April 2024 - Linux-stable-mirror

[PATCH 1/2] USB: serial: option: add Lonsung U8300/U9300 product Update the USB serial option driver to support Longsung U8300/U9300.

by Coia Prant

ID 1c9e:9b05 OMEGA TECHNOLOGY (U8300) ID 1c9e:9b3c OMEGA TECHNOLOGY (U9300) U8300 /: Bus |__ Port 1: Dev 3, If 0, Class=Vendor Specific Class, Driver=option, 480M (Debug) ID 1c9e:9b05 OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 1, Class=Vendor Specific Class, Driver=option, 480M (Modem / AT) ID 1c9e:9b05 OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 2, Class=Vendor Specific Class, Driver=option, 480M (AT) ID 1c9e:9b05 OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 3, Class=Vendor Specific Class, Driver=option, 480M (AT / Pipe / PPP) ID 1c9e:9b05 OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 4, Class=Vendor Specific Class, Driver=qmi_wwan, 480M (NDIS / GobiNet / QMI WWAN) ID 1c9e:9b05 OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 5, Class=Vendor Specific Class, Driver=, 480M (ADB) ID 1c9e:9b05 OMEGA TECHNOLOGY U9300 /: Bus |__ Port 1: Dev 3, If 0, Class=Vendor Specific Class, Driver=, 480M (ADB) ID 1c9e:9b3c OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 1, Class=Vendor Specific Class, Driver=option, 480M (Modem / AT) ID 1c9e:9b3c OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 2, Class=Vendor Specific Class, Driver=option, 480M (AT) ID 1c9e:9b3c OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 3, Class=Vendor Specific Class, Driver=option, 480M (AT / Pipe / PPP) ID 1c9e:9b3c OMEGA TECHNOLOGY |__ Port 1: Dev 3, If 4, Class=Vendor Specific Class, Driver=qmi_wwan, 480M (NDIS / GobiNet / QMI WWAN) ID 1c9e:9b3c OMEGA TECHNOLOGY Tested successfully using Modem Manager on U9300. Tested successfully AT commands using If=1, If=2 and If=3 on U9300. Signed-off-by: Coia Prant <coiaprant(a)gmail.com> Cc: stable(a)vger.kernel.org --- drivers/usb/serial/option.c | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/drivers/usb/serial/option.c b/drivers/usb/serial/option.c index 55a65d941ccb..27a116901459 100644 --- a/drivers/usb/serial/option.c +++ b/drivers/usb/serial/option.c @@ -412,6 +412,10 @@ static void option_instat_callback(struct urb *urb); */ #define LONGCHEER_VENDOR_ID 0x1c9e +/* Longsung products */ +#define LONGSUNG_U8300_PRODUCT_ID 0x9b05 +#define LONGSUNG_U9300_PRODUCT_ID 0x9b3c + /* 4G Systems products */ /* This one was sold as the VW and Skoda "Carstick LTE" */ #define FOUR_G_SYSTEMS_PRODUCT_CARSTICK_LTE 0x7605 @@ -2054,6 +2058,10 @@ static const struct usb_device_id option_ids[] = { .driver_info = RSVD(4) }, { USB_DEVICE(LONGCHEER_VENDOR_ID, ZOOM_PRODUCT_4597) }, { USB_DEVICE(LONGCHEER_VENDOR_ID, IBALL_3_5G_CONNECT) }, + { USB_DEVICE(LONGCHEER_VENDOR_ID, LONGSUNG_U8300_PRODUCT_ID), + .driver_info = RSVD(4) | RSVD(5) }, + { USB_DEVICE(LONGCHEER_VENDOR_ID, LONGSUNG_U9300_PRODUCT_ID), + .driver_info = RSVD(0) | RSVD(4) }, { USB_DEVICE(HAIER_VENDOR_ID, HAIER_PRODUCT_CE100) }, { USB_DEVICE_AND_INTERFACE_INFO(HAIER_VENDOR_ID, HAIER_PRODUCT_CE81B, 0xff, 0xff, 0xff) }, /* Pirelli */ -- 2.39.2

1 year, 8 months

3
2
0 0

[PATCH v2 01/43] drm/fbdev-generic: Do not set physical framebuffer address

by Thomas Zimmermann

Framebuffer memory is allocated via vzalloc() from non-contiguous physical pages. The physical framebuffer start address is therefore meaningless. Do not set it. The value is not used within the kernel and only exported to userspace on dedicated ARM configs. No functional change is expected. v2: - refer to vzalloc() in commit message (Javier) Signed-off-by: Thomas Zimmermann <tzimmermann(a)suse.de> Fixes: a5b44c4adb16 ("drm/fbdev-generic: Always use shadow buffering") Cc: Thomas Zimmermann <tzimmermann(a)suse.de> Cc: Javier Martinez Canillas <javierm(a)redhat.com> Cc: Zack Rusin <zackr(a)vmware.com> Cc: Maarten Lankhorst <maarten.lankhorst(a)linux.intel.com> Cc: Maxime Ripard <mripard(a)kernel.org> Cc: <stable(a)vger.kernel.org> # v6.4+ Reviewed-by: Javier Martinez Canillas <javierm(a)redhat.com> Reviewed-by: Zack Rusin <zack.rusin(a)broadcom.com> Reviewed-by: Sui Jingfeng <sui.jingfeng(a)linux.dev> Tested-by: Sui Jingfeng <sui.jingfeng(a)linux.dev> --- drivers/gpu/drm/drm_fbdev_generic.c | 1 - 1 file changed, 1 deletion(-) diff --git a/drivers/gpu/drm/drm_fbdev_generic.c b/drivers/gpu/drm/drm_fbdev_generic.c index be357f926faec..97e579c33d84a 100644 --- a/drivers/gpu/drm/drm_fbdev_generic.c +++ b/drivers/gpu/drm/drm_fbdev_generic.c @@ -113,7 +113,6 @@ static int drm_fbdev_generic_helper_fb_probe(struct drm_fb_helper *fb_helper, /* screen */ info->flags |= FBINFO_VIRTFB | FBINFO_READS_FAST; info->screen_buffer = screen_buffer; - info->fix.smem_start = page_to_phys(vmalloc_to_page(info->screen_buffer)); info->fix.smem_len = screen_size; /* deferred I/O */ -- 2.44.0

1 year, 8 months

2
1
0 0

[PATCH] drm/mst: Fix NULL pointer dereference in drm_dp_add_payload_part2 (again)

by Jeff Mahoney

Commit 54d217406afe (drm: use mgr->dev in drm_dbg_kms in drm_dp_add_payload_part2) appears to have been accidentially reverted as part of commit 5aa1dfcdf0a42 (drm/mst: Refactor the flow for payload allocation/removement). I've been seeing NULL pointer dereferences in drm_dp_add_payload_part2 due to state->dev being NULL in the debug message printed if the payload allocation has failed. This commit restores mgr->dev to avoid the Oops. Fixes: 5aa1dfcdf0a42 ("drm/mst: Refactor the flow for payload allocation/removement") Cc: stable(a)vger.kernel.org Signed-off-by: Jeff Mahoney <jeffm(a)suse.com> --- drivers/gpu/drm/display/drm_dp_mst_topology.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/gpu/drm/display/drm_dp_mst_topology.c b/drivers/gpu/drm/display/drm_dp_mst_topology.c index 03d528209426..3dc966f25c0c 100644 --- a/drivers/gpu/drm/display/drm_dp_mst_topology.c +++ b/drivers/gpu/drm/display/drm_dp_mst_topology.c @@ -3437,7 +3437,7 @@ int drm_dp_add_payload_part2(struct drm_dp_mst_topology_mgr *mgr, /* Skip failed payloads */ if (payload->payload_allocation_status != DRM_DP_MST_PAYLOAD_ALLOCATION_DFP) { - drm_dbg_kms(state->dev, "Part 1 of payload creation for %s failed, skipping part 2\n", + drm_dbg_kms(mgr->dev, "Part 1 of payload creation for %s failed, skipping part 2\n", payload->port->connector->name); return -EIO; } -- 2.44.0

1 year, 8 months

2
2
0 0

FAILED: patch "[PATCH] smb: client: instantiate when creating SFU files" failed to apply to 6.8-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 6.8-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. To reproduce the conflict and resubmit, you may use the following commands: git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.8.y git checkout FETCH_HEAD git cherry-pick -x c6ff459037b2e35450af2351037eac4c8aca1d6b # <resolve conflicts, build, test, etc.> git commit -s git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2024041448-washcloth-flanked-1878@gregkh' --subject-prefix 'PATCH 6.8.y' HEAD^.. Possible dependencies: thanks, greg k-h ------------------ original commit in Linus's tree ------------------ From c6ff459037b2e35450af2351037eac4c8aca1d6b Mon Sep 17 00:00:00 2001 From: Paulo Alcantara <pc(a)manguebit.com> Date: Tue, 9 Apr 2024 11:28:59 -0300 Subject: [PATCH] smb: client: instantiate when creating SFU files In cifs_sfu_make_node(), on success, instantiate rather than leave it with dentry unhashed negative to support callers that expect mknod(2) to always instantiate. This fixes the following test case: mount.cifs //srv/share /mnt -o ...,sfu mkfifo /mnt/fifo ./xfstests/ltp/growfiles -b -W test -e 1 -u -i 0 -L 30 /mnt/fifo ... BUG: unable to handle page fault for address: 000000034cec4e58 #PF: supervisor read access in kernel mode #PF: error_code(0x0000) - not-present page PGD 0 P4D 0 Oops: 0000 1 PREEMPT SMP PTI CPU: 0 PID: 138098 Comm: growfiles Kdump: loaded Not tainted 5.14.0-436.3987_1240945149.el9.x86_64 #1 Hardware name: Red Hat KVM, BIOS 0.5.1 01/01/2011 RIP: 0010:_raw_callee_save__kvm_vcpu_is_preempted+0x0/0x20 Code: e8 15 d9 61 00 e9 63 ff ff ff 41 bd ea ff ff ff e9 58 ff ff ff e8 d0 71 c0 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <48> 8b 04 fd 60 2b c1 99 80 b8 90 50 03 00 00 0f 95 c0 c3 cc cc cc RSP: 0018:ffffb6a143cf7cf8 EFLAGS: 00010206 RAX: ffff8a9bc30fb038 RBX: ffff8a9bc666a200 RCX: ffff8a9cc0260000 RDX: 00000000736f622e RSI: ffff8a9bc30fb038 RDI: 000000007665645f RBP: ffffb6a143cf7d70 R08: 0000000000001000 R09: 0000000000000001 R10: 0000000000000001 R11: 0000000000000000 R12: ffff8a9bc666a200 R13: 0000559a302a12b0 R14: 0000000000001000 R15: 0000000000000000 FS: 00007fbed1dbb740(0000) GS:ffff8a9cf0000000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000034cec4e58 CR3: 0000000128ec6006 CR4: 0000000000770ef0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 PKRU: 55555554 Call Trace: <TASK> ? show_trace_log_lvl+0x1c4/0x2df ? show_trace_log_lvl+0x1c4/0x2df ? __mutex_lock.constprop.0+0x5f7/0x6a0 ? __die_body.cold+0x8/0xd ? page_fault_oops+0x134/0x170 ? exc_page_fault+0x62/0x150 ? asm_exc_page_fault+0x22/0x30 ? _pfx_raw_callee_save__kvm_vcpu_is_preempted+0x10/0x10 __mutex_lock.constprop.0+0x5f7/0x6a0 ? __mod_memcg_lruvec_state+0x84/0xd0 pipe_write+0x47/0x650 ? do_anonymous_page+0x258/0x410 ? inode_security+0x22/0x60 ? selinux_file_permission+0x108/0x150 vfs_write+0x2cb/0x410 ksys_write+0x5f/0xe0 do_syscall_64+0x5c/0xf0 ? syscall_exit_to_user_mode+0x22/0x40 ? do_syscall_64+0x6b/0xf0 ? sched_clock_cpu+0x9/0xc0 ? exc_page_fault+0x62/0x150 entry_SYSCALL_64_after_hwframe+0x6e/0x76 Cc: stable(a)vger.kernel.org Fixes: 72bc63f5e23a ("smb3: fix creating FIFOs when mounting with "sfu" mount option") Suggested-by: Al Viro <viro(a)zeniv.linux.org.uk> Signed-off-by: Paulo Alcantara (Red Hat) <pc(a)manguebit.com> Signed-off-by: Steve French <stfrench(a)microsoft.com> diff --git a/fs/smb/client/smb2ops.c b/fs/smb/client/smb2ops.c index b156eefa75d7..78c94d0350fe 100644 --- a/fs/smb/client/smb2ops.c +++ b/fs/smb/client/smb2ops.c @@ -4964,68 +4964,84 @@ static int smb2_next_header(struct TCP_Server_Info *server, char *buf, return 0; } -int cifs_sfu_make_node(unsigned int xid, struct inode *inode, - struct dentry *dentry, struct cifs_tcon *tcon, - const char *full_path, umode_t mode, dev_t dev) +static int __cifs_sfu_make_node(unsigned int xid, struct inode *inode, + struct dentry *dentry, struct cifs_tcon *tcon, + const char *full_path, umode_t mode, dev_t dev) { - struct cifs_open_info_data buf = {}; struct TCP_Server_Info *server = tcon->ses->server; struct cifs_open_parms oparms; struct cifs_io_parms io_parms = {}; struct cifs_sb_info *cifs_sb = CIFS_SB(inode->i_sb); struct cifs_fid fid; unsigned int bytes_written; - struct win_dev *pdev; + struct win_dev pdev = {}; struct kvec iov[2]; __u32 oplock = server->oplocks ? REQ_OPLOCK : 0; int rc; - if (!S_ISCHR(mode) && !S_ISBLK(mode) && !S_ISFIFO(mode)) + switch (mode & S_IFMT) { + case S_IFCHR: + strscpy(pdev.type, "IntxCHR"); + pdev.major = cpu_to_le64(MAJOR(dev)); + pdev.minor = cpu_to_le64(MINOR(dev)); + break; + case S_IFBLK: + strscpy(pdev.type, "IntxBLK"); + pdev.major = cpu_to_le64(MAJOR(dev)); + pdev.minor = cpu_to_le64(MINOR(dev)); + break; + case S_IFIFO: + strscpy(pdev.type, "LnxFIFO"); + break; + default: return -EPERM; + } - oparms = (struct cifs_open_parms) { - .tcon = tcon, - .cifs_sb = cifs_sb, - .desired_access = GENERIC_WRITE, - .create_options = cifs_create_options(cifs_sb, CREATE_NOT_DIR | - CREATE_OPTION_SPECIAL), - .disposition = FILE_CREATE, - .path = full_path, - .fid = &fid, - }; + oparms = CIFS_OPARMS(cifs_sb, tcon, full_path, GENERIC_WRITE, + FILE_CREATE, CREATE_NOT_DIR | + CREATE_OPTION_SPECIAL, ACL_NO_MODE); + oparms.fid = &fid; - rc = server->ops->open(xid, &oparms, &oplock, &buf); + rc = server->ops->open(xid, &oparms, &oplock, NULL); if (rc) return rc; - /* - * BB Do not bother to decode buf since no local inode yet to put - * timestamps in, but we can reuse it safely. - */ - pdev = (struct win_dev *)&buf.fi; io_parms.pid = current->tgid; io_parms.tcon = tcon; - io_parms.length = sizeof(*pdev); - iov[1].iov_base = pdev; - iov[1].iov_len = sizeof(*pdev); - if (S_ISCHR(mode)) { - memcpy(pdev->type, "IntxCHR", 8); - pdev->major = cpu_to_le64(MAJOR(dev)); - pdev->minor = cpu_to_le64(MINOR(dev)); - } else if (S_ISBLK(mode)) { - memcpy(pdev->type, "IntxBLK", 8); - pdev->major = cpu_to_le64(MAJOR(dev)); - pdev->minor = cpu_to_le64(MINOR(dev)); - } else if (S_ISFIFO(mode)) { - memcpy(pdev->type, "LnxFIFO", 8); - } + io_parms.length = sizeof(pdev); + iov[1].iov_base = &pdev; + iov[1].iov_len = sizeof(pdev); rc = server->ops->sync_write(xid, &fid, &io_parms, &bytes_written, iov, 1); server->ops->close(xid, tcon, &fid); - d_drop(dentry); - /* FIXME: add code here to set EAs */ - cifs_free_open_info(&buf); + return rc; +} + +int cifs_sfu_make_node(unsigned int xid, struct inode *inode, + struct dentry *dentry, struct cifs_tcon *tcon, + const char *full_path, umode_t mode, dev_t dev) +{ + struct inode *new = NULL; + int rc; + + rc = __cifs_sfu_make_node(xid, inode, dentry, tcon, + full_path, mode, dev); + if (rc) + return rc; + + if (tcon->posix_extensions) { + rc = smb311_posix_get_inode_info(&new, full_path, NULL, + inode->i_sb, xid); + } else if (tcon->unix_ext) { + rc = cifs_get_inode_info_unix(&new, full_path, + inode->i_sb, xid); + } else { + rc = cifs_get_inode_info(&new, full_path, NULL, + inode->i_sb, xid, NULL); + } + if (!rc) + d_instantiate(dentry, new); return rc; }

1 year, 8 months

1
0
0 0

6.8.3+ panic at boot with CONFIG_BTRFS_FS_RUN_SANITY_TESTS=y

by Mihai Moldovan

Hi Since you backported 41044b41ad2c8c8165a42ec6e9a4096826dcf153 to 6.8.3 and higher, the kernel crashes hard on boot if BTRFS's sanity checks have been enabled (CONFIG_BTRFS_FS_RUN_SANITY_TESTS=y). Please backport b2136cc288fce2f24a92f3d656531b2d50ebec5a to the stable/mainline series fix this issue. Best regards Mihai Moldovan

1 year, 8 months

2
1
0 0

[PATCH] media: cec: core: remove length check of Timer Status solution applies to 5.4 and 4.19

by Nini Song (宋宛妮)

Hi @stable@vger.kernel.org<mailto:stable@vger.kernel.org> This patch has been merged in mainline as commit ce5d241c3ad45. [patch diff] [cid:image001.png@01DA8D04.BCD8A070] Because of our customer used v5.15, v5.4 and 4.19 for MP production, which requires this solution. We need your help apply the patch in v5.15, v5.4 and 4.19. Thanks! BR, Nini Song

1 year, 8 months

2
1
0 0

FAILED: patch "[PATCH] r8169: fix LED-related deadlock on module removal" failed to apply to 6.8-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 6.8-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. To reproduce the conflict and resubmit, you may use the following commands: git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.8.y git checkout FETCH_HEAD git cherry-pick -x 19fa4f2a85d777a8052e869c1b892a2f7556569d # <resolve conflicts, build, test, etc.> git commit -s git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2024041459-lagging-tiny-7189@gregkh' --subject-prefix 'PATCH 6.8.y' HEAD^.. Possible dependencies: 19fa4f2a85d7 ("r8169: fix LED-related deadlock on module removal") be51ed104ba9 ("r8169: add LED support for RTL8125/RTL8126") 3907f1ffc0ec ("r8169: add support for RTL8126A") thanks, greg k-h ------------------ original commit in Linus's tree ------------------ From 19fa4f2a85d777a8052e869c1b892a2f7556569d Mon Sep 17 00:00:00 2001 From: Heiner Kallweit <hkallweit1(a)gmail.com> Date: Mon, 8 Apr 2024 20:47:40 +0200 Subject: [PATCH] r8169: fix LED-related deadlock on module removal Binding devm_led_classdev_register() to the netdev is problematic because on module removal we get a RTNL-related deadlock. Fix this by avoiding the device-managed LED functions. Note: We can safely call led_classdev_unregister() for a LED even if registering it failed, because led_classdev_unregister() detects this and is a no-op in this case. Fixes: 18764b883e15 ("r8169: add support for LED's on RTL8168/RTL8101") Cc: stable(a)vger.kernel.org Reported-by: Lukas Wunner <lukas(a)wunner.de> Signed-off-by: Heiner Kallweit <hkallweit1(a)gmail.com> Reviewed-by: Andrew Lunn <andrew(a)lunn.ch> Signed-off-by: David S. Miller <davem(a)davemloft.net> diff --git a/drivers/net/ethernet/realtek/r8169.h b/drivers/net/ethernet/realtek/r8169.h index 4c043052198d..00882ffc7a02 100644 --- a/drivers/net/ethernet/realtek/r8169.h +++ b/drivers/net/ethernet/realtek/r8169.h @@ -73,6 +73,7 @@ enum mac_version { }; struct rtl8169_private; +struct r8169_led_classdev; void r8169_apply_firmware(struct rtl8169_private *tp); u16 rtl8168h_2_get_adc_bias_ioffset(struct rtl8169_private *tp); @@ -84,7 +85,8 @@ void r8169_get_led_name(struct rtl8169_private *tp, int idx, char *buf, int buf_len); int rtl8168_get_led_mode(struct rtl8169_private *tp); int rtl8168_led_mod_ctrl(struct rtl8169_private *tp, u16 mask, u16 val); -void rtl8168_init_leds(struct net_device *ndev); +struct r8169_led_classdev *rtl8168_init_leds(struct net_device *ndev); int rtl8125_get_led_mode(struct rtl8169_private *tp, int index); int rtl8125_set_led_mode(struct rtl8169_private *tp, int index, u16 mode); -void rtl8125_init_leds(struct net_device *ndev); +struct r8169_led_classdev *rtl8125_init_leds(struct net_device *ndev); +void r8169_remove_leds(struct r8169_led_classdev *leds); diff --git a/drivers/net/ethernet/realtek/r8169_leds.c b/drivers/net/ethernet/realtek/r8169_leds.c index 7c5dc9d0df85..e10bee706bc6 100644 --- a/drivers/net/ethernet/realtek/r8169_leds.c +++ b/drivers/net/ethernet/realtek/r8169_leds.c @@ -146,22 +146,22 @@ static void rtl8168_setup_ldev(struct r8169_led_classdev *ldev, led_cdev->hw_control_get_device = r8169_led_hw_control_get_device; /* ignore errors */ - devm_led_classdev_register(&ndev->dev, led_cdev); + led_classdev_register(&ndev->dev, led_cdev); } -void rtl8168_init_leds(struct net_device *ndev) +struct r8169_led_classdev *rtl8168_init_leds(struct net_device *ndev) { - /* bind resource mgmt to netdev */ - struct device *dev = &ndev->dev; struct r8169_led_classdev *leds; int i; - leds = devm_kcalloc(dev, RTL8168_NUM_LEDS, sizeof(*leds), GFP_KERNEL); + leds = kcalloc(RTL8168_NUM_LEDS + 1, sizeof(*leds), GFP_KERNEL); if (!leds) - return; + return NULL; for (i = 0; i < RTL8168_NUM_LEDS; i++) rtl8168_setup_ldev(leds + i, ndev, i); + + return leds; } static int rtl8125_led_hw_control_is_supported(struct led_classdev *led_cdev, @@ -245,20 +245,31 @@ static void rtl8125_setup_led_ldev(struct r8169_led_classdev *ldev, led_cdev->hw_control_get_device = r8169_led_hw_control_get_device; /* ignore errors */ - devm_led_classdev_register(&ndev->dev, led_cdev); + led_classdev_register(&ndev->dev, led_cdev); } -void rtl8125_init_leds(struct net_device *ndev) +struct r8169_led_classdev *rtl8125_init_leds(struct net_device *ndev) { - /* bind resource mgmt to netdev */ - struct device *dev = &ndev->dev; struct r8169_led_classdev *leds; int i; - leds = devm_kcalloc(dev, RTL8125_NUM_LEDS, sizeof(*leds), GFP_KERNEL); + leds = kcalloc(RTL8125_NUM_LEDS + 1, sizeof(*leds), GFP_KERNEL); if (!leds) - return; + return NULL; for (i = 0; i < RTL8125_NUM_LEDS; i++) rtl8125_setup_led_ldev(leds + i, ndev, i); + + return leds; +} + +void r8169_remove_leds(struct r8169_led_classdev *leds) +{ + if (!leds) + return; + + for (struct r8169_led_classdev *l = leds; l->ndev; l++) + led_classdev_unregister(&l->led); + + kfree(leds); } diff --git a/drivers/net/ethernet/realtek/r8169_main.c b/drivers/net/ethernet/realtek/r8169_main.c index 6f1e6f386b7b..8a27328eae34 100644 --- a/drivers/net/ethernet/realtek/r8169_main.c +++ b/drivers/net/ethernet/realtek/r8169_main.c @@ -647,6 +647,8 @@ struct rtl8169_private { const char *fw_name; struct rtl_fw *rtl_fw; + struct r8169_led_classdev *leds; + u32 ocp_base; }; @@ -5044,6 +5046,8 @@ static void rtl_remove_one(struct pci_dev *pdev) cancel_work_sync(&tp->wk.work); + r8169_remove_leds(tp->leds); + unregister_netdev(tp->dev); if (tp->dash_type != RTL_DASH_NONE) @@ -5501,9 +5505,9 @@ static int rtl_init_one(struct pci_dev *pdev, const struct pci_device_id *ent) if (IS_ENABLED(CONFIG_R8169_LEDS)) { if (rtl_is_8125(tp)) - rtl8125_init_leds(dev); + tp->leds = rtl8125_init_leds(dev); else if (tp->mac_version > RTL_GIGA_MAC_VER_06) - rtl8168_init_leds(dev); + tp->leds = rtl8168_init_leds(dev); } netdev_info(dev, "%s, %pM, XID %03x, IRQ %d\n",

1 year, 8 months

1
0
0 0

S4 fix for Phoenix laptops

by Mario Limonciello

Hi, This fix was sent out for fixing S4 under stress on some Phoenix laptops. 31729e8c21ec ("drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11") David Markey confirmed[1] it helps Framework 13 under S4 stress testing. Can you please bring it to 6.1.y and later? [1] https://community.frame.work/t/responded-arch-hibernation-woes-on-amd-13/45… Thanks

1 year, 8 months

2
1
0 0

FAILED: patch "[PATCH] ceph: redirty page before returning AOP_WRITEPAGE_ACTIVATE" failed to apply to 6.1-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 6.1-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. To reproduce the conflict and resubmit, you may use the following commands: git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.1.y git checkout FETCH_HEAD git cherry-pick -x b372e96bd0a32729d55d27f613c8bc80708a82e1 # <resolve conflicts, build, test, etc.> git commit -s git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2024041442-grumble-saggy-01f0@gregkh' --subject-prefix 'PATCH 6.1.y' HEAD^.. Possible dependencies: thanks, greg k-h ------------------ original commit in Linus's tree ------------------ From b372e96bd0a32729d55d27f613c8bc80708a82e1 Mon Sep 17 00:00:00 2001 From: NeilBrown <neilb(a)suse.de> Date: Mon, 25 Mar 2024 09:21:20 +1100 Subject: [PATCH] ceph: redirty page before returning AOP_WRITEPAGE_ACTIVATE The page has been marked clean before writepage is called. If we don't redirty it before postponing the write, it might never get written. Cc: stable(a)vger.kernel.org Fixes: 503d4fa6ee28 ("ceph: remove reliance on bdi congestion") Signed-off-by: NeilBrown <neilb(a)suse.de> Reviewed-by: Jeff Layton <jlayton(a)kernel.org> Reviewed-by: Xiubo Li <xiubli(a)redhat.org> Signed-off-by: Ilya Dryomov <idryomov(a)gmail.com> diff --git a/fs/ceph/addr.c b/fs/ceph/addr.c index 1340d77124ae..ee9caf7916fb 100644 --- a/fs/ceph/addr.c +++ b/fs/ceph/addr.c @@ -795,8 +795,10 @@ static int ceph_writepage(struct page *page, struct writeback_control *wbc) ihold(inode); if (wbc->sync_mode == WB_SYNC_NONE && - ceph_inode_to_fs_client(inode)->write_congested) + ceph_inode_to_fs_client(inode)->write_congested) { + redirty_page_for_writepage(wbc, page); return AOP_WRITEPAGE_ACTIVATE; + } wait_on_page_fscache(page);

