[PATCH 6.1 000/791] 6.1.113-rc2 review
by Greg Kroah-Hartman
This is the start of the stable review cycle for the 6.1.113 release.
There are 791 patches in this series, all will be posted as a response
to this one. If anyone has any issues with these being applied, please
let me know.
Responses should be made by Thu, 17 Oct 2024 11:22:41 +0000.
Anything received after that time might be too late.
The whole patch series can be found in one patch at:
https://www.kernel.org/pub/linux/kernel/v6.x/stable-review/patch-6.1.113-rc…
or in the git tree and branch at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-6.1.y
and the diffstat can be found below.
thanks,
greg k-h
-------------
Pseudo-Shortlog of commits:
Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
Linux 6.1.113-rc2
Jack Wang <jinpu.wang(a)ionos.com>
Revert "iommu/vt-d: Retrieve IOMMU perfmon capability information"
Yu Kuai <yukuai3(a)huawei.com>
block, bfq: fix uaf for accessing waker_bfqq after splitting
Arnaldo Carvalho de Melo <acme(a)redhat.com>
perf lock: Don't pass an ERR_PTR() directly to perf_session__delete()
Linus Walleij <linus.walleij(a)linaro.org>
net: ethernet: cortina: Restore TSO support
Patrick Roy <roypat(a)amazon.co.uk>
secretmem: disable memfd_secret() if arch cannot set direct map
Frederic Weisbecker <frederic(a)kernel.org>
kthread: unpark only parked kthread
Yonatan Maman <Ymaman(a)Nvidia.com>
nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
Kun(llfl) <llfl(a)linux.alibaba.com>
device-dax: correct pgoff align in dax_set_mapping()
Matthieu Baerts (NGI0) <matttbe(a)kernel.org>
mptcp: pm: do not remove closing subflows
Paolo Abeni <pabeni(a)redhat.com>
mptcp: handle consistently DSS corruption
Anatolij Gustschin <agust(a)denx.de>
net: dsa: lan9303: ensure chip reset and wait for READY status
Anastasia Kovaleva <a.kovaleva(a)yadro.com>
net: Fix an unsafe loop on the list
Ignat Korchagin <ignat(a)cloudflare.com>
net: explicitly clear the sk pointer, when pf->create fails
Niklas Cassel <cassel(a)kernel.org>
ata: libata: avoid superfluous disk spin down + spin up during hibernation
Matthieu Baerts (NGI0) <matttbe(a)kernel.org>
mptcp: fallback when MPTCP opts are dropped after 1st data
Daniel Palmer <daniel(a)0x0f.com>
scsi: wd33c93: Don't use stale scsi_pointer value
Maíra Canal <mcanal(a)igalia.com>
drm/vc4: Stop the active perfmon before being destroyed
Maíra Canal <mcanal(a)igalia.com>
drm/v3d: Stop the active perfmon before being destroyed
SurajSonawane2415 <surajsonawane0215(a)gmail.com>
hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma
John Keeping <jkeeping(a)inmusicbrands.com>
usb: gadget: core: force synchronous registration
Icenowy Zheng <uwu(a)icenowy.me>
usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip
Jose Alberto Reguero <jose.alberto.reguero(a)gmail.com>
usb: xhci: Fix problem with xhci resume from suspend
Selvarasu Ganesan <selvarasu.g(a)samsung.com>
usb: dwc3: core: Stop processing of pending events if controller is halted
Oliver Neukum <oneukum(a)suse.com>
Revert "usb: yurex: Replace snprintf() with the safer scnprintf() variant"
Wade Wang <wade.wang(a)hp.com>
HID: plantronics: Workaround for an unexcepted opposite volume key
Basavaraj Natikar <Basavaraj.Natikar(a)amd.com>
HID: amd_sfh: Switch to device-managed dmam_alloc_coherent()
Sasha Levin <sashal(a)kernel.org>
Revert "net: ibm/emac: allocate dummy net_device dynamically"
Javier Carrasco <javier.carrasco.cruz(a)gmail.com>
hwmon: (adt7470) Add missing dependency on REGMAP_I2C
Javier Carrasco <javier.carrasco.cruz(a)gmail.com>
hwmon: (adm9240) Add missing dependency on REGMAP_I2C
Guenter Roeck <linux(a)roeck-us.net>
hwmon: (tmp513) Add missing dependency on REGMAP_I2C
Kenton Groombridge <concord(a)gentoo.org>
wifi: mac80211: Avoid address calculations via out of bounds array indexing
Shay Drory <shayd(a)nvidia.com>
net/mlx5: Always drain health in shutdown callback
He Lugang <helugang(a)uniontech.com>
HID: multitouch: Add support for lenovo Y9000P Touchpad
Boqun Feng <boqun.feng(a)gmail.com>
rust: macros: provide correct provenance when constructing THIS_MODULE
Eric Dumazet <edumazet(a)google.com>
slip: make slhc_remember() more robust against malicious packets
Eric Dumazet <edumazet(a)google.com>
ppp: fix ppp_async_encode() illegal access
Kuniyuki Iwashima <kuniyu(a)amazon.com>
mctp: Handle error of rtnl_register_module().
Kuniyuki Iwashima <kuniyu(a)amazon.com>
vxlan: Handle error of rtnl_register_module().
Kuniyuki Iwashima <kuniyu(a)amazon.com>
rtnetlink: Add bulk registration helpers for rtnetlink message handlers.
Rosen Penev <rosenp(a)gmail.com>
net: ibm: emac: mal: add dcr_unmap to _remove
Breno Leitao <leitao(a)debian.org>
net: ibm/emac: allocate dummy net_device dynamically
Florian Westphal <fw(a)strlen.de>
netfilter: fib: check correct rtable in vrf setups
Florian Westphal <fw(a)strlen.de>
netfilter: xtables: avoid NFPROTO_UNSPEC where needed
Xin Long <lucien.xin(a)gmail.com>
sctp: ensure sk_state is set to CLOSED if hashing fails in sctp_listen_start
Filipe Manana <fdmanana(a)suse.com>
btrfs: zoned: fix missing RCU locking in error message when loading zone info
Rosen Penev <rosenp(a)gmail.com>
net: ibm: emac: mal: fix wrong goto
Eric Dumazet <edumazet(a)google.com>
net/sched: accept TCA_STAB only for root qdisc
Mohamed Khalfella <mkhalfella(a)purestorage.com>
igb: Do not bring the device up after non-fatal error
Aleksandr Loktionov <aleksandr.loktionov(a)intel.com>
i40e: Fix macvlan leak by synchronizing access to mac_filter_hash
Marcin Szycik <marcin.szycik(a)linux.intel.com>
ice: Fix netif_is_ice() in Safe Mode
Billy Tsai <billy_tsai(a)aspeedtech.com>
gpio: aspeed: Use devm_clk api to manage clock source
Billy Tsai <billy_tsai(a)aspeedtech.com>
gpio: aspeed: Add the flush write to ensure the write complete.
Jonas Gorski <jonas.gorski(a)gmail.com>
net: dsa: b53: fix jumbo frames on 10/100 ports
Jonas Gorski <jonas.gorski(a)gmail.com>
net: dsa: b53: allow lower MTUs on BCM5325/5365
Jonas Gorski <jonas.gorski(a)gmail.com>
net: dsa: b53: fix max MTU for BCM5325/BCM5365
Jonas Gorski <jonas.gorski(a)gmail.com>
net: dsa: b53: fix max MTU for 1g switches
Jonas Gorski <jonas.gorski(a)gmail.com>
net: dsa: b53: fix jumbo frame mtu check
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
net: ethernet: adi: adin1110: Fix some error handling path in adin1110_read_fifo()
Jakub Kicinski <kuba(a)kernel.org>
Revert "net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled"
Zhang Rui <rui.zhang(a)intel.com>
thermal: intel: int340x: processor: Fix warning during module unload
Srinivas Pandruvada <srinivas.pandruvada(a)linux.intel.com>
thermal: int340x: processor_thermal: Set feature mask before proc_thermal_add
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
net: phy: bcm84881: Fix some error handling paths
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change
Kacper Ludwinski <kac.ludwinski(a)icloud.com>
selftests: net: no_forwarding: fix VID for $swp2 in one_bridge_two_pvids() test
Andy Roulin <aroulin(a)nvidia.com>
netfilter: br_netfilter: fix panic with metadata_dst skb
Neal Cardwell <ncardwell(a)google.com>
tcp: fix tcp_enter_recovery() to zero retrans_stamp when it's safe
Neal Cardwell <ncardwell(a)google.com>
tcp: fix to allow timestamp undo if no retransmits were sent
Ingo van Lil <inguin(a)gmx.de>
net: phy: dp83869: fix memory corruption when enabling fiber
Yanjun Zhang <zhangyanjun(a)cestc.cn>
NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()
Dan Carpenter <dan.carpenter(a)linaro.org>
SUNRPC: Fix integer overflow in decode_rc_list()
Dave Ertman <david.m.ertman(a)intel.com>
ice: fix VLAN replay after reset
Chuck Lever <chuck.lever(a)oracle.com>
NFSD: Mark filecache "down" if init fails
Val Packett <val(a)packett.cool>
drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066
Sascha Hauer <s.hauer(a)pengutronix.de>
drm/rockchip: vop: limit maximum resolution to hardware capabilities
Andrey Shumilin <shum.sdl(a)nppct.ru>
fbdev: sisfb: Fix strbuf array overflow
Qianqiang Liu <qianqiang.liu(a)163.com>
fbcon: Fix a NULL pointer dereference issue in fbcon_putcs
Alex Hung <alex.hung(a)amd.com>
drm/amd/display: Check null pointer before dereferencing se
Justin Tee <justin.tee(a)broadcom.com>
scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance
Justin Tee <justin.tee(a)broadcom.com>
scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd()
Zijun Hu <quic_zijuhu(a)quicinc.com>
driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute
Riyan Dhiman <riyandhiman14(a)gmail.com>
staging: vme_user: added bound check to geoid
Zhu Jun <zhujun2(a)cmss.chinamobile.com>
tools/iio: Add memory allocation failure check for trigger_name
Philip Chen <philipchen(a)chromium.org>
virtio_pmem: Check device status before requesting flush
Simon Horman <horms(a)kernel.org>
netfilter: nf_reject: Fix build warning when CONFIG_BRIDGE_NETFILTER=n
Wentao Guan <guanwentao(a)uniontech.com>
LoongArch: Fix memleak in pci_acpi_scan_root()
Ruffalo Lavoisier <ruffalolavoisier(a)gmail.com>
comedi: ni_routing: tools: Check when the file could not be opened
Shawn Shao <shawn.shao(a)jaguarmicro.com>
usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario
Xu Yang <xu.yang_2(a)nxp.com>
usb: chipidea: udc: enable suspend interrupt after usb reset
Peng Fan <peng.fan(a)nxp.com>
clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D
Peng Fan <peng.fan(a)nxp.com>
remoteproc: imx_rproc: Use imx specific hook for find_loaded_rsc_table
Yunke Cao <yunkec(a)chromium.org>
media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put()
Ying Sun <sunying(a)isrc.iscas.ac.cn>
riscv/kexec_file: Fix relocation type R_RISCV_ADD16 and R_RISCV_SUB16 unknown
Michael Guralnik <michaelgur(a)nvidia.com>
RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults
Kaixin Wang <kxwang23(a)m.fudan.edu.cn>
ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition
Jens Axboe <axboe(a)kernel.dk>
io_uring: check if we need to reschedule during overflow flush
Palmer Dabbelt <palmer(a)rivosinc.com>
RISC-V: Don't have MAX_PHYSMEM_BITS exceed phys_addr_t
Alex Williamson <alex.williamson(a)redhat.com>
PCI: Mark Creative Labs EMU20k2 INTx masking as broken
Hans de Goede <hdegoede(a)redhat.com>
i2c: i801: Use a different adapter-name for IDF adapters
Subramanian Ananthanarayanan <quic_skananth(a)quicinc.com>
PCI: Add ACS quirk for Qualcomm SA8775P
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
clk: bcm: bcm53573: fix OF node leak in init
Md Haris Iqbal <haris.iqbal(a)ionos.com>
RDMA/rtrs-srv: Avoid null pointer deref during path establishment
WangYuli <wangyuli(a)uniontech.com>
PCI: Add function 0 DMA alias quirk for Glenfly Arise chip
Saravanan Vajravel <saravanan.vajravel(a)broadcom.com>
RDMA/mad: Improve handling of timed out WRs of mad agent
Daniel Jordan <daniel.m.jordan(a)oracle.com>
ktest.pl: Avoid false positives with grub2 skip regex
Thomas Richter <tmricht(a)linux.ibm.com>
s390/cpum_sf: Remove WARN_ON_ONCE statements
Wojciech Gładysz <wojciech.gladysz(a)infogain.com>
ext4: nested locking for xattr inode
Jan Kara <jack(a)suse.cz>
ext4: don't set SB_RDONLY after filesystem errors
Yonghong Song <yonghong.song(a)linux.dev>
bpf, x64: Fix a jit convergence issue
Gerald Schaefer <gerald.schaefer(a)linux.ibm.com>
s390/mm: Add cond_resched() to cmm_alloc/free_pages()
Heiko Carstens <hca(a)linux.ibm.com>
s390/facility: Disable compile time optimization for decompressor code
Tao Chen <chen.dylane(a)gmail.com>
bpf: Check percpu map value size first
Mathias Krause <minipli(a)grsecurity.net>
Input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal
Michael S. Tsirkin <mst(a)redhat.com>
virtio_console: fix misc probe bugs
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Refactor enum_rstbl to suppress static checker
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Fix sparse warning in ni_fiemap
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Do not call file_modified if collapse range failed
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: Fix usage of __hci_cmd_sync_status
Benjamin Poirier <bpoirier(a)nvidia.com>
selftests: net: Remove executable bits from library scripts
Aditya Gupta <adityag(a)linux.ibm.com>
libsubcmd: Don't free the usage string
Yang Jihong <yangjihong1(a)huawei.com>
perf sched: Move curr_pid and cpu_last_switched initialization to perf_sched__{lat|map|replay}()
Yang Jihong <yangjihong1(a)huawei.com>
perf sched: Move curr_thread initialization to perf_sched__map()
Yang Jihong <yangjihong1(a)huawei.com>
perf sched: Fix memory leak in perf_sched__map()
Yang Jihong <yangjihong1(a)huawei.com>
perf sched: Move start_work_mutex and work_done_wait_mutex initialization to perf_sched__replay()
Ian Rogers <irogers(a)google.com>
perf sched: Avoid large stack allocations
Ian Rogers <irogers(a)google.com>
perf lock: Dynamically allocate lockhash_table
Masami Hiramatsu (Google) <mhiramat(a)kernel.org>
bootconfig: Fix the kerneldoc of _xbc_exit()
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing: Have saved_cmdlines arrays all in one allocation
Rob Clark <robdclark(a)chromium.org>
drm/crtc: fix uninitialized variable use even harder
Jean-Loïc Charroud <lagiraudiere+linux(a)free.fr>
ALSA: hda/realtek: cs35l41: Fix device ID / model name
Jean-Loïc Charroud <lagiraudiere+linux(a)free.fr>
ALSA: hda/realtek: cs35l41: Fix order and duplicates in quirks table
Steven Rostedt (Google) <rostedt(a)goodmis.org>
tracing: Remove precision vsnprintf() check from print event
Linus Walleij <linus.walleij(a)linaro.org>
net: ethernet: cortina: Drop TSO support
Gabriel Krisman Bertazi <krisman(a)suse.de>
unicode: Don't special case ignorable code points
Shiyang Ruan <ruansy.fnst(a)fujitsu.com>
fsdax: unshare: zero destination if srcmap is HOLE or UNWRITTEN
Shiyang Ruan <ruansy.fnst(a)fujitsu.com>
fsdax: dax_unshare_iter() should return a valid length
Namhyung Kim <namhyung(a)kernel.org>
perf report: Fix segfault when 'sym' sort key is not used
Haoran Zhang <wh1sper(a)zju.edu.cn>
vhost/scsi: null-ptr-dereference in vhost_scsi_get_req()
Gao Xiang <xiang(a)kernel.org>
erofs: fix incorrect symlink detection in fast symlink
Jingbo Xu <jefflexu(a)linux.alibaba.com>
erofs: set block size to the on-disk block size
Jingbo Xu <jefflexu(a)linux.alibaba.com>
erofs: avoid hardcoded blocksize for subpage block support
Gao Xiang <xiang(a)kernel.org>
erofs: get rid of z_erofs_do_map_blocks() forward declaration
Gao Xiang <xiang(a)kernel.org>
erofs: get rid of erofs_inode_datablocks()
Sumit Semwal <sumit.semwal(a)linaro.org>
Revert "arm64: dts: qcom: sm8250: switch UFS QMP PHY to new style of bindings"
Armin Wolf <W_Armin(a)gmx.de>
ACPI: battery: Fix possible crash when unregistering a battery hook
Armin Wolf <W_Armin(a)gmx.de>
ACPI: battery: Simplify battery hook locking
Satya Priya Kakitapalli <quic_skakitap(a)quicinc.com>
clk: qcom: gcc-sc8180x: Add GPLL9 support
Heiner Kallweit <hkallweit1(a)gmail.com>
r8169: add tally counter fields added with RTL8125
Colin Ian King <colin.i.king(a)gmail.com>
r8169: Fix spelling mistake: "tx_underun" -> "tx_underrun"
David Virag <virag.david003(a)gmail.com>
clk: samsung: exynos7885: Update CLKS_NR_FSYS after bindings fix
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
clk: samsung: exynos7885: do not define number of clocks in bindings
Satya Priya Kakitapalli <quic_skakitap(a)quicinc.com>
dt-bindings: clock: qcom: Add GPLL9 support on gcc-sc8180x
Manivannan Sadhasivam <mani(a)kernel.org>
dt-bindings: clock: qcom: Add missing UFS QREF clocks
Udit Kumar <u-kumar1(a)ti.com>
remoteproc: k3-r5: Delay notification of wakeup event
Beleswar Padhi <b-padhi(a)ti.com>
remoteproc: k3-r5: Acquire mailbox handle during probe routine
Umang Jain <umang.jain(a)ideasonboard.com>
media: imx335: Fix reset-gpio handling
Kieran Bingham <kieran.bingham(a)ideasonboard.com>
media: i2c: imx335: Enable regulator supplies
Johannes Weiner <hannes(a)cmpxchg.org>
sched: psi: fix bogus pressure spikes from aggregation race
Wang Yong <wang.yong12(a)zte.com.cn>
delayacct: improve the average delay precision of getdelay tool to microsecond
Yanteng Si <siyanteng(a)loongson.cn>
docs/zh_CN: Update the translation of delay-accounting to 6.1-rc8
Andrii Nakryiko <andrii(a)kernel.org>
lib/buildid: harden build ID parsing logic
Alexey Dobriyan <adobriyan(a)gmail.com>
build-id: require program headers to be right after ELF header
Mario Limonciello <mario.limonciello(a)amd.com>
drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT`
Yosry Ahmed <yosryahmed(a)google.com>
mm: z3fold: deprecate CONFIG_Z3FOLD
Oleg Nesterov <oleg(a)redhat.com>
uprobes: fix kernel info leak via "[uprobes]" vma
Jens Axboe <axboe(a)kernel.dk>
io_uring/net: harden multishot termination case for recv
Mark Rutland <mark.rutland(a)arm.com>
arm64: errata: Expand speculative SSBS workaround once more
Mark Rutland <mark.rutland(a)arm.com>
arm64: cputype: Add Neoverse-N3 definitions
Anshuman Khandual <anshuman.khandual(a)arm.com>
arm64: Add Cortex-715 CPU part definition
Jinjie Ruan <ruanjinjie(a)huawei.com>
spi: bcm63xx: Fix missing pm_runtime_disable()
David Virag <virag.david003(a)gmail.com>
dt-bindings: clock: exynos7885: Fix duplicated binding
Jinjie Ruan <ruanjinjie(a)huawei.com>
i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled
Andi Shyti <andi.shyti(a)kernel.org>
i2c: xiic: Use devm_clk_get_enabled()
Heiner Kallweit <hkallweit1(a)gmail.com>
i2c: core: Lock address during client device instantiation
Wolfram Sang <wsa+renesas(a)sang-engineering.com>
i2c: create debugfs entry per adapter
Masahiro Yamada <masahiroy(a)kernel.org>
kconfig: qconf: fix buffer overflow in debug links
Uwe Kleine-König <ukleinek(a)debian.org>
cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock
Tom Chung <chiahsuan.chung(a)amd.com>
drm/amd/display: Fix system hang while resume with TBT monitor
Tvrtko Ursulin <tvrtko.ursulin(a)igalia.com>
drm/sched: Add locking to drm_sched_entity_modify_sched
Jani Nikula <jani.nikula(a)intel.com>
drm/i915/gem: fix bitwise and logical AND mixup
Al Viro <viro(a)zeniv.linux.org.uk>
close_range(): fix the logics in descriptor table trimming
Wei Li <liwei391(a)huawei.com>
tracing/timerlat: Fix a race during cpuhp processing
Wei Li <liwei391(a)huawei.com>
tracing/hwlat: Fix a race during cpuhp processing
Patrick Donnelly <pdonnell(a)redhat.com>
ceph: fix cap ref leak via netfs init_request
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE
Emanuele Ghidoli <emanuele.ghidoli(a)toradex.com>
gpio: davinci: fix lazy disable
Filipe Manana <fdmanana(a)suse.com>
btrfs: wait for fixup workers before stopping cleaner kthread during umount
Filipe Manana <fdmanana(a)suse.com>
btrfs: send: fix invalid clone operation for file that got its size decreased
Qu Wenruo <wqu(a)suse.com>
btrfs: fix a NULL pointer dereference when failed to start a new trasacntion
Hans de Goede <hdegoede(a)redhat.com>
ACPI: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[]
Hans de Goede <hdegoede(a)redhat.com>
ACPI: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[]
Baokun Li <libaokun1(a)huawei.com>
cachefiles: fix dentry leak in cachefiles_open_file()
Nuno Sa <nuno.sa(a)analog.com>
Input: adp5589-keys - fix adp5589_gpio_get_value()
Nuno Sa <nuno.sa(a)analog.com>
Input: adp5589-keys - fix NULL pointer dereference
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
rtc: at91sam9: fix OF node leak in probe() error path
KhaiWenTan <khai.wen.tan(a)linux.intel.com>
net: stmmac: Fix zero-division error when disabling tc cbs
Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp>
tomoyo: fallback to realpath if symlink's pathname does not exist
Willem de Bruijn <willemb(a)google.com>
gso: fix udp gso fraglist segmentation after pull from frag_list
Barnabás Czémán <barnabas.czeman(a)mainlining.org>
iio: magnetometer: ak8975: Fix reading for ak099xx sensors
wangrong <wangrong(a)uniontech.com>
smb: client: use actual path when queryfs
Ajit Pandey <quic_ajipan(a)quicinc.com>
clk: qcom: clk-alpha-pll: Fix CAL_L_VAL override for LUCID EVO PLL
Satya Priya Kakitapalli <quic_skakitap(a)quicinc.com>
clk: qcom: gcc-sc8180x: Fix the sdcc2 and sdcc4 clocks freq table
Bryan O'Donoghue <bryan.odonoghue(a)linaro.org>
media: qcom: camss: Fix ordering of pm_runtime_enable
Manivannan Sadhasivam <mani(a)kernel.org>
clk: qcom: gcc-sm8250: Do not turn off PCIe GDSCs during gdsc_disable()
Zheng Wang <zyytlz.wz(a)163.com>
media: venus: fix use after free bug in venus_remove due to race condition
Satya Priya Kakitapalli <quic_skakitap(a)quicinc.com>
clk: qcom: gcc-sm8150: De-register gcc_cpuss_ahb_clk_src
Mike Tipton <quic_mdtipton(a)quicinc.com>
clk: qcom: clk-rpmh: Fix overflow in BCM vote
Hans Verkuil <hverkuil-cisco(a)xs4all.nl>
media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags
Manivannan Sadhasivam <mani(a)kernel.org>
clk: qcom: gcc-sm8450: Do not turn off PCIe GDSCs during gdsc_disable()
Laurent Pinchart <laurent.pinchart+renesas(a)ideasonboard.com>
media: sun4i_csi: Implement link validate for sun4i_csi subdev
Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org>
clk: qcom: dispcc-sm8250: use CLK_SET_RATE_PARENT for branch clocks
Jan Kiszka <jan.kiszka(a)siemens.com>
remoteproc: k3-r5: Fix error handling when power-up failed
Sebastian Reichel <sebastian.reichel(a)collabora.com>
clk: rockchip: fix error for unknown clocks
Chun-Yi Lee <joeyli.kernel(a)gmail.com>
aoe: fix the potential use-after-free problem in more places
Chuck Lever <chuck.lever(a)oracle.com>
NFSD: Fix NFSv4's PUTPUBFH operation
Li Lingfeng <lilingfeng3(a)huawei.com>
nfsd: map the EBADMSG to nfserr_io to avoid warning
NeilBrown <neilb(a)suse.de>
nfsd: fix delegation_blocked() to block correctly for at least 30 seconds
Matt Fleming <matt(a)readmodwrite.com>
perf hist: Update hist symbol when updating maps
Yuezhang Mo <Yuezhang.Mo(a)sony.com>
exfat: fix memory leak in exfat_load_bitmap()
Jisheng Zhang <jszhang(a)kernel.org>
riscv: define ILLEGAL_POINTER_VALUE for 64bit
Lizhi Xu <lizhi.xu(a)windriver.com>
ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate
Julian Sun <sunjunchao2870(a)gmail.com>
ocfs2: fix null-ptr-deref when journal load failed.
