm/amd/display/dc/dcn10/dcn10_mpc.c
+++ b/drivers/gpu/drm/amd/display/dc/dcn10/dcn10_mpc.c
@@ -125,6 +125,12 @@ struct mpcc *mpc1_get_mpcc_for_dpp(struct mpc_tree *tree, int dpp_id)
while (tmp_mpcc != NULL) {
if (tmp_mpcc->dpp_id == dpp_id)
return tmp_mpcc;
+
+ /* avoid circular linked list */
+ ASSERT(tmp_mpcc != tmp_mpcc->mpcc_bot);
+ if (tmp_mpcc == tmp_mpcc->mpcc_bot)
+ break;
+
tmp_mpcc = tmp_mpcc->mpcc_bot;
}
return NULL;
diff --git a/drivers/gpu/drm/amd/display/dc/dcn20/dcn20_mpc.c b/drivers/gpu/drm/amd/display/dc/dcn20/dcn20_mpc.c
index 99cc095dc33c..a701ea56c0aa 100644
--- a/drivers/gpu/drm/amd/display/dc/dcn20/dcn20_mpc.c
+++ b/drivers/gpu/drm/amd/display/dc/dcn20/dcn20_mpc.c
@@ -533,6 +533,12 @@ struct mpcc *mpc2_get_mpcc_for_dpp(struct mpc_tree *tree, int dpp_id)
while (tmp_mpcc != NULL) {
if (tmp_mpcc->dpp_id == 0xf || tmp_mpcc->dpp_id == dpp_id)
return tmp_mpcc;
+
+ /* avoid circular linked list */
+ ASSERT(tmp_mpcc != tmp_mpcc->mpcc_bot);
+ if (tmp_mpcc == tmp_mpcc->mpcc_bot)
+ break;
+
tmp_mpcc = tmp_mpcc->mpcc_bot;
}
return NULL;
--
2.35.1
2 years, 4 months
- 1
- 10
[PATCH AUTOSEL 5.15 01/20] fs/ntfs3: Fix work with fragmented xattr
by Sasha Levin
From: Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
[ Upstream commit 42f86b1226a42bfc79a7125af435432ad4680a32 ]
In some cases xattr is too fragmented,
so we need to load it before writing.
Signed-off-by: Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
Signed-off-by: Sasha Levin <sashal(a)kernel.org>
---
fs/ntfs3/xattr.c | 7 ++++++-
1 file changed, 6 insertions(+), 1 deletion(-)
diff --git a/fs/ntfs3/xattr.c b/fs/ntfs3/xattr.c
index 0968565ff2ca..fa9f42e50503 100644
--- a/fs/ntfs3/xattr.c
+++ b/fs/ntfs3/xattr.c
@@ -118,7 +118,7 @@ static int ntfs_read_ea(struct ntfs_inode *ni, struct EA_FULL **ea,
run_init(&run);
- err = attr_load_runs(attr_ea, ni, &run, NULL);
+ err = attr_load_runs_range(ni, ATTR_EA, NULL, 0, &run, 0, size);
if (!err)
err = ntfs_read_run_nb(sbi, &run, 0, ea_p, size, NULL);
run_close(&run);
@@ -443,6 +443,11 @@ static noinline int ntfs_set_ea(struct inode *inode, const char *name,
/* Delete xattr, ATTR_EA */
ni_remove_attr_le(ni, attr, mi, le);
} else if (attr->non_res) {
+ err = attr_load_runs_range(ni, ATTR_EA, NULL, 0, &ea_run, 0,
+ size);
+ if (err)
+ goto out;
+
err = ntfs_sb_write_run(sbi, &ea_run, 0, ea_all, size, 0);
if (err)
goto out;
--
2.35.1
2 years, 4 months
- 1
- 19
[PATCH AUTOSEL 5.19 01/38] fs/ntfs3: Fix work with fragmented xattr
by Sasha Levin
From: Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
[ Upstream commit 42f86b1226a42bfc79a7125af435432ad4680a32 ]
In some cases xattr is too fragmented,
so we need to load it before writing.
Signed-off-by: Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
Signed-off-by: Sasha Levin <sashal(a)kernel.org>
---
fs/ntfs3/xattr.c | 7 ++++++-
1 file changed, 6 insertions(+), 1 deletion(-)
diff --git a/fs/ntfs3/xattr.c b/fs/ntfs3/xattr.c
index 5e0e0280e70d..d2337ee0b7d6 100644
--- a/fs/ntfs3/xattr.c
+++ b/fs/ntfs3/xattr.c
@@ -118,7 +118,7 @@ static int ntfs_read_ea(struct ntfs_inode *ni, struct EA_FULL **ea,
run_init(&run);
- err = attr_load_runs(attr_ea, ni, &run, NULL);
+ err = attr_load_runs_range(ni, ATTR_EA, NULL, 0, &run, 0, size);
if (!err)
err = ntfs_read_run_nb(sbi, &run, 0, ea_p, size, NULL);
run_close(&run);
@@ -444,6 +444,11 @@ static noinline int ntfs_set_ea(struct inode *inode, const char *name,
/* Delete xattr, ATTR_EA */
ni_remove_attr_le(ni, attr, mi, le);
} else if (attr->non_res) {
+ err = attr_load_runs_range(ni, ATTR_EA, NULL, 0, &ea_run, 0,
+ size);
+ if (err)
+ goto out;
+
err = ntfs_sb_write_run(sbi, &ea_run, 0, ea_all, size, 0);
if (err)
goto out;
--
2.35.1
2 years, 4 months
- 1
- 37
[PATCH 4.9 00/98] 4.9.326-rc2 review
by Greg Kroah-Hartman
This is the start of the stable review cycle for the 4.9.326 release.
There are 98 patches in this series, all will be posted as a response
to this one. If anyone has any issues with these being applied, please
let me know.
Responses should be made by Fri, 26 Aug 2022 07:24:55 +0000.
Anything received after that time might be too late.
The whole patch series can be found in one patch at:
https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.9.326-rc…
or in the git tree and branch at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.9.y
and the diffstat can be found below.
thanks,
greg k-h
-------------
Pseudo-Shortlog of commits:
Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
Linux 4.9.326-rc2
Nathan Chancellor <nathan(a)kernel.org>
MIPS: tlbex: Explicitly compare _PAGE_NO_EXEC against 0
Zheyu Ma <zheyuma97(a)gmail.com>
video: fbdev: i740fb: Check the argument of i740_calc_vclk()
Zhouyi Zhou <zhouzhouyi(a)gmail.com>
powerpc/64: Init jump labels before parse_early_param()
Takashi Iwai <tiwai(a)suse.de>
ALSA: timer: Use deferred fasync helper
Takashi Iwai <tiwai(a)suse.de>
ALSA: core: Add async signal helpers
Liang He <windhl(a)126.com>
mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start
Schspa Shi <schspa(a)gmail.com>
vfio: Clear the caps->buf to NULL after free
Liang He <windhl(a)126.com>
tty: serial: Fix refcount leak bug in ucc_uart.c
Kiselev, Oleg <okiselev(a)amazon.com>
ext4: avoid resizing to a partial cluster size
Ye Bin <yebin10(a)huawei.com>
ext4: avoid remove directory when directory is corrupted
Wentao_Liang <Wentao_Liang_g(a)163.com>
drivers:md:fix a potential use-after-free bug
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
cxl: Fix a memory leak in an error handling path
Jozef Martiniak <jomajm(a)gmail.com>
gadgetfs: ep_io - wait until IRQ finishes
Liang He <windhl(a)126.com>
usb: host: ohci-ppc-of: Fix refcount leak bug
Sai Prakash Ranjan <quic_saipraka(a)quicinc.com>
irqchip/tegra: Fix overflow implicit truncation warnings
Csókás Bence <csokas.bence(a)prolan.hu>
fec: Fix timer capture timing in `fec_ptp_enable_pps()`
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: really skip inactive sets when allocating name
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: add force_successful_syscall_return()
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: restarts apply only to the first sigframe we build...
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: fix syscall restart checks
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: traced syscall does need to check the syscall number
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: don't leave NULLs in sys_call_table[]
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: page fault et.al. are *not* restartable syscalls...
Duoming Zhou <duoming(a)zju.edu.cn>
atm: idt77252: fix use-after-free bugs caused by tst_timer
Dan Carpenter <dan.carpenter(a)oracle.com>
xen/xenbus: fix return type in xenbus_file_read()
Peilin Ye <peilin.ye(a)bytedance.com>
vsock: Fix memory leak in vsock_connect()
Nikita Travkin <nikita(a)trvn.ru>
pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed
Miaoqian Lin <linmq006(a)gmail.com>
pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map
Trond Myklebust <trond.myklebust(a)hammerspace.com>
SUNRPC: Reinitialise the backchannel request buffers before reuse
Zhang Xianwei <zhang.xianwei8(a)zte.com.cn>
NFSv4.1: RECLAIM_COMPLETE must handle EACCES
Marc Kleine-Budde <mkl(a)pengutronix.de>
can: ems_usb: fix clang's -Wunaligned-access warning
Filipe Manana <fdmanana(a)suse.com>
btrfs: fix lost error handling when looking up extended ref on log replay
Damien Le Moal <damien.lemoal(a)opensource.wdc.com>
ata: libata-eh: Add missing command name
Mikulas Patocka <mpatocka(a)redhat.com>
rds: add missing barrier to release_refill
Amadeusz Sławiński <amadeuszx.slawinski(a)linux.intel.com>
ALSA: info: Fix llseek return value when using callback
Jamal Hadi Salim <jhs(a)mojatatu.com>
net_sched: cls_route: disallow handle of 0
Tyler Hicks <tyhicks(a)linux.microsoft.com>
net/9p: Initialize the iounit field during fid creation
Guenter Roeck <linux(a)roeck-us.net>
nios2: time: Read timer in get_cycles only if initialized
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression
Jose Alonso <joalonsof(a)gmail.com>
Revert "net: usb: ax88179_178a needs FLAG_SEND_ZLP"
Tony Battersby <tonyb(a)cybernetics.com>
scsi: sg: Allow waiting for commands to complete on removed device
Eric Dumazet <edumazet(a)google.com>
tcp: fix over estimation in sk_forced_mem_schedule()
Qu Wenruo <wqu(a)suse.com>
btrfs: reject log replay if there is unsupported RO compat flag
Thadeu Lima de Souza Cascardo <cascardo(a)canonical.com>
net_sched: cls_route: remove from list when handle is 0
Mikulas Patocka <mpatocka(a)redhat.com>
dm raid: fix address sanitizer warning in raid_status
Baokun Li <libaokun1(a)huawei.com>
ext4: correct max_inline_xattr_value_size computing
Eric Whitney <enwlinux(a)gmail.com>
ext4: fix extent status tree race in writeback error recovery path
Theodore Ts'o <tytso(a)mit.edu>
ext4: update s_overhead_clusters in the superblock during an on-line resize
Baokun Li <libaokun1(a)huawei.com>
ext4: fix use-after-free in ext4_xattr_set_entry
Lukas Czerner <lczerner(a)redhat.com>
ext4: make sure ext4_append() always allocates new block
Baokun Li <libaokun1(a)huawei.com>
ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h
David Collins <quic_collinsd(a)quicinc.com>
spmi: trace: fix stack-out-of-bound access in SPMI tracing functions
Alexander Lobakin <alexandr.lobakin(a)intel.com>
x86/olpc: fix 'logical not is only applied to the left hand side'
Steffen Maier <maier(a)linux.ibm.com>
scsi: zfcp: Fix missing auto port scan and thus missing target ports
Florian Westphal <fw(a)strlen.de>
netfilter: nf_tables: fix null deref due to zeroed list head
Weitao Wang <WeitaoWang-oc(a)zhaoxin.com>
USB: HCD: Fix URB giveback issue in tasklet function
Huacai Chen <chenhuacai(a)loongson.cn>
MIPS: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
Michael Ellerman <mpe(a)ellerman.id.au>
powerpc/powernv: Avoid crashing if rng is NULL
Pali Rohár <pali(a)kernel.org>
powerpc/fsl-pci: Fix Class Code of PCIe Root Port
Pali Rohár <pali(a)kernel.org>
PCI: Add defines for normal and subtractive PCI bridges
Alexander Lobakin <alexandr.lobakin(a)intel.com>
ia64, processor: fix -Wincompatible-pointer-types in ia64_get_irr()
Mikulas Patocka <mpatocka(a)redhat.com>
md-raid10: fix KASAN warning
Miklos Szeredi <mszeredi(a)redhat.com>
fuse: limit nsec
Daniel Borkmann <daniel(a)iogearbox.net>
bpf: fix overflow in prog accounting
Timur Tabi <ttabi(a)nvidia.com>
drm/nouveau: fix another off-by-one in nvbios_addr
Helge Deller <deller(a)gmx.de>
parisc: Fix device names in /proc/iomem
Lukas Wunner <lukas(a)wunner.de>
usbnet: Fix linkwatch use-after-free on disconnect
David Howells <dhowells(a)redhat.com>
vfs: Check the truncate maximum size in inode_newsize_ok()
Allen Ballway <ballway(a)chromium.org>
ALSA: hda/cirrus - support for iMac 12,1 model
Meng Tang <tangmeng(a)uniontech.com>
ALSA: hda/conexant: Add quirk for LENOVO 20149 Notebook model
Sean Christopherson <seanjc(a)google.com>
KVM: x86: Mark TSS busy during LTR emulation _after_ all fault checks
Maciej S. Szmigiero <maciej.szmigiero(a)oracle.com>
KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0
Mikulas Patocka <mpatocka(a)redhat.com>
add barriers to buffer_uptodate and set_buffer_uptodate
Zheyu Ma <zheyuma97(a)gmail.com>
ALSA: bcd2000: Fix a UAF bug on the error path of probing
Ning Qiang <sohu0106(a)126.com>
macintosh/adb: fix oob read in do_adb_query() function
Hans-Christian Noren Egtvedt <hegtvedt(a)cisco.com>
random: only call boot_init_stack_canary() once
Werner Sembach <wse(a)tuxedocomputers.com>
ACPI: video: Shortening quirk list by identifying Clevo by board_name only
Werner Sembach <wse(a)tuxedocomputers.com>
ACPI: video: Force backlight native for some TongFang devices
Daniel Micay <danielmicay(a)gmail.com>
init/main.c: extract early boot entropy from the passed cmdline
Laura Abbott <lauraa(a)codeaurora.org>
init: move stack canary initialization after setup_arch
Viresh Kumar <viresh.kumar(a)linaro.org>
init/main: properly align the multi-line comment
Viresh Kumar <viresh.kumar(a)linaro.org>
init/main: Fix double "the" in comment
Christian Borntraeger <borntraeger(a)de.ibm.com>
include/uapi/linux/swab.h: fix userspace breakage, use __BITS_PER_LONG for swap
Paul Moore <paul(a)paul-moore.com>
selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling
Tianyue Ren <rentianyue(a)kylinos.cn>
selinux: fix error initialization in inode_doinit_with_dentry()
Andreas Gruenbacher <agruenba(a)redhat.com>
selinux: Convert isec->lock into a spinlock
Andreas Gruenbacher <agruenba(a)redhat.com>
selinux: Clean up initialization of isec->sclass
Andreas Gruenbacher <agruenba(a)redhat.com>
proc: Pass file mode to proc_pid_make_inode
Andreas Gruenbacher <agruenba(a)redhat.com>
selinux: Minor cleanups
Nathan Chancellor <nathan(a)kernel.org>
ion: Make user_ion_handle_put_nolock() a void function
Wei Mingzhi <whistler(a)member.fsf.org>
mt7601u: add USB device ID for some versions of XiaoDu WiFi Dongle.
Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
ARM: crypto: comment out gcc warning that breaks clang builds
Florian Westphal <fw(a)strlen.de>
netfilter: nf_queue: do not allow packet truncation below transport header offset
Liang He <windhl(a)126.com>
net: sungem_phy: Add of_node_put() for reference returned by of_get_parent()
Kuniyuki Iwashima <kuniyu(a)amazon.com>
net: ping6: Fix memleak in ipv6_renew_options().
Liang He <windhl(a)126.com>
scsi: ufs: host: Hold reference returned by of_parse_phandle()
ChenXiaoSong <chenxiaosong2(a)huawei.com>
ntfs: fix use-after-free in ntfs_ucsncmp()
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put
-------------
Diffstat:
Makefile | 4 +-
arch/arm/lib/xor-neon.c | 3 +-
arch/ia64/include/asm/processor.h | 2 +-
arch/mips/cavium-octeon/octeon-platform.c | 3 +-
arch/mips/kernel/proc.c | 2 +-
arch/mips/mm/tlbex.c | 4 +-
arch/nios2/include/asm/entry.h | 3 +-
arch/nios2/include/asm/ptrace.h | 2 +
arch/nios2/kernel/entry.S | 22 +++--
arch/nios2/kernel/signal.c | 3 +-
arch/nios2/kernel/syscall_table.c | 1 +
arch/nios2/kernel/time.c | 5 +-
arch/parisc/kernel/drivers.c | 9 +-
arch/powerpc/kernel/prom.c | 7 ++
arch/powerpc/platforms/powernv/rng.c | 2 +
arch/powerpc/sysdev/fsl_pci.c | 8 ++
arch/powerpc/sysdev/fsl_pci.h | 1 +
arch/x86/kvm/emulate.c | 19 ++--
arch/x86/kvm/svm.c | 2 -
arch/x86/platform/olpc/olpc-xo1-sci.c | 2 +-
drivers/acpi/video_detect.c | 55 +++++++----
drivers/ata/libata-eh.c | 1 +
drivers/atm/idt77252.c | 1 +
drivers/gpu/drm/nouveau/nvkm/subdev/bios/base.c | 2 +-
drivers/irqchip/irq-tegra.c | 10 +-
drivers/macintosh/adb.c | 2 +-
drivers/md/dm-raid.c | 2 +-
drivers/md/raid10.c | 5 +-
drivers/md/raid5.c | 2 +-
drivers/misc/cxl/irq.c | 1 +
drivers/net/can/usb/ems_usb.c | 2 +-
drivers/net/ethernet/freescale/fec_ptp.c | 6 +-
drivers/net/sungem_phy.c | 1 +
drivers/net/usb/ax88179_178a.c | 14 +--
drivers/net/usb/usbnet.c | 8 +-
drivers/net/wireless/mediatek/mt7601u/usb.c | 1 +
drivers/pinctrl/nomadik/pinctrl-nomadik.c | 4 +-
drivers/pinctrl/qcom/pinctrl-msm8916.c | 4 +-
drivers/s390/scsi/zfcp_fc.c | 29 ++++--
drivers/s390/scsi/zfcp_fc.h | 6 +-
drivers/s390/scsi/zfcp_fsf.c | 4 +-
drivers/scsi/sg.c | 57 ++++++-----
drivers/scsi/ufs/ufshcd-pltfrm.c | 15 ++-
drivers/staging/android/ion/ion-ioctl.c | 8 +-
drivers/tty/serial/ucc_uart.c | 2 +
drivers/usb/core/hcd.c | 26 ++---
drivers/usb/gadget/legacy/inode.c | 1 +
drivers/usb/host/ohci-ppc-of.c | 1 +
drivers/vfio/vfio.c | 1 +
drivers/video/fbdev/i740fb.c | 9 +-
drivers/xen/xenbus/xenbus_dev_frontend.c | 4 +-
fs/attr.c | 2 +
fs/btrfs/disk-io.c | 14 +++
fs/btrfs/tree-log.c | 4 +-
fs/ext4/inline.c | 3 +
fs/ext4/inode.c | 7 ++
fs/ext4/namei.c | 23 ++++-
fs/ext4/resize.c | 11 +++
fs/ext4/xattr.c | 6 +-
fs/ext4/xattr.h | 13 +++
fs/fuse/inode.c | 6 ++
fs/nfs/nfs4proc.c | 3 +
fs/ntfs/attrib.c | 8 +-
fs/proc/base.c | 23 ++---
fs/proc/fd.c | 6 +-
fs/proc/internal.h | 2 +-
fs/proc/namespaces.c | 3 +-
include/linux/bpf.h | 11 +++
include/linux/buffer_head.h | 25 ++++-
include/linux/pci_ids.h | 2 +
include/linux/usb/hcd.h | 1 +
include/net/bluetooth/l2cap.h | 1 +
include/sound/core.h | 8 ++
include/trace/events/spmi.h | 12 +--
include/uapi/linux/swab.h | 4 +-
init/main.c | 14 +--
kernel/bpf/core.c | 16 ++-
kernel/bpf/syscall.c | 36 +++++--
net/9p/client.c | 4 +-
net/bluetooth/l2cap_core.c | 68 +++++++++----
net/ipv4/tcp_output.c | 7 +-
net/ipv6/ping.c | 6 ++
net/netfilter/nf_tables_api.c | 3 +-
net/netfilter/nfnetlink_queue.c | 7 +-
net/rds/ib_recv.c | 1 +
net/sched/cls_route.c | 8 +-
net/sunrpc/backchannel_rqst.c | 14 +++
net/vmw_vsock/af_vsock.c | 9 +-
security/selinux/hooks.c | 123 +++++++++++++++---------
security/selinux/include/objsec.h | 5 +-
security/selinux/selinuxfs.c | 4 +-
sound/core/info.c | 6 +-
sound/core/misc.c | 94 ++++++++++++++++++
sound/core/timer.c | 11 ++-
sound/pci/hda/patch_cirrus.c | 1 +
sound/pci/hda/patch_conexant.c | 11 ++-
sound/usb/bcd2000/bcd2000.c | 3 +-
97 files changed, 743 insertions(+), 294 deletions(-)
2 years, 4 months
- 4
- 3
[PATCH 5.10 000/157] 5.10.138-rc3 review
by Greg Kroah-Hartman
This is the start of the stable review cycle for the 5.10.138 release.
