- Linux-stable-mirror - lists.linaro.org

[PATCH] ceph: Drop the string reference in __ceph_pool_perm_get()

by Haoxiang Li

After calling ceph_get_string(), ceph_put_string() is required to drop the reference in error paths. Fixes: 779fe0fb8e18 ("ceph: rados pool namespace support") Cc: stable(a)vger.kernel.org Signed-off-by: Haoxiang Li <lihaoxiang(a)isrc.iscas.ac.cn> --- fs/ceph/addr.c | 16 +++++++++------- 1 file changed, 9 insertions(+), 7 deletions(-) diff --git a/fs/ceph/addr.c b/fs/ceph/addr.c index 322ed268f14a..690a54b4c316 100644 --- a/fs/ceph/addr.c +++ b/fs/ceph/addr.c @@ -2440,13 +2440,13 @@ static int __ceph_pool_perm_get(struct ceph_inode_info *ci, err = ceph_osdc_alloc_messages(rd_req, GFP_NOFS); if (err) - goto out_unlock; + goto put_string; wr_req = ceph_osdc_alloc_request(&fsc->client->osdc, NULL, 1, false, GFP_NOFS); if (!wr_req) { err = -ENOMEM; - goto out_unlock; + goto put_string; } wr_req->r_flags = CEPH_OSD_FLAG_WRITE; @@ -2456,13 +2456,13 @@ static int __ceph_pool_perm_get(struct ceph_inode_info *ci, err = ceph_osdc_alloc_messages(wr_req, GFP_NOFS); if (err) - goto out_unlock; + goto put_string; /* one page should be large enough for STAT data */ pages = ceph_alloc_page_vector(1, GFP_KERNEL); if (IS_ERR(pages)) { err = PTR_ERR(pages); - goto out_unlock; + goto put_string; } osd_req_op_raw_data_in_pages(rd_req, 0, pages, PAGE_SIZE, @@ -2480,7 +2480,7 @@ static int __ceph_pool_perm_get(struct ceph_inode_info *ci, else if (err != -EPERM) { if (err == -EBLOCKLISTED) fsc->blocklisted = true; - goto out_unlock; + goto put_string; } if (err2 == 0 || err2 == -EEXIST) @@ -2489,14 +2489,14 @@ static int __ceph_pool_perm_get(struct ceph_inode_info *ci, if (err2 == -EBLOCKLISTED) fsc->blocklisted = true; err = err2; - goto out_unlock; + goto put_string; } pool_ns_len = pool_ns ? pool_ns->len : 0; perm = kmalloc(struct_size(perm, pool_ns, pool_ns_len + 1), GFP_NOFS); if (!perm) { err = -ENOMEM; - goto out_unlock; + goto put_string; } perm->pool = pool; @@ -2509,6 +2509,8 @@ static int __ceph_pool_perm_get(struct ceph_inode_info *ci, rb_link_node(&perm->node, parent, p); rb_insert_color(&perm->node, &mdsc->pool_perm_tree); err = 0; +put_string: + ceph_put_string(rd_req->r_base_oloc.pool_ns); out_unlock: up_write(&mdsc->pool_perm_rwsem); -- 2.25.1

3 days, 23 hours

2
1
0 0

[PATCH] nfsd: Drop the client reference in client_states_open()

by Haoxiang Li

In error path, call drop_client() to drop the reference obtained by get_nfsdfs_clp(). Fixes: a204f25e372d ("nfsd: create get_nfsdfs_clp helper") Cc: stable(a)vger.kernel.org Signed-off-by: Haoxiang Li <lihaoxiang(a)isrc.iscas.ac.cn> --- fs/nfsd/nfs4state.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/fs/nfsd/nfs4state.c b/fs/nfsd/nfs4state.c index 8a6960500217..caa0756b6914 100644 --- a/fs/nfsd/nfs4state.c +++ b/fs/nfsd/nfs4state.c @@ -3097,8 +3097,10 @@ static int client_states_open(struct inode *inode, struct file *file) return -ENXIO; ret = seq_open(file, &states_seq_ops); - if (ret) + if (ret) { + drop_client(clp); return ret; + } s = file->private_data; s->private = clp; return 0; -- 2.25.1

4 days

3
4
0 0

[PATCH] iio: adc: PAC1934: Fix clamped value in pac1934_reg_snapshot

by Thorsten Blum

The local variable 'curr_energy' was never clamped to PAC_193X_MIN_POWER_ACC or PAC_193X_MAX_POWER_ACC because the return value of clamp() was not used. Fix this by assigning the clamped value back to 'curr_energy'. Cc: stable(a)vger.kernel.org Fixes: 0fb528c8255b ("iio: adc: adding support for PAC193x") Signed-off-by: Thorsten Blum <thorsten.blum(a)linux.dev> --- drivers/iio/adc/pac1934.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/drivers/iio/adc/pac1934.c b/drivers/iio/adc/pac1934.c index 48df16509260..256488d3936b 100644 --- a/drivers/iio/adc/pac1934.c +++ b/drivers/iio/adc/pac1934.c @@ -665,7 +665,8 @@ static int pac1934_reg_snapshot(struct pac1934_chip_info *info, /* add the power_acc field */ curr_energy += inc; - clamp(curr_energy, PAC_193X_MIN_POWER_ACC, PAC_193X_MAX_POWER_ACC); + curr_energy = clamp(curr_energy, PAC_193X_MIN_POWER_ACC, + PAC_193X_MAX_POWER_ACC); reg_data->energy_sec_acc[cnt] = curr_energy; } -- Thorsten Blum <thorsten.blum(a)linux.dev> GPG: 1D60 735E 8AEF 3BE4 73B6 9D84 7336 78FD 8DFE EAD4

4 days, 2 hours

3
2
0 0

[PATCH] nfs/localio: fix regression due to out-of-order __put_cred

by Trond Myklebust

From: Mike Snitzer <snitzer(a)kernel.org> commit 3af870aedbff10bfed220e280b57a405e972229f upstream. Commit f2060bdc21d7 ("nfs/localio: add refcounting for each iocb IO associated with NFS pgio header") inadvertantly reintroduced the same potential for __put_cred() triggering BUG_ON(cred == current->cred) that commit 992203a1fba5 ("nfs/localio: restore creds before releasing pageio data") fixed. Fix this by saving and restoring the cred around each {read,write}_iter call within the respective for loop of nfs_local_call_{read,write}. Reported-by: Zorro Lang <zlang(a)redhat.com> Fixes: f2060bdc21d7 ("nfs/localio: add refcounting for each iocb IO associated with NFS pgio header") Cc: <stable(a)vger.kernel.org> # 6.18.x Signed-off-by: Mike Snitzer <snitzer(a)kernel.org> Signed-off-by: Trond Myklebust <trond.myklebust(a)hammerspace.com> --- fs/nfs/localio.c | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/fs/nfs/localio.c b/fs/nfs/localio.c index 656976b4f42c..ee635172d68a 100644 --- a/fs/nfs/localio.c +++ b/fs/nfs/localio.c @@ -625,8 +625,6 @@ static void nfs_local_call_read(struct work_struct *work) ssize_t status; int n_iters; - save_cred = override_creds(filp->f_cred); - n_iters = atomic_read(&iocb->n_iters); for (int i = 0; i < n_iters ; i++) { if (iocb->iter_is_dio_aligned[i]) { @@ -639,7 +637,10 @@ static void nfs_local_call_read(struct work_struct *work) } else iocb->kiocb.ki_flags &= ~IOCB_DIRECT; + save_cred = override_creds(filp->f_cred); status = filp->f_op->read_iter(&iocb->kiocb, &iocb->iters[i]); + revert_creds(save_cred); + if (status != -EIOCBQUEUED) { if (unlikely(status >= 0 && status < iocb->iters[i].count)) force_done = true; /* Partial read */ @@ -649,8 +650,6 @@ static void nfs_local_call_read(struct work_struct *work) } } } - - revert_creds(save_cred); } static int @@ -832,7 +831,6 @@ static void nfs_local_call_write(struct work_struct *work) int n_iters; current->flags |= PF_LOCAL_THROTTLE | PF_MEMALLOC_NOIO; - save_cred = override_creds(filp->f_cred); file_start_write(filp); n_iters = atomic_read(&iocb->n_iters); @@ -847,7 +845,10 @@ static void nfs_local_call_write(struct work_struct *work) } else iocb->kiocb.ki_flags &= ~IOCB_DIRECT; + save_cred = override_creds(filp->f_cred); status = filp->f_op->write_iter(&iocb->kiocb, &iocb->iters[i]); + revert_creds(save_cred); + if (status != -EIOCBQUEUED) { if (unlikely(status >= 0 && status < iocb->iters[i].count)) force_done = true; /* Partial write */ @@ -859,7 +860,6 @@ static void nfs_local_call_write(struct work_struct *work) } file_end_write(filp); - revert_creds(save_cred); current->flags = old_flags; } -- 2.52.0

