March 2023 - Linux-stable-mirror

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 5.4.235 release. There are 357 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Sun, 12 Mar 2023 13:36:38 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.4.235-rc… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.4.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 5.4.235-rc1 Maxime Ripard <maxime(a)cerno.tech> dt-bindings: rtc: sun6i-a31-rtc: Loosen the requirements on the clocks Stefan Haberland <sth(a)linux.ibm.com> s390/dasd: add missing discipline function Ricardo Ribalda <ribalda(a)chromium.org> media: uvcvideo: Fix race condition with usb_kill_urb Ricardo Ribalda <ribalda(a)chromium.org> media: uvcvideo: Provide sync and async uvc_ctrl_status_event Kuniyuki Iwashima <kuniyu(a)amazon.com> tcp: Fix listen() regression in 5.4.229. Nguyen Dinh Phi <phind.uet(a)gmail.com> Bluetooth: hci_sock: purge socket queues in the destruct() callback Linus Torvalds <torvalds(a)linux-foundation.org> x86/resctl: fix scheduler confusion with 'current' Valentin Schneider <valentin.schneider(a)arm.com> x86/resctrl: Apply READ_ONCE/WRITE_ONCE to task_struct.{rmid,closid} Jakub Kicinski <kuba(a)kernel.org> net: tls: avoid hanging tasks on the tx_lock Jiapeng Chong <jiapeng.chong(a)linux.alibaba.com> phy: rockchip-typec: Fix unsigned comparison with less than zero Mengyuan Lou <mengyuanlou(a)net-swift.com> PCI: Add ACS quirk for Wangxun NICs Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> kernel/fail_function: fix memory leak with using debugfs_lookup() Daniel Scally <dan.scally(a)ideasonboard.com> usb: uvc: Enumerate valid values for color matching Kees Cook <keescook(a)chromium.org> USB: ene_usb6250: Allocate enough memory for full object Kees Cook <keescook(a)chromium.org> usb: host: xhci: mvebu: Iterate over array indexes instead of using pointer math Harshit Mogalapalli <harshit.m.mogalapalli(a)oracle.com> iio: accel: mma9551_core: Prevent uninitialized variable in mma9551_read_config_word() Harshit Mogalapalli <harshit.m.mogalapalli(a)oracle.com> iio: accel: mma9551_core: Prevent uninitialized variable in mma9551_read_status_word() Yulong Zhang <yulong.zhang(a)metoak.net> tools/iio/iio_utils:fix memory leak Alexander Usyskin <alexander.usyskin(a)intel.com> mei: bus-fixup:upon error print return values of send and receive Sherry Sun <sherry.sun(a)nxp.com> tty: serial: fsl_lpuart: disable the CTS when send break signal Sven Schnelle <svens(a)linux.ibm.com> tty: fix out-of-bounds access in tty_driver_lookup_tty() Yuan Can <yuancan(a)huawei.com> staging: emxx_udc: Add checks for dma_alloc_coherent() Kees Cook <keescook(a)chromium.org> media: uvcvideo: Silence memcpy() run-time false positive warnings Ricardo Ribalda <ribalda(a)chromium.org> media: uvcvideo: Quirk for autosuspend in Logitech B910 and C910 Guenter Roeck <linux(a)roeck-us.net> media: uvcvideo: Handle errors from calls to usb_string Ricardo Ribalda <ribalda(a)chromium.org> media: uvcvideo: Handle cameras with invalid descriptors Liang He <windhl(a)126.com> mfd: arizona: Use pm_runtime_resume_and_get() to prevent refcnt leak Darrell Kavanagh <darrell.kavanagh(a)gmail.com> firmware/efi sysfb_efi: Add quirk for Lenovo IdeaPad Duet 3 Jia-Ju Bai <baijiaju1990(a)gmail.com> tracing: Add NULL checks for buffer in ring_buffer_free_read_page() Randy Dunlap <rdunlap(a)infradead.org> thermal: intel: BXT_PMIC: select REGMAP instead of depending on it Dan Carpenter <error27(a)gmail.com> thermal: intel: quark_dts: fix error pointer dereference Arnd Bergmann <arnd(a)arndb.de> scsi: ipr: Work around fortify-string warning Samuel Holland <samuel(a)sholland.org> rtc: sun6i: Always export the internal oscillator Jernej Skrabec <jernej.skrabec(a)siol.net> rtc: sun6i: Make external 32k oscillator optional George Kennedy <george.kennedy(a)oracle.com> vc_screen: modify vcs_size() handling in vcs_read() Eric Dumazet <edumazet(a)google.com> tcp: tcp_check_req() can be called from process context Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org> ARM: dts: spear320-hmi: correct STMPE GPIO compatible Pedro Tammela <pctammela(a)mojatatu.com> net/sched: act_sample: fix action bind logic Fedor Pchelkin <pchelkin(a)ispras.ru> nfc: fix memory leak of se_io context in nfc_genl_se_io Maor Dickman <maord(a)nvidia.com> net/mlx5: Geneve, Fix handling of Geneve object id as error code Zhengchao Shao <shaozhengchao(a)huawei.com> 9p/rdma: unmap receive dma buffer in rdma_request()/post_recv() Juergen Gross <jgross(a)suse.com> 9p/xen: fix connection sequence Juergen Gross <jgross(a)suse.com> 9p/xen: fix version parsing Eric Dumazet <edumazet(a)google.com> net: fix __dev_kfree_skb_any() vs drop monitor Xin Long <lucien.xin(a)gmail.com> sctp: add a refcnt in sctp_stream_priorities to avoid a nested loop Lu Wei <luwei32(a)huawei.com> ipv6: Add lwtunnel encap size of all siblings in nexthop calculation Hangyu Hua <hbh25y(a)gmail.com> netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() Li Hua <hucool.lihua(a)huawei.com> watchdog: pcwd_usb: Fix attempting to access uninitialized memory Chen Jun <chenjun102(a)huawei.com> watchdog: Fix kmemleak in watchdog_cdev_register ruanjinjie <ruanjinjie(a)huawei.com> watchdog: at91sam9_wdt: use devm_request_irq to avoid missing free_irq() in error path Ammar Faizi <ammarfaizi2(a)gnuweeb.org> x86: um: vdso: Add '%rcx' and '%r11' to the syscall clobber list Zhihao Cheng <chengzhihao1(a)huawei.com> ubi: ubi_wl_put_peb: Fix infinite loop when wear-leveling work failed Zhihao Cheng <chengzhihao1(a)huawei.com> ubi: Fix UAF wear-leveling entry in eraseblk_count_seq_show() Zhihao Cheng <chengzhihao1(a)huawei.com> ubifs: ubifs_writepage: Mark page dirty after writing inode failed Zhihao Cheng <chengzhihao1(a)huawei.com> ubifs: dirty_cow_znode: Fix memleak in error handling path Zhihao Cheng <chengzhihao1(a)huawei.com> ubifs: Re-statistic cleaned znode count if commit failed Yang Yingliang <yangyingliang(a)huawei.com> ubi: Fix possible null-ptr-deref in ubi_free_volume() Li Zetao <lizetao1(a)huawei.com> ubifs: Fix memory leak in alloc_wbufs() Li Zetao <lizetao1(a)huawei.com> ubi: Fix unreferenced object reported by kmemleak in ubi_resize_volume() Li Zetao <lizetao1(a)huawei.com> ubi: Fix use-after-free when volume resizing failed Zhihao Cheng <chengzhihao1(a)huawei.com> ubifs: Reserve one leb for each journal head while doing budget Zhihao Cheng <chengzhihao1(a)huawei.com> ubifs: do_rename: Fix wrong space budget when target inode's nlink > 1 Zhihao Cheng <chengzhihao1(a)huawei.com> ubifs: Fix wrong dirty space budget for dirty inode Zhihao Cheng <chengzhihao1(a)huawei.com> ubifs: Rectify space budget for ubifs_xrename() Zhihao Cheng <chengzhihao1(a)huawei.com> ubifs: Rectify space budget for ubifs_symlink() if symlink is encrypted Li Hua <hucool.lihua(a)huawei.com> ubifs: Fix build errors as symbol undefined George Kennedy <george.kennedy(a)oracle.com> ubi: ensure that VID header offset + VID header size <= alloc, size Xiang Yang <xiangyang3(a)huawei.com> um: vector: Fix memory leak in vector_config Alexander Potapenko <glider(a)google.com> fs: f2fs: initialize fsdata in pagecache_write() Eric Biggers <ebiggers(a)google.com> f2fs: use memcpy_{to,from}_page() where possible Fabrice Gasnier <fabrice.gasnier(a)foss.st.com> pwm: stm32-lp: fix the check on arr and cmp registers update Emil Renner Berthing <emil.renner.berthing(a)canonical.com> pwm: sifive: Always let the first pwm_apply_state succeed Uwe Kleine-König <u.kleine-koenig(a)pengutronix.de> pwm: sifive: Reduce time the controller lock is held Liu Shixin via Jfs-discussion <jfs-discussion(a)lists.sourceforge.net> fs/jfs: fix shift exponent db_agl2size negative Jamal Hadi Salim <jhs(a)mojatatu.com> net/sched: Retire tcindex classifier Dmitry Goncharov <dgoncharov(a)users.sf.net> kbuild: Port silent mode detection to future gnu make. Arnd Bergmann <arnd(a)arndb.de> wifi: ath9k: use proper statements in conditionals Mark Hawrylak <mark.hawrylak(a)gmail.com> drm/radeon: Fix eDP for single-display iMac11,2 Mavroudis Chatzilaridis <mavchatz(a)protonmail.com> drm/i915/quirks: Add inverted backlight quirk for HP 14-r206nv Damien Le Moal <damien.lemoal(a)opensource.wdc.com> PCI: Avoid FLR for AMD FCH AHCI adapters Lukas Wunner <lukas(a)wunner.de> PCI: hotplug: Allow marking devices as disconnected during bind/unbind Lukas Wunner <lukas(a)wunner.de> PCI/PM: Observe reset delay irrespective of bridge_d3 Tomas Henzl <thenzl(a)redhat.com> scsi: ses: Fix slab-out-of-bounds in ses_intf_remove() Tomas Henzl <thenzl(a)redhat.com> scsi: ses: Fix possible desc_ptr out-of-bounds accesses Tomas Henzl <thenzl(a)redhat.com> scsi: ses: Fix possible addl_desc_ptr out-of-bounds accesses Tomas Henzl <thenzl(a)redhat.com> scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process() James Bottomley <jejb(a)linux.ibm.com> scsi: ses: Don't attach if enclosure has no components Quinn Tran <qutran(a)marvell.com> scsi: qla2xxx: Fix erroneous link down Arun Easi <aeasi(a)marvell.com> scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests Quinn Tran <qutran(a)marvell.com> scsi: qla2xxx: Fix link failure in NPIV environment Steven Rostedt <rostedt(a)goodmis.org> ktest.pl: Add RUN_TIMEOUT option with default unlimited Steven Rostedt <rostedt(a)goodmis.org> ktest.pl: Fix missing "end_monitor" when machine check fails Steven Rostedt <rostedt(a)goodmis.org> ktest.pl: Give back console on Ctrt^C on monitor Yin Fengwei <fengwei.yin(a)intel.com> mm/thp: check and bail out if page in deferred queue already Johannes Weiner <hannes(a)cmpxchg.org> mm: memcontrol: deprecate charge moving Sakari Ailus <sakari.ailus(a)linux.intel.com> media: ipu3-cio2: Fix PM runtime usage_count in driver unbind Elvira Khabirova <lineprinter0(a)gmail.com> mips: fix syscall_get_nr Al Viro <viro(a)zeniv.linux.org.uk> alpha: fix FEN fault handling Ilya Dryomov <idryomov(a)gmail.com> rbd: avoid use-after-free in do_rbd_add() when rbd_dev_create() fails Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org> ARM: dts: exynos: correct TMU phandle in Odroid XU Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org> ARM: dts: exynos: correct TMU phandle in Exynos4 Mikulas Patocka <mpatocka(a)redhat.com> dm flakey: don't corrupt the zero page Mikulas Patocka <mpatocka(a)redhat.com> dm flakey: fix logic when corrupting a bio Srinivas Pandruvada <srinivas.pandruvada(a)linux.intel.com> thermal: intel: powerclamp: Fix cur_state for multi package system Alexander Wetzel <alexander(a)wetzel-home.de> wifi: cfg80211: Fix use after free for wext Bitterblue Smith <rtl8821cerfe2(a)gmail.com> wifi: rtl8xxxu: Use a longer retry limit of 48 Jun Nie <jun.nie(a)linaro.org> ext4: refuse to create ea block when umounted Jun Nie <jun.nie(a)linaro.org> ext4: optimize ea_inode block expansion Łukasz Stelmach <l.stelmach(a)samsung.com> ALSA: hda/realtek: Add quirk for HP EliteDesk 800 G6 Tower PC Dmitry Fomin <fomindmitriyfoma(a)mail.ru> ALSA: ice1712: Do not left ice->gpio_mutex locked in aureon_add_controls() Johan Hovold <johan+linaro(a)kernel.org> irqdomain: Drop bogus fwspec-mapping error handling Johan Hovold <johan+linaro(a)kernel.org> irqdomain: Fix disassociation race Johan Hovold <johan+linaro(a)kernel.org> irqdomain: Fix association race Roberto Sassu <roberto.sassu(a)huawei.com> ima: Align ima_file_mmap() parameters with mmap_file LSM hook KP Singh <kpsingh(a)kernel.org> Documentation/hw-vuln: Document the interaction between IBRS and STIBP KP Singh <kpsingh(a)kernel.org> x86/speculation: Allow enabling STIBP with legacy IBRS Borislav Petkov (AMD) <bp(a)alien8.de> x86/microcode/AMD: Fix mixed steppings support Borislav Petkov (AMD) <bp(a)alien8.de> x86/microcode/AMD: Add a @cpu parameter to the reloading functions Borislav Petkov (AMD) <bp(a)alien8.de> x86/microcode/amd: Remove load_microcode_amd()'s bsp parameter Yang Jihong <yangjihong1(a)huawei.com> x86/kprobes: Fix arch_check_optimized_kprobe check within optimized_kprobe range Yang Jihong <yangjihong1(a)huawei.com> x86/kprobes: Fix __recover_optprobed_insn check optimizing logic Sean Christopherson <seanjc(a)google.com> x86/reboot: Disable SVM, not just VMX, when stopping CPUs Sean Christopherson <seanjc(a)google.com> x86/reboot: Disable virtualization in an emergency if SVM is supported Sean Christopherson <seanjc(a)google.com> x86/crash: Disable virt in core NMI crash handler to avoid double shootdown Sean Christopherson <seanjc(a)google.com> x86/virt: Force GIF=1 prior to disabling SVM (for reboot flows) Nico Boehr <nrb(a)linux.ibm.com> KVM: s390: disable migration mode when dirty tracking is disabled Sean Christopherson <seanjc(a)google.com> KVM: Destroy target device if coalesced MMIO unregistration fails Jan Kara <jack(a)suse.cz> udf: Fix file corruption when appending just after end of preallocated extent Jan Kara <jack(a)suse.cz> udf: Detect system inodes linked into directory hierarchy Jan Kara <jack(a)suse.cz> udf: Preserve link count of system files Jan Kara <jack(a)suse.cz> udf: Do not update file length for failed writes to inline files Jan Kara <jack(a)suse.cz> udf: Do not bother merging very long extents Jan Kara <jack(a)suse.cz> udf: Truncate added extents on failed expansion Heming Zhao via Ocfs2-devel <ocfs2-devel(a)oss.oracle.com> ocfs2: fix non-auto defrag path not working issue Heming Zhao via Ocfs2-devel <ocfs2-devel(a)oss.oracle.com> ocfs2: fix defrag path triggering jbd2 ASSERT Eric Biggers <ebiggers(a)google.com> f2fs: fix cgroup writeback accounting with fs-layer encryption Eric Biggers <ebiggers(a)google.com> f2fs: fix information leak in f2fs_move_inline_dirents() Dongliang Mu <mudongliangabcd(a)gmail.com> fs: hfsplus: fix UAF issue in hfsplus_put_super Liu Shixin <liushixin2(a)huawei.com> hfs: fix missing hfs_bnode_get() in __hfs_bnode_create Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org> ARM: dts: exynos: correct HDMI phy compatible in Exynos4 Vasily Gorbik <gor(a)linux.ibm.com> s390/kprobes: fix current_kprobe never cleared after kprobes reenter Vasily Gorbik <gor(a)linux.ibm.com> s390/kprobes: fix irq mask clobbering on kprobe reenter from post_handler Ilya Leoshkevich <iii(a)linux.ibm.com> s390: discard .interp section Corey Minyard <cminyard(a)mvista.com> ipmi_ssif: Rename idle state and check Johan Hovold <johan+linaro(a)kernel.org> rtc: pm8xxx: fix set-alarm race Alper Nebi Yasak <alpernebiyasak(a)gmail.com> firmware: coreboot: framebuffer: Ignore reserved pixel color bits Jun ASAKA <JunASAKA(a)zzy040330.moe> wifi: rtl8xxxu: fixing transmisison failure for rtl8192eu Jeff Layton <jlayton(a)kernel.org> nfsd: zero out pointers after putting nfsd_files on COPY setup error Mike Snitzer <snitzer(a)kernel.org> dm cache: add cond_resched() to various workqueue loops Mike Snitzer <snitzer(a)kernel.org> dm thin: add cond_resched() to various workqueue loops Darrell Kavanagh <darrell.kavanagh(a)gmail.com> drm: panel-orientation-quirks: Add quirk for Lenovo IdeaPad Duet 3 10IGL5 Claudiu Beznea <claudiu.beznea(a)microchip.com> pinctrl: at91: use devm_kasprintf() to avoid potential leaks Robin Murphy <robin.murphy(a)arm.com> hwmon: (coretemp) Simplify platform device handling Kees Cook <keescook(a)chromium.org> regulator: s5m8767: Bounds check id indexing into arrays Kees Cook <keescook(a)chromium.org> regulator: max77802: Bounds check regulator id against opmode Kees Cook <keescook(a)chromium.org> ASoC: kirkwood: Iterate over array indexes instead of using pointer math Jakob Koschel <jkl820.git(a)gmail.com> docs/scripts/gdb: add necessary make scripts_gdb step Jiasheng Jiang <jiasheng(a)iscas.ac.cn> drm/msm/dsi: Add missing check for alloc_ordered_workqueue Liwei Song <liwei.song(a)windriver.com> drm/radeon: free iio for atombios when driver shutdown Jingyuan Liang <jingyliang(a)chromium.org> HID: Add Mapping for System Microphone Mute Tomi Valkeinen <tomi.valkeinen(a)ideasonboard.com> drm/omap: dsi: Fix excessive stack usage Roman Li <roman.li(a)amd.com> drm/amd/display: Fix potential null-deref in dm_resume Kees Cook <keescook(a)chromium.org> uaccess: Add minimum bounds check on kernel buffer size Kees Cook <keescook(a)chromium.org> coda: Avoid partial allocation of sig_inputArgs Shay Drory <shayd(a)nvidia.com> net/mlx5: fw_tracer: Fix debug print Hans de Goede <hdegoede(a)redhat.com> ACPI: video: Fix Lenovo Ideapad Z570 DMI match Lorenzo Bianconi <lorenzo(a)kernel.org> wifi: mt76: dma: free rx_head in mt76_dma_rx_cleanup Michael Schmitz <schmitzmic(a)gmail.com> m68k: Check syscall_trace_enter() return code Florian Fainelli <f.fainelli(a)gmail.com> net: bcmgenet: Add a check for oversized packets Mark Rutland <mark.rutland(a)arm.com> ACPI: Don't build ACPICA with '-Os' Jesse Brandeburg <jesse.brandeburg(a)intel.com> ice: add missing checks for PF vsi type Pietro Borrello <borrello(a)diag.uniroma1.it> inet: fix fast path in __inet_hash_connect() Jisoo Jang <jisoo.jang(a)yonsei.ac.kr> wifi: mt7601u: fix an integer underflow Jisoo Jang <jisoo.jang(a)yonsei.ac.kr> wifi: brcmfmac: ensure CLM version is null-terminated to prevent stack-out-of-bounds Breno Leitao <leitao(a)debian.org> x86/bugs: Reset speculation control settings on init Jann Horn <jannh(a)google.com> timers: Prevent union confusion from unexpected restart_syscall() Yang Li <yang.lee(a)linux.alibaba.com> thermal: intel: Fix unsigned comparison with less than zero Paul E. McKenney <paulmck(a)kernel.org> rcu: Suppress smp_processor_id() complaint in synchronize_rcu_expedited_wait() Jisoo Jang <jisoo.jang(a)yonsei.ac.kr> wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds() Li Nan <linan122(a)huawei.com> blk-iocost: fix divide by 0 error in calc_lcoefs() Markuss Broks <markuss.broks(a)gmail.com> ARM: dts: exynos: Use Exynos5420 compatible for the MIPI video phy Jan Kara <jack(a)suse.cz> udf: Define EFSCORRUPTED error code Bjorn Andersson <quic_bjorande(a)quicinc.com> rpmsg: glink: Avoid infinite loop on intent for missing channel Duoming Zhou <duoming(a)zju.edu.cn> media: usb: siano: Fix use after free bugs caused by do_submit_urb Hans Verkuil <hverkuil-cisco(a)xs4all.nl> media: i2c: ov7670: 0 instead of -EINVAL was returned Duoming Zhou <duoming(a)zju.edu.cn> media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() Yuan Can <yuancan(a)huawei.com> media: i2c: ov772x: Fix memleak in ov772x_probe() Shang XiaoJing <shangxiaojing(a)huawei.com> media: ov5675: Fix memleak in ov5675_init_controls() Nathan Chancellor <nathan(a)kernel.org> powerpc: Remove linker flag from KBUILD_AFLAGS Jiasheng Jiang <jiasheng(a)iscas.ac.cn> media: platform: ti: Add missing check for devm_regulator_get Sibi Sankar <quic_sibis(a)quicinc.com> remoteproc: qcom_q6v5_mss: Use a carveout to authenticate modem headers Randy Dunlap <rdunlap(a)infradead.org> MIPS: vpe-mt: drop physical_memsize Randy Dunlap <rdunlap(a)infradead.org> MIPS: SMP-CPS: fix build error when HOTPLUG_CPU not set Ganesh Goudar <ganeshgr(a)linux.ibm.com> powerpc/eeh: Set channel state after notifying the drivers Daniel Axtens <dja(a)axtens.net> powerpc/eeh: Small refactor of eeh_handle_normal_event() Nathan Lynch <nathanl(a)linux.ibm.com> powerpc/rtas: ensure 4KB alignment for rtas_data_buf Nathan Lynch <nathanl(a)linux.ibm.com> powerpc/rtas: make all exports GPL Nathan Lynch <nathanl(a)linux.ibm.com> powerpc/pseries/lparcfg: add missing RTAS retry status handling Nathan Lynch <nathanl(a)linux.ibm.com> powerpc/pseries/lpar: add missing RTAS retry status handling Chen-Yu Tsai <wenst(a)chromium.org> clk: Honor CLK_OPS_PARENT_ENABLE in clk_core_is_enabled() Frederic