There are 157 patches in this series, all will be posted as a response
to this one. If anyone has any issues with these being applied, please
let me know.
Responses should be made by Fri, 26 Aug 2022 06:58:27 +0000.
Anything received after that time might be too late.
The whole patch series can be found in one patch at:
https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.138-r…
or in the git tree and branch at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.10.y
and the diffstat can be found below.
thanks,
greg k-h
-------------
Pseudo-Shortlog of commits:
Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
Linux 5.10.138-rc3
Jens Wiklander <jens.wiklander(a)linaro.org>
tee: fix memory leak in tee_shm_register()
Tadeusz Struk <tadeusz.struk(a)linaro.org>
bpf: Fix KASAN use-after-free Read in compute_effective_progs
Matthew Wilcox (Oracle) <willy(a)infradead.org>
qrtr: Convert qrtr_ports from IDR to XArray
Keith Busch <kbusch(a)kernel.org>
PCI/ERR: Retain status from error notification
Fedor Pchelkin <pchelkin(a)ispras.ru>
can: j1939: j1939_session_destroy(): fix memory leak of skbs
Fedor Pchelkin <pchelkin(a)ispras.ru>
can: j1939: j1939_sk_queue_activate_next_locked(): replace WARN_ON_ONCE with netdev_warn_once()
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/probes: Have kprobes and uprobes use $COMM too
Dongliang Mu <mudongliangabcd(a)gmail.com>
netfilter: nf_tables: fix audit memory leak in nf_tables_commit
Dan Carpenter <dan.carpenter(a)oracle.com>
netfilter: nftables: fix a warning message in nf_tables_commit_audit_collect()
Nathan Chancellor <nathan(a)kernel.org>
MIPS: tlbex: Explicitly compare _PAGE_NO_EXEC against 0
Zheyu Ma <zheyuma97(a)gmail.com>
video: fbdev: i740fb: Check the argument of i740_calc_vclk()
Zhouyi Zhou <zhouzhouyi(a)gmail.com>
powerpc/64: Init jump labels before parse_early_param()
Steve French <stfrench(a)microsoft.com>
smb3: check xattr value length earlier
Chao Yu <chao.yu(a)oppo.com>
f2fs: fix to do sanity check on segment type in build_sit_entries()
Chao Yu <chao.yu(a)oppo.com>
f2fs: fix to avoid use f2fs_bug_on() in f2fs_new_node_page()
Takashi Iwai <tiwai(a)suse.de>
ALSA: control: Use deferred fasync helper
Takashi Iwai <tiwai(a)suse.de>
ALSA: timer: Use deferred fasync helper
Takashi Iwai <tiwai(a)suse.de>
ALSA: core: Add async signal helpers
Christophe Leroy <christophe.leroy(a)csgroup.eu>
powerpc/32: Don't always pass -mcpu=powerpc to the compiler
Laurent Dufour <ldufour(a)linux.ibm.com>
watchdog: export lockup_detector_reconfigure
Xianting Tian <xianting.tian(a)linux.alibaba.com>
RISC-V: Add fast call path of crash_kexec()
Celeste Liu <coelacanthus(a)outlook.com>
riscv: mmap with PROT_WRITE but no PROT_READ is invalid
Helge Deller <deller(a)gmx.de>
modules: Ensure natural alignment for .altinstructions and __bug_table sections
Liang He <windhl(a)126.com>
mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start
Schspa Shi <schspa(a)gmail.com>
vfio: Clear the caps->buf to NULL after free
Liang He <windhl(a)126.com>
tty: serial: Fix refcount leak bug in ucc_uart.c
Guenter Roeck <linux(a)roeck-us.net>
lib/list_debug.c: Detect uninitialized lists
Kiselev, Oleg <okiselev(a)amazon.com>
ext4: avoid resizing to a partial cluster size
Ye Bin <yebin10(a)huawei.com>
ext4: avoid remove directory when directory is corrupted
Wentao_Liang <Wentao_Liang_g(a)163.com>
drivers:md:fix a potential use-after-free bug
Sagi Grimberg <sagi(a)grimberg.me>
nvmet-tcp: fix lockdep complaint on nvmet_tcp_wq flush during queue teardown
Logan Gunthorpe <logang(a)deltatee.com>
md: Notify sysfs sync_completed in md_reap_sync_thread()
Uwe Kleine-König <u.kleine-koenig(a)pengutronix.de>
dmaengine: sprd: Cleanup in .remove() after pm_runtime_get_sync() failed
Steven Rostedt (Google) <rostedt(a)goodmis.org>
selftests/kprobe: Do not test for GRP/ without event failures
Liao Chang <liaochang1(a)huawei.com>
csky/kprobe: reclaim insn_slot on kprobe unregistration
Bob Pearson <rpearsonhpe(a)gmail.com>
RDMA/rxe: Limit the number of calls to each tasklet
Jason A. Donenfeld <Jason(a)zx2c4.com>
um: add "noreboot" command line option for PANIC_TIMEOUT=-1 setups
Huacai Chen <chenhuacai(a)loongson.cn>
PCI/ACPI: Guard ARM64-specific mcfg_quirks
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
cxl: Fix a memory leak in an error handling path
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
pinctrl: intel: Check against matching data instead of ACPI companion
Jozef Martiniak <jomajm(a)gmail.com>
gadgetfs: ep_io - wait until IRQ finishes
James Smart <jsmart2021(a)gmail.com>
scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input
Vladimir Zapolskiy <vladimir.zapolskiy(a)linaro.org>
clk: qcom: clk-alpha-pll: fix clk_trion_pll_configure description
Sergey Senozhatsky <senozhatsky(a)chromium.org>
zram: do not lookup algorithm in backends table
Jean-Philippe Brucker <jean-philippe(a)linaro.org>
uacce: Handle parent device removal or parent driver module rmmod
Robert Marko <robimarko(a)gmail.com>
clk: qcom: ipq8074: dont disable gcc_sleep_clk_src
Pascal Terjan <pterjan(a)google.com>
vboxguest: Do not use devm for irq
Amelie Delaunay <amelie.delaunay(a)foss.st.com>
usb: dwc2: gadget: remove D+ pull-up while no vbus with usb-role-switch
Liang He <windhl(a)126.com>
usb: renesas: Fix refcount leak bug
Liang He <windhl(a)126.com>
usb: host: ohci-ppc-of: Fix refcount leak bug
Tony Lindgren <tony(a)atomide.com>
clk: ti: Stop using legacy clkctrl names for omap4 and 5
Sai Prakash Ranjan <quic_saipraka(a)quicinc.com>
drm/meson: Fix overflow implicit truncation warnings
Sai Prakash Ranjan <quic_saipraka(a)quicinc.com>
irqchip/tegra: Fix overflow implicit truncation warnings
Michael Grzeschik <m.grzeschik(a)pengutronix.de>
usb: gadget: uvc: call uvc uvcg_warn on completed status instead of uvcg_info
Frank Li <Frank.Li(a)nxp.com>
usb: cdns3 fix use-after-free at workaround 2
Tzung-Bi Shih <tzungbi(a)kernel.org>
platform/chrome: cros_ec_proto: don't show MKBP version if unsupported
Pavan Chebbi <pavan.chebbi(a)broadcom.com>
PCI: Add ACS quirk for Broadcom BCM5750x NICs
Samuel Holland <samuel(a)sholland.org>
drm/sun4i: dsi: Prevent underflow when computing packet sizes
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: add helper function to set up the nfnetlink header and use it
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nftables: add helper function to set the base sequence number
Richard Guy Briggs <rgb(a)redhat.com>
audit: log nftables configuration change events once per table
Liang He <windhl(a)126.com>
drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors()
Bard Liao <yung-chuan.liao(a)linux.intel.com>
ASoC: SOF: intel: move sof_intel_dsp_desc() forward
Hector Martin <marcan(a)marcan.st>
locking/atomic: Make test_and_*_bit() ordered on failure
Andrew Donnellan <ajd(a)linux.ibm.com>
gcc-plugins: Undefine LATENT_ENTROPY_PLUGIN when plugin disabled for a file
Masahiro Yamada <masahiroy(a)kernel.org>
kbuild: fix the modules order between drivers and libs
Lin Ma <linma(a)zju.edu.cn>
igb: Add lock to avoid data race
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove()
Csókás Bence <csokas.bence(a)prolan.hu>
fec: Fix timer capture timing in `fec_ptp_enable_pps()`
Alan Brady <alan.brady(a)intel.com>
i40e: Fix to stop tx_timeout recovery if GLOBR fails
Frieder Schrempf <frieder.schrempf(a)kontron.de>
regulator: pca9450: Remove restrictions for regulator-name
Uwe Kleine-König <u.kleine-koenig(a)pengutronix.de>
i2c: imx: Make sure to unregister adapter on remove()
Grzegorz Siwik <grzegorz.siwik(a)intel.com>
ice: Ignore EEXIST when setting promisc mode
Rustam Subkhankulov <subkhankulov(a)ispras.ru>
net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions()
Jakub Kicinski <kuba(a)kernel.org>
net: genl: fix error path memory leak in policy dumping
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: dsa: felix: fix ethtool 256-511 and 512-1023 TX packet counters
Arun Ramadoss <arun.ramadoss(a)microchip.com>
net: dsa: microchip: ksz9477: fix fdb_dump last invalid entry
Sergei Antonov <saproj(a)gmail.com>
net: moxa: pass pdev instead of ndev to DMA functions
Sergei Antonov <saproj(a)gmail.com>
net: dsa: mv88e6060: prevent crash on an unused port
Neil Armstrong <narmstrong(a)baylibre.com>
spi: meson-spicc: add local pow2 clock ops to preserve rate between messages
Michael Ellerman <mpe(a)ellerman.id.au>
powerpc/pci: Fix get_phb_number() locking
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specified
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT flag
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: really skip inactive sets when allocating name
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Fix handling of mute/unmute
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Drop conflicting set_bias_level power setting
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Allow mono streams
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Set correct FSYNC polarity
Przemyslaw Patynowski <przemyslawx.patynowski(a)intel.com>
iavf: Fix adminq error handling
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: add force_successful_syscall_return()
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: restarts apply only to the first sigframe we build...
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: fix syscall restart checks
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: traced syscall does need to check the syscall number
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: don't leave NULLs in sys_call_table[]
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: page fault et.al. are *not* restartable syscalls...
Chen Lin <chen45464546(a)163.com>
dpaa2-eth: trace the allocated address instead of page struct
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
perf probe: Fix an error handling path in 'parse_perf_probe_command()'
Matthias May <matthias.may(a)westermo.com>
geneve: fix TOS inheriting for ipv4
Duoming Zhou <duoming(a)zju.edu.cn>
atm: idt77252: fix use-after-free bugs caused by tst_timer
Dan Carpenter <dan.carpenter(a)oracle.com>
xen/xenbus: fix return type in xenbus_file_read()
Yu Xiao <yu.xiao(a)corigine.com>
nfp: ethtool: fix the display error of `ethtool -m DEVNAME`
Dan Carpenter <dan.carpenter(a)oracle.com>
NTB: ntb_tool: uninitialized heap data in tool_fn_write()
Roberto Sassu <roberto.sassu(a)huawei.com>
tools build: Switch to new openssl API for test-libcrypto
Ondrej Mosnacek <omosnace(a)redhat.com>
kbuild: dummy-tools: avoid tmpdir leak in dummy gcc
Jeff Layton <jlayton(a)kernel.org>
ceph: don't leak snap_rwsem in handle_cap_grant
Yuanzheng Song <songyuanzheng(a)huawei.com>
tools/vm/slabinfo: use alphabetic order when two values are equal
Luís Henriques <lhenriques(a)suse.de>
ceph: use correct index when encoding client supported features
Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org>
dt-bindings: clock: qcom,gcc-msm8996: add more GCC clock sources
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix MSM8916 MTP compatibles
Peilin Ye <peilin.ye(a)bytedance.com>
vsock: Set socket state back to SS_UNCONNECTED in vsock_connect_timeout()
Peilin Ye <peilin.ye(a)bytedance.com>
vsock: Fix memory leak in vsock_connect()
Florian Westphal <fw(a)strlen.de>
plip: avoid rcu debug splat
Matthias May <matthias.may(a)westermo.com>
ipv6: do not use RT_TOS for IPv6 flowlabel
Matthias May <matthias.may(a)westermo.com>
geneve: do not use RT_TOS for IPv6 flowlabel
Sakari Ailus <sakari.ailus(a)linux.intel.com>
ACPI: property: Return type of acpi_add_nondev_subnodes() should be bool
Jianhua Lu <lujianhua000(a)gmail.com>
pinctrl: qcom: sm8250: Fix PDC map
Samuel Holland <samuel(a)sholland.org>
pinctrl: sunxi: Add I/O bias setting for H6 R-PIO
Nikita Travkin <nikita(a)trvn.ru>
pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed
Miaoqian Lin <linmq006(a)gmail.com>
pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map
Sandor Bodo-Merle <sbodomerle(a)gmail.com>
net: bgmac: Fix a BUG triggered by wrong bytes_compl
Ido Schimmel <idosch(a)nvidia.com>
devlink: Fix use-after-free after a failed reload
Xuan Zhuo <xuanzhuo(a)linux.alibaba.com>
virtio_net: fix memory leak inside XPD_TX with mergeable
Trond Myklebust <trond.myklebust(a)hammerspace.com>
SUNRPC: Reinitialise the backchannel request buffers before reuse
Dan Aloni <dan.aloni(a)vastdata.com>
sunrpc: fix expiry of auth creds
Chia-Lin Kao (AceLan) <acelan.kao(a)canonical.com>
net: atlantic: fix aq_vec index out of range error
Sebastian Würl <sebastian.wuerl(a)ororatech.com>
can: mcp251x: Fix race condition on receive interrupt
Hou Tao <houtao1(a)huawei.com>
bpf: Check the validity of max_rdwr_access for sock local storage map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for sock{map,hash} iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for sock local storage map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for hash map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for array map iterator
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4/pnfs: Fix a use-after-free bug in open
Zhang Xianwei <zhang.xianwei8(a)zte.com.cn>
NFSv4.1: RECLAIM_COMPLETE must handle EACCES
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4: Fix races in the legacy idmapper upcall
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4.1: Handle NFS4ERR_DELAY replies to OP_SEQUENCE correctly
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4.1: Don't decrease the value of seq_nr_highest_sent
Qifu Zhang <zhangqifu(a)bytedance.com>
Documentation: ACPI: EINJ: Fix obsolete example
Xiu Jianfeng <xiujianfeng(a)huawei.com>
apparmor: Fix memleak in aa_simple_write_to_buffer()
Xin Xiong <xiongx18(a)fudan.edu.cn>
apparmor: fix reference count leak in aa_pivotroot()
John Johansen <john.johansen(a)canonical.com>
apparmor: fix overlapping attachment computation
John Johansen <john.johansen(a)canonical.com>
apparmor: fix setting unconfined mode on a loaded profile
Tom Rix <trix(a)redhat.com>
apparmor: fix aa_label_asxprint return check
John Johansen <john.johansen(a)canonical.com>
apparmor: Fix failed mount permission check error message
John Johansen <john.johansen(a)canonical.com>
apparmor: fix absroot causing audited secids to begin with =
John Johansen <john.johansen(a)canonical.com>
apparmor: fix quiet_denied for file rules
Marc Kleine-Budde <mkl(a)pengutronix.de>
can: ems_usb: fix clang's -Wunaligned-access warning
Takashi Iwai <tiwai(a)suse.de>
ALSA: usb-audio: More comprehensive mixer map for ASUS ROG Zenith II
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing: Have filter accept "common_cpu" to be consistent
Filipe Manana <fdmanana(a)suse.com>
btrfs: fix lost error handling when looking up extended ref on log replay
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: meson-gx: Fix an error handling path in meson_mmc_probe()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: pxamci: Fix an error handling path in pxamci_probe()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: pxamci: Fix another error handling path in pxamci_probe()
Damien Le Moal <damien.lemoal(a)opensource.wdc.com>
ata: libata-eh: Add missing command name
Mikulas Patocka <mpatocka(a)redhat.com>
rds: add missing barrier to release_refill
Aaron Lu <aaron.lu(a)intel.com>
x86/mm: Use proper mask when setting PUD mapping
Christoffer Sandberg <cs(a)tuxedo.de>
ALSA: hda/realtek: Add quirk for Clevo NS50PU, NS70PU
Amadeusz Sławiński <amadeuszx.slawinski(a)linux.intel.com>
ALSA: info: Fix llseek return value when using callback
-------------
Diffstat:
Documentation/atomic_bitops.txt | 2 +-
Documentation/devicetree/bindings/arm/qcom.yaml | 2 +-
.../bindings/clock/qcom,gcc-msm8996.yaml | 16 +
.../bindings/regulator/nxp,pca9450-regulator.yaml | 11 -
Documentation/firmware-guide/acpi/apei/einj.rst | 2 +-
Makefile | 10 +-
arch/csky/kernel/probes/kprobes.c | 4 +
arch/mips/cavium-octeon/octeon-platform.c | 3 +-
arch/mips/mm/tlbex.c | 4 +-
arch/nios2/include/asm/entry.h | 3 +-
arch/nios2/include/asm/ptrace.h | 2 +
arch/nios2/kernel/entry.S | 22 +-
arch/nios2/kernel/signal.c | 3 +-
arch/nios2/kernel/syscall_table.c | 1 +
arch/powerpc/Makefile | 26 +-
arch/powerpc/kernel/pci-common.c | 16 +-
arch/powerpc/kernel/prom.c | 7 +
arch/powerpc/platforms/Kconfig.cputype | 21 +-
arch/riscv/kernel/sys_riscv.c | 5 +-
arch/riscv/kernel/traps.c | 4 +
arch/um/os-Linux/skas/process.c | 17 +-
arch/x86/mm/init_64.c | 2 +-
drivers/acpi/pci_mcfg.c | 3 +
drivers/acpi/property.c | 8 +-
drivers/ata/libata-eh.c | 1 +
drivers/atm/idt77252.c | 1 +
drivers/block/zram/zcomp.c | 11 +-
drivers/clk/qcom/clk-alpha-pll.c | 2 +-
drivers/clk/qcom/gcc-ipq8074.c | 1 +
drivers/clk/ti/clk-44xx.c | 210 ++++++-------
drivers/clk/ti/clk-54xx.c | 160 +++++-----
drivers/clk/ti/clkctrl.c | 4 -
drivers/dma/sprd-dma.c | 5 +-
drivers/gpu/drm/meson/meson_drv.c | 5 +-
drivers/gpu/drm/meson/meson_viu.c | 22 +-
drivers/gpu/drm/sun4i/sun6i_mipi_dsi.c | 10 +-
drivers/i2c/busses/i2c-imx.c | 20 +-
drivers/infiniband/sw/rxe/rxe_param.h | 6 +
drivers/infiniband/sw/rxe/rxe_task.c | 16 +-
drivers/irqchip/irq-tegra.c | 10 +-
drivers/md/md.c | 1 +
drivers/md/raid5.c | 2 +-
drivers/misc/cxl/irq.c | 1 +
drivers/misc/uacce/uacce.c | 133 ++++++---
drivers/mmc/host/meson-gx-mmc.c | 6 +-
drivers/mmc/host/pxamci.c | 4 +-
drivers/net/can/spi/mcp251x.c | 18 +-
drivers/net/can/usb/ems_usb.c | 2 +-
drivers/net/dsa/microchip/ksz9477.c | 3 +
drivers/net/dsa/mv88e6060.c | 3 +
drivers/net/dsa/ocelot/felix_vsc9959.c | 3 +-
drivers/net/dsa/sja1105/sja1105_devlink.c | 2 +-
drivers/net/ethernet/aquantia/atlantic/aq_nic.c | 21 +-
drivers/net/ethernet/broadcom/bgmac.c | 2 +-
drivers/net/ethernet/freescale/dpaa2/dpaa2-eth.c | 4 +-
drivers/net/ethernet/freescale/fec_ptp.c | 6 +-
drivers/net/ethernet/intel/i40e/i40e_main.c | 4 +-
drivers/net/ethernet/intel/iavf/iavf_adminq.c | 15 +-
drivers/net/ethernet/intel/ice/ice_switch.c | 2 +-
drivers/net/ethernet/intel/igb/igb.h | 2 +
drivers/net/ethernet/intel/igb/igb_main.c | 12 +-
drivers/net/ethernet/moxa/moxart_ether.c | 20 +-
.../net/ethernet/netronome/nfp/nfp_net_ethtool.c | 2 +
drivers/net/ethernet/stmicro/stmmac/dwmac-intel.c | 1 +
drivers/net/geneve.c | 15 +-
drivers/net/plip/plip.c | 2 +-
drivers/net/virtio_net.c | 5 +-
drivers/ntb/test/ntb_tool.c | 8 +-
drivers/nvme/target/tcp.c | 3 +-
drivers/pci/pcie/err.c | 3 +-
drivers/pci/quirks.c | 3 +
drivers/pinctrl/intel/pinctrl-intel.c | 14 +-
drivers/pinctrl/nomadik/pinctrl-nomadik.c | 4 +-
drivers/pinctrl/qcom/pinctrl-msm8916.c | 4 +-
drivers/pinctrl/qcom/pinctrl-sm8250.c | 2 +-
drivers/pinctrl/sunxi/pinctrl-sun50i-h6-r.c | 1 +
drivers/pinctrl/sunxi/pinctrl-sunxi.c | 7 +-
drivers/platform/chrome/cros_ec_proto.c | 8 +-
drivers/scsi/lpfc/lpfc_debugfs.c | 20 +-
drivers/spi/spi-meson-spicc.c | 129 ++++++--
drivers/tee/tee_core.c | 3 +
drivers/tee/tee_shm.c | 3 -
drivers/tty/serial/ucc_uart.c | 2 +
drivers/usb/cdns3/gadget.c | 2 +-
drivers/usb/dwc2/gadget.c | 3 +-
drivers/usb/gadget/function/uvc_video.c | 2 +-
drivers/usb/gadget/legacy/inode.c | 1 +
drivers/usb/host/ohci-ppc-of.c | 1 +
drivers/usb/renesas_usbhs/rza.c | 4 +
drivers/vfio/vfio.c | 1 +
drivers/video/fbdev/i740fb.c | 9 +-
drivers/virt/vboxguest/vboxguest_linux.c | 9 +-
drivers/xen/xenbus/xenbus_dev_frontend.c | 4 +-
fs/btrfs/tree-log.c | 4 +-
fs/ceph/caps.c | 27 +-
fs/ceph/mds_client.c | 7 +-
fs/ceph/mds_client.h | 6 -
fs/cifs/smb2ops.c | 5 +-
fs/ext4/namei.c | 7 +-
fs/ext4/resize.c | 10 +
fs/f2fs/node.c | 6 +-
fs/f2fs/segment.c | 13 +
fs/nfs/nfs4idmap.c | 46 +--
fs/nfs/nfs4proc.c | 20 +-
include/asm-generic/bitops/atomic.h | 6 -
include/linux/netfilter/nfnetlink.h | 27 ++
include/linux/nmi.h | 2 +
include/linux/uacce.h | 6 +-
include/sound/control.h | 2 +-
include/sound/core.h | 8 +
kernel/bpf/arraymap.c | 6 +
kernel/bpf/cgroup.c | 70 ++++-
kernel/bpf/hashtab.c | 2 +
kernel/trace/trace_events.c | 1 +
kernel/trace/trace_probe.c | 5 +-
kernel/watchdog.c | 21 +-
lib/list_debug.c | 12 +-
net/can/j1939/socket.c | 5 +-
net/can/j1939/transport.c | 8 +-
net/core/bpf_sk_storage.c | 12 +-
net/core/devlink.c | 4 +-
net/core/sock_map.c | 20 +-
net/ipv6/ip6_output.c | 3 +-
net/netfilter/ipset/ip_set_core.c | 17 +-
net/netfilter/nf_conntrack_netlink.c | 77 ++---
net/netfilter/nf_tables_api.c | 325 ++++++++++-----------
net/netfilter/nf_tables_trace.c | 9 +-
net/netfilter/nfnetlink_acct.c | 11 +-
net/netfilter/nfnetlink_cthelper.c | 11 +-
net/netfilter/nfnetlink_cttimeout.c | 22 +-
net/netfilter/nfnetlink_log.c | 11 +-
net/netfilter/nfnetlink_queue.c | 12 +-
net/netfilter/nft_compat.c | 11 +-
net/netlink/genetlink.c | 6 +-
net/netlink/policy.c | 14 +-
net/qrtr/qrtr.c | 42 +--
net/rds/ib_recv.c | 1 +
net/sunrpc/auth.c | 2 +-
net/sunrpc/backchannel_rqst.c | 14 +
net/vmw_vsock/af_vsock.c | 10 +-
scripts/Makefile.gcc-plugins | 2 +-
scripts/dummy-tools/gcc | 8 +-
scripts/module.lds.S | 2 +
security/apparmor/apparmorfs.c | 2 +-
security/apparmor/audit.c | 2 +-
security/apparmor/domain.c | 2 +-
security/apparmor/include/lib.h | 5 +
security/apparmor/include/policy.h | 2 +-
security/apparmor/label.c | 13 +-
security/apparmor/mount.c | 8 +-
security/apparmor/policy_unpack.c | 12 +-
sound/core/control.c | 7 +-
sound/core/info.c | 6 +-
sound/core/misc.c | 94 ++++++
sound/core/timer.c | 11 +-
sound/pci/hda/patch_realtek.c | 1 +
sound/soc/codecs/tas2770.c | 98 +++----
sound/soc/codecs/tas2770.h | 5 +
sound/soc/sof/intel/hda.c | 22 +-
sound/usb/card.c | 8 +
sound/usb/mixer_maps.c | 34 ++-
tools/build/feature/test-libcrypto.c | 15 +-
tools/perf/util/probe-event.c | 6 +-
.../ftrace/test.d/kprobe/kprobe_syntax_errors.tc | 1 -
tools/vm/slabinfo.c | 32 +-
165 files changed, 1540 insertions(+), 1043 deletions(-)
2 years, 4 months
- 6
- 5
[PATCH 5.19 000/362] 5.19.4-rc2 review
by Greg Kroah-Hartman
This is the start of the stable review cycle for the 5.19.4 release.