1 year, 8 months

1
0
0 0

FAILED: patch "[PATCH] ceph: redirty page before returning AOP_WRITEPAGE_ACTIVATE" failed to apply to 6.6-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 6.6-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. To reproduce the conflict and resubmit, you may use the following commands: git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.6.y git checkout FETCH_HEAD git cherry-pick -x b372e96bd0a32729d55d27f613c8bc80708a82e1 # <resolve conflicts, build, test, etc.> git commit -s git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2024041441-unabashed-swarm-244d@gregkh' --subject-prefix 'PATCH 6.6.y' HEAD^.. Possible dependencies: thanks, greg k-h ------------------ original commit in Linus's tree ------------------ From b372e96bd0a32729d55d27f613c8bc80708a82e1 Mon Sep 17 00:00:00 2001 From: NeilBrown <neilb(a)suse.de> Date: Mon, 25 Mar 2024 09:21:20 +1100 Subject: [PATCH] ceph: redirty page before returning AOP_WRITEPAGE_ACTIVATE The page has been marked clean before writepage is called. If we don't redirty it before postponing the write, it might never get written. Cc: stable(a)vger.kernel.org Fixes: 503d4fa6ee28 ("ceph: remove reliance on bdi congestion") Signed-off-by: NeilBrown <neilb(a)suse.de> Reviewed-by: Jeff Layton <jlayton(a)kernel.org> Reviewed-by: Xiubo Li <xiubli(a)redhat.org> Signed-off-by: Ilya Dryomov <idryomov(a)gmail.com> diff --git a/fs/ceph/addr.c b/fs/ceph/addr.c index 1340d77124ae..ee9caf7916fb 100644 --- a/fs/ceph/addr.c +++ b/fs/ceph/addr.c @@ -795,8 +795,10 @@ static int ceph_writepage(struct page *page, struct writeback_control *wbc) ihold(inode); if (wbc->sync_mode == WB_SYNC_NONE && - ceph_inode_to_fs_client(inode)->write_congested) + ceph_inode_to_fs_client(inode)->write_congested) { + redirty_page_for_writepage(wbc, page); return AOP_WRITEPAGE_ACTIVATE; + } wait_on_page_fscache(page);

1 year, 8 months

1
0
0 0

Add commit "eed14eb48ee1 drm/amdgpu/vpe: power on vpe when hw_init" to kernel 6.8.y

by Gong, Richard

Hi, The commit below resolves s2idle failure on processor for AMD Family 1Ah Model 20h, eed14eb48ee1 drm/amdgpu/vpe: power on vpe when hw_init Please add this commit to stable kernel 6.8.y. Thanks! Regards, Richard

1 year, 8 months

2
1
0 0

FAILED: patch "[PATCH] smb: client: instantiate when creating SFU files" failed to apply to 6.1-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 6.1-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. To reproduce the conflict and resubmit, you may use the following commands: git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.1.y git checkout FETCH_HEAD git cherry-pick -x c6ff459037b2e35450af2351037eac4c8aca1d6b # <resolve conflicts, build, test, etc.> git commit -s git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2024041458-gurgle-mulled-5492@gregkh' --subject-prefix 'PATCH 6.1.y' HEAD^.. Possible dependencies: thanks, greg k-h ------------------ original commit in Linus's tree ------------------ From c6ff459037b2e35450af2351037eac4c8aca1d6b Mon Sep 17 00:00:00 2001 From: Paulo Alcantara <pc(a)manguebit.com> Date: Tue, 9 Apr 2024 11:28:59 -0300 Subject: [PATCH] smb: client: instantiate when creating SFU files In cifs_sfu_make_node(), on success, instantiate rather than leave it with dentry unhashed negative to support callers that expect mknod(2) to always instantiate. This fixes the following test case: mount.cifs //srv/share /mnt -o ...,sfu mkfifo /mnt/fifo ./xfstests/ltp/growfiles -b -W test -e 1 -u -i 0 -L 30 /mnt/fifo ... BUG: unable to handle page fault for address: 000000034cec4e58 #PF: supervisor read access in kernel mode #PF: error_code(0x0000) - not-present page PGD 0 P4D 0 Oops: 0000 1 PREEMPT SMP PTI CPU: 0 PID: 138098 Comm: growfiles Kdump: loaded Not tainted 5.14.0-436.3987_1240945149.el9.x86_64 #1 Hardware name: Red Hat KVM, BIOS 0.5.1 01/01/2011 RIP: 0010:_raw_callee_save__kvm_vcpu_is_preempted+0x0/0x20 Code: e8 15 d9 61 00 e9 63 ff ff ff 41 bd ea ff ff ff e9 58 ff ff ff e8 d0 71 c0 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <48> 8b 04 fd 60 2b c1 99 80 b8 90 50 03 00 00 0f 95 c0 c3 cc cc cc RSP: 0018:ffffb6a143cf7cf8 EFLAGS: 00010206 RAX: ffff8a9bc30fb038 RBX: ffff8a9bc666a200 RCX: ffff8a9cc0260000 RDX: 00000000736f622e RSI: ffff8a9bc30fb038 RDI: 000000007665645f RBP: ffffb6a143cf7d70 R08: 0000000000001000 R09: 0000000000000001 R10: 0000000000000001 R11: 0000000000000000 R12: ffff8a9bc666a200 R13: 0000559a302a12b0 R14: 0000000000001000 R15: 0000000000000000 FS: 00007fbed1dbb740(0000) GS:ffff8a9cf0000000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000034cec4e58 CR3: 0000000128ec6006 CR4: 0000000000770ef0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 PKRU: 55555554 Call Trace: <TASK> ? show_trace_log_lvl+0x1c4/0x2df ? show_trace_log_lvl+0x1c4/0x2df ? __mutex_lock.constprop.0+0x5f7/0x6a0 ? __die_body.cold+0x8/0xd ? page_fault_oops+0x134/0x170 ? exc_page_fault+0x62/0x150 ? asm_exc_page_fault+0x22/0x30 ? _pfx_raw_callee_save__kvm_vcpu_is_preempted+0x10/0x10 __mutex_lock.constprop.0+0x5f7/0x6a0 ? __mod_memcg_lruvec_state+0x84/0xd0 pipe_write+0x47/0x650 ? do_anonymous_page+0x258/0x410 ? inode_security+0x22/0x60 ? selinux_file_permission+0x108/0x150 vfs_write+0x2cb/0x410 ksys_write+0x5f/0xe0 do_syscall_64+0x5c/0xf0 ? syscall_exit_to_user_mode+0x22/0x40 ? do_syscall_64+0x6b/0xf0 ? sched_clock_cpu+0x9/0xc0 ? exc_page_fault+0x62/0x150 entry_SYSCALL_64_after_hwframe+0x6e/0x76 Cc: stable(a)vger.kernel.org Fixes: 72bc63f5e23a ("smb3: fix creating FIFOs when mounting with "sfu" mount option") Suggested-by: Al Viro <viro(a)zeniv.linux.org.uk> Signed-off-by: Paulo Alcantara (Red Hat) <pc(a)manguebit.com> Signed-off-by: Steve French <stfrench(a)microsoft.com> diff --git a/fs/smb/client/smb2ops.c b/fs/smb/client/smb2ops.c index b156eefa75d7..78c94d0350fe 100644 --- a/fs/smb/client/smb2ops.c +++ b/fs/smb/client/smb2ops.c @@ -4964,68 +4964,84 @@ static int smb2_next_header(struct TCP_Server_Info *server, char *buf, return 0; } -int cifs_sfu_make_node(unsigned int xid, struct inode *inode, - struct dentry *dentry, struct cifs_tcon *tcon, - const char *full_path, umode_t mode, dev_t dev) +static int __cifs_sfu_make_node(unsigned int xid, struct inode *inode, + struct dentry *dentry, struct cifs_tcon *tcon, + const char *full_path, umode_t mode, dev_t dev) { - struct cifs_open_info_data buf = {}; struct TCP_Server_Info *server = tcon->ses->server; struct cifs_open_parms oparms; struct cifs_io_parms io_parms = {}; struct cifs_sb_info *cifs_sb = CIFS_SB(inode->i_sb); struct cifs_fid fid; unsigned int bytes_written; - struct win_dev *pdev; + struct win_dev pdev = {}; struct kvec iov[2]; __u32 oplock = server->oplocks ? REQ_OPLOCK : 0; int rc; - if (!S_ISCHR(mode) && !S_ISBLK(mode) && !S_ISFIFO(mode)) + switch (mode & S_IFMT) { + case S_IFCHR: + strscpy(pdev.type, "IntxCHR"); + pdev.major = cpu_to_le64(MAJOR(dev)); + pdev.minor = cpu_to_le64(MINOR(dev)); + break; + case S_IFBLK: + strscpy(pdev.type, "IntxBLK"); + pdev.major = cpu_to_le64(MAJOR(dev)); + pdev.minor = cpu_to_le64(MINOR(dev)); + break; + case S_IFIFO: + strscpy(pdev.type, "LnxFIFO"); + break; + default: return -EPERM; + } - oparms = (struct cifs_open_parms) { - .tcon = tcon, - .cifs_sb = cifs_sb, - .desired_access = GENERIC_WRITE, - .create_options = cifs_create_options(cifs_sb, CREATE_NOT_DIR | - CREATE_OPTION_SPECIAL), - .disposition = FILE_CREATE, - .path = full_path, - .fid = &fid, - }; + oparms = CIFS_OPARMS(cifs_sb, tcon, full_path, GENERIC_WRITE, + FILE_CREATE, CREATE_NOT_DIR | + CREATE_OPTION_SPECIAL, ACL_NO_MODE); + oparms.fid = &fid; - rc = server->ops->open(xid, &oparms, &oplock, &buf); + rc = server->ops->open(xid, &oparms, &oplock, NULL); if (rc) return rc; - /* - * BB Do not bother to decode buf since no local inode yet to put - * timestamps in, but we can reuse it safely. - */ - pdev = (struct win_dev *)&buf.fi; io_parms.pid = current->tgid; io_parms.tcon = tcon; - io_parms.length = sizeof(*pdev); - iov[1].iov_base = pdev; - iov[1].iov_len = sizeof(*pdev); - if (S_ISCHR(mode)) { - memcpy(pdev->type, "IntxCHR", 8); - pdev->major = cpu_to_le64(MAJOR(dev)); - pdev->minor = cpu_to_le64(MINOR(dev)); - } else if (S_ISBLK(mode)) { - memcpy(pdev->type, "IntxBLK", 8); - pdev->major = cpu_to_le64(MAJOR(dev)); - pdev->minor = cpu_to_le64(MINOR(dev)); - } else if (S_ISFIFO(mode)) { - memcpy(pdev->type, "LnxFIFO", 8); - } + io_parms.length = sizeof(pdev); + iov[1].iov_base = &pdev; + iov[1].iov_len = sizeof(pdev); rc = server->ops->sync_write(xid, &fid, &io_parms, &bytes_written, iov, 1); server->ops->close(xid, tcon, &fid); - d_drop(dentry); - /* FIXME: add code here to set EAs */ - cifs_free_open_info(&buf); + return rc; +} + +int cifs_sfu_make_node(unsigned int xid, struct inode *inode, + struct dentry *dentry, struct cifs_tcon *tcon, + const char *full_path, umode_t mode, dev_t dev) +{ + struct inode *new = NULL; + int rc; + + rc = __cifs_sfu_make_node(xid, inode, dentry, tcon, + full_path, mode, dev); + if (rc) + return rc; + + if (tcon->posix_extensions) { + rc = smb311_posix_get_inode_info(&new, full_path, NULL, + inode->i_sb, xid); + } else if (tcon->unix_ext) { + rc = cifs_get_inode_info_unix(&new, full_path, + inode->i_sb, xid); + } else { + rc = cifs_get_inode_info(&new, full_path, NULL, + inode->i_sb, xid, NULL); + } + if (!rc) + d_instantiate(dentry, new); return rc; }

1 year, 8 months

1
0
0 0

FAILED: patch "[PATCH] smb: client: instantiate when creating SFU files" failed to apply to 6.6-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 6.6-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. To reproduce the conflict and resubmit, you may use the following commands: git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.6.y git checkout FETCH_HEAD git cherry-pick -x c6ff459037b2e35450af2351037eac4c8aca1d6b # <resolve conflicts, build, test, etc.> git commit -s git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2024041457-sequester-eclipse-f130@gregkh' --subject-prefix 'PATCH 6.6.y' HEAD^.. Possible dependencies: thanks, greg k-h ------------------ original commit in Linus's tree ------------------ From c6ff459037b2e35450af2351037eac4c8aca1d6b Mon Sep 17 00:00:00 2001 From: Paulo Alcantara <pc(a)manguebit.com> Date: Tue, 9 Apr 2024 11:28:59 -0300 Subject: [PATCH] smb: client: instantiate when creating SFU files In cifs_sfu_make_node(), on success, instantiate rather than leave it with dentry unhashed negative to support callers that expect mknod(2) to always instantiate. This fixes the following test case: mount.cifs //srv/share /mnt -o ...,sfu mkfifo /mnt/fifo ./xfstests/ltp/growfiles -b -W test -e 1 -u -i 0 -L 30 /mnt/fifo ... BUG: unable to handle page fault for address: 000000034cec4e58 #PF: supervisor read access in kernel mode #PF: error_code(0x0000) - not-present page PGD 0 P4D 0 Oops: 0000 1 PREEMPT SMP PTI CPU: 0 PID: 138098 Comm: growfiles Kdump: loaded Not tainted 5.14.0-436.3987_1240945149.el9.x86_64 #1 Hardware name: Red Hat KVM, BIOS 0.5.1 01/01/2011 RIP: 0010:_raw_callee_save__kvm_vcpu_is_preempted+0x0/0x20 Code: e8 15 d9 61 00 e9 63 ff ff ff 41 bd ea ff ff ff e9 58 ff ff ff e8 d0 71 c0 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <48> 8b 04 fd 60 2b c1 99 80 b8 90 50 03 00 00 0f 95 c0 c3 cc cc cc RSP: 0018:ffffb6a143cf7cf8 EFLAGS: 00010206 RAX: ffff8a9bc30fb038 RBX: ffff8a9bc666a200 RCX: ffff8a9cc0260000 RDX: 00000000736f622e RSI: ffff8a9bc30fb038 RDI: 000000007665645f RBP: ffffb6a143cf7d70 R08: 0000000000001000 R09: 0000000000000001 R10: 0000000000000001 R11: 0000000000000000 R12: ffff8a9bc666a200 R13: 0000559a302a12b0 R14: 0000000000001000 R15: 0000000000000000 FS: 00007fbed1dbb740(0000) GS:ffff8a9cf0000000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000034cec4e58 CR3: 0000000128ec6006 CR4: 0000000000770ef0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 PKRU: 55555554 Call Trace: <TASK> ? show_trace_log_lvl+0x1c4/0x2df ? show_trace_log_lvl+0x1c4/0x2df ? __mutex_lock.constprop.0+0x5f7/0x6a0 ? __die_body.cold+0x8/0xd ? page_fault_oops+0x134/0x170 ? exc_page_fault+0x62/0x150 ? asm_exc_page_fault+0x22/0x30 ? _pfx_raw_callee_save__kvm_vcpu_is_preempted+0x10/0x10 __mutex_lock.constprop.0+0x5f7/0x6a0 ? __mod_memcg_lruvec_state+0x84/0xd0 pipe_write+0x47/0x650 ? do_anonymous_page+0x258/0x410 ? inode_security+0x22/0x60 ? selinux_file_permission+0x108/0x150 vfs_write+0x2cb/0x410 ksys_write+0x5f/0xe0 do_syscall_64+0x5c/0xf0 ? syscall_exit_to_user_mode+0x22/0x40 ? do_syscall_64+0x6b/0xf0 ? sched_clock_cpu+0x9/0xc0 ? exc_page_fault+0x62/0x150 entry_SYSCALL_64_after_hwframe+0x6e/0x76 Cc: stable(a)vger.kernel.org Fixes: 72bc63f5e23a ("smb3: fix creating FIFOs when mounting with "sfu" mount option") Suggested-by: Al Viro <viro(a)zeniv.linux.org.uk> Signed-off-by: Paulo Alcantara (Red Hat) <pc(a)manguebit.com> Signed-off-by: Steve French <stfrench(a)microsoft.com> diff --git a/fs/smb/client/smb2ops.c b/fs/smb/client/smb2ops.c index b156eefa75d7..78c94d0350fe 100644 --- a/fs/smb/client/smb2ops.c +++ b/fs/smb/client/smb2ops.c @@ -4964,68 +4964,84 @@ static int smb2_next_header(struct TCP_Server_Info *server, char *buf, return 0; } -int cifs_sfu_make_node(unsigned int xid, struct inode *inode, - struct dentry *dentry, struct cifs_tcon *tcon, - const char *full_path, umode_t mode, dev_t dev) +static int __cifs_sfu_make_node(unsigned int xid, struct inode *inode, + struct dentry *dentry, struct cifs_tcon *tcon, + const char *full_path, umode_t mode, dev_t dev) { - struct cifs_open_info_data buf = {}; struct TCP_Server_Info *server = tcon->ses->server; struct cifs_open_parms oparms; struct cifs_io_parms io_parms = {}; struct cifs_sb_info *cifs_sb = CIFS_SB(inode->i_sb); struct cifs_fid fid; unsigned int bytes_written; - struct win_dev *pdev; + struct win_dev pdev = {}; struct kvec iov[2]; __u32 oplock = server->oplocks ? REQ_OPLOCK : 0; int rc; - if (!S_ISCHR(mode) && !S_ISBLK(mode) && !S_ISFIFO(mode)) + switch (mode & S_IFMT) { + case S_IFCHR: + strscpy(pdev.type, "IntxCHR"); + pdev.major = cpu_to_le64(MAJOR(dev)); + pdev.minor = cpu_to_le64(MINOR(dev)); + break; + case S_IFBLK: + strscpy(pdev.type, "IntxBLK"); + pdev.major = cpu_to_le64(MAJOR(dev)); + pdev.minor = cpu_to_le64(MINOR(dev)); + break; + case S_IFIFO: + strscpy(pdev.type, "LnxFIFO"); + break; + default: return -EPERM; + } - oparms = (struct cifs_open_parms) { - .tcon = tcon, - .cifs_sb = cifs_sb, - .desired_access = GENERIC_WRITE, - .create_options = cifs_create_options(cifs_sb, CREATE_NOT_DIR | - CREATE_OPTION_SPECIAL), - .disposition = FILE_CREATE, - .path = full_path, - .fid = &fid, - }; + oparms = CIFS_OPARMS(cifs_sb, tcon, full_path, GENERIC_WRITE, + FILE_CREATE, CREATE_NOT_DIR | + CREATE_OPTION_SPECIAL, ACL_NO_MODE); + oparms.fid = &fid; - rc = server->ops->open(xid, &oparms, &oplock, &buf); + rc = server->ops->open(xid, &oparms, &oplock, NULL); if (rc) return rc; - /* - * BB Do not bother to decode buf since no local inode yet to put - * timestamps in, but we can reuse it safely. - */ - pdev = (struct win_dev *)&buf.fi; io_parms.pid = current->tgid; io_parms.tcon = tcon; - io_parms.length = sizeof(*pdev); - iov[1].iov_base = pdev; - iov[1].iov_len = sizeof(*pdev); - if (S_ISCHR(mode)) { - memcpy(pdev->type, "IntxCHR", 8); - pdev->major = cpu_to_le64(MAJOR(dev)); - pdev->minor = cpu_to_le64(MINOR(dev)); - } else if (S_ISBLK(mode)) { - memcpy(pdev->type, "IntxBLK", 8); - pdev->major = cpu_to_le64(MAJOR(dev)); - pdev->minor = cpu_to_le64(MINOR(dev)); - } else if (S_ISFIFO(mode)) { - memcpy(pdev->type, "LnxFIFO", 8); - } + io_parms.length = sizeof(pdev); + iov[1].iov_base = &pdev; + iov[1].iov_len = sizeof(pdev); rc = server->ops->sync_write(xid, &fid, &io_parms, &bytes_written, iov, 1); server->ops->close(xid, tcon, &fid); - d_drop(dentry); - /* FIXME: add code here to set EAs */ - cifs_free_open_info(&buf); + return rc; +} + +int cifs_sfu_make_node(unsigned int xid, struct inode *inode, + struct dentry *dentry, struct cifs_tcon *tcon, + const char *full_path, umode_t mode, dev_t dev) +{ + struct inode *new = NULL; + int rc; + + rc = __cifs_sfu_make_node(xid, inode, dentry, tcon, + full_path, mode, dev); + if (rc) + return rc; + + if (tcon->posix_extensions) { + rc = smb311_posix_get_inode_info(&new, full_path, NULL, + inode->i_sb, xid); + } else if (tcon->unix_ext) { + rc = cifs_get_inode_info_unix(&new, full_path, + inode->i_sb, xid); + } else { + rc = cifs_get_inode_info(&new, full_path, NULL, + inode->i_sb, xid, NULL); + } + if (!rc) + d_instantiate(dentry, new); return rc; }

1 year, 8 months

1
0
0 0

[PATCH v3] bootconfig: use memblock_free_late to free xbc memory to buddy

by qiang4.zhang＠linux.intel.com

From: Qiang Zhang <qiang4.zhang(a)intel.com> On the time to free xbc memory in xbc_exit(), memblock may has handed over memory to buddy allocator. So it doesn't make sense to free memory back to memblock. memblock_free() called by xbc_exit() even causes UAF bugs on architectures with CONFIG_ARCH_KEEP_MEMBLOCK disabled like x86. Following KASAN logs shows this case. This patch fixes the xbc memory free problem by calling memblock_free() in early xbc init error rewind path and calling memblock_free_late() in xbc exit path to free memory to buddy allocator. [ 9.410890] ================================================================== [ 9.418962] BUG: KASAN: use-after-free in memblock_isolate_range+0x12d/0x260 [ 9.426850] Read of size 8 at addr ffff88845dd30000 by task swapper/0/1 [ 9.435901] CPU: 9 PID: 1 Comm: swapper/0 Tainted: G U 6.9.0-rc3-00208-g586b5dfb51b9 #5 [ 9.446403] Hardware name: Intel Corporation RPLP LP5 (CPU:RaptorLake)/RPLP LP5 (ID:13), BIOS IRPPN02.01.01.00.00.19.015.D-00000000 Dec 28 2023 [ 9.460789] Call Trace: [ 9.463518] <TASK> [ 9.465859] dump_stack_lvl+0x53/0x70 [ 9.469949] print_report+0xce/0x610 [ 9.473944] ? __virt_addr_valid+0xf5/0x1b0 [ 9.478619] ? memblock_isolate_range+0x12d/0x260 [ 9.483877] kasan_report+0xc6/0x100 [ 9.487870] ? memblock_isolate_range+0x12d/0x260 [ 9.493125] memblock_isolate_range+0x12d/0x260 [ 9.498187] memblock_phys_free+0xb4/0x160 [ 9.502762] ? __pfx_memblock_phys_free+0x10/0x10 [ 9.508021] ? mutex_unlock+0x7e/0xd0 [ 9.512111] ? __pfx_mutex_unlock+0x10/0x10 [ 9.516786] ? kernel_init_freeable+0x2d4/0x430 [ 9.521850] ? __pfx_kernel_init+0x10/0x10 [ 9.526426] xbc_exit+0x17/0x70 [ 9.529935] kernel_init+0x38/0x1e0 [ 9.533829] ? _raw_spin_unlock_irq+0xd/0x30 [ 9.538601] ret_from_fork+0x2c/0x50 [ 9.542596] ? __pfx_kernel_init+0x10/0x10 [ 9.547170] ret_from_fork_asm+0x1a/0x30 [ 9.551552] </TASK> [ 9.555649] The buggy address belongs to the physical page: [ 9.561875] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x45dd30 [ 9.570821] flags: 0x200000000000000(node=0|zone=2) [ 9.576271] page_type: 0xffffffff() [ 9.580167] raw: 0200000000000000 ffffea0011774c48 ffffea0012ba1848 0000000000000000 [ 9.588823] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000 [ 9.597476] page dumped because: kasan: bad access detected [ 9.605362] Memory state around the buggy address: [ 9.610714] ffff88845dd2ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 9.618786] ffff88845dd2ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 9.626857] >ffff88845dd30000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 9.634930] ^ [ 9.638534] ffff88845dd30080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 9.646605] ffff88845dd30100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 9.654675] ================================================================== Cc: Stable(a)vger.kernel.org Signed-off-by: Qiang Zhang <qiang4.zhang(a)intel.com> --- v3: - add NULL pointer check in memblock_free_late() path. v2: - add an early flag in xbc_free_mem() to free memory back to memblock in xbc_init error path or put memory to buddy allocator in normal xbc_exit. --- include/linux/bootconfig.h | 7 ++++++- lib/bootconfig.c | 19 +++++++++++-------- 2 files changed, 17 insertions(+), 9 deletions(-) diff --git a/include/linux/bootconfig.h b/include/linux/bootconfig.h index e5ee2c694401..3f4b4ac527ca 100644 --- a/include/linux/bootconfig.h +++ b/include/linux/bootconfig.h @@ -288,7 +288,12 @@ int __init xbc_init(const char *buf, size_t size, const char **emsg, int *epos); int __init xbc_get_info(int *node_size, size_t *data_size); /* XBC cleanup data structures */ -void __init xbc_exit(void); +void __init _xbc_exit(bool early); + +static inline void xbc_exit(void) +{ + _xbc_exit(false); +} /* XBC embedded bootconfig data in kernel */ #ifdef CONFIG_BOOT_CONFIG_EMBED diff --git a/lib/bootconfig.c b/lib/bootconfig.c index c59d26068a64..8841554432d5 100644 --- a/lib/bootconfig.c +++ b/lib/bootconfig.c @@ -61,9 +61,12 @@ static inline void * __init xbc_alloc_mem(size_t size) return memblock_alloc(size, SMP_CACHE_BYTES); } -static inline void __init xbc_free_mem(void *addr, size_t size) +static inline void __init xbc_free_mem(void *addr, size_t size, bool early) { - memblock_free(addr, size); + if (early) + memblock_free(addr, size); + else if (addr) + memblock_free_late(__pa(addr), size); } #else /* !__KERNEL__ */ @@ -73,7 +76,7 @@ static inline void *xbc_alloc_mem(size_t size) return malloc(size); } -static inline void xbc_free_mem(void *addr, size_t size) +static inline void xbc_free_mem(void *addr, size_t size, bool early) { free(addr); } @@ -904,13 +907,13 @@ static int __init xbc_parse_tree(void) * If you need to reuse xbc_init() with new boot config, you can * use this. */ -void __init xbc_exit(void) +void __init _xbc_exit(bool early) { - xbc_free_mem(xbc_data, xbc_data_size); + xbc_free_mem(xbc_data, xbc_data_size, early); xbc_data = NULL; xbc_data_size = 0; xbc_node_num = 0; - xbc_free_mem(xbc_nodes, sizeof(struct xbc_node) * XBC_NODE_MAX); + xbc_free_mem(xbc_nodes, sizeof(struct xbc_node) * XBC_NODE_MAX, early); xbc_nodes = NULL; brace_index = 0; } @@ -963,7 +966,7 @@ int __init xbc_init(const char *data, size_t size, const char **emsg, int *epos) if (!xbc_nodes) { if (emsg) *emsg = "Failed to allocate bootconfig nodes"; - xbc_exit(); + _xbc_exit(true); return -ENOMEM; } memset(xbc_nodes, 0, sizeof(struct xbc_node) * XBC_NODE_MAX); @@ -977,7 +980,7 @@ int __init xbc_init(const char *data, size_t size, const char **emsg, int *epos) *epos = xbc_err_pos; if (emsg) *emsg = xbc_err_msg; - xbc_exit(); + _xbc_exit(true); } else ret = xbc_node_num; -- 2.39.2