4 days, 11 hours

2
2
0 0

Please apply 5b1e38c0792cc7a44997328de37d393f81b2501a to 5.15

by Nathan Chancellor

Hi stable folks, Please apply commit 5b1e38c0792c ("dpaa2-mac: bail if the dpmacs fwnode is not found") to 5.15, where it addresses an instance of -Wsometimes-uninitialized with clang-21 and newer, introduced by commit 3264f599c1a8 ("net: dpaa2-mac: Add ACPI support for DPAA2 MAC driver") in 5.14. drivers/net/ethernet/freescale/dpaa2/dpaa2-mac.c:54:13: error: variable 'parent' is used uninitialized whenever 'if' condition is false [-Werror,-Wsometimes-uninitialized] 54 | } else if (is_acpi_node(fwnode)) { | ^~~~~~~~~~~~~~~~~~~~ drivers/net/ethernet/freescale/dpaa2/dpaa2-mac.c:58:29: note: uninitialized use occurs here 58 | fwnode_for_each_child_node(parent, child) { | ^~~~~~ drivers/net/ethernet/freescale/dpaa2/dpaa2-mac.c:54:9: note: remove the 'if' if its condition is always true 54 | } else if (is_acpi_node(fwnode)) { | ^~~~~~~~~~~~~~~~~~~~~~~~~ drivers/net/ethernet/freescale/dpaa2/dpaa2-mac.c:43:39: note: initialize the variable 'parent' to silence this warning 43 | struct fwnode_handle *fwnode, *parent, *child = NULL; | ^ | = NULL It applies and builds cleanly for me. If there are any issues, please let me know. Cheers, Nathan

4 days, 15 hours

2
1
0 0

Apply fc7bf4c0d65a342b29fe38c332db3fe900b481b9 to 5.15

by Nathan Chancellor

Hi stable folks, Please apply commit fc7bf4c0d65a ("drm/i915/selftests: Fix inconsistent IS_ERR and PTR_ERR") to 5.15, where it resolves a couple of instances of -Wuninitialized with clang-21 or newer that were introduced by commit cdb35d1ed6d2 ("drm/i915/gem: Migrate to system at dma-buf attach time (v7)") in 5.15. In file included from drivers/gpu/drm/i915/gem/i915_gem_dmabuf.c:329: drivers/gpu/drm/i915/gem/selftests/i915_gem_dmabuf.c:105:18: error: variable 'dmabuf' is uninitialized when used here [-Werror,-Wuninitialized] 105 | PTR_ERR(dmabuf)); | ^~~~~~ drivers/gpu/drm/i915/gem/selftests/i915_gem_dmabuf.c:94:24: note: initialize the variable 'dmabuf' to silence this warning 94 | struct dma_buf *dmabuf; | ^ | = NULL drivers/gpu/drm/i915/gem/selftests/i915_gem_dmabuf.c:161:18: error: variable 'dmabuf' is uninitialized when used here [-Werror,-Wuninitialized] 161 | PTR_ERR(dmabuf)); | ^~~~~~ drivers/gpu/drm/i915/gem/selftests/i915_gem_dmabuf.c:149:24: note: initialize the variable 'dmabuf' to silence this warning 149 | struct dma_buf *dmabuf; | ^ | = NULL It applies and builds cleanly for me. If there are any issues, please let me know. Cheers, Nathan

4 days, 15 hours

2
1
0 0

Apply ccc35ff2fd2911986b716a87fe65e03fac2312c9 to 5.15, 6.1, and 6.6

by Nathan Chancellor

Hi stable folks, Please apply commit ccc35ff2fd29 ("leds: spi-byte: Use devm_led_classdev_register_ext()") to 5.15, 6.1, and 6.6. It inadvertently addresses an instance of -Wuninitialized visible with clang-21 and newer: drivers/leds/leds-spi-byte.c:99:26: error: variable 'child' is uninitialized when used here [-Werror,-Wuninitialized] 99 | of_property_read_string(child, "label", &name); | ^~~~~ drivers/leds/leds-spi-byte.c:83:27: note: initialize the variable 'child' to silence this warning 83 | struct device_node *child; | ^ | = NULL It applies cleanly to 6.6. I have attached a backport for 6.1 and 5.15, which can be generated locally with: $ git format-patch -1 --stdout ccc35ff2fd2911986b716a87fe65e03fac2312c9 | sed 's;strscpy;strlcpy;' | patch -p1 This change seems safe to me but if I am missing a massive dependency chain, an alternative would be moving child's initialization up in these stable branches. Cheers, Nathan diff --git a/drivers/leds/leds-spi-byte.c b/drivers/leds/leds-spi-byte.c index 82696e0607a5..7dd876df8b36 100644 --- a/drivers/leds/leds-spi-byte.c +++ b/drivers/leds/leds-spi-byte.c @@ -96,6 +96,7 @@ static int spi_byte_probe(struct spi_device *spi) if (!led) return -ENOMEM; + child = of_get_next_available_child(dev_of_node(dev), NULL); of_property_read_string(child, "label", &name); strlcpy(led->name, name, sizeof(led->name)); led->spi = spi; @@ -106,7 +107,6 @@ static int spi_byte_probe(struct spi_device *spi) led->ldev.max_brightness = led->cdef->max_value - led->cdef->off_value; led->ldev.brightness_set_blocking = spi_byte_brightness_set_blocking; - child = of_get_next_available_child(dev_of_node(dev), NULL); state = of_get_property(child, "default-state", NULL); if (state) { if (!strcmp(state, "on")) {

4 days, 15 hours

2
1
0 0

[PATCH AUTOSEL 6.18-6.1] ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency

by Sasha Levin

From: Namjae Jeon <linkinjeon(a)kernel.org> [ Upstream commit b39a1833cc4a2755b02603eec3a71a85e9dff926 ] Under high concurrency, A tree-connection object (tcon) is freed on a disconnect path while another path still holds a reference and later executes *_put()/write on it. Reported-by: Qianchang Zhao <pioooooooooip(a)gmail.com> Reported-by: Zhitong Liu <liuzhitong1993(a)gmail.com> Signed-off-by: Namjae Jeon <linkinjeon(a)kernel.org> Signed-off-by: Steve French <stfrench(a)microsoft.com> Signed-off-by: Sasha Levin <sashal(a)kernel.org> --- LLM Generated explanations, may be completely bogus: fs/smb/server/mgmt/tree_connect.c | 18 ++++-------------- fs/smb/server/mgmt/tree_connect.h | 1 - fs/smb/server/smb2pdu.c | 3 --- 3 files changed, 4 insertions(+), 18 deletions(-) diff --git a/fs/smb/server/mgmt/tree_connect.c b/fs/smb/server/mgmt/tree_connect.c index ecfc575086712..d3483d9c757c7 100644 --- a/fs/smb/server/mgmt/tree_connect.c +++ b/fs/smb/server/mgmt/tree_connect.c @@ -78,7 +78,6 @@ ksmbd_tree_conn_connect(struct ksmbd_work *work, const char *share_name) tree_conn->t_state = TREE_NEW; status.tree_conn = tree_conn; atomic_set(&tree_conn->refcount, 1); - init_waitqueue_head(&tree_conn->refcount_q); ret = xa_err(xa_store(&sess->tree_conns, tree_conn->id, tree_conn, KSMBD_DEFAULT_GFP)); @@ -100,14 +99,8 @@ ksmbd_tree_conn_connect(struct ksmbd_work *work, const char *share_name) void ksmbd_tree_connect_put(struct ksmbd_tree_connect *tcon) { - /* - * Checking waitqueue to releasing tree connect on - * tree disconnect. waitqueue_active is safe because it - * uses atomic operation for condition. - */ - if (!atomic_dec_return(&tcon->refcount) && - waitqueue_active(&tcon->refcount_q)) - wake_up(&tcon->refcount_q); + if (atomic_dec_and_test(&tcon->refcount)) + kfree(tcon); } int ksmbd_tree_conn_disconnect(struct ksmbd_session *sess, @@ -119,14 +112,11 @@ int ksmbd_tree_conn_disconnect(struct ksmbd_session *sess, xa_erase(&sess->tree_conns, tree_conn->id); write_unlock(&sess->tree_conns_lock); - if (!atomic_dec_and_test(&tree_conn->refcount)) - wait_event(tree_conn->refcount_q, - atomic_read(&tree_conn->refcount) == 0); - ret = ksmbd_ipc_tree_disconnect_request(sess->id, tree_conn->id); ksmbd_release_tree_conn_id(sess, tree_conn->id); ksmbd_share_config_put(tree_conn->share_conf); - kfree(tree_conn); + if (atomic_dec_and_test(&tree_conn->refcount)) + kfree(tree_conn); return ret; } diff --git a/fs/smb/server/mgmt/tree_connect.h b/fs/smb/server/mgmt/tree_connect.h index a42cdd0510411..f0023d86716f2 100644 --- a/fs/smb/server/mgmt/tree_connect.h +++ b/fs/smb/server/mgmt/tree_connect.h @@ -33,7 +33,6 @@ struct ksmbd_tree_connect { int maximal_access; bool posix_extensions; atomic_t refcount; - wait_queue_head_t refcount_q; unsigned int t_state; }; diff --git a/fs/smb/server/smb2pdu.c b/fs/smb/server/smb2pdu.c index a2830ec67e782..dba29881debdc 100644 --- a/fs/smb/server/smb2pdu.c +++ b/fs/smb/server/smb2pdu.c @@ -2200,7 +2200,6 @@ int smb2_tree_disconnect(struct ksmbd_work *work) goto err_out; } - WARN_ON_ONCE(atomic_dec_and_test(&tcon->refcount)); tcon->t_state = TREE_DISCONNECTED; write_unlock(&sess->tree_conns_lock); @@ -2210,8 +2209,6 @@ int smb2_tree_disconnect(struct ksmbd_work *work) goto err_out; } - work->tcon = NULL; - rsp->StructureSize = cpu_to_le16(4); err = ksmbd_iov_pin_rsp(work, rsp, sizeof(struct smb2_tree_disconnect_rsp)); -- 2.51.0