There are 362 patches in this series, all will be posted as a response
to this one. If anyone has any issues with these being applied, please
let me know.
Responses should be made by Fri, 26 Aug 2022 06:58:34 +0000.
Anything received after that time might be too late.
The whole patch series can be found in one patch at:
https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.19.4-rc2…
or in the git tree and branch at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.19.y
and the diffstat can be found below.
thanks,
greg k-h
-------------
Pseudo-Shortlog of commits:
Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
Linux 5.19.4-rc2
Takashi Iwai <tiwai(a)suse.de>
Revert "ALSA: hda: Fix page fault in snd_hda_codec_shutdown()"
Ren Zhijie <renzhijie2(a)huawei.com>
scsi: ufs: ufs-mediatek: Fix build error and type mismatch
Ye Bin <yebin10(a)huawei.com>
f2fs: fix null-ptr-deref in f2fs_get_dnode_of_data
Daeho Jeong <daehojeong(a)google.com>
f2fs: revive F2FS_IOC_ABORT_VOLATILE_WRITE
Nathan Chancellor <nathan(a)kernel.org>
MIPS: tlbex: Explicitly compare _PAGE_NO_EXEC against 0
Zheyu Ma <zheyuma97(a)gmail.com>
video: fbdev: i740fb: Check the argument of i740_calc_vclk()
Stanimir Varbanov <stanimir.varbanov(a)linaro.org>
venus: pm_helpers: Fix warning in OPP during probe
Zhouyi Zhou <zhouzhouyi(a)gmail.com>
powerpc/64: Init jump labels before parse_early_param()
Steve French <stfrench(a)microsoft.com>
smb3: check xattr value length earlier
Chao Yu <chao.yu(a)oppo.com>
f2fs: fix to do sanity check on segment type in build_sit_entries()
Chao Yu <chao.yu(a)oppo.com>
f2fs: fix to avoid use f2fs_bug_on() in f2fs_new_node_page()
Takashi Iwai <tiwai(a)suse.de>
ALSA: control: Use deferred fasync helper
Takashi Iwai <tiwai(a)suse.de>
ALSA: pcm: Use deferred fasync helper
Takashi Iwai <tiwai(a)suse.de>
ALSA: timer: Use deferred fasync helper
Takashi Iwai <tiwai(a)suse.de>
ALSA: core: Add async signal helpers
Alexey Kardashevskiy <aik(a)ozlabs.ru>
powerpc/ioda/iommu/debugfs: Generate unique debugfs entries
Miklos Szeredi <mszeredi(a)redhat.com>
ovl: warn if trusted xattr creation fails
Srinivas Kandagatla <srinivas.kandagatla(a)linaro.org>
ASoC: codecs: va-macro: use fsgen as clock
Christophe Leroy <christophe.leroy(a)csgroup.eu>
powerpc/32: Don't always pass -mcpu=powerpc to the compiler
Christophe Leroy <christophe.leroy(a)csgroup.eu>
powerpc/32: Set an IBAT covering up to _einittext during init
Laurent Dufour <ldufour(a)linux.ibm.com>
powerpc/pseries/mobility: set NMI watchdog factor during an LPM
Laurent Dufour <ldufour(a)linux.ibm.com>
powerpc/watchdog: introduce a NMI watchdog's factor
Laurent Dufour <ldufour(a)linux.ibm.com>
watchdog: export lockup_detector_reconfigure
Yong Zhi <yong.zhi(a)intel.com>
ASoC: Intel: sof_nau8825: Move quirk check to the front in late probe
Andrey Turkin <andrey.turkin(a)gmail.com>
ASoC: Intel: sof_es8336: ignore GpioInt when looking for speaker/headset GPIO lines
Andrey Turkin <andrey.turkin(a)gmail.com>
ASoC: Intel: sof_es8336: Fix GPIO quirks set via module option
Pierre-Louis Bossart <pierre-louis.bossart(a)linux.intel.com>
ASoC: SOF: Intel: hda: add sanity check on SSP index reported by NHLT
Kai-Heng Feng <kai.heng.feng(a)canonical.com>
ALSA: hda/realtek: Enable speaker and mute LEDs for HP laptops
Xianting Tian <xianting.tian(a)linux.alibaba.com>
RISC-V: Add fast call path of crash_kexec()
Celeste Liu <coelacanthus(a)outlook.com>
riscv: mmap with PROT_WRITE but no PROT_READ is invalid
Mark Brown <broonie(a)kernel.org>
ASoC: nau8821: Don't unconditionally free interrupt
Conor Dooley <conor.dooley(a)microchip.com>
riscv: dts: canaan: Add k210 topology information
Conor Dooley <conor.dooley(a)microchip.com>
riscv: dts: sifive: Add fu740 topology information
Kuninori Morimoto <kuninori.morimoto.gx(a)renesas.com>
ASoC: rsnd: care default case on rsnd_ssiu_busif_err_irq_ctrl()
Peter Ujfalusi <peter.ujfalusi(a)linux.intel.com>
ASoC: SOF: sof-client-probes: Only load the driver if IPC3 is used
Peter Ujfalusi <peter.ujfalusi(a)linux.intel.com>
ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before firmware boot
Peter Ujfalusi <peter.ujfalusi(a)linux.intel.com>
ASoC: SOF: Intel: cnl: Do not process IPC reply before firmware boot
Helge Deller <deller(a)gmx.de>
modules: Ensure natural alignment for .altinstructions and __bug_table sections
Cezary Rojewski <cezary.rojewski(a)intel.com>
ALSA: hda: Fix page fault in snd_hda_codec_shutdown()
Amadeusz Sławiński <amadeuszx.slawinski(a)linux.intel.com>
ASoC: Intel: avs: Set max DMA segment size
Yunfei Wang <yf.wang(a)mediatek.com>
iommu/io-pgtable-arm-v7s: Add a quirk to allow pgtable PA up to 35bit
Liang He <windhl(a)126.com>
mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start
Schspa Shi <schspa(a)gmail.com>
vfio: Clear the caps->buf to NULL after free
Fabiano Rosas <farosas(a)linux.ibm.com>
KVM: PPC: Book3S HV: Fix "rm_exit" entry in debugfs timings
Liang He <windhl(a)126.com>
tty: serial: Fix refcount leak bug in ucc_uart.c
Guenter Roeck <linux(a)roeck-us.net>
lib/list_debug.c: Detect uninitialized lists
Kiselev, Oleg <okiselev(a)amazon.com>
ext4: avoid resizing to a partial cluster size
Lukas Czerner <lczerner(a)redhat.com>
ext4: block range must be validated before use in ext4_mb_clear_bb()
Ye Bin <yebin10(a)huawei.com>
ext4: avoid remove directory when directory is corrupted
Wentao_Liang <Wentao_Liang_g(a)163.com>
drivers:md:fix a potential use-after-free bug
Sagi Grimberg <sagi(a)grimberg.me>
nvmet-tcp: fix lockdep complaint on nvmet_tcp_wq flush during queue teardown
Logan Gunthorpe <logang(a)deltatee.com>
md/raid5: Make logic blocking check consistent with logic that blocks
Logan Gunthorpe <logang(a)deltatee.com>
md: Notify sysfs sync_completed in md_reap_sync_thread()
Marek Szyprowski <m.szyprowski(a)samsung.com>
phy: samsung: phy-exynos-pcie: sanitize init/power_on callbacks
Stafford Horne <shorne(a)gmail.com>
openrisc: io: Define iounmap argument as volatile
Li Zhijian <lizhijian(a)fujitsu.com>
Revert "RDMA/rxe: Create duplicate mapping tables for FMRs"
Uwe Kleine-König <u.kleine-koenig(a)pengutronix.de>
dmaengine: sprd: Cleanup in .remove() after pm_runtime_get_sync() failed
Akhil R <akhilrajeev(a)nvidia.com>
dmaengine: tegra: Add terminate() for Tegra234
Steven Rostedt (Google) <rostedt(a)goodmis.org>
selftests/kprobe: Do not test for GRP/ without event failures
Liao Chang <liaochang1(a)huawei.com>
csky/kprobe: reclaim insn_slot on kprobe unregistration
Bob Pearson <rpearsonhpe(a)gmail.com>
RDMA/rxe: Limit the number of calls to each tasklet
Sudeep Holla <sudeep.holla(a)arm.com>
ACPI: PPTT: Leave the table mapped for the runtime usage
Takeshi Saito <takeshi.saito.xv(a)renesas.com>
mmc: renesas_sdhi: newer SoCs don't need manual tap correction
Ben Dooks <ben.dooks(a)sifive.com>
dmaengine: dw-axi-dmac: ignore interrupt if no descriptor
Ben Dooks <ben.dooks(a)sifive.com>
dmaengine: dw-axi-dmac: do not print NULL LLI during error
Geert Uytterhoeven <geert+renesas(a)glider.be>
of: overlay: Move devicetree_corrupt() check up
Jason A. Donenfeld <Jason(a)zx2c4.com>
um: add "noreboot" command line option for PANIC_TIMEOUT=-1 setups
Huacai Chen <chenhuacai(a)kernel.org>
PCI/ACPI: Guard ARM64-specific mcfg_quirks
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
cxl: Fix a memory leak in an error handling path
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
pinctrl: intel: Check against matching data instead of ACPI companion
Chanho Park <chanho61.park(a)samsung.com>
scsi: ufs: ufs-exynos: Change ufs phy control sequence
Wolfram Sang <wsa+renesas(a)sang-engineering.com>
mmc: tmio: avoid glitches when resetting
Oded Gabbay <ogabbay(a)kernel.org>
habanalabs/gaudi: mask constant value before cast
Ofir Bitton <obitton(a)habana.ai>
habanalabs/gaudi: fix shift out of bounds
Tal Cohen <talcohen(a)habana.ai>
habanalabs/gaudi: invoke device reset from one code block
Dafna Hirschfeld <dhirschfeld(a)habana.ai>
habanalabs: add terminating NULL to attrs arrays
Nick Desaulniers <ndesaulniers(a)google.com>
coresight: etm4x: avoid build failure with unrolled loops
Jozef Martiniak <jomajm(a)gmail.com>
gadgetfs: ep_io - wait until IRQ finishes
James Smart <jsmart2021(a)gmail.com>
scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE
James Smart <jsmart2021(a)gmail.com>
scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input
Vladimir Zapolskiy <vladimir.zapolskiy(a)linaro.org>
clk: qcom: clk-alpha-pll: fix clk_trion_pll_configure description
Sergey Senozhatsky <senozhatsky(a)chromium.org>
zram: do not lookup algorithm in backends table
Jean-Philippe Brucker <jean-philippe(a)linaro.org>
uacce: Handle parent device removal or parent driver module rmmod
Robert Marko <robimarko(a)gmail.com>
clk: qcom: ipq8074: dont disable gcc_sleep_clk_src
Pascal Terjan <pterjan(a)google.com>
vboxguest: Do not use devm for irq
Amelie Delaunay <amelie.delaunay(a)foss.st.com>
usb: dwc2: gadget: remove D+ pull-up while no vbus with usb-role-switch
Mike Christie <michael.christie(a)oracle.com>
scsi: iscsi: Fix HW conn removal use after free
Liang He <windhl(a)126.com>
usb: renesas: Fix refcount leak bug
Liang He <windhl(a)126.com>
usb: host: ohci-ppc-of: Fix refcount leak bug
Prashant Malani <pmalani(a)chromium.org>
usb: typec: mux: Add CONFIG guards for functions
Po-Wen Kao <powen.kao(a)mediatek.com>
scsi: ufs: ufs-mediatek: Fix the timing of configuring device regulators
Tony Lindgren <tony(a)atomide.com>
clk: ti: Stop using legacy clkctrl names for omap4 and 5
Sai Prakash Ranjan <quic_saipraka(a)quicinc.com>
drm/meson: Fix overflow implicit truncation warnings
Sai Prakash Ranjan <quic_saipraka(a)quicinc.com>
irqchip/tegra: Fix overflow implicit truncation warnings
Yoshihiro Shimoda <yoshihiro.shimoda.uh(a)renesas.com>
scsi: ufs: core: Add UFSHCD_QUIRK_HIBERN_FASTAUTO
Yoshihiro Shimoda <yoshihiro.shimoda.uh(a)renesas.com>
scsi: ufs: core: Add UFSHCD_QUIRK_BROKEN_64BIT_ADDRESS
Pali Rohár <pali(a)kernel.org>
PCI: aardvark: Fix reporting Slot capabilities on emulated bridge
Michael Grzeschik <m.grzeschik(a)pengutronix.de>
usb: gadget: uvc: call uvc uvcg_warn on completed status instead of uvcg_info
Michael Grzeschik <m.grzeschik(a)pengutronix.de>
usb: gadget: uvc: calculate the number of request depending on framesize
Frank Li <Frank.Li(a)nxp.com>
usb: cdns3 fix use-after-free at workaround 2
Pavel Skripkin <paskripkin(a)gmail.com>
staging: r8188eu: add error handling of rtw_read32
Pavel Skripkin <paskripkin(a)gmail.com>
staging: r8188eu: add error handling of rtw_read16
Pavel Skripkin <paskripkin(a)gmail.com>
staging: r8188eu: add error handling of rtw_read8
Tzung-Bi Shih <tzungbi(a)kernel.org>
platform/chrome: cros_ec_proto: don't show MKBP version if unsupported
Pavan Chebbi <pavan.chebbi(a)broadcom.com>
PCI: Add ACS quirk for Broadcom BCM5750x NICs
Tao Jin <tao-j(a)outlook.com>
HID: multitouch: new device class fix Lenovo X12 trackpad sticky
Gil Fine <gil.fine(a)intel.com>
thunderbolt: Change downstream router's TMU rate in both TMU uni/bidir mode
Josh Poimboeuf <jpoimboe(a)kernel.org>
x86/kvm: Fix "missing ENDBR" BUG for fastop functions
Josh Poimboeuf <jpoimboe(a)kernel.org>
x86/ibt, objtool: Add IBT_NOSEAL()
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: mscc: ocelot: report ndo_get_stats64 from the wraparound-resistant ocelot->stats
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: mscc: ocelot: make struct ocelot_stat_layout array indexable
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: mscc: ocelot: fix race between ndo_get_stats64 and ocelot_check_stats_work
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: mscc: ocelot: turn stats_lock into a spinlock
Oliver Upton <oliver.upton(a)linux.dev>
KVM: arm64: Reject 32bit user PSTATE on asymmetric systems
Oliver Upton <oliver.upton(a)linux.dev>
KVM: arm64: Treat PMCR_EL1.LC as RES1 on asymmetric systems
Maíra Canal <mairacanal(a)riseup.net>
drm/amdgpu: Fix use-after-free on amdgpu_bo_list mutex
Samuel Holland <samuel(a)sholland.org>
drm/sun4i: dsi: Prevent underflow when computing packet sizes
Marek Vasut <marex(a)denx.de>
drm/bridge: lvds-codec: Fix error checking of drm_of_lvds_get_data_mapping()
Lijo Lazar <lijo.lazar(a)amd.com>
drm/amdgpu: Avoid another list of reset devices
Matthew Auld <matthew.auld(a)intel.com>
drm/i915/ttm: don't leak the ccs state
Liang He <windhl(a)126.com>
drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors()
Laurentiu Palcu <laurentiu.palcu(a)oss.nxp.com>
drm/imx/dcss: get rid of HPD warning message
Fedor Pchelkin <pchelkin(a)ispras.ru>
can: j1939: j1939_sk_queue_activate_next_locked(): replace WARN_ON_ONCE with netdev_warn_once()
Andrew Donnellan <ajd(a)linux.ibm.com>
gcc-plugins: Undefine LATENT_ENTROPY_PLUGIN when plugin disabled for a file
Masahiro Yamada <masahiroy(a)kernel.org>
kbuild: fix the modules order between drivers and libs
Lin Ma <linma(a)zju.edu.cn>
igb: Add lock to avoid data race
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove()
Samuel Holland <samuel(a)sholland.org>
dt-bindings: display: sun4i: Add D1 TCONs to conditionals
Csókás Bence <csokas.bence(a)prolan.hu>
fec: Fix timer capture timing in `fec_ptp_enable_pps()`
Ben Hutchings <benh(a)debian.org>
tools/rtla: Fix command symlinks
Yufen Yu <yuyufen(a)huawei.com>
blk-mq: run queue no matter whether the request is the last request
Alan Brady <alan.brady(a)intel.com>
i40e: Fix to stop tx_timeout recovery if GLOBR fails
Frieder Schrempf <frieder.schrempf(a)kontron.de>
regulator: pca9450: Remove restrictions for regulator-name
Przemyslaw Patynowski <przemyslawx.patynowski(a)intel.com>
i40e: Fix tunnel checksum offload with fragmented traffic
Uwe Kleine-König <u.kleine-koenig(a)pengutronix.de>
i2c: imx: Make sure to unregister adapter on remove()
Masahiro Yamada <masahiroy(a)kernel.org>
modpost: fix module versioning when a symbol lacks valid CRC
Benjamin Mikailenko <benjamin.mikailenko(a)intel.com>
ice: Ignore error message when setting same promiscuous mode
Grzegorz Siwik <grzegorz.siwik(a)intel.com>
ice: Fix clearing of promisc mode with bridge over bond
Grzegorz Siwik <grzegorz.siwik(a)intel.com>
ice: Ignore EEXIST when setting promisc mode
Grzegorz Siwik <grzegorz.siwik(a)intel.com>
ice: Fix double VLAN error when entering promisc mode
Sylwester Dziedziuch <sylwesterx.dziedziuch(a)intel.com>
ice: Fix VF not able to send tagged traffic with no VLAN filters
Michal Jaron <michalx.jaron(a)intel.com>
ice: Fix call trace with null VSI during VF reset
Benjamin Mikailenko <benjamin.mikailenko(a)intel.com>
ice: Fix VSI rebuild WARN_ON check for VF
Rustam Subkhankulov <subkhankulov(a)ispras.ru>
net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions()
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: dsa: don't warn in dsa_port_set_state_now() when driver doesn't support it
Jakub Kicinski <kuba(a)kernel.org>
net: genl: fix error path memory leak in policy dumping
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: mscc: ocelot: fix address of SYS_COUNT_TX_AGING counter
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: mscc: ocelot: fix incorrect ndo_get_stats64 packet counters
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: dsa: felix: fix ethtool 256-511 and 512-1023 TX packet counters
Arun Ramadoss <arun.ramadoss(a)microchip.com>
net: dsa: microchip: ksz9477: fix fdb_dump last invalid entry
Zhengchao Shao <shaozhengchao(a)huawei.com>
net: sched: fix misuse of qcpu->backlog in gnet_stats_add_queue_cpu
Zhengchao Shao <shaozhengchao(a)huawei.com>
net: rtnetlink: fix module reference count leak issue in rtnetlink_rcv_msg
Xin Xiong <xiongx18(a)fudan.edu.cn>
net: fix potential refcount leak in ndisc_router_discovery()
Sergei Antonov <saproj(a)gmail.com>
net: moxa: pass pdev instead of ndev to DMA functions
Amit Cohen <amcohen(a)nvidia.com>
mlxsw: spectrum: Clear PTP configuration after unregistering the netdevice
Michael S. Tsirkin <mst(a)redhat.com>
virtio_net: fix endian-ness for RSS
Maxim Kochetkov <fido_max(a)inbox.ru>
net: qrtr: start MHI channel after endpoit creation
Sergei Antonov <saproj(a)gmail.com>
net: dsa: mv88e6060: prevent crash on an unused port
Xin Xiong <xiongx18(a)fudan.edu.cn>
net/sunrpc: fix potential memory leaks in rpc_sysfs_xprt_state_change()
Neil Armstrong <narmstrong(a)baylibre.com>
spi: meson-spicc: add local pow2 clock ops to preserve rate between messages
Michael Ellerman <mpe(a)ellerman.id.au>
powerpc/pci: Fix get_phb_number() locking
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specified
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: disallow NFT_SET_ELEM_CATCHALL and NFT_SET_ELEM_INTERVAL_END
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval flags
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT flag
Florian Westphal <fw(a)strlen.de>
netfilter: nf_tables: fix scheduling-while-atomic splat
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: really skip inactive sets when allocating name
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: possible module reference underflow in error path
Florian Westphal <fw(a)strlen.de>
netfilter: nf_ct_irc: cap packet search space to 4k
Florian Westphal <fw(a)strlen.de>
netfilter: nf_ct_ftp: prefer skb_linearize
Florian Westphal <fw(a)strlen.de>
netfilter: nf_ct_h323: cap packet size at 64k
Florian Westphal <fw(a)strlen.de>
netfilter: nf_ct_sane: remove pseudo skb linearization
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: disallow NFTA_SET_ELEM_KEY_END with NFT_SET_ELEM_INTERVAL_END flag
Dan Carpenter <dan.carpenter(a)oracle.com>
fs/ntfs3: uninitialized variable in ntfs_set_acl_ex()
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: use READ_ONCE and WRITE_ONCE for shared generation id access
Florian Westphal <fw(a)strlen.de>
netfilter: nfnetlink: re-enable conntrack expectation events
Potnuri Bharat Teja <bharat(a)chelsio.com>
RDMA/cxgb4: fix accept failure due to increased cpl_t5_pass_accept_rpl size
Mark Bloch <mbloch(a)nvidia.com>
RDMA/mlx5: Use the proper number of ports
Sergey Gorenko <sergeygo(a)nvidia.com>
IB/iser: Fix login with authentication
Philipp Zabel <p.zabel(a)pengutronix.de>
ASoC: codec: tlv320aic32x4: fix mono playback via I2S
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Fix handling of mute/unmute
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Drop conflicting set_bias_level power setting
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Allow mono streams
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Set correct FSYNC polarity
Takashi Iwai <tiwai(a)suse.de>
ASoC: DPCM: Don't pick up BE without substream
Takashi Iwai <tiwai(a)suse.de>
ASoC: SOF: Intel: hda: Fix potential buffer overflow by snprintf()
Takashi Iwai <tiwai(a)suse.de>
ASoC: SOF: debug: Fix potential buffer overflow by snprintf()
Takashi Iwai <tiwai(a)suse.de>
ASoC: Intel: avs: Fix potential buffer overflow by snprintf()
Ivan Vecera <ivecera(a)redhat.com>
iavf: Fix deadlock in initialization
Przemyslaw Patynowski <przemyslawx.patynowski(a)intel.com>
iavf: Fix reset error handling
Przemyslaw Patynowski <przemyslawx.patynowski(a)intel.com>
iavf: Fix NULL pointer dereference in iavf_get_link_ksettings
Przemyslaw Patynowski <przemyslawx.patynowski(a)intel.com>
iavf: Fix adminq error handling
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: add force_successful_syscall_return()
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: restarts apply only to the first sigframe we build...