Lizhi Xu <lizhi.xu(a)windriver.com>
ocfs2: remove unreasonable unlock in ocfs2_read_blocks
Joseph Qi <joseph.qi(a)linux.alibaba.com>
ocfs2: cancel dqi_sync_work before freeing oinfo
Gautham Ananthakrishna <gautham.ananthakrishna(a)oracle.com>
ocfs2: reserve space for inline xattr before attaching reflink tree
Joseph Qi <joseph.qi(a)linux.alibaba.com>
ocfs2: fix uninit-value in ocfs2_get_block()
Heming Zhao <heming.zhao(a)suse.com>
ocfs2: fix the la space leak when unmounting an ocfs2 volume
Danilo Krummrich <dakr(a)kernel.org>
mm: krealloc: consider spare memory for __GFP_ZERO
Kemeng Shi <shikemeng(a)huaweicloud.com>
jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit
Baokun Li <libaokun1(a)huawei.com>
jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error
Huang Ying <ying.huang(a)intel.com>
resource: fix region_intersects() vs add_memory_driver_managed()
Ma Ke <make24(a)iscas.ac.cn>
drm: omapdrm: Add missing check for alloc_ordered_workqueue
Andrew Jones <ajones(a)ventanamicro.com>
of/irq: Support #msi-cells=<0> in of_msi_get_domain
Val Packett <val(a)packett.cool>
drm/rockchip: vop: clear DMA stop bit on RK3066
Helge Deller <deller(a)gmx.de>
parisc: Fix stack start for ADDR_NO_RANDOMIZE personality
Helge Deller <deller(a)kernel.org>
parisc: Fix 64-bit userspace syscall path
Luis Henriques (SUSE) <luis.henriques(a)linux.dev>
ext4: mark fc as ineligible using an handle in ext4_xattr_set()
Luis Henriques (SUSE) <luis.henriques(a)linux.dev>
ext4: use handle to mark fc as ineligible in __track_dentry_update()
Luis Henriques (SUSE) <luis.henriques(a)linux.dev>
ext4: fix fast commit inode enqueueing during a full journal commit
Luis Henriques (SUSE) <luis.henriques(a)linux.dev>
ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list()
Luis Henriques (SUSE) <luis.henriques(a)linux.dev>
ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit()
Baokun Li <libaokun1(a)huawei.com>
ext4: update orig_path in ext4_find_extent()
Baokun Li <libaokun1(a)huawei.com>
ext4: fix double brelse() the buffer of the extents path
Baokun Li <libaokun1(a)huawei.com>
ext4: aovid use-after-free in ext4_ext_insert_extent()
Baokun Li <libaokun1(a)huawei.com>
ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free
Luis Henriques (SUSE) <luis.henriques(a)linux.dev>
ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space()
Zhihao Cheng <chengzhihao1(a)huawei.com>
ext4: dax: fix overflowing extents beyond inode size when partially writing
Luis Henriques (SUSE) <luis.henriques(a)linux.dev>
ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible()
Baokun Li <libaokun1(a)huawei.com>
ext4: propagate errors from ext4_find_extent() in ext4_insert_range()
Baokun Li <libaokun1(a)huawei.com>
ext4: fix slab-use-after-free in ext4_split_extent_at()
yao.ly <yao.ly(a)linux.alibaba.com>
ext4: correct encrypted dentry name hash when not casefolded
Edward Adam Davis <eadavis(a)qq.com>
ext4: no need to continue when the number of entries is 1
Abhishek Tamboli <abhishektamboli9(a)gmail.com>
ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200
Ai Chao <aichao(a)kylinos.cn>
ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9
Hans P. Moller <hmoller(a)uc.cl>
ALSA: line6: add hw monitor volume control to POD HD500X
Jan Lalinsky <lalinsky(a)c4.cz>
ALSA: usb-audio: Add native DSD support for Luxman D-08u
Lianqin Hu <hulianqin(a)vivo.com>
ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET
Jaroslav Kysela <perex(a)perex.cz>
ALSA: core: add isascii() check to card ID generator
Thomas Zimmermann <tzimmermann(a)suse.de>
drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS
Helge Deller <deller(a)gmx.de>
parisc: Fix itlb miss handler for 64-bit programs
Luo Gengkun <luogengkun(a)huaweicloud.com>
perf/core: Fix small negative period being ignored
Hans de Goede <hdegoede(a)redhat.com>
power: supply: hwmon: Fix missing temp1_max_alarm attribute
Jinjie Ruan <ruanjinjie(a)huawei.com>
spi: bcm63xx: Fix module autoloading
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp()
Alexander Shiyan <eagle.alexander923(a)gmail.com>
media: i2c: ar0521: Use cansleep version of gpiod_set_value()
Robert Hancock <robert.hancock(a)calian.com>
i2c: xiic: Wait for TX empty to avoid missed TX NAKs
Jinjie Ruan <ruanjinjie(a)huawei.com>
i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq()
Marek Vasut <marex(a)denx.de>
i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume
Zach Wade <zachwade.k(a)gmail.com>
platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug
Takashi Iwai <tiwai(a)suse.de>
Revert "ALSA: hda: Conditionally use snooping for AMD HDMI"
Heiko Carstens <hca(a)linux.ibm.com>
selftests: vDSO: fix vdso_config for s390
Jens Remus <jremus(a)linux.ibm.com>
selftests: vDSO: fix ELF hash table entry size for s390x
Christophe Leroy <christophe.leroy(a)csgroup.eu>
powerpc/vdso: Fix VDSO data access when running in a non-root time namespace
David Hildenbrand <david(a)redhat.com>
selftests/mm: fix charge_reserved_hugetlb.sh test
Christophe Leroy <christophe.leroy(a)csgroup.eu>
selftests: vDSO: fix vDSO symbols lookup for powerpc64
Christophe Leroy <christophe.leroy(a)csgroup.eu>
selftests: vDSO: fix vdso_config for powerpc
Christophe Leroy <christophe.leroy(a)csgroup.eu>
selftests: vDSO: fix vDSO name for powerpc
Yifei Liu <yifei.l.liu(a)oracle.com>
selftests: breakpoints: use remaining time to check if suspend succeed
Ben Dooks <ben.dooks(a)codethink.co.uk>
spi: s3c64xx: fix timeout counters in flush_fifo
Jinjie Ruan <ruanjinjie(a)huawei.com>
spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled
Thomas Weißschuh <linux(a)weissschuh.net>
blk-integrity: register sysfs attributes on struct device
Thomas Weißschuh <linux(a)weissschuh.net>
blk-integrity: convert to struct device_attribute
Thomas Weißschuh <linux(a)weissschuh.net>
blk-integrity: use sysfs_emit
Christoph Hellwig <hch(a)lst.de>
iomap: handle a post-direct I/O invalidate race in iomap_write_delalloc_release
Artem Sadovnikov <ancowi69(a)gmail.com>
ext4: fix i_data_sem unlock order in ext4_ind_migrate()
Baokun Li <libaokun1(a)huawei.com>
ext4: avoid use-after-free in ext4_ext_show_leaf()
Thadeu Lima de Souza Cascardo <cascardo(a)igalia.com>
ext4: ext4_search_dir should return a proper error
Haren Myneni <haren(a)linux.ibm.com>
powerpc/pseries: Use correct data types from pseries_hp_errorlog struct
Geert Uytterhoeven <geert+renesas(a)glider.be>
of/irq: Refer to actual buffer size in of_irq_parse_one()
Tim Huang <tim.huang(a)amd.com>
drm/amd/pm: ensure the fw_info is not null before using it
Geert Uytterhoeven <geert+renesas(a)glider.be>
drm/radeon/r100: Handle unknown family in r100_cp_init_microcode()
Finn Thain <fthain(a)linux-m68k.org>
scsi: NCR5380: Initialize buffer for MSG IN and STATUS transfers
Tim Huang <tim.huang(a)amd.com>
drm/amdgpu: fix unchecked return value warning for amdgpu_gfx
Justin Tee <justin.tee(a)broadcom.com>
scsi: lpfc: Update PRLO handling in direct attached topology
Kees Cook <kees(a)kernel.org>
scsi: aacraid: Rearrange order of struct aac_srb_unit
Andrii Nakryiko <andrii(a)kernel.org>
perf,x86: avoid missing caller address in stack traces captured in uprobe
Matthew Brost <matthew.brost(a)intel.com>
drm/printer: Allow NULL data in devcoredump printer
Alex Hung <alex.hung(a)amd.com>
drm/amd/display: Initialize get_bytes_per_element's default to 1
Srinivasan Shanmugam <srinivasan.shanmugam(a)amd.com>
drm/amd/display: Fix index out of bounds in DCN30 color transformation
Srinivasan Shanmugam <srinivasan.shanmugam(a)amd.com>
drm/amd/display: Fix index out of bounds in degamma hardware format translation
Srinivasan Shanmugam <srinivasan.shanmugam(a)amd.com>
drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation
Alex Hung <alex.hung(a)amd.com>
drm/amd/display: Check stream before comparing them
Yannick Fertre <yannick.fertre(a)foss.st.com>
drm/stm: ltdc: reset plane transparency after plane disable
Ckath <ckath(a)yandex.ru>
platform/x86: touchscreen_dmi: add nanote-next quirk
Vishnu Sankar <vishnuocv(a)gmail.com>
HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio
Jesse Zhang <jesse.zhang(a)amd.com>
drm/amdkfd: Fix resource leak in criu restore queue
Peng Liu <liupeng01(a)kylinos.cn>
drm/amdgpu: enable gfxoff quirk on HP 705G4
Peng Liu <liupeng01(a)kylinos.cn>
drm/amdgpu: add raven1 gfxoff quirk
Zhao Mengmeng <zhaomengmeng(a)kylinos.cn>
jfs: Fix uninit-value access of new_ea in ea_buffer
Mahesh Rajashekhara <mahesh.rajashekhara(a)microchip.com>
scsi: smartpqi: correct stream detection
Edward Adam Davis <eadavis(a)qq.com>
jfs: check if leafidx greater than num leaves per dmap tree
Edward Adam Davis <eadavis(a)qq.com>
jfs: Fix uaf in dbFreeBits
Remington Brasga <rbrasga(a)uci.edu>
jfs: UBSAN: shift-out-of-bounds in dbFindBits
Srinivasan Shanmugam <srinivasan.shanmugam(a)amd.com>
drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2)
Alex Hung <alex.hung(a)amd.com>
drm/amd/display: Check null pointers before using dc->clk_mgr
Srinivasan Shanmugam <srinivasan.shanmugam(a)amd.com>
drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream'
Damien Le Moal <dlemoal(a)kernel.org>
ata: sata_sil: Rename sil_blacklist to sil_quirks
Damien Le Moal <dlemoal(a)kernel.org>
ata: pata_serverworks: Do not use the term blacklist
Srinivasan Shanmugam <srinivasan.shanmugam(a)amd.com>
drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream
Pierre-Eric Pelloux-Prayer <pierre-eric.pelloux-prayer(a)amd.com>
drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit
Katya Orlova <e.orlova(a)ispras.ru>
drm/stm: Avoid use-after-free issues with crtc and plane
Sanjay K Kumar <sanjay.k.kumar(a)intel.com>
iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count
Lu Baolu <baolu.lu(a)linux.intel.com>
iommu/vt-d: Always reserve a domain ID for identity setup
Andrew Davis <afd(a)ti.com>
power: reset: brcmstb: Do not go into infinite loop if reset fails
Marc Gonzalez <mgonzalez(a)freebox.fr>
iommu/arm-smmu-qcom: hide last LPASS SMMU context bank from linux
Paul E. McKenney <paulmck(a)kernel.org>
rcuscale: Provide clear error when async specified without primitives
Kaixin Wang <kxwang23(a)m.fudan.edu.cn>
fbdev: pxafb: Fix possible use after free in pxafb_task()
Kees Cook <kees(a)kernel.org>
x86/syscall: Avoid memcpy() for ia32 syscall_get_arguments()
Thomas Weißschuh <linux(a)weissschuh.net>
selftests/nolibc: avoid passing NULL to printf("%s")
Takashi Iwai <tiwai(a)suse.de>
ALSA: hdsp: Break infinite MIDI input flush loop
Takashi Iwai <tiwai(a)suse.de>
ALSA: asihpi: Fix potential OOB array access
Tao Liu <ltao(a)redhat.com>
x86/kexec: Add EFI config table identity mapping for kexec kernel
Ahmed S. Darwish <darwi(a)linutronix.de>
tools/x86/kcpuid: Protect against faulty "max subleaf" values
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
ASoC: codecs: wsa883x: Handle reading version failure
Joshua Pius <joshuapius(a)chromium.org>
ALSA: usb-audio: Add logitech Audio profile quirk
Takashi Iwai <tiwai(a)suse.de>
ALSA: usb-audio: Replace complex quirk lines with macros
Takashi Iwai <tiwai(a)suse.de>
ALSA: usb-audio: Define macros for quirk table entries
Thomas Gleixner <tglx(a)linutronix.de>
x86/ioapic: Handle allocation failures gracefully
Takashi Iwai <tiwai(a)suse.de>
ALSA: usb-audio: Add input value sanity checks for standard types
Jinjie Ruan <ruanjinjie(a)huawei.com>
nfp: Use IRQF_NO_AUTOEN flag in request_irq()
Gustavo A. R. Silva <gustavoars(a)kernel.org>
wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()
Felix Fietkau <nbd(a)nbd.name>
wifi: mt76: mt7915: hold dev->mt76.mutex while disabling tx worker
Adrian Ratiu <adrian.ratiu(a)collabora.com>
proc: add config & param to block forcing mem writes
Aleksandrs Vinarskis <alex.vinarskis(a)gmail.com>
ACPICA: iasl: handle empty connection_node
Johannes Berg <johannes.berg(a)intel.com>
wifi: mac80211: fix RCU list iterations
Jason Xing <kernelxing(a)tencent.com>
tcp: avoid reusing FIN_WAIT2 when trying to find port in connect() process
Herbert Xu <herbert(a)gondor.apana.org.au>
crypto: simd - Do not call crypto_alloc_tfm during registration
Simon Horman <horms(a)kernel.org>
net: atlantic: Avoid warning about potential string truncation
Ido Schimmel <idosch(a)nvidia.com>
ipv4: Mask upper DSCP bits and ECN bits in NETLINK_FIB_LOOKUP family
Ping-Ke Shih <pkshih(a)realtek.com>
wifi: rtw89: correct base HT rate mask for firmware
Kuniyuki Iwashima <kuniyu(a)amazon.com>
ipv4: Check !in_dev earlier for ioctl(SIOCSIFADDR).
Simon Horman <horms(a)kernel.org>
bnxt_en: Extend maximum length of version string by 1 byte
Simon Horman <horms(a)kernel.org>
net: mvpp2: Increase size of queue_name buffer
Simon Horman <horms(a)kernel.org>
tipc: guard against string buffer overrun
Pei Xiao <xiaopei01(a)kylinos.cn>
ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package()
Rafael J. Wysocki <rafael.j.wysocki(a)intel.com>
ACPI: EC: Do not release locks during operation region accesses
Zong-Zhe Yang <kevin_yang(a)realtek.com>
wifi: rtw88: select WANT_DEV_COREDUMP
Karthikeyan Periyasamy <quic_periyasa(a)quicinc.com>
wifi: ath11k: fix array out-of-bound access in SoC stats
Keith Busch <kbusch(a)kernel.org>
nvme-pci: qdepth 1 quirk
Konstantin Ovsepian <ovs(a)ovs.to>
blk_iocost: fix more out of bound shifts
Hans de Goede <hdegoede(a)redhat.com>
ACPI: video: Add force_vendor quirk for Panasonic Toughbook CF-18
Hilda Wu <hildawu(a)realtek.com>
Bluetooth: btusb: Add Realtek RTL8852C support ID 0x0489:0xe122
Dmitry Antipov <dmantipov(a)yandex.ru>
net: sched: consistently use rcu_replace_pointer() in taprio_change()
Felix Fietkau <nbd(a)nbd.name>
wifi: mt76: mt7915: disable tx worker during tx BA session enable/disable
Armin Wolf <W_Armin(a)gmx.de>
ACPICA: Fix memory leak if acpi_ps_get_next_field() fails
Armin Wolf <W_Armin(a)gmx.de>
ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails
Seiji Nishikawa <snishika(a)redhat.com>
ACPI: PAD: fix crash in exit_round_robin()
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
net: hisilicon: hns_mdio: fix OF node leak in probe()
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
net: hisilicon: hns_dsaf_mac: fix OF node leak in hns_mac_get_info()
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
net: hisilicon: hip04: fix OF node leak in probe()
Jeongjun Park <aha310510(a)gmail.com>
net/xen-netback: prevent UAF in xenvif_flush_hash()
Issam Hamdi <ih(a)simonwunderlich.de>
wifi: cfg80211: Set correct chandef when starting CAC
Ilan Peer <ilan.peer(a)intel.com>
wifi: iwlwifi: mvm: Fix a race in scan abort flow
Aleksandr Mishin <amishin(a)t-argos.ru>
ice: Adjust over allocation of memory in ice_sched_add_root_node() and ice_sched_add_node()
Toke Høiland-Jørgensen <toke(a)redhat.com>
wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit
Dmitry Kandybka <d.kandybka(a)gmail.com>
wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats()
Jann Horn <jannh(a)google.com>
f2fs: Require FMODE_WRITE for atomic write ioctls
Takashi Iwai <tiwai(a)suse.de>
ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin
Hui Wang <hui.wang(a)canonical.com>
ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m
Takashi Iwai <tiwai(a)suse.de>
ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs
Oder Chiou <oder_chiou(a)realtek.com>
ALSA: hda/realtek: Fix the push button function for the ALC257
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
ALSA: mixer_oss: Remove some incorrect kfree_const() usages
Andrei Simion <andrei.simion(a)microchip.com>
ASoC: atmel: mchp-pdmc: Skip ALSA restoration if substream runtime is uninitialized
Benjamin Gaignard <benjamin.gaignard(a)collabora.com>
media: usbtv: Remove useless locks in usbtv_video_free()
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: hci_sock: Fix not validating setsockopt user input
Christoph Hellwig <hch(a)lst.de>
loop: don't set QUEUE_FLAG_NOMERGES
Robert Hancock <robert.hancock(a)calian.com>
i2c: xiic: Try re-initialization on bus busy timeout
Marc Ferland <marc.ferland(a)sonatest.com>
i2c: xiic: improve error message when transfer fails to start
Xin Long <lucien.xin(a)gmail.com>
sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start
Darrick J. Wong <djwong(a)kernel.org>
iomap: constrain the file range passed to iomap_file_unshare
Shiyang Ruan <ruansy.fnst(a)fujitsu.com>
fsdax,xfs: port unshare to fsdax
Eric Dumazet <edumazet(a)google.com>
ppp: do not assume bh is held in ppp_channel_bridge_input()
Anton Danilov <littlesmilingcloud(a)gmail.com>
ipv4: ip_gre: Fix drops of small packets in ipgre_xmit
Shenwei Wang <shenwei.wang(a)nxp.com>
net: stmmac: dwmac4: extend timeout for VLAN Tag register busy bit check
Eric Dumazet <edumazet(a)google.com>
net: add more sanity checks to qdisc_pkt_len_init()
Eric Dumazet <edumazet(a)google.com>
net: avoid potential underflow in qdisc_pkt_len_init() with UFO
Aleksander Jan Bajkowski <olek2(a)wp.pl>
net: ethernet: lantiq_etop: fix memory disclosure
Jinjie Ruan <ruanjinjie(a)huawei.com>
Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq()
Eric Dumazet <edumazet(a)google.com>
netfilter: nf_tables: prevent nf_skb_duplicated corruption
Phil Sutter <phil(a)nwl.cc>
selftests: netfilter: Fix nft_audit.sh for newer nft binaries
Jinjie Ruan <ruanjinjie(a)huawei.com>
net: wwan: qcom_bam_dmux: Fix missing pm_runtime_disable()
Jinjie Ruan <ruanjinjie(a)huawei.com>
net: ieee802154: mcr20a: Use IRQF_NO_AUTOEN flag in request_irq()
Phil Sutter <phil(a)nwl.cc>
netfilter: uapi: NFTA_FLOWTABLE_HOOK is NLA_NESTED
Elena Salomatkina <esalomatkina(a)ispras.ru>
net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()
Mohamed Khalfella <mkhalfella(a)purestorage.com>
net/mlx5: Added cond_resched() to crdump collection
Gerd Bayer <gbayer(a)linux.ibm.com>
net/mlx5: Fix error path in multi-packet WQE transmit
Aakash Menon <aakash.r.menon(a)gmail.com>
net: sparx5: Fix invalid timestamps
Jinjie Ruan <ruanjinjie(a)huawei.com>
ieee802154: Fix build error
Xiubo Li <xiubli(a)redhat.com>
ceph: remove the incorrect Fw reference check when dirtying pages
Stefan Wahren <wahrenst(a)gmx.net>
mailbox: bcm2835: Fix timeout during suspend mode
Liao Chen <liaochen4(a)huawei.com>
mailbox: rockchip: fix a typo in module autoloading
Daniel Wagner <dwagner(a)suse.de>
scsi: pm8001: Do not overwrite PCI queue mapping
Peter Zijlstra <peterz(a)infradead.org>
jump_label: Fix static_key_slow_dec() yet again
Thomas Gleixner <tglx(a)linutronix.de>
jump_label: Simplify and clarify static_key_fast_inc_cpus_locked()
Thomas Gleixner <tglx(a)linutronix.de>
static_call: Replace pointless WARN_ON() in static_call_module_notify()
Thomas Gleixner <tglx(a)linutronix.de>
static_call: Handle module init failure correctly in static_call_del_module()
Lorenzo Bianconi <lorenzo(a)kernel.org>
wifi: mt76: do not run mt76_unregister_device() on unregistered hw
Alexey Gladkov (Intel) <legion(a)kernel.org>
x86/tdx: Fix "in-kernel MMIO" check
Mika Westerberg <mika.westerberg(a)linux.intel.com>
PCI/PM: Mark devices disconnected if upstream PCIe link is down on resume
Nathan Chancellor <nathan(a)kernel.org>
powerpc: Allow CONFIG_PPC64_BIG_ENDIAN_ELF_ABI_V2 with ld.lld 15+
André Apitzsch <git(a)apitzsch.eu>
iio: magnetometer: ak8975: Fix 'Unexpected device' error
Robin Murphy <robin.murphy(a)arm.com>
perf/arm-cmn: Fail DTC counter allocation correctly
Harshit Mogalapalli <harshit.m.mogalapalli(a)oracle.com>
usb: yurex: Fix inconsistent locking bug in yurex_read()
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
i2c: isch: Add missed 'else'
Tommy Huang <tommy_huang(a)aspeedtech.com>
i2c: aspeed: Update the stop sw state when the bus recovery occurs
Liam R. Howlett <Liam.Howlett(a)oracle.com>
mm/damon/vaddr: protect vma traversal in __damon_va_thre_regions() with rcu read lock
Dmitry Vyukov <dvyukov(a)google.com>
module: Fix KCOV-ignored file name
David Gow <davidgow(a)google.com>
mm: only enforce minimum stack gap size if it's sensible
Zhiguo Niu <zhiguo.niu(a)unisoc.com>
lockdep: fix deadlock issue between lockdep and rcu
Song Liu <song(a)kernel.org>
bpf: lsm: Set bpf_lsm_blob_sizes.lbs_task to 0
Eric Dumazet <edumazet(a)google.com>
icmp: change the order of rate limits
Jamie Bainbridge <jamie.bainbridge(a)gmail.com>
icmp: Add counters for rate limits
Kairui Song <kasong(a)tencent.com>
mm/filemap: optimize filemap folio adding
Kairui Song <kasong(a)tencent.com>
lib/xarray: introduce a new helper xas_get_order
Kairui Song <kasong(a)tencent.com>
mm/filemap: return early if failed to allocate memory for split
Dmitry Vyukov <dvyukov(a)google.com>
x86/entry: Remove unwanted instrumentation in common_interrupt()
Xin Li <xin3.li(a)intel.com>
x86/idtentry: Incorporate definitions/declarations of the FRED entries
Ma Ke <make24(a)iscas.ac.cn>
pps: add an error check in parport_attach
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
pps: remove usage of the deprecated ida_simple_xx() API
Pawel Laszczak <pawell(a)cadence.com>
usb: xhci: fix loss of data on Cadence xHC
Daehwan Jung <dh10.jung(a)samsung.com>
xhci: Add a quirk for writing ERST in high-low order
Lukas Wunner <lukas(a)wunner.de>
xhci: Preserve RsvdP bits in ERSTBA register correctly
Mathias Nyman <mathias.nyman(a)linux.intel.com>
xhci: Refactor interrupter code for initial multi interrupter support.