4 days, 17 hours

2
28
0 0

Linux 6.17.11

by Greg Kroah-Hartman

I'm announcing the release of the 6.17.11 kernel. All users of the 6.17 kernel series must upgrade. The updated 6.17.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-6.17.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/boot/dts/nxp/imx/imx6ul.dtsi | 2 arch/arm64/boot/dts/freescale/imx8dxl-ss-conn.dtsi | 4 arch/arm64/boot/dts/freescale/imx8dxl-ss-hsio.dtsi | 5 arch/arm64/boot/dts/freescale/imx8qm-mek.dts | 4 arch/arm64/kernel/acpi.c | 10 arch/mips/mm/tlb-r4k.c | 116 ++++--- arch/riscv/boot/dts/allwinner/sun20i-d1s.dtsi | 2 arch/x86/events/core.c | 10 drivers/atm/fore200e.c | 2 drivers/bluetooth/btusb.c | 39 ++ drivers/counter/microchip-tcb-capture.c | 2 drivers/firmware/stratix10-svc.c | 7 drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 2 drivers/gpu/drm/amd/amdgpu/amdgpu_gmc.c | 3 drivers/gpu/drm/amd/amdgpu/amdgpu_vm.c | 2 drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 15 drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_helpers.c | 8 drivers/gpu/drm/amd/display/dc/core/dc_stream.c | 11 drivers/gpu/drm/amd/display/dc/hwss/dce110/dce110_hwseq.c | 1 drivers/gpu/drm/amd/display/dc/hwss/dcn20/dcn20_hwseq.c | 2 drivers/gpu/drm/amd/display/dc/hwss/dcn401/dcn401_hwseq.c | 2 drivers/gpu/drm/amd/display/dc/link/link_dpms.c | 3 drivers/gpu/drm/amd/display/dc/virtual/virtual_stream_encoder.c | 7 drivers/gpu/drm/bridge/sii902x.c | 20 - drivers/gpu/drm/drm_fb_helper.c | 14 drivers/gpu/drm/i915/display/intel_display.c | 8 drivers/gpu/drm/i915/display/intel_psr.c | 6 drivers/gpu/drm/sti/sti_vtg.c | 7 drivers/gpu/drm/xe/xe_gt_clock.c | 7 drivers/gpu/drm/xe/xe_guc_ct.c | 3 drivers/iio/accel/adxl355_core.c | 44 ++ drivers/iio/accel/bmc150-accel-core.c | 5 drivers/iio/accel/bmc150-accel.h | 1 drivers/iio/adc/ad4030.c | 2 drivers/iio/adc/ad7124.c | 12 drivers/iio/adc/ad7280a.c | 2 drivers/iio/adc/ad7380.c | 8 drivers/iio/adc/rtq6056.c | 2 drivers/iio/adc/stm32-dfsdm-adc.c | 5 drivers/iio/buffer/industrialio-buffer-dma.c | 6 drivers/iio/buffer/industrialio-buffer-dmaengine.c | 2 drivers/iio/common/ssp_sensors/ssp_dev.c | 4 drivers/iio/humidity/hdc3020.c | 73 ++-- drivers/iio/imu/st_lsm6dsx/st_lsm6dsx.h | 40 +- drivers/iio/imu/st_lsm6dsx/st_lsm6dsx_core.c | 19 - drivers/iio/industrialio-buffer.c | 21 + drivers/iio/pressure/bmp280-core.c | 15 drivers/iommu/iommufd/driver.c | 2 drivers/mailbox/mailbox-test.c | 2 drivers/mailbox/mtk-cmdq-mailbox.c | 45 +- drivers/mailbox/pcc.c | 8 drivers/md/dm-verity-fec.c | 6 drivers/mmc/host/sdhci-of-dwcmshc.c | 29 + drivers/most/most_usb.c | 14 drivers/net/can/rcar/rcar_canfd.c | 53 +-- drivers/net/can/sja1000/sja1000.c | 4 drivers/net/can/sun4i_can.c | 4 drivers/net/can/usb/gs_usb.c | 100 +++++- drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c | 4 drivers/net/dsa/microchip/ksz_common.c | 31 - drivers/net/dsa/microchip/ksz_ptp.c | 22 - drivers/net/dsa/sja1105/sja1105_main.c | 7 drivers/net/ethernet/aquantia/atlantic/aq_hw_utils.c | 22 + drivers/net/ethernet/aquantia/atlantic/aq_hw_utils.h | 1 drivers/net/ethernet/aquantia/atlantic/aq_ring.c | 5 drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_b0.c | 19 - drivers/net/ethernet/aquantia/atlantic/hw_atl2/hw_atl2.c | 2 drivers/net/ethernet/freescale/fec.h | 1 drivers/net/ethernet/freescale/fec_ptp.c | 64 +++- drivers/net/ethernet/mellanox/mlx5/core/en_dcbnl.c | 2 drivers/net/ethernet/meta/fbnic/fbnic_fw.c | 2 drivers/net/ethernet/microchip/lan966x/lan966x_ptp.c | 5 drivers/net/ethernet/realtek/r8169_main.c | 19 - drivers/net/ethernet/samsung/sxgbe/sxgbe_main.c | 4 drivers/net/phy/mxl-gpy.c | 20 - drivers/net/team/team_core.c | 23 - drivers/net/tun_vnet.h | 2 drivers/net/veth.c | 7 drivers/net/virtio_net.c | 3 drivers/net/wwan/mhi_wwan_mbim.c | 2 drivers/nvmem/layouts.c | 2 drivers/platform/x86/intel/punit_ipc.c | 2 drivers/pmdomain/tegra/powergate-bpmp.c | 1 drivers/regulator/rtq2208-regulator.c | 6 drivers/slimbus/qcom-ngd-ctrl.c | 1 drivers/spi/Kconfig | 4 drivers/spi/spi-amlogic-spifc-a1.c | 4 drivers/spi/spi-bcm63xx.c | 14 drivers/spi/spi-cadence-quadspi.c | 18 - drivers/spi/spi-nxp-fspi.c | 28 + drivers/thunderbolt/nhi.c | 2 drivers/thunderbolt/nhi.h | 1 drivers/tty/serial/8250/8250.h | 4 drivers/tty/serial/8250/8250_platform.c | 2 drivers/tty/serial/8250/8250_rsa.c | 26 + drivers/tty/serial/8250/Makefile | 2 drivers/tty/serial/amba-pl011.c | 2 drivers/usb/cdns3/cdns3-pci-wrap.c | 5 drivers/usb/dwc3/core.c | 3 drivers/usb/dwc3/dwc3-pci.c | 80 ++--- drivers/usb/dwc3/ep0.c | 1 drivers/usb/dwc3/gadget.c | 7 drivers/usb/gadget/function/f_eem.c | 7 drivers/usb/gadget/udc/core.c | 18 + drivers/usb/gadget/udc/renesas_usbf.c | 4 drivers/usb/gadget/udc/trace.h | 5 drivers/usb/host/xhci-dbgcap.h | 1 drivers/usb/host/xhci-dbgtty.c | 23 + drivers/usb/host/xhci-ring.c | 15 drivers/usb/host/xhci.c | 1 drivers/usb/renesas_usbhs/common.c | 14 drivers/usb/serial/ftdi_sio.c | 1 drivers/usb/serial/ftdi_sio_ids.h | 1 drivers/usb/serial/option.c | 10 drivers/usb/storage/sddr55.c | 6 drivers/usb/storage/transport.c | 16 + drivers/usb/storage/uas.c | 5 drivers/usb/storage/unusual_devs.h | 2 drivers/usb/typec/ucsi/psy.c | 5 drivers/vhost/net.c | 53 ++- drivers/vhost/vhost.c | 76 +++- drivers/vhost/vhost.h | 10 drivers/video/fbdev/core/fbcon.c | 9 fs/afs/cell.c | 43 -- fs/afs/internal.h | 1 fs/afs/security.c | 49 ++- fs/namespace.c | 7 fs/overlayfs/util.c | 4 fs/smb/client/connect.c | 1 include/linux/iio/buffer-dma.h | 1 include/linux/iio/buffer_impl.h | 2 include/linux/mailbox/mtk-cmdq-mailbox.h | 10 include/linux/usb/gadget.h | 5 include/linux/virtio_net.h | 7 include/net/bluetooth/hci_core.h | 21 - io_uring/net.c | 6 kernel/dma/direct.c | 1 kernel/time/timekeeping.c | 4 kernel/trace/trace.c | 10 mm/huge_memory.c | 22 - mm/memfd.c | 27 + mm/swapfile.c | 4 net/bluetooth/hci_core.c | 89 ++--- net/bluetooth/hci_sock.c | 2 net/bluetooth/iso.c | 30 + net/bluetooth/l2cap_core.c | 23 + net/bluetooth/sco.c | 35 +- net/bluetooth/smp.c | 31 - net/ceph/auth_x.c | 2 net/ceph/ceph_common.c | 53 ++- net/ceph/debugfs.c | 14 net/ceph/messenger_v2.c | 11 net/ceph/osdmap.c | 18 - net/mctp/route.c | 1 net/mptcp/protocol.c | 19 + net/xdp/xsk.c | 160 ++++++---- sound/hda/codecs/cirrus/cs420x.c | 1 sound/usb/quirks.c | 3 159 files changed, 1533 insertions(+), 802 deletions(-) Achim Gratz (1): iio: pressure: bmp280: correct meas_time_us calculation Alan Borzeszkowski (1): thunderbolt: Add support for Intel Wildcat Lake Alan Stern (1): USB: storage: Remove subclass and protocol overrides from Novatek quirk Alex Deucher (2): drm/amdgpu: fix cyan_skillfish2 gpu info fw handling Revert "drm/amd/display: Move setup_stream_attribute" Alex Hung (1): drm/amd/display: Check NULL before accessing Alexey Kodanev (1): net: sxgbe: fix potential NULL dereference in sxgbe_rx() Andrei Vagin (1): fs/namespace: fix reference leak in grab_requested_mnt_ns Andy Shevchenko (1): spi: nxp-fspi: Propagate fwnode in ACPI case as well Anurag Dutta (2): spi: spi-cadence-quadspi: Remove duplicate pm_runtime_put_autosuspend() call spi: spi-cadence-quadspi: Enable pm runtime earlier to avoid imbalance Bastien Curutchet (Schneider Electric) (5): net: dsa: microchip: common: Fix checks on irq_find_mapping() net: dsa: microchip: ptp: Fix checks on irq_find_mapping() net: dsa: microchip: Don't free uninitialized ksz_irq net: dsa: microchip: Free previously initialized ports on init failures net: dsa: microchip: Fix symetry in ksz_ptp_msg_irq_{setup/free}() Biju Das (1): can: rcar_canfd: Fix CAN-FD mode as default ChiYuan Huang (3): iio: adc: rtq6056: Correct the sign bit index regulator: rtq2208: Correct buck group2 phase mapping logic regulator: rtq2208: Correct LDO2 logic judgment bits Chris Lu (1): Bluetooth: btusb: mediatek: Fix kernel crash when releasing mtk iso interface Christophe JAILLET (1): iio:common:ssp_sensors: Fix an error handling path ssp_probe() Claudiu Beznea (1): usb: renesas_usbhs: Fix synchronous external abort on unbind Dan Carpenter (2): platform/x86: intel: punit_ipc: fix memory corruption timekeeping: Fix error code in tk_aux_sysfs_init() Daniel Golle (2): net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs Danielle Costantino (1): net/mlx5e: Fix validation logic in rate limiting David Howells (2): afs: Fix delayed allocation of a cell's anonymous key afs: Fix