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: fix syscall restart checks
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: traced syscall does need to check the syscall number
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: don't leave NULLs in sys_call_table[]
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: page fault et.al. are *not* restartable syscalls...
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Fix missing i_op in ntfs_read_mft
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Do not change mode if ntfs_set_ea failed
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Fix double free on remount
Dan Carpenter <dan.carpenter(a)oracle.com>
fs/ntfs3: Don't clear upper bits accidentally in log_replay()
Pavel Skripkin <paskripkin(a)gmail.com>
fs/ntfs3: Fix NULL deref in ntfs_update_mftmirr
Yan Lei <chinayanlei2002(a)163.com>
fs/ntfs3: Fix using uninitialized value n when calling indx_read
Chen Lin <chen45464546(a)163.com>
dpaa2-eth: trace the allocated address instead of page struct
Adrian Hunter <adrian.hunter(a)intel.com>
perf tests: Fix Track with sched_switch test for hybrid case
Adrian Hunter <adrian.hunter(a)intel.com>
perf parse-events: Fix segfault when event parser gets an error
Robin Reckmann <robin.reckmann(a)googlemail.com>
i2c: qcom-geni: Fix GPI DMA buffer sync-back
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
perf probe: Fix an error handling path in 'parse_perf_probe_command()'
Christoph Hellwig <hch(a)lst.de>
nvme-fc: fix the fc_appid_store return value
Matthias May <matthias.may(a)westermo.com>
geneve: fix TOS inheriting for ipv4
Jeff Layton <jlayton(a)kernel.org>
fscache: don't leak cookie access refs if invalidation is in progress or failed
Duoming Zhou <duoming(a)zju.edu.cn>
atm: idt77252: fix use-after-free bugs caused by tst_timer
Gerhard Engleder <gerhard(a)engleder-embedded.com>
tsnep: Fix tsnep_tx_unmap() error path usage
Dan Carpenter <dan.carpenter(a)oracle.com>
xen/xenbus: fix return type in xenbus_file_read()
Yu Xiao <yu.xiao(a)corigine.com>
nfp: ethtool: fix the display error of `ethtool -m DEVNAME`
Dan Carpenter <dan.carpenter(a)oracle.com>
NTB: ntb_tool: uninitialized heap data in tool_fn_write()
Roberto Sassu <roberto.sassu(a)huawei.com>
tools build: Switch to new openssl API for test-libcrypto
Ondrej Mosnacek <omosnace(a)redhat.com>
kbuild: dummy-tools: avoid tmpdir leak in dummy gcc
Dan Williams <dan.j.williams(a)intel.com>
tools/testing/cxl: Fix cxl_hdm_decode_init() calling convention
Stefano Garzarella <sgarzare(a)redhat.com>
vdpa_sim_blk: set number of address spaces and virtqueue groups
Stefano Garzarella <sgarzare(a)redhat.com>
vdpa_sim: use max_iotlb_entries as a limit in vhost_iotlb_init
Jacky Bai <ping.bai(a)nxp.com>
clk: imx93: Correct the edma1's parent clock
Jeff Layton <jlayton(a)kernel.org>
ceph: don't leak snap_rwsem in handle_cap_grant
Yuanzheng Song <songyuanzheng(a)huawei.com>
tools/vm/slabinfo: use alphabetic order when two values are equal
Dan Williams <dan.j.williams(a)intel.com>
tools/testing/cxl: Fix decoder default state
Luís Henriques <lhenriques(a)suse.de>
ceph: use correct index when encoding client supported features
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
spi: dt-bindings: qcom,spi-geni-qcom: allow three interconnects
Bryan O'Donoghue <bryan.odonoghue(a)linaro.org>
dt-bindings: opp: opp-v2-kryo-cpu: Fix example binding checks
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
spi: dt-bindings: zynqmp-qspi: add missing 'required'
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
spi: dt-bindings: cadence: add missing 'required'
Johan Hovold <johan+linaro(a)kernel.org>
dt-bindings: PCI: qcom: Fix reset conditional
Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org>
dt-bindings: clock: qcom,gcc-msm8996: add more GCC clock sources
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix MSM8994 boards compatibles
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix MSM8916 MTP compatibles
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix Longcheer L8150 compatibles
Michal Simek <michal.simek(a)xilinx.com>
dt-bindings: gpio: zynq: Add missing compatible strings
Peilin Ye <peilin.ye(a)bytedance.com>
vsock: Set socket state back to SS_UNCONNECTED in vsock_connect_timeout()
Peilin Ye <peilin.ye(a)bytedance.com>
vsock: Fix memory leak in vsock_connect()
Florian Westphal <fw(a)strlen.de>
plip: avoid rcu debug splat
Matthias May <matthias.may(a)westermo.com>
ipv6: do not use RT_TOS for IPv6 flowlabel
Matthias May <matthias.may(a)westermo.com>
mlx5: do not use RT_TOS for IPv6 flowlabel
Matthias May <matthias.may(a)westermo.com>
vxlan: do not use RT_TOS for IPv6 flowlabel
Matthias May <matthias.may(a)westermo.com>
geneve: do not use RT_TOS for IPv6 flowlabel
Sakari Ailus <sakari.ailus(a)linux.intel.com>
ACPI: property: Return type of acpi_add_nondev_subnodes() should be bool
Subbaraya Sundeep <sbhatta(a)marvell.com>
octeontx2-af: Fix key checking for source mac
Subbaraya Sundeep <sbhatta(a)marvell.com>
octeontx2-af: Fix mcam entry resource leak
Harman Kalra <hkalra(a)marvell.com>
octeontx2-af: suppress external profile loading warning
Stanislaw Kardach <skardach(a)marvell.com>
octeontx2-af: Apply tx nibble fixup always
Naveen Mamindlapalli <naveenm(a)marvell.com>
octeontx2-pf: Fix NIX_AF_TL3_TL2X_LINKX_CFG register configuration
Jeff LaBundy <jeff(a)labundy.com>
dt-bindings: input: iqs7222: Extend slider-mapped GPIO to IQS7222C
Jeff LaBundy <jeff(a)labundy.com>
dt-bindings: input: iqs7222: Correct bottom speed step size
Jeff LaBundy <jeff(a)labundy.com>
dt-bindings: input: iqs7222: Remove support for RF filter
Jeff LaBundy <jeff(a)labundy.com>
Input: iqs7222 - remove support for RF filter
Jeff LaBundy <jeff(a)labundy.com>
Input: iqs7222 - handle reset during ATI
Jeff LaBundy <jeff(a)labundy.com>
Input: iqs7222 - acknowledge reset before writing registers
Jeff LaBundy <jeff(a)labundy.com>
Input: iqs7222 - protect volatile registers
Jeff LaBundy <jeff(a)labundy.com>
Input: iqs7222 - fortify slider event reporting
Jeff LaBundy <jeff(a)labundy.com>
Input: iqs7222 - correct slider event disable logic
Mattijs Korpershoek <mkorpershoek(a)baylibre.com>
Input: mt6779-keypad - match hardware matrix organization
Miaoqian Lin <linmq006(a)gmail.com>
Input: exc3000 - fix return value check of wait_for_completion_timeout
Zeng Jingxiang <linuszeng(a)tencent.com>
rtc: spear: set range max
Jianhua Lu <lujianhua000(a)gmail.com>
pinctrl: qcom: sm8250: Fix PDC map
Allen-KH Cheng <allen-kh.cheng(a)mediatek.com>
dt-bindings: pinctrl: mt8186: Add and use drive-strength-microamp
Samuel Holland <samuel(a)sholland.org>
pinctrl: sunxi: Add I/O bias setting for H6 R-PIO
AngeloGioacchino Del Regno <angelogioacchino.delregno(a)collabora.com>
dt-bindings: pinctrl: mt8195: Add and use drive-strength-microamp
AngeloGioacchino Del Regno <angelogioacchino.delregno(a)collabora.com>
dt-bindings: pinctrl: mt8195: Fix name for mediatek,rsel-resistance-in-si-unit
Basavaraj Natikar <Basavaraj.Natikar(a)amd.com>
pinctrl: amd: Don't save/restore interrupt status and wake status bits
Nikita Travkin <nikita(a)trvn.ru>
pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed
Miaoqian Lin <linmq006(a)gmail.com>
pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map
Nícolas F. R. A. Prado <nfraprado(a)collabora.com>
dt-bindings: pinctrl: mt8192: Use generic bias instead of pull-*-adv
Nícolas F. R. A. Prado <nfraprado(a)collabora.com>
dt-bindings: pinctrl: mt8192: Add drive-strength-microamp
Lad Prabhakar <prabhakar.mahadev-lad.rj(a)bp.renesas.com>
pinctrl: renesas: rzg2l: Return -EINVAL for pins which have input disabled
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix Alcatel OneTouch Idol 3 compatibles
Ido Schimmel <idosch(a)nvidia.com>
selftests: forwarding: Fix failing tests with old libnet
Jakub Kicinski <kuba(a)kernel.org>
net: atm: bring back zatm uAPI
Sandor Bodo-Merle <sbodomerle(a)gmail.com>
net: bgmac: Fix a BUG triggered by wrong bytes_compl
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: dsa: felix: suppress non-changes to the tagging protocol
Oleksij Rempel <linux(a)rempel-privat.de>
net: phy: c45 baset1: do not skip aneg configuration if clock role is not specified
Florian Fainelli <f.fainelli(a)gmail.com>
net: bcmgenet: Indicate MAC is in charge of PHY PM
Florian Fainelli <f.fainelli(a)gmail.com>
net: phy: Warn about incorrect mdio_bus_phy_resume() state
Ido Schimmel <idosch(a)nvidia.com>
devlink: Fix use-after-free after a failed reload
Shigeru Yoshida <syoshida(a)redhat.com>
virtio-blk: Avoid use-after-free on suspend/resume
Xuan Zhuo <xuanzhuo(a)linux.alibaba.com>
virtio_net: fix memory leak inside XPD_TX with mergeable
Michael S. Tsirkin <mst(a)redhat.com>
virtio: VIRTIO_HARDEN_NOTIFICATION is broken
Srinivas Kandagatla <srinivas.kandagatla(a)linaro.org>
ASoC: qdsp6: q6apm-dai: unprepare stream if its already prepared
Trond Myklebust <trond.myklebust(a)hammerspace.com>
SUNRPC: Don't reuse bvec on retransmission of the request
Trond Myklebust <trond.myklebust(a)hammerspace.com>
SUNRPC: Reinitialise the backchannel request buffers before reuse
Chuck Lever <chuck.lever(a)oracle.com>
SUNRPC: Fix xdr_encode_bool()
Dan Aloni <dan.aloni(a)vastdata.com>
sunrpc: fix expiry of auth creds
Randy Dunlap <rdunlap(a)infradead.org>
m68k: coldfire/device.c: protect FLEXCAN blocks
Chia-Lin Kao (AceLan) <acelan.kao(a)canonical.com>
net: atlantic: fix aq_vec index out of range error
Fedor Pchelkin <pchelkin(a)ispras.ru>
can: j1939: j1939_session_destroy(): fix memory leak of skbs
Sebastian Würl <sebastian.wuerl(a)ororatech.com>
can: mcp251x: Fix race condition on receive interrupt
Hou Tao <houtao1(a)huawei.com>
bpf: Check the validity of max_rdwr_access for sock local storage map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for sock{map,hash} iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for sock local storage map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for hash map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for array map iterator
Kumar Kartikeya Dwivedi <memxor(a)gmail.com>
bpf: Don't reinit map value in prealloc_lru_pop
Alexei Starovoitov <ast(a)kernel.org>
bpf: Disallow bpf programs call prog_run command.