1 year, 8 months

2
1
0 0

[PATCH v2] bootconfig: use memblock_free_late to free xbc memory to buddy

by qiang4.zhang＠linux.intel.com

From: Qiang Zhang <qiang4.zhang(a)intel.com> On the time to free xbc memory in xbc_exit(), memblock may has handed over memory to buddy allocator. So it doesn't make sense to free memory back to memblock. memblock_free() called by xbc_exit() even causes UAF bugs on architectures with CONFIG_ARCH_KEEP_MEMBLOCK disabled like x86. Following KASAN logs shows this case. This patch fixes the xbc memory free problem by calling memblock_free() in early xbc init error rewind path and calling memblock_free_late() in xbc exit path to free memory to buddy allocator. [ 9.410890] ================================================================== [ 9.418962] BUG: KASAN: use-after-free in memblock_isolate_range+0x12d/0x260 [ 9.426850] Read of size 8 at addr ffff88845dd30000 by task swapper/0/1 [ 9.435901] CPU: 9 PID: 1 Comm: swapper/0 Tainted: G U 6.9.0-rc3-00208-g586b5dfb51b9 #5 [ 9.446403] Hardware name: Intel Corporation RPLP LP5 (CPU:RaptorLake)/RPLP LP5 (ID:13), BIOS IRPPN02.01.01.00.00.19.015.D-00000000 Dec 28 2023 [ 9.460789] Call Trace: [ 9.463518] <TASK> [ 9.465859] dump_stack_lvl+0x53/0x70 [ 9.469949] print_report+0xce/0x610 [ 9.473944] ? __virt_addr_valid+0xf5/0x1b0 [ 9.478619] ? memblock_isolate_range+0x12d/0x260 [ 9.483877] kasan_report+0xc6/0x100 [ 9.487870] ? memblock_isolate_range+0x12d/0x260 [ 9.493125] memblock_isolate_range+0x12d/0x260 [ 9.498187] memblock_phys_free+0xb4/0x160 [ 9.502762] ? __pfx_memblock_phys_free+0x10/0x10 [ 9.508021] ? mutex_unlock+0x7e/0xd0 [ 9.512111] ? __pfx_mutex_unlock+0x10/0x10 [ 9.516786] ? kernel_init_freeable+0x2d4/0x430 [ 9.521850] ? __pfx_kernel_init+0x10/0x10 [ 9.526426] xbc_exit+0x17/0x70 [ 9.529935] kernel_init+0x38/0x1e0 [ 9.533829] ? _raw_spin_unlock_irq+0xd/0x30 [ 9.538601] ret_from_fork+0x2c/0x50 [ 9.542596] ? __pfx_kernel_init+0x10/0x10 [ 9.547170] ret_from_fork_asm+0x1a/0x30 [ 9.551552] </TASK> [ 9.555649] The buggy address belongs to the physical page: [ 9.561875] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x45dd30 [ 9.570821] flags: 0x200000000000000(node=0|zone=2) [ 9.576271] page_type: 0xffffffff() [ 9.580167] raw: 0200000000000000 ffffea0011774c48 ffffea0012ba1848 0000000000000000 [ 9.588823] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000 [ 9.597476] page dumped because: kasan: bad access detected [ 9.605362] Memory state around the buggy address: [ 9.610714] ffff88845dd2ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 9.618786] ffff88845dd2ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 9.626857] >ffff88845dd30000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 9.634930] ^ [ 9.638534] ffff88845dd30080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 9.646605] ffff88845dd30100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 9.654675] ================================================================== Cc: Stable(a)vger.kernel.org Signed-off-by: Qiang Zhang <qiang4.zhang(a)intel.com> --- v2: - add an early flag in xbc_free_mem() to free memory back to memblock in xbc_init error path or put memory to buddy allocator in normal xbc_exit. --- include/linux/bootconfig.h | 7 ++++++- lib/bootconfig.c | 19 +++++++++++-------- 2 files changed, 17 insertions(+), 9 deletions(-) diff --git a/include/linux/bootconfig.h b/include/linux/bootconfig.h index e5ee2c694401..3f4b4ac527ca 100644 --- a/include/linux/bootconfig.h +++ b/include/linux/bootconfig.h @@ -288,7 +288,12 @@ int __init xbc_init(const char *buf, size_t size, const char **emsg, int *epos); int __init xbc_get_info(int *node_size, size_t *data_size); /* XBC cleanup data structures */ -void __init xbc_exit(void); +void __init _xbc_exit(bool early); + +static inline void xbc_exit(void) +{ + _xbc_exit(false); +} /* XBC embedded bootconfig data in kernel */ #ifdef CONFIG_BOOT_CONFIG_EMBED diff --git a/lib/bootconfig.c b/lib/bootconfig.c index c59d26068a64..f9a45adc6307 100644 --- a/lib/bootconfig.c +++ b/lib/bootconfig.c @@ -61,9 +61,12 @@ static inline void * __init xbc_alloc_mem(size_t size) return memblock_alloc(size, SMP_CACHE_BYTES); } -static inline void __init xbc_free_mem(void *addr, size_t size) +static inline void __init xbc_free_mem(void *addr, size_t size, bool early) { - memblock_free(addr, size); + if (early) + memblock_free(addr, size); + else + memblock_free_late(__pa(addr), size); } #else /* !__KERNEL__ */ @@ -73,7 +76,7 @@ static inline void *xbc_alloc_mem(size_t size) return malloc(size); } -static inline void xbc_free_mem(void *addr, size_t size) +static inline void xbc_free_mem(void *addr, size_t size, bool early) { free(addr); } @@ -904,13 +907,13 @@ static int __init xbc_parse_tree(void) * If you need to reuse xbc_init() with new boot config, you can * use this. */ -void __init xbc_exit(void) +void __init _xbc_exit(bool early) { - xbc_free_mem(xbc_data, xbc_data_size); + xbc_free_mem(xbc_data, xbc_data_size, early); xbc_data = NULL; xbc_data_size = 0; xbc_node_num = 0; - xbc_free_mem(xbc_nodes, sizeof(struct xbc_node) * XBC_NODE_MAX); + xbc_free_mem(xbc_nodes, sizeof(struct xbc_node) * XBC_NODE_MAX, early); xbc_nodes = NULL; brace_index = 0; } @@ -963,7 +966,7 @@ int __init xbc_init(const char *data, size_t size, const char **emsg, int *epos) if (!xbc_nodes) { if (emsg) *emsg = "Failed to allocate bootconfig nodes"; - xbc_exit(); + _xbc_exit(true); return -ENOMEM; } memset(xbc_nodes, 0, sizeof(struct xbc_node) * XBC_NODE_MAX); @@ -977,7 +980,7 @@ int __init xbc_init(const char *data, size_t size, const char **emsg, int *epos) *epos = xbc_err_pos; if (emsg) *emsg = xbc_err_msg; - xbc_exit(); + _xbc_exit(true); } else ret = xbc_node_num; -- 2.39.2

1 year, 8 months

3
3
0 0

Linux 6.8.6

by Greg Kroah-Hartman

I'm announcing the release of the 6.8.6 kernel. All users of the 6.8 kernel series must upgrade. The updated 6.8.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-6.8.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/boot/dts/rockchip/rk322x.dtsi | 16 + arch/arm/boot/dts/rockchip/rk3288.dtsi | 16 + arch/arm64/boot/dts/qcom/qcm6490-idp.dts | 28 +++ arch/arm64/boot/dts/qcom/qcs6490-rb3gen2.dts | 17 ++ arch/arm64/boot/dts/qcom/qrb2210-rb1.dts | 18 ++ arch/arm64/boot/dts/rockchip/rk3328.dtsi | 11 + arch/arm64/boot/dts/rockchip/rk3399.dtsi | 12 + arch/x86/entry/vdso/Makefile | 10 - arch/x86/events/amd/lbr.c | 6 arch/x86/include/asm/xen/hypervisor.h | 5 arch/x86/pci/fixup.c | 48 +++++ arch/x86/platform/pvh/enlighten.c | 3 arch/x86/xen/enlighten.c | 32 +++ arch/x86/xen/enlighten_pvh.c | 68 ++++++++ arch/x86/xen/setup.c | 44 ----- arch/x86/xen/xen-ops.h | 14 + block/blk-stat.c | 2 drivers/accel/habanalabs/common/habanalabs.h | 2 drivers/acpi/resource.c | 7 drivers/acpi/sleep.c | 12 - drivers/acpi/x86/utils.c | 38 ++++ drivers/bluetooth/btintel.c | 2 drivers/bluetooth/btmtk.c | 1 drivers/bluetooth/btmtk.h | 1 drivers/bluetooth/btusb.c | 1 drivers/bus/mhi/host/init.c | 1 drivers/bus/mhi/host/internal.h | 9 - drivers/bus/mhi/host/pm.c | 20 ++ drivers/cpufreq/cpufreq.c | 17 +- drivers/cpuidle/driver.c | 3 drivers/crypto/intel/iaa/iaa_crypto_main.c | 4 drivers/firmware/tegra/bpmp-debugfs.c | 2 drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd.c | 2 drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 14 + drivers/gpu/drm/amd/amdgpu/amdgpu_drv.c | 5 drivers/gpu/drm/amd/amdkfd/kfd_chardev.c | 4 drivers/gpu/drm/amd/display/dc/dc.h | 1 drivers/gpu/drm/amd/display/dc/dc_dmub_srv.c | 4 drivers/gpu/drm/amd/display/dc/dml/dcn32/dcn32_fpu.c | 2 drivers/gpu/drm/amd/display/dc/resource/dcn35/dcn35_resource.c | 1 drivers/gpu/drm/amd/display/modules/inc/mod_stats.h | 4 drivers/gpu/drm/ci/gitlab-ci.yml | 14 + drivers/gpu/drm/ci/test.yml | 1 drivers/gpu/drm/drm_modeset_helper.c | 19 +- drivers/gpu/drm/drm_panel_orientation_quirks.c | 12 + drivers/gpu/drm/drm_probe_helper.c | 21 ++ drivers/gpu/drm/nouveau/nvkm/subdev/devinit/gm107.c | 12 - drivers/gpu/drm/nouveau/nvkm/subdev/devinit/r535.c | 1 drivers/gpu/drm/panel/panel-simple.c | 20 ++ drivers/gpu/drm/ttm/ttm_bo.c | 7 drivers/gpu/drm/vc4/vc4_plane.c | 5 drivers/hid/hid-ids.h | 1 drivers/hid/hid-input.c | 2 drivers/i2c/busses/i2c-designware-core.h | 2 drivers/infiniband/core/cm.c | 20 ++ drivers/input/joystick/xpad.c | 3 drivers/input/rmi4/rmi_driver.c | 6 drivers/input/touchscreen/imagis.c | 20 -- drivers/iommu/arm/arm-smmu-v3/arm-smmu-v3.c | 22 +- drivers/media/pci/sta2x11/sta2x11_vip.c | 9 - drivers/media/platform/mediatek/vcodec/common/mtk_vcodec_fw_vpu.c | 8 drivers/media/platform/mediatek/vcodec/decoder/mtk_vcodec_dec_drv.c | 5 drivers/media/platform/mediatek/vcodec/decoder/mtk_vcodec_dec_drv.h | 2 drivers/media/platform/mediatek/vcodec/decoder/vdec/vdec_hevc_req_multi_if.c | 2 drivers/media/platform/mediatek/vcodec/decoder/vdec_vpu_if.c | 2 drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c | 5 drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.h | 2 drivers/media/platform/mediatek/vcodec/encoder/venc_vpu_if.c | 2 drivers/misc/vmw_vmci/vmci_datagram.c | 6 drivers/net/dsa/qca/qca8k-8xxx.c | 3 drivers/net/dummy.c | 1 drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c | 9 - drivers/net/ethernet/broadcom/bnx2x/bnx2x_ethtool.c | 2 drivers/net/ethernet/broadcom/bnx2x/bnx2x_link.c | 14 - drivers/net/ethernet/intel/ice/ice_virtchnl.c | 9 - drivers/net/ethernet/intel/ice/ice_virtchnl.h | 9 + drivers/net/ethernet/pensando/ionic/ionic_lif.c | 5 drivers/net/ethernet/stmicro/stmmac/Kconfig | 6 drivers/net/ethernet/stmicro/stmmac/dwmac-starfive.c | 32 +++ drivers/net/geneve.c | 1 drivers/net/loopback.c | 1 drivers/net/pcs/pcs-xpcs.c | 4 drivers/net/phy/phy_device.c | 13 - drivers/net/veth.c | 1 drivers/net/vxlan/vxlan_core.c | 1 drivers/net/wireless/ath/ath11k/mhi.c | 2 drivers/net/wireless/ath/ath9k/antenna.c | 2 drivers/net/wireless/broadcom/brcm80211/brcmfmac/dmi.c | 9 + drivers/net/wireless/intel/iwlwifi/cfg/ax210.c | 6 drivers/net/wireless/intel/iwlwifi/cfg/bz.c | 2 drivers/net/wireless/intel/iwlwifi/cfg/sc.c | 38 ++++ drivers/net/wireless/intel/iwlwifi/iwl-config.h | 8 drivers/net/wireless/intel/iwlwifi/pcie/drv.c | 16 + drivers/net/wireless/mediatek/mt76/mt7915/mmio.c | 45 ++++- drivers/net/wireless/mediatek/mt76/mt7915/mt7915.h | 1 drivers/net/wireless/mediatek/mt76/mt7996/mac.c | 5 drivers/net/wireless/mediatek/mt76/mt7996/mmio.c | 64 ++++--- drivers/net/wireless/mediatek/mt76/mt7996/mt7996.h | 3 drivers/net/wireless/realtek/rtw89/mac80211.c | 4 drivers/net/wireless/realtek/rtw89/pci.c | 60 ++++++- drivers/net/wireless/realtek/rtw89/pci.h | 6 drivers/net/wireless/realtek/rtw89/rtw8851be.c | 2 drivers/net/wireless/realtek/rtw89/rtw8852ae.c | 1 drivers/net/wireless/realtek/rtw89/rtw8852be.c | 1 drivers/net/wireless/realtek/rtw89/rtw8852ce.c | 1 drivers/net/wireless/realtek/rtw89/rtw8922ae.c | 1 drivers/nvme/host/pci.c | 3 drivers/perf/hisilicon/hisi_uncore_uc_pmu.c | 42 ++++ drivers/pinctrl/renesas/core.c | 4 drivers/platform/x86/acer-wmi.c | 17 +- drivers/platform/x86/intel/hid.c | 7 drivers/platform/x86/intel/vbtn.c | 5 drivers/platform/x86/touchscreen_dmi.c | 9 + drivers/pmdomain/imx/imx8mp-blk-ctrl.c | 10 - drivers/pmdomain/ti/omap_prm.c | 2 drivers/scsi/lpfc/lpfc_nportdisc.c | 6 drivers/soundwire/dmi-quirks.c | 8 drivers/thermal/thermal_of.c | 12 - drivers/thunderbolt/quirks.c | 14 + drivers/thunderbolt/tb.c | 49 +++++ drivers/thunderbolt/tb.h | 4 drivers/thunderbolt/tunnel.c | 16 - drivers/tty/serial/8250/8250_of.c | 44 ++++- drivers/tty/serial/8250/8250_port.c | 24 -- drivers/ufs/host/ufs-qcom.c | 13 + drivers/usb/gadget/function/uvc_video.c | 10 - drivers/usb/host/sl811-hcd.c | 2 drivers/usb/typec/tcpm/tcpci.c | 1 drivers/usb/typec/ucsi/ucsi.c | 26 ++- drivers/usb/typec/ucsi/ucsi.h | 11 + drivers/usb/typec/ucsi/ucsi_glink.c | 1 drivers/video/fbdev/core/fbmon.c | 7 drivers/video/fbdev/via/accel.c | 4 drivers/xen/balloon.c | 2 fs/btrfs/export.c | 9 - fs/btrfs/send.c | 10 + fs/btrfs/volumes.c | 12 + fs/ext4/mballoc.c | 5 fs/ext4/super.c | 12 + fs/isofs/inode.c | 18 +- fs/kernfs/dir.c | 31 ++- fs/kernfs/kernfs-internal.h | 2 fs/orangefs/super.c | 2 fs/pstore/zone.c | 2 fs/sysv/itree.c | 10 - include/acpi/acpi_bus.h | 14 - include/linux/kernfs.h | 2 include/linux/overflow.h | 12 - include/linux/printk.h | 2 include/linux/randomize_kstack.h | 2 include/linux/rcupdate.h | 4 include/linux/skbuff.h | 11 + include/linux/sunrpc/sched.h | 2 include/net/bluetooth/hci.h | 8 include/uapi/linux/input-event-codes.h | 1 io_uring/io_uring.c | 25 +- kernel/dma/direct.c | 9 - kernel/panic.c | 8 kernel/printk/internal.h | 1 kernel/printk/printk.c | 3 kernel/rcu/tree_nocb.h | 2 kernel/trace/ring_buffer.c | 2 lib/dump_stack.c | 16 + net/bluetooth/hci_event.c | 3 net/core/netdev-genl.c | 15 - net/core/page_pool_user.c | 2 net/ipv4/ip_tunnel.c | 1 net/ipv6/ip6_gre.c | 2 net/ipv6/ip6_tunnel.c | 1 net/ipv6/ip6_vti.c | 1 net/ipv6/sit.c | 1 net/mpls/mpls_gso.c | 3 net/smc/smc_pnet.c | 10 + net/wireless/util.c | 14 + scripts/gcc-plugins/stackleak_plugin.c | 2 scripts/mod/modpost.c | 4 sound/firewire/amdtp-stream.c | 12 - sound/firewire/amdtp-stream.h | 4 sound/pci/hda/patch_realtek.c | 12 + sound/soc/amd/yc/acp6x-mach.c | 7 sound/soc/intel/avs/board_selection.c | 85 ++++++++++ sound/soc/intel/boards/sof_rt5682.c | 40 ---- sound/soc/intel/boards/sof_sdw.c | 11 + sound/soc/soc-core.c | 3 sound/soc/sof/amd/acp.c | 3 tools/iio/iio_utils.c | 2 tools/lib/perf/evlist.c | 18 +- tools/lib/perf/include/internal/evlist.h | 4 tools/power/x86/x86_energy_perf_policy/x86_energy_perf_policy.c | 1 tools/testing/ktest/ktest.pl | 1 191 files changed, 1530 insertions(+), 450 deletions(-) Abhishek Pandit-Subedi (1): usb: typec: ucsi: Limit read size on v1.2 Adam Ford (1): pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain Ahmad Rehman (1): drm/amdgpu: Init zone device and drm client after mode-1 reset on reload Alban Boyé (1): platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet Aleksandr Burakov (1): fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 Alex Henrie (1): isofs: handle CDs with bad root inode but good Joliet root directory Andre Werner (1): net: phy: phy_device: Prevent nullptr exceptions on ISR Andy Shevchenko (1): serial: 8250_of: Drop quirk fot NPCM from 8250_port Ard Biesheuvel (1): gcc-plugins/stackleak: Avoid .head.text section Aric Cyr (1): drm/amd/display: Fix nanosec stat overflow Arnd Bergmann (1): media: sta2x11: fix irq handler cast Baochen Qiang (1): wifi: ath11k: decrease MHI channel buffer length to 8KB Bjorn Andersson (1): arm64: dts: qcom: qcs6490-rb3gen2: Declare GCC clocks protected Borislav Petkov (AMD) (1): x86/vdso: Fix rethunk patching for vdso-image-x32.o too Brent Lu (1): ASoC: Intel: sof_rt5682: dmi quirk cleanup for mtl boards C Cheng (1): cpuidle: Avoid potential overflow in integer multiplication Cezary Rojewski (1): ASoC: Intel: avs: Populate board selection with new I2S entries Chancel Liu (1): ASoC: soc-core.c: Skip dummy codec when adding platforms Christian König (1): drm/ttm: return ENOSPC from ttm_bo_mem_space v3 Colin Ian King (1): usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined Cristian Ciocaltea (2): net: stmmac: dwmac-starfive: Add support for JH7100 SoC ASoC: SOF: amd: Optimize quirk for Valve Galileo Dai Ngo (1): SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int Daniel Drake (2): PCI: Disable D3cold on Asus B1400 PCI-NVMe bridge Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" Dave Airlie (2): amdkfd: use calloc instead of kzalloc to avoid integer overflow nouveau: fix devinit paths to only handle display on GSP. David McFarland (1): platform/x86/intel/hid: Don't wake on 5-button releases David Sterba (3): btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() btrfs: export: handle invalid inode or root reference in btrfs_get_parent() btrfs: send: handle path ref underflow in header iterate_inode_ref() Dmitry Antipov (1): wifi: ath9k: fix LNA selection in ath_ant_try_scan() Dmitry Baryshkov (1): arm64: dts: qcom: qrb2210-rb1: disable cluster power domains Dmitry Torokhov (1): HID: input: avoid polling stylus battery on Chromebook Pompom Duje Mihanović (1): Input: imagis - use FIELD_GET where applicable Edward Adam Davis (1): Bluetooth: btintel: Fix null ptr deref in btintel_read_version Eric Chanudet (1): scsi: ufs: qcom: Avoid re-init quirk when gears match Eric Dumazet (2): net: add netdev_lockdep_set_classes() to virtual drivers net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() Florian Westphal (2): net: skbuff: add overflow debug check to pull/push helpers net: mpls: error out if inner headers are not set Geert Uytterhoeven (1): pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs Gergo Koteles (1): Input: allocate keycode for Display refresh rate toggle Gil Fine (1): thunderbolt: Calculate DisplayPort tunnel bandwidth after DPRX capabilities read Greg Kroah-Hartman (1): Linux 6.8.6 Gwendal Grignou (1): platform/x86: intel-vbtn: Update tablet mode switch at end of probe Hans de Goede (3): wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro ACPI: x86: Move acpi_quirk_skip_serdev_enumeration() out of CONFIG_X86_ANDROID_TABLETS ACPI: x86: Add DELL0501 handling to acpi_quirk_skip_serdev_enumeration() Harshit Mogalapalli (1): VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() Hui Liu (1): arm64: dts: qcom: qcm6490-idp: Add definition for three LEDs Ian Rogers (1): libperf evlist: Avoid out-of-bounds access Jacob Keller (1): ice: use relative VSI index for VFs instead of PF VSI number Jakub Kicinski (1): netdev: let netlink core handle -EMSGSIZE errors Jarkko Nikula (1): i2c: designware: Fix RX FIFO depth define on Wangxun 10Gb NIC Jason Gunthorpe (1): iommu/arm-smmu-v3: Hold arm_smmu_asid_lock during all of attach_dev Jeffrey Hugo (1): bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state Jens Axboe (1): io_uring: clear opcode specific data for an early failure Jiawei Fu (iBug) (1): drivers/nvme: Add quirks for device 126f:2262 Jichi Zhang (1): ALSA: hda/realtek: Add quirk for Lenovo Yoga 9 14IMH9 Johan Jonker (4): ARM: dts: rockchip: fix rk3288 hdmi ports node ARM: dts: rockchip: fix rk322x hdmi ports node arm64: dts: rockchip: fix rk3328 hdmi ports node arm64: dts: rockchip: fix rk3399 hdmi ports node Johannes Berg (1): wifi: cfg80211: check A-MSDU format more carefully John Ogness (3): printk: For @suppress_panic_printk check for other CPU in panic panic: Flush kernel log buffer at the end dump_stack: Do not get cpu_sync for panic CPU Josh Poimboeuf (1): x86/vdso: Fix rethunk patching for vdso-image-{32,64}.o Junhao He (1): drivers/perf: hisi: Enable HiSilicon Erratum 162700402 quirk for HIP09 Justin Tee (1): scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() Kees Cook (3): bnx2x: Fix firmware version string character counts overflow: Allow non-type arg to type_max() and type_min() randomize_kstack: Improve entropy diffusion Koby Elbaz (1): accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings Konrad Dybcio (1): thermal/of: Assume polling-delay(-passive) 0 when absent Kunwu Chan (3): pmdomain: ti: Add a null pointer check to the omap_prm_domain_init pstore/zone: Add a null pointer check to the psz_kmsg_read Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails Luca Weiss (1): usb: typec: ucsi: Add qcm6490-pmic-glink as needing PDOS quirk Luiz Augusto von Dentz (1): Bluetooth: btintel: Fixe build regression M Cooley (1): ASoC: amd: yc: Fix non-functional mic on ASUS M7600RE Ma Jun (1): Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init()" Manjunath Patil (1): RDMA/cm: add timeout to cm_destroy_id wait Marco Felsch (1): usb: typec: tcpci: add generic tcpci fallback compatible Markus Elfring (1): firmware: tegra: bpmp: Return directly after a failed kzalloc() in get_filename() Markuss Broks (1): input/touchscreen: imagis: Correct the maximum touch area value Matt Scialabba (1): Input: xpad - add support for Snakebyte GAMEPADs Max Kellermann (1): modpost: fix null pointer dereference Maíra Canal (1): drm/vc4: don't check if plane->state->fb == state->fb Michael Grzeschik (2): usb: gadget: uvc: refactor the check for a valid buffer in the pump worker usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR Mika Westerberg (1): thunderbolt: Keep the domain powered when USB4 port is in redrive mode Mike Marshall (1): Julia Lawall reported this null pointer dereference, this should fix it. Mukesh Sisodiya (2): wifi: iwlwifi: pcie: Add the PCI device id for new hardware wifi: iwlwifi: pcie: Add new PCI device id and CNVI Nicholas Kazlauskas (1): drm/amd/display: Disable idle reallow as part of command/gpint execution Nicolas Dufresne (1): media: mediatek: vcodec: Fix oops when HEVC init fails Paul E. McKenney (1): rcu-tasks: Repair RCU Tasks Trace quiescence check Peter Chiu (1): wifi: mt76: mt7996: disable AMSDU for non-data frames Petre Rodan (1): tools: iio: replace seekdir() in iio_generic_buffer Ping-Ke Shih (2): wifi: rtw89: pci: validate RX tag for RXQ and RPQ wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor Po-Hao Huang (1): wifi: rtw89: fix null pointer access when abort scan Ricardo B. Marliere (1): ktest: force $buildonly = 1 for 'make_warnings_file' test type Rick Edgecombe (1): dma-direct: Leak pages on dma_set_decrypted() failure Roger Pau Monne (1): x86/xen: attempt to inflate the memory balloon on PVH Roman Smirnov (2): block: prevent division by zero in blk_rq_stat_sum() fbmon: prevent division by zero in fb_videomode_from_videomode() Samasth Norway Ananda (1): tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() Samuel Dionne-Riel (1): drm: panel-orientation-quirks: Add quirk for GPD Win Mini Sandipan Das (1): perf/x86/amd/lbr: Discard erroneous branch entries Serge Semin (1): net: pcs: xpcs: Return EINVAL in the internal methods Shannon Nelson (1): ionic: set adminq irq affinity Shayne Chen (2): wifi: mt76: mt7915: add locking for accessing mapped registers wifi: mt76: mt7996: add locking for accessing mapped registers Shradha Gupta (2): drm: Check output polling initialized before disabling drm: Check polling initialized before enabling in drm_helper_probe_single_connector_modes Sohaib Nadeem (1): drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz Srinivasan Shanmugam (1): drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init() Stanley.Yang (1): drm/amdgpu: Skip do PCI error slot reset during RAS recovery SungHwan Jung (2): platform/x86: acer-wmi: Add support for Acer PH16-71 platform/x86: acer-wmi: Add predator_v4 module parameter Sviatoslav Harasymchuk (1): ACPI: resource: Add IRQ override quirk for ASUS ExpertBook B2502FBA Takashi Iwai (2): wifi: iwlwifi: Add missing MODULE_FIRMWARE() for *.pnvm Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922 Takashi Sakamoto (1): ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter Tejun Heo (1): kernfs: RCU protect kernfs_nodes and avoid kernfs_idr_lock in kernfs_find_and_get_node_by_id() Tetsuo Handa (1): sysv: don't call sb_bread() with pointers_lock held Tim Crawford (1): ALSA: hda/realtek: Add quirks for some Clevo laptops Tom Zanussi (1): crypto: iaa - Fix async_disable descriptor leak Tony Lindgren (1): drm/panel: simple: Add BOE BP082WX1-100 8.2" panel Vasiliy Kovalev (1): VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() Vignesh Raman (1): drm/ci: uprev mesa version: fix kdl commit fetch Vinicius Peixoto (1): Bluetooth: Add new quirk for broken read key length on ATS2851 Viresh Kumar (1): cpufreq: Don't unregister cpufreq cooling on CPU hotplug Vladimir Oltean (1): net: dsa: qca8k: put MDIO controller OF node if unavailable Ye Bin (1): ext4: forbid commit inconsistent quota data when errors=remount-ro Yunfei Dong (2): media: mediatek: vcodec: adding lock to protect decoder context list media: mediatek: vcodec: adding lock to protect encoder context list Zhang Yi (1): ext4: add a hint for block bitmap corrupt state in mb_groups Zqiang (1): rcu/nocb: Fix WARN_ON_ONCE() in the rcu_nocb_bypass_lock() linke li (1): ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment mosomate (1): ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710) laptops

1 year, 8 months

1
1
0 0

Linux 6.6.27

by Greg Kroah-Hartman

I'm announcing the release of the 6.6.27 kernel. All users of the 6.6 kernel series must upgrade. The updated 6.6.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-6.6.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/boot/dts/rockchip/rk322x.dtsi | 16 + arch/arm/boot/dts/rockchip/rk3288.dtsi | 16 + arch/arm64/boot/dts/rockchip/rk3328.dtsi | 11 + arch/arm64/boot/dts/rockchip/rk3399.dtsi | 12 + arch/x86/events/amd/lbr.c | 6 arch/x86/include/asm/xen/hypervisor.h | 5 arch/x86/pci/fixup.c | 48 +++++ arch/x86/platform/pvh/enlighten.c | 3 arch/x86/xen/enlighten.c | 32 +++ arch/x86/xen/enlighten_pvh.c | 68 ++++++++ arch/x86/xen/setup.c | 44 ----- arch/x86/xen/xen-ops.h | 14 + block/blk-stat.c | 2 drivers/accel/habanalabs/common/habanalabs.h | 2 drivers/acpi/sleep.c | 12 - drivers/acpi/x86/utils.c | 18 +- drivers/bluetooth/btintel.c | 2 drivers/bluetooth/btmtk.c | 1 drivers/bluetooth/btmtk.h | 1 drivers/bluetooth/btusb.c | 1 drivers/bus/mhi/host/init.c | 1 drivers/bus/mhi/host/internal.h | 9 - drivers/bus/mhi/host/pm.c | 20 ++ drivers/cpufreq/cpufreq.c | 17 +- drivers/cpuidle/driver.c | 3 drivers/firmware/tegra/bpmp-debugfs.c | 2 drivers/gpu/drm/amd/amdkfd/kfd_chardev.c | 4 drivers/gpu/drm/amd/display/modules/inc/mod_stats.h | 4 drivers/gpu/drm/drm_modeset_helper.c | 19 +- drivers/gpu/drm/drm_panel_orientation_quirks.c | 12 + drivers/gpu/drm/drm_probe_helper.c | 21 ++ drivers/gpu/drm/ttm/ttm_bo.c | 7 drivers/gpu/drm/vc4/vc4_plane.c | 5 drivers/hid/hid-ids.h | 1 drivers/hid/hid-input.c | 2 drivers/i2c/busses/i2c-designware-core.h | 2 drivers/infiniband/core/cm.c | 20 ++ drivers/input/joystick/xpad.c | 3 drivers/input/rmi4/rmi_driver.c | 6 drivers/input/touchscreen/imagis.c | 20 -- drivers/media/pci/sta2x11/sta2x11_vip.c | 9 - drivers/media/platform/mediatek/vcodec/common/mtk_vcodec_fw_vpu.c | 8 drivers/media/platform/mediatek/vcodec/decoder/mtk_vcodec_dec_drv.c | 5 drivers/media/platform/mediatek/vcodec/decoder/mtk_vcodec_dec_drv.h | 2 drivers/media/platform/mediatek/vcodec/decoder/vdec/vdec_hevc_req_multi_if.c | 2 drivers/media/platform/mediatek/vcodec/decoder/vdec_vpu_if.c | 2 drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c | 5 drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.h | 2 drivers/media/platform/mediatek/vcodec/encoder/venc_vpu_if.c | 2 drivers/misc/vmw_vmci/vmci_datagram.c | 6 drivers/net/dummy.c | 1 drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c | 9 - drivers/net/ethernet/broadcom/bnx2x/bnx2x_ethtool.c | 2 drivers/net/ethernet/broadcom/bnx2x/bnx2x_link.c | 14 - drivers/net/ethernet/intel/ice/ice_virtchnl.c | 9 - drivers/net/ethernet/intel/ice/ice_virtchnl.h | 9 + drivers/net/ethernet/pensando/ionic/ionic_lif.c | 5 drivers/net/ethernet/stmicro/stmmac/Kconfig | 6 drivers/net/ethernet/stmicro/stmmac/dwmac-starfive.c | 32 +++ drivers/net/geneve.c | 1 drivers/net/loopback.c | 1 drivers/net/pcs/pcs-xpcs.c | 4 drivers/net/phy/phy_device.c | 13 - drivers/net/veth.c | 1 drivers/net/vxlan/vxlan_core.c | 1 drivers/net/wireless/ath/ath11k/mhi.c | 2 drivers/net/wireless/ath/ath9k/antenna.c | 2 drivers/net/wireless/broadcom/brcm80211/brcmfmac/dmi.c | 9 + drivers/net/wireless/intel/iwlwifi/cfg/ax210.c | 6 drivers/net/wireless/intel/iwlwifi/cfg/bz.c | 2 drivers/net/wireless/intel/iwlwifi/pcie/drv.c | 1 drivers/net/wireless/mediatek/mt76/mt7915/mmio.c | 45 ++++- drivers/net/wireless/mediatek/mt76/mt7915/mt7915.h | 1 drivers/net/wireless/mediatek/mt76/mt7996/mac.c | 5 drivers/net/wireless/mediatek/mt76/mt7996/mmio.c | 64 ++++--- drivers/net/wireless/mediatek/mt76/mt7996/mt7996.h | 3 drivers/net/wireless/realtek/rtw89/mac80211.c | 4 drivers/net/wireless/realtek/rtw89/pci.h | 2 drivers/nvme/host/pci.c | 3 drivers/perf/hisilicon/hisi_uncore_uc_pmu.c | 42 ++++ drivers/pinctrl/renesas/core.c | 4 drivers/platform/x86/intel/vbtn.c | 5 drivers/platform/x86/touchscreen_dmi.c | 9 + drivers/pmdomain/imx/imx8mp-blk-ctrl.c | 10 - drivers/pmdomain/ti/omap_prm.c | 2 drivers/scsi/lpfc/lpfc_nportdisc.c | 6 drivers/soundwire/dmi-quirks.c | 8 drivers/thermal/thermal_of.c | 12 - drivers/thunderbolt/quirks.c | 14 + drivers/thunderbolt/tb.c | 49 +++++ drivers/thunderbolt/tb.h | 4 drivers/usb/gadget/function/uvc_video.c | 3 drivers/usb/host/sl811-hcd.c | 2 drivers/usb/typec/tcpm/tcpci.c | 1 drivers/usb/typec/ucsi/ucsi.c | 26 ++- drivers/usb/typec/ucsi/ucsi.h | 11 + drivers/video/fbdev/core/fbmon.c | 7 drivers/video/fbdev/via/accel.c | 4 drivers/xen/balloon.c | 2 fs/btrfs/export.c | 9 - fs/btrfs/send.c | 10 + fs/btrfs/volumes.c | 12 + fs/ext4/mballoc.c | 5 fs/ext4/super.c | 12 + fs/isofs/inode.c | 18 +- fs/kernfs/dir.c | 31 ++- fs/kernfs/kernfs-internal.h | 2 fs/orangefs/super.c | 2 fs/pstore/zone.c | 2 fs/sysv/itree.c | 10 - include/acpi/acpi_bus.h | 14 - include/linux/kernfs.h | 2 include/linux/overflow.h | 12 - include/linux/randomize_kstack.h | 2 include/linux/rcupdate.h | 4 include/linux/skbuff.h | 11 + include/linux/sunrpc/sched.h | 2 include/net/bluetooth/hci.h | 8 include/uapi/linux/input-event-codes.h | 1 io_uring/io_uring.c | 25 +- kernel/dma/direct.c | 9 - kernel/panic.c | 8 kernel/printk/printk.c | 3 kernel/rcu/tree_nocb.h | 2 kernel/trace/ring_buffer.c | 2 net/bluetooth/hci_event.c | 3 net/ipv4/ip_tunnel.c | 1 net/ipv6/ip6_gre.c | 2 net/ipv6/ip6_tunnel.c | 1 net/ipv6/ip6_vti.c | 1 net/ipv6/sit.c | 1 net/mpls/mpls_gso.c | 3 net/smc/smc_pnet.c | 10 + net/wireless/util.c | 14 + scripts/gcc-plugins/stackleak_plugin.c | 2 scripts/mod/modpost.c | 4 sound/firewire/amdtp-stream.c | 12 - sound/firewire/amdtp-stream.h | 4 sound/pci/hda/patch_realtek.c | 12 + sound/soc/amd/yc/acp6x-mach.c | 7 sound/soc/intel/avs/board_selection.c | 85 ++++++++++ sound/soc/intel/boards/sof_sdw.c | 11 + sound/soc/soc-core.c | 3 sound/soc/sof/amd/acp.c | 3 tools/iio/iio_utils.c | 2 tools/lib/perf/evlist.c | 18 +- tools/lib/perf/include/internal/evlist.h | 4 tools/power/x86/x86_energy_perf_policy/x86_energy_perf_policy.c | 1 tools/testing/ktest/ktest.pl | 1 tools/testing/selftests/net/mptcp/mptcp_join.sh | 5 151 files changed, 1134 insertions(+), 309 deletions(-) Abhishek Pandit-Subedi (1): usb: typec: ucsi: Limit read size on v1.2 Adam Ford (1): pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain Alban Boyé (1): platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet Aleksandr Burakov (1): fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 Alex Henrie (1): isofs: handle CDs with bad root inode but good Joliet root directory Andre Werner (1): net: phy: phy_device: Prevent nullptr exceptions on ISR Ard Biesheuvel (1): gcc-plugins/stackleak: Avoid .head.text section Aric Cyr (1): drm/amd/display: Fix nanosec stat overflow Arnd Bergmann (1): media: sta2x11: fix irq handler cast Baochen Qiang (1): wifi: ath11k: decrease MHI channel buffer length to 8KB C Cheng (1): cpuidle: Avoid potential overflow in integer multiplication Cezary Rojewski (1): ASoC: Intel: avs: Populate board selection with new I2S entries Chancel Liu (1): ASoC: soc-core.c: Skip dummy codec when adding platforms Christian König (1): drm/ttm: return ENOSPC from ttm_bo_mem_space v3 Colin Ian King (1): usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined Cristian Ciocaltea (2): net: stmmac: dwmac-starfive: Add support for JH7100 SoC ASoC: SOF: amd: Optimize quirk for Valve Galileo Dai Ngo (1): SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int Daniel Drake (2): PCI: Disable D3cold on Asus B1400 PCI-NVMe bridge Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" Dave Airlie (1): amdkfd: use calloc instead of kzalloc to avoid integer overflow David Sterba (3): btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() btrfs: export: handle invalid inode or root reference in btrfs_get_parent() btrfs: send: handle path ref underflow in header iterate_inode_ref() Dmitry Antipov (1): wifi: ath9k: fix LNA selection in ath_ant_try_scan() Dmitry Torokhov (1): HID: input: avoid polling stylus battery on Chromebook Pompom Duje Mihanović (1): Input: imagis - use FIELD_GET where applicable Edward Adam Davis (1): Bluetooth: btintel: Fix null ptr deref in btintel_read_version Eric Dumazet (2): net: add netdev_lockdep_set_classes() to virtual drivers net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() Florian Westphal (2): net: skbuff: add overflow debug check to pull/push helpers net: mpls: error out if inner headers are not set Geert Uytterhoeven (1): pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs Geliang Tang (1): selftests: mptcp: display simult in extra_msg Gergo Koteles (1): Input: allocate keycode for Display refresh rate toggle Greg Kroah-Hartman (1): Linux 6.6.27 Gwendal Grignou (1): platform/x86: intel-vbtn: Update tablet mode switch at end of probe Hans de Goede (2): wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro ACPI: x86: Move acpi_quirk_skip_serdev_enumeration() out of CONFIG_X86_ANDROID_TABLETS Harshit Mogalapalli (1): VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() Ian Rogers (1): libperf evlist: Avoid out-of-bounds access Jacob Keller (1): ice: use relative VSI index for VFs instead of PF VSI number Jarkko Nikula (1): i2c: designware: Fix RX FIFO depth define on Wangxun 10Gb NIC Jeffrey Hugo (1): bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state Jens Axboe (1): io_uring: clear opcode specific data for an early failure Jiawei Fu (iBug) (1): drivers/nvme: Add quirks for device 126f:2262 Jichi Zhang (1): ALSA: hda/realtek: Add quirk for Lenovo Yoga 9 14IMH9 Johan Jonker (4): ARM: dts: rockchip: fix rk3288 hdmi ports node ARM: dts: rockchip: fix rk322x hdmi ports node arm64: dts: rockchip: fix rk3328 hdmi ports node arm64: dts: rockchip: fix rk3399 hdmi ports node Johannes Berg (1): wifi: cfg80211: check A-MSDU format more carefully John Ogness (2): printk: For @suppress_panic_printk check for other CPU in panic panic: Flush kernel log buffer at the end Junhao He (1): drivers/perf: hisi: Enable HiSilicon Erratum 162700402 quirk for HIP09 Justin Tee (1): scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() Kees Cook (3): bnx2x: Fix firmware version string character counts overflow: Allow non-type arg to type_max() and type_min() randomize_kstack: Improve entropy diffusion Koby Elbaz (1): accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings Konrad Dybcio (1): thermal/of: Assume polling-delay(-passive) 0 when absent Kunwu Chan (3): pmdomain: ti: Add a null pointer check to the omap_prm_domain_init pstore/zone: Add a null pointer check to the psz_kmsg_read Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails Luiz Augusto von Dentz (1): Bluetooth: btintel: Fixe build regression M Cooley (1): ASoC: amd: yc: Fix non-functional mic on ASUS M7600RE Ma Jun (1): Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init()" Manjunath Patil (1): RDMA/cm: add timeout to cm_destroy_id wait Marco Felsch (1): usb: typec: tcpci: add generic tcpci fallback compatible Markus Elfring (1): firmware: tegra: bpmp: Return directly after a failed kzalloc() in get_filename() Markuss Broks (1): input/touchscreen: imagis: Correct the maximum touch area value Matt Scialabba (1): Input: xpad - add support for Snakebyte GAMEPADs Max Kellermann (1): modpost: fix null pointer dereference Maíra Canal (1): drm/vc4: don't check if plane->state->fb == state->fb Michael Grzeschik (1): usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR Mika Westerberg (1): thunderbolt: Keep the domain powered when USB4 port is in redrive mode Mike Marshall (1): Julia Lawall reported this null pointer dereference, this should fix it. Mukesh Sisodiya (1): wifi: iwlwifi: pcie: Add the PCI device id for new hardware Nicolas Dufresne (1): media: mediatek: vcodec: Fix oops when HEVC init fails Paul E. McKenney (1): rcu-tasks: Repair RCU Tasks Trace quiescence check Peter Chiu (1): wifi: mt76: mt7996: disable AMSDU for non-data frames Petre Rodan (1): tools: iio: replace seekdir() in iio_generic_buffer Ping-Ke Shih (1): wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor Po-Hao Huang (1): wifi: rtw89: fix null pointer access when abort scan Ricardo B. Marliere (1): ktest: force $buildonly = 1 for 'make_warnings_file' test type Rick Edgecombe (1): dma-direct: Leak pages on dma_set_decrypted() failure Roger Pau Monne (1): x86/xen: attempt to inflate the memory balloon on PVH Roman Smirnov (2): block: prevent division by zero in blk_rq_stat_sum() fbmon: prevent division by zero in fb_videomode_from_videomode() Samasth Norway Ananda (1): tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() Samuel Dionne-Riel (1): drm: panel-orientation-quirks: Add quirk for GPD Win Mini Sandipan Das (1): perf/x86/amd/lbr: Discard erroneous branch entries Serge Semin (1): net: pcs: xpcs: Return EINVAL in the internal methods Shannon Nelson (1): ionic: set adminq irq affinity Shayne Chen (2): wifi: mt76: mt7915: add locking for accessing mapped registers wifi: mt76: mt7996: add locking for accessing mapped registers Shradha Gupta (2): drm: Check output polling initialized before disabling drm: Check polling initialized before enabling in drm_helper_probe_single_connector_modes Srinivasan Shanmugam (1): drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init() Takashi Iwai (2): wifi: iwlwifi: Add missing MODULE_FIRMWARE() for *.pnvm Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922 Takashi Sakamoto (1): ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter Tejun Heo (1): kernfs: RCU protect kernfs_nodes and avoid kernfs_idr_lock in kernfs_find_and_get_node_by_id() Tetsuo Handa (1): sysv: don't call sb_bread() with pointers_lock held Tim Crawford (1): ALSA: hda/realtek: Add quirks for some Clevo laptops Vasiliy Kovalev (1): VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() Vinicius Peixoto (1): Bluetooth: Add new quirk for broken read key length on ATS2851 Viresh Kumar (1): cpufreq: Don't unregister cpufreq cooling on CPU hotplug Ye Bin (1): ext4: forbid commit inconsistent quota data when errors=remount-ro Yunfei Dong (2): media: mediatek: vcodec: adding lock to protect decoder context list media: mediatek: vcodec: adding lock to protect encoder context list Zhang Yi (1): ext4: add a hint for block bitmap corrupt state in mb_groups Zqiang (1): rcu/nocb: Fix WARN_ON_ONCE() in the rcu_nocb_bypass_lock() linke li (1): ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment mosomate (1): ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710) laptops

1 year, 8 months

1
1
0 0

Linux 6.1.86

by Greg Kroah-Hartman

I'm announcing the release of the 6.1.86 kernel. All users of the 6.1 kernel series must upgrade. The updated 6.1.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-6.1.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm64/boot/dts/rockchip/rk3328.dtsi | 11 +- arch/arm64/boot/dts/rockchip/rk3399.dtsi | 12 +- arch/x86/events/amd/lbr.c | 6 - block/blk-stat.c | 2 drivers/acpi/sleep.c | 12 -- drivers/bluetooth/btintel.c | 2 drivers/bluetooth/btmtk.c | 1 drivers/bluetooth/btmtk.h | 1 drivers/bus/mhi/host/init.c | 1 drivers/bus/mhi/host/internal.h | 9 + drivers/bus/mhi/host/pm.c | 20 +++ drivers/cpufreq/cpufreq.c | 17 ++- drivers/cpuidle/driver.c | 3 drivers/firmware/tegra/bpmp-debugfs.c | 2 drivers/gpu/drm/amd/amdkfd/kfd_chardev.c | 4 drivers/gpu/drm/amd/display/modules/inc/mod_stats.h | 4 drivers/gpu/drm/drm_panel_orientation_quirks.c | 12 ++ drivers/gpu/drm/vc4/vc4_plane.c | 5 drivers/infiniband/core/cm.c | 20 +++ drivers/input/rmi4/rmi_driver.c | 6 - drivers/input/touchscreen/imagis.c | 20 +-- drivers/media/pci/sta2x11/sta2x11_vip.c | 9 - drivers/misc/vmw_vmci/vmci_datagram.c | 6 - drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c | 9 - drivers/net/ethernet/broadcom/bnx2x/bnx2x_ethtool.c | 2 drivers/net/ethernet/broadcom/bnx2x/bnx2x_link.c | 14 +- drivers/net/ethernet/intel/ice/ice_virtchnl.c | 9 - drivers/net/ethernet/intel/ice/ice_virtchnl.h | 9 + drivers/net/ethernet/pensando/ionic/ionic_lif.c | 5 drivers/net/pcs/pcs-xpcs.c | 4 drivers/net/wireless/ath/ath11k/mhi.c | 2 drivers/net/wireless/ath/ath9k/antenna.c | 2 drivers/net/wireless/broadcom/brcm80211/brcmfmac/dmi.c | 9 + drivers/net/wireless/intel/iwlwifi/pcie/drv.c | 1 drivers/net/wireless/realtek/rtw89/pci.h | 2 drivers/nvme/host/pci.c | 3 drivers/pinctrl/renesas/core.c | 4 drivers/platform/x86/intel/vbtn.c | 5 drivers/platform/x86/touchscreen_dmi.c | 9 + drivers/scsi/lpfc/lpfc_nportdisc.c | 6 - drivers/scsi/scsi_lib.c | 52 +++++----- drivers/scsi/sd.c | 4 drivers/soundwire/dmi-quirks.c | 8 + drivers/thermal/thermal_of.c | 12 +- drivers/thunderbolt/quirks.c | 14 ++ drivers/thunderbolt/tb.c | 49 +++++++++ drivers/thunderbolt/tb.h | 4 drivers/tty/n_gsm.c | 3 drivers/usb/gadget/function/uvc_video.c | 3 drivers/usb/host/sl811-hcd.c | 2 drivers/usb/typec/tcpm/tcpci.c | 1 drivers/video/fbdev/core/fbmon.c | 7 - drivers/video/fbdev/via/accel.c | 4 drivers/virtio/virtio.c | 10 + fs/btrfs/export.c | 9 + fs/btrfs/send.c | 10 + fs/btrfs/volumes.c | 12 ++ fs/ext4/mballoc.c | 5 fs/ext4/super.c | 12 ++ fs/isofs/inode.c | 18 +++ fs/orangefs/super.c | 2 fs/pstore/zone.c | 2 fs/sysv/itree.c | 10 - include/linux/randomize_kstack.h | 2 include/linux/rcupdate.h | 4 include/linux/skbuff.h | 11 ++ include/linux/sunrpc/sched.h | 2 include/scsi/scsi_device.h | 51 ++------- include/uapi/linux/input-event-codes.h | 1 io_uring/io_uring.c | 25 +++- kernel/dma/direct.c | 9 - kernel/panic.c | 8 + kernel/trace/ring_buffer.c | 2 net/mpls/mpls_gso.c | 3 net/netfilter/nf_tables_api.c | 47 ++++++--- net/smc/smc_pnet.c | 10 + scripts/gcc-plugins/stackleak_plugin.c | 2 sound/firewire/amdtp-stream.c | 12 +- sound/firewire/amdtp-stream.h | 4 sound/soc/intel/boards/sof_sdw.c | 11 ++ sound/soc/soc-core.c | 3 tools/iio/iio_utils.c | 2 tools/lib/perf/evlist.c | 18 ++- tools/lib/perf/include/internal/evlist.h | 4 tools/power/x86/x86_energy_perf_policy/x86_energy_perf_policy.c | 1 tools/testing/ktest/ktest.pl | 1 87 files changed, 544 insertions(+), 224 deletions(-) Alban Boyé (1): platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet Aleksandr Burakov (1): fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 Alex Henrie (1): isofs: handle CDs with bad root inode but good Joliet root directory Ard Biesheuvel (1): gcc-plugins/stackleak: Avoid .head.text section Aric Cyr (1): drm/amd/display: Fix nanosec stat overflow Arnd Bergmann (1): media: sta2x11: fix irq handler cast Baochen Qiang (1): wifi: ath11k: decrease MHI channel buffer length to 8KB C Cheng (1): cpuidle: Avoid potential overflow in integer multiplication Chancel Liu (1): ASoC: soc-core.c: Skip dummy codec when adding platforms Colin Ian King (1): usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined Dai Ngo (1): SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int Daniel Drake (1): Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" Dave Airlie (1): amdkfd: use calloc instead of kzalloc to avoid integer overflow David Hildenbrand (1): virtio: reenable config if freezing device failed David Sterba (3): btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() btrfs: export: handle invalid inode or root reference in btrfs_get_parent() btrfs: send: handle path ref underflow in header iterate_inode_ref() Dmitry Antipov (1): wifi: ath9k: fix LNA selection in ath_ant_try_scan() Duje Mihanović (1): Input: imagis - use FIELD_GET where applicable Edward Adam Davis (1): Bluetooth: btintel: Fix null ptr deref in btintel_read_version Eric Dumazet (1): net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() Florian Westphal (2): net: skbuff: add overflow debug check to pull/push helpers net: mpls: error out if inner headers are not set Geert Uytterhoeven (1): pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs Gergo Koteles (1): Input: allocate keycode for Display refresh rate toggle Greg Kroah-Hartman (3): Revert "scsi: sd: usb_storage: uas: Access media prior to querying device properties" Revert "scsi: core: Add struct for args to execution functions" Linux 6.1.86 Gwendal Grignou (1): platform/x86: intel-vbtn: Update tablet mode switch at end of probe Hans de Goede (1): wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro Harshit Mogalapalli (1): VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() Ian Rogers (1): libperf evlist: Avoid out-of-bounds access Jacob Keller (1): ice: use relative VSI index for VFs instead of PF VSI number Jeffrey Hugo (1): bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state Jens Axboe (1): io_uring: clear opcode specific data for an early failure Jiawei Fu (iBug) (1): drivers/nvme: Add quirks for device 126f:2262 Johan Jonker (2): arm64: dts: rockchip: fix rk3328 hdmi ports node arm64: dts: rockchip: fix rk3399 hdmi ports node John Ogness (1): panic: Flush kernel log buffer at the end Justin Tee (1): scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() Kees Cook (2): bnx2x: Fix firmware version string character counts randomize_kstack: Improve entropy diffusion Konrad Dybcio (1): thermal/of: Assume polling-delay(-passive) 0 when absent Kunwu Chan (2): pstore/zone: Add a null pointer check to the psz_kmsg_read Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails Luiz Augusto von Dentz (1): Bluetooth: btintel: Fixe build regression Ma Jun (1): Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init()" Manjunath Patil (1): RDMA/cm: add timeout to cm_destroy_id wait Marco Felsch (1): usb: typec: tcpci: add generic tcpci fallback compatible Markus Elfring (1): firmware: tegra: bpmp: Return directly after a failed kzalloc() in get_filename() Markuss Broks (1): input/touchscreen: imagis: Correct the maximum touch area value Martin K. Petersen (1): scsi: sd: usb_storage: uas: Access media prior to querying device properties Maíra Canal (1): drm/vc4: don't check if plane->state->fb == state->fb Michael Grzeschik (1): usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR Mika Westerberg (1): thunderbolt: Keep the domain powered when USB4 port is in redrive mode Mike Marshall (1): Julia Lawall reported this null pointer dereference, this should fix it. Mukesh Sisodiya (1): wifi: iwlwifi: pcie: Add the PCI device id for new hardware Pablo Neira Ayuso (3): netfilter: nf_tables: release batch on table validation from abort path netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path netfilter: nf_tables: discard table flag update with pending basechain deletion Paul E. McKenney (1): rcu-tasks: Repair RCU Tasks Trace quiescence check Petre Rodan (1): tools: iio: replace seekdir() in iio_generic_buffer Ping-Ke Shih (1): wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor Ricardo B. Marliere (1): ktest: force $buildonly = 1 for 'make_warnings_file' test type Rick Edgecombe (1): dma-direct: Leak pages on dma_set_decrypted() failure Roman Smirnov (2): block: prevent division by zero in blk_rq_stat_sum() fbmon: prevent division by zero in fb_videomode_from_videomode() Samasth Norway Ananda (1): tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() Samuel Dionne-Riel (1): drm: panel-orientation-quirks: Add quirk for GPD Win Mini Sandipan Das (1): perf/x86/amd/lbr: Discard erroneous branch entries Serge Semin (1): net: pcs: xpcs: Return EINVAL in the internal methods Shannon Nelson (1): ionic: set adminq irq affinity Srinivasan Shanmugam (1): drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init() Takashi Iwai (1): Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922 Takashi Sakamoto (1): ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter Tetsuo Handa (1): sysv: don't call sb_bread() with pointers_lock held Thadeu Lima de Souza Cascardo (1): tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc Vasiliy Kovalev (1): VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() Viresh Kumar (1): cpufreq: Don't unregister cpufreq cooling on CPU hotplug Ye Bin (1): ext4: forbid commit inconsistent quota data when errors=remount-ro Zhang Yi (1): ext4: add a hint for block bitmap corrupt state in mb_groups linke li (1): ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment mosomate (1): ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710) laptops

1 year, 8 months

1
1
0 0

Linux 5.15.155

by Greg Kroah-Hartman

I'm announcing the release of the 5.15.155 kernel. All users of the 5.15 kernel series must upgrade. The updated 5.15.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.15.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm64/boot/dts/rockchip/rk3328.dtsi | 11 ++ arch/arm64/boot/dts/rockchip/rk3399.dtsi | 12 ++ arch/x86/mm/pat/memtype.c | 49 +++++++--- block/blk-stat.c | 2 drivers/acpi/cppc_acpi.c | 27 ----- drivers/acpi/sleep.c | 12 -- drivers/bluetooth/btintel.c | 2 drivers/cpuidle/driver.c | 3 drivers/gpu/drm/amd/amdkfd/kfd_chardev.c | 4 drivers/gpu/drm/amd/display/modules/inc/mod_stats.h | 4 drivers/infiniband/core/cm.c | 20 +++- drivers/input/rmi4/rmi_driver.c | 6 + drivers/media/pci/sta2x11/sta2x11_vip.c | 9 - drivers/misc/vmw_vmci/vmci_datagram.c | 6 - drivers/net/ethernet/pensando/ionic/ionic_lif.c | 5 - drivers/net/pcs/pcs-xpcs.c | 4 drivers/net/wireless/ath/ath11k/mhi.c | 2 drivers/net/wireless/ath/ath9k/antenna.c | 2 drivers/nvme/host/pci.c | 3 drivers/pinctrl/renesas/core.c | 4 drivers/platform/x86/intel/vbtn.c | 5 - drivers/platform/x86/touchscreen_dmi.c | 9 + drivers/scsi/lpfc/lpfc_nportdisc.c | 6 - drivers/tty/n_gsm.c | 3 drivers/usb/host/sl811-hcd.c | 2 drivers/usb/typec/tcpm/tcpci.c | 1 drivers/video/fbdev/core/fbmon.c | 7 - drivers/video/fbdev/via/accel.c | 4 drivers/virtio/virtio.c | 10 +- fs/btrfs/export.c | 9 + fs/btrfs/send.c | 10 +- fs/btrfs/volumes.c | 12 ++ fs/ext4/mballoc.c | 5 - fs/ext4/super.c | 12 ++ fs/isofs/inode.c | 18 +++ fs/pstore/zone.c | 2 fs/sysv/itree.c | 10 -- include/linux/randomize_kstack.h | 2 include/linux/sunrpc/sched.h | 2 include/uapi/linux/input-event-codes.h | 1 kernel/panic.c | 8 + kernel/trace/ring_buffer.c | 2 mm/memory.c | 4 net/dsa/dsa2.c | 25 +---- net/netfilter/nf_tables_api.c | 47 +++++++-- net/smc/smc_pnet.c | 10 ++ scripts/gcc-plugins/stackleak_plugin.c | 6 + sound/firewire/amdtp-stream.c | 12 +- sound/firewire/amdtp-stream.h | 4 sound/soc/soc-core.c | 3 tools/iio/iio_utils.c | 2 tools/lib/perf/evlist.c | 18 ++- tools/lib/perf/include/internal/evlist.h | 4 tools/power/x86/x86_energy_perf_policy/x86_energy_perf_policy.c | 1 tools/testing/ktest/ktest.pl | 1 56 files changed, 321 insertions(+), 145 deletions(-) Alban Boyé (1): platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet Aleksandr Burakov (1): fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 Alex Henrie (1): isofs: handle CDs with bad root inode but good Joliet root directory Ard Biesheuvel (1): gcc-plugins/stackleak: Avoid .head.text section Aric Cyr (1): drm/amd/display: Fix nanosec stat overflow Arnd Bergmann (1): media: sta2x11: fix irq handler cast Baochen Qiang (1): wifi: ath11k: decrease MHI channel buffer length to 8KB C Cheng (1): cpuidle: Avoid potential overflow in integer multiplication Chancel Liu (1): ASoC: soc-core.c: Skip dummy codec when adding platforms Colin Ian King (1): usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined Dai Ngo (1): SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int Daniel Drake (1): Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" Dave Airlie (1): amdkfd: use calloc instead of kzalloc to avoid integer overflow David Hildenbrand (2): virtio: reenable config if freezing device failed x86/mm/pat: fix VM_PAT handling in COW mappings David Sterba (3): btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() btrfs: export: handle invalid inode or root reference in btrfs_get_parent() btrfs: send: handle path ref underflow in header iterate_inode_ref() Dmitry Antipov (1): wifi: ath9k: fix LNA selection in ath_ant_try_scan() Edward Adam Davis (1): Bluetooth: btintel: Fix null ptr deref in btintel_read_version Eric Dumazet (1): net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() Geert Uytterhoeven (1): pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs Gergo Koteles (1): Input: allocate keycode for Display refresh rate toggle Greg Kroah-Hartman (2): Revert "ACPI: CPPC: Use access_width over bit_width for system memory accesses" Linux 5.15.155 Gwendal Grignou (1): platform/x86: intel-vbtn: Update tablet mode switch at end of probe Harshit Mogalapalli (1): VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() Ian Rogers (1): libperf evlist: Avoid out-of-bounds access Jiawei Fu (iBug) (1): drivers/nvme: Add quirks for device 126f:2262 Johan Jonker (2): arm64: dts: rockchip: fix rk3328 hdmi ports node arm64: dts: rockchip: fix rk3399 hdmi ports node John Ogness (1): panic: Flush kernel log buffer at the end Justin Tee (1): scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() Kees Cook (2): gcc-plugins/stackleak: Ignore .noinstr.text and .entry.text randomize_kstack: Improve entropy diffusion Kunwu Chan (2): pstore/zone: Add a null pointer check to the psz_kmsg_read Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails Luiz Augusto von Dentz (1): Bluetooth: btintel: Fixe build regression Manjunath Patil (1): RDMA/cm: add timeout to cm_destroy_id wait Marco Felsch (1): usb: typec: tcpci: add generic tcpci fallback compatible Pablo Neira Ayuso (3): netfilter: nf_tables: release batch on table validation from abort path netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path netfilter: nf_tables: discard table flag update with pending basechain deletion Petre Rodan (1): tools: iio: replace seekdir() in iio_generic_buffer Ricardo B. Marliere (1): ktest: force $buildonly = 1 for 'make_warnings_file' test type Roman Smirnov (2): block: prevent division by zero in blk_rq_stat_sum() fbmon: prevent division by zero in fb_videomode_from_videomode() Samasth Norway Ananda (1): tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() Serge Semin (1): net: pcs: xpcs: Return EINVAL in the internal methods Shannon Nelson (1): ionic: set adminq irq affinity Takashi Sakamoto (1): ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter Tetsuo Handa (1): sysv: don't call sb_bread() with pointers_lock held Thadeu Lima de Souza Cascardo (1): tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc Vasiliy Kovalev (1): VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() Vladimir Oltean (1): net: dsa: fix panic when DSA master device unbinds on shutdown Ye Bin (1): ext4: forbid commit inconsistent quota data when errors=remount-ro Zhang Yi (1): ext4: add a hint for block bitmap corrupt state in mb_groups linke li (1): ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment

1 year, 8 months

1
1
0 0

Linux 5.10.215

by Greg Kroah-Hartman

I'm announcing the release of the 5.10.215 kernel. All users of the 5.10 kernel series must upgrade. The updated 5.10.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.10.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/ABI/testing/sysfs-devices-system-cpu | 1 Documentation/admin-guide/hw-vuln/index.rst | 1 Documentation/admin-guide/hw-vuln/reg-file-data-sampling.rst | 104 ++++ Documentation/admin-guide/hw-vuln/spectre.rst | 18 Documentation/admin-guide/kernel-parameters.txt | 27 - Documentation/block/queue-sysfs.rst | 7 Documentation/x86/mds.rst | 38 + Makefile | 2 arch/arm/boot/dts/mmp2-brownstone.dts | 2 arch/arm64/boot/dts/qcom/sc7180-trogdor.dtsi | 3 arch/arm64/boot/dts/rockchip/rk3328.dtsi | 11 arch/arm64/boot/dts/rockchip/rk3399.dtsi | 12 arch/hexagon/kernel/vmlinux.lds.S | 1 arch/parisc/include/asm/assembly.h | 18 arch/parisc/include/asm/checksum.h | 10 arch/powerpc/include/asm/reg_fsl_emb.h | 11 arch/powerpc/lib/Makefile | 2 arch/riscv/include/asm/uaccess.h | 4 arch/s390/kernel/entry.S | 1 arch/sparc/kernel/nmi.c | 2 arch/sparc/vdso/vma.c | 7 arch/x86/Kconfig | 18 arch/x86/Makefile | 8 arch/x86/entry/entry.S | 23 arch/x86/entry/entry_32.S | 59 -- arch/x86/entry/entry_64.S | 10 arch/x86/entry/entry_64_compat.S | 1 arch/x86/include/asm/asm-prototypes.h | 1 arch/x86/include/asm/asm.h | 5 arch/x86/include/asm/cpufeature.h | 8 arch/x86/include/asm/cpufeatures.h | 5 arch/x86/include/asm/disabled-features.h | 3 arch/x86/include/asm/entry-common.h | 1 arch/x86/include/asm/irqflags.h | 1 arch/x86/include/asm/msr-index.h | 10 arch/x86/include/asm/nospec-branch.h | 47 + arch/x86/include/asm/processor.h | 15 arch/x86/include/asm/ptrace.h | 5 arch/x86/include/asm/required-features.h | 3 arch/x86/include/asm/segment.h | 30 - arch/x86/include/asm/setup.h | 1 arch/x86/include/asm/stackprotector.h | 79 --- arch/x86/include/asm/suspend_32.h | 12 arch/x86/kernel/Makefile | 1 arch/x86/kernel/asm-offsets_32.c | 5 arch/x86/kernel/cpu/amd.c | 10 arch/x86/kernel/cpu/bugs.c | 245 ++++++---- arch/x86/kernel/cpu/common.c | 64 ++ arch/x86/kernel/cpu/mce/core.c | 4 arch/x86/kernel/doublefault_32.c | 4 arch/x86/kernel/head64.c | 9 arch/x86/kernel/head_32.S | 18 arch/x86/kernel/head_64.S | 24 arch/x86/kernel/nmi.c | 3 arch/x86/kernel/setup_percpu.c | 1 arch/x86/kernel/tls.c | 8 arch/x86/kvm/cpuid.h | 2 arch/x86/kvm/svm/sev.c | 16 arch/x86/kvm/vmx/run_flags.h | 7 arch/x86/kvm/vmx/vmenter.S | 9 arch/x86/kvm/vmx/vmx.c | 12 arch/x86/kvm/x86.c | 5 arch/x86/lib/insn-eval.c | 4 arch/x86/lib/retpoline.S | 6 arch/x86/mm/ident_map.c | 23 arch/x86/mm/pat/memtype.c | 50 +- arch/x86/platform/pvh/head.S | 14 arch/x86/power/cpu.c | 6 arch/x86/xen/enlighten_pv.c | 1 block/blk-settings.c | 41 + block/blk-stat.c | 2 block/blk-sysfs.c | 8 block/ioctl.c | 11 drivers/accessibility/speakup/synth.c | 4 drivers/acpi/acpica/dbnames.c | 8 drivers/acpi/sleep.c | 12 drivers/ata/ahci.c | 5 drivers/ata/sata_mv.c | 63 +- drivers/ata/sata_sx4.c | 6 drivers/base/core.c | 26 - drivers/base/cpu.c | 8 drivers/base/power/wakeirq.c | 4 drivers/bluetooth/btintel.c | 2 drivers/clk/qcom/gcc-ipq6018.c | 2 drivers/clk/qcom/gcc-ipq8074.c | 2 drivers/clk/qcom/gcc-sdm845.c | 1 drivers/clk/qcom/mmcc-apq8084.c | 2 drivers/clk/qcom/mmcc-msm8974.c | 2 drivers/cpufreq/brcmstb-avs-cpufreq.c | 5 drivers/cpufreq/cpufreq-dt.c | 2 drivers/crypto/qat/qat_common/adf_aer.c | 23 drivers/firmware/efi/vars.c | 17 drivers/gpu/drm/amd/amdkfd/kfd_chardev.c | 4 drivers/gpu/drm/amd/display/dc/dcn30/dcn30_hwseq.c | 12 drivers/gpu/drm/amd/display/modules/hdcp/hdcp_psp.c | 3 drivers/gpu/drm/amd/display/modules/inc/mod_stats.h | 4 drivers/gpu/drm/drm_panel.c | 17 drivers/gpu/drm/etnaviv/etnaviv_drv.c | 2 drivers/gpu/drm/etnaviv/etnaviv_hwdb.c | 9 drivers/gpu/drm/exynos/exynos_drm_vidi.c | 4 drivers/gpu/drm/exynos/exynos_hdmi.c | 4 drivers/gpu/drm/i915/gt/intel_engine_pm.c | 3 drivers/gpu/drm/i915/gt/intel_lrc.c | 3 drivers/gpu/drm/imx/parallel-display.c | 4 drivers/gpu/drm/ttm/ttm_memory.c | 2 drivers/gpu/drm/vc4/vc4_hdmi.c | 2 drivers/gpu/drm/vmwgfx/vmwgfx_binding.c | 20 drivers/gpu/drm/vmwgfx/vmwgfx_blit.c | 4 drivers/gpu/drm/vmwgfx/vmwgfx_bo.c | 92 ++- drivers/gpu/drm/vmwgfx/vmwgfx_cmdbuf.c | 8 drivers/gpu/drm/vmwgfx/vmwgfx_cmdbuf_res.c | 4 drivers/gpu/drm/vmwgfx/vmwgfx_cotable.c | 4 drivers/gpu/drm/vmwgfx/vmwgfx_drv.c | 2 drivers/gpu/drm/vmwgfx/vmwgfx_drv.h | 11 drivers/gpu/drm/vmwgfx/vmwgfx_execbuf.c | 12 drivers/gpu/drm/vmwgfx/vmwgfx_fb.c | 2 drivers/gpu/drm/vmwgfx/vmwgfx_mob.c | 4 drivers/gpu/drm/vmwgfx/vmwgfx_msg.c | 6 drivers/gpu/drm/vmwgfx/vmwgfx_resource.c | 12 drivers/gpu/drm/vmwgfx/vmwgfx_scrn.c | 4 drivers/gpu/drm/vmwgfx/vmwgfx_shader.c | 4 drivers/gpu/drm/vmwgfx/vmwgfx_so.c | 3 drivers/gpu/drm/vmwgfx/vmwgfx_ttm_buffer.c | 50 -- drivers/gpu/drm/vmwgfx/vmwgfx_validation.c | 6 drivers/hwmon/amc6821.c | 11 drivers/infiniband/core/cm.c | 20 drivers/input/rmi4/rmi_driver.c | 6 drivers/md/dm-integrity.c | 2 drivers/md/dm-raid.c | 2 drivers/md/dm-snap.c | 4 drivers/md/raid5.c | 12 drivers/media/pci/sta2x11/sta2x11_vip.c | 9 drivers/media/tuners/xc4000.c | 4 drivers/misc/mei/hw-me-regs.h | 2 drivers/misc/mei/pci-me.c | 2 drivers/misc/vmw_vmci/vmci_datagram.c | 6 drivers/mmc/core/block.c | 14 drivers/mmc/host/tmio_mmc_core.c | 2 drivers/mtd/nand/raw/meson_nand.c | 2 drivers/mtd/ubi/fastmap.c | 7 drivers/mtd/ubi/vtbl.c | 6 drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_trace.h | 8 drivers/net/ethernet/hisilicon/hns3/hns3vf/hclgevf_trace.h | 8 drivers/net/ethernet/intel/i40e/i40e_main.c | 7 drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c | 34 - drivers/net/ethernet/intel/ixgbe/ixgbe_ipsec.c | 16 drivers/net/ethernet/marvell/octeontx2/af/cgx.c | 5 drivers/net/ethernet/marvell/octeontx2/nic/otx2_pf.c | 2 drivers/net/ethernet/neterion/vxge/vxge-config.c | 2 drivers/net/ethernet/pensando/ionic/ionic_lif.c | 5 drivers/net/ethernet/realtek/r8169_main.c | 9 drivers/net/ethernet/renesas/ravb_main.c | 7 drivers/net/ethernet/stmicro/stmmac/dwmac4_core.c | 40 + drivers/net/ethernet/stmicro/stmmac/dwxgmac2_core.c | 38 + drivers/net/ethernet/xilinx/ll_temac_main.c | 2 drivers/net/wireguard/netlink.c | 10 drivers/net/wireless/ath/ath9k/antenna.c | 2 drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c | 4 drivers/nvme/host/pci.c | 3 drivers/nvmem/meson-efuse.c | 25 - drivers/of/dynamic.c | 12 drivers/pci/controller/dwc/pcie-designware-ep.c | 7 drivers/pci/pci-driver.c | 23 drivers/pci/pci.c | 6 drivers/pci/pci.h | 17 drivers/pci/pcie/Makefile | 2 drivers/pci/pcie/dpc.c | 15 drivers/pci/pcie/err.c | 33 + drivers/pci/pcie/rcec.c | 59 ++ drivers/pci/probe.c | 7 drivers/pci/quirks.c | 100 ++++ drivers/pci/setup-res.c | 8 drivers/phy/tegra/xusb.c | 13 drivers/pinctrl/renesas/core.c | 4 drivers/platform/x86/touchscreen_dmi.c | 9 drivers/s390/crypto/zcrypt_api.c | 2 drivers/scsi/hosts.c | 7 drivers/scsi/lpfc/lpfc_nportdisc.c | 6 drivers/scsi/lpfc/lpfc_nvmet.c | 2 drivers/scsi/myrb.c | 20 drivers/scsi/myrs.c | 24 drivers/scsi/qla2xxx/qla_attr.c | 14 drivers/scsi/qla2xxx/qla_def.h | 2 drivers/scsi/qla2xxx/qla_gs.c | 2 drivers/scsi/qla2xxx/qla_init.c | 102 +--- drivers/scsi/qla2xxx/qla_target.c | 10 drivers/scsi/sd.c | 7 drivers/slimbus/core.c | 4 drivers/soc/fsl/qbman/qman.c | 98 +++- drivers/staging/comedi/drivers/comedi_test.c | 30 + drivers/staging/media/ipu3/ipu3-v4l2.c | 16 drivers/staging/vc04_services/vchiq-mmal/mmal-vchiq.c | 5 drivers/tee/optee/device.c | 3 drivers/tty/n_gsm.c | 3 drivers/tty/serial/8250/8250_port.c | 6 drivers/tty/serial/fsl_lpuart.c | 7 drivers/tty/serial/max310x.c | 7 drivers/tty/serial/sc16is7xx.c | 15 drivers/tty/serial/serial_core.c | 12 drivers/tty/vt/vt.c | 2 drivers/usb/class/cdc-wdm.c | 6 drivers/usb/core/hub.c | 23 drivers/usb/core/hub.h | 2 drivers/usb/core/port.c | 5 drivers/usb/core/sysfs.c | 16 drivers/usb/dwc2/core.h | 14 drivers/usb/dwc2/core_intr.c | 63 +- drivers/usb/dwc2/gadget.c | 4 drivers/usb/dwc2/hcd.c | 47 + drivers/usb/dwc2/hcd_ddma.c | 17 drivers/usb/dwc2/hw.h | 2 drivers/usb/gadget/function/f_ncm.c | 2 drivers/usb/gadget/udc/core.c | 4 drivers/usb/gadget/udc/tegra-xudc.c | 53 +- drivers/usb/host/sl811-hcd.c | 2 drivers/usb/phy/phy-generic.c | 7 drivers/usb/serial/cp210x.c | 4 drivers/usb/serial/ftdi_sio.c | 2 drivers/usb/serial/ftdi_sio_ids.h | 6 drivers/usb/serial/option.c | 6 drivers/usb/storage/isd200.c | 23 drivers/usb/typec/tcpm/tcpci.c | 1 drivers/usb/typec/ucsi/ucsi.c | 42 + drivers/usb/typec/ucsi/ucsi.h | 4 drivers/vfio/fsl-mc/vfio_fsl_mc_intr.c | 7 drivers/vfio/pci/vfio_pci_intrs.c | 176 ++++--- drivers/vfio/platform/vfio_platform_irq.c | 106 ++-- drivers/vfio/virqfd.c | 21 drivers/video/fbdev/core/fbmon.c | 7 drivers/video/fbdev/via/accel.c | 4 drivers/virtio/virtio.c | 10 drivers/xen/events/events_base.c | 5 fs/aio.c | 8 fs/btrfs/export.c | 9 fs/btrfs/ioctl.c | 25 - fs/btrfs/send.c | 10 fs/btrfs/volumes.c | 14 fs/exec.c | 1 fs/ext4/mballoc.c | 22 fs/ext4/resize.c | 3 fs/ext4/super.c | 12 fs/fat/nfs.c | 6 fs/fuse/dir.c | 4 fs/fuse/fuse_i.h | 1 fs/fuse/inode.c | 7 fs/isofs/inode.c | 18 fs/nfs/direct.c | 11 fs/nfs/write.c | 2 fs/nilfs2/btree.c | 9 fs/nilfs2/direct.c | 9 fs/nilfs2/inode.c | 2 fs/pstore/zone.c | 2 fs/sysv/itree.c | 10 fs/ubifs/file.c | 13 fs/vboxsf/super.c | 3 include/linux/blkdev.h | 15 include/linux/cpu.h | 2 include/linux/device.h | 1 include/linux/gfp.h | 9 include/linux/hyperv.h | 22 include/linux/nfs_fs.h | 1 include/linux/objtool.h | 8 include/linux/pci.h | 6 include/linux/phy/tegra/xusb.h | 2 include/linux/sunrpc/sched.h | 2 include/linux/timer.h | 18 include/linux/udp.h | 28 + include/linux/vfio.h | 2 include/net/cfg802154.h | 1 include/net/inet_connection_sock.h | 1 include/net/sock.h | 7 include/soc/fsl/qman.h | 9 include/uapi/linux/input-event-codes.h | 1 init/initramfs.c | 2 io_uring/io_uring.c | 2 kernel/bounds.c | 2 kernel/bpf/verifier.c | 5 kernel/events/core.c | 9 kernel/panic.c | 8 kernel/power/suspend.c | 1 kernel/printk/printk.c | 63 +- kernel/time/timer.c | 164 +++--- kernel/trace/ring_buffer.c | 193 ++++--- mm/compaction.c | 7 mm/memory-failure.c | 2 mm/memory.c | 4 mm/memtest.c | 4 mm/migrate.c | 6 mm/page_alloc.c | 10 mm/swapfile.c | 13 mm/vmscan.c | 5 net/bluetooth/hci_debugfs.c | 48 + net/bluetooth/hci_event.c | 25 + net/bridge/netfilter/ebtables.c | 6 net/core/sock_map.c | 6 net/ipv4/inet_connection_sock.c | 14 net/ipv4/ip_gre.c | 5 net/ipv4/netfilter/arp_tables.c | 4 net/ipv4/netfilter/ip_tables.c | 4 net/ipv4/tcp.c | 2 net/ipv4/udp.c | 7 net/ipv4/udp_offload.c | 13 net/ipv6/ip6_fib.c | 14 net/ipv6/ip6_gre.c | 3 net/ipv6/netfilter/ip6_tables.c | 4 net/ipv6/udp.c | 2 net/ipv6/udp_offload.c | 8 net/mac80211/cfg.c | 5 net/mac802154/llsec.c | 18 net/mptcp/protocol.c | 3 net/mptcp/subflow.c | 3 net/netfilter/nf_tables_api.c | 74 ++- net/nfc/nci/core.c | 5 net/rds/rdma.c | 2 net/sched/act_skbmod.c | 10 net/smc/smc_pnet.c | 10 net/xfrm/xfrm_user.c | 3 scripts/Makefile.extrawarn | 2 scripts/dummy-tools/gcc | 6 scripts/gcc-x86_32-has-stack-protector.sh | 6 scripts/kernel-doc | 2 security/smack/smack_lsm.c | 12 sound/pci/hda/patch_realtek.c | 9 sound/sh/aica.c | 17 sound/soc/soc-ops.c | 2 tools/iio/iio_utils.c | 2 tools/include/linux/objtool.h | 8 tools/lib/perf/evlist.c | 18 tools/lib/perf/include/internal/evlist.h | 4 tools/power/x86/x86_energy_perf_policy/x86_energy_perf_policy.c | 1 tools/testing/ktest/ktest.pl | 1 tools/testing/selftests/mqueue/setting | 1 tools/testing/selftests/net/reuseaddr_conflict.c | 2 virt/kvm/async_pf.c | 31 + 334 files changed, 3242 insertions(+), 1521 deletions(-) Alan Stern (3): USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command USB: core: Add hub_get() and hub_put() routines USB: core: Fix deadlock in usb_deauthorize_interface() Alban Boyé (1): platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet Aleksandr Burakov (1): fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 Aleksandr Loktionov (2): i40e: fix i40e_count_filters() to count only active/new filters i40e: fix vf may be used uninitialized in this function warning Alex Henrie (1): isofs: handle CDs with bad root inode but good Joliet root directory Alex Williamson (7): vfio/platform: Disable virqfds on cleanup vfio/pci: Disable auto-enable of exclusive INTx IRQ vfio/pci: Lock external INTx masking ops vfio: Introduce interface to flush virqfd inject workqueue vfio/pci: Create persistent INTx handler vfio/platform: Create persistent IRQ handlers vfio/fsl-mc: Block calling interrupt handler without trigger Alexander Stein (1): Revert "usb: phy: generic: Get the vbus supply" Alexander Usyskin (2): mei: me: add arrow lake point S DID mei: me: add arrow lake point H DID Amey Narkhede (1): PCI: Cache PCIe Device Capabilities register Amit Pundir (1): clk: qcom: gcc-sdm845: Add soft dependency on rpmhpd Andrei Matei (1): bpf: Protect against int overflow for stack access size Andrey Jr. Melnikov (1): ahci: asm1064: correct count of reported ports Andy Lutomirski (1): x86/stackprotector/32: Make the canary into a regular percpu variable Antoine Tenart (2): udp: do not transition UDP GRO fraglist partial checksums to unnecessary udp: do not accept non-tunnel GSO skbs landing in a tunnel Anton Altaparmakov (1): x86/pm: Work around false positive kmemleak report in msr_build_context() Aric Cyr (1): drm/amd/display: Fix nanosec stat overflow Arnd Bergmann (6): staging: vc04_services: changen strncpy() to strscpy_pad() dm integrity: fix out-of-range warning ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit scsi: mylex: Fix sysfs buffer lengths ata: sata_mv: Fix PCI device ID table declaration compilation warning media: sta2x11: fix irq handler cast Arseniy Krasnov (1): mtd: rawnand: meson: fix scrambling mode value in command macro Aurélien Jacobs (1): USB: serial: option: add MeiG Smart SLM320 product Baokun Li (1): ext4: correct best extent lstart adjustment logic Bart Van Assche (1): fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion Bastien Nocera (1): Bluetooth: Fix TOCTOU in HCI debugfs implementation Bikash Hazarika (2): scsi: qla2xxx: Update manufacturer details scsi: qla2xxx: Update manufacturer detail Bjorn Helgaas (1): PCI: Work around Intel I210 ROM BAR overlap defect Borislav Petkov (1): x86/bugs: Use sysfs_emit() Borislav Petkov (AMD) (5): x86/CPU/AMD: Update the Zenbleed microcode revisions x86/mce: Make sure to grab mce_sysfs_mutex in set_bank() x86/bugs: Fix the SRSO mitigation on Zen3/4 x86/retpoline: Do the necessary fixup to the Zen3/4 srso return thunk for !SRSO x86/retpoline: Add NOENDBR annotation to the SRSO dummy return thunk Cameron Williams (1): USB: serial: add device ID for VeriFone adapter Chris Wilson (1): drm/i915/gt: Reset queue_priority_hint on parking Christian A. Ehrhardt (2): usb: typec: ucsi: Ack unsupported commands usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset Christian Gmeiner (1): drm/etnaviv: Restore some id values Christian Häggström (1): USB: serial: cp210x: add ID for MGP Instruments PDS100 Christian König (2): drm/vmwgfx: stop using ttm_bo_create v2 drm/vmwgfx: switch over to the new pin interface v2 Christophe JAILLET (2): slimbus: core: Remove usage of the deprecated ida_simple_xx() API vboxsf: Avoid an spurious warning if load_nls_xxx() fails Claus Hansen Ries (1): net: ll_temac: platform_get_resource replaced by wrong function Colin Ian King (1): usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined Conrad Kostecki (1): ahci: asm1064: asm1166: don't limit reported ports Dai Ngo (1): SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int Damian Muszynski (1): crypto: qat - resolve race condition during AER recovery Damien Le Moal (2): block: introduce zone_write_granularity limit block: Clear zone limits for a non-zoned stacked queue Dan Carpenter (1): staging: vc04_services: fix information leak in create_component() Daniel Drake (1): Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" Daniel Vogelbacher (1): USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB Dave Airlie (1): amdkfd: use calloc instead of kzalloc to avoid integer overflow David Hildenbrand (2): virtio: reenable config if freezing device failed x86/mm/pat: fix VM_PAT handling in COW mappings David Sterba (3): btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() btrfs: export: handle invalid inode or root reference in btrfs_get_parent() btrfs: send: handle path ref underflow in header iterate_inode_ref() Davide Caratti (1): mptcp: don't account accept() of non-MPC client as fallback to TCP Dmitry Antipov (1): wifi: ath9k: fix LNA selection in ath_ant_try_scan() Dominique Martinet (1): mmc: core: Fix switch on gp3 partition Duje Mihanović (1): arm: dts: marvell: Fix maxium->maxim typo in brownstone dts Duoming Zhou (1): ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs Edward Adam Davis (1): Bluetooth: btintel: Fix null ptr deref in btintel_read_version Eric Dumazet (5): tcp: properly terminate timers for kernel sockets netfilter: validate user input for expected length net/sched: act_skbmod: prevent kernel-infoleak erspan: make sure erspan_base_hdr is present in skb->head net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() Fedor Pchelkin (1): mac802154: fix llsec key resources release in mac802154_llsec_key_del Felix Fietkau (1): wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes Filipe Manana (1): btrfs: fix off-by-one chunk length calculation at contains_pending_extent() Gabor Juhos (4): clk: qcom: gcc-ipq6018: fix terminating of frequency table arrays clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays Geert Uytterhoeven (1): pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs Gergo Koteles (1): Input: allocate keycode for Display refresh rate toggle Goldwyn Rodrigues (1): btrfs: allocate btrfs_ioctl_defrag_range_args on stack Greg Kroah-Hartman (2): cpufreq: brcmstb-avs-cpufreq: fix up "add check for cpufreq_cpu_get's return value" Linux 5.10.215 Guenter Roeck (4): parisc: Fix ip_fast_csum parisc: Fix csum_ipv6_magic on 32-bit systems parisc: Fix csum_ipv6_magic on 64-bit systems parisc: Strip upper 32 bit of sum in csum_ipv6_magic for 64-bit builds Gui-Dong Han (1): media: xc4000: Fix atomicity violation in xc4000_get_frequency Guilherme G. Piccoli (1): scsi: core: Fix unremoved procfs host directory regression Harald Freudenberger (1): s390/zcrypt: fix reference counting on zcrypt card objects Hariprasad Kelam (1): Octeontx2-af: fix pause frame configuration in GMP mode Harshit Mogalapalli (1): VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() Heiner Kallweit (1): r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d Herve Codina (2): driver core: Introduce device_link_wait_removal() of: dynamic: Synchronize of_changeset_destroy() with the devlink removals Hidenori Kobayashi (1): media: staging: ipu3-imgu: Set fields before media_entity_pads_init() Hugo Villeneuve (2): serial: max310x: fix NULL pointer dereference in I2C instantiation serial: sc16is7xx: convert from _raw_ to _noinc_ regmap functions for FIFO Hui Wang (1): Bluetooth: hci_event: set the conn encrypted before conn establishes I Gede Agastya Darma Laksana (1): ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with microphone Ian Abbott (1): comedi: comedi_test: Prevent timers rescheduling during deletion Ian Rogers (1): libperf evlist: Avoid out-of-bounds access Ingo Molnar (1): Revert "x86/mm/ident_map: Use gbpages only where full GB page should be mapped." Jakub Kicinski (1): selftests: reuseaddr_conflict: add missing new line at the end of the output Jakub Sitnicki (1): bpf, sockmap: Prevent lock inversion deadlock in map delete elem Jameson Thies (1): usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros Jan Kara (1): fat: fix uninitialized field in nostale filehandles Jani Nikula (4): drm/panel: do not return negative error codes from drm_panel_get_modes() drm/exynos: do not return negative values from .get_modes() drm/imx/ipuv3: do not return negative values from .get_modes() drm/vc4: hdmi: do not return negative values from .get_modes() Jason A. Donenfeld (2): wireguard: netlink: check for dangling peer via is_dead instead of empty list wireguard: netlink: access device through ctx instead of peer Jens Axboe (1): io_uring: ensure '0' is returned on file registration success Jerome Brunet (1): nvmem: meson-efuse: fix function pointer type mismatch Jiawei Fu (iBug) (1): drivers/nvme: Add quirks for device 126f:2262 Johan Hovold (1): arm64: dts: qcom: sc7180-trogdor: mark bluetooth address as broken Johan Jonker (2): arm64: dts: rockchip: fix rk3328 hdmi ports node arm64: dts: rockchip: fix rk3399 hdmi ports node John David Anglin (1): parisc: Avoid clobbering the C/B bits in the PSW with tophys and tovirt macros John Ogness (2): printk: Update @console_may_schedule in console_trylock_spinning() panic: Flush kernel log buffer at the end John Sperbeck (1): init: open /initrd.image with O_LARGEFILE Jon Hunter (1): usb: gadget: tegra-xudc: Use dev_err_probe() Josef Bacik (1): nfs: fix UAF in direct writes Josh Poimboeuf (1): objtool: Add asm version of STACK_FRAME_NON_STANDARD Josua Mayer (1): hwmon: (amc6821) add of_match table Justin Tee (1): scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() Kailang Yang (1): ALSA: hda/realtek - Fix headset Mic no show at resume back for Lenovo ALC897 platform Kim Phillips (2): x86/cpu: Support AMD Automatic IBRS x86/cpu: Enable STIBP on AMD if Automatic IBRS is enabled Krishna Kurapati (1): usb: gadget: ncm: Fix handling of zero block length packets Kuniyuki Iwashima (1): ipv6: Fix infinite recursion in fib6_dump_done(). Kunwu Chan (2): pstore/zone: Add a null pointer check to the psz_kmsg_read Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails Lee Jones (1): drm/vmwgfx/vmwgfx_cmdbuf_res: Remove unused variable 'ret' Leo Ma (1): drm/amd/display: Fix noise issue on HDMI AV mute Lin Yujun (1): Documentation/hw-vuln: Update spectre doc Liu Shixin (1): mm/memory-failure: fix an incorrect use of tail pages Luiz Augusto von Dentz (1): Bluetooth: btintel: Fixe build regression Mahmoud Adam (1): net/rds: fix possible cp null dereference Manjunath Patil (1): RDMA/cm: add timeout to cm_destroy_id wait Marco Felsch (1): usb: typec: tcpci: add generic tcpci fallback compatible Marek Szyprowski (1): cpufreq: dt: always allocate zeroed cpumask Mathias Nyman (1): usb: port: Don't try to peer unused USB ports based on location Matthew Wilcox (Oracle) (2): bounds: support non-power-of-two CONFIG_NR_CPUS ubifs: Set page uptodate in the correct place Maulik Shah (1): PM: suspend: Set mem_sleep_current during kernel command line setup Max Filippov (1): exec: Fix NOMMU linux_binprm::exec in transfer_args_to_stack() Maximilian Heyne (2): ext4: fix corruption during on-line resize xen/events: close evtchn after mapping cleanup Michael Ellerman (1): powerpc/fsl: Fix mfpmr build errors with newer binutils Michael Kelley (1): Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of memory Michael Roth (1): x86/head/64: Re-enable stack protection Michal Kubecek (1): kbuild: dummy-tools: adjust to stricter stackprotector check Mika Westerberg (3): PCI/ASPM: Make Intel DG2 L1 acceptable latency unlimited PCI/DPC: Quirk PIO log size for certain Intel Root Ports PCI/DPC: Quirk PIO log size for Intel Ice Lake Root Ports Mikko Rapeli (2): mmc: core: Initialize mmc_blk_ioc_data mmc: core: Avoid negative index with array access Miklos Szeredi (2): fuse: fix root lookup with nonzero generation fuse: don't unhash root Mikulas Patocka (1): dm snapshot: fix lockup in dm_exception_table_exit Min Li (1): block: add check that partition length needs to be aligned with block size Minas Harutyunyan (4): usb: dwc2: host: Fix remote wakeup from hibernation usb: dwc2: host: Fix hibernation flow usb: dwc2: host: Fix ISOC flow in DDMA mode usb: dwc2: gadget: LPM flow fix Muhammad Usama Anjum (1): scsi: lpfc: Correct size for wqe for memset() Nathan Chancellor (4): kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1 xfrm: Avoid clang fortify warning in copy_to_user_tmpl() powerpc: xor_vmx: Add '-mhard-float' to CFLAGS hexagon: vmlinux.lds.S: handle attributes section Nicolas Pitre (1): vt: fix unicode buffer corruption when deleting characters Nikita Kiryushin (1): ACPICA: debugger: check status of acpi_evaluate_object() in acpi_db_walk_for_fields() Niklas Cassel (1): PCI: dwc: endpoint: Fix advertised resizable BAR size Oliver Neukum (1): usb: cdc-wdm: close race between read and workqueue Pablo Neira Ayuso (9): netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout netfilter: nf_tables: disallow anonymous set with timeout flag netfilter: nf_tables: reject constant set with timeout netfilter: nf_tables: disallow timeout for anonymous sets netfilter: nf_tables: reject new basechain after table flag update netfilter: nf_tables: flush pending destroy work before exit_net release netfilter: nf_tables: release batch on table validation from abort path netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path netfilter: nf_tables: discard table flag update with pending basechain deletion Paul Barker (1): net: ravb: Always process TX descriptor ring Paul Menzel (1): PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports Pawan Gupta (11): x86/asm: Add _ASM_RIP() macro for x86-64 (%rip) suffix x86/bugs: Add asm helpers for executing VERW x86/entry_64: Add VERW just before userspace transition x86/entry_32: Add VERW just before userspace transition x86/bugs: Use ALTERNATIVE() instead of mds_user_clear static key KVM/VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH KVM/VMX: Move VERW closer to VMentry for MDS mitigation x86/mmio: Disable KVM mitigation when X86_FEATURE_CLEAR_CPU_BUF is set Documentation/hw-vuln: Add documentation for RFDS x86/rfds: Mitigate Register File Data Sampling (RFDS) KVM/x86: Export RFDS_NO and RFDS_CLEAR to guests Peter Collingbourne (1): serial: Lock console when calling into driver before registration Petr Mladek (1): printk/console: Split out code that enables default console Petre Rodan (1): tools: iio: replace seekdir() in iio_generic_buffer Piotr Wejman (1): net: stmmac: fix rx queue priority assignment Przemek Kitszel (1): ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() Pu Wen (1): x86/srso: Add SRSO mitigation for Hygon processors Qiang Zhang (1): memtest: use {READ,WRITE}_ONCE in memory scanning Qingliang Li (1): PM: sleep: wakeirq: fix wake irq warning in system suspend Quinn Tran (3): scsi: qla2xxx: Split FCE|EFT trace control scsi: qla2xxx: Fix command flush on cable pull scsi: qla2xxx: Delay I/O Abort on PCI error Rafael J. Wysocki (1): PCI/PM: Drain runtime-idle callbacks before driver removal Randy Dunlap (2): sparc64: NMI watchdog: fix return value of __setup handler sparc: vDSO: fix return value of __setup handler Ricardo B. Marliere (1): ktest: force $buildonly = 1 for 'make_warnings_file' test type Richard Weinberger (1): ubi: Check for too small LEB size in VTBL code Roberto Sassu (2): smack: Set SMACK64TRANSMUTE only for dirs in smack_inode_setxattr() smack: Handle SMACK64TRANSMUTE in smack_inode_setsecurity() Rodrigo Siqueira (1): drm/amd/display: Return the correct HDCP error code Roman Smirnov (2): block: prevent division by zero in blk_rq_stat_sum() fbmon: prevent division by zero in fb_videomode_from_videomode() Ryan Roberts (1): mm: swap: fix race between free_swap_and_cache() and swapoff() Ryosuke Yasuoka (1): nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet Ryusuke Konishi (2): nilfs2: fix failure to detect DAT corruption in btree and direct mappings nilfs2: prevent kernel bug at submit_bh_wbc() Salvatore Bonaccorso (1): scripts: kernel-doc: Fix syntax error due to undeclared args variable Samasth Norway Ananda (1): tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() Samuel Holland (1): riscv: Fix spurious errors from __get/put_kernel_nofault Samuel Thibault (1): speakup: Fix 8bit characters from direct synth Sandipan Das (1): x86/cpufeatures: Add new word for scattered features Sean Anderson (4): soc: fsl: qbman: Always disable interrupts when taking cgr_lock soc: fsl: qbman: Add helper for sanity checking cgr ops soc: fsl: qbman: Add CGR update function soc: fsl: qbman: Use raw spinlock for cgr_lock Sean Christopherson (3): KVM: Always flush async #PF workqueue when vCPU is being destroyed KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() x86/cpufeatures: Add CPUID_LNX_5 to track recently added Linux-defined word Sean V Kelley (2): PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() PCI/ERR: Clear AER status only when we control AER SeongJae Park (1): selftests/mqueue: Set timeout to 180 seconds Shannon Nelson (1): ionic: set adminq irq affinity Sherry Sun (1): tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled Shin'ichiro Kawasaki (1): scsi: sd: Fix wrong zone_write_granularity value during revalidate Song Liu (1): Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"" Stanislaw Gruszka (1): PCI/AER: Block runtime suspend when handling errors Stephen Lee (1): ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw Steven Rostedt (Google) (5): ring-buffer: Fix waking up ring buffer readers ring-buffer: Do not set shortest_full when full target is hit ring-buffer: Fix resetting of shortest_full ring-buffer: Fix full_waiters_pending in poll net: hns3: tracing: fix hclgevf trace event strings Su Hui (1): octeontx2-pf: check negative error code in otx2_open() Sumanth Korikkar (1): s390/entry: align system call table on 8 bytes Sumit Garg (1): tee: optee: Fix kernel panic caused by incorrect error handling Svyatoslav Pankratov (1): crypto: qat - fix double free during reset Tetsuo Handa (1): sysv: don't call sb_bread() with pointers_lock held Thadeu Lima de Souza Cascardo (1): tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc Thomas Gleixner (3): timers: Update kernel-doc for various functions timers: Use del_timer_sync() even on UP timers: Rename del_timer_sync() to timer_delete_sync() Tim Schumacher (1): efivarfs: Request at most 512 bytes for variable names Toru Katagiri (1): USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M Uwe Kleine-König (1): PCI: Drop pci_device_remove() test of pci_dev->driver Vasiliy Kovalev (1): VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() Venkata Lakshmi Narayana Gubba (1): arm64: dts: qcom: sc7180: Remove clock for bluetooth on Trogdor Vlastimil Babka (1): mm, vmscan: prevent infinite loop for costly GFP_NOIO | __GFP_RETRY_MAYFAIL allocations Wayne Chang (2): phy: tegra: xusb: Add API to retrieve the port number of phy usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic Wolfram Sang (1): mmc: tmio: avoid concurrent runs of mmc_request_done() Xu Wang (1): vxge: remove unnecessary cast in kfree() Yang Jihong (1): perf/core: Fix reentry problem in perf_output_read_group() Ye Bin (1): ext4: forbid commit inconsistent quota data when errors=remount-ro Yu Kuai (1): dm-raid: fix lockdep waring in "pers->hot_add_disk" Zack Rusin (2): drm/vmwgfx: Fix some static checker warnings drm/vmwgfx: Fix possible null pointer derefence with invalid contexts Zhang Yi (2): ubi: correct the calculation of fastmap size ext4: add a hint for block bitmap corrupt state in mb_groups Zheng Wang (1): wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach Zi Yan (1): mm/migrate: set swap entry values of THP tail pages properly. Ziyang Xuan (1): netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() linke li (1): ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment yuan linyu (1): usb: udc: remove warning when queue disabled ep

1 year, 8 months

1
1
0 0

Linux 5.4.274

by Greg Kroah-Hartman

I'm announcing the release of the 5.4.274 kernel. All users of the 5.4 kernel series must upgrade. The updated 5.4.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.4.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/admin-guide/hw-vuln/spectre.rst | 18 Documentation/admin-guide/kernel-parameters.txt | 6 Makefile | 2 arch/arm/boot/dts/mmp2-brownstone.dts | 332 ++++------ arch/arm64/boot/dts/rockchip/rk3328.dtsi | 11 arch/arm64/boot/dts/rockchip/rk3399.dtsi | 12 arch/parisc/include/asm/checksum.h | 107 +-- arch/powerpc/include/asm/reg_fsl_emb.h | 11 arch/powerpc/lib/Makefile | 2 arch/s390/kernel/entry.S | 1 arch/sparc/kernel/nmi.c | 2 arch/sparc/vdso/vma.c | 7 arch/x86/include/asm/cpufeature.h | 6 arch/x86/include/asm/cpufeatures.h | 4 arch/x86/include/asm/disabled-features.h | 3 arch/x86/include/asm/mmu_context.h | 9 arch/x86/include/asm/msr-index.h | 2 arch/x86/include/asm/nospec-branch.h | 7 arch/x86/include/asm/required-features.h | 3 arch/x86/include/asm/unwind_hints.h | 2 arch/x86/kernel/cpu/amd.c | 10 arch/x86/kernel/cpu/bugs.c | 117 +-- arch/x86/kernel/cpu/common.c | 19 arch/x86/kernel/cpu/mce/core.c | 4 arch/x86/mm/ident_map.c | 23 arch/x86/mm/pat.c | 50 + block/blk-stat.c | 2 drivers/acpi/sleep.c | 12 drivers/ata/ahci.c | 5 drivers/ata/sata_mv.c | 63 - drivers/ata/sata_sx4.c | 6 drivers/base/power/wakeirq.c | 4 drivers/block/loop.c | 185 +++-- drivers/bluetooth/btintel.c | 2 drivers/clk/qcom/gcc-ipq8074.c | 2 drivers/clk/qcom/gcc-sdm845.c | 1 drivers/clk/qcom/mmcc-apq8084.c | 2 drivers/clk/qcom/mmcc-msm8974.c | 2 drivers/crypto/qat/qat_common/adf_aer.c | 23 drivers/firmware/efi/vars.c | 17 drivers/firmware/meson/meson_sm.c | 96 +- drivers/gpu/drm/amd/amdkfd/kfd_chardev.c | 4 drivers/gpu/drm/amd/display/modules/inc/mod_stats.h | 4 drivers/gpu/drm/exynos/exynos_drm_vidi.c | 4 drivers/gpu/drm/exynos/exynos_hdmi.c | 4 drivers/gpu/drm/i915/gt/intel_engine_pm.c | 3 drivers/gpu/drm/i915/gt/intel_lrc.c | 3 drivers/gpu/drm/imx/parallel-display.c | 4 drivers/gpu/drm/vc4/vc4_hdmi.c | 2 drivers/gpu/drm/vkms/vkms_drv.c | 2 drivers/hwmon/amc6821.c | 11 drivers/input/rmi4/rmi_driver.c | 6 drivers/md/dm-integrity.c | 2 drivers/md/dm-raid.c | 2 drivers/md/dm-snap.c | 4 drivers/md/raid5.c | 12 drivers/media/pci/sta2x11/sta2x11_vip.c | 9 drivers/media/tuners/xc4000.c | 4 drivers/misc/vmw_vmci/vmci_datagram.c | 6 drivers/mmc/core/block.c | 14 drivers/mmc/host/tmio_mmc_core.c | 2 drivers/mtd/nand/raw/meson_nand.c | 2 drivers/mtd/ubi/fastmap.c | 7 drivers/mtd/ubi/vtbl.c | 6 drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c | 34 - drivers/net/ethernet/intel/ixgbe/ixgbe_ipsec.c | 16 drivers/net/ethernet/pensando/ionic/ionic_lif.c | 5 drivers/net/ethernet/realtek/r8169_main.c | 9 drivers/net/ethernet/renesas/ravb_main.c | 7 drivers/net/ethernet/stmicro/stmmac/dwmac4_core.c | 40 - drivers/net/ethernet/stmicro/stmmac/dwxgmac2_core.c | 38 - drivers/net/wireless/ath/ath9k/antenna.c | 2 drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c | 4 drivers/nvmem/meson-efuse.c | 45 - drivers/pci/pci-driver.c | 23 drivers/s390/crypto/zcrypt_api.c | 2 drivers/scsi/hosts.c | 7 drivers/scsi/lpfc/lpfc_nportdisc.c | 6 drivers/scsi/lpfc/lpfc_nvmet.c | 2 drivers/scsi/myrb.c | 20 drivers/scsi/myrs.c | 24 drivers/scsi/qla2xxx/qla_target.c | 10 drivers/slimbus/core.c | 4 drivers/soc/fsl/qbman/qman.c | 98 ++ drivers/staging/comedi/drivers/comedi_test.c | 30 drivers/staging/media/ipu3/ipu3-v4l2.c | 16 drivers/staging/speakup/synth.c | 4 drivers/staging/vc04_services/bcm2835-camera/mmal-vchiq.c | 40 - drivers/staging/vc04_services/bcm2835-camera/mmal-vchiq.h | 2 drivers/tty/n_gsm.c | 3 drivers/tty/serial/fsl_lpuart.c | 7 drivers/tty/serial/max310x.c | 7 drivers/tty/vt/vt.c | 4 drivers/usb/class/cdc-wdm.c | 6 drivers/usb/core/port.c | 5 drivers/usb/core/sysfs.c | 16 drivers/usb/dwc2/core.h | 14 drivers/usb/dwc2/core_intr.c | 63 + drivers/usb/dwc2/gadget.c | 4 drivers/usb/dwc2/hcd.c | 47 + drivers/usb/dwc2/hcd_ddma.c | 17 drivers/usb/dwc2/hw.h | 2 drivers/usb/gadget/function/f_ncm.c | 2 drivers/usb/gadget/udc/core.c | 4 drivers/usb/host/sl811-hcd.c | 2 drivers/usb/serial/cp210x.c | 4 drivers/usb/serial/ftdi_sio.c | 2 drivers/usb/serial/ftdi_sio_ids.h | 6 drivers/usb/serial/option.c | 6 drivers/usb/storage/isd200.c | 23 drivers/usb/typec/tcpm/tcpci.c | 1 drivers/vfio/pci/vfio_pci_intrs.c | 176 +++-- drivers/vfio/platform/vfio_platform_irq.c | 106 ++- drivers/vfio/virqfd.c | 21 drivers/video/fbdev/core/fbmon.c | 7 drivers/video/fbdev/via/accel.c | 4 drivers/virtio/virtio.c | 10 drivers/xen/events/events_base.c | 5 fs/aio.c | 8 fs/btrfs/export.c | 9 fs/btrfs/ioctl.c | 25 fs/btrfs/send.c | 10 fs/btrfs/volumes.c | 14 fs/exec.c | 1 fs/ext4/mballoc.c | 17 fs/ext4/resize.c | 3 fs/fat/nfs.c | 6 fs/fuse/fuse_i.h | 1 fs/fuse/inode.c | 7 fs/isofs/inode.c | 18 fs/nilfs2/alloc.c | 38 - fs/nilfs2/btree.c | 51 - fs/nilfs2/cpfile.c | 10 fs/nilfs2/dat.c | 14 fs/nilfs2/direct.c | 23 fs/nilfs2/gcinode.c | 2 fs/nilfs2/ifile.c | 4 fs/nilfs2/inode.c | 31 fs/nilfs2/ioctl.c | 37 - fs/nilfs2/mdt.c | 2 fs/nilfs2/namei.c | 6 fs/nilfs2/nilfs.h | 9 fs/nilfs2/page.c | 11 fs/nilfs2/recovery.c | 32 fs/nilfs2/segbuf.c | 2 fs/nilfs2/segment.c | 38 - fs/nilfs2/sufile.c | 29 fs/nilfs2/super.c | 57 - fs/nilfs2/sysfs.c | 29 fs/nilfs2/the_nilfs.c | 85 +- fs/open.c | 38 - fs/sysv/itree.c | 10 fs/ubifs/file.c | 13 include/linux/firmware/meson/meson_sm.h | 15 include/linux/frame.h | 11 include/linux/fs.h | 3 include/linux/gfp.h | 9 include/linux/sunrpc/sched.h | 2 include/linux/timer.h | 18 include/linux/vfio.h | 2 include/net/erspan.h | 19 include/net/inet_connection_sock.h | 1 include/net/sock.h | 7 include/soc/fsl/qman.h | 9 include/uapi/linux/input-event-codes.h | 1 init/initramfs.c | 47 - kernel/bounds.c | 2 kernel/events/core.c | 9 kernel/panic.c | 8 kernel/power/suspend.c | 1 kernel/printk/printk.c | 6 kernel/time/timer.c | 164 ++-- kernel/trace/ring_buffer.c | 51 + mm/compaction.c | 7 mm/memory-failure.c | 2 mm/memory.c | 4 mm/memtest.c | 4 mm/migrate.c | 6 mm/page_alloc.c | 10 mm/vmscan.c | 5 net/bluetooth/hci_debugfs.c | 48 - net/bluetooth/hci_event.c | 25 net/core/sock_map.c | 6 net/ipv4/inet_connection_sock.c | 14 net/ipv4/ip_gre.c | 104 ++- net/ipv4/tcp.c | 2 net/ipv6/ip6_fib.c | 14 net/ipv6/ip6_gre.c | 3 net/mac80211/cfg.c | 5 net/netfilter/nf_tables_api.c | 74 +- net/nfc/nci/core.c | 5 net/rds/rdma.c | 2 net/sched/act_skbmod.c | 10 net/xfrm/xfrm_user.c | 3 scripts/Makefile.extrawarn | 2 security/smack/smack_lsm.c | 12 sound/pci/hda/patch_realtek.c | 9 sound/sh/aica.c | 17 sound/soc/soc-ops.c | 2 tools/iio/iio_utils.c | 2 tools/objtool/Documentation/stack-validation.txt | 8 tools/objtool/arch/x86/decode.c | 6 tools/objtool/check.c | 64 + tools/power/x86/x86_energy_perf_policy/x86_energy_perf_policy.c | 1 tools/testing/ktest/ktest.pl | 1 tools/testing/selftests/mqueue/setting | 1 tools/testing/selftests/net/reuseaddr_conflict.c | 2 virt/kvm/async_pf.c | 31 208 files changed, 2528 insertions(+), 1429 deletions(-) Alan Stern (2): USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command USB: core: Fix deadlock in usb_deauthorize_interface() Aleksandr Burakov (1): fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 Aleksandr Loktionov (1): i40e: fix vf may be used uninitialized in this function warning Alex Henrie (1): isofs: handle CDs with bad root inode but good Joliet root directory Alex Williamson (6): vfio/platform: Disable virqfds on cleanup vfio/pci: Disable auto-enable of exclusive INTx IRQ vfio/pci: Lock external INTx masking ops vfio: Introduce interface to flush virqfd inject workqueue vfio/pci: Create persistent INTx handler vfio/platform: Create persistent IRQ handlers Alexandre Chartre (2): objtool: is_fentry_call() crashes if call has no destination objtool: Add support for intra-function calls Amit Pundir (1): clk: qcom: gcc-sdm845: Add soft dependency on rpmhpd Andrey Jr. Melnikov (1): ahci: asm1064: correct count of reported ports Aric Cyr (1): drm/amd/display: Fix nanosec stat overflow Arnd Bergmann (6): dm integrity: fix out-of-range warning staging: vc04_services: changen strncpy() to strscpy_pad() ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit scsi: mylex: Fix sysfs buffer lengths ata: sata_mv: Fix PCI device ID table declaration compilation warning media: sta2x11: fix irq handler cast Arseniy Krasnov (1): mtd: rawnand: meson: fix scrambling mode value in command macro Aurélien Jacobs (1): USB: serial: option: add MeiG Smart SLM320 product Baokun Li (1): ext4: correct best extent lstart adjustment logic Bart Van Assche (1): fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion Bastien Nocera (1): Bluetooth: Fix TOCTOU in HCI debugfs implementation Borislav Petkov (1): x86/bugs: Use sysfs_emit() Borislav Petkov (AMD) (2): x86/CPU/AMD: Update the Zenbleed microcode revisions x86/mce: Make sure to grab mce_sysfs_mutex in set_bank() Cameron Williams (1): USB: serial: add device ID for VeriFone adapter Carlo Caione (1): firmware: meson_sm: Rework driver as a proper platform driver Chris Wilson (1): drm/i915/gt: Reset queue_priority_hint on parking Christian Häggström (1): USB: serial: cp210x: add ID for MGP Instruments PDS100 Christoph Hellwig (3): fs: add a vfs_fchown helper fs: add a vfs_fchmod helper initramfs: switch initramfs unpacking to struct file based APIs Christophe JAILLET (1): slimbus: core: Remove usage of the deprecated ida_simple_xx() API Colin Ian King (1): usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined Conrad Kostecki (1): ahci: asm1064: asm1166: don't limit reported ports Dai Ngo (1): SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int Damian Muszynski (1): crypto: qat - resolve race condition during AER recovery Dan Carpenter (1): staging: vc04_services: fix information leak in create_component() Daniel Drake (1): Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" Daniel Vogelbacher (1): USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB Dave Airlie (1): amdkfd: use calloc instead of kzalloc to avoid integer overflow Dave Stevenson (2): staging: mmal-vchiq: Allocate and free components as required staging: mmal-vchiq: Fix client_component for 64 bit kernel David Hildenbrand (2): virtio: reenable config if freezing device failed x86/mm/pat: fix VM_PAT handling in COW mappings David Sterba (3): btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() btrfs: export: handle invalid inode or root reference in btrfs_get_parent() btrfs: send: handle path ref underflow in header iterate_inode_ref() Dmitry Antipov (1): wifi: ath9k: fix LNA selection in ath_ant_try_scan() Dominique Martinet (1): mmc: core: Fix switch on gp3 partition Duje Mihanović (1): arm: dts: marvell: Fix maxium->maxim typo in brownstone dts Duoming Zhou (1): ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs Edward Adam Davis (1): Bluetooth: btintel: Fix null ptr deref in btintel_read_version Eric Dumazet (3): tcp: properly terminate timers for kernel sockets net/sched: act_skbmod: prevent kernel-infoleak erspan: make sure erspan_base_hdr is present in skb->head Felix Fietkau (1): wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes Filipe Manana (1): btrfs: fix off-by-one chunk length calculation at contains_pending_extent() Gabor Juhos (3): clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays Genjian Zhang (1): Revert "loop: Check for overflow while configuring loop" Gergo Koteles (1): Input: allocate keycode for Display refresh rate toggle Goldwyn Rodrigues (1): btrfs: allocate btrfs_ioctl_defrag_range_args on stack Greg Kroah-Hartman (1): Linux 5.4.274 Guenter Roeck (4): parisc: Fix ip_fast_csum parisc: Fix csum_ipv6_magic on 32-bit systems parisc: Fix csum_ipv6_magic on 64-bit systems parisc: Strip upper 32 bit of sum in csum_ipv6_magic for 64-bit builds Gui-Dong Han (1): media: xc4000: Fix atomicity violation in xc4000_get_frequency Guilherme G. Piccoli (1): scsi: core: Fix unremoved procfs host directory regression Guo Mengqi (1): drm/vkms: call drm_atomic_helper_shutdown before drm_dev_put() Hangbin Liu (1): ip_gre: do not report erspan version on GRE interface Harald Freudenberger (1): s390/zcrypt: fix reference counting on zcrypt card objects Harshit Mogalapalli (1): VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() Heiner Kallweit (1): r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d Helge Deller (1): parisc: Do not hardcode registers in checksum functions Hidenori Kobayashi (1): media: staging: ipu3-imgu: Set fields before media_entity_pads_init() Hugo Villeneuve (1): serial: max310x: fix NULL pointer dereference in I2C instantiation Hui Wang (1): Bluetooth: hci_event: set the conn encrypted before conn establishes I Gede Agastya Darma Laksana (1): ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with microphone Ian Abbott (1): comedi: comedi_test: Prevent timers rescheduling during deletion Ingo Molnar (1): Revert "x86/mm/ident_map: Use gbpages only where full GB page should be mapped." Jakub Kicinski (1): selftests: reuseaddr_conflict: add missing new line at the end of the output Jakub Sitnicki (1): bpf, sockmap: Prevent lock inversion deadlock in map delete elem Jan Kara (1): fat: fix uninitialized field in nostale filehandles Jani Nikula (3): drm/exynos: do not return negative values from .get_modes() drm/imx/ipuv3: do not return negative values from .get_modes() drm/vc4: hdmi: do not return negative values from .get_modes() Jerome Brunet (1): nvmem: meson-efuse: fix function pointer type mismatch Joe Perches (1): nilfs2: use a more common logging style Johan Jonker (2): arm64: dts: rockchip: fix rk3328 hdmi ports node arm64: dts: rockchip: fix rk3399 hdmi ports node John Ogness (2): printk: Update @console_may_schedule in console_trylock_spinning() panic: Flush kernel log buffer at the end John Sperbeck (1): init: open /initrd.image with O_LARGEFILE Josua Mayer (1): hwmon: (amc6821) add of_match table Juergen Gross (1): x86/alternative: Don't call text_poke() in lazy TLB mode Justin Tee (1): scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() Kailang Yang (1): ALSA: hda/realtek - Fix headset Mic no show at resume back for Lenovo ALC897 platform Kim Phillips (2): x86/cpu: Support AMD Automatic IBRS x86/cpu: Enable STIBP on AMD if Automatic IBRS is enabled Krishna Kurapati (1): usb: gadget: ncm: Fix handling of zero block length packets Kuniyuki Iwashima (1): ipv6: Fix infinite recursion in fib6_dump_done(). Kunwu Chan (1): Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails Lin Yujun (1): Documentation/hw-vuln: Update spectre doc Liu Shixin (1): mm/memory-failure: fix an incorrect use of tail pages Lubomir Rintel (1): ARM: dts: mmp2-brownstone: Don't redeclare phandle references Luiz Augusto von Dentz (1): Bluetooth: btintel: Fixe build regression Mahmoud Adam (1): net/rds: fix possible cp null dereference Marco Felsch (1): usb: typec: tcpci: add generic tcpci fallback compatible Martijn Coenen (5): loop: Call loop_config_discard() only after new config is applied loop: Remove sector_t truncation checks loop: Factor out setting loop device size loop: Refactor loop_set_status() size calculation loop: Factor out configuring loop from status Mathias Nyman (1): usb: port: Don't try to peer unused USB ports based on location Matthew Wilcox (Oracle) (2): ubifs: Set page uptodate in the correct place bounds: support non-power-of-two CONFIG_NR_CPUS Maulik Shah (1): PM: suspend: Set mem_sleep_current during kernel command line setup Max Filippov (1): exec: Fix NOMMU linux_binprm::exec in transfer_args_to_stack() Maximilian Heyne (2): ext4: fix corruption during on-line resize xen/events: close evtchn after mapping cleanup Michael Ellerman (1): powerpc/fsl: Fix mfpmr build errors with newer binutils Mikko Rapeli (2): mmc: core: Initialize mmc_blk_ioc_data mmc: core: Avoid negative index with array access Miklos Szeredi (1): fuse: don't unhash root Mikulas Patocka (1): dm snapshot: fix lockup in dm_exception_table_exit Minas Harutyunyan (4): usb: dwc2: host: Fix remote wakeup from hibernation usb: dwc2: host: Fix hibernation flow usb: dwc2: host: Fix ISOC flow in DDMA mode usb: dwc2: gadget: LPM flow fix Muhammad Usama Anjum (1): scsi: lpfc: Correct size for wqe for memset() Nathan Chancellor (3): kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1 xfrm: Avoid clang fortify warning in copy_to_user_tmpl() powerpc: xor_vmx: Add '-mhard-float' to CFLAGS Nicolas Pitre (1): vt: fix unicode buffer corruption when deleting characters Oliver Neukum (1): usb: cdc-wdm: close race between read and workqueue Pablo Neira Ayuso (9): netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout netfilter: nf_tables: disallow anonymous set with timeout flag netfilter: nf_tables: reject constant set with timeout netfilter: nf_tables: disallow timeout for anonymous sets netfilter: nf_tables: flush pending destroy work before exit_net release netfilter: nf_tables: reject new basechain after table flag update netfilter: nf_tables: release batch on table validation from abort path netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path netfilter: nf_tables: discard table flag update with pending basechain deletion Paul Barker (1): net: ravb: Always process TX descriptor ring Petre Rodan (1): tools: iio: replace seekdir() in iio_generic_buffer Piotr Wejman (1): net: stmmac: fix rx queue priority assignment Przemek Kitszel (1): ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() Qiang Zhang (1): memtest: use {READ,WRITE}_ONCE in memory scanning Qingliang Li (1): PM: sleep: wakeirq: fix wake irq warning in system suspend Quinn Tran (1): scsi: qla2xxx: Fix command flush on cable pull Rafael J. Wysocki (1): PCI/PM: Drain runtime-idle callbacks before driver removal Randy Dunlap (2): sparc64: NMI watchdog: fix return value of __setup handler sparc: vDSO: fix return value of __setup handler Ricardo B. Marliere (1): ktest: force $buildonly = 1 for 'make_warnings_file' test type Richard Weinberger (1): ubi: Check for too small LEB size in VTBL code Roberto Sassu (2): smack: Set SMACK64TRANSMUTE only for dirs in smack_inode_setxattr() smack: Handle SMACK64TRANSMUTE in smack_inode_setsecurity() Roman Smirnov (2): block: prevent division by zero in blk_rq_stat_sum() fbmon: prevent division by zero in fb_videomode_from_videomode() Rui Qi (1): x86/speculation: Support intra-function call validation Ryosuke Yasuoka (1): nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet Ryusuke Konishi (2): nilfs2: fix failure to detect DAT corruption in btree and direct mappings nilfs2: prevent kernel bug at submit_bh_wbc() Samasth Norway Ananda (1): tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() Samuel Thibault (1): speakup: Fix 8bit characters from direct synth Sandipan Das (1): x86/cpufeatures: Add new word for scattered features Sean Anderson (4): soc: fsl: qbman: Always disable interrupts when taking cgr_lock soc: fsl: qbman: Add helper for sanity checking cgr ops soc: fsl: qbman: Add CGR update function soc: fsl: qbman: Use raw spinlock for cgr_lock Sean Christopherson (1): KVM: Always flush async #PF workqueue when vCPU is being destroyed SeongJae Park (1): selftests/mqueue: Set timeout to 180 seconds Shannon Nelson (1): ionic: set adminq irq affinity Sherry Sun (1): tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled Siddh Raman Pant (1): loop: Check for overflow while configuring loop Song Liu (1): Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"" Stephen Lee (1): ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw Steven Rostedt (Google) (2): ring-buffer: Fix resetting of shortest_full ring-buffer: Fix full_waiters_pending in poll Sumanth Korikkar (1): s390/entry: align system call table on 8 bytes Svyatoslav Pankratov (1): crypto: qat - fix double free during reset Tetsuo Handa (1): sysv: don't call sb_bread() with pointers_lock held Thadeu Lima de Souza Cascardo (1): tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc Thomas Gleixner (3): timers: Update kernel-doc for various functions timers: Use del_timer_sync() even on UP timers: Rename del_timer_sync() to timer_delete_sync() Tim Schumacher (1): efivarfs: Request at most 512 bytes for variable names Toru Katagiri (1): USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M Uwe Kleine-König (1): PCI: Drop pci_device_remove() test of pci_dev->driver Vasiliy Kovalev (1): VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() Vlastimil Babka (1): mm, vmscan: prevent infinite loop for costly GFP_NOIO | __GFP_RETRY_MAYFAIL allocations William Tu (2): erspan: Add type I version 0 support. erspan: Check IFLA_GRE_ERSPAN_VER is set. Wolfram Sang (1): mmc: tmio: avoid concurrent runs of mmc_request_done() Yang Jihong (1): perf/core: Fix reentry problem in perf_output_read_group() Yangxi Xiang (1): vt: fix memory overlapping when deleting chars in the buffer Yu Kuai (1): dm-raid: fix lockdep waring in "pers->hot_add_disk" Zhang Shurong (1): firmware: meson_sm: fix to avoid potential NULL pointer dereference Zhang Yi (1): ubi: correct the calculation of fastmap size Zheng Wang (1): wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach Zhong Jinghua (1): loop: loop_set_status_from_info() check before assignment Zi Yan (1): mm/migrate: set swap entry values of THP tail pages properly. Ziyang Xuan (1): netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() yuan linyu (1): usb: udc: remove warning when queue disabled ep

1 year, 8 months

1
1
0 0

Linux 4.19.312

by Greg Kroah-Hartman

I'm announcing the release of the 4.19.312 kernel. All users of the 4.19 kernel series must upgrade. The updated 4.19.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.19.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/admin-guide/hw-vuln/spectre.rst | 18 Documentation/admin-guide/kernel-parameters.txt | 6 Makefile | 2 arch/arm/boot/dts/mmp2-brownstone.dts | 332 ++++------ arch/arm64/boot/dts/rockchip/rk3399.dtsi | 12 arch/parisc/include/asm/checksum.h | 107 +-- arch/powerpc/include/asm/reg_fsl_emb.h | 11 arch/powerpc/lib/Makefile | 2 arch/sparc/kernel/nmi.c | 2 arch/sparc/vdso/vma.c | 7 arch/x86/include/asm/cpufeatures.h | 2 arch/x86/include/asm/msr-index.h | 2 arch/x86/kernel/cpu/amd.c | 10 arch/x86/kernel/cpu/bugs.c | 117 +-- arch/x86/kernel/cpu/common.c | 17 arch/x86/mm/ident_map.c | 23 arch/x86/mm/pat.c | 50 + block/blk-stat.c | 2 drivers/ata/ahci.c | 5 drivers/ata/sata_mv.c | 63 - drivers/ata/sata_sx4.c | 6 drivers/base/power/wakeirq.c | 4 drivers/block/loop.c | 204 +++--- drivers/bluetooth/btintel.c | 2 drivers/clk/qcom/gcc-ipq8074.c | 2 drivers/clk/qcom/mmcc-apq8084.c | 2 drivers/clk/qcom/mmcc-msm8974.c | 2 drivers/crypto/qat/qat_common/adf_aer.c | 23 drivers/firmware/efi/vars.c | 17 drivers/gpu/drm/amd/amdkfd/kfd_chardev.c | 4 drivers/gpu/drm/amd/display/modules/inc/mod_stats.h | 4 drivers/gpu/drm/imx/parallel-display.c | 4 drivers/gpu/drm/vc4/vc4_hdmi.c | 2 drivers/gpu/drm/vkms/vkms_drv.c | 2 drivers/hwmon/amc6821.c | 11 drivers/input/rmi4/rmi_driver.c | 6 drivers/md/dm-raid.c | 2 drivers/md/raid5.c | 12 drivers/media/pci/sta2x11/sta2x11_vip.c | 9 drivers/media/tuners/xc4000.c | 4 drivers/misc/vmw_vmci/vmci_datagram.c | 6 drivers/mmc/core/block.c | 10 drivers/mmc/host/tmio_mmc_core.c | 2 drivers/mtd/ubi/fastmap.c | 7 drivers/mtd/ubi/vtbl.c | 6 drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c | 34 - drivers/net/ethernet/realtek/r8169_main.c | 9 drivers/net/ethernet/stmicro/stmmac/dwmac4_core.c | 40 - drivers/net/ethernet/stmicro/stmmac/dwxgmac2_core.c | 40 - drivers/net/wireless/ath/ath9k/antenna.c | 2 drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c | 4 drivers/pci/pci-driver.c | 23 drivers/s390/crypto/zcrypt_api.c | 2 drivers/scsi/lpfc/lpfc_nportdisc.c | 6 drivers/scsi/lpfc/lpfc_nvmet.c | 2 drivers/scsi/qla2xxx/qla_target.c | 10 drivers/slimbus/core.c | 4 drivers/soc/fsl/qbman/qman.c | 98 ++ drivers/staging/comedi/drivers/comedi_test.c | 30 drivers/staging/speakup/synth.c | 4 drivers/staging/vc04_services/bcm2835-camera/mmal-vchiq.c | 52 + drivers/staging/vc04_services/bcm2835-camera/mmal-vchiq.h | 6 drivers/tty/n_gsm.c | 3 drivers/tty/serial/fsl_lpuart.c | 7 drivers/tty/vt/vt.c | 4 drivers/usb/class/cdc-wdm.c | 6 drivers/usb/core/port.c | 5 drivers/usb/core/sysfs.c | 16 drivers/usb/dwc2/core.h | 14 drivers/usb/dwc2/core_intr.c | 63 + drivers/usb/dwc2/gadget.c | 4 drivers/usb/dwc2/hcd.c | 47 + drivers/usb/dwc2/hcd_ddma.c | 17 drivers/usb/dwc2/hw.h | 2 drivers/usb/gadget/function/f_ncm.c | 2 drivers/usb/gadget/udc/core.c | 4 drivers/usb/host/sl811-hcd.c | 2 drivers/usb/serial/cp210x.c | 4 drivers/usb/serial/ftdi_sio.c | 2 drivers/usb/serial/ftdi_sio_ids.h | 6 drivers/usb/serial/option.c | 6 drivers/usb/storage/isd200.c | 23 drivers/vfio/platform/vfio_platform_irq.c | 5 drivers/video/fbdev/core/fbmon.c | 7 drivers/video/fbdev/via/accel.c | 4 drivers/virtio/virtio.c | 10 fs/aio.c | 8 fs/btrfs/export.c | 9 fs/btrfs/ioctl.c | 25 fs/btrfs/send.c | 10 fs/btrfs/volumes.c | 12 fs/exec.c | 1 fs/ext4/resize.c | 3 fs/fat/nfs.c | 6 fs/fuse/fuse_i.h | 1 fs/fuse/inode.c | 7 fs/isofs/inode.c | 18 fs/nilfs2/alloc.c | 38 - fs/nilfs2/btree.c | 51 - fs/nilfs2/cpfile.c | 10 fs/nilfs2/dat.c | 14 fs/nilfs2/direct.c | 23 fs/nilfs2/gcinode.c | 2 fs/nilfs2/ifile.c | 4 fs/nilfs2/inode.c | 31 fs/nilfs2/ioctl.c | 37 - fs/nilfs2/mdt.c | 2 fs/nilfs2/namei.c | 6 fs/nilfs2/nilfs.h | 9 fs/nilfs2/page.c | 11 fs/nilfs2/recovery.c | 32 fs/nilfs2/segbuf.c | 2 fs/nilfs2/segment.c | 38 - fs/nilfs2/sufile.c | 29 fs/nilfs2/super.c | 57 - fs/nilfs2/sysfs.c | 29 fs/nilfs2/the_nilfs.c | 85 +- fs/open.c | 38 - fs/sysv/itree.c | 10 fs/ubifs/file.c | 13 include/linux/fs.h | 3 include/linux/gfp.h | 9 include/linux/sunrpc/sched.h | 2 include/linux/timer.h | 18 include/net/erspan.h | 19 include/net/inet_connection_sock.h | 1 include/net/sock.h | 9 include/soc/fsl/qman.h | 9 include/trace/events/timer.h | 17 include/uapi/linux/input-event-codes.h | 1 init/initramfs.c | 77 +- kernel/events/core.c | 9 kernel/power/suspend.c | 1 kernel/printk/printk.c | 6 kernel/time/timer.c | 282 ++++++-- mm/compaction.c | 7 mm/memory-failure.c | 2 mm/memory.c | 4 mm/memtest.c | 4 mm/migrate.c | 6 mm/page_alloc.c | 10 mm/vmscan.c | 5 net/bluetooth/hci_debugfs.c | 48 - net/bluetooth/hci_event.c | 25 net/core/sock.c | 7 net/ipv4/inet_connection_sock.c | 14 net/ipv4/ip_gre.c | 104 ++- net/ipv4/tcp.c | 2 net/ipv6/ip6_fib.c | 14 net/ipv6/ip6_gre.c | 3 net/mac80211/cfg.c | 5 net/netfilter/nf_tables_api.c | 22 net/nfc/nci/core.c | 5 net/rds/rdma.c | 2 net/sched/act_skbmod.c | 10 net/xfrm/xfrm_user.c | 3 scripts/Makefile.extrawarn | 2 security/smack/smack_lsm.c | 12 sound/pci/hda/patch_realtek.c | 9 sound/sh/aica.c | 17 sound/soc/soc-ops.c | 2 tools/iio/iio_utils.c | 2 tools/power/x86/x86_energy_perf_policy/x86_energy_perf_policy.c | 1 tools/testing/ktest/ktest.pl | 1 tools/testing/selftests/net/reuseaddr_conflict.c | 2 virt/kvm/async_pf.c | 31 166 files changed, 2098 insertions(+), 1189 deletions(-) Alan Stern (2): USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command USB: core: Fix deadlock in usb_deauthorize_interface() Aleksandr Burakov (1): fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 Aleksandr Loktionov (1): i40e: fix vf may be used uninitialized in this function warning Alex Henrie (1): isofs: handle CDs with bad root inode but good Joliet root directory Alex Williamson (1): vfio/platform: Disable virqfds on cleanup Andrey Jr. Melnikov (1): ahci: asm1064: correct count of reported ports Anna-Maria Gleixner (3): timer/trace: Replace deprecated vsprintf pointer extension %pf by %ps timer/trace: Improve timer tracing timers: Prepare support for PREEMPT_RT Aric Cyr (1): drm/amd/display: Fix nanosec stat overflow Arnd Bergmann (4): staging: vc04_services: changen strncpy() to strscpy_pad() ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit ata: sata_mv: Fix PCI device ID table declaration compilation warning media: sta2x11: fix irq handler cast Aurélien Jacobs (1): USB: serial: option: add MeiG Smart SLM320 product Bart Van Assche (1): fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion Bastien Nocera (1): Bluetooth: Fix TOCTOU in HCI debugfs implementation Borislav Petkov (1): x86/bugs: Use sysfs_emit() Borislav Petkov (AMD) (1): x86/CPU/AMD: Update the Zenbleed microcode revisions Cameron Williams (1): USB: serial: add device ID for VeriFone adapter Christian Häggström (1): USB: serial: cp210x: add ID for MGP Instruments PDS100 Christoph Hellwig (4): initramfs: factor out a helper to populate the initrd image fs: add a vfs_fchown helper fs: add a vfs_fchmod helper initramfs: switch initramfs unpacking to struct file based APIs Christophe JAILLET (1): slimbus: core: Remove usage of the deprecated ida_simple_xx() API Colin Ian King (1): usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined Conrad Kostecki (1): ahci: asm1064: asm1166: don't limit reported ports Dai Ngo (1): SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int Damian Muszynski (1): crypto: qat - resolve race condition during AER recovery Dan Carpenter (1): staging: vc04_services: fix information leak in create_component() Daniel Vogelbacher (1): USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB Dave Airlie (1): amdkfd: use calloc instead of kzalloc to avoid integer overflow Dave Stevenson (3): staging: mmal-vchiq: Avoid use of bool in structures staging: mmal-vchiq: Allocate and free components as required staging: mmal-vchiq: Fix client_component for 64 bit kernel David Hildenbrand (2): virtio: reenable config if freezing device failed x86/mm/pat: fix VM_PAT handling in COW mappings David Sterba (3): btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() btrfs: export: handle invalid inode or root reference in btrfs_get_parent() btrfs: send: handle path ref underflow in header iterate_inode_ref() Dmitry Antipov (1): wifi: ath9k: fix LNA selection in ath_ant_try_scan() Dominique Martinet (1): mmc: core: Fix switch on gp3 partition Duje Mihanović (1): arm: dts: marvell: Fix maxium->maxim typo in brownstone dts Duoming Zhou (1): ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs Edward Adam Davis (1): Bluetooth: btintel: Fix null ptr deref in btintel_read_version Eric Dumazet (3): tcp: properly terminate timers for kernel sockets net/sched: act_skbmod: prevent kernel-infoleak erspan: make sure erspan_base_hdr is present in skb->head Felix Fietkau (1): wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes Gabor Juhos (3): clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays Geert Uytterhoeven (1): initramfs: fix populate_initrd_image() section mismatch Geliang Tang (1): mptcp: add sk_stop_timer_sync helper Genjian Zhang (1): Revert "loop: Check for overflow while configuring loop" Gergo Koteles (1): Input: allocate keycode for Display refresh rate toggle Goldwyn Rodrigues (1): btrfs: allocate btrfs_ioctl_defrag_range_args on stack Greg Kroah-Hartman (1): Linux 4.19.312 Guenter Roeck (4): parisc: Fix ip_fast_csum parisc: Fix csum_ipv6_magic on 32-bit systems parisc: Fix csum_ipv6_magic on 64-bit systems parisc: Strip upper 32 bit of sum in csum_ipv6_magic for 64-bit builds Gui-Dong Han (1): media: xc4000: Fix atomicity violation in xc4000_get_frequency Guo Mengqi (1): drm/vkms: call drm_atomic_helper_shutdown before drm_dev_put() Hangbin Liu (1): ip_gre: do not report erspan version on GRE interface Harald Freudenberger (1): s390/zcrypt: fix reference counting on zcrypt card objects Harshit Mogalapalli (1): VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() Heiner Kallweit (1): r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d Helge Deller (1): parisc: Do not hardcode registers in checksum functions Holger Hoffstätte (1): loop: properly observe rotational flag of underlying device Hui Wang (1): Bluetooth: hci_event: set the conn encrypted before conn establishes I Gede Agastya Darma Laksana (1): ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with microphone Ian Abbott (1): comedi: comedi_test: Prevent timers rescheduling during deletion Ingo Molnar (1): Revert "x86/mm/ident_map: Use gbpages only where full GB page should be mapped." Jakub Kicinski (1): selftests: reuseaddr_conflict: add missing new line at the end of the output Jan Kara (1): fat: fix uninitialized field in nostale filehandles Jani Nikula (2): drm/imx/ipuv3: do not return negative values from .get_modes() drm/vc4: hdmi: do not return negative values from .get_modes() Joe Perches (1): nilfs2: use a more common logging style Johan Jonker (1): arm64: dts: rockchip: fix rk3399 hdmi ports node John Ogness (1): printk: Update @console_may_schedule in console_trylock_spinning() John Sperbeck (1): init: open /initrd.image with O_LARGEFILE Josua Mayer (1): hwmon: (amc6821) add of_match table Justin Tee (1): scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() Kailang Yang (1): ALSA: hda/realtek - Fix headset Mic no show at resume back for Lenovo ALC897 platform Kim Phillips (2): x86/cpu: Support AMD Automatic IBRS x86/cpu: Enable STIBP on AMD if Automatic IBRS is enabled Krishna Kurapati (1): usb: gadget: ncm: Fix handling of zero block length packets Kuniyuki Iwashima (1): ipv6: Fix infinite recursion in fib6_dump_done(). Kunwu Chan (1): Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails Lin Yujun (1): Documentation/hw-vuln: Update spectre doc Liu Shixin (1): mm/memory-failure: fix an incorrect use of tail pages Lubomir Rintel (1): ARM: dts: mmp2-brownstone: Don't redeclare phandle references Luiz Augusto von Dentz (1): Bluetooth: btintel: Fixe build regression Mahmoud Adam (1): net/rds: fix possible cp null dereference Martijn Coenen (5): loop: Call loop_config_discard() only after new config is applied loop: Remove sector_t truncation checks loop: Factor out setting loop device size loop: Refactor loop_set_status() size calculation loop: Factor out configuring loop from status Mathias Nyman (1): usb: port: Don't try to peer unused USB ports based on location Matthew Wilcox (Oracle) (1): ubifs: Set page uptodate in the correct place Maulik Shah (1): PM: suspend: Set mem_sleep_current during kernel command line setup Max Filippov (1): exec: Fix NOMMU linux_binprm::exec in transfer_args_to_stack() Maximilian Heyne (1): ext4: fix corruption during on-line resize Michael Ellerman (1): powerpc/fsl: Fix mfpmr build errors with newer binutils Miklos Szeredi (1): fuse: don't unhash root Minas Harutyunyan (4): usb: dwc2: host: Fix remote wakeup from hibernation usb: dwc2: host: Fix hibernation flow usb: dwc2: host: Fix ISOC flow in DDMA mode usb: dwc2: gadget: LPM flow fix Muhammad Usama Anjum (1): scsi: lpfc: Correct size for wqe for memset() Nathan Chancellor (3): kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1 xfrm: Avoid clang fortify warning in copy_to_user_tmpl() powerpc: xor_vmx: Add '-mhard-float' to CFLAGS Nicolas Pitre (1): vt: fix unicode buffer corruption when deleting characters Oliver Neukum (1): usb: cdc-wdm: close race between read and workqueue Pablo Neira Ayuso (3): netfilter: nf_tables: disallow anonymous set with timeout flag netfilter: nf_tables: reject constant set with timeout netfilter: nf_tables: disallow timeout for anonymous sets Petre Rodan (1): tools: iio: replace seekdir() in iio_generic_buffer Piotr Wejman (1): net: stmmac: fix rx queue priority assignment Qiang Zhang (1): memtest: use {READ,WRITE}_ONCE in memory scanning Qingliang Li (1): PM: sleep: wakeirq: fix wake irq warning in system suspend Quinn Tran (1): scsi: qla2xxx: Fix command flush on cable pull Rafael J. Wysocki (1): PCI/PM: Drain runtime-idle callbacks before driver removal Randy Dunlap (2): sparc64: NMI watchdog: fix return value of __setup handler sparc: vDSO: fix return value of __setup handler Ricardo B. Marliere (1): ktest: force $buildonly = 1 for 'make_warnings_file' test type Richard Weinberger (1): ubi: Check for too small LEB size in VTBL code Roberto Sassu (2): smack: Set SMACK64TRANSMUTE only for dirs in smack_inode_setxattr() smack: Handle SMACK64TRANSMUTE in smack_inode_setsecurity() Roman Smirnov (2): block: prevent division by zero in blk_rq_stat_sum() fbmon: prevent division by zero in fb_videomode_from_videomode() Ryosuke Yasuoka (1): nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet Ryusuke Konishi (2): nilfs2: fix failure to detect DAT corruption in btree and direct mappings nilfs2: prevent kernel bug at submit_bh_wbc() Samasth Norway Ananda (1): tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() Samuel Thibault (1): speakup: Fix 8bit characters from direct synth Sean Anderson (4): soc: fsl: qbman: Always disable interrupts when taking cgr_lock soc: fsl: qbman: Add helper for sanity checking cgr ops soc: fsl: qbman: Add CGR update function soc: fsl: qbman: Use raw spinlock for cgr_lock Sean Christopherson (1): KVM: Always flush async #PF workqueue when vCPU is being destroyed Sherry Sun (1): tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled Siddh Raman Pant (1): loop: Check for overflow while configuring loop Song Liu (1): Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"" Stephen Lee (1): ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw Svyatoslav Pankratov (1): crypto: qat - fix double free during reset Tetsuo Handa (1): sysv: don't call sb_bread() with pointers_lock held Thadeu Lima de Souza Cascardo (1): tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc Thomas Gleixner (3): timers: Update kernel-doc for various functions timers: Use del_timer_sync() even on UP timers: Rename del_timer_sync() to timer_delete_sync() Tim Schumacher (1): efivarfs: Request at most 512 bytes for variable names Toru Katagiri (1): USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M Uwe Kleine-König (1): PCI: Drop pci_device_remove() test of pci_dev->driver Vasiliy Kovalev (1): VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() Vlastimil Babka (1): mm, vmscan: prevent infinite loop for costly GFP_NOIO | __GFP_RETRY_MAYFAIL allocations William Tu (2): erspan: Add type I version 0 support. erspan: Check IFLA_GRE_ERSPAN_VER is set. Wolfram Sang (1): mmc: tmio: avoid concurrent runs of mmc_request_done() Yang Jihong (1): perf/core: Fix reentry problem in perf_output_read_group() Yangxi Xiang (1): vt: fix memory overlapping when deleting chars in the buffer Yu Kuai (1): dm-raid: fix lockdep waring in "pers->hot_add_disk" Zhang Yi (1): ubi: correct the calculation of fastmap size Zheng Wang (1): wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach Zhong Jinghua (1): loop: loop_set_status_from_info() check before assignment Zi Yan (1): mm/migrate: set swap entry values of THP tail pages properly. Ziyang Xuan (1): netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() yuan linyu (1): usb: udc: remove warning when queue disabled ep

1 year, 8 months

1
1
0 0

+ mm-memory-failure-fix-deadlock-when-hugetlb_optimize_vmemmap-is-enabled-v2.patch added to mm-hotfixes-unstable branch

by Andrew Morton

The patch titled Subject: mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled has been added to the -mm mm-hotfixes-unstable branch. Its filename is mm-memory-failure-fix-deadlock-when-hugetlb_optimize_vmemmap-is-enabled-v2.patch This patch will shortly appear at https://git.kernel.org/pub/scm/linux/kernel/git/akpm/25-new.git/tree/patche… This patch will later appear in the mm-hotfixes-unstable branch at git://git.kernel.org/pub/scm/linux/kernel/git/akpm/mm Before you just go and hit "reply", please: a) Consider who else should be cc'ed b) Prefer to cc a suitable mailing list as well c) Ideally: find the original patch on the mailing list and do a reply-to-all to that, adding suitable additional cc's *** Remember to use Documentation/process/submit-checklist.rst when testing your code *** The -mm tree is included into linux-next via the mm-everything branch at git://git.kernel.org/pub/scm/linux/kernel/git/akpm/mm and is updated there every 2-3 working days ------------------------------------------------------ From: Miaohe Lin <linmiaohe(a)huawei.com> Subject: mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled Date: Fri, 12 Apr 2024 10:57:54 +0800 extend comment per Oscar Link: https://lkml.kernel.org/r/20240412025754.1897615-1-linmiaohe@huawei.com Fixes: a6b40850c442 ("mm: hugetlb: replace hugetlb_free_vmemmap_enabled with a static_key") Signed-off-by: Miaohe Lin <linmiaohe(a)huawei.com> Acked-by: Oscar Salvador <osalvador(a)suse.de> Cc: <stable(a)vger.kernel.org> Cc: Naoya Horiguchi <nao.horiguchi(a)gmail.com> Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- mm/memory-failure.c | 4 ++++ 1 file changed, 4 insertions(+) --- a/mm/memory-failure.c~mm-memory-failure-fix-deadlock-when-hugetlb_optimize_vmemmap-is-enabled-v2 +++ a/mm/memory-failure.c @@ -159,6 +159,10 @@ static int __page_handle_poison(struct p * dissolve_free_huge_page() might hold cpu_hotplug_lock via static_key_slow_dec() * when hugetlb vmemmap optimization is enabled. This will break current lock * dependency chain and leads to deadlock. + * Disabling pcp before dissolving the page was a deterministic approach because + * we made sure that those pages cannot end up in any PCP list. Draining PCP lists + * expels those pages to the buddy system, but nothing guarantees that those pages + * do not get back to a PCP queue if we need to refill those. */ ret = dissolve_free_huge_page(page); if (!ret) { _ Patches currently in -mm which might be from linmiaohe(a)huawei.com are mm-memory-failure-fix-deadlock-when-hugetlb_optimize_vmemmap-is-enabled.patch mm-memory-failure-fix-deadlock-when-hugetlb_optimize_vmemmap-is-enabled-v2.patch fork-defer-linking-file-vma-until-vma-is-fully-initialized.patch

1 year, 8 months

1
0
0 0

[PATCH 1/3] drm/xe/vm: prevent UAF with asid based lookup

by Matthew Auld

The asid is only erased from the xarray when the vm refcount reaches zero, however this leads to potential UAF since the xe_vm_get() only works on a vm with refcount != 0. Since the asid is allocated in the vm create ioctl, rather erase it when closing the vm, prior to dropping the potential last ref. This should also work when user closes driver fd without explicit vm destroy. Fixes: dd08ebf6c352 ("drm/xe: Introduce a new DRM driver for Intel GPUs") Closes: https://gitlab.freedesktop.org/drm/xe/kernel/-/issues/1594 Signed-off-by: Matthew Auld <matthew.auld(a)intel.com> Cc: Matthew Brost <matthew.brost(a)intel.com> Cc: <stable(a)vger.kernel.org> # v6.8+ --- drivers/gpu/drm/xe/xe_vm.c | 21 +++++++++++---------- 1 file changed, 11 insertions(+), 10 deletions(-) diff --git a/drivers/gpu/drm/xe/xe_vm.c b/drivers/gpu/drm/xe/xe_vm.c index a196dbe65252..c5c26b3d1b76 100644 --- a/drivers/gpu/drm/xe/xe_vm.c +++ b/drivers/gpu/drm/xe/xe_vm.c @@ -1581,6 +1581,16 @@ void xe_vm_close_and_put(struct xe_vm *vm) xe->usm.num_vm_in_fault_mode--; else if (!(vm->flags & XE_VM_FLAG_MIGRATION)) xe->usm.num_vm_in_non_fault_mode--; + + if (vm->usm.asid) { + void *lookup; + + xe_assert(xe, xe->info.has_asid); + xe_assert(xe, !(vm->flags & XE_VM_FLAG_MIGRATION)); + + lookup = xa_erase(&xe->usm.asid_to_vm, vm->usm.asid); + xe_assert(xe, lookup == vm); + } mutex_unlock(&xe->usm.lock); for_each_tile(tile, xe, id) @@ -1596,24 +1606,15 @@ static void vm_destroy_work_func(struct work_struct *w) struct xe_device *xe = vm->xe; struct xe_tile *tile; u8 id; - void *lookup; /* xe_vm_close_and_put was not called? */ xe_assert(xe, !vm->size); mutex_destroy(&vm->snap_mutex); - if (!(vm->flags & XE_VM_FLAG_MIGRATION)) { + if (!(vm->flags & XE_VM_FLAG_MIGRATION)) xe_device_mem_access_put(xe); - if (xe->info.has_asid && vm->usm.asid) { - mutex_lock(&xe->usm.lock); - lookup = xa_erase(&xe->usm.asid_to_vm, vm->usm.asid); - xe_assert(xe, lookup == vm); - mutex_unlock(&xe->usm.lock); - } - } - for_each_tile(tile, xe, id) XE_WARN_ON(vm->pt_root[id]); -- 2.44.0

1 year, 8 months

3
3
0 0

[PATCH 6.6 000/114] 6.6.27-rc1 review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 6.6.27 release. There are 114 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Sat, 13 Apr 2024 09:53:55 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v6.x/stable-review/patch-6.6.27-rc1… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-6.6.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 6.6.27-rc1 Ma Jun <Jun.Ma2(a)amd.com> Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init()" Vasiliy Kovalev <kovalev(a)altlinux.org> VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() Florian Westphal <fw(a)strlen.de> net: mpls: error out if inner headers are not set Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com> Bluetooth: btintel: Fixe build regression Gwendal Grignou <gwendal(a)chromium.org> platform/x86: intel-vbtn: Update tablet mode switch at end of probe Kees Cook <keescook(a)chromium.org> randomize_kstack: Improve entropy diffusion Yunfei Dong <yunfei.dong(a)mediatek.com> media: mediatek: vcodec: adding lock to protect encoder context list Yunfei Dong <yunfei.dong(a)mediatek.com> media: mediatek: vcodec: adding lock to protect decoder context list Nicolas Dufresne <nicolas.dufresne(a)collabora.com> media: mediatek: vcodec: Fix oops when HEVC init fails Geliang Tang <geliang.tang(a)suse.com> selftests: mptcp: display simult in extra_msg Ard Biesheuvel <ardb(a)kernel.org> gcc-plugins/stackleak: Avoid .head.text section Tim Crawford <tcrawford(a)system76.com> ALSA: hda/realtek: Add quirks for some Clevo laptops Roman Smirnov <r.smirnov(a)omp.ru> fbmon: prevent division by zero in fb_videomode_from_videomode() Jiawei Fu (iBug) <i(a)ibugone.com> drivers/nvme: Add quirks for device 126f:2262 Max Kellermann <max.kellermann(a)ionos.com> modpost: fix null pointer dereference Jens Axboe <axboe(a)kernel.dk> io_uring: clear opcode specific data for an early failure Aleksandr Burakov <a.burakov(a)rosalinux.ru> fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 Roger Pau Monne <roger.pau(a)citrix.com> x86/xen: attempt to inflate the memory balloon on PVH Chancel Liu <chancel.liu(a)nxp.com> ASoC: soc-core.c: Skip dummy codec when adding platforms Konrad Dybcio <konrad.dybcio(a)linaro.org> thermal/of: Assume polling-delay(-passive) 0 when absent M Cooley <m.cooley.198(a)gmail.com> ASoC: amd: yc: Fix non-functional mic on ASUS M7600RE Colin Ian King <colin.i.king(a)gmail.com> usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined Marco Felsch <m.felsch(a)pengutronix.de> usb: typec: tcpci: add generic tcpci fallback compatible Mika Westerberg <mika.westerberg(a)linux.intel.com> thunderbolt: Keep the domain powered when USB4 port is in redrive mode Abhishek Pandit-Subedi <abhishekpandit(a)chromium.org> usb: typec: ucsi: Limit read size on v1.2 Michael Grzeschik <m.grzeschik(a)pengutronix.de> usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR Tejun Heo <tj(a)kernel.org> kernfs: RCU protect kernfs_nodes and avoid kernfs_idr_lock in kernfs_find_and_get_node_by_id() Jeffrey Hugo <quic_jhugo(a)quicinc.com> bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state Petre Rodan <petre.rodan(a)subdimension.ro> tools: iio: replace seekdir() in iio_generic_buffer linke li <lilinke99(a)qq.com> ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment Matt Scialabba <matt.git(a)fastmail.fm> Input: xpad - add support for Snakebyte GAMEPADs Ricardo B. Marliere <ricardo(a)marliere.net> ktest: force $buildonly = 1 for 'make_warnings_file' test type Jichi Zhang <i(a)jichi.ca> ALSA: hda/realtek: Add quirk for Lenovo Yoga 9 14IMH9 Sandipan Das <sandipan.das(a)amd.com> perf/x86/amd/lbr: Discard erroneous branch entries Alban Boyé <alban.boye(a)protonmail.com> platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet Gergo Koteles <soyer(a)irl.hu> Input: allocate keycode for Display refresh rate toggle Duje Mihanović <duje.mihanovic(a)skole.hr> Input: imagis - use FIELD_GET where applicable Manjunath Patil <manjunath.b.patil(a)oracle.com> RDMA/cm: add timeout to cm_destroy_id wait Roman Smirnov <r.smirnov(a)omp.ru> block: prevent division by zero in blk_rq_stat_sum() Junhao He <hejunhao3(a)huawei.com> drivers/perf: hisi: Enable HiSilicon Erratum 162700402 quirk for HIP09 Markuss Broks <markuss.broks(a)gmail.com> input/touchscreen: imagis: Correct the maximum touch area value Ian Rogers <irogers(a)google.com> libperf evlist: Avoid out-of-bounds access Daniel Drake <drake(a)endlessos.org> Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" Daniel Drake <drake(a)endlessos.org> PCI: Disable D3cold on Asus B1400 PCI-NVMe bridge Dai Ngo <dai.ngo(a)oracle.com> SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int Shradha Gupta <shradhagupta(a)linux.microsoft.com> drm: Check output polling initialized before disabling Srinivasan Shanmugam <srinivasan.shanmugam(a)amd.com> drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init() Dmitry Torokhov <dmitry.torokhov(a)gmail.com> HID: input: avoid polling stylus battery on Chromebook Pompom Jarkko Nikula <jarkko.nikula(a)linux.intel.com> i2c: designware: Fix RX FIFO depth define on Wangxun 10Gb NIC Koby Elbaz <kelbaz(a)habana.ai> accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings Aric Cyr <aric.cyr(a)amd.com> drm/amd/display: Fix nanosec stat overflow Ye Bin <yebin10(a)huawei.com> ext4: forbid commit inconsistent quota data when errors=remount-ro Zhang Yi <yi.zhang(a)huawei.com> ext4: add a hint for block bitmap corrupt state in mb_groups Cezary Rojewski <cezary.rojewski(a)intel.com> ASoC: Intel: avs: Populate board selection with new I2S entries Takashi Sakamoto <o-takashi(a)sakamocchi.jp> ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter Arnd Bergmann <arnd(a)arndb.de> media: sta2x11: fix irq handler cast Mike Marshall <hubcap(a)omnibond.com> Julia Lawall reported this null pointer dereference, this should fix it. Paul E. McKenney <paulmck(a)kernel.org> rcu-tasks: Repair RCU Tasks Trace quiescence check Zqiang <qiang.zhang1211(a)gmail.com> rcu/nocb: Fix WARN_ON_ONCE() in the rcu_nocb_bypass_lock() mosomate <mosomate(a)gmail.com> ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710) laptops Alex Henrie <alexhenrie24(a)gmail.com> isofs: handle CDs with bad root inode but good Joliet root directory Justin Tee <justin.tee(a)broadcom.com> scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp> sysv: don't call sb_bread() with pointers_lock held Geert Uytterhoeven <geert+renesas(a)glider.be> pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs Christian König <christian.koenig(a)amd.com> drm/ttm: return ENOSPC from ttm_bo_mem_space v3 Cristian Ciocaltea <cristian.ciocaltea(a)collabora.com> ASoC: SOF: amd: Optimize quirk for Valve Galileo Samuel Dionne-Riel <samuel(a)dionne-riel.com> drm: panel-orientation-quirks: Add quirk for GPD Win Mini Kunwu Chan <chentao(a)kylinos.cn> Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails Maíra Canal <mcanal(a)igalia.com> drm/vc4: don't check if plane->state->fb == state->fb Vinicius Peixoto <nukelet64(a)gmail.com> Bluetooth: Add new quirk for broken read key length on ATS2851 Takashi Iwai <tiwai(a)suse.de> Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922 Edward Adam Davis <eadavis(a)qq.com> Bluetooth: btintel: Fix null ptr deref in btintel_read_version Eric Dumazet <edumazet(a)google.com> net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() Jacob Keller <jacob.e.keller(a)intel.com> ice: use relative VSI index for VFs instead of PF VSI number David Sterba <dsterba(a)suse.com> btrfs: send: handle path ref underflow in header iterate_inode_ref() David Sterba <dsterba(a)suse.com> btrfs: export: handle invalid inode or root reference in btrfs_get_parent() David Sterba <dsterba(a)suse.com> btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() Johannes Berg <johannes.berg(a)intel.com> wifi: cfg80211: check A-MSDU format more carefully Takashi Iwai <tiwai(a)suse.de> wifi: iwlwifi: Add missing MODULE_FIRMWARE() for *.pnvm Kees Cook <keescook(a)chromium.org> overflow: Allow non-type arg to type_max() and type_min() Viresh Kumar <viresh.kumar(a)linaro.org> cpufreq: Don't unregister cpufreq cooling on CPU hotplug Baochen Qiang <quic_bqiang(a)quicinc.com> wifi: ath11k: decrease MHI channel buffer length to 8KB Rick Edgecombe <rick.p.edgecombe(a)intel.com> dma-direct: Leak pages on dma_set_decrypted() failure Serge Semin <fancer.lancer(a)gmail.com> net: pcs: xpcs: Return EINVAL in the internal methods Samasth Norway Ananda <samasth.norway.ananda(a)oracle.com> tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() Kunwu Chan <chentao(a)kylinos.cn> pstore/zone: Add a null pointer check to the psz_kmsg_read Hans de Goede <hdegoede(a)redhat.com> ACPI: x86: Move acpi_quirk_skip_serdev_enumeration() out of CONFIG_X86_ANDROID_TABLETS Shayne Chen <shayne.chen(a)mediatek.com> wifi: mt76: mt7996: add locking for accessing mapped registers Peter Chiu <chui-hao.chiu(a)mediatek.com> wifi: mt76: mt7996: disable AMSDU for non-data frames Shayne Chen <shayne.chen(a)mediatek.com> wifi: mt76: mt7915: add locking for accessing mapped registers Hans de Goede <hdegoede(a)redhat.com> wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro Markus Elfring <elfring(a)users.sourceforge.net> firmware: tegra: bpmp: Return directly after a failed kzalloc() in get_filename() Florian Westphal <fw(a)strlen.de> net: skbuff: add overflow debug check to pull/push helpers Shannon Nelson <shannon.nelson(a)amd.com> ionic: set adminq irq affinity Adam Ford <aford173(a)gmail.com> pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain Kunwu Chan <chentao(a)kylinos.cn> pmdomain: ti: Add a null pointer check to the omap_prm_domain_init Eric Dumazet <edumazet(a)google.com> net: add netdev_lockdep_set_classes() to virtual drivers Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: fix rk3399 hdmi ports node Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: fix rk3328 hdmi ports node Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix rk322x hdmi ports node Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix rk3288 hdmi ports node C Cheng <C.Cheng(a)mediatek.com> cpuidle: Avoid potential overflow in integer multiplication John Ogness <john.ogness(a)linutronix.de> panic: Flush kernel log buffer at the end John Ogness <john.ogness(a)linutronix.de> printk: For @suppress_panic_printk check for other CPU in panic Mukesh Sisodiya <mukesh.sisodiya(a)intel.com> wifi: iwlwifi: pcie: Add the PCI device id for new hardware Harshit Mogalapalli <harshit.m.mogalapalli(a)oracle.com> VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() Ping-Ke Shih <pkshih(a)realtek.com> wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor Andre Werner <andre.werner(a)systec-electronic.com> net: phy: phy_device: Prevent nullptr exceptions on ISR Cristian Ciocaltea <cristian.ciocaltea(a)collabora.com> net: stmmac: dwmac-starfive: Add support for JH7100 SoC Markus Elfring <elfring(a)users.sourceforge.net> batman-adv: Improve exception handling in batadv_throw_uevent() Markus Elfring <elfring(a)users.sourceforge.net> batman-adv: Return directly after a failed batadv_dat_select_candidates() in batadv_dat_forward_data() Kees Cook <keescook(a)chromium.org> bnx2x: Fix firmware version string character counts Po-Hao Huang <phhuang(a)realtek.com> wifi: rtw89: fix null pointer access when abort scan Dmitry Antipov <dmantipov(a)yandex.ru> wifi: ath9k: fix LNA selection in ath_ant_try_scan() ------------- Diffstat: Makefile | 4 +- arch/arm/boot/dts/rockchip/rk322x.dtsi | 16 ++-- arch/arm/boot/dts/rockchip/rk3288.dtsi | 16 +++- arch/arm64/boot/dts/rockchip/rk3328.dtsi | 11 ++- arch/arm64/boot/dts/rockchip/rk3399.dtsi | 12 ++- arch/x86/events/amd/lbr.c | 6 +- arch/x86/include/asm/xen/hypervisor.h | 5 ++ arch/x86/pci/fixup.c | 48 ++++++++++++ arch/x86/platform/pvh/enlighten.c | 3 + arch/x86/xen/enlighten.c | 32 ++++++++ arch/x86/xen/enlighten_pvh.c | 68 +++++++++++++++++ arch/x86/xen/setup.c | 44 ----------- arch/x86/xen/xen-ops.h | 14 ++++ block/blk-stat.c | 2 +- drivers/accel/habanalabs/common/habanalabs.h | 2 +- drivers/acpi/sleep.c | 12 --- drivers/acpi/x86/utils.c | 18 ++++- drivers/bluetooth/btintel.c | 2 +- drivers/bluetooth/btmtk.c | 1 + drivers/bluetooth/btmtk.h | 1 + drivers/bluetooth/btusb.c | 1 + drivers/bus/mhi/host/init.c | 1 + drivers/bus/mhi/host/internal.h | 9 ++- drivers/bus/mhi/host/pm.c | 20 ++++- drivers/cpufreq/cpufreq.c | 17 +++-- drivers/cpuidle/driver.c | 3 +- drivers/firmware/tegra/bpmp-debugfs.c | 2 +- .../gpu/drm/amd/display/modules/inc/mod_stats.h | 4 +- drivers/gpu/drm/drm_modeset_helper.c | 19 ++++- drivers/gpu/drm/drm_panel_orientation_quirks.c | 12 +++ drivers/gpu/drm/drm_probe_helper.c | 13 +++- drivers/gpu/drm/ttm/ttm_bo.c | 7 +- drivers/gpu/drm/vc4/vc4_plane.c | 5 +- drivers/hid/hid-ids.h | 1 + drivers/hid/hid-input.c | 2 + drivers/i2c/busses/i2c-designware-core.h | 2 +- drivers/infiniband/core/cm.c | 20 ++++- drivers/input/joystick/xpad.c | 3 + drivers/input/rmi4/rmi_driver.c | 6 +- drivers/input/touchscreen/imagis.c | 20 ++--- drivers/media/pci/sta2x11/sta2x11_vip.c | 9 +-- .../mediatek/vcodec/common/mtk_vcodec_fw_vpu.c | 8 +- .../mediatek/vcodec/decoder/mtk_vcodec_dec_drv.c | 5 ++ .../mediatek/vcodec/decoder/mtk_vcodec_dec_drv.h | 2 + .../vcodec/decoder/vdec/vdec_hevc_req_multi_if.c | 2 +- .../platform/mediatek/vcodec/decoder/vdec_vpu_if.c | 2 + .../mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c | 5 ++ .../mediatek/vcodec/encoder/mtk_vcodec_enc_drv.h | 2 + .../platform/mediatek/vcodec/encoder/venc_vpu_if.c | 2 + drivers/misc/vmw_vmci/vmci_datagram.c | 6 +- drivers/net/dummy.c | 1 + drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c | 9 ++- .../net/ethernet/broadcom/bnx2x/bnx2x_ethtool.c | 2 +- drivers/net/ethernet/broadcom/bnx2x/bnx2x_link.c | 14 ++-- drivers/net/ethernet/intel/ice/ice_virtchnl.c | 9 +-- drivers/net/ethernet/intel/ice/ice_virtchnl.h | 9 +++ drivers/net/ethernet/pensando/ionic/ionic_lif.c | 5 +- drivers/net/ethernet/stmicro/stmmac/Kconfig | 6 +- .../net/ethernet/stmicro/stmmac/dwmac-starfive.c | 32 +++++++- drivers/net/geneve.c | 1 + drivers/net/loopback.c | 1 + drivers/net/pcs/pcs-xpcs.c | 4 +- drivers/net/phy/phy_device.c | 13 ++-- drivers/net/veth.c | 1 + drivers/net/vxlan/vxlan_core.c | 1 + drivers/net/wireless/ath/ath11k/mhi.c | 2 +- drivers/net/wireless/ath/ath9k/antenna.c | 2 +- .../net/wireless/broadcom/brcm80211/brcmfmac/dmi.c | 9 +++ drivers/net/wireless/intel/iwlwifi/cfg/ax210.c | 6 ++ drivers/net/wireless/intel/iwlwifi/cfg/bz.c | 2 + drivers/net/wireless/intel/iwlwifi/pcie/drv.c | 1 + drivers/net/wireless/mediatek/mt76/mt7915/mmio.c | 45 ++++++++++-- drivers/net/wireless/mediatek/mt76/mt7915/mt7915.h | 1 + drivers/net/wireless/mediatek/mt76/mt7996/mac.c | 5 +- drivers/net/wireless/mediatek/mt76/mt7996/mmio.c | 64 ++++++++++------ drivers/net/wireless/mediatek/mt76/mt7996/mt7996.h | 3 +- drivers/net/wireless/realtek/rtw89/mac80211.c | 4 +- drivers/net/wireless/realtek/rtw89/pci.h | 2 +- drivers/nvme/host/pci.c | 3 + drivers/perf/hisilicon/hisi_uncore_uc_pmu.c | 42 ++++++++++- drivers/pinctrl/renesas/core.c | 4 +- drivers/platform/x86/intel/vbtn.c | 5 +- drivers/platform/x86/touchscreen_dmi.c | 9 +++ drivers/pmdomain/imx/imx8mp-blk-ctrl.c | 10 +-- drivers/pmdomain/ti/omap_prm.c | 2 + drivers/scsi/lpfc/lpfc_nportdisc.c | 6 +- drivers/soundwire/dmi-quirks.c | 8 ++ drivers/thermal/thermal_of.c | 12 ++- drivers/thunderbolt/quirks.c | 14 ++++ drivers/thunderbolt/tb.c | 49 ++++++++++++- drivers/thunderbolt/tb.h | 4 + drivers/usb/gadget/function/uvc_video.c | 3 + drivers/usb/host/sl811-hcd.c | 2 + drivers/usb/typec/tcpm/tcpci.c | 1 + drivers/usb/typec/ucsi/ucsi.c | 26 ++++++- drivers/usb/typec/ucsi/ucsi.h | 11 +++ drivers/video/fbdev/core/fbmon.c | 7 +- drivers/video/fbdev/via/accel.c | 4 +- drivers/xen/balloon.c | 2 - fs/btrfs/export.c | 9 ++- fs/btrfs/send.c | 10 ++- fs/btrfs/volumes.c | 12 ++- fs/ext4/mballoc.c | 5 +- fs/ext4/super.c | 12 +++ fs/isofs/inode.c | 18 ++++- fs/kernfs/dir.c | 31 +++++--- fs/kernfs/kernfs-internal.h | 2 + fs/orangefs/super.c | 2 +- fs/pstore/zone.c | 2 + fs/sysv/itree.c | 10 +-- include/acpi/acpi_bus.h | 22 +++--- include/linux/kernfs.h | 2 + include/linux/overflow.h | 12 +-- include/linux/randomize_kstack.h | 2 +- include/linux/rcupdate.h | 4 +- include/linux/skbuff.h | 11 +++ include/linux/sunrpc/sched.h | 2 +- include/net/bluetooth/hci.h | 8 ++ include/uapi/linux/input-event-codes.h | 1 + io_uring/io_uring.c | 25 ++++--- kernel/dma/direct.c | 9 ++- kernel/panic.c | 8 ++ kernel/printk/printk.c | 3 +- kernel/rcu/tree_nocb.h | 2 +- kernel/trace/ring_buffer.c | 2 +- net/batman-adv/distributed-arp-table.c | 3 +- net/batman-adv/main.c | 14 ++-- net/bluetooth/hci_event.c | 3 +- net/ipv4/ip_tunnel.c | 1 + net/ipv6/ip6_gre.c | 2 + net/ipv6/ip6_tunnel.c | 1 + net/ipv6/ip6_vti.c | 1 + net/ipv6/sit.c | 1 + net/mpls/mpls_gso.c | 3 + net/smc/smc_pnet.c | 10 +++ net/wireless/util.c | 14 +++- scripts/gcc-plugins/stackleak_plugin.c | 2 + scripts/mod/modpost.c | 4 +- sound/firewire/amdtp-stream.c | 12 ++- sound/firewire/amdtp-stream.h | 4 + sound/pci/hda/patch_realtek.c | 12 +++ sound/soc/amd/yc/acp6x-mach.c | 7 ++ sound/soc/intel/avs/board_selection.c | 85 ++++++++++++++++++++++ sound/soc/intel/boards/sof_sdw.c | 11 +++ sound/soc/soc-core.c | 3 + sound/soc/sof/amd/acp.c | 3 +- tools/iio/iio_utils.c | 2 +- tools/lib/perf/evlist.c | 18 +++-- tools/lib/perf/include/internal/evlist.h | 4 +- .../x86_energy_perf_policy.c | 1 + tools/testing/ktest/ktest.pl | 1 + tools/testing/selftests/net/mptcp/mptcp_join.sh | 5 +- 152 files changed, 1140 insertions(+), 318 deletions(-)

1 year, 8 months

11
125
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror April 2024