Barrat <fbarrat(a)linux.ibm.com> powerpc/powernv/ioda: Skip unallocated resources when mapping to PE Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org> clk: qcom: gpucc-sdm845: fix clk_dis_wait being programmed for CX GDSC Luca Ellero <l.ellero(a)asem.it> Input: ads7846 - don't check penirq immediately for 7845 Luca Ellero <l.ellero(a)asem.it> Input: ads7846 - don't report pressure for ads7845 Geert Uytterhoeven <geert+renesas(a)glider.be> clk: renesas: cpg-mssr: Remove superfluous check in resume code Yoshihiro Shimoda <yoshihiro.shimoda.uh(a)renesas.com> clk: renesas: cpg-mssr: Use enum clk_reg_layout instead of a boolean flag Alexey Khoroshilov <khoroshilov(a)ispras.ru> clk: renesas: cpg-mssr: Fix use after free if cpg_mssr_common_init() failed Samuel Holland <samuel(a)sholland.org> mtd: rawnand: sunxi: Fix the size of the last OOB region Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org> clk: qcom: gcc-qcs404: fix names of the DSI clocks used as parents Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org> clk: qcom: gcc-qcs404: disable gpll[04]_out_aux parents Qiheng Lin <linqiheng(a)huawei.com> mfd: pcf50633-adc: Fix potential memleak in pcf50633_adc_async_read() Masami Hiramatsu (Google) <mhiramat(a)kernel.org> selftests/ftrace: Fix bash specific "==" operator Randy Dunlap <rdunlap(a)infradead.org> sparc: allow PM configs for sparc32 COMPILE_TEST Yicong Yang <yangyicong(a)hisilicon.com> perf tools: Fix auto-complete on aarch64 Ian Rogers <irogers(a)google.com> perf llvm: Fix inadvertent file creation Andreas Gruenbacher <agruenba(a)redhat.com> gfs2: jdata writepage fix Zhang Xiaoxu <zhangxiaoxu5(a)huawei.com> cifs: Fix warning and UAF when destroy the MR list Zhang Xiaoxu <zhangxiaoxu5(a)huawei.com> cifs: Fix lost destroy smbd connection when MR allocate failed Benjamin Coddington <bcodding(a)redhat.com> nfsd: fix race to check ls_layouts Pietro Borrello <borrello(a)diag.uniroma1.it> hid: bigben_probe(): validate report count Hans de Goede <hdegoede(a)redhat.com> HID: asus: Fix mute and touchpad-toggle keys on Medion Akoya E1239T Hans de Goede <hdegoede(a)redhat.com> HID: asus: Add support for multi-touch touchpad on Medion Akoya E1239T Hans de Goede <hdegoede(a)redhat.com> HID: asus: Add report_size to struct asus_touchpad_info Hans de Goede <hdegoede(a)redhat.com> HID: asus: Only set EV_REP if we are adding a mapping Pietro Borrello <borrello(a)diag.uniroma1.it> HID: bigben: use spinlock to safely schedule workers Pietro Borrello <borrello(a)diag.uniroma1.it> HID: bigben_worker() remove unneeded check on report_field Pietro Borrello <borrello(a)diag.uniroma1.it> HID: bigben: use spinlock to protect concurrent accesses Lucas Tanure <lucas.tanure(a)collabora.com> ASoC: soc-dapm.h: fixup warning struct snd_pcm_substream not declared Tzung-Bi Shih <tzungbi(a)google.com> ASoC: dapm: declare missing structure prototypes Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> spi: synquacer: Fix timeout handling in synquacer_spi_transfer_one() Mike Snitzer <snitzer(a)kernel.org> dm: remove flush_scheduled_work() during local_exit() Vadim Pasternak <vadimp(a)nvidia.com> hwmon: (mlxreg-fan) Return zero speed for broken fan William Zhang <william.zhang(a)broadcom.com> spi: bcm63xx-hsspi: Fix multi-bit mode setting Álvaro Fernández Rojas <noltari(a)gmail.com> spi: bcm63xx-hsspi: fix pm_runtime Jiasheng Jiang <jiasheng(a)iscas.ac.cn> scsi: aic94xx: Add missing check for dma_map_single() Jonathan Cormier <jcormier(a)criticallink.com> hwmon: (ltc2945) Handle error case in ltc2945_value_store Haibo Chen <haibo.chen(a)nxp.com> gpio: vf610: connect GPIO label to dev name Kuninori Morimoto <kuninori.morimoto.gx(a)renesas.com> ASoC: soc-compress.c: fixup private_data on snd_soc_new_compress() Nícolas F. R. A. Prado <nfraprado(a)collabora.com> drm/mediatek: Clean dangling pointer on bind error path Rob Clark <robdclark(a)chromium.org> drm/mediatek: Drop unbalanced obj unref Miles Chen <miles.chen(a)mediatek.com> drm/mediatek: Use NULL instead of 0 for NULL pointer Wambui Karuga <wambui.karugax(a)gmail.com> drm/mediatek: remove cast to pointers passed to kfree Mikko Perttunen <mperttunen(a)nvidia.com> gpu: host1x: Don't skip assigning syncpoints to channels Jiasheng Jiang <jiasheng(a)iscas.ac.cn> drm/msm/mdp5: Add check for kzalloc Thomas Zimmermann <tzimmermann(a)suse.de> drm: Initialize struct drm_crtc_state.no_vblank from device settings Boris Brezillon <boris.brezillon(a)collabora.com> drm/bridge: Introduce drm_bridge_get_next_bridge() Boris Brezillon <boris.brezillon(a)collabora.com> drm/bridge: Rename bridge helpers targeting a bridge chain Boris Brezillon <boris.brezillon(a)collabora.com> drm/exynos: Don't reset bridge->next Jiasheng Jiang <jiasheng(a)iscas.ac.cn> drm/msm/dpu: Add check for pstates Jiasheng Jiang <jiasheng(a)iscas.ac.cn> drm/msm/dpu: Add check for cstate Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org> drm/msm: use strscpy instead of strncpy Daniel Mentz <danielmentz(a)google.com> drm/mipi-dsi: Fix byte order of 16-bit DCS set/get brightness Alexey V. Vissarionov <gremlin(a)altlinux.org> ALSA: hda/ca0132: minor fix for allocation size Shengjiu Wang <shengjiu.wang(a)nxp.com> ASoC: fsl_sai: initialize is_dsp_mode flag Miaoqian Lin <linmq006(a)gmail.com> pinctrl: stm32: Fix refcount leak in stm32_pctrl_get_irq_domain Jiasheng Jiang <jiasheng(a)iscas.ac.cn> drm/msm/hdmi: Add missing check for alloc_ordered_workqueue Liang He <windhl(a)126.com> gpu: ipu-v3: common: Add of_node_put() for reference returned by of_graph_get_port_by_id() Dave Stevenson <dave.stevenson(a)raspberrypi.com> drm/vc4: dpi: Fix format mapping for RGB565 Dave Stevenson <dave.stevenson(a)raspberrypi.com> drm/vc4: dpi: Add option for inverting pixel clock and output enable Yuan Can <yuancan(a)huawei.com> drm/bridge: megachips: Fix error handling in i2c_register_driver() Geert Uytterhoeven <geert+renesas(a)glider.be> drm: mxsfb: DRM_MXSFB should depend on ARCH_MXS || ARCH_MXC Geert Uytterhoeven <geert(a)linux-m68k.org> drm/fourcc: Add missing big-endian XRGB1555 and RGB565 formats Roxana Nicolescu <roxana.nicolescu(a)canonical.com> selftest: fib_tests: Always cleanup before exit Jakub Sitnicki <jakub(a)cloudflare.com> selftests/net: Interpret UDP_GRO cmsg data as an int value Florian Fainelli <f.fainelli(a)gmail.com> irqchip/irq-bcm7120-l2: Set IRQ_LEVEL for level triggered interrupts Florian Fainelli <f.fainelli(a)gmail.com> irqchip/irq-brcmstb-l2: Set IRQ_LEVEL for level triggered interrupts Frank Jungclaus <frank.jungclaus(a)esd.eu> can: esd_usb: Move mislocated storage of SJA1000_ECC_SEG bits in case of a bus error Yongqin Liu <yongqin.liu(a)linaro.org> thermal/drivers/hisi: Drop second sensor hi3660 Shayne Chen <shayne.chen(a)mediatek.com> wifi: mac80211: make rate u32 in sta_set_rate_info_rx() Herbert Xu <herbert(a)gondor.apana.org.au> crypto: crypto4xx - Call dma_unmap_page when done Dan Carpenter <error27(a)gmail.com> wifi: mwifiex: fix loop iterator in mwifiex_update_ampdu_txwinsize() Jiasheng Jiang <jiasheng(a)iscas.ac.cn> wifi: iwl4965: Add missing check for create_singlethread_workqueue() Jiasheng Jiang <jiasheng(a)iscas.ac.cn> wifi: iwl3945: Add missing check for create_singlethread_workqueue Kees Cook <keescook(a)chromium.org> treewide: Replace DECLARE_TASKLET() with DECLARE_TASKLET_OLD() Kees Cook <keescook(a)chromium.org> usb: gadget: udc: Avoid tasklet passing a global Conor Dooley <conor.dooley(a)microchip.com> RISC-V: time: initialize hrtimer based broadcast clock event device Randy Dunlap <rdunlap(a)infradead.org> m68k: /proc/hardware should depend on PROC_FS Herbert Xu <herbert(a)gondor.apana.org.au> crypto: rsa-pkcs1pad - Use akcipher_request_complete Pietro Borrello <borrello(a)diag.uniroma1.it> rds: rds_rm_zerocopy_callback() correct order for list_add_tail() Ilya Leoshkevich <iii(a)linux.ibm.com> libbpf: Fix alen calculation in libbpf_nla_dump_errormsg() Luiz Augusto von Dentz <luiz.von.dentz(a)intel.com> Bluetooth: L2CAP: Fix potential user-after-free Qi Zheng <zhengqi.arch(a)bytedance.com> OPP: fix error checking in opp_migrate_dentry() Pietro Borrello <borrello(a)diag.uniroma1.it> tap: tap_open(): correctly initialize socket uid Pietro Borrello <borrello(a)diag.uniroma1.it> tun: tun_chr_open(): correctly initialize socket uid Pietro Borrello <borrello(a)diag.uniroma1.it> net: add sock_init_data_uid() Geliang Tang <geliangtang(a)gmail.com> mptcp: add sk_stop_timer_sync helper Miaoqian Lin <linmq006(a)gmail.com> irqchip/ti-sci: Fix refcount leak in ti_sci_intr_irq_domain_probe Miaoqian Lin <linmq006(a)gmail.com> irqchip/irq-mvebu-gicp: Fix refcount leak in mvebu_gicp_probe Miaoqian Lin <linmq006(a)gmail.com> irqchip/alpine-msi: Fix refcount leak in alpine_msix_init_domains Jack Morgenstein <jackm(a)nvidia.com> net/mlx5: Enhance debug print in page allocation failure Yang Yingliang <yangyingliang(a)huawei.com> powercap: fix possible name leak in powercap_register_zone() Herbert Xu <herbert(a)gondor.apana.org.au> crypto: seqiv - Handle EBUSY correctly Herbert Xu <herbert(a)gondor.apana.org.au> crypto: essiv - Handle EBUSY correctly Chen Wandun <chenwandun(a)huawei.com> crypto: essiv - remove redundant null pointer check before kfree Koba Ko <koba.taiwan(a)gmail.com> crypto: ccp - Failure on re-initialization due to duplicate sysfs filename Armin Wolf <W_Armin(a)gmx.de> ACPI: battery: Fix missing NUL-termination with large strings Minsuk Kang <linuxlovemin(a)yonsei.ac.kr> wifi: ath9k: Fix potential stack-out-of-bounds write in ath9k_wmi_rsp_callback() Fedor Pchelkin <pchelkin(a)ispras.ru> wifi: ath9k: hif_usb: clean up skbs if ath9k_hif_usb_rx_stream() fails Pavel Skripkin <paskripkin(a)gmail.com> ath9k: htc: clean up statistics macros Wan Jiabing <wanjiabing(a)vivo.com> ath9k: hif_usb: simplify if-if to if-else Fedor Pchelkin <pchelkin(a)ispras.ru> wifi: ath9k: htc_hst: free skb in ath9k_htc_rx_msg() if there is no callback function Alexey Kodanev <aleksei.kodanev(a)bell-sw.com> wifi: orinoco: check return value of hermes_write_wordrec() Daniil Tatianin <d-tatianin(a)yandex-team.ru> ACPICA: nsrepair: handle cases without a return value correctly Herbert Xu <herbert(a)gondor.apana.org.au> lib/mpi: Fix buffer overrun when SG is too long Zhen Lei <thunder.leizhen(a)huawei.com> genirq: Fix the return type of kstat_cpu_irqs_sum() Mario Limonciello <mario.limonciello(a)amd.com> ACPICA: Drop port I/O validation for some regions Eric Biggers <ebiggers(a)google.com> crypto: x86/ghash - fix unaligned access in ghash_setkey() Yang Yingliang <yangyingliang(a)huawei.com> wifi: wl3501_cs: don't call kfree_skb() under spin_lock_irqsave() Yang Yingliang <yangyingliang(a)huawei.com> wifi: libertas: cmdresp: don't call kfree_skb() under spin_lock_irqsave() Yang Yingliang <yangyingliang(a)huawei.com> wifi: libertas: main: don't call kfree_skb() under spin_lock_irqsave() Yang Yingliang <yangyingliang(a)huawei.com> wifi: libertas: if_usb: don't call kfree_skb() under spin_lock_irqsave() Yang Yingliang <yangyingliang(a)huawei.com> wifi: libertas_tf: don't call kfree_skb() under spin_lock_irqsave() Zhengchao Shao <shaozhengchao(a)huawei.com> wifi: brcmfmac: unmap dma buffer in brcmf_msgbuf_alloc_pktid() Zhang Changzhong <zhangchangzhong(a)huawei.com> wifi: brcmfmac: fix potential memory leak in brcmf_netdev_start_xmit() Zhang Changzhong <zhangchangzhong(a)huawei.com> wifi: wilc1000: fix potential memory leak in wilc_mac_xmit() Luc Van Oostenryck <luc.vanoostenryck(a)gmail.com> wilc1000: let wilc_mac_xmit() return NETDEV_TX_OK Zhengchao Shao <shaozhengchao(a)huawei.com> wifi: ipw2200: fix memory leak in ipw_wdev_init() Yang Yingliang <yangyingliang(a)huawei.com> wifi: ipw2x00: don't call dev_kfree_skb() under spin_lock_irqsave() Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> ipw2x00: switch from 'pci_' to 'dma_' API Li Zetao <lizetao1(a)huawei.com> wifi: rtlwifi: Fix global-out-of-bounds bug in _rtl8812ae_phy_set_txpower_limit() Arnd Bergmann <arnd(a)arndb.de> rtlwifi: fix -Wpointer-sign warning Yang Yingliang <yangyingliang(a)huawei.com> wifi: rtl8xxxu: don't call dev_kfree_skb() under spin_lock_irqsave() Zhengchao Shao <shaozhengchao(a)huawei.com> wifi: libertas: fix memory leak in lbs_init_adapter() Yang Yingliang <yangyingliang(a)huawei.com> wifi: iwlegacy: common: don't call dev_kfree_skb() under spin_lock_irqsave() Markus Elfring <elfring(a)users.sourceforge.net> net/wireless: Delete unnecessary checks before the macro call “dev_kfree_skb” Yuan Can <yuancan(a)huawei.com> wifi: rsi: Fix memory leak in rsi_coex_attach() Martin K. Petersen <martin.petersen(a)oracle.com> block: bio-integrity: Copy flags when bio_integrity_payload is cloned Pietro Borrello <borrello(a)diag.uniroma1.it> sched/rt: pick_next_rt_entity(): check list_entry Dietmar Eggemann <dietmar.eggemann(a)arm.com> sched/deadline,rt: Remove unused parameter from pick_next_[rt|dl]_entity() Qiheng Lin <linqiheng(a)huawei.com> s390/dasd: Fix potential memleak in dasd_eckd_init() Jan Höppner <hoeppner(a)linux.ibm.com> s390/dasd: Prepare for additional path event handling Kemeng Shi <shikemeng(a)huaweicloud.com> blk-mq: correct stale comment of .get_budget Kemeng Shi <shikemeng(a)huaweicloud.com> blk-mq: wait on correct sbitmap_queue in blk_mq_mark_tag_wait Kemeng Shi <shikemeng(a)huaweicloud.com> blk-mq: remove stale comment for blk_mq_sched_mark_restart_hctx Salman Qazi <sqazi(a)google.com> block: Limit number of items taken from the I/O scheduler in one go Douglas Anderson <dianders(a)chromium.org> Revert "scsi: core: run queue if SCSI device queue isn't ready and queue is idle" AngeloGioacchino Del Regno <angelogioacchino.delregno(a)collabora.com> arm64: dts: mediatek: mt7622: Add missing pwm-cells to pwm node Peng Fan <peng.fan(a)nxp.com> ARM: dts: imx7s: correct iomuxc gpr mux controller cells Neil Armstrong <neil.armstrong(a)linaro.org> arm64: dts: amlogic: meson-gxl-s905d-phicomm-n1: fix led node name Neil Armstrong <neil.armstrong(a)linaro.org> arm64: dts: amlogic: meson-gxl: add missing unit address to eth-phy-mux node name Neil Armstrong <neil.armstrong(a)linaro.org> arm64: dts: amlogic: meson-gx: add missing unit address to rng node name Neil Armstrong <neil.armstrong(a)linaro.org> arm64: dts: amlogic: meson-gx: add missing SCPI sensors compatible Neil Armstrong <neil.armstrong(a)linaro.org> arm64: dts: amlogic: meson-axg: fix SCPI clock dvfs node name Neil Armstrong <neil.armstrong(a)linaro.org> arm64: dts: amlogic: meson-gx: fix SCPI clock dvfs node name Angus Chen <angus.chen(a)jaguarmicro.com> ARM: imx: Call ida_simple_remove() for ida_simple_get Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org> ARM: dts: exynos: correct wr-active property in Exynos3250 Rinato Yang Yingliang <yangyingliang(a)huawei.com> ARM: OMAP1: call platform_device_put() in error case in omap1_dm_timer_init() Christian Hewitt <christianshewitt(a)gmail.com> arm64: dts: meson: remove CPU opps below 1GHz for G12A boards Martin Blumenstingl <martin.blumenstingl(a)googlemail.com> arm64: dts: meson-gx: Fix the SCPI DVFS node name and unit address Martin Blumenstingl <martin.blumenstingl(a)googlemail.com> arm64: dts: meson-g12a: Fix internal Ethernet PHY unit name Martin Blumenstingl <martin.blumenstingl(a)googlemail.com> arm64: dts: meson-gx: Fix Ethernet MAC address unit name Qiheng Lin <linqiheng(a)huawei.com> ARM: zynq: Fix refcount leak in zynq_early_slcr_init Dmitry Baryshkov <dmitry.baryshkov(a)linaro.org> arm64: dts: qcom: qcs404: use symbol names for PCIe resets Chen Hui <judy.chenhui(a)huawei.com> ARM: OMAP2+: Fix memory leak in realtime_counter_init() Pietro Borrello <borrello(a)diag.uniroma1.it> HID: asus: use spinlock to safely schedule workers Pietro Borrello <borrello(a)diag.uniroma1.it> HID: asus: use spinlock to protect concurrent accesses Luke D. Jones <luke(a)ljones.dev> HID: asus: Remove check for same LED brightness on set ------------- Diffstat: Documentation/admin-guide/cgroup-v1/memory.rst | 13 +- Documentation/admin-guide/hw-vuln/spectre.rst | 21 +- Documentation/dev-tools/gdb-kernel-debugging.rst | 4 + .../bindings/rtc/allwinner,sun6i-a31-rtc.yaml | 1 - Documentation/virt/kvm/api.txt | 18 +- Documentation/virt/kvm/devices/vm.txt | 4 + Makefile | 15 +- arch/alpha/kernel/traps.c | 30 +- arch/arm/boot/dts/exynos3250-rinato.dts | 2 +- arch/arm/boot/dts/exynos4-cpu-thermal.dtsi | 2 +- arch/arm/boot/dts/exynos4.dtsi | 2 +- arch/arm/boot/dts/exynos5410-odroidxu.dts | 1 - arch/arm/boot/dts/exynos5420.dtsi | 2 +- arch/arm/boot/dts/imx7s.dtsi | 2 +- arch/arm/boot/dts/spear320-hmi.dts | 2 +- arch/arm/mach-imx/mmdc.c | 24 +- arch/arm/mach-omap1/timer.c | 2 +- arch/arm/mach-omap2/timer.c | 1 + arch/arm/mach-zynq/slcr.c | 1 + arch/arm64/boot/dts/amlogic/meson-axg.dtsi | 4 +- arch/arm64/boot/dts/amlogic/meson-g12-common.dtsi | 2 +- arch/arm64/boot/dts/amlogic/meson-g12a.dtsi | 20 - arch/arm64/boot/dts/amlogic/meson-gx.dtsi | 6 +- .../dts/amlogic/meson-gxl-s905d-phicomm-n1.dts | 2 +- arch/arm64/boot/dts/amlogic/meson-gxl.dtsi | 2 +- arch/arm64/boot/dts/mediatek/mt7622.dtsi | 1 + arch/arm64/boot/dts/qcom/qcs404.dtsi | 12 +- arch/m68k/68000/entry.S | 2 + arch/m68k/Kconfig.devices | 1 + arch/m68k/coldfire/entry.S | 2 + arch/m68k/kernel/entry.S | 3 + arch/mips/include/asm/syscall.h | 2 +- arch/mips/include/asm/vpe.h | 1 - arch/mips/kernel/smp-cps.c | 8 +- arch/mips/kernel/vpe-mt.c | 7 +- arch/mips/lantiq/prom.c | 6 - arch/powerpc/Makefile | 2 +- arch/powerpc/kernel/eeh_driver.c | 71 +- arch/powerpc/kernel/rtas.c | 24 +- arch/powerpc/platforms/powernv/pci-ioda.c | 3 +- arch/powerpc/platforms/pseries/lpar.c | 20 +- arch/powerpc/platforms/pseries/lparcfg.c | 20 +- arch/riscv/kernel/time.c | 3 + arch/s390/kernel/kprobes.c | 4 +- arch/s390/kernel/vmlinux.lds.S | 1 + arch/s390/kvm/kvm-s390.c | 16 + arch/sparc/Kconfig | 2 +- arch/um/drivers/vector_kern.c | 1 + arch/x86/crypto/ghash-clmulni-intel_glue.c | 6 +- arch/x86/include/asm/microcode.h | 4 +- arch/x86/include/asm/microcode_amd.h | 4 +- arch/x86/include/asm/msr-index.h | 4 + arch/x86/include/asm/reboot.h | 2 + arch/x86/include/asm/resctrl_sched.h | 19 +- arch/x86/include/asm/virtext.h | 16 +- arch/x86/kernel/cpu/bugs.c | 35 +- arch/x86/kernel/cpu/microcode/amd.c | 53 +- arch/x86/kernel/cpu/microcode/core.c | 6 +- arch/x86/kernel/cpu/resctrl/rdtgroup.c | 14 +- arch/x86/kernel/crash.c | 17 +- arch/x86/kernel/kprobes/opt.c | 6 +- arch/x86/kernel/process_32.c | 2 +- arch/x86/kernel/process_64.c | 2 +- arch/x86/kernel/reboot.c | 88 ++- arch/x86/kernel/smp.c | 6 +- arch/x86/kernel/sysfb_efi.c | 8 + arch/x86/um/vdso/um_vdso.c | 12 +- block/bio-integrity.c | 1 + block/blk-iocost.c | 11 +- block/blk-mq-sched.c | 71 +- block/blk-mq.c | 6 +- crypto/essiv.c | 10 +- crypto/rsa-pkcs1pad.c | 34 +- crypto/seqiv.c | 2 +- drivers/acpi/acpica/Makefile | 2 +- drivers/acpi/acpica/hwvalid.c | 7 +- drivers/acpi/acpica/nsrepair.c | 12 +- drivers/acpi/battery.c | 2 +- drivers/acpi/video_detect.c | 2 +- drivers/block/rbd.c | 20 +- drivers/char/ipmi/ipmi_ssif.c | 46 +- drivers/clk/clk.c | 11 + drivers/clk/qcom/gcc-qcs404.c | 24 +- drivers/clk/qcom/gpucc-sdm845.c | 7 +- drivers/clk/renesas/r7s9210-cpg-mssr.c | 2 +- drivers/clk/renesas/renesas-cpg-mssr.c | 29 +- drivers/clk/renesas/renesas-cpg-mssr.h | 12 +- drivers/crypto/amcc/crypto4xx_core.c | 10 +- drivers/crypto/ccp/ccp-dmaengine.c | 21 +- drivers/firmware/google/framebuffer-coreboot.c | 4 +- drivers/gpio/gpio-vf610.c | 2 +- drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 6 +- .../drm/bridge/megachips-stdpxxxx-ge-b850v3-fw.c | 6 +- drivers/gpu/drm/drm_atomic_helper.c | 29 +- drivers/gpu/drm/drm_bridge.c | 125 ++-- drivers/gpu/drm/drm_encoder.c | 2 +- drivers/gpu/drm/drm_fourcc.c | 4 + drivers/gpu/drm/drm_mipi_dsi.c | 52 ++ drivers/gpu/drm/drm_panel_orientation_quirks.c | 6 + drivers/gpu/drm/drm_probe_helper.c | 2 +- drivers/gpu/drm/drm_vblank.c | 28 + drivers/gpu/drm/exynos/exynos_dp.c | 1 - drivers/gpu/drm/exynos/exynos_drm_dsi.c | 8 +- drivers/gpu/drm/i915/display/intel_quirks.c | 2 + drivers/gpu/drm/mediatek/mtk_drm_drv.c | 1 + drivers/gpu/drm/mediatek/mtk_drm_gem.c | 8 +- drivers/gpu/drm/mediatek/mtk_hdmi.c | 8 +- drivers/gpu/drm/msm/disp/dpu1/dpu_crtc.c | 7 +- drivers/gpu/drm/msm/disp/mdp5/mdp5_crtc.c | 5 +- drivers/gpu/drm/msm/dsi/dsi_host.c | 3 + drivers/gpu/drm/msm/hdmi/hdmi.c | 4 + drivers/gpu/drm/msm/msm_fence.c | 2 +- drivers/gpu/drm/mxsfb/Kconfig | 1 + drivers/gpu/drm/omapdrm/dss/dsi.c | 26 +- drivers/gpu/drm/omapdrm/omap_drv.c | 4 +- drivers/gpu/drm/omapdrm/omap_encoder.c | 3 +- drivers/gpu/drm/radeon/atombios_encoders.c | 5 +- drivers/gpu/drm/radeon/radeon_device.c | 1 + drivers/gpu/drm/vc4/vc4_dpi.c | 66 +- drivers/gpu/drm/vc4/vc4_dsi.c | 8 +- drivers/gpu/host1x/hw/syncpt_hw.c | 3 - drivers/gpu/ipu-v3/ipu-common.c | 1 + drivers/hid/hid-asus.c | 136 +++- drivers/hid/hid-bigbenff.c | 75 ++- drivers/hid/hid-debug.c | 1 + drivers/hid/hid-ids.h | 1 + drivers/hid/hid-input.c | 8 + drivers/hwmon/coretemp.c | 128 ++-- drivers/hwmon/ltc2945.c | 2 + drivers/hwmon/mlxreg-fan.c | 6 + drivers/iio/accel/mma9551_core.c | 10 +- drivers/input/keyboard/omap-keypad.c | 2 +- drivers/input/serio/hil_mlc.c | 2 +- drivers/input/touchscreen/ads7846.c | 13 +- drivers/irqchip/irq-alpine-msi.c | 1 + drivers/irqchip/irq-bcm7120-l2.c | 3 +- drivers/irqchip/irq-brcmstb-l2.c | 6 +- drivers/irqchip/irq-mvebu-gicp.c | 1 + drivers/irqchip/irq-ti-sci-intr.c | 1 + drivers/md/dm-cache-target.c | 4 + drivers/md/dm-flakey.c | 30 +- drivers/md/dm-thin.c | 2 + drivers/md/dm.c | 1 - drivers/media/i2c/ov5675.c | 4 +- drivers/media/i2c/ov7670.c | 2 +- drivers/media/i2c/ov772x.c | 3 +- drivers/media/pci/intel/ipu3/ipu3-cio2.c | 3 + drivers/media/platform/omap3isp/isp.c | 9 + drivers/media/rc/ene_ir.c | 3 +- drivers/media/usb/siano/smsusb.c | 1 + drivers/media/usb/uvc/uvc_ctrl.c | 30 +- drivers/media/usb/uvc/uvc_driver.c | 66 +- drivers/media/usb/uvc/uvc_entity.c | 2 +- drivers/media/usb/uvc/uvc_status.c | 40 +- drivers/media/usb/uvc/uvc_video.c | 15 +- drivers/media/usb/uvc/uvcvideo.h | 6 +- drivers/mfd/arizona-core.c | 2 +- drivers/mfd/pcf50633-adc.c | 7 +- drivers/misc/mei/bus-fixup.c | 8 +- drivers/mtd/nand/raw/sunxi_nand.c | 2 +- drivers/mtd/ubi/build.c | 7 + drivers/mtd/ubi/vmt.c | 18 +- drivers/mtd/ubi/wl.c | 25 +- drivers/net/can/usb/esd_usb2.c | 4 +- drivers/net/ethernet/broadcom/genet/bcmgenet.c | 8 + drivers/net/ethernet/intel/ice/ice_main.c | 17 +- .../ethernet/mellanox/mlx5/core/diag/fw_tracer.c | 2 +- .../net/ethernet/mellanox/mlx5/core/lib/geneve.c | 1 + .../net/ethernet/mellanox/mlx5/core/pagealloc.c | 3 +- drivers/net/tap.c | 2 +- drivers/net/tun.c | 2 +- drivers/net/wan/farsync.c | 4 +- drivers/net/wireless/ath/ath10k/wmi.c | 4 +- drivers/net/wireless/ath/ath9k/hif_usb.c | 60 +- drivers/net/wireless/ath/ath9k/htc.h | 32 +- drivers/net/wireless/ath/ath9k/htc_drv_txrx.c | 10 +- drivers/net/wireless/ath/ath9k/htc_hst.c | 4 +- drivers/net/wireless/ath/ath9k/wmi.c | 1 + .../wireless/broadcom/brcm80211/brcmfmac/common.c | 7 +- .../wireless/broadcom/brcm80211/brcmfmac/core.c | 1 + .../wireless/broadcom/brcm80211/brcmfmac/msgbuf.c | 5 +- drivers/net/wireless/intel/ipw2x00/ipw2100.c | 121 ++-- drivers/net/wireless/intel/ipw2x00/ipw2200.c | 67 +- drivers/net/wireless/intel/iwlegacy/3945-mac.c | 24 +- drivers/net/wireless/intel/iwlegacy/4965-mac.c | 12 +- drivers/net/wireless/intel/iwlegacy/common.c | 8 +- drivers/net/wireless/intersil/orinoco/hw.c | 2 + drivers/net/wireless/marvell/libertas/cmdresp.c | 2 +- drivers/net/wireless/marvell/libertas/if_usb.c | 2 +- drivers/net/wireless/marvell/libertas/main.c | 3 +- drivers/net/wireless/marvell/libertas_tf/if_usb.c | 2 +- drivers/net/wireless/marvell/mwifiex/11n.c | 6 +- drivers/net/wireless/mediatek/mt76/dma.c | 13 +- .../net/wireless/mediatek/mt76/mt76x02_beacon.c | 5 +- drivers/net/wireless/mediatek/mt7601u/dma.c | 3 +- .../net/wireless/realtek/rtl8xxxu/rtl8xxxu_8192e.c | 5 + .../net/wireless/realtek/rtl8xxxu/rtl8xxxu_core.c | 11 +- .../net/wireless/realtek/rtlwifi/rtl8821ae/phy.c | 91 ++- .../net/wireless/realtek/rtlwifi/rtl8821ae/table.c | 4 +- .../net/wireless/realtek/rtlwifi/rtl8821ae/table.h | 4 +- drivers/net/wireless/rsi/rsi_91x_coex.c | 1 + drivers/net/wireless/st/cw1200/scan.c | 3 +- drivers/net/wireless/wl3501_cs.c | 2 +- drivers/nfc/st-nci/se.c | 6 + drivers/nfc/st21nfca/se.c | 6 + drivers/opp/debugfs.c | 2 +- drivers/pci/pci.c | 2 +- drivers/pci/pci.h | 43 +- drivers/pci/quirks.c | 23 + drivers/phy/rockchip/phy-rockchip-typec.c | 3 +- drivers/pinctrl/pinctrl-at91-pio4.c | 4 +- drivers/pinctrl/pinctrl-at91.c | 2 +- drivers/pinctrl/stm32/pinctrl-stm32.c | 1 + drivers/powercap/powercap_sys.c | 14 +- drivers/pwm/pwm-sifive.c | 16 +- drivers/pwm/pwm-stm32-lp.c | 2 +- drivers/regulator/max77802-regulator.c | 34 +- drivers/regulator/s5m8767.c | 6 +- drivers/remoteproc/qcom_q6v5_mss.c | 59 +- drivers/rpmsg/qcom_glink_native.c | 1 + drivers/rtc/rtc-pm8xxx.c | 24 +- drivers/rtc/rtc-sun6i.c | 32 +- drivers/s390/block/dasd.c | 4 +- drivers/s390/block/dasd_diag.c | 8 +- drivers/s390/block/dasd_eckd.c | 82 ++- drivers/s390/block/dasd_fba.c | 8 +- drivers/s390/block/dasd_int.h | 2 +- drivers/s390/crypto/ap_bus.c | 2 +- drivers/scsi/aic94xx/aic94xx_task.c | 3 + drivers/scsi/ipr.c | 41 +- drivers/scsi/qla2xxx/qla_nvme.c | 19 +- drivers/scsi/qla2xxx/qla_os.c | 9 +- drivers/scsi/scsi_lib.c | 7 +- drivers/scsi/ses.c | 64 +- drivers/spi/spi-bcm63xx-hsspi.c | 20 +- drivers/spi/spi-synquacer.c | 7 +- drivers/staging/emxx_udc/emxx_udc.c | 7 +- drivers/staging/most/dim2/dim2.c | 2 +- drivers/staging/octeon/ethernet-tx.c | 2 +- drivers/staging/wilc1000/wilc_netdev.c | 7 +- drivers/thermal/hisi_thermal.c | 4 - drivers/thermal/intel/Kconfig | 3 +- drivers/thermal/intel/intel_powerclamp.c | 20 +- drivers/thermal/intel/intel_quark_dts_thermal.c | 12 +- drivers/thermal/intel/intel_soc_dts_iosf.c | 2 +- drivers/tty/serial/fsl_lpuart.c | 24 +- drivers/tty/tty_io.c | 8 +- drivers/tty/vt/keyboard.c | 2 +- drivers/tty/vt/vc_screen.c | 4 +- drivers/usb/gadget/udc/snps_udc_core.c | 6 +- drivers/usb/host/fhci-sched.c | 2 +- drivers/usb/host/xhci-mvebu.c | 2 +- drivers/usb/storage/ene_ub6250.c | 2 +- drivers/watchdog/at91sam9_wdt.c | 7 +- drivers/watchdog/pcwd_usb.c | 6 +- drivers/watchdog/watchdog_dev.c | 2 +- fs/cifs/smbdirect.c | 4 +- fs/coda/upcall.c | 2 +- fs/ext4/xattr.c | 35 +- fs/f2fs/data.c | 6 +- fs/f2fs/inline.c | 28 +- fs/f2fs/super.c | 11 +- fs/f2fs/verity.c | 12 +- fs/gfs2/aops.c | 3 +- fs/hfs/bnode.c | 1 + fs/hfsplus/super.c | 4 +- fs/jfs/jfs_dmap.c | 3 +- fs/nfsd/nfs4layouts.c | 4 +- fs/nfsd/nfs4proc.c | 2 + fs/ocfs2/move_extents.c | 34 +- fs/ubifs/budget.c | 9 +- fs/ubifs/dir.c | 9 +- fs/ubifs/file.c | 12 +- fs/ubifs/super.c | 17 +- fs/ubifs/tnc.c | 24 +- fs/ubifs/ubifs.h | 5 + fs/udf/file.c | 26 +- fs/udf/inode.c | 74 +-- fs/udf/super.c | 1 + fs/udf/udf_i.h | 3 +- fs/udf/udf_sb.h | 2 + include/drm/drm_bridge.h | 77 ++- include/drm/drm_crtc.h | 34 +- include/drm/drm_mipi_dsi.h | 4 + include/drm/drm_simple_kms_helper.h | 7 +- include/drm/drm_vblank.h | 1 + include/linux/ima.h | 6 +- include/linux/interrupt.h | 15 +- include/linux/kernel_stat.h | 2 +- include/linux/kprobes.h | 2 + include/linux/pci_ids.h | 2 + include/linux/uaccess.h | 4 + include/net/sctp/structs.h | 1 + include/net/sock.h | 9 +- include/sound/soc-dapm.h | 3 + include/uapi/linux/usb/video.h | 30 + include/uapi/linux/uvcvideo.h | 2 +- kernel/backtracetest.c | 2 +- kernel/debug/debug_core.c | 2 +- kernel/fail_function.c | 5 +- kernel/irq/irqdomain.c | 31 +- kernel/irq/resend.c | 2 +- kernel/kprobes.c | 6 +- kernel/rcu/tree_exp.h | 2 + kernel/sched/deadline.c | 5 +- kernel/sched/rt.c | 10 +- kernel/time/hrtimer.c | 2 + kernel/time/posix-stubs.c | 2 + kernel/time/posix-timers.c | 2 + kernel/trace/ring_buffer.c | 7 +- lib/mpi/mpicoder.c | 3 +- mm/huge_memory.c | 3 + mm/memcontrol.c | 4 + net/9p/trans_rdma.c | 15 +- net/9p/trans_xen.c | 48 +- net/atm/pppoatm.c | 2 +- net/bluetooth/hci_sock.c | 11 +- net/bluetooth/l2cap_core.c | 24 - net/bluetooth/l2cap_sock.c | 8 + net/core/dev.c | 4 +- net/core/sock.c | 22 +- net/ipv4/inet_connection_sock.c | 1 + net/ipv4/inet_hashtables.c | 12 +- net/ipv4/tcp_minisocks.c | 7 +- net/ipv6/route.c | 11 +- net/iucv/iucv.c | 2 +- net/mac80211/sta_info.c | 2 +- net/netfilter/nf_conntrack_netlink.c | 5 +- net/nfc/netlink.c | 4 + net/rds/message.c | 2 +- net/sched/Kconfig | 11 - net/sched/Makefile | 1 - net/sched/act_sample.c | 11 +- net/sched/cls_tcindex.c | 730 --------------------- net/sctp/stream_sched_prio.c | 52 +- net/tls/tls_sw.c | 26 +- net/wireless/sme.c | 31 +- security/integrity/ima/ima_main.c | 7 +- security/security.c | 7 +- sound/drivers/pcsp/pcsp_lib.c | 2 +- sound/pci/hda/patch_ca0132.c | 2 +- sound/pci/hda/patch_realtek.c | 1 + sound/pci/ice1712/aureon.c | 2 +- sound/soc/fsl/fsl_sai.c | 1 + sound/soc/kirkwood/kirkwood-dma.c | 2 +- sound/soc/soc-compress.c | 2 +- tools/iio/iio_utils.c | 23 +- tools/lib/bpf/nlattr.c | 2 +- tools/perf/perf-completion.sh | 11 +- tools/perf/util/llvm-utils.c | 25 +- tools/testing/ktest/ktest.pl | 26 +- tools/testing/ktest/sample.conf | 5 + .../ftrace/test.d/ftrace/func_event_triggers.tc | 2 +- tools/testing/selftests/net/fib_tests.sh | 2 + tools/testing/selftests/net/udpgso_bench_rx.c | 6 +- virt/kvm/coalesced_mmio.c | 8 +- 356 files changed, 2777 insertions(+), 2417 deletions(-)

1 year

8
368
0 0

[REGRESSION] v6.1+ bind() does not fail with EADDRINUSE if dual stack is bound

by Paul Holzinger

Hi all, there seems to be a regression which allows you to bind the same port twice when the first bind call bound to all ip addresses (i. e. dual stack). A second bind call for the same port will succeed if you try to bind to a specific ipv4 (e. g. 127.0.0.1), binding to 0.0.0.0 or an ipv6 address fails correctly with EADDRINUSE. I included a small c program below to show the issue. Normally the second bind call should fail, this was the case before v6.1. I bisected the regression to commit 5456262d2baa ("net: Fix incorrect address comparison when searching for a bind2 bucket"). I also checked that the issue is still present in v6.3-rc1. Original report: https://github.com/containers/podman/issues/17719 #regzbot introduced: 5456262d2baa ``` #include <sys/socket.h> #include <sys/un.h> #include <stdlib.h> #include <stdio.h> #include <netinet/in.h> #include <unistd.h> int main(int argc, char *argv[]) { int ret, sock1, sock2; struct sockaddr_in6 addr; struct sockaddr_in addr2; sock1 = socket(AF_INET6, SOCK_STREAM, 0); if (sock1 == -1) { perror("socket1"); exit(1); } sock2 = socket(AF_INET, SOCK_STREAM, 0); if (sock2 == -1) { perror("socket2"); exit(1); } memset(&addr, 0, sizeof(addr)); addr.sin6_family = AF_INET6; addr.sin6_addr = in6addr_any; addr.sin6_port = htons(8080); memset(&addr2, 0, sizeof(addr2)); addr2.sin_family = AF_INET; addr2.sin_addr.s_addr = htonl(INADDR_LOOPBACK); addr2.sin_port = htons(8080); ret = bind(sock1, (struct sockaddr *)&addr, sizeof(addr)); if (ret == -1) { perror("bind1"); exit(1); } printf("bind1 ret: %d\n", ret); if ((listen(sock1, 5)) != 0) { perror("listen1"); exit(1); } ret = bind(sock2, (struct sockaddr *)&addr2, sizeof(addr2)); if (ret == -1) { perror("bind2"); exit(1); } printf("bind2 ret: %d\n", ret); if ((listen(sock2, 5)) != 0) { perror("listen2"); exit(1); } // uncomment pause() to see with ss -tlpn the bound ports // pause(); return 0; } ``` Best regards, Paul

1 year

3
3
0 0

6.1 Backport Request: act_mirred: use the backlog for nested calls to mirred ingress

by Nobel Barakat

SUBJECT: act_mirred: use the backlog for nested calls to mirred ingress COMMIT: commit ca22da2fbd693b54dc8e3b7b54ccc9f7e9ba3640 Reason for request: The commit above resolves CVE-2022-4269.

1 year

2
4
0 0

[PATCH v10 1/4] reiserfs: Add security prefix to xattr name in reiserfs_security_write()

by Roberto Sassu

From: Roberto Sassu <roberto.sassu(a)huawei.com> Reiserfs sets a security xattr at inode creation time in two stages: first, it calls reiserfs_security_init() to obtain the xattr from active LSMs; then, it calls reiserfs_security_write() to actually write that xattr. Unfortunately, it seems there is a wrong expectation that LSMs provide the full xattr name in the form 'security.<suffix>'. However, LSMs always provided just the suffix, causing reiserfs to not write the xattr at all (if the suffix is shorter than the prefix), or to write an xattr with the wrong name. Add a temporary buffer in reiserfs_security_write(), and write to it the full xattr name, before passing it to reiserfs_xattr_set_handle(). Also replace the name length check with a check that the full xattr name is not larger than XATTR_NAME_MAX. Cc: stable(a)vger.kernel.org # v2.6.x Fixes: 57fe60df6241 ("reiserfs: add atomic addition of selinux attributes during inode creation") Signed-off-by: Roberto Sassu <roberto.sassu(a)huawei.com> --- fs/reiserfs/xattr_security.c | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/fs/reiserfs/xattr_security.c b/fs/reiserfs/xattr_security.c index 6bffdf9a4fd..6e0a099dd78 100644 --- a/fs/reiserfs/xattr_security.c +++ b/fs/reiserfs/xattr_security.c @@ -95,11 +95,15 @@ int reiserfs_security_write(struct reiserfs_transaction_handle *th, struct inode *inode, struct reiserfs_security_handle *sec) { + char xattr_name[XATTR_NAME_MAX + 1] = XATTR_SECURITY_PREFIX; int error; - if (strlen(sec->name) < sizeof(XATTR_SECURITY_PREFIX)) + + if (XATTR_SECURITY_PREFIX_LEN + strlen(sec->name) > XATTR_NAME_MAX) return -EINVAL; - error = reiserfs_xattr_set_handle(th, inode, sec->name, sec->value, + strlcat(xattr_name, sec->name, sizeof(xattr_name)); + + error = reiserfs_xattr_set_handle(th, inode, xattr_name, sec->value, sec->length, XATTR_CREATE); if (error == -ENODATA || error == -EOPNOTSUPP) error = 0; -- 2.25.1

1 year

2
1
0 0

[PATCH v2] KVM: arm64: PMU: Restore the guest's EL0 event counting after migration

by Reiji Watanabe

Currently, with VHE, KVM enables the EL0 event counting for the guest on vcpu_load() or KVM enables it as a part of the PMU register emulation process, when needed. However, in the migration case (with VHE), the same handling is lacking, as vPMU register values that were restored by userspace haven't been propagated yet (the PMU events haven't been created) at the vcpu load-time on the first KVM_RUN (kvm_vcpu_pmu_restore_guest() called from vcpu_load() on the first KVM_RUN won't do anything as events_{guest,host} of kvm_pmu_events are still zero). So, with VHE, enable the guest's EL0 event counting on the first KVM_RUN (after the migration) when needed. More specifically, have kvm_pmu_handle_pmcr() call kvm_vcpu_pmu_restore_guest() so that kvm_pmu_handle_pmcr() on the first KVM_RUN can take care of it. Fixes: d0c94c49792c ("KVM: arm64: Restore PMU configuration on first run") Cc: stable(a)vger.kernel.org Reviewed-by: Marc Zyngier <maz(a)kernel.org> Signed-off-by: Reiji Watanabe <reijiw(a)google.com> --- v2: - Added more explanation to the commit message [Marc] - Added Marc's r-b tag (Thank you!) v1: https://lore.kernel.org/all/20230328034725.2051499-1-reijiw@google.com/ --- arch/arm64/kvm/pmu-emul.c | 1 + arch/arm64/kvm/sys_regs.c | 1 - 2 files changed, 1 insertion(+), 1 deletion(-) diff --git a/arch/arm64/kvm/pmu-emul.c b/arch/arm64/kvm/pmu-emul.c index 24908400e190..74e0d2b153b5 100644 --- a/arch/arm64/kvm/pmu-emul.c +++ b/arch/arm64/kvm/pmu-emul.c @@ -557,6 +557,7 @@ void kvm_pmu_handle_pmcr(struct kvm_vcpu *vcpu, u64 val) for_each_set_bit(i, &mask, 32) kvm_pmu_set_pmc_value(kvm_vcpu_idx_to_pmc(vcpu, i), 0, true); } + kvm_vcpu_pmu_restore_guest(vcpu); } static bool kvm_pmu_counter_is_enabled(struct kvm_pmc *pmc) diff --git a/arch/arm64/kvm/sys_regs.c b/arch/arm64/kvm/sys_regs.c index 53749d3a0996..425e1e9adae7 100644 --- a/arch/arm64/kvm/sys_regs.c +++ b/arch/arm64/kvm/sys_regs.c @@ -794,7 +794,6 @@ static bool access_pmcr(struct kvm_vcpu *vcpu, struct sys_reg_params *p, if (!kvm_supports_32bit_el0()) val |= ARMV8_PMU_PMCR_LC; kvm_pmu_handle_pmcr(vcpu, val); - kvm_vcpu_pmu_restore_guest(vcpu); } else { /* PMCR.P & PMCR.C are RAZ */ val = __vcpu_sys_reg(vcpu, PMCR_EL0) base-commit: 197b6b60ae7bc51dd0814953c562833143b292aa -- 2.40.0.348.gf938b09366-goog

1 year

2
1
0 0

[PATCH v3 0/4] mfd: tps6586x: register restart handler

by Benjamin Bara

Hi! The Tegra20 requires an enabled VDE power domain during startup. As the VDE is currently not used, it is disabled during runtime. Since [1], there is a workaround for the "normal restart path" which enables the VDE before doing PMC's warm reboot. This workaround is not executed in the "emergency restart path", leading to a hang-up during start. This series implements and registers a new pmic-based restart handler for boards with tps6586x. This cold reboot ensures that the VDE power domain is enabled on tegra20-based boards. During panic(), preemption is disabled. This should be correctly detected by i2c_in_atomic_xfer_mode() to use atomic i2c xfer in this late stage. This avoids warnings regarding "Voluntary context switch within RCU". [1] 8f0c714ad9be1ef774c98e8819a7a571451cb019 v2: https://lore.kernel.org/all/20230320220345.1463687-1-bbara93@gmail.com/ system_state: https://lore.kernel.org/all/20230320213230.1459532-1-bbara93@gmail.com/ v1: https://lore.kernel.org/all/20230316164703.1157813-1-bbara93@gmail.com/ v3: - bring system_state back in this series - do atomic i2c xfer if not preemptible (as suggested by Dmitry) - fix style issues mentioned by Dmitry - add cc stable as suggested by Dmitry - add explanation why this is needed for Jon v2: - use devm-based restart handler - convert the existing power_off handler to a devm-based handler - handle system_state in extra series --- Benjamin Bara (4): kernel/reboot: emergency_restart: set correct system_state i2c: core: run atomic i2c xfer when !preemptible mfd: tps6586x: use devm-based power off handler mfd: tps6586x: register restart handler drivers/i2c/i2c-core.h | 2 +- drivers/mfd/tps6586x.c | 43 +++++++++++++++++++++++++++++++++++-------- kernel/reboot.c | 1 + 3 files changed, 37 insertions(+), 9 deletions(-) --- base-commit: 197b6b60ae7bc51dd0814953c562833143b292aa change-id: 20230327-tegra-pmic-reboot-4175ff814a4b Best regards, -- Benjamin Bara <benjamin.bara(a)skidata.com>

1 year

3
8
0 0

[PATCH 1/5] arm64: dts: qcom: sc8280xp: Add missing dwc3 quirks

by Manivannan Sadhasivam

Add missing quirks for the USB DWC3 IP. Cc: stable(a)vger.kernel.org # 5.20 Fixes: 152d1faf1e2f ("arm64: dts: qcom: add SC8280XP platform") Signed-off-by: Manivannan Sadhasivam <manivannan.sadhasivam(a)linaro.org> --- arch/arm64/boot/dts/qcom/sc8280xp.dtsi | 14 ++++++++++++++ 1 file changed, 14 insertions(+) diff --git a/arch/arm64/boot/dts/qcom/sc8280xp.dtsi b/arch/arm64/boot/dts/qcom/sc8280xp.dtsi index 0d02599d8867..266a94c712aa 100644 --- a/arch/arm64/boot/dts/qcom/sc8280xp.dtsi +++ b/arch/arm64/boot/dts/qcom/sc8280xp.dtsi @@ -3040,6 +3040,13 @@ usb_0_dwc3: usb@a600000 { iommus = <&apps_smmu 0x820 0x0>; phys = <&usb_0_hsphy>, <&usb_0_qmpphy QMP_USB43DP_USB3_PHY>; phy-names = "usb2-phy", "usb3-phy"; + snps,hird-threshold = /bits/ 8 <0x0>; + snps,usb2-gadget-lpm-disable; + snps,is-utmi-l1-suspend; + snps,dis-u1-entry-quirk; + snps,dis-u2-entry-quirk; + snps,has-lpm-erratum; + tx-fifo-resize; port { usb_0_role_switch: endpoint { @@ -3100,6 +3107,13 @@ usb_1_dwc3: usb@a800000 { iommus = <&apps_smmu 0x860 0x0>; phys = <&usb_1_hsphy>, <&usb_1_qmpphy QMP_USB43DP_USB3_PHY>; phy-names = "usb2-phy", "usb3-phy"; + snps,hird-threshold = /bits/ 8 <0x0>; + snps,usb2-gadget-lpm-disable; + snps,is-utmi-l1-suspend; + snps,dis-u1-entry-quirk; + snps,dis-u2-entry-quirk; + snps,has-lpm-erratum; + tx-fifo-resize; port { usb_1_role_switch: endpoint { -- 2.25.1

1 year

3
8
0 0

[PATCH] platform/x86: ideapad-laptop: Stop sending KEY_TOUCHPAD_TOGGLE

by Hans de Goede

Commit 5829f8a897e4 ("platform/x86: ideapad-laptop: Send KEY_TOUCHPAD_TOGGLE on some models") made ideapad-laptop send KEY_TOUCHPAD_TOGGLE when we receive an ACPI notify with VPC event bit 5 set and the touchpad-state has not been changed by the EC itself already. This was done under the assumption that this would be good to do to make the touchpad-toggle hotkey work on newer models where the EC does not toggle the touchpad on/off itself (because it is not routed through the PS/2 controller, but uses I2C). But it turns out that at least some models, e.g. the Yoga 7-15ITL5 the EC triggers an ACPI notify with VPC event bit 5 set on resume, which would now cause a spurious KEY_TOUCHPAD_TOGGLE on resume to which the desktop environment responds by disabling the touchpad in software, breaking the touchpad (until manually re-enabled) on resume. It was never confirmed that sending KEY_TOUCHPAD_TOGGLE actually improves things on new models and at least some new models like the Yoga 7-15ITL5 don't have a touchpad on/off toggle hotkey at all, while still sending ACPI notify events with VPC event bit 5 set. So it seems best to revert the change to send KEY_TOUCHPAD_TOGGLE when receiving an ACPI notify events with VPC event bit 5 and the touchpad state as reported by the EC has not changed. Note this is not a full revert the code to cache the last EC touchpad state is kept to avoid sending spurious KEY_TOUCHPAD_ON / _OFF events on resume. Fixes: 5829f8a897e4 ("platform/x86: ideapad-laptop: Send KEY_TOUCHPAD_TOGGLE on some models") Link: https://bugzilla.kernel.org/show_bug.cgi?id=217234 Cc: stable(a)vger.kernel.org Signed-off-by: Hans de Goede <hdegoede(a)redhat.com> --- drivers/platform/x86/ideapad-laptop.c | 23 ++++++++++------------- 1 file changed, 10 insertions(+), 13 deletions(-) diff --git a/drivers/platform/x86/ideapad-laptop.c b/drivers/platform/x86/ideapad-laptop.c index b5ef3452da1f..35c63cce0479 100644 --- a/drivers/platform/x86/ideapad-laptop.c +++ b/drivers/platform/x86/ideapad-laptop.c @@ -1170,7 +1170,6 @@ static const struct key_entry ideapad_keymap[] = { { KE_KEY, 65, { KEY_PROG4 } }, { KE_KEY, 66, { KEY_TOUCHPAD_OFF } }, { KE_KEY, 67, { KEY_TOUCHPAD_ON } }, - { KE_KEY, 68, { KEY_TOUCHPAD_TOGGLE } }, { KE_KEY, 128, { KEY_ESC } }, /* @@ -1526,18 +1525,16 @@ static void ideapad_sync_touchpad_state(struct ideapad_private *priv, bool send_ if (priv->features.ctrl_ps2_aux_port) i8042_command(&param, value ? I8042_CMD_AUX_ENABLE : I8042_CMD_AUX_DISABLE); - if (send_events) { - /* - * On older models the EC controls the touchpad and toggles it - * on/off itself, in this case we report KEY_TOUCHPAD_ON/_OFF. - * If the EC did not toggle, report KEY_TOUCHPAD_TOGGLE. - */ - if (value != priv->r_touchpad_val) { - ideapad_input_report(priv, value ? 67 : 66); - sysfs_notify(&priv->platform_device->dev.kobj, NULL, "touchpad"); - } else { - ideapad_input_report(priv, 68); - } + /* + * On older models the EC controls the touchpad and toggles it on/off + * itself, in this case we report KEY_TOUCHPAD_ON/_OFF. Some models do + * an acpi-notify with VPC bit 5 set on resume, so this function get + * called with send_events=true on every resume. Therefor if the EC did + * not toggle, do nothing to avoid sending spurious KEY_TOUCHPAD_TOGGLE. + */ + if (send_events && value != priv->r_touchpad_val) { + ideapad_input_report(priv, value ? 67 : 66); + sysfs_notify(&priv->platform_device->dev.kobj, NULL, "touchpad"); } priv->r_touchpad_val = value; -- 2.39.1

1 year

2
4
0 0

[PATCH 0/2] RTW88 USB bug fixes

by Sascha Hauer

This series fixes two bugs in the RTW88 USB driver I was reported from several people and that I also encountered myself. The first one resulted in "timed out to flush queue 3" messages from the driver and sometimes a complete stall of the TX queues. The second one is specific to the RTW8821CU chipset. Here 2GHz networks were hardly seen and impossible to connect to. This goes down to misinterpreting the rfe_option field in the efuse. Sascha Hauer (2): wifi: rtw88: usb: fix priority queue to endpoint mapping wifi: rtw88: rtw8821c: Fix rfe_option field width drivers/net/wireless/realtek/rtw88/rtw8821c.c | 3 +- drivers/net/wireless/realtek/rtw88/usb.c | 70 +++++++++++++------ 2 files changed, 48 insertions(+), 25 deletions(-) -- 2.39.2

1 year

7
9
0 0

[PATCH v7] tty: fix hang on tty device with no_room set

by juanfengpy＠gmail.com

From: Hui Li <caelli(a)tencent.com> We have met a hang on pty device, the reader was blocking at epoll on master side, the writer was sleeping at wait_woken inside n_tty_write on slave side, and the write buffer on tty_port was full, we found that the reader and writer would never be woken again and blocked forever. The problem was caused by a race between reader and kworker: n_tty_read(reader): n_tty_receive_buf_common(kworker): copy_from_read_buf()| |room = N_TTY_BUF_SIZE - (ldata->read_head - tail) |room <= 0 n_tty_kick_worker() | |ldata->no_room = true After writing to slave device, writer wakes up kworker to flush data on tty_port to reader, and the kworker finds that reader has no room to store data so room <= 0 is met. At this moment, reader consumes all the data on reader buffer and calls n_tty_kick_worker to check ldata->no_room which is false and reader quits reading. Then kworker sets ldata->no_room=true and quits too. If write buffer is not full, writer will wake kworker to flush data again after following writes, but if write buffer is full and writer goes to sleep, kworker will never be woken again and tty device is blocked. This problem can be solved with a check for read buffer size inside n_tty_receive_buf_common, if read buffer is empty and ldata->no_room is true, a call to n_tty_kick_worker is necessary to keep flushing data to reader. Cc: <stable(a)vger.kernel.org> Fixes: 42458f41d08f ("n_tty: Ensure reader restarts worker for next reader") Reviewed-by: Ilpo Järvinen <ilpo.jarvinen(a)linux.intel.com> Signed-off-by: Hui Li <caelli(a)tencent.com> --- Patch changelogs between v1 and v2: -add barrier inside n_tty_read and n_tty_receive_buf_common; -comment why barrier is needed; -access to ldata->no_room is changed with READ_ONCE and WRITE_ONCE; Patch changelogs between v2 and v3: -in function n_tty_receive_buf_common, add unlikely to check ldata->no_room, eg: if (unlikely(ldata->no_room)), and READ_ONCE is removed here to get locality; -change comment for barrier to show the race condition to make comment easier to understand; Patch changelogs between v3 and v4: -change subject from 'tty: fix a possible hang on tty device' to 'tty: fix hang on tty device with no_room set' to make subject more obvious; Patch changelogs between v4 and v5: -name is changed from cael to caelli, li is added as the family name and caelli is the fullname. Patch changelogs between v5 and v6: -change from and Signed-off-by, from 'caelli <juanfengpy(a)gmail.com>' to 'caelli <caelli(a)tencent.com>', later one is my corporate address. Patch changelogs between v6 and v7: -change name from caelli to 'Hui Li', which is my name in chinese. -the comment for barrier is improved, and a Fixes and Reviewed-by tags is added. drivers/tty/n_tty.c | 41 +++++++++++++++++++++++++++++++++++++---- 1 file changed, 37 insertions(+), 4 deletions(-) diff --git a/drivers/tty/n_tty.c b/drivers/tty/n_tty.c index c8f56c9b1a1c..8c17304fffcf 100644 --- a/drivers/tty/n_tty.c +++ b/drivers/tty/n_tty.c @@ -204,8 +204,8 @@ static void n_tty_kick_worker(struct tty_struct *tty) struct n_tty_data *ldata = tty->disc_data; /* Did the input worker stop? Restart it */ - if (unlikely(ldata->no_room)) { - ldata->no_room = 0; + if (unlikely(READ_ONCE(ldata->no_room))) { + WRITE_ONCE(ldata->no_room, 0); WARN_RATELIMIT(tty->port->itty == NULL, "scheduling with invalid itty\n"); @@ -1698,7 +1698,7 @@ n_tty_receive_buf_common(struct tty_struct *tty, const unsigned char *cp, if (overflow && room < 0) ldata->read_head--; room = overflow; - ldata->no_room = flow && !room; + WRITE_ONCE(ldata->no_room, flow && !room); } else overflow = 0; @@ -1729,6 +1729,27 @@ n_tty_receive_buf_common(struct tty_struct *tty, const unsigned char *cp, } else n_tty_check_throttle(tty); + if (unlikely(ldata->no_room)) { + /* + * Barrier here is to ensure to read the latest read_tail in + * chars_in_buffer() and to make sure that read_tail is not loaded + * before ldata->no_room is set, otherwise, following race may occur: + * n_tty_receive_buf_common() + * n_tty_read() + * if (!chars_in_buffer(tty))->false + * copy_from_read_buf() + * read_tail=commit_head + * n_tty_kick_worker() + * if (ldata->no_room)->false + * ldata->no_room = 1 + * Then both kworker and reader will fail to kick n_tty_kick_worker(), + * smp_mb is paired with smp_mb() in n_tty_read(). + */ + smp_mb(); + if (!chars_in_buffer(tty)) + n_tty_kick_worker(tty); + } + up_read(&tty->termios_rwsem); return rcvd; @@ -2282,8 +2303,25 @@ static ssize_t n_tty_read(struct tty_struct *tty, struct file *file, if (time) timeout = time; } - if (old_tail != ldata->read_tail) + if (old_tail != ldata->read_tail) { + /* + * Make sure no_room is not read in n_tty_kick_worker() + * before setting ldata->read_tail in copy_from_read_buf(), + * otherwise, following race may occur: + * n_tty_read() + * n_tty_receive_buf_common() + * n_tty_kick_worker() + * if(ldata->no_room)->false + * ldata->no_room = 1 + * if (!chars_in_buffer(tty))->false + * copy_from_read_buf() + * read_tail=commit_head + * Both reader and kworker will fail to kick tty_buffer_restart_work(), + * smp_mb is paired with smp_mb() in n_tty_receive_buf_common(). + */ + smp_mb(); n_tty_kick_worker(tty); + } up_read(&tty->termios_rwsem); remove_wait_queue(&tty->read_wait, &wait); -- 2.27.0

1 year

3
3
0 0

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror March 2023