Jinghao Jia <jinghao(a)linux.ibm.com>
BPF: Fix potential bad pointer dereference in bpf_sys_bpf()
Florian Westphal <fw(a)strlen.de>
selftests: mptcp: make sendfile selftest work
Paolo Abeni <pabeni(a)redhat.com>
mptcp: do not queue data on closed subflows
Paolo Abeni <pabeni(a)redhat.com>
mptcp: move subflow cleanup in mptcp_destroy_common()
Jiri Olsa <jolsa(a)kernel.org>
mptcp, btf: Add struct mptcp_sock definition when CONFIG_MPTCP is disabled
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4/pnfs: Fix a use-after-free bug in open
Zhang Xianwei <zhang.xianwei8(a)zte.com.cn>
NFSv4.1: RECLAIM_COMPLETE must handle EACCES
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4: Fix races in the legacy idmapper upcall
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4.1: Handle NFS4ERR_DELAY replies to OP_SEQUENCE correctly
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4.1: Don't decrease the value of seq_nr_highest_sent
Cezar Bulinaru <cbulinaru(a)gmail.com>
net: tap: NULL pointer derefence in dev_parse_header_protocol when skb->dev is null
Florian Westphal <fw(a)strlen.de>
netfilter: nf_tables: fix crash when nf_trace is enabled
Qifu Zhang <zhangqifu(a)bytedance.com>
Documentation: ACPI: EINJ: Fix obsolete example
Xiu Jianfeng <xiujianfeng(a)huawei.com>
apparmor: Fix memleak in aa_simple_write_to_buffer()
Xin Xiong <xiongx18(a)fudan.edu.cn>
apparmor: fix reference count leak in aa_pivotroot()
John Johansen <john.johansen(a)canonical.com>
apparmor: fix overlapping attachment computation
John Johansen <john.johansen(a)canonical.com>
apparmor: fix setting unconfined mode on a loaded profile
Tom Rix <trix(a)redhat.com>
apparmor: fix aa_label_asxprint return check
John Johansen <john.johansen(a)canonical.com>
apparmor: Fix failed mount permission check error message
John Johansen <john.johansen(a)canonical.com>
apparmor: fix absroot causing audited secids to begin with =
John Johansen <john.johansen(a)canonical.com>
apparmor: fix quiet_denied for file rules
Marc Kleine-Budde <mkl(a)pengutronix.de>
can: ems_usb: fix clang's -Wunaligned-access warning
Nícolas F. R. A. Prado <nfraprado(a)collabora.com>
dt-bindings: usb: mtk-xhci: Allow wakeup interrupt-names to be optional
Mohan Kumar <mkumard(a)nvidia.com>
ALSA: hda: Fix crash due to jack poll in suspend
Takashi Iwai <tiwai(a)suse.de>
ALSA: usb-audio: More comprehensive mixer map for ASUS ROG Zenith II
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing: Have filter accept "common_cpu" to be consistent
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/probes: Have kprobes and uprobes use $COMM too
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/eprobes: Have event probes be consistent with kprobes and uprobes
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/eprobes: Fix reading of string fields
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/eprobes: Do not hardcode $comm as a string
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/eprobes: Do not allow eprobes to use $stack, or % for regs
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/perf: Fix double put of trace event when init fails
Nadav Amit <namit(a)vmware.com>
x86/kprobes: Fix JNG/JNLE emulation
Zhang Xiaoxu <zhangxiaoxu5(a)huawei.com>
cifs: Fix memory leak on the deferred close
Mauro Carvalho Chehab <mchehab(a)kernel.org>
drm/i915: pass a pointer for tlb seqno at vma_invalidate_tlb()
Chris Wilson <chris.p.wilson(a)intel.com>
drm/i915/gt: Batch TLB invalidations
Chris Wilson <chris.p.wilson(a)intel.com>
drm/i915/gt: Skip TLB invalidations once wedged
Chris Wilson <chris.p.wilson(a)intel.com>
drm/i915/gt: Invalidate TLB of the OA unit at TLB invalidations
Chris Wilson <chris.p.wilson(a)intel.com>
drm/i915/gt: Ignore TLB invalidations on idle engines
Likun Gao <Likun.Gao(a)amd.com>
drm/amdgpu: change vram width algorithm for vram_info v3_0
Filipe Manana <fdmanana(a)suse.com>
btrfs: fix warning during log replay when bumping inode link count
Filipe Manana <fdmanana(a)suse.com>
btrfs: fix lost error handling when looking up extended ref on log replay
Josef Bacik <josef(a)toxicpanda.com>
btrfs: reset RO counter on block group if we fail to relocate
Zixuan Fu <r33s3n6(a)gmail.com>
btrfs: unset reloc control if transaction commit fails in prepare_to_relocate()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: meson-gx: Fix an error handling path in meson_mmc_probe()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: pxamci: Fix an error handling path in pxamci_probe()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: pxamci: Fix another error handling path in pxamci_probe()
Damien Le Moal <damien.lemoal(a)opensource.wdc.com>
ata: libata-eh: Add missing command name
Harald Freudenberger <freude(a)linux.ibm.com>
s390/ap: fix crash on older machines based on QCI info missing
Aurabindo Pillai <aurabindo.pillai(a)amd.com>
drm/amd/display: Check correct bounds for stream encoder instances for DCN303
Alex Deucher <alexander.deucher(a)amd.com>
drm/amdgpu: Only disable prefer_shadow on hawaii
Arunpravin Paneer Selvam <Arunpravin.PaneerSelvam(a)amd.com>
drm/ttm: Fix dummy res NULL ptr deref bug
Karol Herbst <kherbst(a)redhat.com>
drm/nouveau: recognise GA103
Hector Martin <marcan(a)marcan.st>
locking/atomic: Make test_and_*_bit() ordered on failure
Chris Wilson <chris(a)chris-wilson.co.uk>
drm/i915/gem: Remove shared locking on freeing objects
Mikulas Patocka <mpatocka(a)redhat.com>
rds: add missing barrier to release_refill
Aaron Lu <aaron.lu(a)intel.com>
x86/mm: Use proper mask when setting PUD mapping
Sean Christopherson <seanjc(a)google.com>
KVM: Unconditionally get a ref to /dev/kvm module when creating a VM
Jason Gunthorpe <jgg(a)ziepe.ca>
RDMA: Handle the return code from dma_resv_wait_timeout() properly
Christoffer Sandberg <cs(a)tuxedo.de>
ALSA: hda/realtek: Add quirk for Clevo NS50PU, NS70PU
Amadeusz Sławiński <amadeuszx.slawinski(a)linux.intel.com>
ALSA: info: Fix llseek return value when using callback
-------------
Diffstat:
Documentation/admin-guide/sysctl/kernel.rst | 12 +
Documentation/atomic_bitops.txt | 2 +-
Documentation/devicetree/bindings/arm/qcom.yaml | 18 +-
.../bindings/clock/qcom,gcc-msm8996.yaml | 16 +
.../bindings/display/allwinner,sun4i-a10-tcon.yaml | 4 +
.../devicetree/bindings/gpio/gpio-zynq.yaml | 6 +-
.../devicetree/bindings/input/azoteq,iqs7222.yaml | 28 +-
.../devicetree/bindings/opp/opp-v2-kryo-cpu.yaml | 15 +
.../devicetree/bindings/pci/qcom,pcie.yaml | 2 +-
.../bindings/pinctrl/pinctrl-mt8186.yaml | 29 +-
.../bindings/pinctrl/pinctrl-mt8192.yaml | 58 +--
.../bindings/pinctrl/pinctrl-mt8195.yaml | 37 +-
.../bindings/regulator/nxp,pca9450-regulator.yaml | 11 -
.../bindings/spi/qcom,spi-geni-qcom.yaml | 5 +-
.../devicetree/bindings/spi/spi-cadence.yaml | 7 +
.../devicetree/bindings/spi/spi-zynqmp-qspi.yaml | 7 +
.../devicetree/bindings/usb/mediatek,mtk-xhci.yaml | 1 +
Documentation/firmware-guide/acpi/apei/einj.rst | 2 +-
Makefile | 10 +-
arch/arm64/include/asm/kvm_host.h | 4 +
arch/arm64/kvm/arm.c | 3 +-
arch/arm64/kvm/guest.c | 2 +-
arch/arm64/kvm/sys_regs.c | 4 +-
arch/csky/kernel/probes/kprobes.c | 4 +
arch/m68k/coldfire/device.c | 6 +-
arch/mips/cavium-octeon/octeon-platform.c | 3 +-
arch/mips/mm/tlbex.c | 4 +-
arch/nios2/include/asm/entry.h | 3 +-
arch/nios2/include/asm/ptrace.h | 2 +
arch/nios2/kernel/entry.S | 22 +-
arch/nios2/kernel/signal.c | 3 +-
arch/nios2/kernel/syscall_table.c | 1 +
arch/openrisc/include/asm/io.h | 2 +-
arch/openrisc/mm/ioremap.c | 2 +-
arch/powerpc/Makefile | 26 +-
arch/powerpc/include/asm/nmi.h | 2 +
arch/powerpc/kernel/head_book3s_32.S | 4 +-
arch/powerpc/kernel/pci-common.c | 16 +-
arch/powerpc/kernel/prom.c | 7 +
arch/powerpc/kernel/watchdog.c | 21 +-
arch/powerpc/kvm/book3s_hv_p9_entry.c | 13 +-
arch/powerpc/mm/book3s32/mmu.c | 10 +-
arch/powerpc/platforms/Kconfig.cputype | 21 +-
arch/powerpc/platforms/powernv/pci-ioda.c | 2 +
arch/powerpc/platforms/pseries/mobility.c | 43 ++
arch/riscv/boot/dts/canaan/k210.dtsi | 12 +
arch/riscv/boot/dts/sifive/fu740-c000.dtsi | 24 +
arch/riscv/kernel/sys_riscv.c | 5 +-
arch/riscv/kernel/traps.c | 4 +
arch/um/os-Linux/skas/process.c | 17 +-
arch/x86/include/asm/ibt.h | 11 +
arch/x86/kernel/kprobes/core.c | 2 +-
arch/x86/kvm/emulate.c | 3 +-
arch/x86/mm/init_64.c | 2 +-
block/blk-mq.c | 2 +-
drivers/acpi/pci_mcfg.c | 3 +
drivers/acpi/pptt.c | 102 ++---
drivers/acpi/property.c | 8 +-
drivers/ata/libata-eh.c | 1 +
drivers/atm/idt77252.c | 1 +
drivers/block/virtio_blk.c | 24 +-
drivers/block/zram/zcomp.c | 11 +-
drivers/clk/imx/clk-imx93.c | 2 +-
drivers/clk/qcom/clk-alpha-pll.c | 2 +-
drivers/clk/qcom/gcc-ipq8074.c | 1 +
drivers/clk/ti/clk-44xx.c | 210 ++++-----
drivers/clk/ti/clk-54xx.c | 160 +++----
drivers/clk/ti/clkctrl.c | 4 -
drivers/dma/dw-axi-dmac/dw-axi-dmac-platform.c | 11 +
drivers/dma/sprd-dma.c | 5 +-
drivers/dma/tegra186-gpc-dma.c | 26 +-
drivers/gpu/drm/amd/amdgpu/aldebaran.c | 45 +-
drivers/gpu/drm/amd/amdgpu/amdgpu_atomfirmware.c | 2 +-
drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c | 8 +-
drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 2 +
drivers/gpu/drm/amd/amdgpu/amdgpu_reset.h | 1 +
drivers/gpu/drm/amd/amdgpu/amdgpu_vkms.c | 3 +-
drivers/gpu/drm/amd/amdgpu/dce_v10_0.c | 3 +-
drivers/gpu/drm/amd/amdgpu/dce_v11_0.c | 3 +-
drivers/gpu/drm/amd/amdgpu/dce_v6_0.c | 3 +-
drivers/gpu/drm/amd/amdgpu/dce_v8_0.c | 7 +-
drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 7 +-
.../drm/amd/display/dc/dcn303/dcn303_resource.c | 2 +-
drivers/gpu/drm/bridge/lvds-codec.c | 2 +-
drivers/gpu/drm/i915/gem/i915_gem_object.c | 16 +-
drivers/gpu/drm/i915/gem/i915_gem_object_types.h | 3 +-
drivers/gpu/drm/i915/gem/i915_gem_pages.c | 25 +-
drivers/gpu/drm/i915/gt/intel_gt.c | 77 +++-
drivers/gpu/drm/i915/gt/intel_gt.h | 12 +-
drivers/gpu/drm/i915/gt/intel_gt_pm.h | 3 +
drivers/gpu/drm/i915/gt/intel_gt_types.h | 18 +-
drivers/gpu/drm/i915/gt/intel_migrate.c | 23 +-
drivers/gpu/drm/i915/gt/intel_ppgtt.c | 8 +-
drivers/gpu/drm/i915/i915_drv.h | 4 +-
drivers/gpu/drm/i915/i915_vma.c | 33 +-
drivers/gpu/drm/i915/i915_vma.h | 1 +
drivers/gpu/drm/i915/i915_vma_resource.c | 5 +-
drivers/gpu/drm/i915/i915_vma_resource.h | 6 +-
drivers/gpu/drm/imx/dcss/dcss-kms.c | 2 -
drivers/gpu/drm/meson/meson_drv.c | 5 +-
drivers/gpu/drm/meson/meson_viu.c | 22 +-
drivers/gpu/drm/nouveau/nvkm/engine/device/base.c | 22 +
drivers/gpu/drm/sun4i/sun6i_mipi_dsi.c | 10 +-
drivers/gpu/drm/ttm/ttm_bo.c | 2 +-
drivers/hid/hid-multitouch.c | 13 +-
drivers/hwtracing/coresight/coresight-etm4x.h | 3 +-
drivers/i2c/busses/i2c-imx.c | 20 +-
drivers/i2c/busses/i2c-qcom-geni.c | 5 +-
drivers/infiniband/core/umem_dmabuf.c | 8 +-
drivers/infiniband/hw/cxgb4/cm.c | 25 +-
drivers/infiniband/hw/mlx5/main.c | 34 +-
drivers/infiniband/sw/rxe/rxe_loc.h | 1 -
drivers/infiniband/sw/rxe/rxe_mr.c | 199 +++------
drivers/infiniband/sw/rxe/rxe_mw.c | 6 +-
drivers/infiniband/sw/rxe/rxe_param.h | 6 +
drivers/infiniband/sw/rxe/rxe_task.c | 16 +-
drivers/infiniband/sw/rxe/rxe_verbs.c | 39 +-
drivers/infiniband/sw/rxe/rxe_verbs.h | 21 +-
drivers/infiniband/ulp/iser/iser_initiator.c | 7 +-
drivers/input/keyboard/mt6779-keypad.c | 8 +-
drivers/input/misc/iqs7222.c | 178 +++++---
drivers/input/touchscreen/exc3000.c | 7 +-
drivers/iommu/io-pgtable-arm-v7s.c | 75 +++-
drivers/irqchip/irq-tegra.c | 10 +-
drivers/md/md.c | 1 +
drivers/md/raid5.c | 4 +-
drivers/media/platform/qcom/venus/pm_helpers.c | 10 +-
drivers/misc/cxl/irq.c | 1 +
drivers/misc/habanalabs/common/sysfs.c | 2 +
drivers/misc/habanalabs/gaudi/gaudi.c | 50 ++-
drivers/misc/habanalabs/goya/goya_hwmgr.c | 2 +
drivers/misc/uacce/uacce.c | 133 ++++--
drivers/mmc/host/meson-gx-mmc.c | 6 +-
drivers/mmc/host/pxamci.c | 4 +-
drivers/mmc/host/renesas_sdhi.h | 1 +
drivers/mmc/host/renesas_sdhi_core.c | 34 +-
drivers/mmc/host/renesas_sdhi_internal_dmac.c | 6 +
drivers/mmc/host/tmio_mmc.c | 2 +-
drivers/mmc/host/tmio_mmc.h | 6 +-
drivers/mmc/host/tmio_mmc_core.c | 28 +-
drivers/net/can/spi/mcp251x.c | 18 +-
drivers/net/can/usb/ems_usb.c | 2 +-
drivers/net/dsa/microchip/ksz9477.c | 3 +
drivers/net/dsa/mv88e6060.c | 3 +
drivers/net/dsa/ocelot/felix.c | 3 +
drivers/net/dsa/ocelot/felix_vsc9959.c | 491 ++++++++++++++++-----
drivers/net/dsa/ocelot/seville_vsc9953.c | 484 +++++++++++++++-----
drivers/net/dsa/sja1105/sja1105_devlink.c | 2 +-
drivers/net/ethernet/aquantia/atlantic/aq_nic.c | 21 +-
drivers/net/ethernet/broadcom/bgmac.c | 2 +-
drivers/net/ethernet/broadcom/genet/bcmmii.c | 3 +
drivers/net/ethernet/chelsio/cxgb4/t4_msg.h | 2 +-
drivers/net/ethernet/engleder/tsnep_main.c | 8 +-
drivers/net/ethernet/freescale/dpaa2/dpaa2-eth.c | 4 +-
drivers/net/ethernet/freescale/fec_ptp.c | 6 +-
drivers/net/ethernet/intel/i40e/i40e_main.c | 4 +-
drivers/net/ethernet/intel/i40e/i40e_txrx.c | 8 +-
drivers/net/ethernet/intel/iavf/iavf_adminq.c | 15 +-
drivers/net/ethernet/intel/iavf/iavf_main.c | 22 +-
drivers/net/ethernet/intel/ice/ice_fltr.c | 8 +-
drivers/net/ethernet/intel/ice/ice_lib.c | 8 +-
drivers/net/ethernet/intel/ice/ice_main.c | 12 +-
drivers/net/ethernet/intel/ice/ice_switch.c | 9 +-
drivers/net/ethernet/intel/ice/ice_vf_lib.c | 15 +-
drivers/net/ethernet/intel/ice/ice_virtchnl.c | 57 ++-
drivers/net/ethernet/intel/igb/igb.h | 2 +
drivers/net/ethernet/intel/igb/igb_main.c | 12 +-
drivers/net/ethernet/marvell/octeontx2/af/rvu.c | 6 +
.../net/ethernet/marvell/octeontx2/af/rvu_npc.c | 15 +-
.../net/ethernet/marvell/octeontx2/af/rvu_npc_fs.c | 3 +-
.../ethernet/marvell/octeontx2/nic/otx2_common.c | 19 +-
.../ethernet/marvell/octeontx2/nic/otx2_common.h | 1 +
.../net/ethernet/mellanox/mlx5/core/en/tc_tun.c | 4 +-
drivers/net/ethernet/mellanox/mlxsw/spectrum.c | 2 +-
drivers/net/ethernet/moxa/moxart_ether.c | 20 +-
drivers/net/ethernet/mscc/ocelot.c | 51 ++-
drivers/net/ethernet/mscc/ocelot_net.c | 55 +--
drivers/net/ethernet/mscc/ocelot_vsc7514.c | 468 ++++++++++++++++----
drivers/net/ethernet/mscc/vsc7514_regs.c | 26 +-
.../net/ethernet/netronome/nfp/nfp_net_ethtool.c | 2 +
drivers/net/ethernet/stmicro/stmmac/dwmac-intel.c | 1 +
drivers/net/geneve.c | 15 +-
drivers/net/phy/phy-c45.c | 34 +-
drivers/net/phy/phy_device.c | 6 +
drivers/net/plip/plip.c | 2 +-
drivers/net/tap.c | 20 +-
drivers/net/virtio_net.c | 9 +-
drivers/net/vxlan/vxlan_core.c | 2 +-
drivers/ntb/test/ntb_tool.c | 8 +-
drivers/nvme/host/fc.c | 3 +-
drivers/nvme/target/tcp.c | 3 +-
drivers/of/overlay.c | 11 +-
drivers/pci/controller/pci-aardvark.c | 33 +-
drivers/pci/quirks.c | 3 +
drivers/phy/samsung/phy-exynos-pcie.c | 25 +-
drivers/pinctrl/intel/pinctrl-intel.c | 14 +-
drivers/pinctrl/nomadik/pinctrl-nomadik.c | 4 +-
drivers/pinctrl/pinctrl-amd.c | 11 +-
drivers/pinctrl/qcom/pinctrl-msm8916.c | 4 +-
drivers/pinctrl/qcom/pinctrl-sm8250.c | 2 +-
drivers/pinctrl/renesas/pinctrl-rzg2l.c | 2 +
drivers/pinctrl/sunxi/pinctrl-sun50i-h6-r.c | 1 +
drivers/pinctrl/sunxi/pinctrl-sunxi.c | 7 +-
drivers/platform/chrome/cros_ec_proto.c | 8 +-
drivers/rtc/rtc-spear.c | 2 +-
drivers/s390/crypto/ap_bus.c | 3 +
drivers/s390/crypto/ap_bus.h | 4 +
drivers/scsi/lpfc/lpfc_debugfs.c | 20 +-
drivers/scsi/lpfc/lpfc_sli.c | 4 +-
drivers/scsi/scsi_transport_iscsi.c | 2 -
drivers/spi/spi-meson-spicc.c | 129 ++++--
drivers/staging/r8188eu/core/rtw_cmd.c | 15 +-
drivers/staging/r8188eu/core/rtw_efuse.c | 33 +-
drivers/staging/r8188eu/core/rtw_fw.c | 72 ++-
drivers/staging/r8188eu/core/rtw_led.c | 16 +-
drivers/staging/r8188eu/core/rtw_mlme_ext.c | 62 ++-
drivers/staging/r8188eu/core/rtw_pwrctrl.c | 9 +-
drivers/staging/r8188eu/core/rtw_wlan_util.c | 20 +-
drivers/staging/r8188eu/hal/Hal8188ERateAdaptive.c | 21 +-
drivers/staging/r8188eu/hal/HalPhyRf_8188e.c | 21 +-
drivers/staging/r8188eu/hal/HalPwrSeqCmd.c | 9 +-
drivers/staging/r8188eu/hal/hal_com.c | 27 +-
drivers/staging/r8188eu/hal/rtl8188e_cmd.c | 37 +-
drivers/staging/r8188eu/hal/rtl8188e_dm.c | 6 +-
drivers/staging/r8188eu/hal/rtl8188e_hal_init.c | 136 ++++--
drivers/staging/r8188eu/hal/rtl8188e_phycfg.c | 30 +-
drivers/staging/r8188eu/hal/usb_halinit.c | 251 +++++++++--
drivers/staging/r8188eu/hal/usb_ops_linux.c | 33 +-
drivers/staging/r8188eu/include/rtw_io.h | 6 +-
drivers/staging/r8188eu/os_dep/ioctl_linux.c | 47 +-
drivers/staging/r8188eu/os_dep/os_intfs.c | 19 +-
drivers/thunderbolt/tmu.c | 13 +-
drivers/tty/serial/ucc_uart.c | 2 +
drivers/ufs/core/ufshcd.c | 11 +-
drivers/ufs/host/ufs-exynos.c | 17 +-
drivers/ufs/host/ufs-mediatek.c | 60 ++-
drivers/usb/cdns3/cdns3-gadget.c | 2 +-
drivers/usb/dwc2/gadget.c | 3 +-
drivers/usb/gadget/function/uvc_queue.c | 17 +-
drivers/usb/gadget/function/uvc_video.c | 2 +-
drivers/usb/gadget/legacy/inode.c | 1 +
drivers/usb/host/ohci-ppc-of.c | 1 +
drivers/usb/renesas_usbhs/rza.c | 4 +
drivers/vdpa/vdpa_sim/vdpa_sim.c | 4 +-
drivers/vdpa/vdpa_sim/vdpa_sim_blk.c | 6 +
drivers/vfio/vfio.c | 1 +
drivers/video/fbdev/i740fb.c | 9 +-
drivers/virt/vboxguest/vboxguest_linux.c | 9 +-
drivers/virtio/Kconfig | 3 +-
drivers/xen/xenbus/xenbus_dev_frontend.c | 4 +-
fs/btrfs/block-group.c | 4 +-
fs/btrfs/relocation.c | 7 +-
fs/btrfs/tree-log.c | 8 +-
fs/ceph/caps.c | 27 +-
fs/ceph/mds_client.c | 7 +-
fs/ceph/mds_client.h | 6 -
fs/cifs/misc.c | 6 +
fs/cifs/smb2ops.c | 5 +-
fs/ext4/mballoc.c | 21 +-
fs/ext4/namei.c | 7 +-
fs/ext4/resize.c | 10 +
fs/f2fs/f2fs.h | 6 +
fs/f2fs/file.c | 32 +-
fs/f2fs/node.c | 6 +-
fs/f2fs/segment.c | 17 +-
fs/fscache/cookie.c | 7 +-
fs/nfs/nfs4idmap.c | 46 +-
fs/nfs/nfs4proc.c | 20 +-
fs/ntfs3/fslog.c | 2 +-
fs/ntfs3/fsntfs.c | 7 +-
fs/ntfs3/index.c | 2 +-
fs/ntfs3/inode.c | 1 +
fs/ntfs3/super.c | 8 +-
fs/ntfs3/xattr.c | 22 +-
fs/overlayfs/super.c | 7 +-
include/asm-generic/bitops/atomic.h | 6 -
include/linux/bpfptr.h | 8 +-
include/linux/io-pgtable.h | 15 +-
include/linux/nmi.h | 2 +
include/linux/sunrpc/xdr.h | 4 +-
include/linux/sunrpc/xprt.h | 3 +-
include/linux/uacce.h | 6 +-
include/linux/usb/typec_mux.h | 44 +-
include/net/mptcp.h | 4 +
include/net/netns/conntrack.h | 2 +-
include/soc/mscc/ocelot.h | 113 ++++-
include/sound/control.h | 2 +-
include/sound/core.h | 8 +
include/sound/pcm.h | 2 +-
include/uapi/linux/atm_zatm.h | 47 ++
include/uapi/linux/f2fs.h | 2 +-
include/ufs/ufshcd.h | 12 +
kernel/bpf/arraymap.c | 6 +
kernel/bpf/hashtab.c | 8 +-
kernel/bpf/syscall.c | 20 +-
kernel/trace/trace_eprobe.c | 91 +++-
kernel/trace/trace_event_perf.c | 7 +-
kernel/trace/trace_events.c | 1 +
kernel/trace/trace_probe.c | 29 +-
kernel/watchdog.c | 21 +-
lib/list_debug.c | 12 +-
net/can/j1939/socket.c | 5 +-
net/can/j1939/transport.c | 8 +-
net/core/bpf_sk_storage.c | 12 +-
net/core/devlink.c | 4 +-
net/core/gen_stats.c | 2 +-
net/core/rtnetlink.c | 1 +
net/core/sock_map.c | 20 +-
net/dsa/port.c | 7 +-
net/ipv6/ip6_output.c | 3 +-
net/ipv6/ndisc.c | 3 +
net/mptcp/protocol.c | 47 +-
net/mptcp/protocol.h | 13 +-
net/mptcp/subflow.c | 3 +-
net/netfilter/nf_conntrack_ftp.c | 24 +-
net/netfilter/nf_conntrack_h323_main.c | 10 +-
net/netfilter/nf_conntrack_irc.c | 12 +-
net/netfilter/nf_conntrack_sane.c | 68 ++-
net/netfilter/nf_tables_api.c | 74 +++-
net/netfilter/nf_tables_core.c | 21 +-
net/netfilter/nfnetlink.c | 83 +++-
net/netlink/genetlink.c | 6 +-
net/netlink/policy.c | 14 +-
net/qrtr/mhi.c | 12 +-
net/rds/ib_recv.c | 1 +
net/sunrpc/auth.c | 2 +-
net/sunrpc/backchannel_rqst.c | 14 +
net/sunrpc/clnt.c | 1 -
net/sunrpc/sysfs.c | 6 +-
net/sunrpc/xprt.c | 27 +-
net/sunrpc/xprtsock.c | 12 +-
net/vmw_vsock/af_vsock.c | 10 +-
scripts/Makefile.gcc-plugins | 2 +-
scripts/dummy-tools/gcc | 8 +-
scripts/mod/modpost.c | 4 +-
scripts/module.lds.S | 2 +
security/apparmor/apparmorfs.c | 2 +-
security/apparmor/audit.c | 2 +-
security/apparmor/domain.c | 2 +-
security/apparmor/include/lib.h | 5 +
security/apparmor/include/policy.h | 2 +-
security/apparmor/label.c | 13 +-
security/apparmor/mount.c | 8 +-
security/apparmor/policy_unpack.c | 12 +-
sound/core/control.c | 7 +-
sound/core/info.c | 6 +-
sound/core/misc.c | 94 ++++
sound/core/pcm.c | 1 +
sound/core/pcm_lib.c | 2 +-
sound/core/pcm_native.c | 2 +-
sound/core/timer.c | 11 +-
sound/pci/hda/hda_codec.c | 14 +-
sound/pci/hda/patch_realtek.c | 3 +
sound/soc/codecs/lpass-va-macro.c | 11 +-
sound/soc/codecs/nau8821.c | 10 -
sound/soc/codecs/tas2770.c | 98 ++--
sound/soc/codecs/tas2770.h | 5 +
sound/soc/codecs/tlv320aic32x4.c | 9 +
sound/soc/intel/avs/core.c | 1 +
sound/soc/intel/avs/pcm.c | 4 +-
sound/soc/intel/boards/sof_es8336.c | 35 +-
sound/soc/intel/boards/sof_nau8825.c | 10 +-
sound/soc/qcom/qdsp6/q6apm-dai.c | 6 +
sound/soc/sh/rcar/ssiu.c | 2 +
sound/soc/soc-pcm.c | 3 +
sound/soc/sof/debug.c | 6 +-
sound/soc/sof/intel/cnl.c | 37 +-
sound/soc/sof/intel/hda-ipc.c | 39 +-
sound/soc/sof/intel/hda.c | 9 +-
sound/soc/sof/sof-client-probes.c | 4 +
sound/usb/card.c | 8 +
sound/usb/mixer_maps.c | 34 +-
tools/build/feature/test-libcrypto.c | 15 +-
tools/lib/bpf/skel_internal.h | 4 +-
tools/objtool/check.c | 3 +-
tools/perf/tests/switch-tracking.c | 18 +-
tools/perf/util/parse-events.c | 14 +-
tools/perf/util/probe-event.c | 6 +-
tools/testing/cxl/test/cxl.c | 1 -
tools/testing/cxl/test/mock.c | 8 +-
.../ftrace/test.d/kprobe/kprobe_syntax_errors.tc | 1 -
.../net/forwarding/custom_multipath_hash.sh | 24 +-
.../net/forwarding/gre_custom_multipath_hash.sh | 24 +-
.../net/forwarding/ip6gre_custom_multipath_hash.sh | 24 +-
tools/testing/selftests/net/mptcp/mptcp_connect.c | 26 +-
tools/tracing/rtla/Makefile | 4 +-
tools/vm/slabinfo.c | 32 +-
virt/kvm/kvm_main.c | 14 +-
388 files changed, 5447 insertions(+), 2431 deletions(-)
2 years, 4 months
- 7
- 8
[PATCH 5.15 000/242] 5.15.63-rc2 review
by Greg Kroah-Hartman
This is the start of the stable review cycle for the 5.15.63 release.