uninit var in afs_alloc_anon_key() David Lechner (3): iio: adc: ad7124: fix temperature channel iio: adc: ad7280a: fix ad7280_store_balance_timer() iio: adc: ad7380: fix SPI offload trigger rate Deepanshu Kartikey (2): tracing: Fix WARN_ON in tracing_buffers_mmap_close for split VMAs mm/memfd: fix information leak in hugetlb folios Desnes Nunes (1): usb: storage: Fix memory leak in USB bulk transport Devarsh Thakkar (1): drm/bridge: sii902x: Fix HDMI detection with DRM_BRIDGE_ATTACH_NO_CONNECTOR Dharma Balasubiramani (1): counter: microchip-tcb-capture: Allow shared IRQ for multi-channel TCBs Dimitri Fedrau (2): iio: humditiy: hdc3020: fix units for temperature and humidity measurement iio: humditiy: hdc3020: fix units for thresholds and hysteresis Douglas Anderson (1): Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref Edward Adam Davis (1): Bluetooth: hci_sock: Prevent race in socket write iter and sock bind Fernando Fernandez Mancera (1): xsk: avoid data corruption on cq descriptor number Francesco Lavra (2): spi: tegra114: remove Kconfig dependency on TEGRA20_APB_DMA iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields Frank Li (2): arm64: dts: imx8dxl-ss-conn: swap interrupts number of eqos arm64: dts: imx8dxl: Correct pcie-ep interrupt number Greg Kroah-Hartman (1): Linux 6.17.11 Gui-Dong Han (1): atm/fore200e: Fix possible data race in fore200e_open() Gustavo A. R. Silva (1): iommufd/driver: Fix counter initialization for counted_by annotation Haibo Chen (1): spi: spi-nxp-fspi: Add OCT-DTR mode support Hang Zhou (1): spi: bcm63xx: fix premature CS deassertion on RX-only transactions Haotian Zhang (3): usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors mailbox: mailbox-test: Fix debugfs_create_dir error checking spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors Harish Chegondi (1): drm/xe: Fix conversion from clock ticks to milliseconds Heikki Krogerus (2): usb: dwc3: pci: add support for the Intel Nova Lake -S usb: dwc3: pci: Sort out the Intel device IDs Heiner Kallweit (1): r8169: fix RTL8127 hang on suspend/shutdown Horatiu Vultur (1): net: lan966x: Fix the initialization of taprio Ilpo Järvinen (1): serial: 8250: Fix 8250_rsa symbol loop Ilya Dryomov (1): libceph: fix potential use-after-free in have_mon_and_osd_map() Ivan Zhaldak (1): ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 Jameson Thies (1): usb: typec: ucsi: psy: Set max current to zero when disconnected Jamie Iles (2): mailbox: pcc: don't zero error register drivers/usb/dwc3: fix PCI parent check Jason Wang (1): vhost: rewind next_avail_head while discarding descriptors Jason-JH Lin (1): mailbox: mtk-cmdq: Refine DMA address handling for the command buffer Jens Axboe (1): io_uring/net: ensure vectored buffer node import is tied to notification Jeremy Kerr (1): net: mctp: unconditionally set skb->dev on dst output Jesper Dangaard Brouer (1): veth: reduce XDP no_direct return section to fix race Jiefeng Zhang (1): net: atlantic: fix fragment overflow handling in RX path Jimmy Hu (1): usb: gadget: udc: fix use-after-free in usb_gadget_state_work Jiri Olsa (1): Revert "perf/x86: Always store regs->ip in perf_callchain_kernel()" Jisheng Zhang (1): mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level Johan Hovold (2): most: usb: fix double free on late probe failure drm: sti: fix device leaks at component probe Jon Hunter (1): pmdomain: tegra: Add GENPD_FLAG_NO_STAY_ON flag Jon Kohler (1): virtio-net: avoid unnecessary checksum calculation on guest RX Kai-Heng Feng (1): net: aquantia: Add missing descriptor cache invalidation on ATL2 Khairul Anuar Romli (1): firmware: stratix10-svc: fix bug in saving controller data Kuen-Han Tsai (2): usb: gadget: f_eem: Fix memory leak in eem_unwrap usb: udc: Add trace event for usb_gadget_set_state Kuniyuki Iwashima (1): mptcp: Initialise rcv_mss before calling tcp_send_active_reset() in mptcp_do_fastclose(). Linus Walleij (1): iio: accel: bmc150: Fix irq assumption regression Lucas De Marchi (1): drm/xe/guc: Fix stack_depot usage Luiz Augusto von Dentz (2): Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP Bluetooth: SMP: Fix not generating mackey and ltk when repairing Maarten Zanders (1): ARM: dts: nxp: imx6ul: correct SAI3 interrupt line Maciej Fijalkowski (1): xsk: avoid overwriting skb fields for multi-buffer traffic Maciej W. Rozycki (1): MIPS: mm: Prevent a TLB shutdown on initial uniquification Manish Nagar (1): usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths Marc Kleine-Budde (4): can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling Marcelo Schmitt (1): iio: adc: ad4030: Fix _scale value for common-mode channels Mario Limonciello (AMD) (2): drm/amd/display: Don't change brightness for disabled connectors drm/amd/display: Increase EDID read retries Mario Tesi (1): iio: st_lsm6dsx: Fixed calibrated timestamp calculation Mathias Nyman (2): xhci: fix stale flag preventig URBs after link state error is cleared xhci: dbgtty: Fix data corruption when transmitting data form DbC to host Miaoqian Lin (3): slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves serial: amba-pl011: prefer dma_mapping_error() over explicit address checking usb: cdns3: Fix double resource release in cdns3_pci_probe Michael Chen (1): drm/amd/amdgpu: reserve vm invalidation engine for uni_mes Mikulas Patocka (1): dm-verity: fix unreliable memory allocation Mohsin Bashir (1): eth: fbnic: Fix counter roll-over issue NeilBrown (1): ovl: fail ovl_lock_rename_workdir() if either target is unhashed Nikola Z. Ivanov (1): team: Move team device type change at the end of team_port_add Nuno Sá (3): iio: buffer-dma: support getting the DMA channel iio: buffer-dmaengine: enable .get_dma_dev() iio: buffer: support getting dma channel from the buffer Oleksandr Suvorov (1): USB: serial: ftdi_sio: add support for u-blox EVK-M101 Olivier Moysan (1): iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling Owen Gu (1): usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer Paolo Abeni (1): mptcp: clear scheduled subflows on retransmit Pauli Virtanen (1): Bluetooth: hci_core: lookup hci_conn on RX path on protocol side Paulo Alcantara (1): smb: client: fix memory leak in cifs_construct_tcon() Pranjal Shrivastava (1): dma-direct: Fix missing sg_dma_len assignment in P2PDMA bus mappings Prike Liang (1): drm/amdgpu: attach tlb fence to the PTs update Punit Agrawal (1): Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" René Rebe (1): ALSA: hda/cirrus fix cs420x MacPro 6,1 inverted jack detection Sergey Matyukevich (1): riscv: dts: allwinner: d1: fix vlenb property Seungjin Bae (1): can: kvaser_usb: leaf: Fix potential infinite loop in command parsers Siddharth Vadapalli (1): spi: cadence-quadspi: Fix cqspi_probe() error handling for runtime pm Slark Xiao (1): net: wwan: mhi: Keep modem name match with Foxconn T99W640 Thomas Bogendoerfer (1): MIPS: mm: kmalloc tlb_vpn array to avoid stack overflow Thomas Mühlbacher (1): can: sja1000: fix max irq loop handling Thomas Zimmermann (1): drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup Tianchu Chen (1): usb: storage: sddr55: Reject out-of-bound new_pba Valek Andrej (1): iio: accel: fix ADXL355 startup race condition Vanillan Wang (1): USB: serial: option: add support for Rolling RW101R-GL Viacheslav Dubeyko (1): ceph: fix crash in process_v2_sparse_read() for encrypted directories Ville Syrjälä (1): drm/i915/psr: Reject async flips when selective fetch is enabled Vladimir Oltean (1): net: dsa: sja1105: fix SGMII linking at 10M or 100M but not passing traffic Wei Fang (4): net: fec: cancel perout_timer when PEROUT is disabled net: fec: do not update PEROUT if it is enabled net: fec: do not allow enabling PPS and PEROUT simultaneously net: fec: do not register PPS event for PEROUT Wei Yang (1): mm/huge_memory: fix NULL pointer deference when splitting folio Wentao Guan (1): nvmem: layouts: fix nvmem_layout_bus_uevent Xu Yang (1): arm64: dts: imx8qm-mek: fix mux-controller select/enable-gpios polarity Youngjun Park (1): mm: swap: remove duplicate nr_swap_pages decrement in get_swap_page_of_type() ziming zhang (2): libceph: prevent potential out-of-bounds writes in handle_auth_session_key() libceph: replace BUG_ON with bounds check for map->max_osd Łukasz Bartosik (1): xhci: dbgtty: fix device unregister