Mathias Nyman <mathias.nyman(a)linux.intel.com>
xhci: remove xhci_test_trb_in_td_math early development check
Mathias Nyman <mathias.nyman(a)linux.intel.com>
xhci: fix event ring segment table related masks and variables in header
Oliver Neukum <oneukum(a)suse.com>
USB: misc: yurex: fix race between read and write
Lee Jones <lee(a)kernel.org>
usb: yurex: Replace snprintf() with the safer scnprintf() variant
Michael Ellerman <mpe(a)ellerman.id.au>
powerpc/atomic: Use YZ constraints for DS-form instructions
Nicholas Piggin <npiggin(a)gmail.com>
powerpc/64: Add support to build with prefixed instructions
Nicholas Piggin <npiggin(a)gmail.com>
powerpc/64: Option to build big-endian with ELFv2 ABI
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
soc: versatile: realview: fix soc_dev leak during device remove
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
soc: versatile: realview: fix memory leak during device remove
VanGiang Nguyen <vangiang.nguyen(a)rohde-schwarz.com>
padata: use integer wrap around to prevent deadlock on seq_nr overflow
Qiuxu Zhuo <qiuxu.zhuo(a)intel.com>
EDAC/igen6: Fix conversion of system address to physical memory address
Li Lingfeng <lilingfeng3(a)huawei.com>
nfs: fix memory leak in error path of nfs4_do_reclaim
Mickaël Salaün <mic(a)digikod.net>
fs: Fix file_set_fowner LSM hook inconsistencies
Julian Sun <sunjunchao2870(a)gmail.com>
vfs: fix race between evice_inodes() and find_inode()&iput()
Dragan Simic <dsimic(a)manjaro.org>
arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity
Dragan Simic <dsimic(a)manjaro.org>
arm64: dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency
Gaosheng Cui <cuigaosheng1(a)huawei.com>
hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume
Gaosheng Cui <cuigaosheng1(a)huawei.com>
hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init
Guoqing Jiang <guoqing.jiang(a)canonical.com>
hwrng: mtk - Use devm_pm_runtime_enable
Chao Yu <chao(a)kernel.org>
f2fs: fix to check atomic_file in f2fs ioctl interfaces
Nikita Zhandarovich <n.zhandarovich(a)fintech.ru>
f2fs: avoid potential int overflow in sanity_check_area_boundary()
Nikita Zhandarovich <n.zhandarovich(a)fintech.ru>
f2fs: prevent possible int overflow in dir_block_index()
Nikita Zhandarovich <n.zhandarovich(a)fintech.ru>
f2fs: fix several potential integer overflows in file offsets
Zhen Lei <thunder.leizhen(a)huawei.com>
debugobjects: Fix conditions in fill_pool()
Ma Ke <make24(a)iscas.ac.cn>
wifi: mt76: mt7615: check devm_kasprintf() returned value
Bitterblue Smith <rtl8821cerfe2(a)gmail.com>
wifi: rtw88: 8822c: Fix reported RX band width
Adrian Hunter <adrian.hunter(a)intel.com>
perf/x86/intel/pt: Fix sampling synchronization
Ard Biesheuvel <ardb(a)kernel.org>
efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption
Werner Sembach <wse(a)tuxedocomputers.com>
ACPI: resource: Add another DMI match for the TongFang GMxXGxx
Thomas Weißschuh <linux(a)weissschuh.net>
ACPI: sysfs: validate return type of _STR method
Mikhail Lobanov <m.lobanov(a)rosalinux.ru>
drbd: Add NULL check for net_conf to prevent dereference in state validation
Qiu-ji Chen <chenqiuji666(a)gmail.com>
drbd: Fix atomicity violation in drbd_uuid_set_bm()
Pavan Kumar Paluri <papaluri(a)amd.com>
crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure
Mathias Nyman <mathias.nyman(a)linux.intel.com>
xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them.
Florian Fainelli <florian.fainelli(a)broadcom.com>
tty: rp2: Fix reset with non forgiving PCIe host bridges
Jann Horn <jannh(a)google.com>
firmware_loader: Block path traversal
Fabio Porcedda <fabio.porcedda(a)gmail.com>
bus: mhi: host: pci_generic: Fix the name for the Telit FE990A
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
bus: integrator-lm: fix OF node leak in probe()
Tomas Marek <tomas.marek(a)elrest.cz>
usb: dwc2: drd: fix clock gating on USB role switch
Pawel Laszczak <pawell(a)cadence.com>
usb: cdnsp: Fix incorrect usb_request status
Oliver Neukum <oneukum(a)suse.com>
USB: class: CDC-ACM: fix race between get_serial and set_serial
Oliver Neukum <oneukum(a)suse.com>
USB: misc: cypress_cy7c63: check for short transfer
Oliver Neukum <oneukum(a)suse.com>
USB: appledisplay: close race between probe and completion handler
Chen-Yu Tsai <wenst(a)chromium.org>
arm64: dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
Oliver Neukum <oneukum(a)suse.com>
usbnet: fix cyclical race on disconnect with work queue
Finn Thain <fthain(a)linux-m68k.org>
scsi: mac_scsi: Disallow bus errors during PDMA send
Finn Thain <fthain(a)linux-m68k.org>
scsi: mac_scsi: Refactor polling loop
Finn Thain <fthain(a)linux-m68k.org>
scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages
Martin Wilck <mwilck(a)suse.com>
scsi: sd: Fix off-by-one error in sd_read_block_characteristics()
Namjae Jeon <linkinjeon(a)kernel.org>
ksmbd: handle caseless file creation
Namjae Jeon <linkinjeon(a)kernel.org>
ksmbd: allow write with FILE_APPEND_DATA
Hobin Woo <hobin.woo(a)samsung.com>
ksmbd: make __dir_empty() compatible with POSIX
Chuck Lever <chuck.lever(a)oracle.com>
fs: Create a generic is_dot_dotdot() utility
Roman Smirnov <r.smirnov(a)omp.ru>
KEYS: prevent NULL pointer dereference in find_asymmetric_key()
Mario Limonciello <mario.limonciello(a)amd.com>
drm/amd/display: Validate backlight caps are sane
Robin Chen <robin.chen(a)amd.com>
drm/amd/display: Round calculated vtotal
Fangzhi Zuo <Jerry.Zuo(a)amd.com>
drm/amd/display: Skip Recompute DSC Params if no Stream on Link
Sean Christopherson <seanjc(a)google.com>
KVM: x86: Move x2APIC ICR helper above kvm_apic_write_nodecode()
Sean Christopherson <seanjc(a)google.com>
KVM: x86: Enforce x2APIC's must-be-zero reserved ICR bits
Werner Sembach <wse(a)tuxedocomputers.com>
Input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line
Werner Sembach <wse(a)tuxedocomputers.com>
Input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table
Werner Sembach <wse(a)tuxedocomputers.com>
Input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table
Nuno Sa <nuno.sa(a)analog.com>
Input: adp5588-keys - fix check on return code
Roman Smirnov <r.smirnov(a)omp.ru>
Revert "media: tuners: fix error return code of hybrid_tuner_request_state()"
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
soc: versatile: integrator: fix OF node leak in probe() error path
Ma Ke <make24(a)iscas.ac.cn>
ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error
Sean Anderson <sean.anderson(a)linux.dev>
PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler
Frank Li <Frank.Li(a)nxp.com>
PCI: imx6: Fix missing call to phy_power_off() in error handling
Laurent Pinchart <laurent.pinchart(a)ideasonboard.com>
Remove *.orig pattern from .gitignore
Felix Moessbauer <felix.moessbauer(a)siemens.com>
io_uring/sqpoll: do not put cpumask on stack
Jens Axboe <axboe(a)kernel.dk>
io_uring/sqpoll: retain test for whether the CPU is valid
Zack Rusin <zack.rusin(a)broadcom.com>
drm/vmwgfx: Prevent unmapping active read buffers
Scott Mayhew <smayhew(a)redhat.com>
selinux,smack: don't bypass permissions check in inode_setsecctx hook
Ye Bin <yebin10(a)huawei.com>
vfio/pci: fix potential memory leak in vfio_intx_enable()
Felix Moessbauer <felix.moessbauer(a)siemens.com>
io_uring/io-wq: inherit cpuset of cgroup in io worker
Felix Moessbauer <felix.moessbauer(a)siemens.com>
io_uring/io-wq: do not allow pinning outside of cpuset
Fangzhi Zuo <Jerry.Zuo(a)amd.com>
drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination
Felix Moessbauer <felix.moessbauer(a)siemens.com>
io_uring/sqpoll: do not allow pinning outside of cpuset
Simon Horman <horms(a)kernel.org>
netfilter: ctnetlink: compile ctnetlink_label_size with CONFIG_NF_CONNTRACK_EVENTS
Phil Sutter <phil(a)nwl.cc>
netfilter: nf_tables: Keep deleted flowtable hooks until after RCU
Furong Xu <0x1207(a)gmail.com>
net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled
Jiwon Kim <jiwonaid0(a)gmail.com>
bonding: Fix unnecessary warnings and logs from bond_xdp_get_xmit_slave()
Youssef Samir <quic_yabdulra(a)quicinc.com>
net: qrtr: Update packets cloning when broadcasting
Josh Hunt <johunt(a)akamai.com>
tcp: check skb is non-NULL in tcp_rto_delta_us()
Thomas Weißschuh <thomas.weissschuh(a)linutronix.de>
net: ipv6: select DST_CACHE from IPV6_RPL_LWTUNNEL
Kaixin Wang <kxwang23(a)m.fudan.edu.cn>
net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition
Eric Dumazet <edumazet(a)google.com>
netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put()
Sean Anderson <sean.anderson(a)linux.dev>
net: xilinx: axienet: Fix packet counting
Sean Anderson <sean.anderson(a)linux.dev>
net: xilinx: axienet: Schedule NAPI in two steps
Mikulas Patocka <mpatocka(a)redhat.com>
Revert "dm: requeue IO if mapping table not yet available"
Dan Carpenter <alexander.sverdlin(a)gmail.com>
ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate()
Jason Wang <jasowang(a)redhat.com>
vhost_vdpa: assign irq bypass producer token correctly
Xie Yongji <xieyongji(a)bytedance.com>
vdpa: Add eventfd for the vdpa callback
Yanfei Xu <yanfei.xu(a)intel.com>
cxl/pci: Fix to record only non-zero ranges
Dave Jiang <dave.jiang(a)intel.com>
cxl/pci: Break out range register decoding from cxl_hdm_decode_init()
Suzuki K Poulose <suzuki.poulose(a)arm.com>
coresight: tmc: sg: Do not leak sg_table
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: iio: asahi-kasei,ak8975: drop incorrect AK09116 compatible
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
iio: magnetometer: ak8975: drop incorrect AK09116 compatible
Biju Das <biju.das.jz(a)bp.renesas.com>
iio: magnetometer: ak8975: Convert enum->pointer for data in the match tables
Vasileios Amoiridis <vassilisamir(a)gmail.com>
iio: chemical: bme680: Fix read/write ops to device by adding mutexes
Antoniu Miclaus <antoniu.miclaus(a)analog.com>
ABI: testing: fix admv8818 attr description
Guillaume Stols <gstols(a)baylibre.com>
iio: adc: ad7606: fix standby gpio state to match the documentation
Guillaume Stols <gstols(a)baylibre.com>
iio: adc: ad7606: fix oversampling gpio array
Hannes Reinecke <hare(a)kernel.org>
nvme-multipath: system fails to create generic nvme device
Ming Lei <ming.lei(a)redhat.com>
lib/sbitmap: define swap_lock as raw_spinlock_t
Jinjie Ruan <ruanjinjie(a)huawei.com>
spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time
Jinjie Ruan <ruanjinjie(a)huawei.com>
spi: atmel-quadspi: Undo runtime PM changes at driver exit time
Chao Yu <chao(a)kernel.org>
f2fs: get rid of online repaire on corrupted directory
Chao Yu <chao(a)kernel.org>
f2fs: clean up w/ dotdot_name
Chao Yu <chao(a)kernel.org>
f2fs: atomic: fix to truncate pagecache before on-disk metadata truncation
Chao Yu <chao(a)kernel.org>
f2fs: fix to wait page writeback before setting gcing flag
Chao Yu <chao(a)kernel.org>
f2fs: fix to avoid racing in between read and OPU dio write
Christoph Hellwig <hch(a)lst.de>
f2fs: factor the read/write tracing logic into a helper
Chao Yu <chao(a)kernel.org>
f2fs: reduce expensive checkpoint trigger frequency
Chao Yu <chao(a)kernel.org>
f2fs: remove unneeded check condition in __f2fs_setxattr()
Chao Yu <chao(a)kernel.org>
f2fs: fix to update i_ctime in __f2fs_setxattr()
Li Lingfeng <lilingfeng3(a)huawei.com>
nfsd: return -EINVAL when namelen is 0
Guoqing Jiang <guoqing.jiang(a)linux.dev>
nfsd: call cache_put if xdr_reserve_space returns NULL
Dave Jiang <dave.jiang(a)intel.com>
ntb: Force physically contiguous allocation of rx ring buffers
Max Hawking <maxahawking(a)sonnenkinder.org>
ntb_perf: Fix printk format
Jinjie Ruan <ruanjinjie(a)huawei.com>
ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()
Vitaliy Shevtsov <v.shevtsov(a)maxima.ru>
RDMA/irdma: fix error message in irdma_modify_qp_roce()
Mikhail Lobanov <m.lobanov(a)rosalinux.ru>
RDMA/cxgb4: Added NULL check for lookup_atid
Jinjie Ruan <ruanjinjie(a)huawei.com>
riscv: Fix fp alignment bug in perf_callchain_user()
Junxian Huang <huangjunxian6(a)hisilicon.com>
RDMA/hns: Optimize hem allocation performance
Chengchang Tang <tangchengchang(a)huawei.com>
RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS
Junxian Huang <huangjunxian6(a)hisilicon.com>
RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler
Chengchang Tang <tangchengchang(a)huawei.com>
RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled
wenglianfa <wenglianfa(a)huawei.com>
RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range()
wenglianfa <wenglianfa(a)huawei.com>
RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08
Junxian Huang <huangjunxian6(a)hisilicon.com>
RDMA/hns: Don't modify rq next block addr in HIP09 QPC
Jonas Blixt <jonas.blixt(a)actia.se>
watchdog: imx_sc_wdt: Don't disable WDT in suspend
Cheng Xu <chengyou(a)linux.alibaba.com>
RDMA/erdma: Return QP state in erdma_query_qp
Alexandra Diupina <adiupina(a)astralinux.ru>
PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()
Patrisious Haddad <phaddad(a)nvidia.com>
IB/core: Fix ib_cache_setup_one error flow cleanup
Wang Jianzheng <wangjianzheng(a)vivo.com>
pinctrl: mvebu: Fix devinit_dove_pinctrl_probe function
Yangtao Li <frank.li(a)vivo.com>
pinctrl: mvebu: Use devm_platform_get_and_ioremap_resource()
Jeff Layton <jlayton(a)kernel.org>
nfsd: fix refcount leak when file is unhashed after being found
Jeff Layton <jlayton(a)kernel.org>
nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire
David Lechner <dlechner(a)baylibre.com>
clk: ti: dra7-atl: Fix leak of of_nodes
Md Haris Iqbal <haris.iqbal(a)ionos.com>
RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds
Jack Wang <jinpu.wang(a)ionos.com>
RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer
Yang Yingliang <yangyingliang(a)huawei.com>
pinctrl: single: fix missing error code in pcs_probe()
Zhu Yanjun <yanjun.zhu(a)linux.dev>
RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency
Sean Anderson <sean.anderson(a)linux.dev>
PCI: xilinx-nwl: Clean up clock on probe failure/removal
Sean Anderson <sean.anderson(a)linux.dev>
PCI: xilinx-nwl: Fix register misspelling
Li Zhijian <lizhijian(a)fujitsu.com>
nvdimm: Fix devs leaks in scan_labels()
Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org>
clk: qcom: dispcc-sm8250: use special function for Lucid 5LPE PLL
Dan Carpenter <dan.carpenter(a)linaro.org>
PCI: keystone: Fix if-statement expression in ks_pcie_quirk()
Ilpo Järvinen <ilpo.jarvinen(a)linux.intel.com>
PCI: Wait for Link before restoring Downstream Buses
Mika Westerberg <mika.westerberg(a)linux.intel.com>
PCI/PM: Drop pci_bridge_wait_for_secondary_bus() timeout parameter
Mika Westerberg <mika.westerberg(a)linux.intel.com>
PCI/PM: Increase wait time after resume
Junlin Li <make24(a)iscas.ac.cn>
drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error
Junlin Li <make24(a)iscas.ac.cn>
drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error
Emanuele Ghidoli <emanuele.ghidoli(a)toradex.com>
Input: ilitek_ts_i2c - add report id message validation
Emanuele Ghidoli <emanuele.ghidoli(a)toradex.com>
Input: ilitek_ts_i2c - avoid wrong input subsystem sync
Jonas Karlman <jonas(a)kwiboo.se>
clk: rockchip: Set parent rate for DCLK_VOP clock on RK3228
Peng Fan <peng.fan(a)nxp.com>
remoteproc: imx_rproc: Initialize workqueue earlier
Peng Fan <peng.fan(a)nxp.com>
remoteproc: imx_rproc: Correct ddr alias for i.MX8M
Peng Fan <peng.fan(a)nxp.com>
clk: imx: imx8qxp: Parent should be initialized earlier than the clock
Peng Fan <peng.fan(a)nxp.com>
clk: imx: imx8qxp: Register dc0_bypass0_clk before disp clk
Zhipeng Wang <zhipeng.wang_1(a)nxp.com>
clk: imx: imx8mp: fix clock tree update of TF-A managed clocks
Pengfei Li <pengfei.li_1(a)nxp.com>
clk: imx: fracn-gppll: fix fractional part of PLL getting lost
Peng Fan <peng.fan(a)nxp.com>
clk: imx: fracn-gppll: support integer pll
Ye Li <ye.li(a)nxp.com>
clk: imx: composite-7ulp: Check the PCC present bit
Peng Fan <peng.fan(a)nxp.com>
clk: imx: composite-8m: Enable gate clk with mcore_booted
Markus Elfring <elfring(a)users.sourceforge.net>
clk: imx: composite-8m: Less function calls in __imx8m_clk_hw_composite() after error detection
Ian Rogers <irogers(a)google.com>
perf time-utils: Fix 32-bit nsec parsing
Yang Jihong <yangjihong(a)bytedance.com>
perf sched timehist: Fixed timestamp error when unable to confirm event sched_in time
Yicong Yang <yangyicong(a)hisilicon.com>
perf stat: Display iostat headers correctly
Yang Jihong <yangjihong(a)bytedance.com>
perf sched timehist: Fix missing free of session in perf_sched__timehist()
Ian Rogers <irogers(a)google.com>
perf inject: Fix leader sampling inserting additional samples
Namhyung Kim <namhyung(a)kernel.org>
perf mem: Free the allocated sort string, fixing a leak
Daniel Borkmann <daniel(a)iogearbox.net>
bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error
Daniel Borkmann <daniel(a)iogearbox.net>
bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types
Daniel Borkmann <daniel(a)iogearbox.net>
bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit
Ryusuke Konishi <konishi.ryusuke(a)gmail.com>
nilfs2: fix potential oob read in nilfs_btree_check_delete()
Ryusuke Konishi <konishi.ryusuke(a)gmail.com>
nilfs2: determine empty node blocks as corrupted
Ryusuke Konishi <konishi.ryusuke(a)gmail.com>
nilfs2: fix potential null-ptr-deref in nilfs_btree_insert()
Thadeu Lima de Souza Cascardo <cascardo(a)igalia.com>
ext4: avoid OOB when system.data xattr changes underneath the filesystem
Thadeu Lima de Souza Cascardo <cascardo(a)igalia.com>
ext4: return error on ext4_find_inline_entry
Kemeng Shi <shikemeng(a)huaweicloud.com>
ext4: avoid negative min_clusters in find_group_orlov()
Kemeng Shi <shikemeng(a)huaweicloud.com>
ext4: avoid potential buffer_head leak in __ext4_new_inode()
Kemeng Shi <shikemeng(a)huaweicloud.com>
ext4: avoid buffer_head leak in ext4_mark_inode_used()
Jiawei Ye <jiawei.ye(a)foxmail.com>
smackfs: Use rcu_assign_pointer() to ensure safe assignment in smk_set_cipso
yangerkun <yangerkun(a)huawei.com>
ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard
Chen Yu <yu.c.chen(a)intel.com>
kthread: fix task state in kthread worker if being frozen
Lasse Collin <lasse.collin(a)tukaani.org>
xz: cleanup CRC32 edits from 2018
Eduard Zingerman <eddyz87(a)gmail.com>
bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix compile if backtrace support missing in libc
Jiri Olsa <jolsa(a)kernel.org>
selftests/bpf: Move test_progs helpers to testing_helpers object
Jiri Olsa <jolsa(a)kernel.org>
selftests/bpf: Replace extract_build_id with read_build_id
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix C++ compile error from missing _Bool type
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix error compiling test_lru_map.c
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix errors compiling cg_storage_multi.h with musl libc
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix compiling core_reloc.c with musl-libc
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix compiling tcp_rtt.c with musl-libc
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix compiling flow_dissector.c with musl-libc
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix compiling kfree_skb.c with musl-libc
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix include of <sys/fcntl.h>
Yonghong Song <yonghong.song(a)linux.dev>
selftests/bpf: Add a cgroup prog bpf_get_ns_current_pid_tgid() test
Yonghong Song <yonghong.song(a)linux.dev>
selftests/bpf: Refactor out some functions in ns_current_pid_tgid test
Yonghong Song <yonghong.song(a)linux.dev>
selftests/bpf: Replace CHECK with ASSERT_* in ns_current_pid_tgid test
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix missing BUILD_BUG_ON() declaration
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix missing UINT_MAX definitions in benchmarks
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix missing ARRAY_SIZE() definition in bench.c
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix error compiling bpf_iter_setsockopt.c with musl libc
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Fix compile error from rlim_t in sk_storage_map.c
Tony Ambardar <tony.ambardar(a)gmail.com>
selftests/bpf: Use pid_t consistently in test_progs.c
Alexei Starovoitov <ast(a)kernel.org>
selftests/bpf: Workaround strict bpf_lsm return value check.
Roberto Sassu <roberto.sassu(a)huawei.com>
selftests/bpf: Add tests for _opts variants of bpf_*_get_fd_by_id()
Yonghong Song <yhs(a)fb.com>
selftests/bpf: Add selftest deny_namespace to s390x deny list
Jonathan McDowell <noodles(a)meta.com>
tpm: Clean up TPM space after command failure
Juergen Gross <jgross(a)suse.com>
xen/swiotlb: fix allocated size
Juergen Gross <jgross(a)suse.com>
xen/swiotlb: add alignment check for dma buffers
Jason Gerecke <jason.gerecke(a)wacom.com>
HID: wacom: Do not warn about dropped packets for first packet
Jason Gerecke <jason.gerecke(a)wacom.com>
HID: wacom: Support sequence numbers smaller than 16-bit
Juergen Gross <jgross(a)suse.com>
xen: use correct end address of kernel for conflict checking
Yuesong Li <liyuesong(a)vivo.com>
drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind()
Sherry Yang <sherry.yang(a)oracle.com>
drm/msm: fix %s null argument error
Wolfram Sang <wsa+renesas(a)sang-engineering.com>
ipmi: docs: don't advertise deprecated sysfs entries
Vladimir Lypak <vladimir.lypak(a)gmail.com>
drm/msm/a5xx: workaround early ring-buffer emptiness check
Vladimir Lypak <vladimir.lypak(a)gmail.com>
drm/msm/a5xx: fix races in preemption evaluation stage
Vladimir Lypak <vladimir.lypak(a)gmail.com>
drm/msm/a5xx: properly clear preemption records on resume
Vladimir Lypak <vladimir.lypak(a)gmail.com>
drm/msm/a5xx: disable preemption in submits by default
Aleksandr Mishin <amishin(a)t-argos.ru>
drm/msm: Fix incorrect file name output in adreno_request_fw()
Christophe Leroy <christophe.leroy(a)csgroup.eu>
powerpc/8xx: Fix kernel vs user address comparison
Christophe Leroy <christophe.leroy(a)csgroup.eu>
powerpc/8xx: Fix initial memory mapping
Fei Shao <fshao(a)chromium.org>
drm/mediatek: Use spin_lock_irqsave() for CRTC event lock
Jason-JH.Lin <jason-jh.lin(a)mediatek.com>
drm/mediatek: Fix missing configuration flags in mtk_crtc_ddp_config()
Jeongjun Park <aha310510(a)gmail.com>
jfs: fix out-of-bounds in dbNextAG() and diAlloc()
Dan Carpenter <dan.carpenter(a)linaro.org>
scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()
Stefan Wahren <wahrenst(a)gmx.net>
drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get
Liu Ying <victor.liu(a)nxp.com>
drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid()
Nikita Zhandarovich <n.zhandarovich(a)fintech.ru>
drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets
Jonas Karlman <jonas(a)kwiboo.se>
drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode
Alex Bee <knaerzche(a)gmail.com>
drm/rockchip: vop: Allow 4096px width scaling
WangYuli <wangyuli(a)uniontech.com>
drm/amd/amdgpu: Properly tune the size of struct
Finn Thain <fthain(a)linux-m68k.org>
scsi: NCR5380: Check for phase match during PDMA fixup
Gilbert Wu <Gilbert.Wu(a)microchip.com>
scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly
Alex Deucher <alexander.deucher(a)amd.com>
drm/radeon: properly handle vbios fake edid sizing
Paulo Miguel Almeida <paulo.miguel.almeida.rodenas(a)gmail.com>
drm/radeon: Replace one-element array with flexible-array member
Alex Deucher <alexander.deucher(a)amd.com>
drm/amdgpu: properly handle vbios fake edid sizing
Paulo Miguel Almeida <paulo.miguel.almeida.rodenas(a)gmail.com>
drm/amdgpu: Replace one-element array with flexible-array member
Srinivasan Shanmugam <srinivasan.shanmugam(a)amd.com>
drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func
Claudiu Beznea <claudiu.beznea(a)microchip.com>
drm/stm: ltdc: check memory returned by devm_kzalloc()
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
drm/stm: Fix an error handling path in stm_drm_platform_probe()
Geert Uytterhoeven <geert+renesas(a)glider.be>
pmdomain: core: Harden inter-column space in debug summary
Miquel Raynal <miquel.raynal(a)bootlin.com>
mtd: rawnand: mtk: Fix init error path
Miquel Raynal <miquel.raynal(a)bootlin.com>
mtd: rawnand: mtk: Factorize out the logic cleaning mtk chips
Jinjie Ruan <ruanjinjie(a)huawei.com>
mtd: rawnand: mtk: Use for_each_child_of_node_scoped()
Frederic Weisbecker <frederic(a)kernel.org>
rcu/nocb: Fix RT throttling hrtimer armed from offline CPU
Charles Han <hanchunchao(a)inspur.com>
mtd: powernv: Add check devm_kasprintf() returned value
Jason Gunthorpe <jgg(a)ziepe.ca>
iommu/amd: Do not set the D bit on AMD v2 table entries
Christophe JAILLET <christophe.jaillet(a)wanadoo.fr>
fbdev: hpfb: Fix an error handling path in hpfb_dio_probe()
Artur Weber <aweber.kernel(a)gmail.com>
power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense
Chris Morgan <macromorgan(a)hotmail.com>
power: supply: axp20x_battery: Remove design from min and max voltage
Yuntao Liu <liuyuntao12(a)huawei.com>
hwmon: (ntc_thermistor) fix module autoloading
Mirsad Todorovac <mtodorovac69(a)gmail.com>
mtd: slram: insert break after errors in parsing the map
Guenter Roeck <linux(a)roeck-us.net>
hwmon: (max16065) Fix alarm attributes
Andrew Davis <afd(a)ti.com>
hwmon: (max16065) Remove use of i2c_match_id()
Biju Das <biju.das.jz(a)bp.renesas.com>
i2c: Add i2c_get_match_data()
Guenter Roeck <linux(a)roeck-us.net>
hwmon: (max16065) Fix overflows seen when writing limits
Finn Thain <fthain(a)linux-m68k.org>
m68k: Fix kernel_clone_args.flags in m68k_clone()
Yuntao Liu <liuyuntao12(a)huawei.com>
ALSA: hda: cs35l41: fix module autoloading
Ma Ke <make24(a)iscas.ac.cn>
ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error
Ankit Agrawal <agrawal.ag.ankit(a)gmail.com>
clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init()
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
reset: k210: fix OF node leak in probe() error path
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
reset: berlin: fix OF node leak in probe() error path
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
ARM: versatile: fix OF node leak in CPUs prepare
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
ARM: dts: imx7d-zii-rmu2: fix Ethernet PHY pinctrl property
Claudiu Beznea <claudiu.beznea(a)tuxon.dev>
ARM: dts: microchip: sama7g5: Fix RTT clock
Andrew Davis <afd(a)ti.com>
arm64: dts: ti: k3-j721e-sk: Fix reversed C6x carveout locations
Alexander Dahl <ada(a)thorsis.com>
ARM: dts: microchip: sam9x60: Fix rtc/rtt clocks
Lad Prabhakar <prabhakar.mahadev-lad.rj(a)bp.renesas.com>
arm64: dts: renesas: r9a07g044: Correct GICD and GICR sizes
Lad Prabhakar <prabhakar.mahadev-lad.rj(a)bp.renesas.com>
arm64: dts: renesas: r9a07g054: Correct GICD and GICR sizes
Lad Prabhakar <prabhakar.mahadev-lad.rj(a)bp.renesas.com>
arm64: dts: renesas: r9a07g043u: Correct GICD and GICR sizes
Chen-Yu Tsai <wenst(a)chromium.org>
regulator: Return actual error in of_regulator_bulk_get_all()
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ
Cristian Marussi <cristian.marussi(a)arm.com>
firmware: arm_scmi: Fix double free in OPTEE transport
David Virag <virag.david003(a)gmail.com>
arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB
Ma Ke <make24(a)iscas.ac.cn>
spi: ppc4xx: handle irq_of_parse_and_map() errors
Riyan Dhiman <riyandhiman14(a)gmail.com>
block: fix potential invalid pointer dereference in blk_add_partition
Christian Heusel <christian(a)heusel.eu>
block: print symbolic error name instead of error code
Yu Kuai <yukuai3(a)huawei.com>
block, bfq: don't break merge chain in bfq_split_bfqq()
Yu Kuai <yukuai3(a)huawei.com>
block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator()
Yu Kuai <yukuai3(a)huawei.com>
block, bfq: fix possible UAF for bfqq->bic with merge chain
Ming Lei <ming.lei(a)redhat.com>
nbd: fix race between timeout and normal completion
Eric Dumazet <edumazet(a)google.com>
ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()
Su Hui <suhui(a)nfschina.com>
net: tipc: avoid possible garbage value
Justin Iurman <justin.iurman(a)uliege.be>
net: ipv6: rpl_iptunnel: Fix memory leak in rpl_input
Heiner Kallweit <hkallweit1(a)gmail.com>
r8169: disable ALDPS per default for RTL8125
Jinjie Ruan <ruanjinjie(a)huawei.com>
net: enetc: Use IRQF_NO_AUTOEN flag in request_irq()
Guillaume Nault <gnault(a)redhat.com>
bareudp: Pull inner IP header on xmit.
Guillaume Nault <gnault(a)redhat.com>
bareudp: Pull inner IP header in bareudp_udp_encap_recv().
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: btusb: Fix not handling ZPL/short-transfer
Marc Kleine-Budde <mkl(a)pengutronix.de>
can: m_can: m_can_close(): stop clocks after device has been shut down
Jake Hamby <Jake.Hamby(a)Teledyne.com>
can: m_can: enable NAPI before enabling interrupts
Markus Schneider-Pargmann <msp(a)baylibre.com>
can: m_can: Remove repeated check for is_peripheral
Kuniyuki Iwashima <kuniyu(a)amazon.com>
can: bcm: Clear bo->bcm_proc_read after remove_proc_entry().
Eric Dumazet <edumazet(a)google.com>
sock_map: Add a cond_resched() in sock_hash_free()
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL
Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com>
Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED
Jiawei Ye <jiawei.ye(a)foxmail.com>
wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param
Dmitry Antipov <dmantipov(a)yandex.ru>
wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()
Dmitry Antipov <dmantipov(a)yandex.ru>
wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors
Howard Hsu <howard-yh.hsu(a)mediatek.com>
wifi: mt76: mt7915: fix rx filter setting for bfee functionality
Dmitry Antipov <dmantipov(a)yandex.ru>
wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan()
Weili Qian <qianweili(a)huawei.com>
crypto: hisilicon/qm - inject error before stopping queue
Weili Qian <qianweili(a)huawei.com>
crypto: hisilicon/qm - reset device before enabling it
Weili Qian <qianweili(a)huawei.com>
crypto: hisilicon/qm - fix coding style issues
Weili Qian <qianweili(a)huawei.com>
crypto: hisilicon/hpre - mask cluster timeout error
Weili Qian <qianweili(a)huawei.com>
crypto: hisilicon/hpre - enable sva error interrupt event
Aaron Lu <aaron.lu(a)intel.com>
x86/sgx: Fix deadlock in SGX NUMA node search
Nishanth Menon <nm(a)ti.com>
cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately
Robin Murphy <robin.murphy(a)arm.com>
perf/arm-cmn: Ensure dtm_idx is big enough
Robin Murphy <robin.murphy(a)arm.com>
perf/arm-cmn: Refactor node ID handling. Again.
Robin Murphy <robin.murphy(a)arm.com>
perf/arm-cmn: Improve debugfs pretty-printing for large configs
Robin Murphy <robin.murphy(a)arm.com>
perf/arm-cmn: Rework DTC counters (again)
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: remove annotation to access set timeout while holding lock
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: reject expiration higher than timeout
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: reject element expiration with no timeout
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: elements with timeout below CONFIG_HZ never expire
Clément Léger <cleger(a)rivosinc.com>
ACPI: CPPC: Fix MASK_VAL() usage
Zhang Changzhong <zhangchangzhong(a)huawei.com>
can: j1939: use correct function name in comment
Mark Brown <broonie(a)kernel.org>
kselftest/arm64: Actually test SME vector length changes via sigreturn
Yicong Yang <yangyicong(a)hisilicon.com>
drivers/perf: hisi_pcie: Record hardware counts correctly
Kamlesh Gurudasani <kamlesh(a)ti.com>
padata: Honor the caller's alignment in case of chunk_size 0
Vasily Khoruzhick <anarsoul(a)gmail.com>
ACPICA: executer/exsystem: Don't nag user about every Stall() violating the spec
Vasily Khoruzhick <anarsoul(a)gmail.com>
ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE
Avraham Stern <avraham.stern(a)intel.com>
wifi: iwlwifi: mvm: increase the time between ranging measurements
Ping-Ke Shih <pkshih(a)realtek.com>
wifi: mac80211: don't use rate mask for offchannel TX either
Jing Zhang <renyu.zj(a)linux.alibaba.com>
drivers/perf: Fix ali_drw_pmu driver interrupt status clearing
Andre Przywara <andre.przywara(a)arm.com>
kselftest/arm64: signal: fix/refactor SVE vector length enumeration
Mark Brown <broonie(a)kernel.org>
kselftest/arm64: Fix enumeration of systems without 128 bit SME for SSVE+ZA
Mark Brown <broonie(a)kernel.org>
kselftest/arm64: Verify simultaneous SSVE and ZA context generation
Mark Brown <broonie(a)kernel.org>
kselftest/arm64: Don't pass headers to the compiler as source
Olaf Hering <olaf(a)aepfle.de>
mount: handle OOM on mnt_warn_timestamp_expiry
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
fs/namespace: fnic: Switch to use %ptTd
Andrew Jones <ajones(a)ventanamicro.com>
RISC-V: KVM: Fix sbiret init before forwarding to userspace
Dmitry Kandybka <d.kandybka(a)gmail.com>
wifi: rtw88: remove CPT execution branch never used
Yanteng Si <siyanteng(a)loongson.cn>
net: stmmac: dwmac-loongson: Init ref and PTP clocks rate
Toke Høiland-Jørgensen <toke(a)redhat.com>
wifi: ath9k: Remove error checks when creating debugfs entries
Minjie Du <duminjie(a)vivo.com>
wifi: ath9k: fix parameter check in ath9k_init_debug()
Aleksandr Mishin <amishin(a)t-argos.ru>
ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe()
Helge Deller <deller(a)kernel.org>
crypto: xor - fix template benchmarking
Dmitry Antipov <dmantipov(a)yandex.ru>
wifi: rtw88: always wait for both firmware loading attempts
Shubhrajyoti Datta <shubhrajyoti.datta(a)amd.com>
EDAC/synopsys: Fix error injection on Zynq UltraScale+
Serge Semin <fancer.lancer(a)gmail.com>
EDAC/synopsys: Fix ECC status and IRQ control race condition
-------------
Diffstat:
.gitignore | 1 -
.../ABI/testing/sysfs-bus-iio-filter-admv8818 | 2 +-
Documentation/accounting/delay-accounting.rst | 14 +-
Documentation/admin-guide/kernel-parameters.txt | 10 +
Documentation/arm64/silicon-errata.rst | 4 +
.../iio/magnetometer/asahi-kasei,ak8975.yaml | 1 -
Documentation/driver-api/ipmi.rst | 2 +-
.../zh_CN/accounting/delay-accounting.rst | 17 +-
Makefile | 4 +-
arch/arm/boot/dts/imx7d-zii-rmu2.dts | 2 +-
arch/arm/boot/dts/sam9x60.dtsi | 4 +-
arch/arm/boot/dts/sama7g5.dtsi | 2 +-
arch/arm/crypto/aes-ce-glue.c | 2 +-
arch/arm/crypto/aes-neonbs-glue.c | 2 +-
arch/arm/mach-ep93xx/clock.c | 2 +-
arch/arm/mach-versatile/platsmp-realview.c | 1 +
arch/arm64/Kconfig | 2 +
.../boot/dts/exynos/exynos7885-jackpotlte.dts | 2 +-
arch/arm64/boot/dts/mediatek/mt8195-cherry.dtsi | 1 +
arch/arm64/boot/dts/qcom/sm8250.dtsi | 20 +-
arch/arm64/boot/dts/renesas/r9a07g043u.dtsi | 4 +-
arch/arm64/boot/dts/renesas/r9a07g044.dtsi | 4 +-
arch/arm64/boot/dts/renesas/r9a07g054.dtsi | 4 +-
.../boot/dts/rockchip/rk3399-pinebook-pro.dts | 4 +-
arch/arm64/boot/dts/ti/k3-j721e-sk.dts | 4 +-
arch/arm64/include/asm/cputype.h | 4 +
arch/arm64/kernel/cpu_errata.c | 2 +
arch/loongarch/configs/loongson3_defconfig | 1 -
arch/loongarch/pci/acpi.c | 1 +
arch/m68k/kernel/process.c | 2 +-
arch/parisc/kernel/entry.S | 6 +-
arch/parisc/kernel/syscall.S | 14 +-
arch/powerpc/Kconfig | 23 +
arch/powerpc/Makefile | 4 +
arch/powerpc/include/asm/asm-compat.h | 6 +
arch/powerpc/include/asm/atomic.h | 25 +-
arch/powerpc/include/asm/io.h | 37 +
arch/powerpc/include/asm/uaccess.h | 33 +-
arch/powerpc/include/asm/vdso_datapage.h | 15 +
arch/powerpc/kernel/asm-offsets.c | 2 +
arch/powerpc/kernel/head_8xx.S | 6 +-
arch/powerpc/kernel/trace/ftrace.c | 2 +
arch/powerpc/kernel/vdso/cacheflush.S | 2 +-
arch/powerpc/kernel/vdso/datapage.S | 4 +-
arch/powerpc/mm/nohash/8xx.c | 4 +-
arch/powerpc/platforms/Kconfig.cputype | 24 +-
arch/powerpc/platforms/pseries/dlpar.c | 17 -
arch/powerpc/platforms/pseries/hotplug-cpu.c | 2 +-
arch/powerpc/platforms/pseries/hotplug-memory.c | 16 +-
arch/powerpc/platforms/pseries/pmem.c | 2 +-
arch/riscv/Kconfig | 5 +
arch/riscv/include/asm/sparsemem.h | 2 +-
arch/riscv/kernel/elf_kexec.c | 6 +
arch/riscv/kernel/perf_callchain.c | 2 +-
arch/riscv/kvm/vcpu_sbi.c | 4 +-
arch/s390/include/asm/facility.h | 6 +-
arch/s390/kernel/perf_cpum_sf.c | 12 +-
arch/s390/mm/cmm.c | 18 +-
arch/x86/coco/tdx/tdx.c | 6 +
arch/x86/events/core.c | 63 +
arch/x86/events/intel/pt.c | 15 +-
arch/x86/include/asm/hardirq.h | 8 +-
arch/x86/include/asm/idtentry.h | 73 +-
arch/x86/include/asm/syscall.h | 7 +-
arch/x86/kernel/apic/io_apic.c | 46 +-
arch/x86/kernel/cpu/sgx/main.c | 27 +-
arch/x86/kernel/machine_kexec_64.c | 27 +
arch/x86/kvm/lapic.c | 35 +-
arch/x86/net/bpf_jit_comp.c | 54 +-
arch/x86/xen/setup.c | 2 +-
block/bfq-iosched.c | 44 +-
block/blk-integrity.c | 175 +-
block/blk-iocost.c | 8 +-
block/blk.h | 10 +-
block/genhd.c | 12 +-
block/partitions/core.c | 8 +-
crypto/asymmetric_keys/asymmetric_type.c | 7 +-
crypto/simd.c | 76 +-
crypto/xor.c | 31 +-
drivers/acpi/acpi_pad.c | 6 +-
drivers/acpi/acpica/dbconvert.c | 2 +
drivers/acpi/acpica/exprep.c | 3 +
drivers/acpi/acpica/exsystem.c | 11 +-
drivers/acpi/acpica/psargs.c | 47 +
drivers/acpi/battery.c | 28 +-
drivers/acpi/cppc_acpi.c | 43 +-
drivers/acpi/device_sysfs.c | 5 +-
drivers/acpi/ec.c | 55 +-
drivers/acpi/pmic/tps68470_pmic.c | 6 +-
drivers/acpi/resource.c | 20 +
drivers/acpi/video_detect.c | 8 +
drivers/ata/libata-eh.c | 18 +-
drivers/ata/pata_serverworks.c | 16 +-
drivers/ata/sata_sil.c | 12 +-
drivers/base/bus.c | 6 +-
drivers/base/firmware_loader/main.c | 30 +
drivers/base/power/domain.c | 2 +-
drivers/block/aoe/aoecmd.c | 13 +-
drivers/block/drbd/drbd_main.c | 8 +-
drivers/block/drbd/drbd_state.c | 2 +-
drivers/block/loop.c | 15 +-
drivers/block/nbd.c | 13 +-
drivers/bluetooth/btmrvl_sdio.c | 3 +-
drivers/bluetooth/btusb.c | 7 +-
drivers/bus/arm-integrator-lm.c | 1 +
drivers/bus/mhi/host/pci_generic.c | 13 +-
drivers/char/hw_random/bcm2835-rng.c | 4 +-
drivers/char/hw_random/cctrng.c | 1 +
drivers/char/hw_random/mtk-rng.c | 2 +-
drivers/char/tpm/tpm-dev-common.c | 2 +
drivers/char/tpm/tpm2-space.c | 3 +
drivers/char/virtio_console.c | 18 +-
drivers/clk/bcm/clk-bcm53573-ilp.c | 2 +-
drivers/clk/imx/clk-composite-7ulp.c | 7 +
drivers/clk/imx/clk-composite-8m.c | 61 +-
drivers/clk/imx/clk-fracn-gppll.c | 72 +-
drivers/clk/imx/clk-imx7d.c | 4 +-
drivers/clk/imx/clk-imx8mp.c | 4 +-
drivers/clk/imx/clk-imx8qxp.c | 10 +-
drivers/clk/imx/clk.h | 7 +
drivers/clk/qcom/clk-alpha-pll.c | 54 +-
drivers/clk/qcom/clk-alpha-pll.h | 2 +
drivers/clk/qcom/clk-rpmh.c | 2 +
drivers/clk/qcom/dispcc-sm8250.c | 12 +-
drivers/clk/qcom/gcc-sc8180x.c | 88 +-
drivers/clk/qcom/gcc-sm8250.c | 6 +-
drivers/clk/qcom/gcc-sm8450.c | 4 +-
drivers/clk/rockchip/clk-rk3228.c | 2 +-
drivers/clk/rockchip/clk.c | 3 +-
drivers/clk/samsung/clk-exynos7885.c | 14 +-
drivers/clk/ti/clk-dra7-atl.c | 1 +
drivers/clocksource/timer-qcom.c | 7 +-
.../drivers/ni_routing/tools/convert_c_to_py.c | 5 +
drivers/cpufreq/intel_pstate.c | 20 +-
drivers/cpufreq/ti-cpufreq.c | 10 +-
drivers/crypto/ccp/sev-dev.c | 2 +
drivers/crypto/hisilicon/hpre/hpre_main.c | 57 +-
drivers/crypto/hisilicon/qm.c | 180 +-
drivers/crypto/hisilicon/sec2/sec_main.c | 16 +-
drivers/crypto/hisilicon/sgl.c | 1 -
drivers/crypto/hisilicon/zip/zip_main.c | 23 +-
drivers/cxl/core/pci.c | 60 +-
drivers/dax/device.c | 2 +-
drivers/edac/igen6_edac.c | 2 +-
drivers/edac/synopsys_edac.c | 85 +-
drivers/firmware/arm_scmi/optee.c | 7 +
drivers/firmware/efi/libstub/tpm.c | 2 +-
drivers/firmware/tegra/bpmp.c | 6 -
drivers/gpio/gpio-aspeed.c | 4 +-
drivers/gpio/gpio-davinci.c | 8 +-
drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c | 4 +
drivers/gpu/drm/amd/amdgpu/amdgpu_gfx.c | 18 +-
drivers/gpu/drm/amd/amdgpu/amdgv_sriovmsg.h | 4 +-
drivers/gpu/drm/amd/amdgpu/atombios_encoders.c | 26 +-
drivers/gpu/drm/amd/amdgpu/gfx_v9_0.c | 4 +
.../gpu/drm/amd/amdkfd/kfd_process_queue_manager.c | 1 +
drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 22 +
.../amd/display/amdgpu_dm/amdgpu_dm_mst_types.c | 5 +-
.../drm/amd/display/amdgpu_dm/amdgpu_dm_plane.c | 3 +-
drivers/gpu/drm/amd/display/dc/core/dc.c | 8 +-
drivers/gpu/drm/amd/display/dc/core/dc_resource.c | 6 +-
.../gpu/drm/amd/display/dc/dcn10/dcn10_cm_common.c | 2 +
.../gpu/drm/amd/display/dc/dcn30/dcn30_cm_common.c | 4 +
drivers/gpu/drm/amd/display/dc/dcn30/dcn30_hwseq.c | 6 +-
.../dc/dml/dcn20/display_rq_dlg_calc_20v2.c | 2 +-
.../display/dc/dml/dcn21/display_rq_dlg_calc_21.c | 2 +-
.../drm/amd/display/modules/freesync/freesync.c | 2 +-
drivers/gpu/drm/amd/include/atombios.h | 2 +-
.../drm/amd/pm/powerplay/hwmgr/processpptables.c | 2 +
drivers/gpu/drm/bridge/lontium-lt8912b.c | 35 +-
drivers/gpu/drm/drm_atomic_uapi.c | 2 +-
drivers/gpu/drm/drm_crtc.c | 1 +
drivers/gpu/drm/drm_print.c | 13 +-
drivers/gpu/drm/exynos/exynos_drm_gsc.c | 2 +-
drivers/gpu/drm/i915/gem/i915_gem_ttm.c | 2 +-
drivers/gpu/drm/mediatek/mtk_drm_crtc.c | 32 +-
drivers/gpu/drm/msm/adreno/a5xx_gpu.c | 12 +-
drivers/gpu/drm/msm/adreno/a5xx_gpu.h | 2 +
drivers/gpu/drm/msm/adreno/a5xx_preempt.c | 30 +-
drivers/gpu/drm/msm/adreno/adreno_gpu.c | 2 +-
drivers/gpu/drm/msm/disp/mdp5/mdp5_smp.c | 2 +-
drivers/gpu/drm/nouveau/nouveau_dmem.c | 2 +-
drivers/gpu/drm/omapdrm/omap_drv.c | 5 +
drivers/gpu/drm/radeon/atombios.h | 2 +-
drivers/gpu/drm/radeon/evergreen_cs.c | 62 +-
drivers/gpu/drm/radeon/r100.c | 70 +-
drivers/gpu/drm/radeon/radeon_atombios.c | 26 +-
drivers/gpu/drm/rockchip/dw_hdmi-rockchip.c | 2 +
drivers/gpu/drm/rockchip/rockchip_drm_vop.c | 20 +-
drivers/gpu/drm/rockchip/rockchip_drm_vop.h | 7 +
drivers/gpu/drm/rockchip/rockchip_drm_vop2.h | 5 -
drivers/gpu/drm/rockchip/rockchip_vop_reg.c | 20 +
drivers/gpu/drm/scheduler/sched_entity.c | 2 +
drivers/gpu/drm/stm/drv.c | 7 +-
drivers/gpu/drm/stm/ltdc.c | 78 +-
drivers/gpu/drm/v3d/v3d_perfmon.c | 9 +-
drivers/gpu/drm/vc4/vc4_hdmi.c | 8 +-
drivers/gpu/drm/vc4/vc4_perfmon.c | 7 +-
drivers/gpu/drm/vmwgfx/vmwgfx_bo.c | 12 +-
drivers/gpu/drm/vmwgfx/vmwgfx_drv.h | 3 +
drivers/hid/amd-sfh-hid/amd_sfh_client.c | 14 +-
drivers/hid/hid-ids.h | 4 +
drivers/hid/hid-multitouch.c | 14 +-
drivers/hid/hid-plantronics.c | 23 +
drivers/hid/intel-ish-hid/ishtp-fw-loader.c | 2 +-
drivers/hid/wacom_wac.c | 13 +-
drivers/hid/wacom_wac.h | 2 +-
drivers/hwmon/Kconfig | 3 +
drivers/hwmon/max16065.c | 27 +-
drivers/hwmon/ntc_thermistor.c | 1 +
drivers/hwtracing/coresight/coresight-tmc-etr.c | 2 +-
drivers/i2c/busses/i2c-aspeed.c | 16 +-
drivers/i2c/busses/i2c-i801.c | 9 +-
drivers/i2c/busses/i2c-isch.c | 3 +-
drivers/i2c/busses/i2c-qcom-geni.c | 4 +-
drivers/i2c/busses/i2c-stm32f7.c | 6 +-
drivers/i2c/busses/i2c-xiic.c | 89 +-
drivers/i2c/i2c-core-base.c | 58 +
drivers/iio/adc/ad7606.c | 8 +-
drivers/iio/adc/ad7606_spi.c | 5 +-
drivers/iio/chemical/bme680_core.c | 7 +
drivers/iio/magnetometer/ak8975.c | 117 +-
drivers/infiniband/core/cache.c | 4 +-
drivers/infiniband/core/iwcm.c | 2 +-
drivers/infiniband/core/mad.c | 14 +-
drivers/infiniband/hw/cxgb4/cm.c | 5 +
drivers/infiniband/hw/erdma/erdma_verbs.c | 25 +-
drivers/infiniband/hw/hns/hns_roce_hem.c | 22 +-
drivers/infiniband/hw/hns/hns_roce_hw_v2.c | 29 +-
drivers/infiniband/hw/hns/hns_roce_qp.c | 16 +-
drivers/infiniband/hw/irdma/verbs.c | 2 +-
drivers/infiniband/hw/mlx5/odp.c | 25 +-
drivers/infiniband/ulp/rtrs/rtrs-clt.c | 9 +-
drivers/infiniband/ulp/rtrs/rtrs-srv.c | 14 +-
drivers/input/keyboard/adp5588-keys.c | 2 +-
drivers/input/keyboard/adp5589-keys.c | 22 +-
drivers/input/rmi4/rmi_driver.c | 6 +-
drivers/input/serio/i8042-acpipnpio.h | 37 +
drivers/input/touchscreen/ilitek_ts_i2c.c | 18 +-
drivers/iommu/amd/io_pgtable_v2.c | 2 +-
drivers/iommu/arm/arm-smmu/arm-smmu-qcom.c | 7 +
drivers/iommu/intel/Kconfig | 11 -
drivers/iommu/intel/Makefile | 1 -
drivers/iommu/intel/dmar.c | 23 +-
drivers/iommu/intel/iommu.c | 6 +-
drivers/iommu/intel/iommu.h | 43 +-
drivers/iommu/intel/perfmon.c | 172 -
drivers/iommu/intel/perfmon.h | 40 -
drivers/mailbox/bcm2835-mailbox.c | 3 +-
drivers/mailbox/rockchip-mailbox.c | 2 +-
drivers/md/dm-rq.c | 4 +-
drivers/md/dm.c | 11 +-
drivers/media/common/videobuf2/videobuf2-core.c | 8 +-
drivers/media/dvb-frontends/rtl2830.c | 2 +-
drivers/media/dvb-frontends/rtl2832.c | 2 +-
drivers/media/i2c/ar0521.c | 5 +-
drivers/media/i2c/imx335.c | 43 +-
drivers/media/platform/qcom/camss/camss.c | 5 +-
drivers/media/platform/qcom/venus/core.c | 1 +
drivers/media/platform/sunxi/sun4i-csi/sun4i_csi.c | 5 +
drivers/media/tuners/tuner-i2c.h | 4 +-
drivers/media/usb/usbtv/usbtv-video.c | 7 -
drivers/mtd/devices/powernv_flash.c | 3 +
drivers/mtd/devices/slram.c | 2 +
drivers/mtd/nand/raw/mtk_nand.c | 36 +-
drivers/net/bareudp.c | 26 +-
drivers/net/bonding/bond_main.c | 6 +-
drivers/net/can/m_can/m_can.c | 18 +-
drivers/net/dsa/b53/b53_common.c | 17 +-
drivers/net/dsa/lan9303-core.c | 29 +
drivers/net/ethernet/adi/adin1110.c | 4 +-
.../net/ethernet/aquantia/atlantic/aq_ethtool.c | 4 +-
drivers/net/ethernet/broadcom/bnxt/bnxt_ethtool.c | 2 +-
drivers/net/ethernet/cortina/gemini.c | 32 +-
drivers/net/ethernet/freescale/enetc/enetc.c | 3 +-
drivers/net/ethernet/hisilicon/hip04_eth.c | 1 +
drivers/net/ethernet/hisilicon/hns/hns_dsaf_mac.c | 1 +
drivers/net/ethernet/hisilicon/hns_mdio.c | 1 +
drivers/net/ethernet/ibm/emac/mal.c | 4 +-
drivers/net/ethernet/intel/i40e/i40e_main.c | 1 +
drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c | 2 +
drivers/net/ethernet/intel/ice/ice_main.c | 3 +-
drivers/net/ethernet/intel/ice/ice_sched.c | 6 +-
drivers/net/ethernet/intel/ice/ice_switch.c | 2 -
drivers/net/ethernet/intel/igb/igb_main.c | 4 +
drivers/net/ethernet/lantiq_etop.c | 4 +-
drivers/net/ethernet/marvell/mvpp2/mvpp2.h | 2 +-
drivers/net/ethernet/mellanox/mlx5/core/en/tir.c | 3 +
drivers/net/ethernet/mellanox/mlx5/core/en_tx.c | 1 -
.../net/ethernet/mellanox/mlx5/core/lib/pci_vsc.c | 10 +
drivers/net/ethernet/mellanox/mlx5/core/main.c | 2 +-
.../ethernet/mellanox/mlx5/core/sf/dev/driver.c | 1 +
.../net/ethernet/microchip/sparx5/sparx5_packet.c | 6 +-
.../net/ethernet/netronome/nfp/nfp_net_common.c | 5 +-
drivers/net/ethernet/realtek/r8169_main.c | 31 +-
drivers/net/ethernet/realtek/r8169_phy_config.c | 2 +
drivers/net/ethernet/seeq/ether3.c | 2 +
.../net/ethernet/stmicro/stmmac/dwmac-loongson.c | 3 +
drivers/net/ethernet/stmicro/stmmac/dwmac4_core.c | 18 +-
drivers/net/ethernet/stmicro/stmmac/stmmac_tc.c | 1 +
drivers/net/ethernet/xilinx/xilinx_axienet_main.c | 37 +-
drivers/net/ieee802154/Kconfig | 1 +
drivers/net/ieee802154/mcr20a.c | 5 +-
drivers/net/phy/bcm84881.c | 4 +-
drivers/net/phy/dp83869.c | 1 -
drivers/net/ppp/ppp_async.c | 2 +-
drivers/net/ppp/ppp_generic.c | 4 +-
drivers/net/slip/slhc.c | 57 +-
drivers/net/usb/usbnet.c | 37 +-
drivers/net/vxlan/vxlan_core.c | 6 +-
drivers/net/vxlan/vxlan_private.h | 2 +-
drivers/net/vxlan/vxlan_vnifilter.c | 19 +-
drivers/net/wireless/ath/ath11k/dp_rx.c | 2 +-
drivers/net/wireless/ath/ath9k/debug.c | 6 +-
drivers/net/wireless/ath/ath9k/hif_usb.c | 6 +-
drivers/net/wireless/ath/ath9k/htc_drv_debug.c | 2 -
drivers/net/wireless/intel/iwlwifi/fw/api/scan.h | 13 +
drivers/net/wireless/intel/iwlwifi/mvm/constants.h | 2 +-
drivers/net/wireless/intel/iwlwifi/mvm/scan.c | 42 +-
drivers/net/wireless/marvell/mwifiex/fw.h | 2 +-
drivers/net/wireless/marvell/mwifiex/scan.c | 3 +-
drivers/net/wireless/mediatek/mt76/mac80211.c | 8 +
drivers/net/wireless/mediatek/mt76/mt76.h | 1 +
drivers/net/wireless/mediatek/mt76/mt7615/init.c | 3 +
drivers/net/wireless/mediatek/mt76/mt7915/mac.c | 4 +-
drivers/net/wireless/mediatek/mt76/mt7915/main.c | 3 +-
drivers/net/wireless/mediatek/mt76/mt7915/mcu.c | 10 +-
drivers/net/wireless/microchip/wilc1000/hif.c | 4 +-
drivers/net/wireless/realtek/rtw88/Kconfig | 1 +
drivers/net/wireless/realtek/rtw88/coex.c | 38 +-
drivers/net/wireless/realtek/rtw88/main.c | 7 +-
drivers/net/wireless/realtek/rtw88/rtw8822c.c | 12 +-
drivers/net/wireless/realtek/rtw89/phy.c | 4 +-
drivers/net/wwan/qcom_bam_dmux.c | 11 +-
drivers/net/xen-netback/hash.c | 5 +-
drivers/ntb/hw/intel/ntb_hw_gen1.c | 2 +-
drivers/ntb/hw/mscc/ntb_hw_switchtec.c | 1 +
drivers/ntb/ntb_transport.c | 23 +-
drivers/ntb/test/ntb_perf.c | 2 +-
drivers/nvdimm/namespace_devs.c | 34 +-
drivers/nvdimm/nd_virtio.c | 9 +
drivers/nvme/host/multipath.c | 2 +-
drivers/nvme/host/nvme.h | 5 +
drivers/nvme/host/pci.c | 18 +-
drivers/of/irq.c | 38 +-
drivers/pci/controller/dwc/pci-imx6.c | 7 +-
drivers/pci/controller/dwc/pci-keystone.c | 2 +-
drivers/pci/controller/dwc/pcie-kirin.c | 4 +-
drivers/pci/controller/pcie-xilinx-nwl.c | 39 +-
drivers/pci/pci-driver.c | 15 +-
drivers/pci/pci.c | 26 +-
drivers/pci/pci.h | 9 +-
drivers/pci/pcie/dpc.c | 3 +-
drivers/pci/quirks.c | 8 +
drivers/perf/alibaba_uncore_drw_pmu.c | 2 +-
drivers/perf/arm-cmn.c | 232 +-
drivers/perf/hisilicon/hisi_pcie_pmu.c | 14 +
drivers/pinctrl/mvebu/pinctrl-dove.c | 45 +-
drivers/pinctrl/pinctrl-single.c | 3 +-
.../x86/intel/speed_select_if/isst_if_common.c | 4 +-
drivers/platform/x86/touchscreen_dmi.c | 26 +
drivers/power/reset/brcmstb-reboot.c | 3 -
drivers/power/supply/axp20x_battery.c | 16 +-
drivers/power/supply/max17042_battery.c | 5 +-
drivers/power/supply/power_supply_hwmon.c | 3 +-
drivers/pps/clients/pps_parport.c | 14 +-
drivers/regulator/of_regulator.c | 2 +-
drivers/remoteproc/imx_rproc.c | 19 +-
drivers/remoteproc/ti_k3_r5_remoteproc.c | 86 +-
drivers/reset/reset-berlin.c | 3 +-
drivers/reset/reset-k210.c | 3 +-
drivers/rtc/rtc-at91sam9.c | 1 +
drivers/scsi/NCR5380.c | 82 +-
drivers/scsi/aacraid/aacraid.h | 2 +-
drivers/scsi/elx/libefc/efc_nport.c | 2 +-
drivers/scsi/lpfc/lpfc_ct.c | 12 +
drivers/scsi/lpfc/lpfc_disc.h | 7 +
drivers/scsi/lpfc/lpfc_els.c | 34 +-
drivers/scsi/lpfc/lpfc_nportdisc.c | 22 +-
drivers/scsi/lpfc/lpfc_vport.c | 43 +-
drivers/scsi/mac_scsi.c | 166 +-
drivers/scsi/pm8001/pm8001_init.c | 6 +-
drivers/scsi/sd.c | 2 +-
drivers/scsi/smartpqi/smartpqi_init.c | 22 +-
drivers/scsi/wd33c93.c | 2 +-
drivers/soc/versatile/soc-integrator.c | 1 +
drivers/soc/versatile/soc-realview.c | 20 +-
drivers/spi/atmel-quadspi.c | 1 +
drivers/spi/spi-bcm63xx.c | 9 +-
drivers/spi/spi-fsl-lpspi.c | 1 +
drivers/spi/spi-imx.c | 2 +-
drivers/spi/spi-ppc4xx.c | 7 +-
drivers/spi/spi-s3c64xx.c | 4 +-
drivers/staging/vme_user/vme_fake.c | 6 +
drivers/staging/vme_user/vme_tsi148.c | 6 +
.../int340x_thermal/processor_thermal_device_pci.c | 23 +-
drivers/tty/serial/rp2.c | 2 +-
drivers/usb/cdns3/cdnsp-ring.c | 6 +-
drivers/usb/cdns3/host.c | 4 +-
drivers/usb/chipidea/udc.c | 8 +-
drivers/usb/class/cdc-acm.c | 2 +
drivers/usb/dwc2/drd.c | 9 +
drivers/usb/dwc2/platform.c | 26 +-
drivers/usb/dwc3/core.c | 22 +-
drivers/usb/dwc3/core.h | 4 -
drivers/usb/dwc3/gadget.c | 11 -
drivers/usb/gadget/udc/core.c | 1 +
drivers/usb/host/xhci-debugfs.c | 2 +-
drivers/usb/host/xhci-mem.c | 331 +-
drivers/usb/host/xhci-pci.c | 22 +-
drivers/usb/host/xhci-ring.c | 82 +-
drivers/usb/host/xhci.c | 54 +-
drivers/usb/host/xhci.h | 32 +-
drivers/usb/misc/appledisplay.c | 15 +-
drivers/usb/misc/cypress_cy7c63.c | 4 +
drivers/usb/misc/yurex.c | 5 +-
drivers/usb/storage/unusual_devs.h | 11 +
drivers/vfio/pci/vfio_pci_intrs.c | 4 +-
drivers/vhost/scsi.c | 25 +-
drivers/vhost/vdpa.c | 18 +-
drivers/video/fbdev/core/fbcon.c | 2 +
drivers/video/fbdev/hpfb.c | 1 +
drivers/video/fbdev/pxafb.c | 1 +
drivers/video/fbdev/sis/sis_main.c | 2 +-
drivers/virtio/virtio_vdpa.c | 1 +
drivers/watchdog/imx_sc_wdt.c | 24 -
drivers/xen/swiotlb-xen.c | 10 +-
fs/btrfs/disk-io.c | 11 +
fs/btrfs/relocation.c | 2 +-
fs/btrfs/send.c | 23 +-
fs/btrfs/zoned.c | 2 +-
fs/cachefiles/namei.c | 7 +-
fs/ceph/addr.c | 6 +-
fs/crypto/fname.c | 8 +-
fs/dax.c | 62 +
fs/ecryptfs/crypto.c | 10 -
fs/erofs/data.c | 50 +-
fs/erofs/decompressor.c | 6 +-
fs/erofs/decompressor_lzma.c | 4 +-
fs/erofs/dir.c | 22 +-
fs/erofs/erofs_fs.h | 5 +-
fs/erofs/fscache.c | 7 +-
fs/erofs/inode.c | 37 +-
fs/erofs/internal.h | 34 +-
fs/erofs/namei.c | 30 +-
fs/erofs/super.c | 72 +-
fs/erofs/xattr.c | 40 +-
fs/erofs/xattr.h | 10 +-
fs/erofs/zdata.c | 16 +-
fs/erofs/zmap.c | 263 +-
fs/exec.c | 3 +-
fs/exfat/balloc.c | 10 +-
fs/ext4/dir.c | 14 +-
fs/ext4/extents.c | 55 +-
fs/ext4/fast_commit.c | 49 +-
fs/ext4/file.c | 8 +-
fs/ext4/ialloc.c | 14 +-
fs/ext4/inline.c | 35 +-
fs/ext4/inode.c | 11 +-
fs/ext4/mballoc.c | 10 +-
fs/ext4/migrate.c | 2 +-
fs/ext4/move_extent.c | 1 -
fs/ext4/namei.c | 14 +-
fs/ext4/super.c | 9 +-
fs/ext4/xattr.c | 7 +-
fs/f2fs/dir.c | 3 +-
fs/f2fs/extent_cache.c | 4 +-
fs/f2fs/f2fs.h | 24 +-
fs/f2fs/file.c | 96 +-
fs/f2fs/namei.c | 69 -
fs/f2fs/super.c | 4 +-
fs/f2fs/xattr.c | 18 +-
fs/fcntl.c | 14 +-
fs/file.c | 93 +-
fs/inode.c | 4 +
fs/iomap/buffered-io.c | 16 +-
fs/jbd2/checkpoint.c | 21 +-
fs/jbd2/journal.c | 4 +-
fs/jfs/jfs_discard.c | 11 +-
fs/jfs/jfs_dmap.c | 11 +-
fs/jfs/jfs_imap.c | 2 +-
fs/jfs/xattr.c | 2 +
fs/namei.c | 6 +-
fs/namespace.c | 21 +-
fs/nfs/callback_xdr.c | 2 +
fs/nfs/client.c | 1 +
fs/nfs/nfs42proc.c | 2 +-
fs/nfs/nfs4state.c | 3 +-
fs/nfsd/filecache.c | 7 +-
fs/nfsd/nfs4idmap.c | 13 +-
fs/nfsd/nfs4recover.c | 8 +
fs/nfsd/nfs4state.c | 5 +-
fs/nfsd/nfs4xdr.c | 10 +-
fs/nfsd/vfs.c | 1 +
fs/nilfs2/btree.c | 12 +-
fs/ntfs3/file.c | 4 +-
fs/ntfs3/frecord.c | 21 +-
fs/ntfs3/fslog.c | 19 +-
fs/ocfs2/aops.c | 5 +-
fs/ocfs2/buffer_head_io.c | 4 +-
fs/ocfs2/journal.c | 7 +-
fs/ocfs2/localalloc.c | 19 +
fs/ocfs2/quota_local.c | 8 +-
fs/ocfs2/refcounttree.c | 26 +-
fs/ocfs2/xattr.c | 11 +-
fs/proc/base.c | 61 +-
fs/smb/client/cifsfs.c | 13 +-
fs/smb/client/cifsglob.h | 2 +-
fs/smb/client/smb1ops.c | 2 +-
fs/smb/client/smb2ops.c | 19 +-
fs/smb/server/vfs.c | 19 +-
fs/unicode/mkutf8data.c | 70 -
fs/unicode/utf8data.c_shipped | 6703 ++++++++++----------
fs/xfs/xfs_reflink.c | 8 +-
include/acpi/acoutput.h | 5 +
include/acpi/cppc_acpi.h | 2 +
include/crypto/internal/simd.h | 12 +-
include/drm/drm_print.h | 54 +-
include/dt-bindings/clock/exynos7885.h | 4 +-
include/dt-bindings/clock/qcom,gcc-sc8180x.h | 3 +
include/linux/blkdev.h | 3 -
include/linux/dax.h | 2 +
include/linux/f2fs_fs.h | 2 +-
include/linux/fdtable.h | 8 +-
include/linux/fs.h | 11 +
include/linux/i2c.h | 7 +
include/linux/nfs_fs_sb.h | 1 +
include/linux/pci_ids.h | 2 +
include/linux/sbitmap.h | 2 +-
include/linux/uprobes.h | 2 +
include/linux/usb/usbnet.h | 15 +
include/linux/vdpa.h | 6 +
include/linux/xarray.h | 6 +
include/net/bluetooth/hci_core.h | 4 +-
include/net/ip.h | 2 +
include/net/mac80211.h | 7 +-
include/net/mctp.h | 2 +-
include/net/rtnetlink.h | 17 +
include/net/sch_generic.h | 1 -
include/net/sock.h | 2 +
include/net/tcp.h | 21 +-
include/trace/events/erofs.h | 4 +-
include/trace/events/f2fs.h | 3 +-
include/uapi/linux/cec.h | 6 +-
include/uapi/linux/netfilter/nf_tables.h | 2 +-
include/uapi/linux/snmp.h | 3 +
io_uring/io-wq.c | 33 +-
io_uring/io_uring.c | 15 +
io_uring/net.c | 4 +-
io_uring/sqpoll.c | 12 +
kernel/bpf/arraymap.c | 3 +
kernel/bpf/btf.c | 8 +
kernel/bpf/hashtab.c | 3 +
kernel/bpf/helpers.c | 6 +-
kernel/bpf/syscall.c | 1 +
kernel/bpf/verifier.c | 16 +-
kernel/events/core.c | 6 +-
kernel/events/uprobes.c | 4 +-
kernel/fork.c | 30 +-
kernel/jump_label.c | 52 +-
kernel/kthread.c | 12 +-
kernel/locking/lockdep.c | 50 +-
kernel/module/Makefile | 2 +-
kernel/padata.c | 6 +-
kernel/rcu/rcuscale.c | 4 +-
kernel/rcu/tree_nocb.h | 5 +-
kernel/resource.c | 58 +-
kernel/sched/psi.c | 26 +-
kernel/static_call_inline.c | 13 +-
kernel/trace/trace.c | 18 +-
kernel/trace/trace_hwlat.c | 2 +
kernel/trace/trace_osnoise.c | 2 +
kernel/trace/trace_output.c | 6 +-
lib/bootconfig.c | 3 +-
lib/buildid.c | 88 +-
lib/debugobjects.c | 5 +-
lib/sbitmap.c | 4 +-
lib/test_xarray.c | 93 +
lib/xarray.c | 53 +-
lib/xz/xz_crc32.c | 2 +-
lib/xz/xz_private.h | 4 -
mm/Kconfig | 25 +-
mm/damon/vaddr.c | 2 +
mm/filemap.c | 50 +-
mm/secretmem.c | 4 +-
mm/slab_common.c | 7 +
mm/util.c | 2 +-
net/bluetooth/hci_conn.c | 6 +-
net/bluetooth/hci_core.c | 27 +-
net/bluetooth/hci_event.c | 13 +-
net/bluetooth/hci_sock.c | 21 +-
net/bluetooth/hci_sync.c | 5 +-
net/bluetooth/mgmt.c | 13 +-
net/bluetooth/rfcomm/sock.c | 2 -
net/bridge/br_netfilter_hooks.c | 5 +
net/can/bcm.c | 4 +-
net/can/j1939/transport.c | 8 +-
net/core/dev.c | 12 +-
net/core/filter.c | 44 +-
net/core/rtnetlink.c | 29 +
net/core/sock_map.c | 1 +
net/ipv4/devinet.c | 6 +-
net/ipv4/fib_frontend.c | 2 +-
net/ipv4/icmp.c | 106 +-
net/ipv4/ip_gre.c | 6 +-
net/ipv4/netfilter/nf_dup_ipv4.c | 7 +-
net/ipv4/netfilter/nf_reject_ipv4.c | 10 +-
net/ipv4/netfilter/nft_fib_ipv4.c | 4 +-
net/ipv4/proc.c | 8 +-
net/ipv4/tcp_input.c | 31 +-
net/ipv4/tcp_ipv4.c | 3 +
net/ipv4/udp_offload.c | 22 +-
net/ipv6/Kconfig | 1 +
net/ipv6/icmp.c | 32 +-
net/ipv6/netfilter/nf_dup_ipv6.c | 7 +-
net/ipv6/netfilter/nf_reject_ipv6.c | 19 +-
net/ipv6/netfilter/nft_fib_ipv6.c | 5 +-
net/ipv6/proc.c | 1 +
net/ipv6/route.c | 2 +-
net/ipv6/rpl_iptunnel.c | 12 +-
net/mac80211/chan.c | 4 +-
net/mac80211/iface.c | 17 +-
net/mac80211/mlme.c | 2 +-
net/mac80211/offchannel.c | 1 +
net/mac80211/rate.c | 2 +-
net/mac80211/scan.c | 21 +-
net/mac80211/tx.c | 2 +-
net/mac80211/util.c | 4 +-
net/mctp/af_mctp.c | 6 +-
net/mctp/device.c | 32 +-
net/mctp/neigh.c | 29 +-
net/mctp/route.c | 33 +-
net/mptcp/mib.c | 2 +
net/mptcp/mib.h | 2 +
net/mptcp/pm_netlink.c | 3 +-
net/mptcp/protocol.c | 24 +-
net/mptcp/subflow.c | 6 +-
net/netfilter/nf_conntrack_netlink.c | 7 +-
net/netfilter/nf_tables_api.c | 14 +-
net/netfilter/xt_CHECKSUM.c | 33 +-
net/netfilter/xt_CLASSIFY.c | 16 +-
net/netfilter/xt_CONNSECMARK.c | 36 +-
net/netfilter/xt_CT.c | 148 +-
net/netfilter/xt_IDLETIMER.c | 59 +-
net/netfilter/xt_LED.c | 39 +-
net/netfilter/xt_NFLOG.c | 36 +-
net/netfilter/xt_RATEEST.c | 39 +-
net/netfilter/xt_SECMARK.c | 27 +-
net/netfilter/xt_TRACE.c | 35 +-
net/netfilter/xt_addrtype.c | 15 +-
net/netfilter/xt_cluster.c | 33 +-
net/netfilter/xt_connbytes.c | 4 +-
net/netfilter/xt_connlimit.c | 39 +-
net/netfilter/xt_connmark.c | 28 +-
net/netfilter/xt_mark.c | 42 +-
net/netlink/af_netlink.c | 3 +-
net/qrtr/af_qrtr.c | 2 +-
net/sched/sch_api.c | 7 +-
net/sched/sch_taprio.c | 4 +-
net/sctp/socket.c | 20 +-
net/socket.c | 7 +-
net/tipc/bcast.c | 2 +-
net/tipc/bearer.c | 8 +-
net/wireless/nl80211.c | 18 +-
net/wireless/scan.c | 6 +-
net/wireless/sme.c | 3 +-
rust/macros/module.rs | 6 +-
scripts/kconfig/qconf.cc | 2 +-
security/Kconfig | 32 +
security/bpf/hooks.c | 1 -
security/selinux/hooks.c | 4 +-
security/smack/smack_lsm.c | 4 +-
security/smack/smackfs.c | 2 +-
security/tomoyo/domain.c | 9 +-
sound/core/init.c | 14 +-
sound/core/oss/mixer_oss.c | 4 +-
sound/pci/asihpi/hpimsgx.c | 2 +-
sound/pci/hda/cs35l41_hda_spi.c | 1 +
sound/pci/hda/hda_controller.h | 2 +-
sound/pci/hda/hda_generic.c | 4 +-
sound/pci/hda/hda_intel.c | 12 +-
sound/pci/hda/patch_conexant.c | 24 +-
sound/pci/hda/patch_realtek.c | 10 +-
sound/pci/rme9652/hdsp.c | 6 +-
sound/pci/rme9652/hdspm.c | 6 +-
sound/soc/atmel/mchp-pdmc.c | 3 +
sound/soc/codecs/rt5682.c | 4 +-
sound/soc/codecs/rt5682s.c | 4 +-
sound/soc/codecs/wsa883x.c | 16 +-
sound/soc/fsl/imx-card.c | 1 +
sound/usb/card.c | 6 +
sound/usb/line6/podhd.c | 2 +-
sound/usb/mixer.c | 35 +-
sound/usb/mixer.h | 1 +
sound/usb/quirks-table.h | 2283 ++-----
sound/usb/quirks.c | 4 +
tools/accounting/getdelays.c | 24 +-
tools/arch/x86/kcpuid/kcpuid.c | 12 +-
tools/iio/iio_generic_buffer.c | 4 +
tools/lib/subcmd/parse-options.c | 8 +-
tools/perf/builtin-inject.c | 1 +
tools/perf/builtin-kmem.c | 2 +
tools/perf/builtin-kvm.c | 3 +
tools/perf/builtin-kwork.c | 3 +
tools/perf/builtin-lock.c | 24 +-
tools/perf/builtin-mem.c | 4 +
tools/perf/builtin-sched.c | 160 +-
tools/perf/util/hist.c | 7 +-
tools/perf/util/session.c | 3 +
tools/perf/util/stat-display.c | 3 +-
tools/perf/util/time-utils.c | 4 +-
tools/perf/util/tool.h | 1 +
tools/testing/ktest/ktest.pl | 2 +-
tools/testing/selftests/arm64/signal/Makefile | 8 +-
tools/testing/selftests/arm64/signal/sve_helpers.c | 56 +
tools/testing/selftests/arm64/signal/sve_helpers.h | 21 +
.../testcases/fake_sigreturn_sme_change_vl.c | 46 +-
.../testcases/fake_sigreturn_sve_change_vl.c | 30 +-
.../selftests/arm64/signal/testcases/ssve_regs.c | 36 +-
.../arm64/signal/testcases/ssve_za_regs.c | 146 +
.../selftests/arm64/signal/testcases/sve_regs.c | 32 +-
.../selftests/arm64/signal/testcases/za_no_regs.c | 32 +-
.../selftests/arm64/signal/testcases/za_regs.c | 36 +-
tools/testing/selftests/bpf/DENYLIST.s390x | 2 +
tools/testing/selftests/bpf/bench.c | 1 +
tools/testing/selftests/bpf/bench.h | 1 +
.../selftests/bpf/map_tests/sk_storage_map.c | 2 +-
.../selftests/bpf/prog_tests/bpf_iter_setsockopt.c | 2 +-
.../testing/selftests/bpf/prog_tests/core_reloc.c | 1 +
.../selftests/bpf/prog_tests/flow_dissector.c | 1 +
tools/testing/selftests/bpf/prog_tests/kfree_skb.c | 1 +
.../bpf/prog_tests/libbpf_get_fd_by_id_opts.c | 87 +
.../selftests/bpf/prog_tests/ns_current_pid_tgid.c | 156 +-
.../selftests/bpf/prog_tests/stacktrace_build_id.c | 19 +-
.../bpf/prog_tests/stacktrace_build_id_nmi.c | 17 +-
tools/testing/selftests/bpf/prog_tests/tcp_rtt.c | 1 +
.../selftests/bpf/prog_tests/user_ringbuf.c | 1 +
.../testing/selftests/bpf/progs/cg_storage_multi.h | 2 -
.../bpf/progs/test_libbpf_get_fd_by_id_opts.c | 37 +
.../selftests/bpf/progs/test_ns_current_pid_tgid.c | 17 +-
tools/testing/selftests/bpf/test_cpp.cpp | 4 +
tools/testing/selftests/bpf/test_lru_map.c | 3 +-
tools/testing/selftests/bpf/test_progs.c | 110 +-
tools/testing/selftests/bpf/test_progs.h | 2 -
tools/testing/selftests/bpf/testing_helpers.c | 63 +
tools/testing/selftests/bpf/testing_helpers.h | 9 +
.../breakpoints/step_after_suspend_test.c | 5 +-
.../selftests/net/forwarding/no_forwarding.sh | 2 +-
tools/testing/selftests/net/net_helper.sh | 0
tools/testing/selftests/net/setup_loopback.sh | 0
tools/testing/selftests/netfilter/nft_audit.sh | 57 +-
tools/testing/selftests/nolibc/nolibc-test.c | 4 +-
tools/testing/selftests/vDSO/parse_vdso.c | 17 +-
tools/testing/selftests/vDSO/vdso_config.h | 10 +-
.../testing/selftests/vDSO/vdso_test_correctness.c | 6 +
.../selftests/vm/charge_reserved_hugetlb.sh | 2 +-
tools/testing/selftests/vm/write_to_hugetlbfs.c | 23 +-
757 files changed, 11836 insertions(+), 9609 deletions(-)
1 day, 19 hours
- 8
- 8
[PATCH v3 1/2] misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors
by Vimal Agrawal
misc_minor_alloc was allocating id using ida for minor only in case of
MISC_DYNAMIC_MINOR but misc_minor_free was always freeing ids
using ida_free causing a mismatch and following warn:
> > WARNING: CPU: 0 PID: 159 at lib/idr.c:525 ida_free+0x3e0/0x41f
> > ida_free called for id=127 which is not allocated.
> > <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
...
> > [<60941eb4>] ida_free+0x3e0/0x41f
> > [<605ac993>] misc_minor_free+0x3e/0xbc
> > [<605acb82>] misc_deregister+0x171/0x1b3
misc_minor_alloc is changed to allocate id from ida for all minors
falling in the range of dynamic/ misc dynamic minors
Fixes: ab760791c0cf ("char: misc: Increase the maximum number of dynamic misc devices to 1048448")
Signed-off-by: Vimal Agrawal <vimal.agrawal(a)sophos.com>
Cc: stable(a)vger.kernel.org
---
v2: Added Fixes:
added missed case for static minor in misc_minor_alloc
v3: removed kunit changes as that will be added as second patch in this two patch series
drivers/char/misc.c | 35 ++++++++++++++++++++++++++++-------
1 file changed, 28 insertions(+), 7 deletions(-)
diff --git a/drivers/char/misc.c b/drivers/char/misc.c
index 541edc26ec89..9d0cd3459b4f 100644
--- a/drivers/char/misc.c
+++ b/drivers/char/misc.c
@@ -63,16 +63,30 @@ static DEFINE_MUTEX(misc_mtx);
#define DYNAMIC_MINORS 128 /* like dynamic majors */
static DEFINE_IDA(misc_minors_ida);
-static int misc_minor_alloc(void)
+static int misc_minor_alloc(int minor)
{
int ret = 0;
- ret = ida_alloc_max(&misc_minors_ida, DYNAMIC_MINORS - 1, GFP_KERNEL);
- if (ret >= 0) {
- ret = DYNAMIC_MINORS - ret - 1;
- } else {
- ret = ida_alloc_range(&misc_minors_ida, MISC_DYNAMIC_MINOR + 1,
+ if (minor == MISC_DYNAMIC_MINOR) {
+ /* allocate free id */
+ ret = ida_alloc_max(&misc_minors_ida, DYNAMIC_MINORS - 1, GFP_KERNEL);
+ if (ret >= 0) {
+ ret = DYNAMIC_MINORS - ret - 1;
+ } else {
+ ret = ida_alloc_range(&misc_minors_ida, MISC_DYNAMIC_MINOR + 1,
MINORMASK, GFP_KERNEL);
+ }
+ } else {
+ /* specific minor, check if it is in dynamic or misc dynamic range */
+ if (minor < DYNAMIC_MINORS) {
+ minor = DYNAMIC_MINORS - minor - 1;
+ ret = ida_alloc_range(&misc_minors_ida, minor, minor, GFP_KERNEL);
+ } else if (minor > MISC_DYNAMIC_MINOR) {
+ ret = ida_alloc_range(&misc_minors_ida, minor, minor, GFP_KERNEL);
+ } else {
+ /* case of non-dynamic minors, no need to allocate id */
+ ret = 0;
+ }
}
return ret;
}
@@ -219,7 +233,7 @@ int misc_register(struct miscdevice *misc)
mutex_lock(&misc_mtx);
if (is_dynamic) {
- int i = misc_minor_alloc();
+ int i = misc_minor_alloc(misc->minor);
if (i < 0) {
err = -EBUSY;
@@ -228,6 +242,7 @@ int misc_register(struct miscdevice *misc)
misc->minor = i;
} else {
struct miscdevice *c;
+ int i;
list_for_each_entry(c, &misc_list, list) {
if (c->minor == misc->minor) {
@@ -235,6 +250,12 @@ int misc_register(struct miscdevice *misc)
goto out;
}
}
+
+ i = misc_minor_alloc(misc->minor);
+ if (i < 0) {
+ err = -EBUSY;
+ goto out;
+ }
}
dev = MKDEV(MISC_MAJOR, misc->minor);
--
2.17.1
1 day, 20 hours
- 1
- 0
[PATCH v3 1/2] misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors
by Vimal Agrawal
misc_minor_alloc was allocating id using ida for minor only in case of
MISC_DYNAMIC_MINOR but misc_minor_free was always freeing ids
using ida_free causing a mismatch and following warn:
> > WARNING: CPU: 0 PID: 159 at lib/idr.c:525 ida_free+0x3e0/0x41f
> > ida_free called for id=127 which is not allocated.
> > <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
...
> > [<60941eb4>] ida_free+0x3e0/0x41f
> > [<605ac993>] misc_minor_free+0x3e/0xbc
> > [<605acb82>] misc_deregister+0x171/0x1b3
misc_minor_alloc is changed to allocate id from ida for all minors
falling in the range of dynamic/ misc dynamic minors
Fixes: ab760791c0cf ("char: misc: Increase the maximum number of dynamic misc devices to 1048448")
Signed-off-by: Vimal Agrawal <vimal.agrawal(a)sophos.com>
Cc: stable(a)vger.kernel.org
---
v2: Added Fixes:
added missed case for static minor in misc_minor_alloc
v3: removed kunit changes as that will be added as second patch in this two patch series
drivers/char/misc.c | 35 ++++++++++++++++++++++++++++-------
1 file changed, 28 insertions(+), 7 deletions(-)
diff --git a/drivers/char/misc.c b/drivers/char/misc.c
index 541edc26ec89..9d0cd3459b4f 100644
--- a/drivers/char/misc.c
+++ b/drivers/char/misc.c
@@ -63,16 +63,30 @@ static DEFINE_MUTEX(misc_mtx);
#define DYNAMIC_MINORS 128 /* like dynamic majors */
static DEFINE_IDA(misc_minors_ida);
-static int misc_minor_alloc(void)
+static int misc_minor_alloc(int minor)
{
int ret;
- ret = ida_alloc_max(&misc_minors_ida, DYNAMIC_MINORS - 1, GFP_KERNEL);
- if (ret >= 0) {
- ret = DYNAMIC_MINORS - ret - 1;
- } else {
- ret = ida_alloc_range(&misc_minors_ida, MISC_DYNAMIC_MINOR + 1,
+ if (minor == MISC_DYNAMIC_MINOR) {
+ /* allocate free id */
+ ret = ida_alloc_max(&misc_minors_ida, DYNAMIC_MINORS - 1, GFP_KERNEL);
+ if (ret >= 0) {
+ ret = DYNAMIC_MINORS - ret - 1;
+ } else {
+ ret = ida_alloc_range(&misc_minors_ida, MISC_DYNAMIC_MINOR + 1,
MINORMASK, GFP_KERNEL);
+ }
+ } else {
+ /* specific minor, check if it is in dynamic or misc dynamic range */
+ if (minor < DYNAMIC_MINORS) {
+ minor = DYNAMIC_MINORS - minor - 1;
+ ret = ida_alloc_range(&misc_minors_ida, minor, minor, GFP_KERNEL);
+ } else if (minor > MISC_DYNAMIC_MINOR) {
+ ret = ida_alloc_range(&misc_minors_ida, minor, minor, GFP_KERNEL);
+ } else {
+ /* case of non-dynamic minors, no need to allocate id */
+ ret = 0;
+ }
}
return ret;
}
@@ -219,7 +233,7 @@ int misc_register(struct miscdevice *misc)
mutex_lock(&misc_mtx);
if (is_dynamic) {
- int i = misc_minor_alloc();
+ int i = misc_minor_alloc(misc->minor);
if (i < 0) {
err = -EBUSY;
@@ -228,6 +242,7 @@ int misc_register(struct miscdevice *misc)
misc->minor = i;
} else {
struct miscdevice *c;
+ int i;
list_for_each_entry(c, &misc_list, list) {
if (c->minor == misc->minor) {
@@ -235,6 +250,12 @@ int misc_register(struct miscdevice *misc)
goto out;
}
}
+
+ i = misc_minor_alloc(misc->minor);
+ if (i < 0) {
+ err = -EBUSY;
+ goto out;
+ }
}
dev = MKDEV(MISC_MAJOR, misc->minor);
--
2.17.1
1 day, 20 hours
- 2
- 1
[PATCH v2] ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[]
by Christian Heusel
The LG Gram Pro 16 2-in-1 (2024) the 16T90SP has its keybopard IRQ (1)
described as ActiveLow in the DSDT, which the kernel overrides to EdgeHigh
which breaks the keyboard.
Add the 16T90SP to the irq1_level_low_skip_override[] quirk table to fix
this.
Reported-by: Dirk Holten <dirk.holten(a)gmx.de>
Closes: https://bugzilla.kernel.org/show_bug.cgi?id=219382
Cc: stable(a)vger.kernel.org
Suggested-by: Dirk Holten <dirk.holten(a)gmx.de>
Signed-off-by: Christian Heusel <christian(a)heusel.eu>
---
Note that I do not have the relevant hardware since I'm sending in this
quirk at the request of someone else.
---
Changes in v2:
- fix the double initialization warning reported by the kernel test
robot, which accidentially overwrote another quirk
- Link to v1: https://lore.kernel.org/r/20241016-lg-gram-pro-keyboard-v1-1-34306123102f@h…
---
drivers/acpi/resource.c | 7 +++++++
1 file changed, 7 insertions(+)
diff --git a/drivers/acpi/resource.c b/drivers/acpi/resource.c
index 129bceb1f4a27df93439bcefdb27fd9c91258028..7fe842dae1ec05ce6726af2ae4fcc8eff3698dcb 100644
--- a/drivers/acpi/resource.c
+++ b/drivers/acpi/resource.c
@@ -503,6 +503,13 @@ static const struct dmi_system_id irq1_level_low_skip_override[] = {
DMI_MATCH(DMI_BOARD_NAME, "17U70P"),
},
},
+ {
+ /* LG Electronics 16T90SP */
+ .matches = {
+ DMI_MATCH(DMI_SYS_VENDOR, "LG Electronics"),
+ DMI_MATCH(DMI_BOARD_NAME, "16T90SP"),
+ },
+ },
{ }
};
---
base-commit: 8e929cb546ee42c9a61d24fae60605e9e3192354
change-id: 20241016-lg-gram-pro-keyboard-9a9d8b9aa647
Best regards,
--
Christian Heusel <christian(a)heusel.eu>
1 day, 21 hours
- 1
- 0
[PATCH 07/13] media: s5p-jpeg: prevent buffer overflows
by Mauro Carvalho Chehab
The current logic allows word to be less than 2. If this happens,
there will be buffer overflows. Add extra checks to prevent it.
While here, remove an unused word = 0 assignment.
Fixes: 6c96dbbc2aa9 ("[media] s5p-jpeg: add support for 5433")
Cc: stable(a)vger.kernel.org
Signed-off-by: Mauro Carvalho Chehab <mchehab+huawei(a)kernel.org>
---
.../media/platform/samsung/s5p-jpeg/jpeg-core.c | 17 +++++++++++------
1 file changed, 11 insertions(+), 6 deletions(-)
diff --git a/drivers/media/platform/samsung/s5p-jpeg/jpeg-core.c b/drivers/media/platform/samsung/s5p-jpeg/jpeg-core.c
index d2c4a0178b3c..1db4609b3557 100644
--- a/drivers/media/platform/samsung/s5p-jpeg/jpeg-core.c
+++ b/drivers/media/platform/samsung/s5p-jpeg/jpeg-core.c
@@ -775,11 +775,14 @@ static void exynos4_jpeg_parse_decode_h_tbl(struct s5p_jpeg_ctx *ctx)
(unsigned long)vb2_plane_vaddr(&vb->vb2_buf, 0) + ctx->out_q.sos + 2;
jpeg_buffer.curr = 0;
- word = 0;
-
if (get_word_be(&jpeg_buffer, &word))
return;
- jpeg_buffer.size = (long)word - 2;
+
+ if (word < 2)
+ jpeg_buffer.size = 0;
+ else
+ jpeg_buffer.size = (long)word - 2;
+
jpeg_buffer.data += 2;
jpeg_buffer.curr = 0;
@@ -1058,6 +1061,7 @@ static int get_word_be(struct s5p_jpeg_buffer *buf, unsigned int *word)
if (byte == -1)
return -1;
*word = (unsigned int)byte | temp;
+
return 0;
}
@@ -1145,7 +1149,7 @@ static bool s5p_jpeg_parse_hdr(struct s5p_jpeg_q_data *result,
if (get_word_be(&jpeg_buffer, &word))
break;
length = (long)word - 2;
- if (!length)
+ if (length <= 0)
return false;
sof = jpeg_buffer.curr; /* after 0xffc0 */
sof_len = length;
@@ -1176,7 +1180,7 @@ static bool s5p_jpeg_parse_hdr(struct s5p_jpeg_q_data *result,
if (get_word_be(&jpeg_buffer, &word))
break;
length = (long)word - 2;
- if (!length)
+ if (length <= 0)
return false;
if (n_dqt >= S5P_JPEG_MAX_MARKER)
return false;
@@ -1189,7 +1193,7 @@ static bool s5p_jpeg_parse_hdr(struct s5p_jpeg_q_data *result,
if (get_word_be(&jpeg_buffer, &word))
break;
length = (long)word - 2;
- if (!length)
+ if (length <= 0)
return false;
if (n_dht >= S5P_JPEG_MAX_MARKER)
return false;
@@ -1214,6 +1218,7 @@ static bool s5p_jpeg_parse_hdr(struct s5p_jpeg_q_data *result,
if (get_word_be(&jpeg_buffer, &word))
break;
length = (long)word - 2;
+ /* No need to check underflows as skip() does it */
skip(&jpeg_buffer, length);
break;
}
--
2.47.0
1 day, 21 hours
- 2
- 1
[PATCH net] mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow
by Matthieu Baerts (NGI0)
Syzkaller reported this splat:
==================================================================
BUG: KASAN: slab-use-after-free in mptcp_pm_nl_rm_addr_or_subflow+0xb44/0xcc0 net/mptcp/pm_netlink.c:881
Read of size 4 at addr ffff8880569ac858 by task syz.1.2799/14662
CPU: 0 UID: 0 PID: 14662 Comm: syz.1.2799 Not tainted 6.12.0-rc2-syzkaller-00307-g36c254515dc6 #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
Call Trace:
<TASK>
__dump_stack lib/dump_stack.c:94 [inline]
dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120
print_address_description mm/kasan/report.c:377 [inline]
print_report+0xc3/0x620 mm/kasan/report.c:488
kasan_report+0xd9/0x110 mm/kasan/report.c:601
mptcp_pm_nl_rm_addr_or_subflow+0xb44/0xcc0 net/mptcp/pm_netlink.c:881
mptcp_pm_nl_rm_subflow_received net/mptcp/pm_netlink.c:914 [inline]
mptcp_nl_remove_id_zero_address+0x305/0x4a0 net/mptcp/pm_netlink.c:1572
mptcp_pm_nl_del_addr_doit+0x5c9/0x770 net/mptcp/pm_netlink.c:1603
genl_family_rcv_msg_doit+0x202/0x2f0 net/netlink/genetlink.c:1115
genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]
genl_rcv_msg+0x565/0x800 net/netlink/genetlink.c:1210
netlink_rcv_skb+0x165/0x410 net/netlink/af_netlink.c:2551
genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
netlink_unicast_kernel net/netlink/af_netlink.c:1331 [inline]
netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1357
netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1901
sock_sendmsg_nosec net/socket.c:729 [inline]
__sock_sendmsg net/socket.c:744 [inline]
____sys_sendmsg+0x9ae/0xb40 net/socket.c:2607
___sys_sendmsg+0x135/0x1e0 net/socket.c:2661
__sys_sendmsg+0x117/0x1f0 net/socket.c:2690
do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]
__do_fast_syscall_32+0x73/0x120 arch/x86/entry/common.c:386
do_fast_syscall_32+0x32/0x80 arch/x86/entry/common.c:411
entry_SYSENTER_compat_after_hwframe+0x84/0x8e
RIP: 0023:0xf7fe4579
Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
RSP: 002b:00000000f574556c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000020000140
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
</TASK>
Allocated by task 5387:
kasan_save_stack+0x33/0x60 mm/kasan/common.c:47
kasan_save_track+0x14/0x30 mm/kasan/common.c:68
poison_kmalloc_redzone mm/kasan/common.c:377 [inline]
__kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:394
kmalloc_noprof include/linux/slab.h:878 [inline]
kzalloc_noprof include/linux/slab.h:1014 [inline]
subflow_create_ctx+0x87/0x2a0 net/mptcp/subflow.c:1803
subflow_ulp_init+0xc3/0x4d0 net/mptcp/subflow.c:1956
__tcp_set_ulp net/ipv4/tcp_ulp.c:146 [inline]
tcp_set_ulp+0x326/0x7f0 net/ipv4/tcp_ulp.c:167
mptcp_subflow_create_socket+0x4ae/0x10a0 net/mptcp/subflow.c:1764
__mptcp_subflow_connect+0x3cc/0x1490 net/mptcp/subflow.c:1592
mptcp_pm_create_subflow_or_signal_addr+0xbda/0x23a0 net/mptcp/pm_netlink.c:642
mptcp_pm_nl_fully_established net/mptcp/pm_netlink.c:650 [inline]
mptcp_pm_nl_work+0x3a1/0x4f0 net/mptcp/pm_netlink.c:943
mptcp_worker+0x15a/0x1240 net/mptcp/protocol.c:2777
process_one_work+0x958/0x1b30 kernel/workqueue.c:3229
process_scheduled_works kernel/workqueue.c:3310 [inline]
worker_thread+0x6c8/0xf00 kernel/workqueue.c:3391
kthread+0x2c1/0x3a0 kernel/kthread.c:389
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
Freed by task 113:
kasan_save_stack+0x33/0x60 mm/kasan/common.c:47
kasan_save_track+0x14/0x30 mm/kasan/common.c:68
kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:579
poison_slab_object mm/kasan/common.c:247 [inline]
__kasan_slab_free+0x51/0x70 mm/kasan/common.c:264
kasan_slab_free include/linux/kasan.h:230 [inline]
slab_free_hook mm/slub.c:2342 [inline]
slab_free mm/slub.c:4579 [inline]
kfree+0x14f/0x4b0 mm/slub.c:4727
kvfree+0x47/0x50 mm/util.c:701
kvfree_rcu_list+0xf5/0x2c0 kernel/rcu/tree.c:3423
kvfree_rcu_drain_ready kernel/rcu/tree.c:3563 [inline]
kfree_rcu_monitor+0x503/0x8b0 kernel/rcu/tree.c:3632
kfree_rcu_shrink_scan+0x245/0x3a0 kernel/rcu/tree.c:3966
do_shrink_slab+0x44f/0x11c0 mm/shrinker.c:435
shrink_slab+0x32b/0x12a0 mm/shrinker.c:662
shrink_one+0x47e/0x7b0 mm/vmscan.c:4818
shrink_many mm/vmscan.c:4879 [inline]
lru_gen_shrink_node mm/vmscan.c:4957 [inline]
shrink_node+0x2452/0x39d0 mm/vmscan.c:5937
kswapd_shrink_node mm/vmscan.c:6765 [inline]
balance_pgdat+0xc19/0x18f0 mm/vmscan.c:6957
kswapd+0x5ea/0xbf0 mm/vmscan.c:7226
kthread+0x2c1/0x3a0 kernel/kthread.c:389
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
Last potentially related work creation:
kasan_save_stack+0x33/0x60 mm/kasan/common.c:47
__kasan_record_aux_stack+0xba/0xd0 mm/kasan/generic.c:541
kvfree_call_rcu+0x74/0xbe0 kernel/rcu/tree.c:3810
subflow_ulp_release+0x2ae/0x350 net/mptcp/subflow.c:2009
tcp_cleanup_ulp+0x7c/0x130 net/ipv4/tcp_ulp.c:124
tcp_v4_destroy_sock+0x1c5/0x6a0 net/ipv4/tcp_ipv4.c:2541
inet_csk_destroy_sock+0x1a3/0x440 net/ipv4/inet_connection_sock.c:1293
tcp_done+0x252/0x350 net/ipv4/tcp.c:4870
tcp_rcv_state_process+0x379b/0x4f30 net/ipv4/tcp_input.c:6933
tcp_v4_do_rcv+0x1ad/0xa90 net/ipv4/tcp_ipv4.c:1938
sk_backlog_rcv include/net/sock.h:1115 [inline]
__release_sock+0x31b/0x400 net/core/sock.c:3072
__tcp_close+0x4f3/0xff0 net/ipv4/tcp.c:3142
__mptcp_close_ssk+0x331/0x14d0 net/mptcp/protocol.c:2489
mptcp_close_ssk net/mptcp/protocol.c:2543 [inline]
mptcp_close_ssk+0x150/0x220 net/mptcp/protocol.c:2526
mptcp_pm_nl_rm_addr_or_subflow+0x2be/0xcc0 net/mptcp/pm_netlink.c:878
mptcp_pm_nl_rm_subflow_received net/mptcp/pm_netlink.c:914 [inline]
mptcp_nl_remove_id_zero_address+0x305/0x4a0 net/mptcp/pm_netlink.c:1572
mptcp_pm_nl_del_addr_doit+0x5c9/0x770 net/mptcp/pm_netlink.c:1603
genl_family_rcv_msg_doit+0x202/0x2f0 net/netlink/genetlink.c:1115
genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]
genl_rcv_msg+0x565/0x800 net/netlink/genetlink.c:1210
netlink_rcv_skb+0x165/0x410 net/netlink/af_netlink.c:2551
genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
netlink_unicast_kernel net/netlink/af_netlink.c:1331 [inline]
netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1357
netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1901
sock_sendmsg_nosec net/socket.c:729 [inline]
__sock_sendmsg net/socket.c:744 [inline]
____sys_sendmsg+0x9ae/0xb40 net/socket.c:2607
___sys_sendmsg+0x135/0x1e0 net/socket.c:2661
__sys_sendmsg+0x117/0x1f0 net/socket.c:2690
do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]
__do_fast_syscall_32+0x73/0x120 arch/x86/entry/common.c:386
do_fast_syscall_32+0x32/0x80 arch/x86/entry/common.c:411
entry_SYSENTER_compat_after_hwframe+0x84/0x8e
The buggy address belongs to the object at ffff8880569ac800
which belongs to the cache kmalloc-512 of size 512
The buggy address is located 88 bytes inside of
freed 512-byte region [ffff8880569ac800, ffff8880569aca00)
The buggy address belongs to the physical page:
page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x569ac
head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
page_type: f5(slab)
raw: 04fff00000000040 ffff88801ac42c80 dead000000000100 dead000000000122
raw: 0000000000000000 0000000080100010 00000001f5000000 0000000000000000
head: 04fff00000000040 ffff88801ac42c80 dead000000000100 dead000000000122
head: 0000000000000000 0000000080100010 00000001f5000000 0000000000000000
head: 04fff00000000002 ffffea00015a6b01 ffffffffffffffff 0000000000000000
head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 10238, tgid 10238 (kworker/u32:6), ts 597403252405, free_ts 597177952947
set_page_owner include/linux/page_owner.h:32 [inline]
post_alloc_hook+0x2d1/0x350 mm/page_alloc.c:1537
prep_new_page mm/page_alloc.c:1545 [inline]
get_page_from_freelist+0x101e/0x3070 mm/page_alloc.c:3457
__alloc_pages_noprof+0x223/0x25a0 mm/page_alloc.c:4733
alloc_pages_mpol_noprof+0x2c9/0x610 mm/mempolicy.c:2265
alloc_slab_page mm/slub.c:2412 [inline]
allocate_slab mm/slub.c:2578 [inline]
new_slab+0x2ba/0x3f0 mm/slub.c:2631
___slab_alloc+0xd1d/0x16f0 mm/slub.c:3818
__slab_alloc.constprop.0+0x56/0xb0 mm/slub.c:3908
__slab_alloc_node mm/slub.c:3961 [inline]
slab_alloc_node mm/slub.c:4122 [inline]
__kmalloc_cache_noprof+0x2c5/0x310 mm/slub.c:4290
kmalloc_noprof include/linux/slab.h:878 [inline]
kzalloc_noprof include/linux/slab.h:1014 [inline]
mld_add_delrec net/ipv6/mcast.c:743 [inline]
igmp6_leave_group net/ipv6/mcast.c:2625 [inline]
igmp6_group_dropped+0x4ab/0xe40 net/ipv6/mcast.c:723
__ipv6_dev_mc_dec+0x281/0x360 net/ipv6/mcast.c:979
addrconf_leave_solict net/ipv6/addrconf.c:2253 [inline]
__ipv6_ifa_notify+0x3f6/0xc30 net/ipv6/addrconf.c:6283
addrconf_ifdown.isra.0+0xef9/0x1a20 net/ipv6/addrconf.c:3982
addrconf_notify+0x220/0x19c0 net/ipv6/addrconf.c:3781
notifier_call_chain+0xb9/0x410 kernel/notifier.c:93
call_netdevice_notifiers_info+0xbe/0x140 net/core/dev.c:1996
call_netdevice_notifiers_extack net/core/dev.c:2034 [inline]
call_netdevice_notifiers net/core/dev.c:2048 [inline]
dev_close_many+0x333/0x6a0 net/core/dev.c:1589
page last free pid 13136 tgid 13136 stack trace:
reset_page_owner include/linux/page_owner.h:25 [inline]
free_pages_prepare mm/page_alloc.c:1108 [inline]
free_unref_page+0x5f4/0xdc0 mm/page_alloc.c:2638
stack_depot_save_flags+0x2da/0x900 lib/stackdepot.c:666
kasan_save_stack+0x42/0x60 mm/kasan/common.c:48
kasan_save_track+0x14/0x30 mm/kasan/common.c:68
unpoison_slab_object mm/kasan/common.c:319 [inline]
__kasan_slab_alloc+0x89/0x90 mm/kasan/common.c:345
kasan_slab_alloc include/linux/kasan.h:247 [inline]
slab_post_alloc_hook mm/slub.c:4085 [inline]
slab_alloc_node mm/slub.c:4134 [inline]
kmem_cache_alloc_noprof+0x121/0x2f0 mm/slub.c:4141
skb_clone+0x190/0x3f0 net/core/skbuff.c:2084
do_one_broadcast net/netlink/af_netlink.c:1462 [inline]
netlink_broadcast_filtered+0xb11/0xef0 net/netlink/af_netlink.c:1540
netlink_broadcast+0x39/0x50 net/netlink/af_netlink.c:1564
uevent_net_broadcast_untagged lib/kobject_uevent.c:331 [inline]
kobject_uevent_net_broadcast lib/kobject_uevent.c:410 [inline]
kobject_uevent_env+0xacd/0x1670 lib/kobject_uevent.c:608
device_del+0x623/0x9f0 drivers/base/core.c:3882
snd_card_disconnect.part.0+0x58a/0x7c0 sound/core/init.c:546
snd_card_disconnect+0x1f/0x30 sound/core/init.c:495
snd_usx2y_disconnect+0xe9/0x1f0 sound/usb/usx2y/usbusx2y.c:417
usb_unbind_interface+0x1e8/0x970 drivers/usb/core/driver.c:461
device_remove drivers/base/dd.c:569 [inline]
device_remove+0x122/0x170 drivers/base/dd.c:561
That's because 'subflow' is used just after 'mptcp_close_ssk(subflow)',
which will initiate the release of its memory. Even if it is very likely
the release and the re-utilisation will be done later on, it is of
course better to avoid any issues and read the content of 'subflow'
before closing it.
Fixes: 1c1f72137598 ("mptcp: pm: only decrement add_addr_accepted for MPJ req")
Cc: stable(a)vger.kernel.org
Reported-by: syzbot+3c8b7a8e7df6a2a226ca(a)syzkaller.appspotmail.com
Closes: https://lore.kernel.org/670d7337.050a0220.4cbc0.004f.GAE@google.com
Signed-off-by: Matthieu Baerts (NGI0) <matttbe(a)kernel.org>
---
net/mptcp/pm_netlink.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/net/mptcp/pm_netlink.c b/net/mptcp/pm_netlink.c
index f6f0a38a0750f82bc909f02a75beec980d951f1f..4dd61284afc5f7f70708827056fb4530c8879502 100644
--- a/net/mptcp/pm_netlink.c
+++ b/net/mptcp/pm_netlink.c
@@ -873,12 +873,12 @@ static void mptcp_pm_nl_rm_addr_or_subflow(struct mptcp_sock *msk,
i, rm_id, id, remote_id, msk->mpc_endpoint_id);
spin_unlock_bh(&msk->pm.lock);
mptcp_subflow_shutdown(sk, ssk, how);
+ removed |= subflow->request_join;
/* the following takes care of updating the subflows counter */
mptcp_close_ssk(sk, ssk, subflow);
spin_lock_bh(&msk->pm.lock);
- removed |= subflow->request_join;
if (rm_type == MPTCP_MIB_RMSUBFLOW)
__MPTCP_INC_STATS(sock_net(sk), rm_type);
}
---
base-commit: 25c12b459db8365fee84b63f3dd7910f70627f29
change-id: 20241015-net-mptcp-uaf-pm-rm-7810dfa3e559
Best regards,
--
Matthieu Baerts (NGI0) <matttbe(a)kernel.org>
1 day, 22 hours
- 3
- 2
[PATCH] mmc: core: Use GFP_NOIO in ACMD22
by Avri Altman
While reviewing the SDUC series, Adrian made a comment concerning the
memory allocation code in mmc_sd_num_wr_blocks() - see [1].
Prevent memory allocations from triggering I/O operations while ACMD22
is in progress.
[1] https://www.spinics.net/lists/linux-mmc/msg82199.html
Suggested-by: Adrian Hunter <adrian.hunter(a)intel.com>
Signed-off-by: Avri Altman <avri.altman(a)wdc.com>
Cc: stable(a)vger.kernel.org
---
drivers/mmc/core/block.c | 10 +++++++++-
1 file changed, 9 insertions(+), 1 deletion(-)
diff --git a/drivers/mmc/core/block.c b/drivers/mmc/core/block.c
index 04f3165cf9ae..042b0147d47e 100644
--- a/drivers/mmc/core/block.c
+++ b/drivers/mmc/core/block.c
@@ -995,6 +995,8 @@ static int mmc_sd_num_wr_blocks(struct mmc_card *card, u32 *written_blocks)
u32 result;
__be32 *blocks;
u8 resp_sz = mmc_card_ult_capacity(card) ? 8 : 4;
+ unsigned int noio_flag;
+
struct mmc_request mrq = {};
struct mmc_command cmd = {};
struct mmc_data data = {};
@@ -1018,9 +1020,13 @@ static int mmc_sd_num_wr_blocks(struct mmc_card *card, u32 *written_blocks)
mrq.cmd = &cmd;
mrq.data = &data;
+ noio_flag = memalloc_noio_save();
+
blocks = kmalloc(resp_sz, GFP_KERNEL);
- if (!blocks)
+ if (!blocks) {
+ memalloc_noio_restore(noio_flag);
return -ENOMEM;
+ }
sg_init_one(&sg, blocks, resp_sz);
@@ -1041,6 +1047,8 @@ static int mmc_sd_num_wr_blocks(struct mmc_card *card, u32 *written_blocks)
}
kfree(blocks);
+ memalloc_noio_restore(noio_flag);
+
if (cmd.error || data.error)
return -EIO;
--
2.25.1
1 day, 23 hours
- 4
- 4
[PATCH v2] drm/meson: switch to a managed drm device
by Anastasia Belova
Switch to a managed drm device to cleanup some error handling
and make future work easier.
Fix dereference of NULL in meson_drv_bind_master by removing
drm_dev_put(drm) before meson_encoder_*_remove and
component_unbind_all where drm is dereferenced.
Co-developed by Linux Verification Center (linuxtesting.org).
Cc: stable(a)vger.kernel.org # 6.5
Fixes: 6a044642988b ("drm/meson: fix unbind path if HDMI fails to bind")
Signed-off-by: Anastasia Belova <abelova(a)astralinux.ru>
---
v2: fix commit message and add Cc: stable(a)vger.kernel.org
drivers/gpu/drm/meson/meson_crtc.c | 10 +--
drivers/gpu/drm/meson/meson_drv.c | 71 ++++++++++------------
drivers/gpu/drm/meson/meson_drv.h | 2 +-
drivers/gpu/drm/meson/meson_encoder_cvbs.c | 8 +--
drivers/gpu/drm/meson/meson_overlay.c | 8 +--
drivers/gpu/drm/meson/meson_plane.c | 10 +--
6 files changed, 51 insertions(+), 58 deletions(-)
diff --git a/drivers/gpu/drm/meson/meson_crtc.c b/drivers/gpu/drm/meson/meson_crtc.c
index d70616da8ce2..e1c0bf3baeea 100644
--- a/drivers/gpu/drm/meson/meson_crtc.c
+++ b/drivers/gpu/drm/meson/meson_crtc.c
@@ -662,13 +662,13 @@ void meson_crtc_irq(struct meson_drm *priv)
drm_crtc_handle_vblank(priv->crtc);
- spin_lock_irqsave(&priv->drm->event_lock, flags);
+ spin_lock_irqsave(&priv->drm.event_lock, flags);
if (meson_crtc->event) {
drm_crtc_send_vblank_event(priv->crtc, meson_crtc->event);
drm_crtc_vblank_put(priv->crtc);
meson_crtc->event = NULL;
}
- spin_unlock_irqrestore(&priv->drm->event_lock, flags);
+ spin_unlock_irqrestore(&priv->drm.event_lock, flags);
}
int meson_crtc_create(struct meson_drm *priv)
@@ -677,18 +677,18 @@ int meson_crtc_create(struct meson_drm *priv)
struct drm_crtc *crtc;
int ret;
- meson_crtc = devm_kzalloc(priv->drm->dev, sizeof(*meson_crtc),
+ meson_crtc = devm_kzalloc(priv->drm.dev, sizeof(*meson_crtc),
GFP_KERNEL);
if (!meson_crtc)
return -ENOMEM;
meson_crtc->priv = priv;
crtc = &meson_crtc->base;
- ret = drm_crtc_init_with_planes(priv->drm, crtc,
+ ret = drm_crtc_init_with_planes(&priv->drm, crtc,
priv->primary_plane, NULL,
&meson_crtc_funcs, "meson_crtc");
if (ret) {
- dev_err(priv->drm->dev, "Failed to init CRTC\n");
+ dev_err(priv->drm.dev, "Failed to init CRTC\n");
return ret;
}
diff --git a/drivers/gpu/drm/meson/meson_drv.c b/drivers/gpu/drm/meson/meson_drv.c
index 4bd0baa2a4f5..2e7c2e7c7b82 100644
--- a/drivers/gpu/drm/meson/meson_drv.c
+++ b/drivers/gpu/drm/meson/meson_drv.c
@@ -182,7 +182,6 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
struct platform_device *pdev = to_platform_device(dev);
const struct meson_drm_match_data *match;
struct meson_drm *priv;
- struct drm_device *drm;
struct resource *res;
void __iomem *regs;
int ret, i;
@@ -197,17 +196,13 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
if (!match)
return -ENODEV;
- drm = drm_dev_alloc(&meson_driver, dev);
- if (IS_ERR(drm))
- return PTR_ERR(drm);
+ priv = devm_drm_dev_alloc(dev, &meson_driver,
+ struct meson_drm, drm);
- priv = devm_kzalloc(dev, sizeof(*priv), GFP_KERNEL);
- if (!priv) {
- ret = -ENOMEM;
- goto free_drm;
- }
- drm->dev_private = priv;
- priv->drm = drm;
+ if (IS_ERR(priv))
+ return PTR_ERR(priv);
+
+ priv->drm.dev_private = priv;
priv->dev = dev;
priv->compat = match->compat;
priv->afbcd.ops = match->afbcd_ops;
@@ -215,7 +210,7 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
regs = devm_platform_ioremap_resource_byname(pdev, "vpu");
if (IS_ERR(regs)) {
ret = PTR_ERR(regs);
- goto free_drm;
+ goto remove_encoders;
}
priv->io_base = regs;
@@ -223,13 +218,13 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
res = platform_get_resource_byname(pdev, IORESOURCE_MEM, "hhi");
if (!res) {
ret = -EINVAL;
- goto free_drm;
+ goto remove_encoders;
}
/* Simply ioremap since it may be a shared register zone */
regs = devm_ioremap(dev, res->start, resource_size(res));
if (!regs) {
ret = -EADDRNOTAVAIL;
- goto free_drm;
+ goto remove_encoders;
}
priv->hhi = devm_regmap_init_mmio(dev, regs,
@@ -237,18 +232,18 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
if (IS_ERR(priv->hhi)) {
dev_err(&pdev->dev, "Couldn't create the HHI regmap\n");
ret = PTR_ERR(priv->hhi);
- goto free_drm;
+ goto remove_encoders;
}
priv->canvas = meson_canvas_get(dev);
if (IS_ERR(priv->canvas)) {
ret = PTR_ERR(priv->canvas);
- goto free_drm;
+ goto remove_encoders;
}
ret = meson_canvas_alloc(priv->canvas, &priv->canvas_id_osd1);
if (ret)
- goto free_drm;
+ goto remove_encoders;
ret = meson_canvas_alloc(priv->canvas, &priv->canvas_id_vd1_0);
if (ret)
goto free_canvas_osd1;
@@ -261,7 +256,7 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
priv->vsync_irq = platform_get_irq(pdev, 0);
- ret = drm_vblank_init(drm, 1);
+ ret = drm_vblank_init(&priv->drm, 1);
if (ret)
goto free_canvas_vd1_2;
@@ -284,10 +279,10 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
ret = drmm_mode_config_init(drm);
if (ret)
goto free_canvas_vd1_2;
- drm->mode_config.max_width = 3840;
- drm->mode_config.max_height = 2160;
- drm->mode_config.funcs = &meson_mode_config_funcs;
- drm->mode_config.helper_private = &meson_mode_config_helpers;
+ priv->drm.mode_config.max_width = 3840;
+ priv->drm.mode_config.max_height = 2160;
+ priv->drm.mode_config.funcs = &meson_mode_config_funcs;
+ priv->drm.mode_config.helper_private = &meson_mode_config_helpers;
/* Hardware Initialization */
@@ -308,9 +303,9 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
goto exit_afbcd;
if (has_components) {
- ret = component_bind_all(dev, drm);
+ ret = component_bind_all(dev, &priv->drm);
if (ret) {
- dev_err(drm->dev, "Couldn't bind all components\n");
+ dev_err(priv->drm.dev, "Couldn't bind all components\n");
/* Do not try to unbind */
has_components = false;
goto exit_afbcd;
@@ -339,26 +334,26 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
if (ret)
goto exit_afbcd;
- ret = request_irq(priv->vsync_irq, meson_irq, 0, drm->driver->name, drm);
+ ret = request_irq(priv->vsync_irq, meson_irq, 0, priv->drm.driver->name, &priv->drm);
if (ret)
goto exit_afbcd;
- drm_mode_config_reset(drm);
+ drm_mode_config_reset(&priv->drm);
- drm_kms_helper_poll_init(drm);
+ drm_kms_helper_poll_init(&priv->drm);
platform_set_drvdata(pdev, priv);
- ret = drm_dev_register(drm, 0);
+ ret = drm_dev_register(&priv->drm, 0);
if (ret)
goto uninstall_irq;
- drm_fbdev_dma_setup(drm, 32);
+ drm_fbdev_dma_setup(&priv->drm, 32);
return 0;
uninstall_irq:
- free_irq(priv->vsync_irq, drm);
+ free_irq(priv->vsync_irq, &priv->drm);
exit_afbcd:
if (priv->afbcd.ops)
priv->afbcd.ops->exit(priv);
@@ -370,15 +365,14 @@ static int meson_drv_bind_master(struct device *dev, bool has_components)
meson_canvas_free(priv->canvas, priv->canvas_id_vd1_0);
free_canvas_osd1:
meson_canvas_free(priv->canvas, priv->canvas_id_osd1);
-free_drm:
- drm_dev_put(drm);
+remove_encoders:
meson_encoder_dsi_remove(priv);
meson_encoder_hdmi_remove(priv);
meson_encoder_cvbs_remove(priv);
if (has_components)
- component_unbind_all(dev, drm);
+ component_unbind_all(dev, &priv->drm);
return ret;
}
@@ -391,7 +385,7 @@ static int meson_drv_bind(struct device *dev)
static void meson_drv_unbind(struct device *dev)
{
struct meson_drm *priv = dev_get_drvdata(dev);
- struct drm_device *drm = priv->drm;
+ struct drm_device *drm = &priv->drm;
if (priv->canvas) {
meson_canvas_free(priv->canvas, priv->canvas_id_osd1);
@@ -404,7 +398,6 @@ static void meson_drv_unbind(struct device *dev)
drm_kms_helper_poll_fini(drm);
drm_atomic_helper_shutdown(drm);
free_irq(priv->vsync_irq, drm);
- drm_dev_put(drm);
meson_encoder_dsi_remove(priv);
meson_encoder_hdmi_remove(priv);
@@ -428,7 +421,7 @@ static int __maybe_unused meson_drv_pm_suspend(struct device *dev)
if (!priv)
return 0;
- return drm_mode_config_helper_suspend(priv->drm);
+ return drm_mode_config_helper_suspend(&priv->drm);
}
static int __maybe_unused meson_drv_pm_resume(struct device *dev)
@@ -445,7 +438,7 @@ static int __maybe_unused meson_drv_pm_resume(struct device *dev)
if (priv->afbcd.ops)
priv->afbcd.ops->init(priv);
- return drm_mode_config_helper_resume(priv->drm);
+ return drm_mode_config_helper_resume(&priv->drm);
}
static void meson_drv_shutdown(struct platform_device *pdev)
@@ -455,8 +448,8 @@ static void meson_drv_shutdown(struct platform_device *pdev)
if (!priv)
return;
- drm_kms_helper_poll_fini(priv->drm);
- drm_atomic_helper_shutdown(priv->drm);
+ drm_kms_helper_poll_fini(&priv->drm);
+ drm_atomic_helper_shutdown(&priv->drm);
}
/*
diff --git a/drivers/gpu/drm/meson/meson_drv.h b/drivers/gpu/drm/meson/meson_drv.h
index 3f9345c14f31..c4c6c810cb20 100644
--- a/drivers/gpu/drm/meson/meson_drv.h
+++ b/drivers/gpu/drm/meson/meson_drv.h
@@ -53,7 +53,7 @@ struct meson_drm {
u8 canvas_id_vd1_1;
u8 canvas_id_vd1_2;
- struct drm_device *drm;
+ struct drm_device drm;
struct drm_crtc *crtc;
struct drm_plane *primary_plane;
struct drm_plane *overlay_plane;
diff --git a/drivers/gpu/drm/meson/meson_encoder_cvbs.c b/drivers/gpu/drm/meson/meson_encoder_cvbs.c
index d1191de855d9..ddca22c8c1ff 100644
--- a/drivers/gpu/drm/meson/meson_encoder_cvbs.c
+++ b/drivers/gpu/drm/meson/meson_encoder_cvbs.c
@@ -104,7 +104,7 @@ static int meson_encoder_cvbs_get_modes(struct drm_bridge *bridge,
for (i = 0; i < MESON_CVBS_MODES_COUNT; ++i) {
struct meson_cvbs_mode *meson_mode = &meson_cvbs_modes[i];
- mode = drm_mode_duplicate(priv->drm, &meson_mode->mode);
+ mode = drm_mode_duplicate(&priv->drm, &meson_mode->mode);
if (!mode) {
dev_err(priv->dev, "Failed to create a new display mode\n");
return 0;
@@ -221,7 +221,7 @@ static const struct drm_bridge_funcs meson_encoder_cvbs_bridge_funcs = {
int meson_encoder_cvbs_probe(struct meson_drm *priv)
{
- struct drm_device *drm = priv->drm;
+ struct drm_device *drm = &priv->drm;
struct meson_encoder_cvbs *meson_encoder_cvbs;
struct drm_connector *connector;
struct device_node *remote;
@@ -256,7 +256,7 @@ int meson_encoder_cvbs_probe(struct meson_drm *priv)
meson_encoder_cvbs->priv = priv;
/* Encoder */
- ret = drm_simple_encoder_init(priv->drm, &meson_encoder_cvbs->encoder,
+ ret = drm_simple_encoder_init(&priv->drm, &meson_encoder_cvbs->encoder,
DRM_MODE_ENCODER_TVDAC);
if (ret)
return dev_err_probe(priv->dev, ret,
@@ -273,7 +273,7 @@ int meson_encoder_cvbs_probe(struct meson_drm *priv)
}
/* Initialize & attach Bridge Connector */
- connector = drm_bridge_connector_init(priv->drm, &meson_encoder_cvbs->encoder);
+ connector = drm_bridge_connector_init(&priv->drm, &meson_encoder_cvbs->encoder);
if (IS_ERR(connector))
return dev_err_probe(priv->dev, PTR_ERR(connector),
"Unable to create CVBS bridge connector\n");
diff --git a/drivers/gpu/drm/meson/meson_overlay.c b/drivers/gpu/drm/meson/meson_overlay.c
index 7f98de38842b..60ee7f758723 100644
--- a/drivers/gpu/drm/meson/meson_overlay.c
+++ b/drivers/gpu/drm/meson/meson_overlay.c
@@ -484,7 +484,7 @@ static void meson_overlay_atomic_update(struct drm_plane *plane,
interlace_mode = new_state->crtc->mode.flags & DRM_MODE_FLAG_INTERLACE;
- spin_lock_irqsave(&priv->drm->event_lock, flags);
+ spin_lock_irqsave(&priv->drm.event_lock, flags);
if ((fb->modifier & DRM_FORMAT_MOD_AMLOGIC_FBC(0, 0)) ==
DRM_FORMAT_MOD_AMLOGIC_FBC(0, 0)) {
@@ -717,7 +717,7 @@ static void meson_overlay_atomic_update(struct drm_plane *plane,
priv->viu.vd1_enabled = true;
- spin_unlock_irqrestore(&priv->drm->event_lock, flags);
+ spin_unlock_irqrestore(&priv->drm.event_lock, flags);
DRM_DEBUG_DRIVER("\n");
}
@@ -838,7 +838,7 @@ int meson_overlay_create(struct meson_drm *priv)
DRM_DEBUG_DRIVER("\n");
- meson_overlay = devm_kzalloc(priv->drm->dev, sizeof(*meson_overlay),
+ meson_overlay = devm_kzalloc(priv->drm.dev, sizeof(*meson_overlay),
GFP_KERNEL);
if (!meson_overlay)
return -ENOMEM;
@@ -846,7 +846,7 @@ int meson_overlay_create(struct meson_drm *priv)
meson_overlay->priv = priv;
plane = &meson_overlay->base;
- drm_universal_plane_init(priv->drm, plane, 0xFF,
+ drm_universal_plane_init(&priv->drm, plane, 0xFF,
&meson_overlay_funcs,
supported_drm_formats,
ARRAY_SIZE(supported_drm_formats),
diff --git a/drivers/gpu/drm/meson/meson_plane.c b/drivers/gpu/drm/meson/meson_plane.c
index b43ac61201f3..13be94309bf4 100644
--- a/drivers/gpu/drm/meson/meson_plane.c
+++ b/drivers/gpu/drm/meson/meson_plane.c
@@ -157,7 +157,7 @@ static void meson_plane_atomic_update(struct drm_plane *plane,
* Update Buffer
* Enable Plane
*/
- spin_lock_irqsave(&priv->drm->event_lock, flags);
+ spin_lock_irqsave(&priv->drm.event_lock, flags);
/* Check if AFBC decoder is required for this buffer */
if ((meson_vpu_is_compatible(priv, VPU_COMPATIBLE_GXM) ||
@@ -393,7 +393,7 @@ static void meson_plane_atomic_update(struct drm_plane *plane,
priv->viu.osd1_enabled = true;
- spin_unlock_irqrestore(&priv->drm->event_lock, flags);
+ spin_unlock_irqrestore(&priv->drm.event_lock, flags);
}
static void meson_plane_atomic_disable(struct drm_plane *plane,
@@ -536,7 +536,7 @@ int meson_plane_create(struct meson_drm *priv)
const uint64_t *format_modifiers = format_modifiers_default;
int ret;
- meson_plane = devm_kzalloc(priv->drm->dev, sizeof(*meson_plane),
+ meson_plane = devm_kzalloc(priv->drm.dev, sizeof(*meson_plane),
GFP_KERNEL);
if (!meson_plane)
return -ENOMEM;
@@ -549,14 +549,14 @@ int meson_plane_create(struct meson_drm *priv)
else if (meson_vpu_is_compatible(priv, VPU_COMPATIBLE_G12A))
format_modifiers = format_modifiers_afbc_g12a;
- ret = drm_universal_plane_init(priv->drm, plane, 0xFF,
+ ret = drm_universal_plane_init(&priv->drm, plane, 0xFF,
&meson_plane_funcs,
supported_drm_formats,
ARRAY_SIZE(supported_drm_formats),
format_modifiers,
DRM_PLANE_TYPE_PRIMARY, "meson_primary_plane");
if (ret) {
- devm_kfree(priv->drm->dev, meson_plane);
+ devm_kfree(priv->drm.dev, meson_plane);
return ret;
}
--
2.30.2
1 day, 23 hours
- 3
- 7
[PATCH v1 2/2] selftest/mseal: Add tests for madvise fixes
by jeffxu@chromium.org
From: Jeff Xu <jeffxu(a)chromium.org>
Testcase for "Two fixes for madvise(MADV_DONTNEED) when sealed"
test_seal_madvise_prot_none
shall not block when mapping is PROT_NONE
test_madvise_filebacked_writable
shall not block writeable private filebacked mapping.
test_madvise_filebacked_was_writable - shall block.
shall block read-only private filebacked mapping which
was previously writable.
Fixes: 8be7258aad44 ("mseal: add mseal syscall")
Cc: <stable(a)vger.kernel.org> # 6.11.y: 67203f3f2a63: selftests/mm: add mseal test for no-discard madvise
Cc: <stable(a)vger.kernel.org> # 6.11.y: f28bdd1b17ec: selftests/mm: add more mseal traversal tests
Cc: <stable(a)vger.kernel.org> # 6.11.y
Signed-off-by: Jeff Xu <jeffxu(a)chromium.org>
---
tools/testing/selftests/mm/mseal_test.c | 118 +++++++++++++++++++++++-
1 file changed, 116 insertions(+), 2 deletions(-)
diff --git a/tools/testing/selftests/mm/mseal_test.c b/tools/testing/selftests/mm/mseal_test.c
index 01675c412b2a..fa74dbe4a684 100644
--- a/tools/testing/selftests/mm/mseal_test.c
+++ b/tools/testing/selftests/mm/mseal_test.c
@@ -1728,7 +1728,7 @@ static void test_seal_discard_ro_anon_on_filebacked(bool seal)
FAIL_TEST_IF_FALSE(!ret);
}
- /* sealing doesn't apply for file backed mapping. */
+ /* read-only private file-backed mapping, allow always */
ret = sys_madvise(ptr, size, MADV_DONTNEED);
FAIL_TEST_IF_FALSE(!ret);
@@ -1864,6 +1864,111 @@ static void test_seal_madvise_nodiscard(bool seal)
REPORT_TEST_PASS();
}
+static void test_seal_madvise_prot_none(bool seal)
+{
+ void *ptr;
+ unsigned long page_size = getpagesize();
+ unsigned long size = 4 * page_size;
+ int ret;
+
+ setup_single_address(size, &ptr);
+ FAIL_TEST_IF_FALSE(ptr != (void *)-1);
+
+ ret = sys_mprotect(ptr + page_size, page_size, PROT_NONE);
+ FAIL_TEST_IF_FALSE(!ret);
+
+ if (seal) {
+ ret = seal_single_address(ptr + page_size, page_size);
+ FAIL_TEST_IF_FALSE(!ret);
+ }
+
+ /* madvise(DONTNEED) should pass on PROT_NONE sealed VMA */
+ ret = sys_madvise(ptr + page_size, page_size, MADV_DONTNEED);
+ FAIL_TEST_IF_FALSE(!ret);
+
+ REPORT_TEST_PASS();
+}
+
+static void test_madvise_filebacked_writable(bool seal)
+{
+ void *ptr;
+ unsigned long page_size = getpagesize();
+ unsigned long size = 4 * page_size;
+ int ret;
+ int fd;
+ unsigned long mapflags = MAP_PRIVATE;
+
+ fd = memfd_create("test", 0);
+ FAIL_TEST_IF_FALSE(fd > 0);
+
+ ret = fallocate(fd, 0, 0, size);
+ FAIL_TEST_IF_FALSE(!ret);
+
+ ptr = mmap(NULL, size, PROT_READ|PROT_WRITE, mapflags, fd, 0);
+ FAIL_TEST_IF_FALSE(ptr != MAP_FAILED);
+
+ if (seal) {
+ ret = sys_mseal(ptr, size);
+ FAIL_TEST_IF_FALSE(!ret);
+ }
+
+ /* sealing doesn't apply for writeable file-backed mapping. */
+ ret = sys_madvise(ptr, size, MADV_DONTNEED);
+ FAIL_TEST_IF_FALSE(!ret);
+
+ ret = sys_munmap(ptr, size);
+ if (seal)
+ FAIL_TEST_IF_FALSE(ret < 0);
+ else
+ FAIL_TEST_IF_FALSE(!ret);
+ close(fd);
+
+ REPORT_TEST_PASS();
+}
+
+static void test_madvise_filebacked_was_writable(bool seal)
+{
+ void *ptr;
+ unsigned long page_size = getpagesize();
+ unsigned long size = 4 * page_size;
+ int ret;
+ int fd;
+ unsigned long mapflags = MAP_PRIVATE;
+
+ fd = memfd_create("test", 0);
+ FAIL_TEST_IF_FALSE(fd > 0);
+
+ ret = fallocate(fd, 0, 0, size);
+ FAIL_TEST_IF_FALSE(!ret);
+
+ ptr = mmap(NULL, size, PROT_READ|PROT_WRITE, mapflags, fd, 0);
+ FAIL_TEST_IF_FALSE(ptr != MAP_FAILED);
+
+ ret = sys_mprotect(ptr, size, PROT_READ);
+ FAIL_TEST_IF_FALSE(!ret);
+
+ if (seal) {
+ ret = sys_mseal(ptr, size);
+ FAIL_TEST_IF_FALSE(!ret);
+ }
+
+ /* read-only file-backed mapping, was writable. */
+ ret = sys_madvise(ptr, size, MADV_DONTNEED);
+ if (seal)
+ FAIL_TEST_IF_FALSE(ret < 0);
+ else
+ FAIL_TEST_IF_FALSE(!ret);
+
+ ret = sys_munmap(ptr, size);
+ if (seal)
+ FAIL_TEST_IF_FALSE(ret < 0);
+ else
+ FAIL_TEST_IF_FALSE(!ret);
+ close(fd);
+
+ REPORT_TEST_PASS();
+}
+
int main(int argc, char **argv)
{
bool test_seal = seal_support();
@@ -1876,7 +1981,7 @@ int main(int argc, char **argv)
if (!pkey_supported())
ksft_print_msg("PKEY not supported\n");
- ksft_set_plan(88);
+ ksft_set_plan(94);
test_seal_addseal();
test_seal_unmapped_start();
@@ -1985,5 +2090,14 @@ int main(int argc, char **argv)
test_seal_discard_ro_anon_on_pkey(false);
test_seal_discard_ro_anon_on_pkey(true);
+ test_seal_madvise_prot_none(false);
+ test_seal_madvise_prot_none(true);
+
+ test_madvise_filebacked_writable(false);
+ test_madvise_filebacked_writable(true);
+
+ test_madvise_filebacked_was_writable(false);
+ test_madvise_filebacked_was_writable(true);
+
ksft_finished();
}
--
2.47.0.rc1.288.g06298d1525-goog
1 day, 23 hours
- 2
- 1
[PATCH v3 2/2] wifi: ath12k: fix warning when unbinding
by Jose Ignacio Tornos Martinez
If there is an error during some initialization related to firmware,
the buffers dp->tx_ring[i].tx_status are released.
However this is released again when the device is unbinded (ath12k_pci),
and we get:
WARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80
Call Trace:
free_large_kmalloc
ath12k_dp_free
ath12k_core_deinit
ath12k_pci_remove
...
The issue is always reproducible from a VM because the MSI addressing
initialization is failing.
In order to fix the issue, just set the buffers to NULL after releasing in
order to avoid the double free.
cc: stable(a)vger.kernel.org
Fixes: d889913205cf ("wifi: ath12k: driver for Qualcomm Wi-Fi 7 devices")
Signed-off-by: Jose Ignacio Tornos Martinez <jtornosm(a)redhat.com>
---
v3:
- Remove unnecessary check to not free if buffer is NULL.
- Trim backtrace.
- Fix typos.
v2: https://lore.kernel.org/linux-wireless/20241016123722.206899-1-jtornosm@red…
v1: https://lore.kernel.org/linux-wireless/20241010175102.207324-3-jtornosm@red…
drivers/net/wireless/ath/ath12k/dp.c | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git a/drivers/net/wireless/ath/ath12k/dp.c b/drivers/net/wireless/ath/ath12k/dp.c
index 789d430e4455..15061782a2df 100644
--- a/drivers/net/wireless/ath/ath12k/dp.c
+++ b/drivers/net/wireless/ath/ath12k/dp.c
@@ -1277,8 +1277,10 @@ void ath12k_dp_free(struct ath12k_base *ab)
ath12k_dp_rx_reo_cmd_list_cleanup(ab);
- for (i = 0; i < ab->hw_params->max_tx_ring; i++)
+ for (i = 0; i < ab->hw_params->max_tx_ring; i++) {
kfree(dp->tx_ring[i].tx_status);
+ dp->tx_ring[i].tx_status = NULL;
+ }
ath12k_dp_rx_free(ab);
/* Deinit any SOC level resource */
--
2.47.0
2 days
- 1
- 0