There are 242 patches in this series, all will be posted as a response
to this one. If anyone has any issues with these being applied, please
let me know.
Responses should be made by Fri, 26 Aug 2022 06:58:31 +0000.
Anything received after that time might be too late.
The whole patch series can be found in one patch at:
https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.15.63-rc…
or in the git tree and branch at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.15.y
and the diffstat can be found below.
thanks,
greg k-h
-------------
Pseudo-Shortlog of commits:
Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
Linux 5.15.63-rc2
Darrick J. Wong <djwong(a)kernel.org>
xfs: reject crazy array sizes being fed to XFS_IOC_GETBMAP*
Eric Sandeen <sandeen(a)redhat.com>
xfs: revert "xfs: actually bump warning counts when we send warnings"
Brian Foster <bfoster(a)redhat.com>
xfs: fix soft lockup via spinning in filestream ag selection loop
Darrick J. Wong <djwong(a)kernel.org>
xfs: fix overfilling of reserve pool
Darrick J. Wong <djwong(a)kernel.org>
xfs: always succeed at setting the reserve pool size
Darrick J. Wong <djwong(a)kernel.org>
xfs: remove infinite loop when reserving free block pool
Darrick J. Wong <djwong(a)kernel.org>
xfs: reserve quota for target dir expansion when renaming files
Darrick J. Wong <djwong(a)kernel.org>
xfs: reserve quota for dir expansion when linking/unlinking files
Brian Foster <bfoster(a)redhat.com>
xfs: flush inodegc workqueue tasks before cancel
Ren Zhijie <renzhijie2(a)huawei.com>
scsi: ufs: ufs-mediatek: Fix build error and type mismatch
Fedor Pchelkin <pchelkin(a)ispras.ru>
can: j1939: j1939_sk_queue_activate_next_locked(): replace WARN_ON_ONCE with netdev_warn_once()
Nathan Chancellor <nathan(a)kernel.org>
MIPS: tlbex: Explicitly compare _PAGE_NO_EXEC against 0
Zheyu Ma <zheyuma97(a)gmail.com>
video: fbdev: i740fb: Check the argument of i740_calc_vclk()
Stanimir Varbanov <stanimir.varbanov(a)linaro.org>
venus: pm_helpers: Fix warning in OPP during probe
Zhouyi Zhou <zhouzhouyi(a)gmail.com>
powerpc/64: Init jump labels before parse_early_param()
Steve French <stfrench(a)microsoft.com>
smb3: check xattr value length earlier
Chao Yu <chao.yu(a)oppo.com>
f2fs: fix to do sanity check on segment type in build_sit_entries()
Chao Yu <chao.yu(a)oppo.com>
f2fs: fix to avoid use f2fs_bug_on() in f2fs_new_node_page()
Takashi Iwai <tiwai(a)suse.de>
ALSA: control: Use deferred fasync helper
Takashi Iwai <tiwai(a)suse.de>
ALSA: timer: Use deferred fasync helper
Takashi Iwai <tiwai(a)suse.de>
ALSA: core: Add async signal helpers
Alexey Kardashevskiy <aik(a)ozlabs.ru>
powerpc/ioda/iommu/debugfs: Generate unique debugfs entries
Miklos Szeredi <mszeredi(a)redhat.com>
ovl: warn if trusted xattr creation fails
Christophe Leroy <christophe.leroy(a)csgroup.eu>
powerpc/32: Don't always pass -mcpu=powerpc to the compiler
Christophe Leroy <christophe.leroy(a)csgroup.eu>
powerpc/32: Set an IBAT covering up to _einittext during init
Laurent Dufour <ldufour(a)linux.ibm.com>
watchdog: export lockup_detector_reconfigure
Xianting Tian <xianting.tian(a)linux.alibaba.com>
RISC-V: Add fast call path of crash_kexec()
Celeste Liu <coelacanthus(a)outlook.com>
riscv: mmap with PROT_WRITE but no PROT_READ is invalid
Conor Dooley <conor.dooley(a)microchip.com>
riscv: dts: canaan: Add k210 topology information
Conor Dooley <conor.dooley(a)microchip.com>
riscv: dts: sifive: Add fu740 topology information
Kuninori Morimoto <kuninori.morimoto.gx(a)renesas.com>
ASoC: rsnd: care default case on rsnd_ssiu_busif_err_irq_ctrl()
Helge Deller <deller(a)gmx.de>
modules: Ensure natural alignment for .altinstructions and __bug_table sections
Yunfei Wang <yf.wang(a)mediatek.com>
iommu/io-pgtable-arm-v7s: Add a quirk to allow pgtable PA up to 35bit
Liang He <windhl(a)126.com>
mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start
Schspa Shi <schspa(a)gmail.com>
vfio: Clear the caps->buf to NULL after free
Fabiano Rosas <farosas(a)linux.ibm.com>
KVM: PPC: Book3S HV: Fix "rm_exit" entry in debugfs timings
Liang He <windhl(a)126.com>
tty: serial: Fix refcount leak bug in ucc_uart.c
Guenter Roeck <linux(a)roeck-us.net>
lib/list_debug.c: Detect uninitialized lists
Kiselev, Oleg <okiselev(a)amazon.com>
ext4: avoid resizing to a partial cluster size
Ye Bin <yebin10(a)huawei.com>
ext4: avoid remove directory when directory is corrupted
Wentao_Liang <Wentao_Liang_g(a)163.com>
drivers:md:fix a potential use-after-free bug
Sagi Grimberg <sagi(a)grimberg.me>
nvmet-tcp: fix lockdep complaint on nvmet_tcp_wq flush during queue teardown
Logan Gunthorpe <logang(a)deltatee.com>
md: Notify sysfs sync_completed in md_reap_sync_thread()
Marek Szyprowski <m.szyprowski(a)samsung.com>
phy: samsung: phy-exynos-pcie: sanitize init/power_on callbacks
Stafford Horne <shorne(a)gmail.com>
openrisc: io: Define iounmap argument as volatile
Uwe Kleine-König <u.kleine-koenig(a)pengutronix.de>
dmaengine: sprd: Cleanup in .remove() after pm_runtime_get_sync() failed
Steven Rostedt (Google) <rostedt(a)goodmis.org>
selftests/kprobe: Do not test for GRP/ without event failures
Liao Chang <liaochang1(a)huawei.com>
csky/kprobe: reclaim insn_slot on kprobe unregistration
Bob Pearson <rpearsonhpe(a)gmail.com>
RDMA/rxe: Limit the number of calls to each tasklet
Ben Dooks <ben.dooks(a)sifive.com>
dmaengine: dw-axi-dmac: ignore interrupt if no descriptor
Ben Dooks <ben.dooks(a)sifive.com>
dmaengine: dw-axi-dmac: do not print NULL LLI during error
Jason A. Donenfeld <Jason(a)zx2c4.com>
um: add "noreboot" command line option for PANIC_TIMEOUT=-1 setups
Huacai Chen <chenhuacai(a)kernel.org>
PCI/ACPI: Guard ARM64-specific mcfg_quirks
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
cxl: Fix a memory leak in an error handling path
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
pinctrl: intel: Check against matching data instead of ACPI companion
Wolfram Sang <wsa+renesas(a)sang-engineering.com>
mmc: tmio: avoid glitches when resetting
Oded Gabbay <ogabbay(a)kernel.org>
habanalabs/gaudi: mask constant value before cast
Ofir Bitton <obitton(a)habana.ai>
habanalabs/gaudi: fix shift out of bounds
Nick Desaulniers <ndesaulniers(a)google.com>
coresight: etm4x: avoid build failure with unrolled loops
Jozef Martiniak <jomajm(a)gmail.com>
gadgetfs: ep_io - wait until IRQ finishes
James Smart <jsmart2021(a)gmail.com>
scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE
James Smart <jsmart2021(a)gmail.com>
scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input
Vladimir Zapolskiy <vladimir.zapolskiy(a)linaro.org>
clk: qcom: clk-alpha-pll: fix clk_trion_pll_configure description
Sergey Senozhatsky <senozhatsky(a)chromium.org>
zram: do not lookup algorithm in backends table
Jean-Philippe Brucker <jean-philippe(a)linaro.org>
uacce: Handle parent device removal or parent driver module rmmod
Robert Marko <robimarko(a)gmail.com>
clk: qcom: ipq8074: dont disable gcc_sleep_clk_src
Pascal Terjan <pterjan(a)google.com>
vboxguest: Do not use devm for irq
Amelie Delaunay <amelie.delaunay(a)foss.st.com>
usb: dwc2: gadget: remove D+ pull-up while no vbus with usb-role-switch
Liang He <windhl(a)126.com>
usb: renesas: Fix refcount leak bug
Liang He <windhl(a)126.com>
usb: host: ohci-ppc-of: Fix refcount leak bug
Po-Wen Kao <powen.kao(a)mediatek.com>
scsi: ufs: ufs-mediatek: Fix the timing of configuring device regulators
Tony Lindgren <tony(a)atomide.com>
clk: ti: Stop using legacy clkctrl names for omap4 and 5
Sai Prakash Ranjan <quic_saipraka(a)quicinc.com>
drm/meson: Fix overflow implicit truncation warnings
Sai Prakash Ranjan <quic_saipraka(a)quicinc.com>
irqchip/tegra: Fix overflow implicit truncation warnings
Pali Rohár <pali(a)kernel.org>
PCI: aardvark: Fix reporting Slot capabilities on emulated bridge
Michael Grzeschik <m.grzeschik(a)pengutronix.de>
usb: gadget: uvc: call uvc uvcg_warn on completed status instead of uvcg_info
Michael Grzeschik <m.grzeschik(a)pengutronix.de>
usb: gadget: uvc: calculate the number of request depending on framesize
Frank Li <Frank.Li(a)nxp.com>
usb: cdns3: fix random warning message when driver load
Frank Li <Frank.Li(a)nxp.com>
usb: cdns3 fix use-after-free at workaround 2
Tzung-Bi Shih <tzungbi(a)kernel.org>
platform/chrome: cros_ec_proto: don't show MKBP version if unsupported
Pavan Chebbi <pavan.chebbi(a)broadcom.com>
PCI: Add ACS quirk for Broadcom BCM5750x NICs
Tao Jin <tao-j(a)outlook.com>
HID: multitouch: new device class fix Lenovo X12 trackpad sticky
Oliver Upton <oliver.upton(a)linux.dev>
KVM: arm64: Reject 32bit user PSTATE on asymmetric systems
Oliver Upton <oliver.upton(a)linux.dev>
KVM: arm64: Treat PMCR_EL1.LC as RES1 on asymmetric systems
Maxim Kochetkov <fido_max(a)inbox.ru>
net: qrtr: start MHI channel after endpoit creation
Samuel Holland <samuel(a)sholland.org>
drm/sun4i: dsi: Prevent underflow when computing packet sizes
Liang He <windhl(a)126.com>
drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors()
Takashi Iwai <tiwai(a)suse.de>
ASoC: SOF: Intel: hda: Fix potential buffer overflow by snprintf()
Ranjani Sridharan <ranjani.sridharan(a)linux.intel.com>
ASoC: SOF: Intel: hda: Define rom_status_reg in sof_intel_dsp_desc
Laurentiu Palcu <laurentiu.palcu(a)oss.nxp.com>
drm/imx/dcss: get rid of HPD warning message
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/eprobes: Fix reading of string fields
Andrew Donnellan <ajd(a)linux.ibm.com>
gcc-plugins: Undefine LATENT_ENTROPY_PLUGIN when plugin disabled for a file
Masahiro Yamada <masahiroy(a)kernel.org>
kbuild: fix the modules order between drivers and libs
Lin Ma <linma(a)zju.edu.cn>
igb: Add lock to avoid data race
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove()
Csókás Bence <csokas.bence(a)prolan.hu>
fec: Fix timer capture timing in `fec_ptp_enable_pps()`
Alan Brady <alan.brady(a)intel.com>
i40e: Fix to stop tx_timeout recovery if GLOBR fails
Frieder Schrempf <frieder.schrempf(a)kontron.de>
regulator: pca9450: Remove restrictions for regulator-name
Uwe Kleine-König <u.kleine-koenig(a)pengutronix.de>
i2c: imx: Make sure to unregister adapter on remove()
Grzegorz Siwik <grzegorz.siwik(a)intel.com>
ice: Ignore EEXIST when setting promisc mode
Rustam Subkhankulov <subkhankulov(a)ispras.ru>
net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions()
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: dsa: don't warn in dsa_port_set_state_now() when driver doesn't support it
Jakub Kicinski <kuba(a)kernel.org>
net: genl: fix error path memory leak in policy dumping
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: dsa: felix: fix ethtool 256-511 and 512-1023 TX packet counters
Arun Ramadoss <arun.ramadoss(a)microchip.com>
net: dsa: microchip: ksz9477: fix fdb_dump last invalid entry
Xin Xiong <xiongx18(a)fudan.edu.cn>
net: fix potential refcount leak in ndisc_router_discovery()
Sergei Antonov <saproj(a)gmail.com>
net: moxa: pass pdev instead of ndev to DMA functions
Amit Cohen <amcohen(a)nvidia.com>
mlxsw: spectrum: Clear PTP configuration after unregistering the netdevice
Sergei Antonov <saproj(a)gmail.com>
net: dsa: mv88e6060: prevent crash on an unused port
Xin Xiong <xiongx18(a)fudan.edu.cn>
net/sunrpc: fix potential memory leaks in rpc_sysfs_xprt_state_change()
Neil Armstrong <narmstrong(a)baylibre.com>
spi: meson-spicc: add local pow2 clock ops to preserve rate between messages
Michael Ellerman <mpe(a)ellerman.id.au>
powerpc/pci: Fix get_phb_number() locking
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specified
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: disallow NFT_SET_ELEM_CATCHALL and NFT_SET_ELEM_INTERVAL_END
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval flags
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT flag
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: really skip inactive sets when allocating name
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: possible module reference underflow in error path
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: disallow NFTA_SET_ELEM_KEY_END with NFT_SET_ELEM_INTERVAL_END flag
Dan Carpenter <dan.carpenter(a)oracle.com>
fs/ntfs3: uninitialized variable in ntfs_set_acl_ex()
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: use READ_ONCE and WRITE_ONCE for shared generation id access
Philipp Zabel <p.zabel(a)pengutronix.de>
ASoC: codec: tlv320aic32x4: fix mono playback via I2S
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Fix handling of mute/unmute
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Drop conflicting set_bias_level power setting
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Allow mono streams
Martin Povišer <povik+lin(a)cutebit.org>
ASoC: tas2770: Set correct FSYNC polarity
Takashi Iwai <tiwai(a)suse.de>
ASoC: SOF: debug: Fix potential buffer overflow by snprintf()
Przemyslaw Patynowski <przemyslawx.patynowski(a)intel.com>
iavf: Fix reset error handling
Przemyslaw Patynowski <przemyslawx.patynowski(a)intel.com>
iavf: Fix adminq error handling
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: add force_successful_syscall_return()
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: restarts apply only to the first sigframe we build...
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: fix syscall restart checks
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: traced syscall does need to check the syscall number
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: don't leave NULLs in sys_call_table[]
Al Viro <viro(a)zeniv.linux.org.uk>
nios2: page fault et.al. are *not* restartable syscalls...