4 days, 18 hours

1
1
0 0

Linux 6.12.61

by Greg Kroah-Hartman

I'm announcing the release of the 6.12.61 kernel. All users of the 6.12 kernel series must upgrade. The updated 6.12.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-6.12.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ MAINTAINERS | 5 Makefile | 2 arch/arm/boot/dts/nxp/imx/imx6ul.dtsi | 2 arch/arm64/boot/dts/freescale/imx8dxl-ss-conn.dtsi | 4 arch/arm64/boot/dts/freescale/imx8qm-mek.dts | 4 arch/arm64/kernel/acpi.c | 10 arch/mips/mm/tlb-r4k.c | 116 arch/x86/events/core.c | 10 arch/x86/kvm/svm/nested.c | 20 arch/x86/kvm/svm/svm.c | 94 arch/x86/kvm/svm/svm.h | 1 drivers/atm/fore200e.c | 2 drivers/bluetooth/btusb.c | 39 drivers/firmware/stratix10-svc.c | 7 drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 2 drivers/gpu/drm/amd/amdgpu/amdgpu_gmc.c | 3 drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 15 drivers/gpu/drm/amd/display/dc/core/dc_stream.c | 11 drivers/gpu/drm/amd/display/dc/hwss/dce110/dce110_hwseq.c | 1 drivers/gpu/drm/amd/display/dc/hwss/dcn20/dcn20_hwseq.c | 2 drivers/gpu/drm/amd/display/dc/hwss/dcn401/dcn401_hwseq.c | 2 drivers/gpu/drm/amd/display/dc/link/link_dpms.c | 3 drivers/gpu/drm/amd/display/dc/virtual/virtual_stream_encoder.c | 7 drivers/gpu/drm/drm_fb_helper.c | 6 drivers/gpu/drm/i915/display/intel_dp.c | 5 drivers/gpu/drm/i915/display/intel_fbdev.c | 6 drivers/gpu/drm/radeon/radeon_fbdev.c | 5 drivers/gpu/drm/sti/sti_vtg.c | 7 drivers/gpu/drm/xe/xe_gt_clock.c | 7 drivers/iio/accel/adxl355_core.c | 44 drivers/iio/accel/bmc150-accel-core.c | 5 drivers/iio/accel/bmc150-accel.h | 1 drivers/iio/adc/ad7280a.c | 2 drivers/iio/adc/rtq6056.c | 2 drivers/iio/adc/stm32-dfsdm-adc.c | 5 drivers/iio/buffer/industrialio-buffer-dma.c | 6 drivers/iio/buffer/industrialio-buffer-dmaengine.c | 2 drivers/iio/common/ssp_sensors/ssp_dev.c | 4 drivers/iio/humidity/hdc3020.c | 73 drivers/iio/imu/st_lsm6dsx/st_lsm6dsx.h | 40 drivers/iio/imu/st_lsm6dsx/st_lsm6dsx_core.c | 19 drivers/iio/industrialio-buffer.c | 21 drivers/mailbox/mailbox-test.c | 2 drivers/mailbox/mtk-cmdq-mailbox.c | 45 drivers/mailbox/pcc.c | 32 drivers/md/dm-verity-fec.c | 6 drivers/mmc/host/sdhci-of-dwcmshc.c | 29 drivers/most/most_usb.c | 14 drivers/mtd/nand/spi/core.c | 2 drivers/net/can/rcar/rcar_canfd.c | 53 drivers/net/can/sja1000/sja1000.c | 4 drivers/net/can/sun4i_can.c | 4 drivers/net/can/usb/gs_usb.c | 100 drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c | 4 drivers/net/dsa/microchip/ksz_common.c | 65 drivers/net/dsa/microchip/ksz_common.h | 1 drivers/net/dsa/microchip/ksz_ptp.c | 22 drivers/net/dsa/sja1105/sja1105_main.c | 66 drivers/net/ethernet/aquantia/atlantic/aq_hw_utils.c | 22 drivers/net/ethernet/aquantia/atlantic/aq_hw_utils.h | 1 drivers/net/ethernet/aquantia/atlantic/aq_ring.c | 5 drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_b0.c | 19 drivers/net/ethernet/aquantia/atlantic/hw_atl2/hw_atl2.c | 2 drivers/net/ethernet/freescale/fec.h | 1 drivers/net/ethernet/freescale/fec_ptp.c | 64 drivers/net/ethernet/mellanox/mlx5/core/en_dcbnl.c | 2 drivers/net/ethernet/meta/fbnic/fbnic_fw.c | 2 drivers/net/ethernet/microchip/lan966x/lan966x_ptp.c | 5 drivers/net/ethernet/samsung/sxgbe/sxgbe_main.c | 4 drivers/net/phy/mxl-gpy.c | 2 drivers/net/team/team_core.c | 23 drivers/net/veth.c | 64 drivers/net/vrf.c | 4 drivers/net/wireless/ath/ath12k/dp_rx.c | 5 drivers/net/wireless/ath/ath12k/peer.c | 3 drivers/net/wireless/ath/ath12k/peer.h | 2 drivers/net/wwan/mhi_wwan_mbim.c | 2 drivers/nvmem/layouts.c | 2 drivers/platform/x86/intel/punit_ipc.c | 2 drivers/slimbus/qcom-ngd-ctrl.c | 1 drivers/spi/Kconfig | 4 drivers/spi/spi-amlogic-spifc-a1.c | 4 drivers/spi/spi-bcm63xx.c | 14 drivers/spi/spi-mem.c | 37 drivers/spi/spi-nxp-fspi.c | 123 drivers/staging/Kconfig | 2 drivers/staging/Makefile | 1 drivers/staging/rtl8712/Kconfig | 21 drivers/staging/rtl8712/Makefile | 35 drivers/staging/rtl8712/TODO | 13 drivers/staging/rtl8712/basic_types.h | 28 drivers/staging/rtl8712/drv_types.h | 175 drivers/staging/rtl8712/ethernet.h | 21 drivers/staging/rtl8712/hal_init.c | 401 - drivers/staging/rtl8712/ieee80211.c | 415 - drivers/staging/rtl8712/ieee80211.h | 165 drivers/staging/rtl8712/mlme_linux.c | 160 drivers/staging/rtl8712/mlme_osdep.h | 31 drivers/staging/rtl8712/mp_custom_oid.h | 287 - drivers/staging/rtl8712/os_intfs.c | 482 -- drivers/staging/rtl8712/osdep_intf.h | 32 drivers/staging/rtl8712/osdep_service.h | 60 drivers/staging/rtl8712/recv_linux.c | 139 drivers/staging/rtl8712/recv_osdep.h | 39 drivers/staging/rtl8712/rtl8712_bitdef.h | 26 drivers/staging/rtl8712/rtl8712_cmd.c | 409 - drivers/staging/rtl8712/rtl8712_cmd.h | 231 - drivers/staging/rtl8712/rtl8712_cmdctrl_bitdef.h | 95 drivers/staging/rtl8712/rtl8712_cmdctrl_regdef.h | 19 drivers/staging/rtl8712/rtl8712_debugctrl_bitdef.h | 41 drivers/staging/rtl8712/rtl8712_debugctrl_regdef.h | 32 drivers/staging/rtl8712/rtl8712_edcasetting_bitdef.h | 65 drivers/staging/rtl8712/rtl8712_edcasetting_regdef.h | 24 drivers/staging/rtl8712/rtl8712_efuse.c | 563 -- drivers/staging/rtl8712/rtl8712_efuse.h | 44 drivers/staging/rtl8712/rtl8712_event.h | 86 drivers/staging/rtl8712/rtl8712_fifoctrl_bitdef.h | 131 drivers/staging/rtl8712/rtl8712_fifoctrl_regdef.h | 61 drivers/staging/rtl8712/rtl8712_gp_bitdef.h | 68 drivers/staging/rtl8712/rtl8712_gp_regdef.h | 29 drivers/staging/rtl8712/rtl8712_hal.h | 142 drivers/staging/rtl8712/rtl8712_interrupt_bitdef.h | 44 drivers/staging/rtl8712/rtl8712_io.c | 99 drivers/staging/rtl8712/rtl8712_led.c | 1830 -------- drivers/staging/rtl8712/rtl8712_macsetting_bitdef.h | 31 drivers/staging/rtl8712/rtl8712_macsetting_regdef.h | 20 drivers/staging/rtl8712/rtl8712_powersave_bitdef.h | 39 drivers/staging/rtl8712/rtl8712_powersave_regdef.h | 26 drivers/staging/rtl8712/rtl8712_ratectrl_bitdef.h | 36 drivers/staging/rtl8712/rtl8712_ratectrl_regdef.h | 43 drivers/staging/rtl8712/rtl8712_recv.c | 1075 ---- drivers/staging/rtl8712/rtl8712_recv.h | 145 drivers/staging/rtl8712/rtl8712_regdef.h | 32 drivers/staging/rtl8712/rtl8712_security_bitdef.h | 34 drivers/staging/rtl8712/rtl8712_spec.h | 121 drivers/staging/rtl8712/rtl8712_syscfg_bitdef.h | 163 drivers/staging/rtl8712/rtl8712_syscfg_regdef.h | 42 drivers/staging/rtl8712/rtl8712_timectrl_bitdef.h | 49 drivers/staging/rtl8712/rtl8712_timectrl_regdef.h | 26 drivers/staging/rtl8712/rtl8712_wmac_bitdef.h | 49 drivers/staging/rtl8712/rtl8712_wmac_regdef.h | 36 drivers/staging/rtl8712/rtl8712_xmit.c | 732 --- drivers/staging/rtl8712/rtl8712_xmit.h | 108 