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Fix missing i_op in ntfs_read_mft
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Do not change mode if ntfs_set_ea failed
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Fix double free on remount
Dan Carpenter <dan.carpenter(a)oracle.com>
fs/ntfs3: Don't clear upper bits accidentally in log_replay()
Pavel Skripkin <paskripkin(a)gmail.com>
fs/ntfs3: Fix NULL deref in ntfs_update_mftmirr
Yan Lei <chinayanlei2002(a)163.com>
fs/ntfs3: Fix using uninitialized value n when calling indx_read
Chen Lin <chen45464546(a)163.com>
dpaa2-eth: trace the allocated address instead of page struct
Adrian Hunter <adrian.hunter(a)intel.com>
perf tests: Fix Track with sched_switch test for hybrid case
Adrian Hunter <adrian.hunter(a)intel.com>
perf parse-events: Fix segfault when event parser gets an error
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
perf probe: Fix an error handling path in 'parse_perf_probe_command()'
Matthias May <matthias.may(a)westermo.com>
geneve: fix TOS inheriting for ipv4
Duoming Zhou <duoming(a)zju.edu.cn>
atm: idt77252: fix use-after-free bugs caused by tst_timer
Dan Carpenter <dan.carpenter(a)oracle.com>
xen/xenbus: fix return type in xenbus_file_read()
Yu Xiao <yu.xiao(a)corigine.com>
nfp: ethtool: fix the display error of `ethtool -m DEVNAME`
Dan Carpenter <dan.carpenter(a)oracle.com>
NTB: ntb_tool: uninitialized heap data in tool_fn_write()
Roberto Sassu <roberto.sassu(a)huawei.com>
tools build: Switch to new openssl API for test-libcrypto
Ondrej Mosnacek <omosnace(a)redhat.com>
kbuild: dummy-tools: avoid tmpdir leak in dummy gcc
Jeff Layton <jlayton(a)kernel.org>
ceph: don't leak snap_rwsem in handle_cap_grant
Yuanzheng Song <songyuanzheng(a)huawei.com>
tools/vm/slabinfo: use alphabetic order when two values are equal
Luís Henriques <lhenriques(a)suse.de>
ceph: use correct index when encoding client supported features
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
spi: dt-bindings: zynqmp-qspi: add missing 'required'
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
spi: dt-bindings: cadence: add missing 'required'
Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org>
dt-bindings: clock: qcom,gcc-msm8996: add more GCC clock sources
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix MSM8994 boards compatibles
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix MSM8916 MTP compatibles
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix Longcheer L8150 compatibles
Michal Simek <michal.simek(a)xilinx.com>
dt-bindings: gpio: zynq: Add missing compatible strings
Peilin Ye <peilin.ye(a)bytedance.com>
vsock: Set socket state back to SS_UNCONNECTED in vsock_connect_timeout()
Peilin Ye <peilin.ye(a)bytedance.com>
vsock: Fix memory leak in vsock_connect()
Florian Westphal <fw(a)strlen.de>
plip: avoid rcu debug splat
Matthias May <matthias.may(a)westermo.com>
ipv6: do not use RT_TOS for IPv6 flowlabel
Matthias May <matthias.may(a)westermo.com>
mlx5: do not use RT_TOS for IPv6 flowlabel
Matthias May <matthias.may(a)westermo.com>
geneve: do not use RT_TOS for IPv6 flowlabel
Sakari Ailus <sakari.ailus(a)linux.intel.com>
ACPI: property: Return type of acpi_add_nondev_subnodes() should be bool
Subbaraya Sundeep <sbhatta(a)marvell.com>
octeontx2-af: Fix key checking for source mac
Subbaraya Sundeep <sbhatta(a)marvell.com>
octeontx2-af: Fix mcam entry resource leak
Harman Kalra <hkalra(a)marvell.com>
octeontx2-af: suppress external profile loading warning
Stanislaw Kardach <skardach(a)marvell.com>
octeontx2-af: Apply tx nibble fixup always
Naveen Mamindlapalli <naveenm(a)marvell.com>
octeontx2-pf: Fix NIX_AF_TL3_TL2X_LINKX_CFG register configuration
Miaoqian Lin <linmq006(a)gmail.com>
Input: exc3000 - fix return value check of wait_for_completion_timeout
Jianhua Lu <lujianhua000(a)gmail.com>
pinctrl: qcom: sm8250: Fix PDC map
Samuel Holland <samuel(a)sholland.org>
pinctrl: sunxi: Add I/O bias setting for H6 R-PIO
Basavaraj Natikar <Basavaraj.Natikar(a)amd.com>
pinctrl: amd: Don't save/restore interrupt status and wake status bits
Nikita Travkin <nikita(a)trvn.ru>
pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed
Miaoqian Lin <linmq006(a)gmail.com>
pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: arm: qcom: fix Alcatel OneTouch Idol 3 compatibles
Ido Schimmel <idosch(a)nvidia.com>
selftests: forwarding: Fix failing tests with old libnet
Sandor Bodo-Merle <sbodomerle(a)gmail.com>
net: bgmac: Fix a BUG triggered by wrong bytes_compl
Florian Fainelli <f.fainelli(a)gmail.com>
net: bcmgenet: Indicate MAC is in charge of PHY PM
Florian Fainelli <f.fainelli(a)gmail.com>
net: phy: Warn about incorrect mdio_bus_phy_resume() state
Ido Schimmel <idosch(a)nvidia.com>
devlink: Fix use-after-free after a failed reload
Xuan Zhuo <xuanzhuo(a)linux.alibaba.com>
virtio_net: fix memory leak inside XPD_TX with mergeable
Trond Myklebust <trond.myklebust(a)hammerspace.com>
SUNRPC: Reinitialise the backchannel request buffers before reuse
Chuck Lever <chuck.lever(a)oracle.com>
SUNRPC: Fix xdr_encode_bool()
Dan Aloni <dan.aloni(a)vastdata.com>
sunrpc: fix expiry of auth creds
Randy Dunlap <rdunlap(a)infradead.org>
m68k: coldfire/device.c: protect FLEXCAN blocks
Chia-Lin Kao (AceLan) <acelan.kao(a)canonical.com>
net: atlantic: fix aq_vec index out of range error
Fedor Pchelkin <pchelkin(a)ispras.ru>
can: j1939: j1939_session_destroy(): fix memory leak of skbs
Sebastian Würl <sebastian.wuerl(a)ororatech.com>
can: mcp251x: Fix race condition on receive interrupt
Hou Tao <houtao1(a)huawei.com>
bpf: Check the validity of max_rdwr_access for sock local storage map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for sock{map,hash} iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for sock local storage map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for hash map iterator
Hou Tao <houtao1(a)huawei.com>
bpf: Acquire map uref in .init_seq_private for array map iterator
Kumar Kartikeya Dwivedi <memxor(a)gmail.com>
bpf: Don't reinit map value in prealloc_lru_pop
Jinghao Jia <jinghao(a)linux.ibm.com>
BPF: Fix potential bad pointer dereference in bpf_sys_bpf()
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4/pnfs: Fix a use-after-free bug in open
Zhang Xianwei <zhang.xianwei8(a)zte.com.cn>
NFSv4.1: RECLAIM_COMPLETE must handle EACCES
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4: Fix races in the legacy idmapper upcall
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4.1: Handle NFS4ERR_DELAY replies to OP_SEQUENCE correctly
Trond Myklebust <trond.myklebust(a)hammerspace.com>
NFSv4.1: Don't decrease the value of seq_nr_highest_sent
Qifu Zhang <zhangqifu(a)bytedance.com>
Documentation: ACPI: EINJ: Fix obsolete example
Xiu Jianfeng <xiujianfeng(a)huawei.com>
apparmor: Fix memleak in aa_simple_write_to_buffer()
Xin Xiong <xiongx18(a)fudan.edu.cn>
apparmor: fix reference count leak in aa_pivotroot()
John Johansen <john.johansen(a)canonical.com>
apparmor: fix overlapping attachment computation
John Johansen <john.johansen(a)canonical.com>
apparmor: fix setting unconfined mode on a loaded profile
Tom Rix <trix(a)redhat.com>
apparmor: fix aa_label_asxprint return check
John Johansen <john.johansen(a)canonical.com>
apparmor: Fix failed mount permission check error message
John Johansen <john.johansen(a)canonical.com>
apparmor: fix absroot causing audited secids to begin with =
John Johansen <john.johansen(a)canonical.com>
apparmor: fix quiet_denied for file rules
Marc Kleine-Budde <mkl(a)pengutronix.de>
can: ems_usb: fix clang's -Wunaligned-access warning
Nícolas F. R. A. Prado <nfraprado(a)collabora.com>
dt-bindings: usb: mtk-xhci: Allow wakeup interrupt-names to be optional
Takashi Iwai <tiwai(a)suse.de>
ALSA: usb-audio: More comprehensive mixer map for ASUS ROG Zenith II
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing: Have filter accept "common_cpu" to be consistent
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/probes: Have kprobes and uprobes use $COMM too
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/eprobes: Have event probes be consistent with kprobes and uprobes
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/eprobes: Do not hardcode $comm as a string
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/eprobes: Do not allow eprobes to use $stack, or % for regs
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing/perf: Fix double put of trace event when init fails
Nadav Amit <namit(a)vmware.com>
x86/kprobes: Fix JNG/JNLE emulation
Zhang Xiaoxu <zhangxiaoxu5(a)huawei.com>
cifs: Fix memory leak on the deferred close
Filipe Manana <fdmanana(a)suse.com>
btrfs: fix lost error handling when looking up extended ref on log replay
Josef Bacik <josef(a)toxicpanda.com>
btrfs: reset RO counter on block group if we fail to relocate
Zixuan Fu <r33s3n6(a)gmail.com>
btrfs: unset reloc control if transaction commit fails in prepare_to_relocate()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: meson-gx: Fix an error handling path in meson_mmc_probe()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: pxamci: Fix an error handling path in pxamci_probe()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
mmc: pxamci: Fix another error handling path in pxamci_probe()
Damien Le Moal <damien.lemoal(a)opensource.wdc.com>
ata: libata-eh: Add missing command name
Aurabindo Pillai <aurabindo.pillai(a)amd.com>
drm/amd/display: Check correct bounds for stream encoder instances for DCN303
Arunpravin Paneer Selvam <Arunpravin.PaneerSelvam(a)amd.com>
drm/ttm: Fix dummy res NULL ptr deref bug
Karol Herbst <kherbst(a)redhat.com>
drm/nouveau: recognise GA103
Hector Martin <marcan(a)marcan.st>
locking/atomic: Make test_and_*_bit() ordered on failure
Mikulas Patocka <mpatocka(a)redhat.com>
rds: add missing barrier to release_refill
Aaron Lu <aaron.lu(a)intel.com>
x86/mm: Use proper mask when setting PUD mapping
Sean Christopherson <seanjc(a)google.com>
KVM: Unconditionally get a ref to /dev/kvm module when creating a VM
Christoffer Sandberg <cs(a)tuxedo.de>
ALSA: hda/realtek: Add quirk for Clevo NS50PU, NS70PU
Amadeusz Sławiński <amadeuszx.slawinski(a)linux.intel.com>
ALSA: info: Fix llseek return value when using callback
-------------
Diffstat:
Documentation/atomic_bitops.txt | 2 +-
Documentation/devicetree/bindings/arm/qcom.yaml | 18 +-
.../bindings/clock/qcom,gcc-msm8996.yaml | 16 ++
.../devicetree/bindings/gpio/gpio-zynq.yaml | 6 +-
.../bindings/regulator/nxp,pca9450-regulator.yaml | 11 --
.../devicetree/bindings/spi/spi-cadence.yaml | 7 +
.../devicetree/bindings/spi/spi-zynqmp-qspi.yaml | 7 +
.../devicetree/bindings/usb/mediatek,mtk-xhci.yaml | 1 +
Documentation/firmware-guide/acpi/apei/einj.rst | 2 +-
Makefile | 10 +-
arch/arm64/include/asm/kvm_host.h | 4 +
arch/arm64/kvm/arm.c | 3 +-
arch/arm64/kvm/guest.c | 2 +-
arch/arm64/kvm/sys_regs.c | 4 +-
arch/csky/kernel/probes/kprobes.c | 4 +
arch/m68k/coldfire/device.c | 6 +-
arch/mips/cavium-octeon/octeon-platform.c | 3 +-
arch/mips/mm/tlbex.c | 4 +-
arch/nios2/include/asm/entry.h | 3 +-
arch/nios2/include/asm/ptrace.h | 2 +
arch/nios2/kernel/entry.S | 22 ++-
arch/nios2/kernel/signal.c | 3 +-
arch/nios2/kernel/syscall_table.c | 1 +
arch/openrisc/include/asm/io.h | 2 +-
arch/openrisc/mm/ioremap.c | 2 +-
arch/powerpc/Makefile | 26 +--
arch/powerpc/kernel/head_book3s_32.S | 4 +-
arch/powerpc/kernel/pci-common.c | 16 +-
arch/powerpc/kernel/prom.c | 7 +
arch/powerpc/kvm/book3s_hv_p9_entry.c | 13 +-
arch/powerpc/mm/book3s32/mmu.c | 10 +-
arch/powerpc/platforms/Kconfig.cputype | 21 ++-
arch/powerpc/platforms/powernv/pci-ioda.c | 2 +
arch/riscv/boot/dts/canaan/k210.dtsi | 12 ++
arch/riscv/boot/dts/sifive/fu740-c000.dtsi | 24 +++
arch/riscv/kernel/sys_riscv.c | 5 +-
arch/riscv/kernel/traps.c | 4 +
arch/um/os-Linux/skas/process.c | 17 +-
arch/x86/kernel/kprobes/core.c | 2 +-
arch/x86/mm/init_64.c | 2 +-
drivers/acpi/pci_mcfg.c | 3 +
drivers/acpi/property.c | 8 +-
drivers/ata/libata-eh.c | 1 +
drivers/atm/idt77252.c | 1 +
drivers/block/zram/zcomp.c | 11 +-
drivers/clk/qcom/clk-alpha-pll.c | 2 +-
drivers/clk/qcom/gcc-ipq8074.c | 1 +
drivers/clk/ti/clk-44xx.c | 210 ++++++++++-----------
drivers/clk/ti/clk-54xx.c | 160 ++++++++--------
drivers/clk/ti/clkctrl.c | 4 -
drivers/dma/dw-axi-dmac/dw-axi-dmac-platform.c | 11 ++
drivers/dma/sprd-dma.c | 5 +-
.../drm/amd/display/dc/dcn303/dcn303_resource.c | 2 +-
drivers/gpu/drm/imx/dcss/dcss-kms.c | 2 -
drivers/gpu/drm/meson/meson_drv.c | 5 +-
drivers/gpu/drm/meson/meson_viu.c | 22 +--
drivers/gpu/drm/nouveau/nvkm/engine/device/base.c | 22 +++
drivers/gpu/drm/sun4i/sun6i_mipi_dsi.c | 10 +-
drivers/gpu/drm/ttm/ttm_bo.c | 2 +-
drivers/hid/hid-multitouch.c | 13 +-
drivers/hwtracing/coresight/coresight-etm4x.h | 3 +-
drivers/i2c/busses/i2c-imx.c | 20 +-
drivers/infiniband/sw/rxe/rxe_param.h | 6 +
drivers/infiniband/sw/rxe/rxe_task.c | 16 +-
drivers/input/touchscreen/exc3000.c | 7 +-
drivers/iommu/io-pgtable-arm-v7s.c | 75 ++++++--
drivers/irqchip/irq-tegra.c | 10 +-
drivers/md/md.c | 1 +
drivers/md/raid5.c | 2 +-
drivers/media/platform/qcom/venus/pm_helpers.c | 10 +-
drivers/misc/cxl/irq.c | 1 +
drivers/misc/habanalabs/gaudi/gaudi.c | 24 +--
drivers/misc/uacce/uacce.c | 133 ++++++++-----
drivers/mmc/host/meson-gx-mmc.c | 6 +-
drivers/mmc/host/pxamci.c | 4 +-
drivers/mmc/host/renesas_sdhi_core.c | 29 ++-
drivers/mmc/host/tmio_mmc.c | 2 +-
drivers/mmc/host/tmio_mmc.h | 6 +-
drivers/mmc/host/tmio_mmc_core.c | 28 ++-
drivers/net/can/spi/mcp251x.c | 18 +-
drivers/net/can/usb/ems_usb.c | 2 +-
drivers/net/dsa/microchip/ksz9477.c | 3 +
drivers/net/dsa/mv88e6060.c | 3 +
drivers/net/dsa/ocelot/felix_vsc9959.c | 3 +-
drivers/net/dsa/sja1105/sja1105_devlink.c | 2 +-
drivers/net/ethernet/aquantia/atlantic/aq_nic.c | 21 +--
drivers/net/ethernet/broadcom/bgmac.c | 2 +-
drivers/net/ethernet/broadcom/genet/bcmmii.c | 3 +
drivers/net/ethernet/freescale/dpaa2/dpaa2-eth.c | 4 +-
drivers/net/ethernet/freescale/fec_ptp.c | 6 +-
drivers/net/ethernet/intel/i40e/i40e_main.c | 4 +-
drivers/net/ethernet/intel/iavf/iavf_adminq.c | 15 +-
drivers/net/ethernet/intel/iavf/iavf_main.c | 9 +-
drivers/net/ethernet/intel/ice/ice_switch.c | 2 +-
drivers/net/ethernet/intel/igb/igb.h | 2 +
drivers/net/ethernet/intel/igb/igb_main.c | 12 +-
drivers/net/ethernet/marvell/octeontx2/af/rvu.c | 6 +
.../net/ethernet/marvell/octeontx2/af/rvu_npc.c | 15 +-
.../net/ethernet/marvell/octeontx2/af/rvu_npc_fs.c | 3 +-
.../ethernet/marvell/octeontx2/nic/otx2_common.c | 19 +-
.../ethernet/marvell/octeontx2/nic/otx2_common.h | 1 +
.../net/ethernet/mellanox/mlx5/core/en/tc_tun.c | 4 +-
drivers/net/ethernet/mellanox/mlxsw/spectrum.c | 2 +-
drivers/net/ethernet/moxa/moxart_ether.c | 20 +-
.../net/ethernet/netronome/nfp/nfp_net_ethtool.c | 2 +
drivers/net/ethernet/stmicro/stmmac/dwmac-intel.c | 1 +
drivers/net/geneve.c | 15 +-
drivers/net/phy/phy_device.c | 6 +
drivers/net/plip/plip.c | 2 +-
drivers/net/virtio_net.c | 5 +-
drivers/ntb/test/ntb_tool.c | 8 +-
drivers/nvme/target/tcp.c | 3 +-
drivers/pci/controller/pci-aardvark.c | 33 +++-
drivers/pci/quirks.c | 3 +
drivers/phy/samsung/phy-exynos-pcie.c | 25 +--
drivers/pinctrl/intel/pinctrl-intel.c | 14 +-
drivers/pinctrl/nomadik/pinctrl-nomadik.c | 4 +-
drivers/pinctrl/pinctrl-amd.c | 11 +-
drivers/pinctrl/qcom/pinctrl-msm8916.c | 4 +-
drivers/pinctrl/qcom/pinctrl-sm8250.c | 2 +-
drivers/pinctrl/sunxi/pinctrl-sun50i-h6-r.c | 1 +
drivers/pinctrl/sunxi/pinctrl-sunxi.c | 7 +-
drivers/platform/chrome/cros_ec_proto.c | 8 +-
drivers/scsi/lpfc/lpfc_debugfs.c | 20 +-
drivers/scsi/lpfc/lpfc_sli.c | 4 +-
drivers/scsi/ufs/ufs-mediatek.c | 60 +++++-
drivers/spi/spi-meson-spicc.c | 129 ++++++++++---
drivers/tty/serial/ucc_uart.c | 2 +
drivers/usb/cdns3/cdns3-gadget.c | 4 +-
drivers/usb/dwc2/gadget.c | 3 +-
drivers/usb/gadget/function/uvc_queue.c | 17 +-
drivers/usb/gadget/function/uvc_video.c | 2 +-
drivers/usb/gadget/legacy/inode.c | 1 +
drivers/usb/host/ohci-ppc-of.c | 1 +
drivers/usb/renesas_usbhs/rza.c | 4 +
drivers/vfio/vfio.c | 1 +
drivers/video/fbdev/i740fb.c | 9 +-
drivers/virt/vboxguest/vboxguest_linux.c | 9 +-
drivers/xen/xenbus/xenbus_dev_frontend.c | 4 +-
fs/btrfs/block-group.c | 4 +-
fs/btrfs/relocation.c | 7 +-
fs/btrfs/tree-log.c | 4 +-
fs/ceph/caps.c | 27 ++-
fs/ceph/mds_client.c | 7 +-
fs/ceph/mds_client.h | 6 -
fs/cifs/misc.c | 6 +
fs/cifs/smb2ops.c | 5 +-
fs/ext4/namei.c | 7 +-
fs/ext4/resize.c | 10 +
fs/f2fs/node.c | 6 +-
fs/f2fs/segment.c | 13 ++
fs/nfs/nfs4idmap.c | 46 ++---
fs/nfs/nfs4proc.c | 20 +-
fs/ntfs3/fslog.c | 2 +-
fs/ntfs3/fsntfs.c | 7 +-
fs/ntfs3/index.c | 2 +-
fs/ntfs3/inode.c | 1 +
fs/ntfs3/super.c | 8 +-
fs/ntfs3/xattr.c | 22 +--
fs/overlayfs/super.c | 7 +-
fs/xfs/xfs_filestream.c | 7 +-
fs/xfs/xfs_fsops.c | 50 ++---
fs/xfs/xfs_icache.c | 22 +--
fs/xfs/xfs_inode.c | 79 +++++---
fs/xfs/xfs_ioctl.c | 2 +-
fs/xfs/xfs_trans.c | 86 +++++++++
fs/xfs/xfs_trans.h | 3 +
fs/xfs/xfs_trans_dquot.c | 1 -
include/asm-generic/bitops/atomic.h | 6 -
include/linux/bpfptr.h | 8 +-
include/linux/io-pgtable.h | 15 +-
include/linux/nmi.h | 2 +
include/linux/sunrpc/xdr.h | 4 +-
include/linux/uacce.h | 6 +-
include/sound/control.h | 2 +-
include/sound/core.h | 8 +
kernel/bpf/arraymap.c | 6 +
kernel/bpf/hashtab.c | 8 +-
kernel/trace/trace_eprobe.c | 88 ++++++++-
kernel/trace/trace_event_perf.c | 7 +-
kernel/trace/trace_events.c | 1 +
kernel/trace/trace_probe.c | 29 +--
kernel/watchdog.c | 21 ++-
lib/list_debug.c | 12 +-
net/can/j1939/socket.c | 5 +-
net/can/j1939/transport.c | 8 +-
net/core/bpf_sk_storage.c | 12 +-
net/core/devlink.c | 4 +-
net/core/sock_map.c | 20 +-
net/dsa/port.c | 7 +-
net/ipv6/ip6_output.c | 3 +-
net/ipv6/ndisc.c | 3 +
net/netfilter/nf_tables_api.c | 70 +++++--
net/netlink/genetlink.c | 6 +-
net/netlink/policy.c | 14 +-
net/qrtr/mhi.c | 12 +-
net/rds/ib_recv.c | 1 +
net/sunrpc/auth.c | 2 +-
net/sunrpc/backchannel_rqst.c | 14 ++
net/sunrpc/sysfs.c | 6 +-
net/vmw_vsock/af_vsock.c | 10 +-
scripts/Makefile.gcc-plugins | 2 +-
.../dummy-plugin-dir/include/plugin-version.h | 0
scripts/dummy-tools/gcc | 8 +-
scripts/module.lds.S | 2 +
security/apparmor/apparmorfs.c | 2 +-
security/apparmor/audit.c | 2 +-
security/apparmor/domain.c | 2 +-
security/apparmor/include/lib.h | 5 +
security/apparmor/include/policy.h | 2 +-
security/apparmor/label.c | 13 +-
security/apparmor/mount.c | 8 +-
security/apparmor/policy_unpack.c | 12 +-
sound/core/control.c | 7 +-
sound/core/info.c | 6 +-
sound/core/misc.c | 94 +++++++++
sound/core/timer.c | 11 +-
sound/pci/hda/patch_realtek.c | 1 +
sound/soc/codecs/tas2770.c | 98 +++++-----
sound/soc/codecs/tas2770.h | 5 +
sound/soc/codecs/tlv320aic32x4.c | 9 +
sound/soc/sh/rcar/ssiu.c | 2 +
sound/soc/sof/debug.c | 6 +-
sound/soc/sof/intel/apl.c | 1 +
sound/soc/sof/intel/cnl.c | 2 +
sound/soc/sof/intel/hda-loader.c | 14 +-
sound/soc/sof/intel/hda.c | 10 +-
sound/soc/sof/intel/icl.c | 1 +
sound/soc/sof/intel/shim.h | 1 +
sound/soc/sof/intel/tgl.c | 4 +
sound/usb/card.c | 8 +
sound/usb/mixer_maps.c | 34 +++-
tools/build/feature/test-libcrypto.c | 15 +-
tools/perf/tests/switch-tracking.c | 18 +-
tools/perf/util/parse-events.c | 14 +-
tools/perf/util/probe-event.c | 6 +-
.../ftrace/test.d/kprobe/kprobe_syntax_errors.tc | 1 -
.../net/forwarding/custom_multipath_hash.sh | 24 ++-
.../net/forwarding/gre_custom_multipath_hash.sh | 24 ++-
.../net/forwarding/ip6gre_custom_multipath_hash.sh | 24 ++-
tools/vm/slabinfo.c | 32 +++-
virt/kvm/kvm_main.c | 14 +-
242 files changed, 2160 insertions(+), 1064 deletions(-)
2 years, 4 months
- 5
- 4
[PATCH 5.19-stable] mm/gup: fix FOLL_FORCE COW security issue and remove FOLL_COW
by David Hildenbrand
commit 5535be3099717646781ce1540cf725965d680e7b upstream.
Ever since the Dirty COW (CVE-2016-5195) security issue happened, we know
that FOLL_FORCE can be possibly dangerous, especially if there are races
that can be exploited by user space.
Right now, it would be sufficient to have some code that sets a PTE of a
R/O-mapped shared page dirty, in order for it to erroneously become
writable by FOLL_FORCE. The implications of setting a write-protected PTE
dirty might not be immediately obvious to everyone.
And in fact ever since commit 9ae0f87d009c ("mm/shmem: unconditionally set
pte dirty in mfill_atomic_install_pte"), we can use UFFDIO_CONTINUE to map
a shmem page R/O while marking the pte dirty. This can be used by
unprivileged user space to modify tmpfs/shmem file content even if the
user does not have write permissions to the file, and to bypass memfd
write sealing -- Dirty COW restricted to tmpfs/shmem (CVE-2022-2590).
To fix such security issues for good, the insight is that we really only
need that fancy retry logic (FOLL_COW) for COW mappings that are not
writable (!VM_WRITE). And in a COW mapping, we really only broke COW if
we have an exclusive anonymous page mapped. If we have something else
mapped, or the mapped anonymous page might be shared (!PageAnonExclusive),
we have to trigger a write fault to break COW. If we don't find an
exclusive anonymous page when we retry, we have to trigger COW breaking
once again because something intervened.
Let's move away from this mandatory-retry + dirty handling and rely on our
PageAnonExclusive() flag for making a similar decision, to use the same
COW logic as in other kernel parts here as well. In case we stumble over
a PTE in a COW mapping that does not map an exclusive anonymous page, COW
was not properly broken and we have to trigger a fake write-fault to break
COW.
Just like we do in can_change_pte_writable() added via commit 64fe24a3e05e
("mm/mprotect: try avoiding write faults for exclusive anonymous pages
when changing protection") and commit 76aefad628aa ("mm/mprotect: fix
soft-dirty check in can_change_pte_writable()"), take care of softdirty
and uffd-wp manually.
For example, a write() via /proc/self/mem to a uffd-wp-protected range has
to fail instead of silently granting write access and bypassing the
userspace fault handler. Note that FOLL_FORCE is not only used for debug
access, but also triggered by applications without debug intentions, for
example, when pinning pages via RDMA.
This fixes CVE-2022-2590. Note that only x86_64 and aarch64 are
affected, because only those support CONFIG_HAVE_ARCH_USERFAULTFD_MINOR.
Fortunately, FOLL_COW is no longer required to handle FOLL_FORCE. So
let's just get rid of it.
Thanks to Nadav Amit for pointing out that the pte_dirty() check in
FOLL_FORCE code is problematic and might be exploitable.
Note 1: We don't check for the PTE being dirty because it doesn't matter
for making a "was COWed" decision anymore, and whoever modifies the
page has to set the page dirty either way.
Note 2: Kernels before extended uffd-wp support and before
PageAnonExclusive (< 5.19) can simply revert the problematic
commit instead and be safe regarding UFFDIO_CONTINUE. A backport to
v5.19 requires minor adjustments due to lack of
vma_soft_dirty_enabled().
Link: https://lkml.kernel.org/r/20220809205640.70916-1-david@redhat.com
Fixes: 9ae0f87d009c ("mm/shmem: unconditionally set pte dirty in mfill_atomic_install_pte")
Signed-off-by: David Hildenbrand <david(a)redhat.com>
Cc: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
Cc: Axel Rasmussen <axelrasmussen(a)google.com>
Cc: Nadav Amit <nadav.amit(a)gmail.com>
Cc: Peter Xu <peterx(a)redhat.com>
Cc: Hugh Dickins <hughd(a)google.com>
Cc: Andrea Arcangeli <aarcange(a)redhat.com>
Cc: Matthew Wilcox <willy(a)infradead.org>
Cc: Vlastimil Babka <vbabka(a)suse.cz>
Cc: John Hubbard <jhubbard(a)nvidia.com>
Cc: Jason Gunthorpe <jgg(a)nvidia.com>
Cc: David Laight <David.Laight(a)ACULAB.COM>
Cc: <stable(a)vger.kernel.org> [5.16]
Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org>
Signed-off-by: David Hildenbrand <david(a)redhat.com>
---
include/linux/mm.h | 1 -
mm/gup.c | 69 +++++++++++++++++++++++++++++++---------------
mm/huge_memory.c | 65 +++++++++++++++++++++++++++++--------------
3 files changed, 91 insertions(+), 44 deletions(-)
diff --git a/include/linux/mm.h b/include/linux/mm.h
index 7898e29bcfb5..25b8860f47cc 100644
--- a/include/linux/mm.h
+++ b/include/linux/mm.h
@@ -2939,7 +2939,6 @@ struct page *follow_page(struct vm_area_struct *vma, unsigned long address,
#define FOLL_MIGRATION 0x400 /* wait for page to replace migration entry */
#define FOLL_TRIED 0x800 /* a retry, previous pass started an IO */
#define FOLL_REMOTE 0x2000 /* we are working on non-current tsk/mm */
-#define FOLL_COW 0x4000 /* internal GUP flag */
#define FOLL_ANON 0x8000 /* don't do file mappings */
#define FOLL_LONGTERM 0x10000 /* mapping lifetime is indefinite: see below */
#define FOLL_SPLIT_PMD 0x20000 /* split huge pmd before returning */
diff --git a/mm/gup.c b/mm/gup.c
index e2a39e30756d..d2fd46b50102 100644
--- a/mm/gup.c
+++ b/mm/gup.c
@@ -478,14 +478,43 @@ static int follow_pfn_pte(struct vm_area_struct *vma, unsigned long address,
return -EEXIST;
}
-/*
- * FOLL_FORCE can write to even unwritable pte's, but only
- * after we've gone through a COW cycle and they are dirty.
- */
-static inline bool can_follow_write_pte(pte_t pte, unsigned int flags)
+/* FOLL_FORCE can write to even unwritable PTEs in COW mappings. */
+static inline bool can_follow_write_pte(pte_t pte, struct page *page,
+ struct vm_area_struct *vma,
+ unsigned int flags)
{
- return pte_write(pte) ||
- ((flags & FOLL_FORCE) && (flags & FOLL_COW) && pte_dirty(pte));
+ /* If the pte is writable, we can write to the page. */
+ if (pte_write(pte))
+ return true;
+
+ /* Maybe FOLL_FORCE is set to override it? */
+ if (!(flags & FOLL_FORCE))
+ return false;
+
+ /* But FOLL_FORCE has no effect on shared mappings */
+ if (vma->vm_flags & (VM_MAYSHARE | VM_SHARED))
+ return false;
+
+ /* ... or read-only private ones */
+ if (!(vma->vm_flags & VM_MAYWRITE))
+ return false;
+
+ /* ... or already writable ones that just need to take a write fault */
+ if (vma->vm_flags & VM_WRITE)
+ return false;
+
+ /*
+ * See can_change_pte_writable(): we broke COW and could map the page
+ * writable if we have an exclusive anonymous page ...
+ */
+ if (!page || !PageAnon(page) || !PageAnonExclusive(page))
+ return false;
+
+ /* ... and a write-fault isn't required for other reasons. */
+ if (IS_ENABLED(CONFIG_MEM_SOFT_DIRTY) &&
+ !(vma->vm_flags & VM_SOFTDIRTY) && !pte_soft_dirty(pte))
+ return false;
+ return !userfaultfd_pte_wp(vma, pte);
}
static struct page *follow_page_pte(struct vm_area_struct *vma,
@@ -528,12 +557,19 @@ static struct page *follow_page_pte(struct vm_area_struct *vma,
}
if ((flags & FOLL_NUMA) && pte_protnone(pte))
goto no_page;
- if ((flags & FOLL_WRITE) && !can_follow_write_pte(pte, flags)) {
- pte_unmap_unlock(ptep, ptl);
- return NULL;
- }
page = vm_normal_page(vma, address, pte);
+
+ /*
+ * We only care about anon pages in can_follow_write_pte() and don't
+ * have to worry about pte_devmap() because they are never anon.
+ */
+ if ((flags & FOLL_WRITE) &&
+ !can_follow_write_pte(pte, page, vma, flags)) {
+ page = NULL;
+ goto out;
+ }
+
if (!page && pte_devmap(pte) && (flags & (FOLL_GET | FOLL_PIN))) {
/*
* Only return device mapping pages in the FOLL_GET or FOLL_PIN
@@ -967,17 +1003,6 @@ static int faultin_page(struct vm_area_struct *vma,
return -EBUSY;
}
- /*
- * The VM_FAULT_WRITE bit tells us that do_wp_page has broken COW when
- * necessary, even if maybe_mkwrite decided not to set pte_write. We
- * can thus safely do subsequent page lookups as if they were reads.
- * But only do so when looping for pte_write is futile: in some cases
- * userspace may also be wanting to write to the gotten user page,
- * which a read fault here might prevent (a readonly page might get
- * reCOWed by userspace write).
- */
- if ((ret & VM_FAULT_WRITE) && !(vma->vm_flags & VM_WRITE))
- *flags |= FOLL_COW;
return 0;
}
diff --git a/mm/huge_memory.c b/mm/huge_memory.c
index 834f288b3769..164d13b62079 100644
--- a/mm/huge_memory.c
+++ b/mm/huge_memory.c
@@ -977,12 +977,6 @@ struct page *follow_devmap_pmd(struct vm_area_struct *vma, unsigned long addr,
assert_spin_locked(pmd_lockptr(mm, pmd));
- /*
- * When we COW a devmap PMD entry, we split it into PTEs, so we should
- * not be in this function with `flags & FOLL_COW` set.
- */
- WARN_ONCE(flags & FOLL_COW, "mm: In follow_devmap_pmd with FOLL_COW set");
-
/* FOLL_GET and FOLL_PIN are mutually exclusive. */
if (WARN_ON_ONCE((flags & (FOLL_PIN | FOLL_GET)) ==
(FOLL_PIN | FOLL_GET)))
@@ -1348,14 +1342,43 @@ vm_fault_t do_huge_pmd_wp_page(struct vm_fault *vmf)
return VM_FAULT_FALLBACK;
}
-/*
- * FOLL_FORCE can write to even unwritable pmd's, but only
- * after we've gone through a COW cycle and they are dirty.
- */
-static inline bool can_follow_write_pmd(pmd_t pmd, unsigned int flags)
+/* FOLL_FORCE can write to even unwritable PMDs in COW mappings. */
+static inline bool can_follow_write_pmd(pmd_t pmd, struct page *page,
+ struct vm_area_struct *vma,
+ unsigned int flags)
{
- return pmd_write(pmd) ||
- ((flags & FOLL_FORCE) && (flags & FOLL_COW) && pmd_dirty(pmd));
+ /* If the pmd is writable, we can write to the page. */
+ if (pmd_write(pmd))
+ return true;
+
+ /* Maybe FOLL_FORCE is set to override it? */
+ if (!(flags & FOLL_FORCE))
+ return false;
+
+ /* But FOLL_FORCE has no effect on shared mappings */
+ if (vma->vm_flags & (VM_MAYSHARE | VM_SHARED))
+ return false;
+
+ /* ... or read-only private ones */
+ if (!(vma->vm_flags & VM_MAYWRITE))
+ return false;
+
+ /* ... or already writable ones that just need to take a write fault */
+ if (vma->vm_flags & VM_WRITE)
+ return false;
+
+ /*
+ * See can_change_pte_writable(): we broke COW and could map the page
+ * writable if we have an exclusive anonymous page ...
+ */
+ if (!page || !PageAnon(page) || !PageAnonExclusive(page))
+ return false;
+
+ /* ... and a write-fault isn't required for other reasons. */
+ if (IS_ENABLED(CONFIG_MEM_SOFT_DIRTY) &&
+ !(vma->vm_flags & VM_SOFTDIRTY) && !pmd_soft_dirty(pmd))
+ return false;
+ return !userfaultfd_huge_pmd_wp(vma, pmd);
}
struct page *follow_trans_huge_pmd(struct vm_area_struct *vma,
@@ -1364,12 +1387,16 @@ struct page *follow_trans_huge_pmd(struct vm_area_struct *vma,
unsigned int flags)
{
struct mm_struct *mm = vma->vm_mm;
- struct page *page = NULL;
+ struct page *page;
assert_spin_locked(pmd_lockptr(mm, pmd));
- if (flags & FOLL_WRITE && !can_follow_write_pmd(*pmd, flags))
- goto out;
+ page = pmd_page(*pmd);
+ VM_BUG_ON_PAGE(!PageHead(page) && !is_zone_device_page(page), page);
+
+ if ((flags & FOLL_WRITE) &&
+ !can_follow_write_pmd(*pmd, page, vma, flags))
+ return NULL;
/* Avoid dumping huge zero page */
if ((flags & FOLL_DUMP) && is_huge_zero_pmd(*pmd))
@@ -1377,10 +1404,7 @@ struct page *follow_trans_huge_pmd(struct vm_area_struct *vma,
/* Full NUMA hinting faults to serialise migration in fault paths */
if ((flags & FOLL_NUMA) && pmd_protnone(*pmd))
- goto out;
-
- page = pmd_page(*pmd);
- VM_BUG_ON_PAGE(!PageHead(page) && !is_zone_device_page(page), page);
+ return NULL;
if (!pmd_write(*pmd) && gup_must_unshare(flags, page))
return ERR_PTR(-EMLINK);
@@ -1397,7 +1421,6 @@ struct page *follow_trans_huge_pmd(struct vm_area_struct *vma,
page += (addr & ~HPAGE_PMD_MASK) >> PAGE_SHIFT;
VM_BUG_ON_PAGE(!PageCompound(page) && !is_zone_device_page(page), page);
-out:
return page;
}
--
2.37.1
2 years, 4 months
- 1
- 0
[PATCH] x86/sev: Don't use cc_platform_has() for early SEV-SNP calls
by Tom Lendacky
When running identity mapped and depending on the kernel configuration,
it is possible that cc_platform_has() can have compiler generated code
that uses jump tables. This causes a boot failure because the jump table
uses un-mapped kernel virtual addresses, not identity mapped addresses.
This has been seen with CONFIG_RETPOLINE=n.
Similar to sme_encrypt_kernel(), use an open-coded direct check for the
status of SNP rather than trying to eliminate the jump table. This
preserves any code optimization in cc_platform_has() that can be useful
post boot. It also limits the changes to SEV-specific files so that
future compiler features won't necessarily require possible build changes
just because they are not compatible with running identity mapped.
Link: https://bugzilla.kernel.org/show_bug.cgi?id=216385
Link: https://lore.kernel.org/all/YqfabnTRxFSM+LoX@google.com/
Cc: <stable(a)vger.kernel.org> # 5.19.x
Reported-by: Sean Christopherson <seanjc(a)google.com>
Suggested-by: Sean Christopherson <seanjc(a)google.com>
Signed-off-by: Tom Lendacky <thomas.lendacky(a)amd.com>
---
arch/x86/kernel/sev.c | 16 ++++++++++++++--
1 file changed, 14 insertions(+), 2 deletions(-)
diff --git a/arch/x86/kernel/sev.c b/arch/x86/kernel/sev.c
index 63dc626627a0..4f84c3f11af5 100644
--- a/arch/x86/kernel/sev.c
+++ b/arch/x86/kernel/sev.c
@@ -701,7 +701,13 @@ static void __init early_set_pages_state(unsigned long paddr, unsigned int npage
void __init early_snp_set_memory_private(unsigned long vaddr, unsigned long paddr,
unsigned int npages)
{
- if (!cc_platform_has(CC_ATTR_GUEST_SEV_SNP))
+ /*
+ * This can be invoked in early boot while running identity mapped, so
+ * use an open coded check for SNP instead of using cc_platform_has().
+ * This eliminates worries about jump tables or checking boot_cpu_data
+ * in the cc_platform_has() function.
+ */
+ if (!(sev_status & MSR_AMD64_SEV_SNP_ENABLED))
return;
/*
@@ -717,7 +723,13 @@ void __init early_snp_set_memory_private(unsigned long vaddr, unsigned long padd
void __init early_snp_set_memory_shared(unsigned long vaddr, unsigned long paddr,
unsigned int npages)
{
- if (!cc_platform_has(CC_ATTR_GUEST_SEV_SNP))
+ /*
+ * This can be invoked in early boot while running identity mapped, so
+ * use an open coded check for SNP instead of using cc_platform_has().
+ * This eliminates worries about jump tables or checking boot_cpu_data
+ * in the cc_platform_has() function.
+ */
+ if (!(sev_status & MSR_AMD64_SEV_SNP_ENABLED))
return;
/* Invalidate the memory pages before they are marked shared in the RMP table. */
--
2.37.2
2 years, 4 months
- 3
- 3
"Fixes:" vs. "Cc: stable ..."
by Steve French
Do changesets that already included the "Fixes:" tag in the commit
description also need to include the "Cc: stable(a)vger.kernel.org" in
order to be included in stable?
--
Thanks,
Steve
2 years, 4 months
- 2
- 2