drivers/staging/rtl8712/rtl871x_cmd.c | 750 --- drivers/staging/rtl8712/rtl871x_cmd.h | 750 --- drivers/staging/rtl8712/rtl871x_debug.h | 130 drivers/staging/rtl8712/rtl871x_eeprom.c | 220 drivers/staging/rtl8712/rtl871x_eeprom.h | 88 drivers/staging/rtl8712/rtl871x_event.h | 109 drivers/staging/rtl8712/rtl871x_ht.h | 33 drivers/staging/rtl8712/rtl871x_io.c | 147 drivers/staging/rtl8712/rtl871x_io.h | 236 - drivers/staging/rtl8712/rtl871x_ioctl.h | 94 drivers/staging/rtl8712/rtl871x_ioctl_linux.c | 2275 ---------- drivers/staging/rtl8712/rtl871x_ioctl_rtl.c | 519 -- drivers/staging/rtl8712/rtl871x_ioctl_rtl.h | 109 drivers/staging/rtl8712/rtl871x_ioctl_set.c | 354 - drivers/staging/rtl8712/rtl871x_ioctl_set.h | 45 drivers/staging/rtl8712/rtl871x_led.h | 118 drivers/staging/rtl8712/rtl871x_mlme.c | 1710 ------- drivers/staging/rtl8712/rtl871x_mlme.h | 205 drivers/staging/rtl8712/rtl871x_mp.c | 724 --- drivers/staging/rtl8712/rtl871x_mp.h | 275 - drivers/staging/rtl8712/rtl871x_mp_ioctl.c | 883 --- drivers/staging/rtl8712/rtl871x_mp_ioctl.h | 328 - drivers/staging/rtl8712/rtl871x_mp_phy_regdef.h | 1034 ---- drivers/staging/rtl8712/rtl871x_pwrctrl.c | 234 - drivers/staging/rtl8712/rtl871x_pwrctrl.h | 113 drivers/staging/rtl8712/rtl871x_recv.c | 671 -- drivers/staging/rtl8712/rtl871x_recv.h | 208 drivers/staging/rtl8712/rtl871x_rf.h | 55 drivers/staging/rtl8712/rtl871x_security.c | 1386 ------ drivers/staging/rtl8712/rtl871x_security.h | 218 drivers/staging/rtl8712/rtl871x_sta_mgt.c | 263 - drivers/staging/rtl8712/rtl871x_wlan_sme.h | 35 drivers/staging/rtl8712/rtl871x_xmit.c | 1056 ---- drivers/staging/rtl8712/rtl871x_xmit.h | 287 - drivers/staging/rtl8712/sta_info.h | 132 drivers/staging/rtl8712/usb_halinit.c | 307 - drivers/staging/rtl8712/usb_intf.c | 638 -- drivers/staging/rtl8712/usb_ops.c | 195 drivers/staging/rtl8712/usb_ops.h | 38 drivers/staging/rtl8712/usb_ops_linux.c | 508 -- drivers/staging/rtl8712/usb_osintf.h | 35 drivers/staging/rtl8712/wifi.h | 196 drivers/staging/rtl8712/wlan_bssdef.h | 223 drivers/staging/rtl8712/xmit_linux.c | 181 drivers/staging/rtl8712/xmit_osdep.h | 52 drivers/thunderbolt/nhi.c | 2 drivers/thunderbolt/nhi.h | 1 drivers/tty/serial/amba-pl011.c | 2 drivers/usb/cdns3/cdns3-pci-wrap.c | 5 drivers/usb/dwc3/core.c | 3 drivers/usb/dwc3/dwc3-pci.c | 80 drivers/usb/dwc3/ep0.c | 1 drivers/usb/dwc3/gadget.c | 7 drivers/usb/gadget/function/f_eem.c | 7 drivers/usb/gadget/udc/core.c | 18 drivers/usb/gadget/udc/renesas_usbf.c | 4 drivers/usb/gadget/udc/trace.h | 5 drivers/usb/host/xhci-dbgcap.h | 1 drivers/usb/host/xhci-dbgtty.c | 23 drivers/usb/host/xhci-ring.c | 15 drivers/usb/host/xhci.c | 1 drivers/usb/renesas_usbhs/common.c | 14 drivers/usb/serial/ftdi_sio.c | 1 drivers/usb/serial/ftdi_sio_ids.h | 1 drivers/usb/serial/option.c | 10 drivers/usb/storage/sddr55.c | 6 drivers/usb/storage/transport.c | 16 drivers/usb/storage/uas.c | 5 drivers/usb/storage/unusual_devs.h | 2 drivers/usb/typec/ucsi/psy.c | 5 drivers/video/fbdev/core/fbcon.c | 9 fs/namespace.c | 7 fs/nfsd/nfs4state.c | 6 fs/smb/client/connect.c | 1 include/linux/iio/buffer-dma.h | 1 include/linux/iio/buffer_impl.h | 2 include/linux/mailbox/mtk-cmdq-mailbox.h | 10 include/linux/spi/spi-mem.h | 22 include/linux/usb/gadget.h | 5 include/net/bluetooth/hci_core.h | 1 include/net/sch_generic.h | 8 kernel/trace/trace.c | 10 mm/huge_memory.c | 17 mm/memfd.c | 27 net/bluetooth/hci_core.c | 16 net/bluetooth/hci_sock.c | 2 net/bluetooth/smp.c | 31 net/ceph/auth_x.c | 2 net/ceph/ceph_common.c | 53 net/ceph/debugfs.c | 14 net/ceph/messenger_v2.c | 11 net/ceph/osdmap.c | 18 net/mptcp/protocol.c | 19 sound/usb/quirks.c | 3 237 files changed, 1336 insertions(+), 28204 deletions(-) Alan Borzeszkowski (1): thunderbolt: Add support for Intel Wildcat Lake Alan Stern (1): USB: storage: Remove subclass and protocol overrides from Novatek quirk Alex Deucher (2): drm/amdgpu: fix cyan_skillfish2 gpu info fw handling Revert "drm/amd/display: Move setup_stream_attribute" Alex Hung (1): drm/amd/display: Check NULL before accessing Alexey Kodanev (1): net: sxgbe: fix potential NULL dereference in sxgbe_rx() Andrei Vagin (1): fs/namespace: fix reference leak in grab_requested_mnt_ns Andy Shevchenko (1): spi: nxp-fspi: Propagate fwnode in ACPI case as well Bastien Curutchet (Schneider Electric) (5): net: dsa: microchip: common: Fix checks on irq_find_mapping() net: dsa: microchip: ptp: Fix checks on irq_find_mapping() net: dsa: microchip: Don't free uninitialized ksz_irq net: dsa: microchip: Fix symetry in ksz_ptp_msg_irq_{setup/free}() net: dsa: microchip: Free previously initialized ports on init failures Biju Das (1): can: rcar_canfd: Fix CAN-FD mode as default ChiYuan Huang (1): iio: adc: rtq6056: Correct the sign bit index Chris Lu (1): Bluetooth: btusb: mediatek: Fix kernel crash when releasing mtk iso interface Christophe JAILLET (1): iio:common:ssp_sensors: Fix an error handling path ssp_probe() Claudiu Beznea (1): usb: renesas_usbhs: Fix synchronous external abort on unbind Dan Carpenter (1): platform/x86: intel: punit_ipc: fix memory corruption Daniel Golle (1): net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY Danielle Costantino (1): net/mlx5e: Fix validation logic in rate limiting David Lechner (1): iio: adc: ad7280a: fix ad7280_store_balance_timer() Deepanshu Kartikey (2): tracing: Fix WARN_ON in tracing_buffers_mmap_close for split VMAs mm/memfd: fix information leak in hugetlb folios Desnes Nunes (1): usb: storage: Fix memory leak in USB bulk transport Dimitri Fedrau (2): iio: humditiy: hdc3020: fix units for temperature and humidity measurement iio: humditiy: hdc3020: fix units for thresholds and hysteresis Douglas Anderson (1): Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref Edward Adam Davis (1): Bluetooth: hci_sock: Prevent race in socket write iter and sock bind Francesco Lavra (2): spi: tegra114: remove Kconfig dependency on TEGRA20_APB_DMA iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields Frank Li (1): arm64: dts: imx8dxl-ss-conn: swap interrupts number of eqos Greg Kroah-Hartman (1): Linux 6.12.61 Gui-Dong Han (1): atm/fore200e: Fix possible data race in fore200e_open() Haibo Chen (2): spi: spi-nxp-fspi: remove the goto in probe spi: spi-nxp-fspi: Add OCT-DTR mode support Hang Zhou (1): spi: bcm63xx: fix premature CS deassertion on RX-only transactions Haotian Zhang (3): usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors mailbox: mailbox-test: Fix debugfs_create_dir error checking spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors Harish Chegondi (1): drm/xe: Fix conversion from clock ticks to milliseconds Heikki Krogerus (2): usb: dwc3: pci: add support for the Intel Nova Lake -S usb: dwc3: pci: Sort out the Intel device IDs Horatiu Vultur (1): net: lan966x: Fix the initialization of taprio Ilya Dryomov (1): libceph: fix potential use-after-free in have_mon_and_osd_map() Imre Deak (1): drm/i915/dp: Initialize the source OUI write timestamp always Ivan Zhaldak (1): ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 Jameson Thies (1): usb: typec: ucsi: psy: Set max current to zero when disconnected Jamie Iles (2): mailbox: pcc: don't zero error register drivers/usb/dwc3: fix PCI parent check Jason-JH Lin (1): mailbox: mtk-cmdq: Refine DMA address handling for the command buffer Jesper Dangaard Brouer (5): net: sched: generalize check for no-queue qdisc on TX queue veth: apply qdisc backpressure on full ptr_ring to reduce TX drops veth: prevent NULL pointer dereference in veth_xdp_rcv veth: more robust handing of race to avoid txq getting stuck veth: reduce XDP no_direct return section to fix race Jiefeng Zhang (1): net: atlantic: fix fragment overflow handling in RX path Jimmy Hu (1): usb: gadget: udc: fix use-after-free in usb_gadget_state_work Jiri Olsa (1): Revert "perf/x86: Always store regs->ip in perf_callchain_kernel()" Jisheng Zhang (1): mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level Johan Hovold (2): most: usb: fix double free on late probe failure drm: sti: fix device leaks at component probe Kai-Heng Feng (1): net: aquantia: Add missing descriptor cache invalidation on ATL2 Khairul Anuar Romli (1): firmware: stratix10-svc: fix bug in saving controller data Kuen-Han Tsai (2): usb: gadget: f_eem: Fix memory leak in eem_unwrap usb: udc: Add trace event for usb_gadget_set_state Kuniyuki Iwashima (1): mptcp: Initialise rcv_mss before calling tcp_send_active_reset() in mptcp_do_fastclose(). Linus Walleij (1): iio: accel: bmc150: Fix irq assumption regression Luiz Augusto von Dentz (2): Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP Bluetooth: SMP: Fix not generating mackey and ltk when repairing Maarten Zanders (1): ARM: dts: nxp: imx6ul: correct SAI3 interrupt line Maciej W. Rozycki (1): MIPS: mm: Prevent a TLB shutdown on initial uniquification Manish Nagar (1): usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths Marc Kleine-Budde (4): can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling Mario Limonciello (AMD) (1): drm/amd/display: Don't change brightness for disabled connectors Mario Tesi (1): iio: st_lsm6dsx: Fixed calibrated timestamp calculation Mathias Nyman (2): xhci: fix stale flag preventig URBs after link state error is cleared xhci: dbgtty: Fix data corruption when transmitting data form DbC to host Miaoqian Lin (3): slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves serial: amba-pl011: prefer dma_mapping_error() over explicit address checking usb: cdns3: Fix double resource release in cdns3_pci_probe Michael Chen (1): drm/amd/amdgpu: reserve vm invalidation engine for uni_mes Mikulas Patocka (1): dm-verity: fix unreliable memory allocation Miquel Raynal (3): spi: spi-mem: Extend spi-mem operations with a per-operation maximum frequency spi: spi-mem: Add a new controller capability spi: nxp-fspi: Support per spi-mem operation frequency switches Mohsin Bashir (1): eth: fbnic: Fix counter roll-over issue NeilBrown (1): nfsd: Replace clamp_t in nfsd4_get_drc_mem() Nikola Z. Ivanov (1): team: Move team device type change at the end of team_port_add Nuno Sá (3): iio: buffer-dma: support getting the DMA channel iio: buffer-dmaengine: enable .get_dma_dev() iio: buffer: support getting dma channel from the buffer Oleksandr Suvorov (1): USB: serial: ftdi_sio: add support for u-blox EVK-M101 Olivier Moysan (1): iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling Owen Gu (1): usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer Paolo Abeni (1): mptcp: clear scheduled subflows on retransmit Paulo Alcantara (1): smb: client: fix memory leak in cifs_construct_tcon() Philipp Hortmann (1): staging: rtl8712: Remove driver using deprecated API wext Punit Agrawal (1): Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" Russell King (Oracle) (1): net: dsa: sja1105: simplify static configuration reload Sarika Sharma (1): wifi: ath12k: correctly handle mcast packets for clients Seungjin Bae (1): can: kvaser_usb: leaf: Fix potential infinite loop in command parsers Slark Xiao (1): net: wwan: mhi: Keep modem name match with Foxconn T99W640 Sudeep Holla (1): mailbox: pcc: Refactor error handling in irq handler into separate function Thomas Bogendoerfer (1): MIPS: mm: kmalloc tlb_vpn array to avoid stack overflow Thomas Mühlbacher (1): can: sja1000: fix max irq loop handling Thomas Weißschuh (1): spi: spi-nxp-fspi: Check return value of devm_mutex_init() Thomas Zimmermann (1): drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup Tianchu Chen (1): usb: storage: sddr55: Reject out-of-bound new_pba Tristram Ha (1): net: dsa: microchip: Do not execute PTP driver code for unsupported switches Tudor Ambarus (1): spi: spi-mem: Allow specifying the byte order in Octal DTR mode Valek Andrej (1): iio: accel: fix ADXL355 startup race condition Vanillan Wang (1): USB: serial: option: add support for Rolling RW101R-GL Viacheslav Dubeyko (1): ceph: fix crash in process_v2_sparse_read() for encrypted directories Vladimir Oltean (1): net: dsa: sja1105: fix SGMII linking at 10M or 100M but not passing traffic Wei Fang (4): net: fec: cancel perout_timer when PEROUT is disabled net: fec: do not update PEROUT if it is enabled net: fec: do not allow enabling PPS and PEROUT simultaneously net: fec: do not register PPS event for PEROUT Wei Yang (1): mm/huge_memory: fix NULL pointer deference when splitting folio Wentao Guan (1): nvmem: layouts: fix nvmem_layout_bus_uevent Xu Yang (1): arm64: dts: imx8qm-mek: fix mux-controller select/enable-gpios polarity Yosry Ahmed (4): KVM: SVM: Introduce svm_recalc_lbr_msr_intercepts() KVM: nSVM: Always recalculate LBR MSR intercepts in svm_update_lbrv() KVM: nSVM: Fix and simplify LBR virtualization handling with nested KVM: SVM: Fix redundant updates of LBR MSR intercepts ziming zhang (2): libceph: prevent potential out-of-bounds writes in handle_auth_session_key() libceph: replace BUG_ON with bounds check for map->max_osd Łukasz Bartosik (1): xhci: dbgtty: fix device unregister

4 days, 18 hours

1
1
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror