6.1 Backport request: fbf5892df21a ("kbuild: Use CRC32 and a 1MiB dictionary for XZ compressed modules")
by Christoph Biedl
Hello,
please backport
commit fbf5892df21a8ccfcb2fda0fd65bc3169c89ed28
Author: Martin Nybo Andersen <tweek(a)tweek.dk>
Date: Fri Sep 15 12:15:39 2023 +0200
kbuild: Use CRC32 and a 1MiB dictionary for XZ compressed modules
Kmod is now (since kmod commit 09c9f8c5df04 ("libkmod: Use kernel
decompression when available")) using the kernel decompressor, when
loading compressed modules.
However, the kernel XZ decompressor is XZ Embedded, which doesn't
handle CRC64 and dictionaries larger than 1MiB.
Use CRC32 and 1MiB dictionary when XZ compressing and installing
kernel modules.
to the 6.1 stable kernel, and possibly older ones as well.
The commit message actually has it all, so just my story: There's a
hardware that has or had issues with never kernels (no time to check),
my kernel for this board is usually static. But after building a kernel
with xz-compressed modules, they wouldn't load but trigger
"decompression failed with status 6". Investigation led to a CRC64 check
for these files, and eventually to the above commit.
The commit applies (with an offset), the resulting modules work as
expected.
Kernel 6.6 and newer already have that commit. Older kernels could
possibly benefit from this as well, I haven't checked.
Kind regards,
Christoph
18 hours, 11 minutes
- 2
- 1
FAILED: patch "[PATCH] tpm2-sessions: Fix tpm2_read_public range checks" failed to apply to 6.12-stable tree
by gregkh@linuxfoundation.org
The patch below does not apply to the 6.12-stable tree.
If someone wants it applied there, or to any other stable or longterm
tree, then please email the backport, including the original git commit
id to <stable(a)vger.kernel.org>.
To reproduce the conflict and resubmit, you may use the following commands:
git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.12.y
git checkout FETCH_HEAD
git cherry-pick -x bda1cbf73c6e241267c286427f2ed52b5735d872
# <resolve conflicts, build, test, etc.>
git commit -s
git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2025122907-stream-lasso-ba6e@gregkh' --subject-prefix 'PATCH 6.12.y' HEAD^..
Possible dependencies:
thanks,
greg k-h
------------------ original commit in Linus's tree ------------------
From bda1cbf73c6e241267c286427f2ed52b5735d872 Mon Sep 17 00:00:00 2001
From: Jarkko Sakkinen <jarkko(a)kernel.org>
Date: Mon, 1 Dec 2025 15:38:02 +0200
Subject: [PATCH] tpm2-sessions: Fix tpm2_read_public range checks
tpm2_read_public() has some rudimentary range checks but the function does
not ensure that the response buffer has enough bytes for the full TPMT_HA
payload.
Re-implement the function with necessary checks and validation, and return
name and name size for all handle types back to the caller.
Cc: stable(a)vger.kernel.org # v6.10+
Fixes: d0a25bb961e6 ("tpm: Add HMAC session name/handle append")
Signed-off-by: Jarkko Sakkinen <jarkko(a)kernel.org>
Reviewed-by: Jonathan McDowell <noodles(a)meta.com>
diff --git a/drivers/char/tpm/tpm2-cmd.c b/drivers/char/tpm/tpm2-cmd.c
index be4a9c7f2e1a..34e3599f094f 100644
--- a/drivers/char/tpm/tpm2-cmd.c
+++ b/drivers/char/tpm/tpm2-cmd.c
@@ -11,8 +11,11 @@
* used by the kernel internally.
*/
+#include "linux/dev_printk.h"
+#include "linux/tpm.h"
#include "tpm.h"
#include <crypto/hash_info.h>
+#include <linux/unaligned.h>
static bool disable_pcr_integrity;
module_param(disable_pcr_integrity, bool, 0444);
diff --git a/drivers/char/tpm/tpm2-sessions.c b/drivers/char/tpm/tpm2-sessions.c
index 385014dbca39..3f389e2f6f58 100644
--- a/drivers/char/tpm/tpm2-sessions.c
+++ b/drivers/char/tpm/tpm2-sessions.c
@@ -163,53 +163,61 @@ static int name_size(const u8 *name)
}
}
-static int tpm2_parse_read_public(char *name, struct tpm_buf *buf)
+static int tpm2_read_public(struct tpm_chip *chip, u32 handle, void *name)
{
- struct tpm_header *head = (struct tpm_header *)buf->data;
+ u32 mso = tpm2_handle_mso(handle);
off_t offset = TPM_HEADER_SIZE;
- u32 tot_len = be32_to_cpu(head->length);
- int ret;
- u32 val;
-
- /* we're starting after the header so adjust the length */
- tot_len -= TPM_HEADER_SIZE;
-
- /* skip public */
- val = tpm_buf_read_u16(buf, &offset);
- if (val > tot_len)
- return -EINVAL;
- offset += val;
- /* name */
- val = tpm_buf_read_u16(buf, &offset);
- ret = name_size(&buf->data[offset]);
- if (ret < 0)
- return ret;
-
- if (val != ret)
- return -EINVAL;
-
- memcpy(name, &buf->data[offset], val);
- /* forget the rest */
- return 0;
-}
-
-static int tpm2_read_public(struct tpm_chip *chip, u32 handle, char *name)
-{
+ int rc, name_size_alg;
struct tpm_buf buf;
- int rc;
+
+ if (mso != TPM2_MSO_PERSISTENT && mso != TPM2_MSO_VOLATILE &&
+ mso != TPM2_MSO_NVRAM) {
+ memcpy(name, &handle, sizeof(u32));
+ return sizeof(u32);
+ }
rc = tpm_buf_init(&buf, TPM2_ST_NO_SESSIONS, TPM2_CC_READ_PUBLIC);
if (rc)
return rc;
tpm_buf_append_u32(&buf, handle);
- rc = tpm_transmit_cmd(chip, &buf, 0, "read public");
- if (rc == TPM2_RC_SUCCESS)
- rc = tpm2_parse_read_public(name, &buf);
- tpm_buf_destroy(&buf);
+ rc = tpm_transmit_cmd(chip, &buf, 0, "TPM2_ReadPublic");
+ if (rc) {
+ tpm_buf_destroy(&buf);
+ return tpm_ret_to_err(rc);
+ }
- return rc;
+ /* Skip TPMT_PUBLIC: */
+ offset += tpm_buf_read_u16(&buf, &offset);
+
+ /*
+ * Ensure space for the length field of TPM2B_NAME and hashAlg field of
+ * TPMT_HA (the extra four bytes).
+ */
+ if (offset + 4 > tpm_buf_length(&buf)) {
+ tpm_buf_destroy(&buf);
+ return -EIO;
+ }
+
+ rc = tpm_buf_read_u16(&buf, &offset);
+ name_size_alg = name_size(&buf.data[offset]);
+
+ if (name_size_alg < 0)
+ return name_size_alg;
+
+ if (rc != name_size_alg) {
+ tpm_buf_destroy(&buf);
+ return -EIO;
+ }
+
+ if (offset + rc > tpm_buf_length(&buf)) {
+ tpm_buf_destroy(&buf);
+ return -EIO;
+ }
+
+ memcpy(name, &buf.data[offset], rc);
+ return name_size_alg;
}
#endif /* CONFIG_TCG_TPM2_HMAC */
@@ -243,6 +251,7 @@ int tpm_buf_append_name(struct tpm_chip *chip, struct tpm_buf *buf,
#ifdef CONFIG_TCG_TPM2_HMAC
enum tpm2_mso_type mso = tpm2_handle_mso(handle);
struct tpm2_auth *auth;
+ u16 name_size_alg;
int slot;
int ret;
#endif
@@ -273,8 +282,10 @@ int tpm_buf_append_name(struct tpm_chip *chip, struct tpm_buf *buf,
mso == TPM2_MSO_NVRAM) {
if (!name) {
ret = tpm2_read_public(chip, handle, auth->name[slot]);
- if (ret)
+ if (ret < 0)
goto err;
+
+ name_size_alg = ret;
}
} else {
if (name) {
@@ -286,13 +297,8 @@ int tpm_buf_append_name(struct tpm_chip *chip, struct tpm_buf *buf,
}
auth->name_h[slot] = handle;
- if (name) {
- ret = name_size(name);
- if (ret < 0)
- goto err;
-
- memcpy(auth->name[slot], name, ret);
- }
+ if (name)
+ memcpy(auth->name[slot], name, name_size_alg);
#endif
return 0;
18 hours, 47 minutes
- 3
- 2
[char-misc v2] mei: trace: treat reg parameter as string
by Alexander Usyskin
Use the string wrapper to check sanity of the reg parameters,
store it value independently and prevent internal kernel data leaks.
Trace subsystem refuses to emit event with plain char*,
without the wrapper.
Cc: stable(a)vger.kernel.org
Fixes: a0a927d06d79 ("mei: me: add io register tracing")
Signed-off-by: Alexander Usyskin <alexander.usyskin(a)intel.com>
---
V2: reword commit message
add Fixes and stable
drivers/misc/mei/mei-trace.h | 18 +++++++++---------
1 file changed, 9 insertions(+), 9 deletions(-)
diff --git a/drivers/misc/mei/mei-trace.h b/drivers/misc/mei/mei-trace.h
index 5312edbf5190..24fa321d88bd 100644
--- a/drivers/misc/mei/mei-trace.h
+++ b/drivers/misc/mei/mei-trace.h
@@ -21,18 +21,18 @@ TRACE_EVENT(mei_reg_read,
TP_ARGS(dev, reg, offs, val),
TP_STRUCT__entry(
__string(dev, dev_name(dev))
- __field(const char *, reg)
+ __string(reg, reg)
__field(u32, offs)
__field(u32, val)
),
TP_fast_assign(
__assign_str(dev);
- __entry->reg = reg;
+ __assign_str(reg);
__entry->offs = offs;
__entry->val = val;
),
TP_printk("[%s] read %s:[%#x] = %#x",
- __get_str(dev), __entry->reg, __entry->offs, __entry->val)
+ __get_str(dev), __get_str(reg), __entry->offs, __entry->val)
);
TRACE_EVENT(mei_reg_write,
@@ -40,18 +40,18 @@ TRACE_EVENT(mei_reg_write,
TP_ARGS(dev, reg, offs, val),
TP_STRUCT__entry(
__string(dev, dev_name(dev))
- __field(const char *, reg)
+ __string(reg, reg)
__field(u32, offs)
__field(u32, val)
),
TP_fast_assign(
__assign_str(dev);
- __entry->reg = reg;
+ __assign_str(reg);
__entry->offs = offs;
__entry->val = val;
),
TP_printk("[%s] write %s[%#x] = %#x",
- __get_str(dev), __entry->reg, __entry->offs, __entry->val)
+ __get_str(dev), __get_str(reg), __entry->offs, __entry->val)
);
TRACE_EVENT(mei_pci_cfg_read,
@@ -59,18 +59,18 @@ TRACE_EVENT(mei_pci_cfg_read,
TP_ARGS(dev, reg, offs, val),
TP_STRUCT__entry(
__string(dev, dev_name(dev))
- __field(const char *, reg)
+ __string(reg, reg)
__field(u32, offs)
__field(u32, val)
),
TP_fast_assign(
__assign_str(dev);
- __entry->reg = reg;
+ __assign_str(reg);
__entry->offs = offs;
__entry->val = val;
),
TP_printk("[%s] pci cfg read %s:[%#x] = %#x",
- __get_str(dev), __entry->reg, __entry->offs, __entry->val)
+ __get_str(dev), __get_str(reg), __entry->offs, __entry->val)
);
#endif /* _MEI_TRACE_H_ */
--
2.43.0
18 hours, 48 minutes
- 3
- 7
[PATCH] tpm2-sessions: Fix out of range indexing in name_size
by Jarkko Sakkinen
[ Upstream commit 6e9722e9a7bfe1bbad649937c811076acf86e1fd ]
'name_size' does not have any range checks, and it just directly indexes
with TPM_ALG_ID, which could lead into memory corruption at worst.
Address the issue by only processing known values and returning -EINVAL for
unrecognized values.
Make also 'tpm_buf_append_name' and 'tpm_buf_fill_hmac_session' fallible so
that errors are detected before causing any spurious TPM traffic.
End also the authorization session on failure in both of the functions, as
the session state would be then by definition corrupted.
Cc: stable(a)vger.kernel.org # v6.10+
Fixes: 1085b8276bb4 ("tpm: Add the rest of the session HMAC API")
Reviewed-by: Jonathan McDowell <noodles(a)meta.com>
Signed-off-by: Jarkko Sakkinen <jarkko(a)kernel.org>
---
drivers/char/tpm/tpm2-cmd.c | 23 +++-
drivers/char/tpm/tpm2-sessions.c | 134 +++++++++++++++-------
include/linux/tpm.h | 13 ++-
security/keys/trusted-keys/trusted_tpm2.c | 29 ++++-
4 files changed, 143 insertions(+), 56 deletions(-)
diff --git a/drivers/char/tpm/tpm2-cmd.c b/drivers/char/tpm/tpm2-cmd.c
index dfdcbd009720..74764eae9f10 100644
--- a/drivers/char/tpm/tpm2-cmd.c
+++ b/drivers/char/tpm/tpm2-cmd.c
@@ -250,7 +250,11 @@ int tpm2_pcr_extend(struct tpm_chip *chip, u32 pcr_idx,
}
if (!disable_pcr_integrity) {
- tpm_buf_append_name(chip, &buf, pcr_idx, NULL);
+ rc = tpm_buf_append_name(chip, &buf, pcr_idx, NULL);
+ if (rc) {
+ tpm_buf_destroy(&buf);
+ return rc;
+ }
tpm_buf_append_hmac_session(chip, &buf, 0, NULL, 0);
} else {
tpm_buf_append_handle(chip, &buf, pcr_idx);
@@ -265,8 +269,14 @@ int tpm2_pcr_extend(struct tpm_chip *chip, u32 pcr_idx,
chip->allocated_banks[i].digest_size);
}
- if (!disable_pcr_integrity)
- tpm_buf_fill_hmac_session(chip, &buf);
+ if (!disable_pcr_integrity) {
+ rc = tpm_buf_fill_hmac_session(chip, &buf);
+ if (rc) {
+ tpm_buf_destroy(&buf);
+ return rc;
+ }
+ }
+
rc = tpm_transmit_cmd(chip, &buf, 0, "attempting extend a PCR value");
if (!disable_pcr_integrity)
rc = tpm_buf_check_hmac_response(chip, &buf, rc);
@@ -324,7 +334,12 @@ int tpm2_get_random(struct tpm_chip *chip, u8 *dest, size_t max)
| TPM2_SA_CONTINUE_SESSION,
NULL, 0);
tpm_buf_append_u16(&buf, num_bytes);
- tpm_buf_fill_hmac_session(chip, &buf);
+ err = tpm_buf_fill_hmac_session(chip, &buf);
+ if (err) {
+ tpm_buf_destroy(&buf);
+ return err;
+ }
+
err = tpm_transmit_cmd(chip, &buf,
offsetof(struct tpm2_get_random_out,
buffer),
diff --git a/drivers/char/tpm/tpm2-sessions.c b/drivers/char/tpm/tpm2-sessions.c
index cf0b83154044..d020b74ed23c 100644
--- a/drivers/char/tpm/tpm2-sessions.c
+++ b/drivers/char/tpm/tpm2-sessions.c
@@ -144,16 +144,23 @@ struct tpm2_auth {
/*
* Name Size based on TPM algorithm (assumes no hash bigger than 255)
*/
-static u8 name_size(const u8 *name)
+static int name_size(const u8 *name)
{
- static u8 size_map[] = {
- [TPM_ALG_SHA1] = SHA1_DIGEST_SIZE,
- [TPM_ALG_SHA256] = SHA256_DIGEST_SIZE,
- [TPM_ALG_SHA384] = SHA384_DIGEST_SIZE,
- [TPM_ALG_SHA512] = SHA512_DIGEST_SIZE,
- };
- u16 alg = get_unaligned_be16(name);
- return size_map[alg] + 2;
+ u16 hash_alg = get_unaligned_be16(name);
+
+ switch (hash_alg) {
+ case TPM_ALG_SHA1:
+ return SHA1_DIGEST_SIZE + 2;
+ case TPM_ALG_SHA256:
+ return SHA256_DIGEST_SIZE + 2;
+ case TPM_ALG_SHA384:
+ return SHA384_DIGEST_SIZE + 2;
+ case TPM_ALG_SHA512:
+ return SHA512_DIGEST_SIZE + 2;
+ default:
+ pr_warn("tpm: unsupported name algorithm: 0x%04x\n", hash_alg);
+ return -EINVAL;
+ }
}
static int tpm2_parse_read_public(char *name, struct tpm_buf *buf)
@@ -161,6 +168,7 @@ static int tpm2_parse_read_public(char *name, struct tpm_buf *buf)
struct tpm_header *head = (struct tpm_header *)buf->data;
off_t offset = TPM_HEADER_SIZE;
u32 tot_len = be32_to_cpu(head->length);
+ int ret;
u32 val;
/* we're starting after the header so adjust the length */
@@ -173,8 +181,13 @@ static int tpm2_parse_read_public(char *name, struct tpm_buf *buf)
offset += val;
/* name */
val = tpm_buf_read_u16(buf, &offset);
- if (val != name_size(&buf->data[offset]))
+ ret = name_size(&buf->data[offset]);
+ if (ret < 0)
+ return ret;
+
+ if (val != ret)
return -EINVAL;
+
memcpy(name, &buf->data[offset], val);
/* forget the rest */
return 0;
@@ -221,46 +234,72 @@ static int tpm2_read_public(struct tpm_chip *chip, u32 handle, char *name)
* As with most tpm_buf operations, success is assumed because failure
* will be caused by an incorrect programming model and indicated by a
* kernel message.
+ *
+ * Ends the authorization session on failure.
*/
-void tpm_buf_append_name(struct tpm_chip *chip, struct tpm_buf *buf,
- u32 handle, u8 *name)
+int tpm_buf_append_name(struct tpm_chip *chip, struct tpm_buf *buf,
+ u32 handle, u8 *name)
{
#ifdef CONFIG_TCG_TPM2_HMAC
enum tpm2_mso_type mso = tpm2_handle_mso(handle);
struct tpm2_auth *auth;
int slot;
+ int ret;
#endif
if (!tpm2_chip_auth(chip)) {
tpm_buf_append_handle(chip, buf, handle);
- return;
+ return 0;
}
#ifdef CONFIG_TCG_TPM2_HMAC
slot = (tpm_buf_length(buf) - TPM_HEADER_SIZE) / 4;
if (slot >= AUTH_MAX_NAMES) {
- dev_err(&chip->dev, "TPM: too many handles\n");
- return;
+ dev_err(&chip->dev, "too many handles\n");
+ ret = -EIO;
+ goto err;
}
auth = chip->auth;
- WARN(auth->session != tpm_buf_length(buf),
- "name added in wrong place\n");
+ if (auth->session != tpm_buf_length(buf)) {
+ dev_err(&chip->dev, "session state malformed");
+ ret = -EIO;
+ goto err;
+ }
tpm_buf_append_u32(buf, handle);
auth->session += 4;
if (mso == TPM2_MSO_PERSISTENT ||
mso == TPM2_MSO_VOLATILE ||
mso == TPM2_MSO_NVRAM) {
- if (!name)
- tpm2_read_public(chip, handle, auth->name[slot]);
+ if (!name) {
+ ret = tpm2_read_public(chip, handle, auth->name[slot]);
+ if (ret)
+ goto err;
+ }
} else {
- if (name)
- dev_err(&chip->dev, "TPM: Handle does not require name but one is specified\n");
+ if (name) {
+ dev_err(&chip->dev, "handle 0x%08x does not use a name\n",
+ handle);
+ ret = -EIO;
+ goto err;
+ }
}
auth->name_h[slot] = handle;
- if (name)
- memcpy(auth->name[slot], name, name_size(name));
+ if (name) {
+ ret = name_size(name);
+ if (ret < 0)
+ goto err;
+
+ memcpy(auth->name[slot], name, ret);
+ }
+#endif
+ return 0;
+
+#ifdef CONFIG_TCG_TPM2_HMAC
+err:
+ tpm2_end_auth_session(chip);
+ return tpm_ret_to_err(ret);
#endif
}
EXPORT_SYMBOL_GPL(tpm_buf_append_name);
@@ -578,11 +617,9 @@ static void tpm_buf_append_salt(struct tpm_buf *buf, struct tpm_chip *chip,
* encryption key and encrypts the first parameter of the command
* buffer with it.
*
- * As with most tpm_buf operations, success is assumed because failure
- * will be caused by an incorrect programming model and indicated by a
- * kernel message.
+ * Ends the authorization session on failure.
*/
-void tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf)
+int tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf)
{
u32 cc, handles, val;
struct tpm2_auth *auth = chip->auth;
@@ -592,10 +629,13 @@ void tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf)
u8 *hmac = NULL;
u32 attrs;
u8 cphash[SHA256_DIGEST_SIZE];
- struct sha256_state sctx;
+ struct sha256_ctx sctx;
+ int ret;
- if (!auth)
- return;
+ if (!auth) {
+ ret = -EIO;
+ goto err;
+ }
/* save the command code in BE format */
auth->ordinal = head->ordinal;
@@ -604,9 +644,11 @@ void tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf)
i = tpm2_find_cc(chip, cc);
if (i < 0) {
- dev_err(&chip->dev, "Command 0x%x not found in TPM\n", cc);
- return;
+ dev_err(&chip->dev, "command 0x%08x not found\n", cc);
+ ret = -EIO;
+ goto err;
}
+
attrs = chip->cc_attrs_tbl[i];
handles = (attrs >> TPM2_CC_ATTR_CHANDLES) & GENMASK(2, 0);
@@ -620,9 +662,9 @@ void tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf)
u32 handle = tpm_buf_read_u32(buf, &offset_s);
if (auth->name_h[i] != handle) {
- dev_err(&chip->dev, "TPM: handle %d wrong for name\n",
- i);
- return;
+ dev_err(&chip->dev, "invalid handle 0x%08x\n", handle);
+ ret = -EIO;
+ goto err;
}
}
/* point offset_s to the start of the sessions */
@@ -653,12 +695,14 @@ void tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf)
offset_s += len;
}
if (offset_s != offset_p) {
- dev_err(&chip->dev, "TPM session length is incorrect\n");
- return;
+ dev_err(&chip->dev, "session length is incorrect\n");
+ ret = -EIO;
+ goto err;
}
if (!hmac) {
- dev_err(&chip->dev, "TPM could not find HMAC session\n");
- return;
+ dev_err(&chip->dev, "could not find HMAC session\n");
+ ret = -EIO;
+ goto err;
}
/* encrypt before HMAC */
@@ -690,8 +734,11 @@ void tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf)
if (mso == TPM2_MSO_PERSISTENT ||
mso == TPM2_MSO_VOLATILE ||
mso == TPM2_MSO_NVRAM) {
- sha256_update(&sctx, auth->name[i],
- name_size(auth->name[i]));
+ ret = name_size(auth->name[i]);
+ if (ret < 0)
+ goto err;
+
+ sha256_update(&sctx, auth->name[i], ret);
} else {
__be32 h = cpu_to_be32(auth->name_h[i]);
@@ -712,6 +759,11 @@ void tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf)
sha256_update(&sctx, &auth->attrs, 1);
tpm2_hmac_final(&sctx, auth->session_key, sizeof(auth->session_key)
+ auth->passphrase_len, hmac);
+ return 0;
+
+err:
+ tpm2_end_auth_session(chip);
+ return ret;
}
EXPORT_SYMBOL(tpm_buf_fill_hmac_session);
diff --git a/include/linux/tpm.h b/include/linux/tpm.h
index a3d8305e88a5..9472e13f33c2 100644
--- a/include/linux/tpm.h
+++ b/include/linux/tpm.h
@@ -521,8 +521,8 @@ static inline struct tpm2_auth *tpm2_chip_auth(struct tpm_chip *chip)
#endif
}
-void tpm_buf_append_name(struct tpm_chip *chip, struct tpm_buf *buf,
- u32 handle, u8 *name);
+int tpm_buf_append_name(struct tpm_chip *chip, struct tpm_buf *buf,
+ u32 handle, u8 *name);
void tpm_buf_append_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf,
u8 attributes, u8 *passphrase,
int passphraselen);
@@ -555,7 +555,7 @@ static inline void tpm_buf_append_hmac_session_opt(struct tpm_chip *chip,
#ifdef CONFIG_TCG_TPM2_HMAC
int tpm2_start_auth_session(struct tpm_chip *chip);
-void tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf);
+int tpm_buf_fill_hmac_session(struct tpm_chip *chip, struct tpm_buf *buf);
int tpm_buf_check_hmac_response(struct tpm_chip *chip, struct tpm_buf *buf,
int rc);
void tpm2_end_auth_session(struct tpm_chip *chip);
@@ -569,10 +569,13 @@ static inline int tpm2_start_auth_session(struct tpm_chip *chip)
static inline void tpm2_end_auth_session(struct tpm_chip *chip)
{
}
-static inline void tpm_buf_fill_hmac_session(struct tpm_chip *chip,
- struct tpm_buf *buf)
+
+static inline int tpm_buf_fill_hmac_session(struct tpm_chip *chip,
+ struct tpm_buf *buf)
{
+ return 0;
}
+
static inline int tpm_buf_check_hmac_response(struct tpm_chip *chip,
struct tpm_buf *buf,
int rc)
diff --git a/security/keys/trusted-keys/trusted_tpm2.c b/security/keys/trusted-keys/trusted_tpm2.c
index 024be262702f..10d1201a33e4 100644
--- a/security/keys/trusted-keys/trusted_tpm2.c
+++ b/security/keys/trusted-keys/trusted_tpm2.c
@@ -283,7 +283,10 @@ int tpm2_seal_trusted(struct tpm_chip *chip,
goto out_put;
}
- tpm_buf_append_name(chip, &buf, options->keyhandle, NULL);
+ rc = tpm_buf_append_name(chip, &buf, options->keyhandle, NULL);
+ if (rc)
+ goto out;
+
tpm_buf_append_hmac_session(chip, &buf, TPM2_SA_DECRYPT,
options->keyauth, TPM_DIGEST_SIZE);
@@ -331,7 +334,10 @@ int tpm2_seal_trusted(struct tpm_chip *chip,
goto out;
}
- tpm_buf_fill_hmac_session(chip, &buf);
+ rc = tpm_buf_fill_hmac_session(chip, &buf);
+ if (rc)
+ goto out;
+
rc = tpm_transmit_cmd(chip, &buf, 4, "sealing data");
rc = tpm_buf_check_hmac_response(chip, &buf, rc);
if (rc)
@@ -444,7 +450,10 @@ static int tpm2_load_cmd(struct tpm_chip *chip,
return rc;
}
- tpm_buf_append_name(chip, &buf, options->keyhandle, NULL);
+ rc = tpm_buf_append_name(chip, &buf, options->keyhandle, NULL);
+ if (rc)
+ goto out;
+
tpm_buf_append_hmac_session(chip, &buf, 0, options->keyauth,
TPM_DIGEST_SIZE);
@@ -456,7 +465,10 @@ static int tpm2_load_cmd(struct tpm_chip *chip,
goto out;
}
- tpm_buf_fill_hmac_session(chip, &buf);
+ rc = tpm_buf_fill_hmac_session(chip, &buf);
+ if (rc)
+ goto out;
+
rc = tpm_transmit_cmd(chip, &buf, 4, "loading blob");
rc = tpm_buf_check_hmac_response(chip, &buf, rc);
if (!rc)
@@ -506,7 +518,9 @@ static int tpm2_unseal_cmd(struct tpm_chip *chip,
return rc;
}
- tpm_buf_append_name(chip, &buf, blob_handle, NULL);
+ rc = tpm_buf_append_name(chip, &buf, options->keyhandle, NULL);
+ if (rc)
+ goto out;
if (!options->policyhandle) {
tpm_buf_append_hmac_session(chip, &buf, TPM2_SA_ENCRYPT,
@@ -531,7 +545,10 @@ static int tpm2_unseal_cmd(struct tpm_chip *chip,
NULL, 0);
}
- tpm_buf_fill_hmac_session(chip, &buf);
+ rc = tpm_buf_fill_hmac_session(chip, &buf);
+ if (rc)
+ goto out;
+
rc = tpm_transmit_cmd(chip, &buf, 6, "unsealing");
rc = tpm_buf_check_hmac_response(chip, &buf, rc);
if (rc > 0)
--
2.52.0
18 hours, 50 minutes
- 1
- 1
[PATCH net] wifi: avoid kernel-infoleak from struct iw_point
by Eric Dumazet
struct iw_point has a 32bit hole on 64bit arches.
struct iw_point {
void __user *pointer; /* Pointer to the data (in user space) */
__u16 length; /* number of fields or size in bytes */
__u16 flags; /* Optional params */
};
Make sure to zero the structure to avoid dislosing 32bits of kernel data
to user space.
Fixes: 87de87d5e47f ("wext: Dispatch and handle compat ioctls entirely in net/wireless/wext.c")
Reported-by: syzbot+bfc7323743ca6dbcc3d3(a)syzkaller.appspotmail.com
https://lore.kernel.org/netdev/695f83f3.050a0220.1c677c.0392.GAE@google.com…
Signed-off-by: Eric Dumazet <edumazet(a)google.com>
Cc: stable(a)vger.kernel.org
---
net/wireless/wext-core.c | 4 ++++
net/wireless/wext-priv.c | 4 ++++
2 files changed, 8 insertions(+)
diff --git a/net/wireless/wext-core.c b/net/wireless/wext-core.c
index c32a7c6903d53686bc5b51652a7c0574e7085659..7b8e94214b07224ffda4852d9e8a471a5fb18637 100644
--- a/net/wireless/wext-core.c
+++ b/net/wireless/wext-core.c
@@ -1101,6 +1101,10 @@ static int compat_standard_call(struct net_device *dev,
return ioctl_standard_call(dev, iwr, cmd, info, handler);
iwp_compat = (struct compat_iw_point *) &iwr->u.data;
+
+ /* struct iw_point has a 32bit hole on 64bit arches. */
+ memset(&iwp, 0, sizeof(iwp));
+
iwp.pointer = compat_ptr(iwp_compat->pointer);
iwp.length = iwp_compat->length;
iwp.flags = iwp_compat->flags;
diff --git a/net/wireless/wext-priv.c b/net/wireless/wext-priv.c
index 674d426a9d24f9aab7657d1e8ecf342e3be87438..37d1147019c2baba3e3792bb98f098294cba00ec 100644
--- a/net/wireless/wext-priv.c
+++ b/net/wireless/wext-priv.c
@@ -228,6 +228,10 @@ int compat_private_call(struct net_device *dev, struct iwreq *iwr,
struct iw_point iwp;
iwp_compat = (struct compat_iw_point *) &iwr->u.data;
+
+ /* struct iw_point has a 32bit hole on 64bit arches. */
+ memset(&iwp, 0, sizeof(iwp));
+
iwp.pointer = compat_ptr(iwp_compat->pointer);
iwp.length = iwp_compat->length;
iwp.flags = iwp_compat->flags;
--
2.52.0.351.gbe84eed79e-goog
18 hours, 58 minutes
- 3
- 5
[PATCH v2 2/5] media: ov02c10: Adjust x-win/y-win when changing flipping to preserve bayer-pattern
by Hans de Goede
The ov02c10 is capable of having its (crop) window shifted around with 1
pixel precision while streaming.
This allows changing the x/y window coordinates when changing flipping to
preserve the bayer-pattern.
__v4l2_ctrl_handler_setup() will now write the window coordinates at 0x3810
and 0x3812 so these can be dropped from sensor_1928x1092_30fps_setting.
Since the bayer-pattern is now unchanged, the V4L2_CTRL_FLAG_MODIFY_LAYOUT
flag can be dropped from the flip controls.
Note the original use of the V4L2_CTRL_FLAG_MODIFY_LAYOUT flag was
incomplete, besides setting the flag the driver should also have reported
a different mbus code when getting the source pad's format depending on
the hflip / vflip settings see the ov2680.c driver for example.
Fixes: b7cd2ba3f692 ("media: ov02c10: Support hflip and vflip")
Cc: stable(a)vger.kernel.org
Cc: Sebastian Reichel <sre(a)kernel.org>
Reviewed-by: Bryan O'Donoghue <bod(a)kernel.org>
Signed-off-by: Hans de Goede <johannes.goede(a)oss.qualcomm.com>
---
drivers/media/i2c/ov02c10.c | 12 ++++--------
1 file changed, 4 insertions(+), 8 deletions(-)
diff --git a/drivers/media/i2c/ov02c10.c b/drivers/media/i2c/ov02c10.c
index 6369841de88b..384c2f0b1608 100644
--- a/drivers/media/i2c/ov02c10.c
+++ b/drivers/media/i2c/ov02c10.c
@@ -165,10 +165,6 @@ static const struct reg_sequence sensor_1928x1092_30fps_setting[] = {
{0x3809, 0x88},
{0x380a, 0x04},
{0x380b, 0x44},
- {0x3810, 0x00},
- {0x3811, 0x02},
- {0x3812, 0x00},
- {0x3813, 0x01},
{0x3814, 0x01},
{0x3815, 0x01},
{0x3816, 0x01},
@@ -465,11 +461,15 @@ static int ov02c10_set_ctrl(struct v4l2_ctrl *ctrl)
break;
case V4L2_CID_HFLIP:
+ cci_write(ov02c10->regmap, OV02C10_ISP_X_WIN_CONTROL,
+ ctrl->val ? 1 : 2, &ret);
cci_update_bits(ov02c10->regmap, OV02C10_ROTATE_CONTROL,
BIT(3), ov02c10->hflip->val << 3, &ret);
break;
case V4L2_CID_VFLIP:
+ cci_write(ov02c10->regmap, OV02C10_ISP_Y_WIN_CONTROL,
+ ctrl->val ? 2 : 1, &ret);
cci_update_bits(ov02c10->regmap, OV02C10_ROTATE_CONTROL,
BIT(4), ov02c10->vflip->val << 4, &ret);
break;
@@ -551,13 +551,9 @@ static int ov02c10_init_controls(struct ov02c10 *ov02c10)
ov02c10->hflip = v4l2_ctrl_new_std(ctrl_hdlr, &ov02c10_ctrl_ops,
V4L2_CID_HFLIP, 0, 1, 1, 0);
- if (ov02c10->hflip)
- ov02c10->hflip->flags |= V4L2_CTRL_FLAG_MODIFY_LAYOUT;
ov02c10->vflip = v4l2_ctrl_new_std(ctrl_hdlr, &ov02c10_ctrl_ops,
V4L2_CID_VFLIP, 0, 1, 1, 0);
- if (ov02c10->vflip)
- ov02c10->vflip->flags |= V4L2_CTRL_FLAG_MODIFY_LAYOUT;
v4l2_ctrl_new_std_menu_items(ctrl_hdlr, &ov02c10_ctrl_ops,
V4L2_CID_TEST_PATTERN,
--
2.52.0
19 hours, 5 minutes
- 3
- 6
[PATCH] leds: led-class: Only Add LED to leds_list when it is fully ready
by Hans de Goede
Before this change the LED was added to leds_list before led_init_core()
gets called adding it the list before led_classdev.set_brightness_work gets
initialized.
This leaves a window where led_trigger_register() of a LED's default
trigger will call led_trigger_set() which calls led_set_brightness()
which in turn will end up queueing the *uninitialized*
led_classdev.set_brightness_work.
This race gets hit by the lenovo-thinkpad-t14s EC driver which registers
2 LEDs with a default trigger provided by snd_ctl_led.ko in quick
succession. The first led_classdev_register() causes an async modprobe of
snd_ctl_led to run and that async modprobe manages to exactly hit
the window where the second LED is on the leds_list without led_init_core()
being called for it, resulting in:
------------[ cut here ]------------
WARNING: CPU: 11 PID: 5608 at kernel/workqueue.c:4234 __flush_work+0x344/0x390
Hardware name: LENOVO 21N2S01F0B/21N2S01F0B, BIOS N42ET93W (2.23 ) 09/01/2025
...
Call trace:
__flush_work+0x344/0x390 (P)
flush_work+0x2c/0x50
led_trigger_set+0x1c8/0x340
led_trigger_register+0x17c/0x1c0
led_trigger_register_simple+0x84/0xe8
snd_ctl_led_init+0x40/0xf88 [snd_ctl_led]
do_one_initcall+0x5c/0x318
do_init_module+0x9c/0x2b8
load_module+0x7e0/0x998
Close the race window by moving the adding of the LED to leds_list to
after the led_init_core() call.
Cc: Sebastian Reichel <sre(a)kernel.org>
Cc: stable(a)vger.kernel.org
Signed-off-by: Hans de Goede <johannes.goede(a)oss.qualcomm.com>
---
Note no Fixes tag as this problem has been around for a long long time,
so I could not really find a good commit for the Fixes tag.
---
drivers/leds/led-class.c | 10 +++++-----
1 file changed, 5 insertions(+), 5 deletions(-)
diff --git a/drivers/leds/led-class.c b/drivers/leds/led-class.c
index f3faf37f9a08..6b9fa060c3a1 100644
--- a/drivers/leds/led-class.c
+++ b/drivers/leds/led-class.c
@@ -560,11 +560,6 @@ int led_classdev_register_ext(struct device *parent,
#ifdef CONFIG_LEDS_BRIGHTNESS_HW_CHANGED
led_cdev->brightness_hw_changed = -1;
#endif
- /* add to the list of leds */
- down_write(&leds_list_lock);
- list_add_tail(&led_cdev->node, &leds_list);
- up_write(&leds_list_lock);
-
if (!led_cdev->max_brightness)
led_cdev->max_brightness = LED_FULL;
@@ -574,6 +569,11 @@ int led_classdev_register_ext(struct device *parent,
led_init_core(led_cdev);
+ /* add to the list of leds */
+ down_write(&leds_list_lock);
+ list_add_tail(&led_cdev->node, &leds_list);
+ up_write(&leds_list_lock);
+
#ifdef CONFIG_LEDS_TRIGGERS
led_trigger_set_default(led_cdev);
#endif
--
2.52.0
19 hours, 6 minutes
- 3
- 5
[PATCH] pwm: stm32: handle polarity change when PWM is enabled
by Sean Nyekjaer
After commit 7346e7a058a2 ("pwm: stm32: Always do lazy disabling"),
polarity changes are ignored. Updates to the TIMx_CCER CCxP bits are
ignored by the hardware when the master output is enabled via the
TIMx_BDTR MOE bit.
Handle polarity changes by temporarily disabling the PWM when required,
in line with apply() implementations used by other PWM drivers.
Fixes: 7346e7a058a2 ("pwm: stm32: Always do lazy disabling")
Cc: stable(a)vger.kernel.org
Signed-off-by: Sean Nyekjaer <sean(a)geanix.com>
---
This patch is only applicable for stable tree's <= 6.12
How to explicitly state that and what is the procedure?
---
drivers/pwm/pwm-stm32.c | 14 +++++++++++---
1 file changed, 11 insertions(+), 3 deletions(-)
diff --git a/drivers/pwm/pwm-stm32.c b/drivers/pwm/pwm-stm32.c
index eb24054f9729734da21eb96f2e37af03339e3440..d5f79e87a0653e1710d46e6bf9268a59638943fe 100644
--- a/drivers/pwm/pwm-stm32.c
+++ b/drivers/pwm/pwm-stm32.c
@@ -452,15 +452,23 @@ static int stm32_pwm_apply(struct pwm_chip *chip, struct pwm_device *pwm,
enabled = pwm->state.enabled;
+ if (state->polarity != pwm->state.polarity) {
+ if (enabled) {
+ stm32_pwm_disable(priv, pwm->hwpwm);
+ enabled = false;
+ }
+
+ ret = stm32_pwm_set_polarity(priv, pwm->hwpwm, state->polarity);
+ if (ret)
+ return ret;
+ }
+
if (!state->enabled) {
if (enabled)
stm32_pwm_disable(priv, pwm->hwpwm);
return 0;
}
- if (state->polarity != pwm->state.polarity)
- stm32_pwm_set_polarity(priv, pwm->hwpwm, state->polarity);
-
ret = stm32_pwm_config(priv, pwm->hwpwm,
state->duty_cycle, state->period);
if (ret)
---
base-commit: eb18504ca5cf1e6a76a752b73daf0ef51de3551b
change-id: 20260105-stm32-pwm-91cb843680f4
Best regards,
--
Sean Nyekjaer <sean(a)geanix.com>
19 hours, 13 minutes
- 2
- 8
[PATCH] wifi: cfg80211: Fix use-after-free in cfg80211_shutdown_all_interfaces
by Daniil Dulov
There is a use-after-free error in cfg80211_shutdown_all_interfaces found
by syzkaller:
BUG: KASAN: use-after-free in cfg80211_shutdown_all_interfaces+0x213/0x220
Read of size 8 at addr ffff888112a78d98 by task kworker/0:5/5326
CPU: 0 UID: 0 PID: 5326 Comm: kworker/0:5 Not tainted 6.19.0-rc2 #2 PREEMPT(voluntary)
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014
Workqueue: events cfg80211_rfkill_block_work
Call Trace:
<TASK>
dump_stack_lvl+0x116/0x1f0
print_report+0xcd/0x630
kasan_report+0xe0/0x110
cfg80211_shutdown_all_interfaces+0x213/0x220
cfg80211_rfkill_block_work+0x1e/0x30
process_one_work+0x9cf/0x1b70
worker_thread+0x6c8/0xf10
kthread+0x3c5/0x780
ret_from_fork+0x56d/0x700
ret_from_fork_asm+0x1a/0x30
</TASK>
The problem arises due to the rfkill_block work is not cancelled when
cfg80211 device is being freed. In order to fix the issue cancel the
corresponding work before destroying rfkill in cfg80211_dev_free().
Found by Linux Verification Center (linuxtesting.org) with Syzkaller.
Fixes: 1f87f7d3a3b4 ("cfg80211: add rfkill support")
Cc: stable(a)vger.kernel.org
Signed-off-by: Daniil Dulov <d.dulov(a)aladdin.ru>
---
net/wireless/core.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/net/wireless/core.c b/net/wireless/core.c
index 54a34d8d356e..e94f69205f50 100644
--- a/net/wireless/core.c
+++ b/net/wireless/core.c
@@ -1226,6 +1226,7 @@ void cfg80211_dev_free(struct cfg80211_registered_device *rdev)
spin_unlock_irqrestore(&rdev->wiphy_work_lock, flags);
cancel_work_sync(&rdev->wiphy_work);
+ cancel_work_sync(&rdev->rfkill_block);
rfkill_destroy(rdev->wiphy.rfkill);
list_for_each_entry_safe(reg, treg, &rdev->beacon_registrations, list) {
list_del(®->list);
--
2.34.1
19 hours, 17 minutes
- 2
- 1
[PATCH] mfd: core: Add locking around `mfd_of_node_list`
by Douglas Anderson
Manipulating a list in the kernel isn't safe without some sort of
mutual exclusion. Add a mutex any time we access / modify
`mfd_of_node_list` to prevent possible crashes.
Cc: <stable(a)vger.kernel.org>
Fixes: 466a62d7642f ("mfd: core: Make a best effort attempt to match devices with the correct of_nodes")
Signed-off-by: Douglas Anderson <dianders(a)chromium.org>
---
While I have no definitive way to reproduce the crash we've been
seeing, it's clear that the `mfd_of_node_list` isn't right at the time
of the crash. Code inspection shows the lack of locking.
drivers/mfd/mfd-core.c | 36 ++++++++++++++++++++++--------------
1 file changed, 22 insertions(+), 14 deletions(-)
diff --git a/drivers/mfd/mfd-core.c b/drivers/mfd/mfd-core.c
index 7d14a1e7631e..c55223ce4327 100644
--- a/drivers/mfd/mfd-core.c
+++ b/drivers/mfd/mfd-core.c
@@ -22,6 +22,7 @@
#include <linux/regulator/consumer.h>
static LIST_HEAD(mfd_of_node_list);
+static DEFINE_MUTEX(mfd_of_node_mutex);
struct mfd_of_node_entry {
struct list_head list;
@@ -105,9 +106,11 @@ static int mfd_match_of_node_to_dev(struct platform_device *pdev,
u64 of_node_addr;
/* Skip if OF node has previously been allocated to a device */
- list_for_each_entry(of_entry, &mfd_of_node_list, list)
- if (of_entry->np == np)
- return -EAGAIN;
+ scoped_guard(mutex, &mfd_of_node_mutex) {
+ list_for_each_entry(of_entry, &mfd_of_node_list, list)
+ if (of_entry->np == np)
+ return -EAGAIN;
+ }
if (!cell->use_of_reg)
/* No of_reg defined - allocate first free compatible match */
@@ -129,7 +132,8 @@ static int mfd_match_of_node_to_dev(struct platform_device *pdev,
of_entry->dev = &pdev->dev;
of_entry->np = np;
- list_add_tail(&of_entry->list, &mfd_of_node_list);
+ scoped_guard(mutex, &mfd_of_node_mutex)
+ list_add_tail(&of_entry->list, &mfd_of_node_list);
of_node_get(np);
device_set_node(&pdev->dev, of_fwnode_handle(np));
@@ -286,11 +290,13 @@ static int mfd_add_device(struct device *parent, int id,
if (cell->swnode)
device_remove_software_node(&pdev->dev);
fail_of_entry:
- list_for_each_entry_safe(of_entry, tmp, &mfd_of_node_list, list)
- if (of_entry->dev == &pdev->dev) {
- list_del(&of_entry->list);
- kfree(of_entry);
- }
+ scoped_guard(mutex, &mfd_of_node_mutex) {
+ list_for_each_entry_safe(of_entry, tmp, &mfd_of_node_list, list)
+ if (of_entry->dev == &pdev->dev) {
+ list_del(&of_entry->list);
+ kfree(of_entry);
+ }
+ }
fail_alias:
regulator_bulk_unregister_supply_alias(&pdev->dev,
cell->parent_supplies,
@@ -360,11 +366,13 @@ static int mfd_remove_devices_fn(struct device *dev, void *data)
if (cell->swnode)
device_remove_software_node(&pdev->dev);
- list_for_each_entry_safe(of_entry, tmp, &mfd_of_node_list, list)
- if (of_entry->dev == &pdev->dev) {
- list_del(&of_entry->list);
- kfree(of_entry);
- }
+ scoped_guard(mutex, &mfd_of_node_mutex) {
+ list_for_each_entry_safe(of_entry, tmp, &mfd_of_node_list, list)
+ if (of_entry->dev == &pdev->dev) {
+ list_del(&of_entry->list);
+ kfree(of_entry);
+ }
+ }
regulator_bulk_unregister_supply_alias(dev, cell->parent_supplies,
cell->num_parent_supplies);
--
2.52.0.223.gf5cc29aaa4-goog
19 hours, 22 minutes
- 2
- 2
[PATCH v2 1/2] drm/buddy: Prevent BUG_ON by validating rounded allocation
by Sanjay Yadav
When DRM_BUDDY_CONTIGUOUS_ALLOCATION is set, the requested size is
rounded up to the next power-of-two via roundup_pow_of_two().
Similarly, for non-contiguous allocations with large min_block_size,
the size is aligned up via round_up(). Both operations can produce a
rounded size that exceeds mm->size, which later triggers
BUG_ON(order > mm->max_order).
Example scenarios:
- 9G CONTIGUOUS allocation on 10G VRAM memory:
roundup_pow_of_two(9G) = 16G > 10G
- 9G allocation with 8G min_block_size on 10G VRAM memory:
round_up(9G, 8G) = 16G > 10G
Fix this by checking the rounded size against mm->size. For
non-contiguous or range allocations where size > mm->size is invalid,
return -EINVAL immediately. For contiguous allocations without range
restrictions, allow the request to fall through to the existing
__alloc_contig_try_harder() fallback.
This ensures invalid user input returns an error or uses the fallback
path instead of hitting BUG_ON.
v2: (Matt A)
- Add Fixes, Cc stable, and Closes tags for context
Closes: https://gitlab.freedesktop.org/drm/xe/kernel/-/issues/6712
Fixes: 0a1844bf0b53 ("drm/buddy: Improve contiguous memory allocation")
Cc: <stable(a)vger.kernel.org> # v6.7+
Cc: Christian König <christian.koenig(a)amd.com>
Cc: Arunpravin Paneer Selvam <Arunpravin.PaneerSelvam(a)amd.com>
Suggested-by: Matthew Auld <matthew.auld(a)intel.com>
Signed-off-by: Sanjay Yadav <sanjay.kumar.yadav(a)intel.com>
Reviewed-by: Matthew Auld <matthew.auld(a)intel.com>
Reviewed-by: Arunpravin Paneer Selvam <Arunpravin.PaneerSelvam(a)amd.com>
---
drivers/gpu/drm/drm_buddy.c | 9 +++++++++
1 file changed, 9 insertions(+)
diff --git a/drivers/gpu/drm/drm_buddy.c b/drivers/gpu/drm/drm_buddy.c
index 2f279b46bd2c..5141348fc6c9 100644
--- a/drivers/gpu/drm/drm_buddy.c
+++ b/drivers/gpu/drm/drm_buddy.c
@@ -1155,6 +1155,15 @@ int drm_buddy_alloc_blocks(struct drm_buddy *mm,
order = fls(pages) - 1;
min_order = ilog2(min_block_size) - ilog2(mm->chunk_size);
+ if (order > mm->max_order || size > mm->size) {
+ if ((flags & DRM_BUDDY_CONTIGUOUS_ALLOCATION) &&
+ !(flags & DRM_BUDDY_RANGE_ALLOCATION))
+ return __alloc_contig_try_harder(mm, original_size,
+ original_min_size, blocks);
+
+ return -EINVAL;
+ }
+
do {
order = min(order, (unsigned int)fls(pages) - 1);
BUG_ON(order > mm->max_order);
--
2.52.0
19 hours, 51 minutes
- 1
- 0
[PATCH] lib/crypto: aes: Fix missing MMU protection for AES S-box
by Eric Biggers
__cacheline_aligned puts the data in the ".data..cacheline_aligned"
section, which isn't marked read-only i.e. it doesn't receive MMU
protection. Replace it with ____cacheline_aligned which does the right
thing and just aligns the data while keeping it in ".rodata".
Fixes: b5e0b032b6c3 ("crypto: aes - add generic time invariant AES cipher")
Cc: stable(a)vger.kernel.org
Reported-by: Qingfang Deng <dqfext(a)gmail.com>
Closes: https://lore.kernel.org/r/20260105074712.498-1-dqfext@gmail.com/
Signed-off-by: Eric Biggers <ebiggers(a)kernel.org>
---
This patch is targeting libcrypto-fixes
lib/crypto/aes.c | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/lib/crypto/aes.c b/lib/crypto/aes.c
index b57fda3460f1..102aaa76bc8d 100644
--- a/lib/crypto/aes.c
+++ b/lib/crypto/aes.c
@@ -11,11 +11,11 @@
/*
* Emit the sbox as volatile const to prevent the compiler from doing
* constant folding on sbox references involving fixed indexes.
*/
-static volatile const u8 __cacheline_aligned aes_sbox[] = {
+static volatile const u8 ____cacheline_aligned aes_sbox[] = {
0x63, 0x7c, 0x77, 0x7b, 0xf2, 0x6b, 0x6f, 0xc5,
0x30, 0x01, 0x67, 0x2b, 0xfe, 0xd7, 0xab, 0x76,
0xca, 0x82, 0xc9, 0x7d, 0xfa, 0x59, 0x47, 0xf0,
0xad, 0xd4, 0xa2, 0xaf, 0x9c, 0xa4, 0x72, 0xc0,
0xb7, 0xfd, 0x93, 0x26, 0x36, 0x3f, 0xf7, 0xcc,
@@ -46,11 +46,11 @@ static volatile const u8 __cacheline_aligned aes_sbox[] = {
0x9b, 0x1e, 0x87, 0xe9, 0xce, 0x55, 0x28, 0xdf,
0x8c, 0xa1, 0x89, 0x0d, 0xbf, 0xe6, 0x42, 0x68,
0x41, 0x99, 0x2d, 0x0f, 0xb0, 0x54, 0xbb, 0x16,
};
-static volatile const u8 __cacheline_aligned aes_inv_sbox[] = {
+static volatile const u8 ____cacheline_aligned aes_inv_sbox[] = {
0x52, 0x09, 0x6a, 0xd5, 0x30, 0x36, 0xa5, 0x38,
0xbf, 0x40, 0xa3, 0x9e, 0x81, 0xf3, 0xd7, 0xfb,
0x7c, 0xe3, 0x39, 0x82, 0x9b, 0x2f, 0xff, 0x87,
0x34, 0x8e, 0x43, 0x44, 0xc4, 0xde, 0xe9, 0xcb,
0x54, 0x7b, 0x94, 0x32, 0xa6, 0xc2, 0x23, 0x3d,
base-commit: fdfa4339e805276a458a5df9d6caf0b43ad4c439
--
2.52.0
20 hours, 5 minutes
- 2
- 1
[PATCH v2] powerpc/pseries: Fix MSI-X allocation failure when quota is exceeded
by Nam Cao
Nilay reported that since commit daaa574aba6f ("powerpc/pseries/msi: Switch
to msi_create_parent_irq_domain()"), the NVMe driver cannot enable MSI-X
when the device's MSI-X table size is larger than the firmware's MSI quota
for the device.
This is because the commit changes how rtas_prepare_msi_irqs() is called:
- Before, it is called when interrupts are allocated at the global
interrupt domain with nvec_in being the number of allocated interrupts.
rtas_prepare_msi_irqs() can return a positive number and the allocation
will be retried.
- Now, it is called at the creation of per-device interrupt domain with
nvec_in being the number of interrupts that the device supports. If
rtas_prepare_msi_irqs() returns positive, domain creation just fails.
For Nilay's NVMe driver case, rtas_prepare_msi_irqs() returns a positive
number (the quota). This causes per-device interrupt domain creation to
fail and thus the NVMe driver cannot enable MSI-X.
Rework to make this scenario works again:
- pseries_msi_ops_prepare() only prepares as many interrupts as the quota
permit.
- pseries_irq_domain_alloc() fails if the device's quota is exceeded.
Now, if the quota is exceeded, pseries_msi_ops_prepare() will only prepare
as allowed by the quota. If device drivers attempt to allocate more
interrupts than the quota permits, pseries_irq_domain_alloc() will return
an error code and msi_handle_pci_fail() will allow device drivers a retry.
Reported-by: Nilay Shroff <nilay(a)linux.ibm.com>
Closes: https://lore.kernel.org/linuxppc-dev/6af2c4c2-97f6-4758-be33-256638ef39e5@l…
Fixes: daaa574aba6f ("powerpc/pseries/msi: Switch to msi_create_parent_irq_domain()")
Signed-off-by: Nam Cao <namcao(a)linutronix.de>
Acked-by: Nilay Shroff <nilay(a)linux.ibm.com>
Cc: stable(a)vger.kernel.org
---
v2:
- change pseries_msi_ops_prepare()'s allocation logic to match the
original logic in __pci_enable_msix_range()
- fix up Nilay's email address
---
arch/powerpc/platforms/pseries/msi.c | 44 ++++++++++++++++++++++++++--
1 file changed, 41 insertions(+), 3 deletions(-)
diff --git a/arch/powerpc/platforms/pseries/msi.c b/arch/powerpc/platforms/pseries/msi.c
index a82aaa786e9e..edc30cda5dbc 100644
--- a/arch/powerpc/platforms/pseries/msi.c
+++ b/arch/powerpc/platforms/pseries/msi.c
@@ -19,6 +19,11 @@
#include "pseries.h"
+struct pseries_msi_device {
+ unsigned int msi_quota;
+ unsigned int msi_used;
+};
+
static int query_token, change_token;
#define RTAS_QUERY_FN 0
@@ -433,8 +438,28 @@ static int pseries_msi_ops_prepare(struct irq_domain *domain, struct device *dev
struct msi_domain_info *info = domain->host_data;
struct pci_dev *pdev = to_pci_dev(dev);
int type = (info->flags & MSI_FLAG_PCI_MSIX) ? PCI_CAP_ID_MSIX : PCI_CAP_ID_MSI;
+ int ret;
+
+ struct pseries_msi_device *pseries_dev __free(kfree)
+ = kmalloc(sizeof(*pseries_dev), GFP_KERNEL);
+ if (!pseries_dev)
+ return -ENOMEM;
+
+ while (1) {
+ ret = rtas_prepare_msi_irqs(pdev, nvec, type, arg);
+ if (!ret)
+ break;
+ else if (ret > 0)
+ nvec = ret;
+ else
+ return ret;
+ }
- return rtas_prepare_msi_irqs(pdev, nvec, type, arg);
+ pseries_dev->msi_quota = nvec;
+ pseries_dev->msi_used = 0;
+
+ arg->scratchpad[0].ptr = no_free_ptr(pseries_dev);
+ return 0;
}
/*
@@ -443,9 +468,13 @@ static int pseries_msi_ops_prepare(struct irq_domain *domain, struct device *dev
*/
static void pseries_msi_ops_teardown(struct irq_domain *domain, msi_alloc_info_t *arg)
{
+ struct pseries_msi_device *pseries_dev = arg->scratchpad[0].ptr;
struct pci_dev *pdev = to_pci_dev(domain->dev);
rtas_disable_msi(pdev);
+
+ WARN_ON(pseries_dev->msi_used);
+ kfree(pseries_dev);
}
static void pseries_msi_shutdown(struct irq_data *d)
@@ -546,12 +575,18 @@ static int pseries_irq_domain_alloc(struct irq_domain *domain, unsigned int virq
unsigned int nr_irqs, void *arg)
{
struct pci_controller *phb = domain->host_data;
+ struct pseries_msi_device *pseries_dev;
msi_alloc_info_t *info = arg;
struct msi_desc *desc = info->desc;
struct pci_dev *pdev = msi_desc_to_pci_dev(desc);
int hwirq;
int i, ret;
+ pseries_dev = info->scratchpad[0].ptr;
+
+ if (pseries_dev->msi_used + nr_irqs > pseries_dev->msi_quota)
+ return -ENOSPC;
+
hwirq = rtas_query_irq_number(pci_get_pdn(pdev), desc->msi_index);
if (hwirq < 0) {
dev_err(&pdev->dev, "Failed to query HW IRQ: %d\n", hwirq);
@@ -567,9 +602,10 @@ static int pseries_irq_domain_alloc(struct irq_domain *domain, unsigned int virq
goto out;
irq_domain_set_hwirq_and_chip(domain, virq + i, hwirq + i,
- &pseries_msi_irq_chip, domain->host_data);
+ &pseries_msi_irq_chip, pseries_dev);
}
+ pseries_dev->msi_used++;
return 0;
out:
@@ -582,9 +618,11 @@ static void pseries_irq_domain_free(struct irq_domain *domain, unsigned int virq
unsigned int nr_irqs)
{
struct irq_data *d = irq_domain_get_irq_data(domain, virq);
- struct pci_controller *phb = irq_data_get_irq_chip_data(d);
+ struct pseries_msi_device *pseries_dev = irq_data_get_irq_chip_data(d);
+ struct pci_controller *phb = domain->host_data;
pr_debug("%s bridge %pOF %d #%d\n", __func__, phb->dn, virq, nr_irqs);
+ pseries_dev->msi_used -= nr_irqs;
irq_domain_free_irqs_parent(domain, virq, nr_irqs);
}
--
2.51.0
20 hours, 9 minutes
- 3
- 2
[PATCH v6.6] net: stmmac: make sure that ptp_rate is not 0 before configuring EST
by Rahul Sharma
From: Alexis Lothoré <alexis.lothore(a)bootlin.com>
If the ptp_rate recorded earlier in the driver happens to be 0, this
bogus value will propagate up to EST configuration, where it will
trigger a division by 0.
Prevent this division by 0 by adding the corresponding check and error
code.
Suggested-by: Maxime Chevallier <maxime.chevallier(a)bootlin.com>
Signed-off-by: Alexis Lothoré <alexis.lothore(a)bootlin.com>
Fixes: 8572aec3d0dc ("net: stmmac: Add basic EST support for XGMAC")
Link: https://patch.msgid.link/20250529-stmmac_tstamp_div-v4-2-d73340a794d5@bootl…
Signed-off-by: Jakub Kicinski <kuba(a)kernel.org>
[ The context change is due to the commit c3f3b97238f6
("net: stmmac: Refactor EST implementation")
which is irrelevant to the logic of this patch. ]
Signed-off-by: Rahul Sharma <black.hawk(a)163.com>
---
drivers/net/ethernet/stmicro/stmmac/dwmac5.c | 5 +++++
drivers/net/ethernet/stmicro/stmmac/dwxgmac2_core.c | 5 +++++
2 files changed, 10 insertions(+)
diff --git a/drivers/net/ethernet/stmicro/stmmac/dwmac5.c b/drivers/net/ethernet/stmicro/stmmac/dwmac5.c
index 8fd167501fa0..0afd4644a985 100644
--- a/drivers/net/ethernet/stmicro/stmmac/dwmac5.c
+++ b/drivers/net/ethernet/stmicro/stmmac/dwmac5.c
@@ -597,6 +597,11 @@ int dwmac5_est_configure(void __iomem *ioaddr, struct stmmac_est *cfg,
int i, ret = 0x0;
u32 ctrl;
+ if (!ptp_rate) {
+ pr_warn("Dwmac5: Invalid PTP rate");
+ return -EINVAL;
+ }
+
ret |= dwmac5_est_write(ioaddr, BTR_LOW, cfg->btr[0], false);
ret |= dwmac5_est_write(ioaddr, BTR_HIGH, cfg->btr[1], false);
ret |= dwmac5_est_write(ioaddr, TER, cfg->ter, false);
diff --git a/drivers/net/ethernet/stmicro/stmmac/dwxgmac2_core.c b/drivers/net/ethernet/stmicro/stmmac/dwxgmac2_core.c
index 0bcb378fa0bc..aab02328a613 100644
--- a/drivers/net/ethernet/stmicro/stmmac/dwxgmac2_core.c
+++ b/drivers/net/ethernet/stmicro/stmmac/dwxgmac2_core.c
@@ -1537,6 +1537,11 @@ static int dwxgmac3_est_configure(void __iomem *ioaddr, struct stmmac_est *cfg,
int i, ret = 0x0;
u32 ctrl;
+ if (!ptp_rate) {
+ pr_warn("Dwxgmac2: Invalid PTP rate");
+ return -EINVAL;
+ }
+
ret |= dwxgmac3_est_write(ioaddr, XGMAC_BTR_LOW, cfg->btr[0], false);
ret |= dwxgmac3_est_write(ioaddr, XGMAC_BTR_HIGH, cfg->btr[1], false);
ret |= dwxgmac3_est_write(ioaddr, XGMAC_TER, cfg->ter, false);
--
2.34.1
20 hours, 14 minutes
- 2
- 1
FAILED: patch "[PATCH] tpm: Cap the number of PCR banks" failed to apply to 5.10-stable tree
by gregkh@linuxfoundation.org
The patch below does not apply to the 5.10-stable tree.
If someone wants it applied there, or to any other stable or longterm
tree, then please email the backport, including the original git commit
id to <stable(a)vger.kernel.org>.
To reproduce the conflict and resubmit, you may use the following commands:
git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-5.10.y
git checkout FETCH_HEAD
git cherry-pick -x faf07e611dfa464b201223a7253e9dc5ee0f3c9e
# <resolve conflicts, build, test, etc.>
git commit -s
git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2026010815-sessions-arrogance-fc04@gregkh' --subject-prefix 'PATCH 5.10.y' HEAD^..
Possible dependencies:
thanks,
greg k-h
------------------ original commit in Linus's tree ------------------
From faf07e611dfa464b201223a7253e9dc5ee0f3c9e Mon Sep 17 00:00:00 2001
From: Jarkko Sakkinen <jarkko.sakkinen(a)opinsys.com>
Date: Tue, 30 Sep 2025 15:58:02 +0300
Subject: [PATCH] tpm: Cap the number of PCR banks
tpm2_get_pcr_allocation() does not cap any upper limit for the number of
banks. Cap the limit to eight banks so that out of bounds values coming
from external I/O cause on only limited harm.
Cc: stable(a)vger.kernel.org # v5.10+
Fixes: bcfff8384f6c ("tpm: dynamically allocate the allocated_banks array")
Tested-by: Lai Yi <yi1.lai(a)linux.intel.com>
Reviewed-by: Jonathan McDowell <noodles(a)meta.com>
Reviewed-by: Roberto Sassu <roberto.sassu(a)huawei.com>
Signed-off-by: Jarkko Sakkinen <jarkko.sakkinen(a)opinsys.com>
diff --git a/drivers/char/tpm/tpm-chip.c b/drivers/char/tpm/tpm-chip.c
index 30d00219f9f3..082b910ddf0d 100644
--- a/drivers/char/tpm/tpm-chip.c
+++ b/drivers/char/tpm/tpm-chip.c
@@ -246,7 +246,6 @@ static void tpm_dev_release(struct device *dev)
kfree(chip->work_space.context_buf);
kfree(chip->work_space.session_buf);
- kfree(chip->allocated_banks);
#ifdef CONFIG_TCG_TPM2_HMAC
kfree(chip->auth);
#endif
diff --git a/drivers/char/tpm/tpm1-cmd.c b/drivers/char/tpm/tpm1-cmd.c
index cf64c7385105..b49a790f1bd5 100644
--- a/drivers/char/tpm/tpm1-cmd.c
+++ b/drivers/char/tpm/tpm1-cmd.c
@@ -799,11 +799,6 @@ int tpm1_pm_suspend(struct tpm_chip *chip, u32 tpm_suspend_pcr)
*/
int tpm1_get_pcr_allocation(struct tpm_chip *chip)
{
- chip->allocated_banks = kcalloc(1, sizeof(*chip->allocated_banks),
- GFP_KERNEL);
- if (!chip->allocated_banks)
- return -ENOMEM;
-
chip->allocated_banks[0].alg_id = TPM_ALG_SHA1;
chip->allocated_banks[0].digest_size = hash_digest_size[HASH_ALGO_SHA1];
chip->allocated_banks[0].crypto_id = HASH_ALGO_SHA1;
diff --git a/drivers/char/tpm/tpm2-cmd.c b/drivers/char/tpm/tpm2-cmd.c
index 5532e53a2dd3..dd502322f499 100644
--- a/drivers/char/tpm/tpm2-cmd.c
+++ b/drivers/char/tpm/tpm2-cmd.c
@@ -550,11 +550,9 @@ ssize_t tpm2_get_pcr_allocation(struct tpm_chip *chip)
nr_possible_banks = be32_to_cpup(
(__be32 *)&buf.data[TPM_HEADER_SIZE + 5]);
-
- chip->allocated_banks = kcalloc(nr_possible_banks,
- sizeof(*chip->allocated_banks),
- GFP_KERNEL);
- if (!chip->allocated_banks) {
+ if (nr_possible_banks > TPM2_MAX_PCR_BANKS) {
+ pr_err("tpm: out of bank capacity: %u > %u\n",
+ nr_possible_banks, TPM2_MAX_PCR_BANKS);
rc = -ENOMEM;
goto out;
}
diff --git a/include/linux/tpm.h b/include/linux/tpm.h
index b15360ff78d7..53de9488c509 100644
--- a/include/linux/tpm.h
+++ b/include/linux/tpm.h
@@ -26,7 +26,9 @@
#include <crypto/aes.h>
#define TPM_DIGEST_SIZE 20 /* Max TPM v1.2 PCR size */
-#define TPM_MAX_DIGEST_SIZE SHA512_DIGEST_SIZE
+
+#define TPM2_MAX_DIGEST_SIZE SHA512_DIGEST_SIZE
+#define TPM2_MAX_PCR_BANKS 8
struct tpm_chip;
struct trusted_key_payload;
@@ -68,7 +70,7 @@ enum tpm2_curves {
struct tpm_digest {
u16 alg_id;
- u8 digest[TPM_MAX_DIGEST_SIZE];
+ u8 digest[TPM2_MAX_DIGEST_SIZE];
} __packed;
struct tpm_bank_info {
@@ -189,7 +191,7 @@ struct tpm_chip {
unsigned int groups_cnt;
u32 nr_allocated_banks;
- struct tpm_bank_info *allocated_banks;
+ struct tpm_bank_info allocated_banks[TPM2_MAX_PCR_BANKS];
#ifdef CONFIG_ACPI
acpi_handle acpi_dev_handle;
char ppi_version[TPM_PPI_VERSION_LEN + 1];
20 hours, 35 minutes
- 1
- 0
[PATCH v2 0/1] fs/writeback: skip AS_NO_DATA_INTEGRITY mappings in wait_sb_inodes()
by Joanne Koong
This patch reverts fuse back to its original behavior of sync being a no-op.
This fixes the userspace regression reported by Athul and J. upstream in
[1][2] where if there is a bug in a fuse server that causes the server to
never complete writeback, it will make wait_sb_inodes() wait forever.
Thanks,
Joanne
[1] https://lore.kernel.org/regressions/CAJnrk1ZjQ8W8NzojsvJPRXiv9TuYPNdj8Ye7=C…
[2] https://lore.kernel.org/linux-fsdevel/aT7JRqhUvZvfUQlV@eldamar.lan/
Changelog:
v1: https://lore.kernel.org/linux-mm/20251120184211.2379439-1-joannelkoong@gmai…
* Change AS_WRITEBACK_MAY_HANG to AS_NO_DATA_INTEGRITY and keep
AS_WRITEBACK_MAY_DEADLOCK_ON_RECLAIM as is.
Joanne Koong (1):
fs/writeback: skip AS_NO_DATA_INTEGRITY mappings in wait_sb_inodes()
fs/fs-writeback.c | 3 ++-
fs/fuse/file.c | 4 +++-
include/linux/pagemap.h | 11 +++++++++++
3 files changed, 16 insertions(+), 2 deletions(-)
--
2.47.3
20 hours, 47 minutes
- 7
- 21
[PATCH] drm/amdgpu: don't attach the tlb fence for SI
by Hans de Goede
From: Alex Deucher <alexander.deucher(a)amd.com>
commit eb296c09805ee37dd4ea520a7fb3ec157c31090f upstream.
SI hardware doesn't support pasids, user mode queues, or
KIQ/MES so there is no need for this. Doing so results in
a segfault as these callbacks are non-existent for SI.
Closes: https://gitlab.freedesktop.org/drm/amd/-/issues/4744
Fixes: f3854e04b708 ("drm/amdgpu: attach tlb fence to the PTs update")
Reviewed-by: Timur Kristóf <timur.kristof(a)gmail.com>
Signed-off-by: Alex Deucher <alexander.deucher(a)amd.com>
Signed-off-by: Hans de Goede <johannes.goede(a)oss.qualcomm.com>
---
drivers/gpu/drm/amd/amdgpu/amdgpu_vm.c | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git a/drivers/gpu/drm/amd/amdgpu/amdgpu_vm.c b/drivers/gpu/drm/amd/amdgpu/amdgpu_vm.c
index 676e24fb8864..cdcafde3c71a 100644
--- a/drivers/gpu/drm/amd/amdgpu/amdgpu_vm.c
+++ b/drivers/gpu/drm/amd/amdgpu/amdgpu_vm.c
@@ -1066,7 +1066,9 @@ amdgpu_vm_tlb_flush(struct amdgpu_vm_update_params *params,
}
/* Prepare a TLB flush fence to be attached to PTs */
- if (!params->unlocked) {
+ if (!params->unlocked &&
+ /* SI doesn't support pasid or KIQ/MES */
+ params->adev->family > AMDGPU_FAMILY_SI) {
amdgpu_vm_tlb_fence_create(params->adev, vm, fence);
/* Makes sure no PD/PT is freed before the flush */
--
2.52.0
21 hours, 2 minutes
- 3
- 6
[PATCH 5.15 1/2] x86: remove __range_not_ok()
by Thadeu Lima de Souza Cascardo
From: Arnd Bergmann <arnd(a)arndb.de>
commit 36903abedfe8d419e90ce349b2b4ce6dc2883e17 upstream.
The __range_not_ok() helper is an x86 (and sparc64) specific interface
that does roughly the same thing as __access_ok(), but with different
calling conventions.
Change this to use the normal interface in order for consistency as we
clean up all access_ok() implementations.
This changes the limit from TASK_SIZE to TASK_SIZE_MAX, which Al points
out is the right thing do do here anyway.
The callers have to use __access_ok() instead of the normal access_ok()
though, because on x86 that contains a WARN_ON_IN_IRQ() check that cannot
be used inside of NMI context while tracing.
The check in copy_code() is not needed any more, because this one is
already done by copy_from_user_nmi().
Suggested-by: Al Viro <viro(a)zeniv.linux.org.uk>
Suggested-by: Christoph Hellwig <hch(a)infradead.org>
Link: https://lore.kernel.org/lkml/YgsUKcXGR7r4nINj@zeniv-ca.linux.org.uk/
Signed-off-by: Arnd Bergmann <arnd(a)arndb.de>
Stable-dep-of: d319f344561d ("mm: Fix copy_from_user_nofault().")
Signed-off-by: Thadeu Lima de Souza Cascardo <cascardo(a)igalia.com>
---
arch/x86/events/core.c | 2 +-
arch/x86/include/asm/uaccess.h | 10 ++++++----
arch/x86/kernel/dumpstack.c | 6 ------
arch/x86/kernel/stacktrace.c | 2 +-
arch/x86/lib/usercopy.c | 2 +-
5 files changed, 9 insertions(+), 13 deletions(-)
diff --git a/arch/x86/events/core.c b/arch/x86/events/core.c
index 9a77c6062c24..fdf1e2aaa5ed 100644
--- a/arch/x86/events/core.c
+++ b/arch/x86/events/core.c
@@ -2790,7 +2790,7 @@ perf_callchain_kernel(struct perf_callchain_entry_ctx *entry, struct pt_regs *re
static inline int
valid_user_frame(const void __user *fp, unsigned long size)
{
- return (__range_not_ok(fp, size, TASK_SIZE) == 0);
+ return __access_ok(fp, size);
}
static unsigned long get_segment_base(unsigned int segment)
diff --git a/arch/x86/include/asm/uaccess.h b/arch/x86/include/asm/uaccess.h
index 3616fd4ba395..66284ac86076 100644
--- a/arch/x86/include/asm/uaccess.h
+++ b/arch/x86/include/asm/uaccess.h
@@ -16,8 +16,10 @@
* Test whether a block of memory is a valid user space address.
* Returns 0 if the range is valid, nonzero otherwise.
*/
-static inline bool __chk_range_not_ok(unsigned long addr, unsigned long size, unsigned long limit)
+static inline bool __chk_range_not_ok(unsigned long addr, unsigned long size)
{
+ unsigned long limit = TASK_SIZE_MAX;
+
/*
* If we have used "sizeof()" for the size,
* we know it won't overflow the limit (but
@@ -35,10 +37,10 @@ static inline bool __chk_range_not_ok(unsigned long addr, unsigned long size, un
return unlikely(addr > limit);
}
-#define __range_not_ok(addr, size, limit) \
+#define __access_ok(addr, size) \
({ \
__chk_user_ptr(addr); \
- __chk_range_not_ok((unsigned long __force)(addr), size, limit); \
+ !__chk_range_not_ok((unsigned long __force)(addr), size); \
})
#ifdef CONFIG_DEBUG_ATOMIC_SLEEP
@@ -69,7 +71,7 @@ static inline bool pagefault_disabled(void);
#define access_ok(addr, size) \
({ \
WARN_ON_IN_IRQ(); \
- likely(!__range_not_ok(addr, size, TASK_SIZE_MAX)); \
+ likely(__access_ok(addr, size)); \
})
extern int __get_user_1(void);
diff --git a/arch/x86/kernel/dumpstack.c b/arch/x86/kernel/dumpstack.c
index 8a8660074284..bf73dbfb2355 100644
--- a/arch/x86/kernel/dumpstack.c
+++ b/arch/x86/kernel/dumpstack.c
@@ -81,12 +81,6 @@ static int copy_code(struct pt_regs *regs, u8 *buf, unsigned long src,
/* The user space code from other tasks cannot be accessed. */
if (regs != task_pt_regs(current))
return -EPERM;
- /*
- * Make sure userspace isn't trying to trick us into dumping kernel
- * memory by pointing the userspace instruction pointer at it.
- */
- if (__chk_range_not_ok(src, nbytes, TASK_SIZE_MAX))
- return -EINVAL;
/*
* Even if named copy_from_user_nmi() this can be invoked from
diff --git a/arch/x86/kernel/stacktrace.c b/arch/x86/kernel/stacktrace.c
index 15b058eefc4e..ee117fcf46ed 100644
--- a/arch/x86/kernel/stacktrace.c
+++ b/arch/x86/kernel/stacktrace.c
@@ -90,7 +90,7 @@ copy_stack_frame(const struct stack_frame_user __user *fp,
{
int ret;
- if (__range_not_ok(fp, sizeof(*frame), TASK_SIZE))
+ if (!__access_ok(fp, sizeof(*frame)))
return 0;
ret = 1;
diff --git a/arch/x86/lib/usercopy.c b/arch/x86/lib/usercopy.c
index c3e8a62ca561..ad0139d25401 100644
--- a/arch/x86/lib/usercopy.c
+++ b/arch/x86/lib/usercopy.c
@@ -32,7 +32,7 @@ copy_from_user_nmi(void *to, const void __user *from, unsigned long n)
{
unsigned long ret;
- if (__range_not_ok(from, n, TASK_SIZE))
+ if (!__access_ok(from, n))
return n;
if (!nmi_uaccess_okay())
--
2.47.3
21 hours, 8 minutes
- 1
- 1
[PATCH v6.12 0/4] sched: The newidle balance regression
by Ajay Kaher
This series is to backport following patches for v6.12:
link: https://lore.kernel.org/lkml/20251107160645.929564468@infradead.org/
Peter Zijlstra (3):
sched/fair: Revert max_newidle_lb_cost bump
sched/fair: Small cleanup to sched_balance_newidle()
sched/fair: Small cleanup to update_newidle_cost()
sched/fair: Proportional newidle balance
include/linux/sched/topology.h | 3 ++
kernel/sched/core.c | 3 ++
kernel/sched/fair.c | 74 +++++++++++++++++++++++-----------
kernel/sched/features.h | 5 +++
kernel/sched/sched.h | 7 ++++
kernel/sched/topology.c | 6 +++
6 files changed, 75 insertions(+), 23 deletions(-)
--
2.40.4
21 hours, 12 minutes
- 2
- 8
[PATCH v6.12] usbnet: Fix using smp_processor_id() in preemptible code warnings
by Rahul Sharma
From: Zqiang <qiang.zhang(a)linux.dev>
Syzbot reported the following warning:
BUG: using smp_processor_id() in preemptible [00000000] code: dhcpcd/2879
caller is usbnet_skb_return+0x74/0x490 drivers/net/usb/usbnet.c:331
CPU: 1 UID: 0 PID: 2879 Comm: dhcpcd Not tainted 6.15.0-rc4-syzkaller-00098-g615dca38c2ea #0 PREEMPT(voluntary)
Call Trace:
<TASK>
__dump_stack lib/dump_stack.c:94 [inline]
dump_stack_lvl+0x16c/0x1f0 lib/dump_stack.c:120
check_preemption_disabled+0xd0/0xe0 lib/smp_processor_id.c:49
usbnet_skb_return+0x74/0x490 drivers/net/usb/usbnet.c:331
usbnet_resume_rx+0x4b/0x170 drivers/net/usb/usbnet.c:708
usbnet_change_mtu+0x1be/0x220 drivers/net/usb/usbnet.c:417
__dev_set_mtu net/core/dev.c:9443 [inline]
netif_set_mtu_ext+0x369/0x5c0 net/core/dev.c:9496
netif_set_mtu+0xb0/0x160 net/core/dev.c:9520
dev_set_mtu+0xae/0x170 net/core/dev_api.c:247
dev_ifsioc+0xa31/0x18d0 net/core/dev_ioctl.c:572
dev_ioctl+0x223/0x10e0 net/core/dev_ioctl.c:821
sock_do_ioctl+0x19d/0x280 net/socket.c:1204
sock_ioctl+0x42f/0x6a0 net/socket.c:1311
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:906 [inline]
__se_sys_ioctl fs/ioctl.c:892 [inline]
__x64_sys_ioctl+0x190/0x200 fs/ioctl.c:892
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xcd/0x260 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
For historical and portability reasons, the netif_rx() is usually
run in the softirq or interrupt context, this commit therefore add
local_bh_disable/enable() protection in the usbnet_resume_rx().
Fixes: 43daa96b166c ("usbnet: Stop RX Q on MTU change")
Link: https://syzkaller.appspot.com/bug?id=81f55dfa587ee544baaaa5a359a060512228c1…
Suggested-by: Jakub Kicinski <kuba(a)kernel.org>
Signed-off-by: Zqiang <qiang.zhang(a)linux.dev>
Link: https://patch.msgid.link/20251011070518.7095-1-qiang.zhang@linux.dev
Signed-off-by: Paolo Abeni <pabeni(a)redhat.com>
[ The context change is due to the commit 2c04d279e857
("net: usb: Convert tasklet API to new bottom half workqueue mechanism")
in v6.17 which is irrelevant to the logic of this patch.]
Signed-off-by: Rahul Sharma <black.hawk(a)163.com>
---
drivers/net/usb/usbnet.c | 2 ++
1 file changed, 2 insertions(+)
diff --git a/drivers/net/usb/usbnet.c b/drivers/net/usb/usbnet.c
index 0ff7357c3c91..f1f61d85d949 100644
--- a/drivers/net/usb/usbnet.c
+++ b/drivers/net/usb/usbnet.c
@@ -702,6 +702,7 @@ void usbnet_resume_rx(struct usbnet *dev)
struct sk_buff *skb;
int num = 0;
+ local_bh_disable();
clear_bit(EVENT_RX_PAUSED, &dev->flags);
while ((skb = skb_dequeue(&dev->rxq_pause)) != NULL) {
@@ -710,6 +711,7 @@ void usbnet_resume_rx(struct usbnet *dev)
}
tasklet_schedule(&dev->bh);
+ local_bh_enable();
netif_dbg(dev, rx_status, dev->net,
"paused rx queue disabled, %d skbs requeued\n", num);
--
2.34.1
21 hours, 15 minutes
- 3
- 2
FAILED: patch "[PATCH] xhci: dbgtty: fix device unregister: fixup" failed to apply to 6.1-stable tree
by gregkh@linuxfoundation.org
The patch below does not apply to the 6.1-stable tree.
If someone wants it applied there, or to any other stable or longterm
tree, then please email the backport, including the original git commit
id to <stable(a)vger.kernel.org>.
To reproduce the conflict and resubmit, you may use the following commands:
git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.1.y
git checkout FETCH_HEAD
git cherry-pick -x 74098cc06e753d3ffd8398b040a3a1dfb65260c0
# <resolve conflicts, build, test, etc.>
git commit -s
git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2025122918-sagging-divisible-a4a4@gregkh' --subject-prefix 'PATCH 6.1.y' HEAD^..
Possible dependencies:
thanks,
greg k-h
------------------ original commit in Linus's tree ------------------
From 74098cc06e753d3ffd8398b040a3a1dfb65260c0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C5=81ukasz=20Bartosik?= <ukaszb(a)chromium.org>
Date: Thu, 27 Nov 2025 11:16:44 +0000
Subject: [PATCH] xhci: dbgtty: fix device unregister: fixup
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
This fixup replaces tty_vhangup() call with call to
tty_port_tty_vhangup(). Both calls hangup tty device
synchronously however tty_port_tty_vhangup() increases
reference count during the hangup operation using
scoped_guard(tty_port_tty).
Cc: stable <stable(a)kernel.org>
Fixes: 1f73b8b56cf3 ("xhci: dbgtty: fix device unregister")
Signed-off-by: Łukasz Bartosik <ukaszb(a)chromium.org>
Link: https://patch.msgid.link/20251127111644.3161386-1-ukaszb@google.com
Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
diff --git a/drivers/usb/host/xhci-dbgtty.c b/drivers/usb/host/xhci-dbgtty.c
index 57cdda4e09c8..90282e51e23e 100644
--- a/drivers/usb/host/xhci-dbgtty.c
+++ b/drivers/usb/host/xhci-dbgtty.c
@@ -554,7 +554,7 @@ static void xhci_dbc_tty_unregister_device(struct xhci_dbc *dbc)
* Hang up the TTY. This wakes up any blocked
* writers and causes subsequent writes to fail.
*/
- tty_vhangup(port->port.tty);
+ tty_port_tty_vhangup(&port->port);
tty_unregister_device(dbc_tty_driver, port->minor);
xhci_dbc_tty_exit_port(port);
21 hours, 31 minutes
- 4
- 6
Linux 6.18.4
by Greg Kroah-Hartman
I'm announcing the release of the 6.18.4 kernel.
All users of the 6.18 kernel series must upgrade.
The updated 6.18.y git tree can be found at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-6.18.y
and can be browsed at the normal kernel.org git web browser:
https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary
thanks,
greg k-h
------------
Makefile | 2
arch/arm64/boot/dts/qcom/sm6350.dtsi | 4
arch/arm64/boot/dts/st/stm32mp257f-ev1.dts | 1
arch/arm64/boot/dts/ti/k3-am62d2-evm.dts | 9
arch/arm64/boot/dts/ti/k3-j721e-sk.dts | 12
arch/loongarch/include/asm/pgtable.h | 4
arch/loongarch/kernel/mcount_dyn.S | 14
arch/loongarch/kernel/process.c | 5
arch/loongarch/kernel/relocate.c | 4
arch/loongarch/kernel/setup.c | 8
arch/loongarch/kernel/switch.S | 4
arch/loongarch/net/bpf_jit.c | 58 +
arch/loongarch/net/bpf_jit.h | 26
arch/loongarch/pci/pci.c | 2
arch/parisc/kernel/asm-offsets.c | 2
arch/parisc/kernel/entry.S | 16
arch/powerpc/include/asm/book3s/32/tlbflush.h | 5
arch/powerpc/include/asm/book3s/64/mmu-hash.h | 1
arch/powerpc/kernel/process.c | 5
arch/powerpc/mm/book3s32/tlb.c | 9
arch/powerpc/mm/book3s64/internal.h | 2
arch/powerpc/mm/book3s64/mmu_context.c | 2
arch/powerpc/mm/book3s64/slb.c | 88 --
arch/powerpc/platforms/pseries/cmm.c | 3
arch/powerpc/tools/gcc-check-fpatchable-function-entry.sh | 1
arch/powerpc/tools/gcc-check-mprofile-kernel.sh | 1
arch/s390/mm/gmap_helpers.c | 9
arch/x86/events/amd/uncore.c | 5
arch/x86/kernel/cpu/microcode/amd.c | 115 +-
block/blk-mq.c | 2
block/blk-zoned.c | 150 ++-
block/blk.h | 14
crypto/seqiv.c | 8
drivers/block/ublk_drv.c | 119 ++-
drivers/bluetooth/btusb.c | 12
drivers/clk/qcom/Kconfig | 4
drivers/clk/qcom/mmcc-sdm660.c | 1
drivers/clk/samsung/clk-exynos-clkout.c | 2
drivers/firewire/nosy.c | 10
drivers/firmware/stratix10-svc.c | 11
drivers/gpio/gpiolib-swnode.c | 2
drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 3
drivers/gpu/drm/amd/amdgpu/amdgpu_ttm.c | 2
drivers/gpu/drm/amd/amdgpu/amdgpu_vm.c | 7
drivers/gpu/drm/amd/amdgpu/gmc_v11_0.c | 27
drivers/gpu/drm/amd/amdgpu/gmc_v12_0.c | 27
drivers/gpu/drm/amd/amdgpu/sdma_v6_0.c | 2
drivers/gpu/drm/amd/amdgpu/vcn_v4_0_5.c | 2
drivers/gpu/drm/amd/amdkfd/cwsr_trap_handler.h | 62 -
drivers/gpu/drm/amd/amdkfd/cwsr_trap_handler_gfx12.asm | 37
drivers/gpu/drm/amd/amdkfd/kfd_queue.c | 1
drivers/gpu/drm/amd/amdkfd/kfd_topology.c | 4
drivers/gpu/drm/bridge/ti-sn65dsi83.c | 11
drivers/gpu/drm/drm_buddy.c | 394 ++++++----
drivers/gpu/drm/drm_displayid.c | 41 -
drivers/gpu/drm/drm_displayid_internal.h | 2
drivers/gpu/drm/drm_gem.c | 8
drivers/gpu/drm/drm_gem_shmem_helper.c | 2
drivers/gpu/drm/drm_pagemap.c | 17
drivers/gpu/drm/gma500/fbdev.c | 43 -
drivers/gpu/drm/i915/gem/i915_gem_execbuffer.c | 37
drivers/gpu/drm/i915/intel_memory_region.h | 2
drivers/gpu/drm/imagination/pvr_gem.c | 11
drivers/gpu/drm/mediatek/mtk_ddp_comp.c | 33
drivers/gpu/drm/mediatek/mtk_ddp_comp.h | 2
drivers/gpu/drm/mediatek/mtk_disp_ovl_adaptor.c | 12
drivers/gpu/drm/mediatek/mtk_dp.c | 1
drivers/gpu/drm/mediatek/mtk_drm_drv.c | 4
drivers/gpu/drm/mediatek/mtk_hdmi.c | 15
drivers/gpu/drm/mgag200/mgag200_mode.c | 25
drivers/gpu/drm/msm/adreno/a6xx_catalog.c | 1
drivers/gpu/drm/msm/adreno/a6xx_gpu_state.c | 2
drivers/gpu/drm/msm/disp/dpu1/dpu_encoder_phys_wb.c | 10
drivers/gpu/drm/nouveau/dispnv50/atom.h | 13
drivers/gpu/drm/nouveau/dispnv50/wndw.c | 2
drivers/gpu/drm/nouveau/include/nvkm/subdev/gsp.h | 4
drivers/gpu/drm/nouveau/nvkm/subdev/gsp/fwsec.c | 61 +
drivers/gpu/drm/nouveau/nvkm/subdev/gsp/priv.h | 3
drivers/gpu/drm/nouveau/nvkm/subdev/gsp/rm/r535/gsp.c | 10
drivers/gpu/drm/nova/Kconfig | 1
drivers/gpu/drm/rockchip/rockchip_drm_drv.c | 3
drivers/gpu/drm/rockchip/rockchip_vop2_reg.c | 49 +
drivers/gpu/drm/tilcdc/tilcdc_crtc.c | 2
drivers/gpu/drm/tilcdc/tilcdc_drv.c | 53 -
drivers/gpu/drm/tilcdc/tilcdc_drv.h | 2
drivers/gpu/drm/ttm/ttm_bo_vm.c | 6
drivers/gpu/drm/xe/xe_bo.c | 15
drivers/gpu/drm/xe/xe_dma_buf.c | 2
drivers/gpu/drm/xe/xe_eu_stall.c | 2
drivers/gpu/drm/xe/xe_guc_ct.c | 14
drivers/gpu/drm/xe/xe_guc_submit.c | 20
drivers/gpu/drm/xe/xe_migrate.c | 25
drivers/gpu/drm/xe/xe_migrate.h | 6
drivers/gpu/drm/xe/xe_oa.c | 10
drivers/gpu/drm/xe/xe_svm.c | 51 -
drivers/gpu/drm/xe/xe_vm.c | 5
drivers/gpu/drm/xe/xe_vm_types.h | 2
drivers/hid/hid-logitech-dj.c | 56 -
drivers/hwmon/dell-smm-hwmon.c | 4
drivers/infiniband/core/addr.c | 33
drivers/infiniband/core/cma.c | 3
drivers/infiniband/core/device.c | 4
drivers/infiniband/core/verbs.c | 2
drivers/infiniband/hw/bnxt_re/hw_counters.h | 6
drivers/infiniband/hw/bnxt_re/ib_verbs.c | 7
drivers/infiniband/hw/bnxt_re/qplib_rcfw.c | 2
drivers/infiniband/hw/bnxt_re/qplib_res.c | 8
drivers/infiniband/hw/efa/efa_verbs.c | 4
drivers/infiniband/hw/irdma/utils.c | 3
drivers/infiniband/hw/mana/cq.c | 4
drivers/infiniband/sw/rxe/rxe_odp.c | 4
drivers/infiniband/ulp/rtrs/rtrs-clt.c | 1
drivers/iommu/amd/init.c | 15
drivers/iommu/amd/iommu.c | 2
drivers/iommu/apple-dart.c | 2
drivers/iommu/arm/arm-smmu/qcom_iommu.c | 10
drivers/iommu/exynos-iommu.c | 9
drivers/iommu/iommu-sva.c | 3
drivers/iommu/ipmmu-vmsa.c | 2
drivers/iommu/mtk_iommu.c | 2
drivers/iommu/mtk_iommu_v1.c | 25
drivers/iommu/omap-iommu.c | 2
drivers/iommu/omap-iommu.h | 2
drivers/iommu/sun50i-iommu.c | 2
drivers/iommu/tegra-smmu.c | 5
drivers/leds/leds-cros_ec.c | 5
drivers/leds/leds-lp50xx.c | 67 +
drivers/md/dm-bufio.c | 10
drivers/md/dm-ebs-target.c | 2
drivers/md/dm-pcache/cache.c | 5
drivers/md/dm-pcache/cache_segment.c | 5
drivers/md/md.c | 5
drivers/md/raid5.c | 10
drivers/media/cec/core/cec-core.c | 1
drivers/media/common/videobuf2/videobuf2-dma-contig.c | 1
drivers/media/i2c/adv7604.c | 4
drivers/media/i2c/adv7842.c | 11
drivers/media/i2c/imx219.c | 9
drivers/media/i2c/msp3400-kthreads.c | 2
drivers/media/i2c/tda1997x.c | 1
drivers/media/platform/amphion/vpu_malone.c | 23
drivers/media/platform/amphion/vpu_v4l2.c | 16
drivers/media/platform/amphion/vpu_v4l2.h | 10
drivers/media/platform/mediatek/mdp3/mtk-mdp3-core.c | 14
drivers/media/platform/mediatek/vcodec/common/mtk_vcodec_fw_vpu.c | 14
drivers/media/platform/mediatek/vcodec/decoder/mtk_vcodec_dec_drv.c | 12
drivers/media/platform/mediatek/vcodec/decoder/mtk_vcodec_dec_drv.h | 2
drivers/media/platform/mediatek/vcodec/decoder/vdec_vpu_if.c | 5
drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c | 12
drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.h | 2
drivers/media/platform/mediatek/vcodec/encoder/venc_vpu_if.c | 5
drivers/media/platform/qcom/iris/iris_common.c | 7
drivers/media/platform/renesas/rcar_drif.c | 1
drivers/media/platform/samsung/exynos4-is/media-dev.c | 10
drivers/media/platform/ti/davinci/vpif_capture.c | 4
drivers/media/platform/ti/davinci/vpif_display.c | 4
drivers/media/platform/verisilicon/hantro_g2.c | 88 +-
drivers/media/platform/verisilicon/hantro_g2_hevc_dec.c | 17
drivers/media/platform/verisilicon/hantro_g2_regs.h | 13
drivers/media/platform/verisilicon/hantro_g2_vp9_dec.c | 2
drivers/media/platform/verisilicon/hantro_hw.h | 1
drivers/media/platform/verisilicon/imx8m_vpu_hw.c | 2
drivers/media/rc/st_rc.c | 2
drivers/mfd/altera-sysmgr.c | 2
drivers/mfd/max77620.c | 15
drivers/mtd/mtdpart.c | 7
drivers/mtd/spi-nor/winbond.c | 24
drivers/net/dsa/b53/b53_common.c | 3
drivers/net/ethernet/airoha/airoha_eth.c | 39
drivers/net/ethernet/amd/xgbe/xgbe-phy-v2.c | 2
drivers/net/ethernet/broadcom/Kconfig | 8
drivers/net/ethernet/broadcom/bnge/bnge.h | 2
drivers/net/ethernet/broadcom/bnge/bnge_core.c | 2
drivers/net/ethernet/cadence/macb_main.c | 3
drivers/net/ethernet/google/gve/gve_main.c | 2
drivers/net/ethernet/google/gve/gve_utils.c | 2
drivers/net/ethernet/intel/e1000/e1000_main.c | 10
drivers/net/ethernet/intel/i40e/i40e.h | 11
drivers/net/ethernet/intel/i40e/i40e_ethtool.c | 12
drivers/net/ethernet/intel/i40e/i40e_main.c | 1
drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c | 4
drivers/net/ethernet/intel/iavf/iavf_main.c | 4
drivers/net/ethernet/intel/idpf/idpf_lib.c | 2
drivers/net/ethernet/intel/idpf/idpf_virtchnl.c | 5
drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c | 8
drivers/net/ethernet/smsc/smc91x.c | 10
drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 17
drivers/net/ethernet/wangxun/Kconfig | 4
drivers/net/fjes/fjes_hw.c | 12
drivers/net/mdio/mdio-aspeed.c | 7
drivers/net/mdio/mdio-realtek-rtl9300.c | 6
drivers/net/phy/mediatek/mtk-ge-soc.c | 2
drivers/net/team/team_core.c | 2
drivers/net/usb/asix_common.c | 5
drivers/net/usb/ax88172a.c | 6
drivers/net/usb/rtl8150.c | 2
drivers/net/usb/sr9700.c | 4
drivers/net/wireless/intel/iwlwifi/iwl-drv.c | 4
drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c | 3
drivers/net/wireless/realtek/rtw88/sdio.c | 4
drivers/nvme/target/pci-epf.c | 4
drivers/pci/controller/dwc/pci-meson.c | 18
drivers/pci/controller/dwc/pcie-designware.c | 12
drivers/pci/controller/pcie-brcmstb.c | 10
drivers/pci/pci-driver.c | 4
drivers/platform/mellanox/mlxbf-pmc.c | 14
drivers/platform/x86/dell/alienware-wmi-wmax.c | 32
drivers/platform/x86/hp/hp-bioscfg/enum-attributes.c | 4
drivers/platform/x86/hp/hp-bioscfg/int-attributes.c | 2
drivers/platform/x86/hp/hp-bioscfg/order-list-attributes.c | 5
drivers/platform/x86/hp/hp-bioscfg/passwdobj-attributes.c | 5
drivers/platform/x86/hp/hp-bioscfg/string-attributes.c | 2
drivers/platform/x86/ibm_rtl.c | 2
drivers/platform/x86/intel/pmt/discovery.c | 8
drivers/platform/x86/msi-laptop.c | 3
drivers/platform/x86/samsung-galaxybook.c | 9
drivers/pmdomain/imx/gpc.c | 5
drivers/pmdomain/mediatek/mtk-pm-domains.c | 21
drivers/power/supply/max77705_charger.c | 14
drivers/powercap/intel_rapl_common.c | 3
drivers/powercap/intel_rapl_msr.c | 3
drivers/vfio/pci/hisilicon/hisi_acc_vfio_pci.c | 1
drivers/vfio/pci/nvgrace-gpu/main.c | 4
drivers/vfio/pci/pds/dirty.c | 7
drivers/vfio/pci/vfio_pci_rdwr.c | 25
drivers/video/fbdev/gbefb.c | 5
drivers/video/fbdev/pxafb.c | 12
drivers/video/fbdev/tcx.c | 2
fs/erofs/zdata.c | 10
fs/lockd/svc4proc.c | 4
fs/lockd/svclock.c | 21
fs/lockd/svcproc.c | 5
fs/locks.c | 12
fs/nfsd/nfs4state.c | 20
fs/nfsd/vfs.c | 14
fs/ntfs3/frecord.c | 35
fs/smb/server/smb2pdu.c | 4
include/drm/drm_buddy.h | 11
include/drm/drm_edid.h | 6
include/drm/drm_pagemap.h | 17
include/kunit/run-in-irq-context.h | 53 -
include/linux/compiler_types.h | 13
include/linux/genalloc.h | 1
include/linux/huge_mm.h | 8
include/linux/kasan.h | 16
include/linux/kexec.h | 4
include/linux/mm.h | 8
include/linux/vfio_pci_core.h | 10
include/net/dsa.h | 1
include/uapi/rdma/irdma-abi.h | 2
include/uapi/rdma/rdma_user_cm.h | 4
kernel/cgroup/cpuset.c | 21
kernel/kexec_core.c | 16
kernel/sched/deadline.c | 2
kernel/sched/debug.c | 8
kernel/sched/ext.c | 22
kernel/sched/fair.c | 249 ++++--
kernel/sched/rt.c | 2
kernel/sched/sched.h | 4
kernel/sched/syscalls.c | 5
kernel/trace/fgraph.c | 10
lib/idr.c | 2
mm/damon/tests/core-kunit.h | 134 +++
mm/damon/tests/sysfs-kunit.h | 25
mm/damon/tests/vaddr-kunit.h | 26
mm/huge_memory.c | 71 -
mm/kasan/common.c | 32
mm/kasan/hw_tags.c | 2
mm/kasan/shadow.c | 4
mm/page_alloc.c | 24
mm/page_owner.c | 2
mm/swapfile.c | 40 -
mm/vmalloc.c | 8
net/bluetooth/mgmt.c | 6
net/bridge/br_private.h | 1
net/dsa/dsa.c | 67 -
net/ipv4/fib_semantics.c | 26
net/ipv4/fib_trie.c | 7
net/ipv4/ip_gre.c | 6
net/ipv6/calipso.c | 3
net/ipv6/ip6_gre.c | 15
net/ipv6/route.c | 13
net/mac80211/cfg.c | 10
net/mac80211/rx.c | 5
net/mptcp/options.c | 10
net/mptcp/protocol.h | 6
net/mptcp/subflow.c | 6
net/nfc/core.c | 9
net/openvswitch/vport-netdev.c | 17
net/rose/af_rose.c | 2
net/unix/af_unix.c | 11
net/wireless/sme.c | 2
rust/kernel/maple_tree.rs | 11
samples/ftrace/ftrace-direct-modify.c | 8
samples/ftrace/ftrace-direct-multi-modify.c | 8
samples/ftrace/ftrace-direct-multi.c | 4
samples/ftrace/ftrace-direct-too.c | 4
samples/ftrace/ftrace-direct.c | 4
scripts/Makefile.build | 26
scripts/mod/devicetable-offsets.c | 3
scripts/mod/file2alias.c | 9
security/integrity/ima/ima_kexec.c | 4
sound/soc/codecs/cs35l41.c | 7
sound/soc/codecs/lpass-tx-macro.c | 3
sound/soc/codecs/pm4125.c | 40 -
sound/soc/codecs/wcd937x.c | 43 -
sound/soc/codecs/wcd939x-sdw.c | 8
sound/soc/qcom/qdsp6/q6adm.c | 146 +--
sound/soc/qcom/qdsp6/q6apm-dai.c | 2
sound/soc/qcom/qdsp6/q6asm-dai.c | 7
sound/soc/qcom/sc7280.c | 2
sound/soc/qcom/sc8280xp.c | 2
sound/soc/qcom/sdw.c | 105 +-
sound/soc/qcom/sdw.h | 1
sound/soc/qcom/sm8250.c | 2
sound/soc/qcom/x1e80100.c | 2
sound/soc/renesas/rz-ssi.c | 64 +
sound/soc/stm/stm32_sai.c | 14
sound/soc/stm/stm32_sai_sub.c | 51 -
tools/mm/page_owner_sort.c | 6
tools/sched_ext/scx_show_state.py | 7
tools/testing/radix-tree/idr-test.c | 21
tools/testing/selftests/drivers/net/psp.py | 6
tools/testing/selftests/ftrace/test.d/ftrace/func_traceonoff_triggers.tc | 5
tools/testing/selftests/mm/uffd-unit-tests.c | 2
tools/testing/selftests/net/tap.c | 16
326 files changed, 3279 insertions(+), 1652 deletions(-)
Akhil P Oommen (1):
drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers
Alessio Belle (1):
drm/imagination: Disallow exporting of PM/FW protected objects
Alex Deucher (3):
drm/amdgpu: don't attach the tlb fence for SI
drm/amdgpu/gmc12: add amdgpu_vm_handle_fault() handling
drm/amdgpu/gmc11: add amdgpu_vm_handle_fault() handling
Alexander Gordeev (1):
mm/page_alloc: change all pageblocks migrate type on coalescing
Alexey Minnekhanov (1):
clk: qcom: mmcc-sdm660: Add missing MDSS reset
Alice C. Munduruca (1):
selftests: net: fix "buffer overflow detected" for tap.c
Alice Ryhl (1):
rust: maple_tree: rcu_read_lock() in destructor to silence lockdep
Alok Tiwari (3):
platform/x86/intel/pmt/discovery: use valid device pointer in dev_err_probe
RDMA/bnxt_re: Fix incorrect BAR check in bnxt_qplib_map_creq_db()
RDMA/bnxt_re: Fix IB_SEND_IP_CSUM handling in post_send
Aloka Dixit (1):
wifi: mac80211: do not use old MBSSID elements
Andrew Morton (1):
genalloc.h: fix htmldocs warning
Andy Yan (1):
drm/rockchip: vop2: Use OVL_LAYER_SEL configuration instead of use win_mask calculate used layers
Ankit Garg (1):
gve: defer interrupt enabling until NAPI registration
Anna Maniscalco (1):
drm/msm: add PERFCTR_CNTL to ifpc_reglist
Anshumali Gaur (1):
octeontx2-pf: fix "UBSAN: shift-out-of-bounds error"
Ard Biesheuvel (1):
drm/i915: Fix format string truncation warning
Armin Wolf (2):
hwmon: (dell-smm) Fix off-by-one error in dell_smm_is_visible()
platform/x86: samsung-galaxybook: Fix problematic pointer cast
Arnd Bergmann (3):
net: wangxun: move PHYLINK dependency
RDMA/ucma: Fix rdma_ucm_query_ib_service_resp struct padding
RDMA/irdma: Fix irdma_alloc_ucontext_resp padding
Arunpravin Paneer Selvam (2):
drm/buddy: Optimize free block management with RB tree
drm/buddy: Separate clear and dirty free block trees
Ashutosh Dixit (2):
drm/xe/oa: Disallow 0 OA property values
drm/xe/eustall: Disallow 0 EU stall property values
Bagas Sanjaya (1):
net: bridge: Describe @tunnel_hash member in net_bridge_vlan_group struct
Bijan Tabatabai (1):
mm: consider non-anon swap cache folios in folio_expected_ref_count()
Biju Das (2):
ASoC: renesas: rz-ssi: Fix channel swap issue in full duplex mode
ASoC: renesas: rz-ssi: Fix rz_ssi_priv::hw_params_cache::sample_width
Borislav Petkov (AMD) (1):
x86/microcode/AMD: Select which microcode patch to load
Brian Vazquez (1):
idpf: reduce mbx_task schedule delay to 300us
Charles Keepax (1):
Revert "gpio: swnode: don't use the swnode's name as the key for GPIO lookup"
Chen Ridong (1):
cpuset: fix warning when disabling remote partition
Chen-Yu Tsai (1):
media: mediatek: vcodec: Use spinlock for context list protection lock
Chenghao Duan (6):
samples/ftrace: Adjust LoongArch register restore order in direct calls
LoongArch: Refactor register restoration in ftrace_common_return
LoongArch: BPF: Save return address register ra to t0 before trampoline
LoongArch: BPF: Enable trampoline-based tracing for module functions
LoongArch: BPF: Adjust the jump offset of tail calls
LoongArch: BPF: Enhance the bpf_arch_text_poke() function
Christian Hitz (3):
leds: leds-lp50xx: Allow LED 0 to be added to module bank
leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs
leds: leds-lp50xx: Enable chip before any communication
Christian Marangi (1):
mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions
Chuck Lever (2):
NFSD: Make FILE_SYNC WRITEs comply with spec
nfsd: fix nfsd_file reference leak in nfsd4_add_rdaccess_to_wrdeleg()
Claudio Imbrenda (1):
KVM: s390: Fix gmap_helper_zap_one_page() again
Cong Zhang (1):
blk-mq: skip CPU offline notify on unmapped hctx
Damien Le Moal (3):
block: handle zone management operations completions
block: Clear BLK_ZONE_WPLUG_PLUGGED when aborting plugged BIOs
block: fix NULL pointer dereference in blk_zone_reset_all_bio_endio()
Dan Carpenter (1):
wifi: cfg80211: sme: store capped length in __cfg80211_connect_result()
Daniel Zahka (2):
selftests: drv-net: psp: fix templated test names in psp_ip_ver_test_builder()
selftests: drv-net: psp: fix test names in ipver_test_builder()
Danilo Krummrich (1):
drm: nova: depend on CONFIG_64BIT
Dave Stevenson (1):
media: i2c: imx219: Fix 1920x1080 mode to use 1:1 pixel aspect ratio
Dave Vasilevsky (1):
powerpc, mm: Fix mprotect on book3s 32-bit
David Gow (1):
kunit: Enforce task execution in {soft,hard}irq contexts
David Hildenbrand (2):
powerpc/pseries/cmm: adjust BALLOON_MIGRATE when migrating pages
powerpc/pseries/cmm: call balloon_devinfo_init() also without CONFIG_BALLOON_COMPACTION
Deepakkumar Karn (1):
net: usb: rtl8150: fix memory leak on usb_submit_urb() failure
Deepanshu Kartikey (2):
net: usb: asix: validate PHY address before use
net: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write
Dikshita Agarwal (1):
media: iris: Refine internal buffer reconfiguration logic for resolution change
Ding Hui (1):
RDMA/bnxt_re: Fix OOB write in bnxt_re_copy_err_stats()
Dmitry Osipenko (1):
drm/rockchip: Set VOP for the DRM DMA device
Donet Tom (1):
powerpc/64s/slb: Fix SLB multihit issue during SLB preload
Duoming Zhou (3):
media: TDA1997x: Remove redundant cancel_delayed_work in probe
media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe
media: i2c: adv7842: Remove redundant cancel_delayed_work in probe
Eric Dumazet (1):
ip6_gre: make ip6gre_header() robust
Eric Naim (1):
ASoC: cs35l41: Always return 0 when a subsystem ID is found
Ethan Nelson-Moore (1):
net: usb: sr9700: fix incorrect command used to write single register
Fernand Sieber (1):
sched/proxy: Yield the donor task
Frode Nordahl (1):
erspan: Initialize options_len before referencing options.
Greg Kroah-Hartman (1):
Linux 6.18.4
Gregory Herrero (1):
i40e: validate ring_len parameter against hardware-specific values
Guangshuo Li (1):
e1000: fix OOB in e1000_tbi_should_accept()
H. Peter Anvin (1):
compiler_types.h: add "auto" as a macro for "__auto_type"
Hans de Goede (1):
HID: logitech-dj: Remove duplicate error logging
Haotian Zhang (3):
media: rc: st_rc: Fix reset control resource leak
media: cec: Fix debugfs leak on bus_register() failure
media: videobuf2: Fix device reference leak in vb2_dc_alloc error path
Haoxiang Li (3):
media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init()
fjes: Add missing iounmap in fjes_hw_init()
nfsd: Drop the client reference in client_states_open()
Hengqi Chen (2):
LoongArch: BPF: Zero-extend bpf_tail_call() index
LoongArch: BPF: Sign extend kfunc call arguments
Herbert Xu (1):
crypto: seqiv - Do not use req->iv after crypto_aead_encrypt
Honggang LI (1):
RDMA/rtrs: Fix clt_path::max_pages_per_mr calculation
Huacai Chen (3):
LoongArch: Add new PCI ID for pci_fixup_vgadev()
LoongArch: Fix arch_dup_task_struct() for CONFIG_RANDSTRUCT
LoongArch: Fix build errors for CONFIG_RANDSTRUCT
Ido Schimmel (1):
ipv4: Fix reference count leak when using error routes with nexthop objects
Ivan Abramov (2):
media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()
media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread()
Jacky Chou (1):
net: mdio: aspeed: add dummy read to avoid read-after-write issue
Jan Stancek (1):
powerpc/tools: drop `-o pipefail` in gcc check scripts
Jang Ingyu (1):
RDMA/core: Fix logic error in ib_get_gids_from_rdma_hdr()
Jani Nikula (2):
drm/edid: add DRM_EDID_IDENT_INIT() to initialize struct drm_edid_ident
drm/displayid: add quirk to ignore DisplayID checksum errors
Jason Gunthorpe (2):
RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly
RDMA/cm: Fix leaking the multicast GID table reference
Jay Cornwall (1):
drm/amdkfd: Trap handler support for expert scheduling mode
Jeff Layton (1):
nfsd: use ATTR_DELEG in nfsd4_finalize_deleg_timestamps()
Jens Axboe (1):
af_unix: don't post cmsg for SO_INQ unless explicitly asked for
Jiayuan Chen (2):
ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT
mm/kasan: fix incorrect unpoisoning in vrealloc for KASAN
Jim Quinlan (1):
PCI: brcmstb: Fix disabling L0s capability
Jinhui Guo (2):
iommu/amd: Fix pci_segment memleak in alloc_pci_segment()
iommu/amd: Propagate the error code returned by __modify_irte_ga() in modify_irte_ga()
Jiri Pirko (1):
team: fix check for port enabled in team_queue_override_port_prio_changed()
Johan Hovold (23):
ASoC: codecs: wcd939x: fix regmap leak on probe failure
ASoC: stm32: sai: fix device leak on probe
ASoC: stm32: sai: fix clk prepare imbalance on probe failure
ASoC: stm32: sai: fix OF node leak on probe
iommu/apple-dart: fix device leak on of_xlate()
iommu/exynos: fix device leak on of_xlate()
iommu/ipmmu-vmsa: fix device leak on of_xlate()
iommu/mediatek-v1: fix device leak on probe_device()
iommu/mediatek-v1: fix device leaks on probe()
iommu/mediatek: fix device leak on of_xlate()
iommu/omap: fix device leaks on probe_device()
iommu/qcom: fix device leak on of_xlate()
iommu/sun50i: fix device leak on of_xlate()
iommu/tegra: fix device leak on probe_device()
mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup
media: platform: mtk-mdp3: fix device leaks at probe
media: vpif_capture: fix section mismatch
media: vpif_display: fix section mismatch
drm/mediatek: Fix probe resource leaks
drm/mediatek: Fix probe memory leak
drm/mediatek: Fix probe device leaks
drm/mediatek: mtk_hdmi: Fix probe device leaks
drm/mediatek: ovl_adaptor: Fix probe device leaks
Jonas Gorski (1):
net: dsa: b53: skip multicast entries for fdb_dump()
Jonathan Cavitt (1):
drm/xe/guc: READ/WRITE_ONCE g2h_fence->done
Jonathan Kim (1):
drm/amdkfd: bump minimum vgpr size for gfx1151
Jose Javier Rodriguez Barbarin (1):
mcb: Add missing modpost build support
Jouni Malinen (1):
wifi: mac80211: Discard Beacon frames to non-broadcast address
Junbeom Yeom (1):
erofs: fix unexpected EIO under memory pressure
Junrui Luo (2):
platform/x86: ibm_rtl: fix EBDA signature search pointer arithmetic
platform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing
Kairui Song (1):
mm, swap: do not perform synchronous discard during allocation
Kalesh AP (1):
RDMA/bnxt_re: Fix to use correct page size for PDE table
Karol Wachowski (1):
drm: Fix object leak in DRM_IOCTL_GEM_CHANGE_HANDLE
Kaushlendra Kumar (3):
platform/x86/intel/pmt: Fix kobject memory leak on init failure
tools/mm/page_owner_sort: fix timestamp comparison for stable sorting
powercap: intel_rapl: Add support for Nova Lake processors
Kevin Tian (1):
vfio/pci: Disable qword access to the PCI ROM bar
Kohei Enju (2):
iavf: fix off-by-one issues in iavf_config_rss_reg()
tools/sched_ext: fix scx_show_state.py for scx_root change
Konstantin Taranov (1):
RDMA/mana_ib: check cqe length for kernel CQs
Kory Maincent (TI.com) (1):
drm/tilcdc: Fix removal actions in case of failed probe
Krzysztof Kozlowski (4):
ASoC: codecs: pm4125: Fix potential conflict when probing two devices
ASoC: codecs: pm4125: Remove irq_chip on component unbind
mfd: max77620: Fix potential IRQ chip conflict when probing two devices
power: supply: max77705: Fix potential IRQ chip conflict when probing two devices
Krzysztof Niemiec (1):
drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer
Kurt Borja (3):
platform/x86: alienware-wmi-wmax: Add support for new Area-51 laptops
platform/x86: alienware-wmi-wmax: Add AWCC support for Alienware x16
platform/x86: alienware-wmi-wmax: Add support for Alienware 16X Aurora
Larysa Zaremba (1):
idpf: fix LAN memory regions command on some NVMs
Li Chen (2):
dm pcache: fix cache info indexing
dm pcache: fix segment info indexing
Li Nan (1):
md: Fix static checker warning in analyze_sbs
Li Zhijian (1):
IB/rxe: Fix missing umem_odp->umem_mutex unlock on error path
Liang Jie (1):
sched_ext: fix uninitialized ret on alloc_percpu() failure
Lorenzo Bianconi (1):
net: airoha: Move net_devs registration in a dedicated routine
Lu Baolu (1):
iommu: disable SVA when CONFIG_X86 is set
Luca Ceresoli (1):
drm/bridge: ti-sn65dsi83: ignore PLL_UNLOCK errors
Luca Weiss (1):
arm64: dts: qcom: sm6350: Fix wrong order of freq-table-hz for UFS
Lukas Wunner (1):
PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths
Lyude Paul (2):
drm/nouveau/gsp: Allocate fwsec-sb at boot
drm/nouveau/dispnv50: Don't call drm_atomic_get_crtc_state() in prepare_fb
Ma Ke (2):
ASoC: codecs: wcd937x: Fix error handling in wcd937x codec driver
ASoC: codecs: Fix error handling in pm4125 audio codec driver
Maciej Wieczor-Retman (2):
kasan: refactor pcpu kasan vmalloc unpoison
kasan: unpoison vms[area] addresses with a common tag
Macpaul Lin (1):
pmdomain: mtk-pm-domains: Fix spinlock recursion fix in probe
Mahesh Rao (1):
firmware: stratix10-svc: Add mutex in stratix10 memory management
Manivannan Sadhasivam (1):
PCI: meson: Fix parsing the DBI register region
Marek Szyprowski (1):
media: samsung: exynos4-is: fix potential ABBA deadlock on init
Mario Limonciello (1):
drm/amdkfd: Export the cwsr_size and ctl_stack_size to userspace
Mario Limonciello (AMD) (2):
Revert "drm/amd: Skip power ungate during suspend for VPE"
drm/amd: Fix unbind/rebind for VCN 4.0.5
Matthew Brost (2):
drm/xe: Adjust long-running workload timeslices to reasonable values
drm/xe: Use usleep_range for accurate long-running workload timeslicing
Matthew Wilcox (Oracle) (2):
ntfs: Do not overwrite uptodate pages
idr: fix idr_alloc() returning an ID out of range
Miaoqian Lin (3):
media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled
net: phy: mediatek: fix nvmem cell reference leak in mt798x_phy_calibration
drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse()
Michael Margolin (1):
RDMA/efa: Remove possible negative shift
Michal Schmidt (1):
RDMA/irdma: avoid invalid read in irdma_net_event
Mikulas Patocka (1):
dm-bufio: align write boundary on physical block size
Ming Lei (2):
ublk: implement NUMA-aware memory allocation
ublk: scan partition in async way
Ming Qian (2):
media: amphion: Remove vpu_vb_is_codecconfig
media: amphion: Cancel message work before releasing the VPU core
Miquel Raynal (6):
mtd: spi-nor: winbond: Add support for W25Q01NWxxIQ chips
mtd: spi-nor: winbond: Add support for W25Q01NWxxIM chips
mtd: spi-nor: winbond: Add support for W25Q02NWxxIM chips
mtd: spi-nor: winbond: Add support for W25H512NWxxAM chips
mtd: spi-nor: winbond: Add support for W25H01NWxxAM chips
mtd: spi-nor: winbond: Add support for W25H02NWxxAM chips
Morning Star (1):
wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()
Natalie Vock (1):
drm/amdgpu: Forward VMID reservation errors
Nathan Chancellor (3):
clk: samsung: exynos-clkout: Assign .num before accessing .hws
clk: qcom: Fix SM_VIDEOCC_6350 dependencies
clk: qcom: Fix dependencies of QCS_{DISP,GPU,VIDEO}CC_615
NeilBrown (1):
lockd: fix vfs_test_lock() calls
Nicolas Dufresne (2):
media: verisilicon: Fix CPU stalls on G2 bus error
media: verisilicon: Protect G2 HEVC decoder against invalid DPB index
Nikolay Kuratov (1):
drm/msm/dpu: Add missing NULL pointer check for pingpong interface
Paolo Abeni (1):
mptcp: fallback earlier on simult connection
Paresh Bhagat (2):
arm64: dts: ti: k3-am62d2-evm: Fix regulator properties
arm64: dts: ti: k3-am62d2-evm: Fix PMIC padconfig
Patrice Chotard (1):
arm64: dts: st: Add memory-region-names property for stm32mp257f-ev1
Pauli Virtanen (1):
Bluetooth: MGMT: report BIS capability flags in supported settings
Peter Zijlstra (2):
sched/core: Add comment explaining force-idle vruntime snapshots
sched/eevdf: Fix min_vruntime vs avg_vruntime
Pierre-Eric Pelloux-Prayer (1):
drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma
Ping-Ke Shih (1):
wifi: rtw88: limit indirect IO under powered off for RTL8822CS
Pingfan Liu (2):
kernel/kexec: change the prototype of kimage_map_segment()
kernel/kexec: fix IMA when allocation happens in CMA area
Przemyslaw Korba (1):
i40e: fix scheduling in set_rx_mode
Pwnverse (1):
net: rose: fix invalid array index in rose_kill_by_device()
Qiang Ma (1):
LoongArch: Correct the calculation logic of thread_count
Raghavendra Rao Ananta (1):
hisi_acc_vfio_pci: Add .match_token_uuid callback in hisi_acc_vfio_pci_migrn_ops
Rajashekar Hudumula (1):
bng_en: update module description
Raju Rangoju (1):
amd-xgbe: reset retries and mode on RX adapt failures
Ran Xiaokai (1):
mm/page_owner: fix memory leak in page_owner_stack_fops->release()
Raphael Pinsonneault-Thibeault (1):
Bluetooth: btusb: revert use of devm_kzalloc in btusb
Rene Rebe (1):
fbdev: gbefb: fix to use physical address instead of dma address
René Rebe (2):
fbdev: tcx.c fix mem_map to correct smem_start offset
drm/mgag200: Fix big-endian support
Rong Zhang (1):
x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo
Rosen Penev (1):
net: mdio: rtl9300: use scoped for loops
Sandipan Das (1):
perf/x86/amd/uncore: Fix the return value of amd_uncore_df_event_init() on error
Sanjay Yadav (1):
drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()
SeongJae Park (20):
mm/damon/tests/sysfs-kunit: handle alloc failures on damon_sysfs_test_add_targets()
mm/damon/tests/vaddr-kunit: handle alloc failures on damon_do_test_apply_three_regions()
mm/damon/tests/vaddr-kunit: handle alloc failures in damon_test_split_evenly_fail()
mm/damon/tests/vaddr-kunit: handle alloc failures on damon_test_split_evenly_succ()
mm/damon/tests/core-kunit: fix memory leak in damon_test_set_filters_default_reject()
mm/damon/tests/core-kunit: handle alloc failres in damon_test_new_filter()
mm/damon/tests/core-kunit: handle alloc failures on damon_test_split_at()
mm/damon/tests/core-kunit: handle allocation failures in damon_test_regions()
mm/damon/tests/core-kunit: handle memory failure from damon_test_target()
mm/damon/tests/core-kunit: handle memory alloc failure from damon_test_aggregate()
mm/damon/tests/core-kunit: handle alloc failures on dasmon_test_merge_regions_of()
mm/damon/tests/core-kunit: handle alloc failures on damon_test_merge_two()
mm/damon/tests/core-kunit: handle alloc failures in damon_test_set_regions()
mm/damon/tests/core-kunit: handle alloc failures in damon_test_update_monitoring_result()
mm/damon/tests/core-kunit: handle alloc failures on damon_test_set_filters_default_reject()
mm/damon/tests/core-kunit: handle alloc failures on damos_test_filter_out()
mm/damon/tests/core-kunit: handle alloc failures in damon_test_ops_registration()
mm/damon/tests/core-kunit: handle alloc failure on damon_test_set_attrs()
mm/damon/tests/core-kunit: handle alloc failure on damos_test_commit_filter()
mm/damon/tests/core-kunit: handle alloc failures on damon_test_split_regions_of()
Shengming Hu (2):
fgraph: Initialize ftrace_ops->private for function graph ops
fgraph: Check ftrace_pids_enabled on registration for early filtering
Shin'ichiro Kawasaki (1):
nvmet: pci-epf: move DMA initialization to EPC init callback
Shravan Kumar Ramani (1):
platform/mellanox: mlxbf-pmc: Remove trailing whitespaces from event names
Siddharth Vadapalli (1):
arm64: dts: ti: k3-j721e-sk: Fix pinmux for pin Y1 used by power regulator
Simon Richter (1):
drm/ttm: Avoid NULL pointer deref for evicted BOs
Srinivas Kandagatla (6):
ASoC: codecs: lpass-tx-macro: fix SM6115 support
ASoC: qcom: sdw: fix memory leak for sdw_stream_runtime
ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr
ASoC: qcom: q6asm-dai: perform correct state check before closing
ASoC: qcom: q6adm: the the copp device only during last instance
ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment.
Srinivas Pandruvada (1):
powercap: intel_rapl: Add support for Wildcat Lake platform
Srinivasan Shanmugam (1):
drm/amdgpu/sdma6: Update SDMA 6.0.3 FW version to include UMQ protected-fence fix
Sven Schnelle (2):
parisc: entry.S: fix space adjustment on interruption for 64-bit userspace
parisc: entry: set W bit for !compat tasks in syscall_restore_rfi()
Tetsuo Handa (1):
RDMA/core: always drop device refcount in ib_del_sub_device_and_put()
Thomas De Schampheleire (1):
kbuild: fix compilation of dtb specified on command-line without make rule
Thomas Fourier (3):
platform/x86: msi-laptop: add missing sysfs_remove_group()
firewire: nosy: Fix dma_free_coherent() size
RDMA/bnxt_re: fix dma_free_coherent() pointer
Thomas Hellström (4):
drm/xe/bo: Don't include the CCS metadata in the dma-buf sg-table
drm/xe: Drop preempt-fences when destroying imported dma-bufs.
drm/xe/svm: Fix a debug printout
drm/pagemap, drm/xe: Ensure that the devmem allocation is idle before use
Thomas Weißschuh (1):
leds: leds-cros_ec: Skip LEDs without color components
Thomas Zimmermann (2):
drm/gem-shmem: Fix the MODULE_LICENSE() string
drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg()
Thorsten Blum (1):
fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing
Tiezhu Yang (1):
LoongArch: Use unsigned long for _end and _text
Toke Høiland-Jørgensen (1):
net: openvswitch: Avoid needlessly taking the RTNL on vport destroy
Tuo Li (1):
md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()
Uladzislau Rezki (Sony) (1):
dm-ebs: Mark full buffer dirty even on partial write
Vadim Fedorenko (1):
net: fib: restore ECMP balance from loopback
Ville Syrjälä (1):
wifi: iwlwifi: Fix firmware version handling
Vladimir Oltean (2):
net: dsa: properly keep track of conduit reference
net: dsa: fix missing put_device() in dsa_tree_find_first_conduit()
Wake Liu (1):
selftests/mm: fix thread state check in uffd-unit-tests
WangYuli (1):
LoongArch: Use __pmd()/__pte() for swap entry conversions
Wei Fang (1):
net: stmmac: fix the crash issue for zero copy XDP_TX action
Wei Yang (1):
mm/huge_memory: merge uniform_split_supported() and non_uniform_split_supported()
Wentao Liang (1):
pmdomain: imx: Fix reference count leak in imx_gpc_probe()
Will Rosenberg (1):
ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()
Xiaolei Wang (1):
net: macb: Relocate mog_init_rings() callback from macb_mac_link_up() to macb_open()
Yeoreum Yun (1):
smc91x: fix broken irq-context in PREEMPT_RT
Yipeng Zou (1):
selftests/ftrace: traceonoff_triggers: strip off names
Zilin Guan (2):
vfio/pds: Fix memory leak in pds_vfio_dirty_enable()
ksmbd: Fix memory leak in get_file_all_info()
Zqiang (1):
sched_ext: Fix incorrect sched_class settings for per-cpu migration tasks
21 hours, 33 minutes
- 1
- 1
Linux 6.12.64
by Greg Kroah-Hartman
I'm announcing the release of the 6.12.64 kernel.
All users of the 6.12 kernel series must upgrade.
The updated 6.12.y git tree can be found at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-6.12.y
and can be browsed at the normal kernel.org git web browser:
https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary
thanks,
greg k-h
------------
Documentation/devicetree/bindings/mmc/aspeed,sdhci.yaml | 2
Documentation/devicetree/bindings/pci/qcom,pcie-sc7280.yaml | 5
Documentation/devicetree/bindings/pci/qcom,pcie-sc8280xp.yaml | 3
Documentation/devicetree/bindings/pci/qcom,pcie-sm8150.yaml | 5
Documentation/devicetree/bindings/pci/qcom,pcie-sm8250.yaml | 5
Documentation/devicetree/bindings/pci/qcom,pcie-sm8350.yaml | 5
Documentation/devicetree/bindings/pci/qcom,pcie-sm8450.yaml | 5
Documentation/devicetree/bindings/pci/qcom,pcie-sm8550.yaml | 5
Documentation/driver-api/soundwire/stream.rst | 2
Documentation/driver-api/tty/tty_port.rst | 5
Documentation/filesystems/nfs/localio.rst | 85
Makefile | 2
arch/arm/boot/dts/microchip/sama5d2.dtsi | 10
arch/arm/boot/dts/microchip/sama7g5.dtsi | 4
arch/arm64/boot/dts/ti/k3-j721e-sk.dts | 12
arch/arm64/include/asm/el2_setup.h | 57
arch/arm64/kernel/head.S | 22
arch/arm64/kvm/hyp/nvhe/hyp-init.S | 10
arch/arm64/kvm/hyp/nvhe/psci-relay.c | 3
arch/arm64/net/bpf_jit_comp.c | 2
arch/loongarch/include/asm/pgtable.h | 4
arch/loongarch/kernel/mcount_dyn.S | 14
arch/loongarch/kernel/relocate.c | 4
arch/loongarch/kernel/setup.c | 8
arch/loongarch/kernel/switch.S | 4
arch/loongarch/net/bpf_jit.c | 18
arch/loongarch/net/bpf_jit.h | 26
arch/loongarch/pci/pci.c | 2
arch/mips/kernel/ftrace.c | 25
arch/mips/sgi-ip22/ip22-gio.c | 3
arch/parisc/kernel/asm-offsets.c | 2
arch/parisc/kernel/entry.S | 16
arch/powerpc/boot/addnote.c | 7
arch/powerpc/include/asm/book3s/32/tlbflush.h | 5
arch/powerpc/include/asm/book3s/64/mmu-hash.h | 1
arch/powerpc/kernel/btext.c | 3
arch/powerpc/kernel/process.c | 5
arch/powerpc/kexec/core_64.c | 19
arch/powerpc/mm/book3s32/tlb.c | 9
arch/powerpc/mm/book3s64/internal.h | 2
arch/powerpc/mm/book3s64/mmu_context.c | 2
arch/powerpc/mm/book3s64/slb.c | 88
arch/powerpc/platforms/pseries/cmm.c | 5
arch/riscv/crypto/chacha-riscv64-zvkb.S | 5
arch/s390/include/uapi/asm/ipl.h | 1
arch/s390/kernel/ipl.c | 48
arch/x86/crypto/blake2s-core.S | 4
arch/x86/entry/common.c | 72
arch/x86/events/amd/core.c | 7
arch/x86/events/amd/uncore.c | 5
arch/x86/include/asm/irq_remapping.h | 7
arch/x86/include/asm/ptrace.h | 20
arch/x86/kernel/cpu/mce/threshold.c | 3
arch/x86/kernel/cpu/microcode/amd.c | 106
arch/x86/kernel/fpu/xstate.c | 4
arch/x86/kernel/irq.c | 23
arch/x86/kvm/lapic.c | 32
arch/x86/kvm/svm/nested.c | 6
arch/x86/kvm/svm/svm.c | 44
arch/x86/kvm/svm/svm.h | 7
arch/x86/kvm/vmx/nested.c | 3
arch/x86/kvm/x86.c | 25
arch/x86/xen/enlighten_pv.c | 69
block/blk-mq.c | 2
block/blk-zoned.c | 191 -
block/blk.h | 14
block/genhd.c | 2
crypto/af_alg.c | 5
crypto/algif_hash.c | 3
crypto/algif_rng.c | 3
crypto/seqiv.c | 8
drivers/acpi/acpi_pcc.c | 2
drivers/acpi/acpica/nswalk.c | 9
drivers/acpi/cppc_acpi.c | 3
drivers/acpi/fan.h | 33
drivers/acpi/fan_hwmon.c | 10
drivers/acpi/property.c | 8
drivers/amba/tegra-ahb.c | 1
drivers/base/power/runtime.c | 22
drivers/block/floppy.c | 2
drivers/block/rnbd/rnbd-clt.c | 13
drivers/block/rnbd/rnbd-clt.h | 2
drivers/bluetooth/btusb.c | 22
drivers/bus/ti-sysc.c | 11
drivers/char/applicom.c | 5
drivers/char/ipmi/ipmi_msghandler.c | 20
drivers/char/tpm/tpm-chip.c | 1
drivers/char/tpm/tpm1-cmd.c | 5
drivers/char/tpm/tpm2-cmd.c | 11
drivers/char/tpm/tpm2-sessions.c | 85
drivers/clk/mvebu/cp110-system-controller.c | 20
drivers/clk/qcom/dispcc-sm7150.c | 2
drivers/clk/samsung/clk-exynos-clkout.c | 2
drivers/cpufreq/cpufreq-dt-platdev.c | 1
drivers/cpufreq/cpufreq-nforce2.c | 3
drivers/cpufreq/s5pv210-cpufreq.c | 6
drivers/cpuidle/governors/menu.c | 9
drivers/cpuidle/governors/teo.c | 7
drivers/crypto/caam/caamrng.c | 4
drivers/firewire/nosy.c | 10
drivers/firmware/imx/imx-scu-irq.c | 4
drivers/firmware/stratix10-svc.c | 11
drivers/gpio/Makefile | 1
drivers/gpio/gpio-regmap.c | 2
drivers/gpio/gpiolib-acpi-core.c | 1419 ++++++++
drivers/gpio/gpiolib-acpi-quirks.c | 412 ++
drivers/gpio/gpiolib-acpi.c | 1737 ----------
drivers/gpio/gpiolib-acpi.h | 15
drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 3
drivers/gpu/drm/amd/amdgpu/amdgpu_ttm.c | 2
drivers/gpu/drm/amd/amdgpu/gmc_v11_0.c | 27
drivers/gpu/drm/amd/amdgpu/gmc_v12_0.c | 27
drivers/gpu/drm/amd/amdkfd/cwsr_trap_handler.h | 62
drivers/gpu/drm/amd/amdkfd/cwsr_trap_handler_gfx12.asm | 37
drivers/gpu/drm/amd/amdkfd/kfd_queue.c | 1
drivers/gpu/drm/amd/amdkfd/kfd_topology.c | 4
drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c | 59
drivers/gpu/drm/amd/display/dc/core/dc_surface.c | 2
drivers/gpu/drm/amd/display/dc/resource/dcn35/dcn35_resource.c | 8
drivers/gpu/drm/amd/display/dc/resource/dcn351/dcn351_resource.c | 8
drivers/gpu/drm/drm_buddy.c | 394 +-
drivers/gpu/drm/drm_displayid.c | 58
drivers/gpu/drm/drm_displayid_internal.h | 2
drivers/gpu/drm/gma500/fbdev.c | 43
drivers/gpu/drm/i915/gem/i915_gem_execbuffer.c | 37
drivers/gpu/drm/i915/intel_memory_region.h | 2
drivers/gpu/drm/imagination/pvr_gem.c | 11
drivers/gpu/drm/mediatek/mtk_ddp_comp.c | 33
drivers/gpu/drm/mediatek/mtk_ddp_comp.h | 2
drivers/gpu/drm/mediatek/mtk_dp.c | 1
drivers/gpu/drm/mediatek/mtk_drm_drv.c | 4
drivers/gpu/drm/mgag200/mgag200_mode.c | 25
drivers/gpu/drm/msm/adreno/a6xx_gpu_state.c | 2
drivers/gpu/drm/msm/disp/dpu1/dpu_encoder_phys_wb.c | 10
drivers/gpu/drm/nouveau/dispnv50/atom.h | 13
drivers/gpu/drm/nouveau/dispnv50/wndw.c | 2
drivers/gpu/drm/panel/panel-sony-td4353-jdi.c | 2
drivers/gpu/drm/panthor/panthor_gem.c | 18
drivers/gpu/drm/ttm/ttm_bo_vm.c | 6
drivers/gpu/drm/xe/xe_bo.c | 15
drivers/gpu/drm/xe/xe_dma_buf.c | 2
drivers/gpu/drm/xe/xe_exec.c | 3
drivers/gpu/drm/xe/xe_gt.c | 7
drivers/gpu/drm/xe/xe_guc_submit.c | 20
drivers/gpu/drm/xe/xe_heci_gsc.c | 4
drivers/gpu/drm/xe/xe_oa.c | 13
drivers/gpu/drm/xe/xe_vm.c | 8
drivers/gpu/drm/xe/xe_vm_types.h | 2
drivers/hid/hid-input.c | 18
drivers/hid/hid-logitech-dj.c | 56
drivers/hwmon/dell-smm-hwmon.c | 9
drivers/hwmon/ibmpex.c | 9
drivers/hwmon/ltc4282.c | 9
drivers/hwmon/max16065.c | 7
drivers/hwmon/max6697.c | 2
drivers/hwmon/tmp401.c | 2
drivers/hwmon/w83791d.c | 17
drivers/hwmon/w83l786ng.c | 26
drivers/hwtracing/intel_th/core.c | 20
drivers/i2c/busses/i2c-amd-mp2-pci.c | 5
drivers/i2c/busses/i2c-designware-core.h | 1
drivers/i2c/busses/i2c-designware-master.c | 7
drivers/iio/adc/ti_am335x_adc.c | 2
drivers/infiniband/core/addr.c | 33
drivers/infiniband/core/cma.c | 3
drivers/infiniband/core/device.c | 4
drivers/infiniband/core/verbs.c | 2
drivers/infiniband/hw/bnxt_re/ib_verbs.c | 7
drivers/infiniband/hw/bnxt_re/qplib_rcfw.c | 2
drivers/infiniband/hw/bnxt_re/qplib_res.c | 8
drivers/infiniband/hw/efa/efa_verbs.c | 4
drivers/infiniband/hw/irdma/utils.c | 3
drivers/infiniband/ulp/rtrs/rtrs-clt.c | 1
drivers/input/keyboard/lkkbd.c | 5
drivers/input/mouse/alps.c | 1
drivers/input/serio/i8042-acpipnpio.h | 7
drivers/input/touchscreen/ti_am335x_tsc.c | 2
drivers/interconnect/qcom/sdx75.c | 26
drivers/interconnect/qcom/sdx75.h | 2
drivers/iommu/amd/init.c | 15
drivers/iommu/amd/iommu.c | 2
drivers/iommu/apple-dart.c | 2
drivers/iommu/arm/arm-smmu/qcom_iommu.c | 10
drivers/iommu/exynos-iommu.c | 9
drivers/iommu/intel/irq_remapping.c | 8
drivers/iommu/iommu-sva.c | 3
drivers/iommu/iommufd/selftest.c | 8
drivers/iommu/ipmmu-vmsa.c | 2
drivers/iommu/mtk_iommu.c | 27
drivers/iommu/mtk_iommu_v1.c | 25
drivers/iommu/omap-iommu.c | 2
drivers/iommu/omap-iommu.h | 2
drivers/iommu/sun50i-iommu.c | 2
drivers/iommu/tegra-smmu.c | 5
drivers/isdn/capi/capi.c | 8
drivers/leds/leds-cros_ec.c | 5
drivers/leds/leds-lp50xx.c | 67
drivers/md/dm-bufio.c | 10
drivers/md/dm-ebs-target.c | 2
drivers/md/md.c | 5
drivers/md/raid10.c | 3
drivers/md/raid5.c | 10
drivers/media/cec/core/cec-core.c | 1
drivers/media/common/videobuf2/videobuf2-dma-contig.c | 1
drivers/media/i2c/adv7604.c | 4
drivers/media/i2c/adv7842.c | 11
drivers/media/i2c/imx219.c | 9
drivers/media/i2c/msp3400-kthreads.c | 2
drivers/media/i2c/tda1997x.c | 1
drivers/media/platform/amphion/vpu_malone.c | 35
drivers/media/platform/amphion/vpu_v4l2.c | 28
drivers/media/platform/amphion/vpu_v4l2.h | 18
drivers/media/platform/mediatek/mdp3/mtk-mdp3-core.c | 14
drivers/media/platform/mediatek/vcodec/common/mtk_vcodec_fw_vpu.c | 14
drivers/media/platform/mediatek/vcodec/decoder/mtk_vcodec_dec_drv.c | 12
drivers/media/platform/mediatek/vcodec/decoder/mtk_vcodec_dec_drv.h | 2
drivers/media/platform/mediatek/vcodec/decoder/vdec_vpu_if.c | 5
drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c | 12
drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.h | 2
drivers/media/platform/mediatek/vcodec/encoder/venc_vpu_if.c | 5
drivers/media/platform/renesas/rcar_drif.c | 1
drivers/media/platform/samsung/exynos4-is/media-dev.c | 10
drivers/media/platform/ti/davinci/vpif_capture.c | 4
drivers/media/platform/ti/davinci/vpif_display.c | 4
drivers/media/platform/verisilicon/hantro_g2.c | 88
drivers/media/platform/verisilicon/hantro_g2_hevc_dec.c | 17
drivers/media/platform/verisilicon/hantro_g2_regs.h | 13
drivers/media/platform/verisilicon/hantro_g2_vp9_dec.c | 2
drivers/media/platform/verisilicon/hantro_hw.h | 1
drivers/media/platform/verisilicon/imx8m_vpu_hw.c | 2
drivers/media/rc/st_rc.c | 2
drivers/media/test-drivers/vidtv/vidtv_channel.c | 3
drivers/media/usb/dvb-usb/dtv5100.c | 5
drivers/media/usb/pvrusb2/pvrusb2-hdw.c | 2
drivers/mfd/altera-sysmgr.c | 2
drivers/mfd/max77620.c | 15
drivers/misc/mei/Kconfig | 2
drivers/misc/vmw_balloon.c | 3
drivers/mmc/host/Kconfig | 4
drivers/mmc/host/sdhci-msm.c | 27
drivers/mmc/host/sdhci-of-arasan.c | 2
drivers/mtd/mtdpart.c | 7
drivers/mtd/spi-nor/winbond.c | 24
drivers/net/can/usb/gs_usb.c | 2
drivers/net/dsa/b53/b53_common.c | 3
drivers/net/ethernet/amd/xgbe/xgbe-phy-v2.c | 2
drivers/net/ethernet/broadcom/b44.c | 3
drivers/net/ethernet/broadcom/bnxt/bnxt_xdp.c | 3
drivers/net/ethernet/cadence/macb_main.c | 3
drivers/net/ethernet/freescale/enetc/enetc.c | 3
drivers/net/ethernet/freescale/fec_main.c | 7
drivers/net/ethernet/google/gve/gve_main.c | 2
drivers/net/ethernet/google/gve/gve_utils.c | 2
drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_main.c | 3
drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_mbx.c | 4
drivers/net/ethernet/hisilicon/hns3/hns3vf/hclgevf_main.c | 4
drivers/net/ethernet/intel/e1000/e1000_main.c | 10
drivers/net/ethernet/intel/i40e/i40e.h | 11
drivers/net/ethernet/intel/i40e/i40e_ethtool.c | 12
drivers/net/ethernet/intel/i40e/i40e_main.c | 1
drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c | 4
drivers/net/ethernet/intel/iavf/iavf_main.c | 4
drivers/net/ethernet/intel/idpf/idpf_dev.c | 3
drivers/net/ethernet/intel/idpf/idpf_lib.c | 2
drivers/net/ethernet/intel/idpf/idpf_singleq_txrx.c | 61
drivers/net/ethernet/intel/idpf/idpf_txrx.c | 750 +---
drivers/net/ethernet/intel/idpf/idpf_txrx.h | 95
drivers/net/ethernet/intel/idpf/idpf_vf_dev.c | 3
drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c | 8
drivers/net/ethernet/mellanox/mlx5/core/devlink.c | 5
drivers/net/ethernet/mellanox/mlx5/core/diag/fw_tracer.c | 97
drivers/net/ethernet/mellanox/mlx5/core/diag/fw_tracer.h | 1
drivers/net/ethernet/mellanox/mlx5/core/eswitch_offloads.c | 6
drivers/net/ethernet/mellanox/mlx5/core/fw_reset.c | 48
drivers/net/ethernet/mellanox/mlx5/core/fw_reset.h | 1
drivers/net/ethernet/mellanox/mlx5/core/main.c | 1
drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c | 2
drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c | 27
drivers/net/ethernet/realtek/r8169_main.c | 5
drivers/net/ethernet/smsc/smc91x.c | 10
drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 17
drivers/net/fjes/fjes_hw.c | 12
drivers/net/ipvlan/ipvlan_core.c | 3
drivers/net/mdio/mdio-aspeed.c | 7
drivers/net/phy/marvell-88q2xxx.c | 2
drivers/net/team/team_core.c | 2
drivers/net/usb/asix_common.c | 5
drivers/net/usb/rtl8150.c | 2
drivers/net/usb/sr9700.c | 4
drivers/net/usb/usbnet.c | 2
drivers/net/wireless/broadcom/brcm80211/brcmfmac/dmi.c | 14
drivers/net/wireless/mediatek/mt76/eeprom.c | 37
drivers/net/wireless/mediatek/mt76/mt7615/main.c | 4
drivers/net/wireless/mediatek/mt76/mt7615/pci.c | 6
drivers/net/wireless/mediatek/mt76/mt7615/sdio.c | 4
drivers/net/wireless/mediatek/mt76/mt7615/usb.c | 4
drivers/net/wireless/mediatek/mt76/mt76_connac_mcu.c | 4
drivers/net/wireless/mediatek/mt76/mt76_connac_mcu.h | 3
drivers/net/wireless/mediatek/mt76/mt7921/mcu.c | 2
drivers/net/wireless/mediatek/mt76/mt7921/pci.c | 6
drivers/net/wireless/mediatek/mt76/mt7921/sdio.c | 6
drivers/net/wireless/mediatek/mt76/mt7921/usb.c | 4
drivers/net/wireless/mediatek/mt76/mt7925/init.c | 24
drivers/net/wireless/mediatek/mt76/mt7925/mcu.c | 51
drivers/net/wireless/mediatek/mt76/mt7925/mt7925.h | 21
drivers/net/wireless/mediatek/mt76/mt7925/pci.c | 33
drivers/net/wireless/mediatek/mt76/mt7925/usb.c | 20
drivers/net/wireless/mediatek/mt76/mt792x.h | 2
drivers/net/wireless/realtek/rtl8xxxu/core.c | 7
drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c | 3
drivers/net/wireless/realtek/rtw88/sdio.c | 4
drivers/nfc/pn533/usb.c | 2
drivers/nvme/host/fabrics.c | 2
drivers/nvme/host/fc.c | 6
drivers/of/fdt.c | 2
drivers/parisc/gsc.c | 4
drivers/pci/controller/pcie-brcmstb.c | 107
drivers/pci/pci-driver.c | 4
drivers/perf/arm_cspmu/arm_cspmu.c | 4
drivers/phy/broadcom/phy-bcm63xx-usbh.c | 6
drivers/pinctrl/renesas/pinctrl-rzg2l.c | 75
drivers/platform/chrome/cros_ec_ishtp.c | 1
drivers/platform/mellanox/mlxbf-pmc.c | 14
drivers/platform/x86/hp/hp-bioscfg/enum-attributes.c | 4
drivers/platform/x86/hp/hp-bioscfg/int-attributes.c | 2
drivers/platform/x86/hp/hp-bioscfg/order-list-attributes.c | 5
drivers/platform/x86/hp/hp-bioscfg/passwdobj-attributes.c | 5
drivers/platform/x86/hp/hp-bioscfg/string-attributes.c | 2
drivers/platform/x86/ibm_rtl.c | 2
drivers/platform/x86/intel/chtwc_int33fe.c | 29
drivers/platform/x86/intel/hid.c | 12
drivers/platform/x86/msi-laptop.c | 3
drivers/pmdomain/imx/gpc.c | 5
drivers/rpmsg/qcom_glink_native.c | 8
drivers/s390/block/dasd_eckd.c | 8
drivers/scsi/aic94xx/aic94xx_init.c | 3
drivers/scsi/mpi3mr/mpi/mpi30_ioc.h | 1
drivers/scsi/mpi3mr/mpi3mr_fw.c | 2
drivers/scsi/qla2xxx/qla_def.h | 1
drivers/scsi/qla2xxx/qla_gbl.h | 2
drivers/scsi/qla2xxx/qla_isr.c | 32
drivers/scsi/qla2xxx/qla_mbx.c | 2
drivers/scsi/qla2xxx/qla_mid.c | 4
drivers/scsi/qla2xxx/qla_os.c | 14
drivers/scsi/scsi_debug.c | 2
drivers/scsi/smartpqi/smartpqi_init.c | 4
drivers/soc/amlogic/meson-canvas.c | 5
drivers/soc/apple/mailbox.c | 15
drivers/soc/qcom/ocmem.c | 2
drivers/soc/qcom/qcom-pbs.c | 2
drivers/soc/samsung/exynos-pmu.c | 2
drivers/soc/tegra/fuse/fuse-tegra.c | 2
drivers/soundwire/stream.c | 6
drivers/spi/spi-cadence-quadspi.c | 4
drivers/spi/spi-fsl-spi.c | 2
drivers/staging/greybus/uart.c | 7
drivers/target/target_core_transport.c | 1
drivers/tty/serial/serial_base_bus.c | 8
drivers/tty/serial/serial_core.c | 7
drivers/tty/serial/sh-sci.c | 2
drivers/tty/serial/sprd_serial.c | 6
drivers/tty/serial/xilinx_uartps.c | 16
drivers/tty/tty_port.c | 17
drivers/ufs/core/ufshcd.c | 5
drivers/ufs/host/ufs-mediatek.c | 5
drivers/usb/class/cdc-acm.c | 7
drivers/usb/dwc3/dwc3-of-simple.c | 7
drivers/usb/dwc3/gadget.c | 2
drivers/usb/dwc3/host.c | 2
drivers/usb/gadget/udc/lpc32xx_udc.c | 21
drivers/usb/host/ohci-nxp.c | 2
drivers/usb/host/xhci-dbgtty.c | 2
drivers/usb/host/xhci-hub.c | 2
drivers/usb/phy/phy-fsl-usb.c | 1
drivers/usb/phy/phy-isp1301.c | 7
drivers/usb/renesas_usbhs/pipe.c | 2
drivers/usb/serial/usb-serial.c | 7
drivers/usb/storage/unusual_uas.h | 2
drivers/usb/typec/altmodes/displayport.c | 8
drivers/usb/typec/ucsi/ucsi.c | 6
drivers/usb/usbip/vhci_hcd.c | 6
drivers/vdpa/octeon_ep/octep_vdpa_main.c | 1
drivers/vfio/pci/nvgrace-gpu/main.c | 4
drivers/vfio/pci/pds/dirty.c | 7
drivers/vfio/pci/vfio_pci_rdwr.c | 24
drivers/vhost/vsock.c | 15
drivers/video/fbdev/gbefb.c | 5
drivers/video/fbdev/pxafb.c | 12
drivers/video/fbdev/tcx.c | 2
drivers/virtio/virtio_balloon.c | 4
drivers/watchdog/via_wdt.c | 1
fs/btrfs/inode.c | 1
fs/btrfs/ioctl.c | 4
fs/btrfs/scrub.c | 5
fs/btrfs/tree-log.c | 46
fs/btrfs/volumes.c | 1
fs/erofs/zdata.c | 8
fs/exfat/file.c | 5
fs/exfat/super.c | 19
fs/ext4/ialloc.c | 1
fs/ext4/inode.c | 1
fs/ext4/mballoc.c | 2
fs/ext4/orphan.c | 4
fs/ext4/super.c | 6
fs/ext4/xattr.c | 6
fs/f2fs/compress.c | 5
fs/f2fs/data.c | 17
fs/f2fs/extent_cache.c | 5
fs/f2fs/f2fs.h | 17
fs/f2fs/file.c | 20
fs/f2fs/gc.c | 2
fs/f2fs/inode.c | 2
fs/f2fs/namei.c | 6
fs/f2fs/recovery.c | 20
fs/f2fs/segment.c | 9
fs/f2fs/super.c | 160
fs/f2fs/xattr.c | 30
fs/f2fs/xattr.h | 10
fs/fuse/file.c | 37
fs/gfs2/glops.c | 3
fs/gfs2/lops.c | 2
fs/gfs2/quota.c | 2
fs/gfs2/super.c | 4
fs/hfsplus/bnode.c | 4
fs/hfsplus/dir.c | 7
fs/hfsplus/inode.c | 32
fs/iomap/buffered-io.c | 41
fs/iomap/direct-io.c | 10
fs/jbd2/journal.c | 20
fs/jbd2/transaction.c | 2
fs/libfs.c | 50
fs/lockd/svc4proc.c | 4
fs/lockd/svclock.c | 21
fs/lockd/svcproc.c | 5
fs/locks.c | 12
fs/nfs_common/nfslocalio.c | 10
fs/nfsd/blocklayout.c | 3
fs/nfsd/export.c | 2
fs/nfsd/filecache.c | 2
fs/nfsd/localio.c | 4
fs/nfsd/netns.h | 11
fs/nfsd/nfs4state.c | 4
fs/nfsd/nfs4xdr.c | 5
fs/nfsd/nfssvc.c | 45
fs/nfsd/vfs.h | 3
fs/notify/fsnotify.c | 9
fs/ntfs3/file.c | 14
fs/ntfs3/frecord.c | 35
fs/ntfs3/ntfs_fs.h | 9
fs/ntfs3/run.c | 6
fs/ntfs3/super.c | 5
fs/ocfs2/suballoc.c | 10
fs/smb/client/fs_context.c | 2
fs/smb/server/mgmt/tree_connect.c | 18
fs/smb/server/mgmt/tree_connect.h | 1
fs/smb/server/mgmt/user_session.c | 4
fs/smb/server/smb2pdu.c | 20
fs/smb/server/vfs.c | 5
fs/smb/server/vfs_cache.c | 88
fs/xfs/scrub/attr_repair.c | 2
fs/xfs/xfs_attr_item.c | 2
fs/xfs/xfs_buf_item.c | 1
fs/xfs/xfs_qm.c | 5
include/drm/drm_buddy.h | 11
include/drm/drm_edid.h | 6
include/linux/balloon_compaction.h | 43
include/linux/compiler_types.h | 13
include/linux/fs.h | 2
include/linux/genalloc.h | 1
include/linux/hrtimer.h | 23
include/linux/jbd2.h | 6
include/linux/kasan.h | 16
include/linux/nfslocalio.h | 12
include/linux/reset.h | 1
include/linux/soundwire/sdw.h | 2
include/linux/tpm.h | 8
include/linux/tty_port.h | 21
include/linux/vfio_pci_core.h | 10
include/media/v4l2-mem2mem.h | 3
include/net/ip.h | 6
include/net/ip6_route.h | 4
include/net/route.h | 2
include/uapi/drm/xe_drm.h | 1
include/uapi/linux/mptcp.h | 1
io_uring/io_uring.c | 3
io_uring/openclose.c | 2
io_uring/poll.c | 9
kernel/kallsyms.c | 5
kernel/livepatch/core.c | 8
kernel/sched/cpudeadline.c | 34
kernel/sched/cpudeadline.h | 4
kernel/sched/deadline.c | 8
kernel/sched/debug.c | 8
kernel/sched/ext.c | 58
kernel/sched/fair.c | 103
kernel/sched/rt.c | 52
kernel/sched/sched.h | 4
kernel/scs.c | 2
kernel/trace/fgraph.c | 10
kernel/trace/trace_events.c | 2
kernel/trace/trace_events_synth.c | 1
lib/idr.c | 2
mm/balloon_compaction.c | 9
mm/damon/tests/core-kunit.h | 99
mm/damon/tests/sysfs-kunit.h | 25
mm/damon/tests/vaddr-kunit.h | 26
mm/kasan/common.c | 32
mm/kasan/hw_tags.c | 2
mm/kasan/shadow.c | 4
mm/ksm.c | 18
mm/page_owner.c | 2
mm/shmem.c | 18
mm/vmalloc.c | 8
net/bluetooth/rfcomm/tty.c | 7
net/bridge/br_private.h | 1
net/caif/cffrml.c | 9
net/ceph/osdmap.c | 116
net/core/sock.c | 16
net/dsa/dsa.c | 8
net/ethtool/ioctl.c | 30
net/handshake/request.c | 8
net/hsr/hsr_device.c | 7
net/hsr/hsr_forward.c | 2
net/ipv4/fib_trie.c | 7
net/ipv6/calipso.c | 3
net/ipv6/exthdrs.c | 2
net/ipv6/icmp.c | 4
net/ipv6/ila/ila_lwt.c | 2
net/ipv6/ioam6_iptunnel.c | 37
net/ipv6/ip6_gre.c | 17
net/ipv6/ip6_output.c | 19
net/ipv6/ip6_tunnel.c | 4
net/ipv6/ip6_udp_tunnel.c | 2
net/ipv6/ip6_vti.c | 2
net/ipv6/ndisc.c | 6
net/ipv6/netfilter/nf_dup_ipv6.c | 2
net/ipv6/output_core.c | 2
net/ipv6/route.c | 33
net/ipv6/rpl_iptunnel.c | 4
net/ipv6/seg6_iptunnel.c | 20
net/ipv6/seg6_local.c | 2
net/mac80211/cfg.c | 10
net/mptcp/pm_netlink.c | 3
net/mptcp/protocol.c | 22
net/netfilter/ipvs/ip_vs_xmit.c | 3
net/netfilter/nf_conncount.c | 25
net/netfilter/nf_nat_core.c | 14
net/netfilter/nf_tables_api.c | 11
net/netfilter/nft_ct.c | 5
net/netrom/nr_out.c | 4
net/nfc/core.c | 9
net/openvswitch/flow_netlink.c | 13
net/openvswitch/vport-netdev.c | 17
net/rose/af_rose.c | 2
net/sched/sch_ets.c | 6
net/sunrpc/auth_gss/svcauth_gss.c | 3
net/sunrpc/xprtrdma/svc_rdma_rw.c | 7
net/wireless/core.c | 1
net/wireless/core.h | 1
net/wireless/mlme.c | 19
net/wireless/sme.c | 2
net/wireless/util.c | 23
samples/ftrace/ftrace-direct-modify.c | 8
samples/ftrace/ftrace-direct-multi-modify.c | 8
samples/ftrace/ftrace-direct-multi.c | 4
samples/ftrace/ftrace-direct-too.c | 4
samples/ftrace/ftrace-direct.c | 4
scripts/Makefile.build | 26
scripts/Makefile.modinst | 2
scripts/faddr2line | 13
security/keys/trusted-keys/trusted_tpm2.c | 6
sound/isa/wavefront/wavefront_midi.c | 133
sound/isa/wavefront/wavefront_synth.c | 18
sound/pci/hda/cs35l41_hda.c | 2
sound/pcmcia/pdaudiocf/pdaudiocf.c | 8
sound/pcmcia/vx/vxpocket.c | 8
sound/soc/codecs/ak4458.c | 4
sound/soc/codecs/lpass-tx-macro.c | 3
sound/soc/codecs/wcd939x-sdw.c | 8
sound/soc/qcom/qdsp6/q6adm.c | 146
sound/soc/qcom/qdsp6/q6apm-dai.c | 2
sound/soc/qcom/qdsp6/q6asm-dai.c | 7
sound/soc/qcom/sc7280.c | 2
sound/soc/qcom/sc8280xp.c | 2
sound/soc/qcom/sdw.c | 107
sound/soc/qcom/sdw.h | 1
sound/soc/qcom/sm8250.c | 2
sound/soc/qcom/x1e80100.c | 2
sound/soc/sh/rz-ssi.c | 64
sound/soc/stm/stm32_sai.c | 14
sound/soc/stm/stm32_sai_sub.c | 51
sound/usb/mixer_us16x08.c | 20
tools/lib/perf/cpumap.c | 10
tools/mm/page_owner_sort.c | 6
tools/testing/ktest/config-bisect.pl | 4
tools/testing/nvdimm/test/nfit.c | 7
tools/testing/radix-tree/idr-test.c | 21
tools/testing/selftests/ftrace/test.d/ftrace/func_traceonoff_triggers.tc | 5
tools/testing/selftests/iommu/iommufd.c | 54
tools/testing/selftests/iommu/iommufd_fail_nth.c | 3
tools/testing/selftests/iommu/iommufd_utils.h | 38
tools/testing/selftests/net/mptcp/pm_netlink.sh | 4
tools/testing/selftests/net/mptcp/pm_nl_ctl.c | 11
tools/testing/selftests/net/netfilter/conntrack_reverse_clash.c | 13
tools/testing/selftests/net/netfilter/conntrack_reverse_clash.sh | 2
tools/testing/selftests/net/netfilter/packetdrill/conntrack_syn_challenge_ack.pkt | 2
tools/testing/selftests/net/tap.c | 16
virt/kvm/kvm_main.c | 2
608 files changed, 7293 insertions(+), 5171 deletions(-)
Aboorva Devarajan (1):
cpuidle: menu: Use residency threshold in polling state override decisions
Ahmed Genidi (1):
KVM: arm64: Initialize SCTLR_EL1 in __kvm_hyp_init_cpu()
Akhil P Oommen (1):
drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers
Al Viro (1):
shmem: fix recovery on rename failures
Alessio Belle (1):
drm/imagination: Disallow exporting of PM/FW protected objects
Alex Deucher (3):
drm/amd/display: Use GFP_ATOMIC in dc_create_plane_state()
drm/amdgpu/gmc12: add amdgpu_vm_handle_fault() handling
drm/amdgpu/gmc11: add amdgpu_vm_handle_fault() handling
Alexander Stein (1):
serial: core: Fix serial device initialization
Alexey Simakov (2):
broadcom: b44: prevent uninitialized value usage
hwmon: (tmp401) fix overflow caused by default conversion rate value
Alexey Velichayshiy (1):
gfs2: fix freeze error handling
Alice C. Munduruca (1):
selftests: net: fix "buffer overflow detected" for tap.c
Alison Schofield (1):
tools/testing/nvdimm: Use per-DIMM device handle
Alok Tiwari (2):
RDMA/bnxt_re: Fix incorrect BAR check in bnxt_qplib_map_creq_db()
RDMA/bnxt_re: Fix IB_SEND_IP_CSUM handling in post_send
Aloka Dixit (1):
wifi: mac80211: do not use old MBSSID elements
Amir Goldstein (1):
fsnotify: do not generate ACCESS/MODIFY events on child for special files
Andreas Gruenbacher (3):
gfs2: fix remote evict for read-only filesystems
gfs2: Fix "gfs2: Switch to wait_event in gfs2_quotad"
gfs2: Fix use of bio_chain
Andrew Jeffery (1):
dt-bindings: mmc: sdhci-of-aspeed: Switch ref to sdhci-common.yaml
Andrew Morton (1):
genalloc.h: fix htmldocs warning
Andrey Vatoropin (1):
scsi: target: Reset t_task_cdb pointer in error case
Andrii Melnychenko (1):
netfilter: nft_ct: add seqadj extension for natted connections
Andy Shevchenko (6):
nfsd: Mark variable __maybe_unused to avoid W=1 build break
serial: core: Restore sysfs fwnode information
gpiolib: acpi: Switch to use enum in acpi_gpio_in_ignore_list()
gpiolib: acpi: Handle deferred list via new API
gpiolib: acpi: Add acpi_gpio_need_run_edge_events_on_boot() getter
gpiolib: acpi: Move quirks to a separate file
Ankit Garg (1):
gve: defer interrupt enabling until NAPI registration
Anshumali Gaur (1):
octeontx2-pf: fix "UBSAN: shift-out-of-bounds error"
Anurag Dutta (1):
spi: cadence-quadspi: Fix clock disable on probe failure path
Ard Biesheuvel (1):
drm/i915: Fix format string truncation warning
Armin Wolf (1):
ACPI: fan: Workaround for 64-bit firmware bug
Arunpravin Paneer Selvam (2):
drm/buddy: Optimize free block management with RB tree
drm/buddy: Separate clear and dirty free block trees
Ashutosh Dixit (1):
drm/xe/oa: Disallow 0 OA property values
Askar Safin (1):
gpiolib: acpi: Add quirk for Dell Precision 7780
Avadhut Naik (1):
x86/mce: Do not clear bank's poll bit in mce_poll_banks on AMD SMCA systems
Bagas Sanjaya (1):
net: bridge: Describe @tunnel_hash member in net_bridge_vlan_group struct
Baokun Li (1):
ext4: align max orphan file size with e2fsprogs limit
Bartosz Golaszewski (1):
platform/x86: intel: chtwc_int33fe: don't dereference swnode args
Ben Collins (1):
powerpc/addnote: Fix overflow on 32-bit builds
Bernd Schubert (2):
fuse: Always flush the page cache before FOPEN_DIRECT_IO write
fuse: Invalidate the page cache after FOPEN_DIRECT_IO write
Biju Das (2):
ASoC: renesas: rz-ssi: Fix channel swap issue in full duplex mode
ASoC: renesas: rz-ssi: Fix rz_ssi_priv::hw_params_cache::sample_width
Bitterblue Smith (1):
wifi: rtl8xxxu: Fix HT40 channel config for RTL8192CU, RTL8723AU
Boris Brezillon (1):
drm/panthor: Flush shmem writes before mapping buffers CPU-uncached
Borislav Petkov (AMD) (1):
x86/microcode/AMD: Select which microcode patch to load
Brian Gerst (1):
x86/xen: Move Xen upcall handler
Brian Vazquez (1):
idpf: reduce mbx_task schedule delay to 300us
Byungchul Park (1):
jbd2: use a weaker annotation in journal handling
Chandrakanth Patil (1):
scsi: mpi3mr: Read missing IOCFacts flag for reply queue full overflow
Chao Yu (9):
f2fs: fix to avoid potential deadlock
f2fs: fix to avoid updating zero-sized extent in extent cache
f2fs: fix return value of f2fs_recover_fsync_data()
f2fs: fix to detect recoverable inode during dryrun of find_fsync_dnodes()
f2fs: use global inline_xattr_slab instead of per-sb slab cache
f2fs: fix to avoid updating compression context during writeback
f2fs: add timeout in f2fs_enable_checkpoint()
f2fs: dump more information for f2fs_{enable,disable}_checkpoint()
f2fs: fix to propagate error from f2fs_enable_checkpoint()
Chen Changcheng (2):
usb: usb-storage: No additional quirks need to be added to the EL-R12 optical drive.
usb: usb-storage: Maintain minimal modifications to the bcdDevice range.
Chen-Yu Tsai (1):
media: mediatek: vcodec: Use spinlock for context list protection lock
ChenXiaoSong (1):
smb/server: fix return value of smb2_ioctl()
Chenghao Duan (2):
samples/ftrace: Adjust LoongArch register restore order in direct calls
LoongArch: Refactor register restoration in ftrace_common_return
Chia-Lin Kao (AceLan) (1):
platform/x86/intel/hid: Add Dell Pro Rugged 10/12 tablet to VGBS DMI quirks
Chingbin Li (1):
Bluetooth: btusb: Add new VID/PID 2b89/6275 for RTL8761BUV
Chris Lu (2):
Bluetooth: btusb: MT7922: Add VID/PID 0489/e170
Bluetooth: btusb: MT7920: Add VID/PID 0489/e135
Christian Hitz (3):
leds: leds-lp50xx: Allow LED 0 to be added to module bank
leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs
leds: leds-lp50xx: Enable chip before any communication
Christian Marangi (1):
mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions
Christoffer Sandberg (1):
Input: i8042 - add TUXEDO InfinityBook Max Gen10 AMD to i8042 quirk table
Christoph Hellwig (2):
xfs: don't leak a locked dquot when xfs_dquot_attach_buf fails
iomap: allocate s_dio_done_wq for async reads as well
Christophe Leroy (1):
spi: fsl-cpm: Check length parity before switching to 16 bit mode
Chuck Lever (2):
NFSD: Clear SECLABEL in the suppattr_exclcreat bitmap
NFSD: NFSv4 file creation neglects setting ACL
Claudiu Beznea (2):
serial: sh-sci: Check that the DMA cookie is valid
pinctrl: renesas: rzg2l: Fix ISEL restore on resume
Colin Ian King (1):
media: pvrusb2: Fix incorrect variable used in trace message
Cong Zhang (1):
blk-mq: skip CPU offline notify on unmapped hctx
Cryolitia PukNgae (1):
ACPICA: Avoid walking the Namespace if start_node is NULL
Dai Ngo (1):
NFSD: use correct reservation type in nfsd4_scsi_fence_client
Damien Le Moal (4):
block: Clear BLK_ZONE_WPLUG_PLUGGED when aborting plugged BIOs
block: freeze queue when updating zone resources
block: handle zone management operations completions
block: fix NULL pointer dereference in blk_zone_reset_all_bio_endio()
Dan Carpenter (3):
nfc: pn533: Fix error code in pn533_acr122_poweron_rdr()
block: rnbd-clt: Fix signedness bug in init_dev()
wifi: cfg80211: sme: store capped length in __cfg80211_connect_result()
Daniel Wagner (1):
nvme-fc: don't hold rport lock when putting ctrl
Darrick J. Wong (2):
xfs: fix stupid compiler warning
xfs: fix a UAF problem in xattr repair
Dave Stevenson (1):
media: i2c: imx219: Fix 1920x1080 mode to use 1:1 pixel aspect ratio
Dave Vasilevsky (1):
powerpc, mm: Fix mprotect on book3s 32-bit
David Hildenbrand (4):
powerpc/pseries/cmm: call balloon_devinfo_init() also without CONFIG_BALLOON_COMPACTION
mm/balloon_compaction: we cannot have isolated pages in the balloon list
mm/balloon_compaction: convert balloon_page_delete() to balloon_page_finalize()
powerpc/pseries/cmm: adjust BALLOON_MIGRATE when migrating pages
David Strahan (1):
scsi: smartpqi: Add support for Hurray Data new controller PCI device
Deepakkumar Karn (1):
net: usb: rtl8150: fix memory leak on usb_submit_urb() failure
Deepanshu Kartikey (4):
btrfs: fix memory leak of fs_devices in degraded seed device path
f2fs: invalidate dentry cache on failed whiteout creation
net: usb: asix: validate PHY address before use
net: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write
Denis Arefev (1):
ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi()
Denis Sergeev (1):
hwmon: (dell-smm) Limit fan multiplier to avoid overflow
Dmitry Skorodumov (1):
ipvlan: Ignore PACKET_LOOPBACK in handle_mode_l2()
Donet Tom (1):
powerpc/64s/slb: Fix SLB multihit issue during SLB preload
Dongli Zhang (1):
KVM: nVMX: Immediately refresh APICv controls as needed on nested VM-Exit
Doug Berger (1):
sched/deadline: only set free_cpus for online runqueues
Duoming Zhou (5):
Input: alps - fix use-after-free bugs caused by dev3_register_work
usb: phy: fsl-usb: Fix use-after-free in delayed work during device removal
media: TDA1997x: Remove redundant cancel_delayed_work in probe
media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe
media: i2c: adv7842: Remove redundant cancel_delayed_work in probe
Encrow Thorne (1):
reset: fix BIT macro reference
Eric Biggers (1):
lib/crypto: x86/blake2s: Fix 32-bit arg treated as 64-bit
Eric Dumazet (3):
ip6_gre: make ip6gre_header() robust
ipv6: adopt dst_dev() helper
net: use dst_dev_rcu() in sk_setup_caps()
Ethan Nelson-Moore (1):
net: usb: sr9700: fix incorrect command used to write single register
Fedor Pchelkin (1):
ext4: fix string copying in parse_apply_sb_mount_options()
Fernando Fernandez Mancera (1):
netfilter: nf_conncount: fix leaked ct in error paths
Filipe Manana (2):
btrfs: do not skip logging new dentries when logging a new name
btrfs: don't log conflicting inode if it's a dir moved in the current transaction
Finn Thain (1):
powerpc: Add reloc_offset() to font bitmap pointer used for bootx_printf()
Florian Westphal (2):
netfilter: nf_nat: remove bogus direction check
selftests: netfilter: packetdrill: avoid failure on HZ=100 kernel
Gal Pressman (1):
ethtool: Avoid overflowing userspace buffer on stats query
George Kennedy (1):
perf/x86/amd: Check event before enable to avoid GPF
Gongwei Li (1):
Bluetooth: btusb: Add new VID/PID 13d3/3533 for RTL8821CE
Greg Kroah-Hartman (1):
Linux 6.12.64
Gregory CLEMENT (1):
MIPS: ftrace: Fix memory corruption when kernel is located beyond 32 bits
Gregory Herrero (1):
i40e: validate ring_len parameter against hardware-specific values
Guangshuo Li (2):
crypto: caam - Add check for kcalloc() in test_len()
e1000: fix OOB in e1000_tbi_should_accept()
Gui-Dong Han (3):
hwmon: (max16065) Use local variable to avoid TOCTOU
hwmon: (w83791d) Convert macros to functions to avoid TOCTOU
hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU
H. Peter Anvin (1):
compiler_types.h: add "auto" as a macro for "__auto_type"
Haibo Chen (1):
ext4: clear i_state_flags when alloc inode
Hal Feng (1):
cpufreq: dt-platdev: Add JH7110S SOC to the allowlist
Hangbin Liu (1):
hsr: hold rcu and dev lock for hsr_get_port_ndev
Hans de Goede (2):
wifi: brcmfmac: Add DMI nvram filename quirk for Acer A1 840 tablet
HID: logitech-dj: Remove duplicate error logging
Haotian Zhang (5):
ALSA: vxpocket: Fix resource leak in vxpocket_probe error path
ALSA: pcmcia: Fix resource leak in snd_pdacf_probe error path
media: rc: st_rc: Fix reset control resource leak
media: cec: Fix debugfs leak on bus_register() failure
media: videobuf2: Fix device reference leak in vb2_dc_alloc error path
Haoxiang Li (7):
MIPS: Fix a reference leak bug in ip22_check_gio()
usb: typec: altmodes/displayport: Drop the device reference in dp_altmode_probe()
usb: renesas_usbhs: Fix a resource leak in usbhs_pipe_malloc()
xfs: fix a memory leak in xfs_buf_item_init()
media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init()
fjes: Add missing iounmap in fjes_hw_init()
nfsd: Drop the client reference in client_states_open()
Harshit Agarwal (1):
sched/rt: Fix race in push_rt_task
Helge Deller (1):
parisc: Do not reprogram affinitiy on ASP chip
Hengqi Chen (2):
LoongArch: BPF: Zero-extend bpf_tail_call() index
LoongArch: BPF: Sign extend kfunc call arguments
Herbert Xu (1):
crypto: seqiv - Do not use req->iv after crypto_aead_encrypt
Honggang LI (1):
RDMA/rtrs: Fix clt_path::max_pages_per_mr calculation
Hongyu Xie (1):
usb: xhci: limit run_graceperiod for only usb 3.0 devices
Huacai Chen (2):
LoongArch: Add new PCI ID for pci_fixup_vgadev()
LoongArch: Fix build errors for CONFIG_RANDSTRUCT
Ian Rogers (1):
libperf cpumap: Fix perf_cpu_map__max for an empty/NULL map
Ido Schimmel (4):
mlxsw: spectrum_router: Fix possible neighbour reference count leak
mlxsw: spectrum_router: Fix neighbour use-after-free
mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats
ipv4: Fix reference count leak when using error routes with nexthop objects
Ilya Dryomov (1):
libceph: make decode_pool() more resilient against corrupted osdmaps
Ilya Maximets (1):
net: openvswitch: fix middle attribute validation in push_nsh() action
Ivan Abramov (2):
media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()
media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread()
Jacky Chou (1):
net: mdio: aspeed: add dummy read to avoid read-after-write issue
Jaegeuk Kim (1):
f2fs: drop inode from the donation list when the last file is closed
Jamal Hadi Salim (1):
net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change
Jan Maslak (1):
drm/xe: Restore engine registers before restarting schedulers after GT reset
Jan Prusakowski (1):
f2fs: ensure node page reads complete before f2fs_put_super() finishes
Jang Ingyu (1):
RDMA/core: Fix logic error in ib_get_gids_from_rdma_hdr()
Jani Nikula (3):
drm/displayid: pass iter to drm_find_displayid_extension()
drm/edid: add DRM_EDID_IDENT_INIT() to initialize struct drm_edid_ident
drm/displayid: add quirk to ignore DisplayID checksum errors
Jared Kangas (1):
mmc: sdhci-esdhc-imx: add alternate ARCH_S32 dependency to Kconfig
Jarkko Sakkinen (3):
KEYS: trusted: Fix a memory leak in tpm2_load_cmd
tpm: Cap the number of PCR banks
tpm2-sessions: Fix tpm2_read_public range checks
Jason Gunthorpe (4):
iommufd/selftest: Make it clearer to gcc that the access is not out of bounds
iommufd/selftest: Check for overflow in IOMMU_TEST_OP_ADD_RESERVED
RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly
RDMA/cm: Fix leaking the multicast GID table reference
Jay Cornwall (1):
drm/amdkfd: Trap handler support for expert scheduling mode
Jens Axboe (2):
io_uring/poll: correctly handle io_poll_add() return value on update
io_uring: fix min_wait wakeups for SQPOLL
Jens Reidel (1):
clk: qcom: dispcc-sm7150: Fix dispcc_mdss_pclk0_clk_src
Jeongjun Park (2):
media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()
media: vidtv: initialize local pointers upon transfer of memory ownership
Jian Shen (3):
net: hns3: using the num_tqps in the vf driver to apply for resources
net: hns3: using the num_tqps to check whether tqp_index is out of range when vf get ring info from mbx
net: hns3: add VLAN id validation before using
Jianpeng Chang (1):
arm64: kdump: Fix elfcorehdr overlap caused by reserved memory processing reorder
Jiayuan Chen (2):
ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT
mm/kasan: fix incorrect unpoisoning in vrealloc for KASAN
Jim Mattson (2):
KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN
KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN
Jim Quinlan (2):
PCI: brcmstb: Set MLW based on "num-lanes" DT property if present
PCI: brcmstb: Fix disabling L0s capability
Jinhui Guo (5):
ipmi: Fix the race between __scan_channels() and deliver_response()
ipmi: Fix __scan_channels() failing to rescan channels
i2c: designware: Disable SMBus interrupts to prevent storms from mis-configured firmware
iommu/amd: Fix pci_segment memleak in alloc_pci_segment()
iommu/amd: Propagate the error code returned by __modify_irte_ga() in modify_irte_ga()
Jiri Pirko (1):
team: fix check for port enabled in team_queue_override_port_prio_changed()
Jiri Slaby (SUSE) (2):
tty: introduce and use tty_port_tty_vhangup() helper
tty: fix tty_port_tty_*hangup() kernel-doc
Joanne Koong (3):
iomap: adjust read range correctly for non-block-aligned positions
iomap: account for unaligned end offsets when truncating read range
fuse: fix readahead reclaim deadlock
Johan Hovold (34):
phy: broadcom: bcm63xx-usbh: fix section mismatches
usb: ohci-nxp: fix device leak on probe failure
usb: phy: isp1301: fix non-OF device reference imbalance
usb: gadget: lpc32xx_udc: fix clock imbalance in error path
amba: tegra-ahb: Fix device leak on SMMU enable
soc: samsung: exynos-pmu: fix device leak on regmap lookup
soc: qcom: pbs: fix device leak on lookup
soc: qcom: ocmem: fix device leak on lookup
soc: apple: mailbox: fix device leak on lookup
soc: amlogic: canvas: fix device leak on lookup
hwmon: (max6697) fix regmap leak on probe failure
iommu/mediatek: fix use-after-free on probe deferral
ASoC: codecs: wcd939x: fix regmap leak on probe failure
ASoC: stm32: sai: fix device leak on probe
ASoC: stm32: sai: fix clk prepare imbalance on probe failure
ASoC: stm32: sai: fix OF node leak on probe
iommu/apple-dart: fix device leak on of_xlate()
iommu/exynos: fix device leak on of_xlate()
iommu/ipmmu-vmsa: fix device leak on of_xlate()
iommu/mediatek-v1: fix device leak on probe_device()
iommu/mediatek-v1: fix device leaks on probe()
iommu/mediatek: fix device leak on of_xlate()
iommu/omap: fix device leaks on probe_device()
iommu/qcom: fix device leak on of_xlate()
iommu/sun50i: fix device leak on of_xlate()
iommu/tegra: fix device leak on probe_device()
mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup
media: platform: mtk-mdp3: fix device leaks at probe
media: vpif_capture: fix section mismatch
media: vpif_display: fix section mismatch
drm/mediatek: Fix probe resource leaks
drm/mediatek: Fix probe memory leak
drm/mediatek: Fix probe device leaks
serial: core: fix OF node leak
Johannes Berg (2):
wifi: cfg80211: stop radar detection in cfg80211_leave()
wifi: cfg80211: use cfg80211_leave() in iftype change
John Garry (1):
scsi: scsi_debug: Fix atomic write enable module param description
Jonas Gorski (1):
net: dsa: b53: skip multicast entries for fdb_dump()
Jonathan Kim (1):
drm/amdkfd: bump minimum vgpr size for gfx1151
Josef Bacik (1):
btrfs: don't rewrite ret from inode_permission
Joshua Hay (8):
idpf: add support for SW triggered interrupts
idpf: trigger SW interrupt when exiting wb_on_itr mode
idpf: add support for Tx refillqs in flow scheduling mode
idpf: improve when to set RE bit logic
idpf: simplify and fix splitq Tx packet rollback error path
idpf: replace flow scheduling buffer ring with buffer pool
idpf: stop Tx if there are insufficient buffer resources
idpf: remove obsolete stashing code
Joshua Rogers (4):
svcrdma: return 0 on success from svc_rdma_copy_inline_range
svcrdma: use rc_pageoff for memcpy byte offset
SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf
svcrdma: bound check rq_pages index in inline path
Josua Mayer (1):
clk: mvebu: cp110 add CLK_IGNORE_UNUSED to pcie_x10, pcie_x11 & pcie_x4
Juergen Gross (1):
x86/xen: Fix sparse warning in enlighten_pv.c
Junbeom Yeom (1):
erofs: fix unexpected EIO under memory pressure
Junjie Cao (1):
Input: ti_am335x_tsc - fix off-by-one error in wire_order validation
Junrui Luo (6):
caif: fix integer underflow in cffrml_receive()
hwmon: (ibmpex) fix use-after-free in high/low store
scsi: aic94xx: fix use-after-free in device removal path
ALSA: wavefront: Clear substream pointers on close
platform/x86: ibm_rtl: fix EBDA signature search pointer arithmetic
platform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing
Junxiao Chang (2):
drm/me/gsc: mei interrupt top half should be in irq disabled context
mei: gsc: add dependency on Xe driver
Justin Iurman (1):
net: ipv6: ioam6: use consistent dst names
Justin Tee (1):
nvme-fabrics: add ENOKEY to no retry criteria for authentication failures
Kalesh AP (1):
RDMA/bnxt_re: Fix to use correct page size for PDE table
Karina Yankevich (1):
ext4: xattr: fix null pointer deref in ext4_raw_inode()
Kartik Rajput (1):
soc/tegra: fuse: Do not register SoC device on ACPI boot
Kaushlendra Kumar (1):
tools/mm/page_owner_sort: fix timestamp comparison for stable sorting
Kevin Tian (1):
vfio/pci: Disable qword access to the PCI ROM bar
Kohei Enju (1):
iavf: fix off-by-one issues in iavf_config_rss_reg()
Konstantin Komarov (3):
fs/ntfs3: Support timestamps prior to epoch
fs/ntfs3: check for shutdown in fsync
fs/ntfs3: fix mount failure for sparse runs in run_unpack()
Krzysztof Kozlowski (8):
dt-bindings: PCI: qcom,pcie-sc7280: Add missing required power-domains and resets
dt-bindings: PCI: qcom,pcie-sc8280xp: Add missing required power-domains and resets
dt-bindings: PCI: qcom,pcie-sm8150: Add missing required power-domains and resets
dt-bindings: PCI: qcom,pcie-sm8250: Add missing required power-domains and resets
dt-bindings: PCI: qcom,pcie-sm8350: Add missing required power-domains and resets
dt-bindings: PCI: qcom,pcie-sm8450: Add missing required power-domains and resets
dt-bindings: PCI: qcom,pcie-sm8550: Add missing required power-domains and resets
mfd: max77620: Fix potential IRQ chip conflict when probing two devices
Krzysztof Niemiec (1):
drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer
Laurent Pinchart (2):
media: v4l2-mem2mem: Fix outdated documentation
media: amphion: Make some vpu_v4l2 functions static
Li Chen (1):
block: rate-limit capacity change info log
Li Nan (1):
md: Fix static checker warning in analyze_sbs
Li Qiang (1):
via_wdt: fix critical boot hang due to unnamed resource allocation
Lizhi Xu (1):
usbip: Fix locking bug in RT-enabled kernels
Lu Baolu (1):
iommu: disable SVA when CONFIG_X86 is set
Lukas Wunner (1):
PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths
Lyude Paul (1):
drm/nouveau/dispnv50: Don't call drm_atomic_get_crtc_state() in prepare_fb
Ma Ke (4):
perf: arm_cspmu: fix error handling in arm_cspmu_impl_unregister()
USB: lpc32xx_udc: Fix error handling in probe
intel_th: Fix error handling in intel_th_output_open
i2c: amd-mp2: fix reference leak in MP2 PCI device
Maciej Wieczor-Retman (2):
kasan: refactor pcpu kasan vmalloc unpoison
kasan: unpoison vms[area] addresses with a common tag
Mahesh Rao (1):
firmware: stratix10-svc: Add mutex in stratix10 memory management
Marc Kleine-Budde (1):
can: gs_usb: gs_can_open(): fix error handling
Marc Zyngier (1):
arm64: Revamp HCR_EL2.E2H RES1 detection
Marek Szyprowski (1):
media: samsung: exynos4-is: fix potential ABBA deadlock on init
Marijn Suijten (1):
drm/panel: sony-td4353-jdi: Enable prepare_prev_first
Mario Limonciello (3):
Revert "drm/amd/display: Fix pbn to kbps Conversion"
drm/amdkfd: Export the cwsr_size and ctl_stack_size to userspace
gpiolib: acpi: Add a quirk for Acer Nitro V15
Mario Limonciello (AMD) (2):
Revert "drm/amd: Skip power ungate during suspend for VPE"
gpiolib: acpi: Add quirk for ASUS ProArt PX13
Mark Pearson (1):
usb: typec: ucsi: Handle incorrect num_connectors capability
Mark Rutland (1):
KVM: arm64: Initialize HCR_EL2.E2H early
Matthew Brost (2):
drm/xe: Adjust long-running workload timeslices to reasonable values
drm/xe: Use usleep_range for accurate long-running workload timeslicing
Matthew Wilcox (Oracle) (2):
ntfs: Do not overwrite uptodate pages
idr: fix idr_alloc() returning an ID out of range
Matthias Schiffer (1):
ti-sysc: allow OMAP2 and OMAP4 timers to be reserved on AM33xx
Matthieu Baerts (NGI0) (2):
selftests: mptcp: pm: ensure unknown flags are ignored
mptcp: pm: ignore unknown endpoint flags
Max Chou (1):
Bluetooth: btusb: Add new VID/PID 0x0489/0xE12F for RTL8852BE-VT
Maxim Levitsky (1):
KVM: x86: Don't clear async #PF queue when CR0.PG is disabled (e.g. on #SMI)
Miaoqian Lin (5):
usb: dwc3: of-simple: fix clock resource leak in dwc3_of_simple_probe
cpufreq: nforce2: fix reference count leak in nforce2
virtio: vdpa: Fix reference count leak in octep_sriov_enable()
media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled
drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse()
Michael Chan (1):
bnxt_en: Fix XDP_TX path
Michael Margolin (1):
RDMA/efa: Remove possible negative shift
Michal Schmidt (1):
RDMA/irdma: avoid invalid read in irdma_net_event
Mike Snitzer (2):
nfsd: update percpu_ref to manage references on nfsd_net
nfsd: rename nfsd_serv_ prefixed methods and variables with nfsd_net_
Mikhail Malyshev (1):
kbuild: Use objtree for module signing key path
Mikulas Patocka (1):
dm-bufio: align write boundary on physical block size
Ming Qian (3):
media: amphion: Cancel message work before releasing the VPU core
media: amphion: Add a frame flush mode for decoder
media: amphion: Remove vpu_vb_is_codecconfig
Minseong Kim (1):
Input: lkkbd - disable pending work before freeing device
Miquel Raynal (6):
mtd: spi-nor: winbond: Add support for W25Q01NWxxIQ chips
mtd: spi-nor: winbond: Add support for W25Q01NWxxIM chips
mtd: spi-nor: winbond: Add support for W25Q02NWxxIM chips
mtd: spi-nor: winbond: Add support for W25H512NWxxAM chips
mtd: spi-nor: winbond: Add support for W25H01NWxxAM chips
mtd: spi-nor: winbond: Add support for W25H02NWxxAM chips
Morning Star (1):
wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()
Moshe Shemesh (2):
net/mlx5: fw reset, clear reset requested on drain_fw_reset
net/mlx5: Drain firmware reset in shutdown callback
Nam Cao (2):
hrtimers: Introduce hrtimer_update_function()
serial: xilinx_uartps: Use helper function hrtimer_update_function()
Namjae Jeon (3):
ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency
ksmbd: Fix refcount leak when invalid session is found on session lookup
ksmbd: fix buffer validation by including null terminator size in EA length
Nathan Chancellor (1):
clk: samsung: exynos-clkout: Assign .num before accessing .hws
NeilBrown (1):
lockd: fix vfs_test_lock() calls
Nicolas Dufresne (2):
media: verisilicon: Fix CPU stalls on G2 bus error
media: verisilicon: Protect G2 HEVC decoder against invalid DPB index
Nicolas Ferre (2):
ARM: dts: microchip: sama5d2: fix spi flexcom fifo size to 32
ARM: dts: microchip: sama7g5: fix uart fifo size to 32
Nicolin Chen (1):
iommufd/selftest: Update hw_info coverage for an input data_type
Nikolay Kuratov (1):
drm/msm/dpu: Add missing NULL pointer check for pingpong interface
Nuno Sá (1):
hwmon: (ltc4282): Fix reset_history file permissions
Nysal Jan K.A. (1):
powerpc/kexec: Enable SMT before waking offline CPUs
Ondrej Mosnacek (1):
bpf, arm64: Do not audit capability check in do_jit()
Pablo Neira Ayuso (1):
netfilter: nf_tables: remove redundant chain validation on register store
Pankaj Raghav (1):
scripts/faddr2line: Fix "Argument list too long" error
Paolo Abeni (2):
mptcp: schedule rtx timer only after pushing data
mptcp: avoid deadlock on fallback while reinjecting
Pedro Demarchi Gomes (1):
ntfs: set dummy blocksize to read boot_block when mounting
Pei Xiao (1):
iio: adc: ti_am335x_adc: Limit step_avg to valid range for gcc complains
Peng Fan (1):
firmware: imx: scu-irq: Init workqueue before request mbox channel
Pengjie Zhang (2):
ACPI: PCC: Fix race condition by removing static qualifier
ACPI: CPPC: Fix missing PCC check for guaranteed_perf
Peter Wang (1):
scsi: ufs: host: mediatek: Fix shutdown/suspend race condition
Peter Zijlstra (3):
sched/fair: Revert max_newidle_lb_cost bump
x86/ptrace: Always inline trivial accessors
sched/eevdf: Fix min_vruntime vs avg_vruntime
Pierre-Eric Pelloux-Prayer (1):
drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma
Pierre-Louis Bossart (1):
soundwire: stream: extend sdw_alloc_stream() to take 'type' parameter
Ping Cheng (1):
HID: input: map HID_GD_Z to ABS_DISTANCE for stylus/pen
Ping-Ke Shih (1):
wifi: rtw88: limit indirect IO under powered off for RTL8822CS
Prithvi Tambewagh (2):
io_uring: fix filename leak in __io_openat_prep()
ocfs2: fix kernel BUG in ocfs2_find_victim_chain
Przemyslaw Korba (1):
i40e: fix scheduling in set_rx_mode
Pwnverse (1):
net: rose: fix invalid array index in rose_kill_by_device()
Qianchang Zhao (2):
ksmbd: vfs: fix race on m_flags in vfs_cache
ksmbd: skip lock-range check on equal size to avoid size==0 underflow
Qiang Ma (1):
LoongArch: Correct the calculation logic of thread_count
Qu Wenruo (2):
btrfs: fix a potential path leak in print_data_reloc_error()
btrfs: scrub: always update btrfs_scrub_progress::last_physical
Quan Zhou (4):
wifi: mt76: mt792x: fix wifi init fail by setting MCU_RUNNING after CLC load
wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend
wifi: mt76: mt7925: fix CLC command timeout when suspend/resume
wifi: mt76: mt7925: add handler to hif suspend/resume event
Rafael J. Wysocki (2):
cpuidle: governors: teo: Drop misguided target residency check
PM: runtime: Do not clear needs_force_resume with enabled runtime PM
Raju Rangoju (1):
amd-xgbe: reset retries and mode on RX adapt failures
Ran Xiaokai (1):
mm/page_owner: fix memory leak in page_owner_stack_fops->release()
Raphael Pinsonneault-Thibeault (1):
Bluetooth: btusb: revert use of devm_kzalloc in btusb
Raviteja Laggyshetty (1):
interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes
Ray Wu (2):
drm/amd/display: Fix scratch registers offsets for DCN35
drm/amd/display: Fix scratch registers offsets for DCN351
Rene Rebe (2):
floppy: fix for PAGE_SIZE != 4KB
fbdev: gbefb: fix to use physical address instead of dma address
René Rebe (3):
r8169: fix RTL8117 Wake-on-Lan in DASH mode
fbdev: tcx.c fix mem_map to correct smem_start offset
drm/mgag200: Fix big-endian support
Rong Zhang (1):
x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo
Sai Krishna Potthuri (1):
mmc: sdhci-of-arasan: Increase CD stable timeout to 2 seconds
Sakari Ailus (1):
ACPI: property: Use ACPI functions in acpi_graph_get_next_endpoint() only
Sandipan Das (1):
perf/x86/amd/uncore: Fix the return value of amd_uncore_df_event_init() on error
Sanjay Yadav (1):
drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()
Sarthak Garg (1):
mmc: sdhci-msm: Avoid early clock doubling during HS400 transition
Scott Mayhew (1):
net/handshake: duplicate handshake cancellations leak socket
Sean Christopherson (4):
KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing memslot
KVM: x86: WARN if hrtimer callback for periodic APIC timer fires with period=0
KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN)
KVM: nSVM: Clear exit_code_hi in VMCB when synthesizing nested VM-Exits
SeongJae Park (16):
mm/damon/tests/sysfs-kunit: handle alloc failures on damon_sysfs_test_add_targets()
mm/damon/tests/vaddr-kunit: handle alloc failures in damon_test_split_evenly_fail()
mm/damon/tests/vaddr-kunit: handle alloc failures on damon_test_split_evenly_succ()
mm/damon/tests/core-kunit: handle alloc failures on damon_test_split_at()
mm/damon/tests/core-kunit: handle allocation failures in damon_test_regions()
mm/damon/tests/core-kunit: handle memory failure from damon_test_target()
mm/damon/tests/core-kunit: handle memory alloc failure from damon_test_aggregate()
mm/damon/tests/core-kunit: handle alloc failures on dasmon_test_merge_regions_of()
mm/damon/tests/core-kunit: handle alloc failures on damon_test_merge_two()
mm/damon/tests/core-kunit: handle alloc failures in damon_test_set_regions()
mm/damon/tests/core-kunit: handle alloc failures in damon_test_update_monitoring_result()
mm/damon/tests/core-kunit: handle alloc failures in damon_test_ops_registration()
mm/damon/tests/core-kunit: handle alloc failure on damon_test_set_attrs()
mm/damon/tests/core-kunit: handle alloc failures on damon_test_split_regions_of()
mm/damon/tests/core-kunit: handle alloc failres in damon_test_new_filter()
mm/damon/tests/vaddr-kunit: handle alloc failures on damon_do_test_apply_three_regions()
Seunghwan Baek (1):
scsi: ufs: core: Add ufshcd_update_evt_hist() for UFS suspend error
Shardul Bankar (1):
nfsd: fix memory leak in nfsd_create_serv error paths
Shaurya Rane (1):
net/hsr: fix NULL pointer dereference in prp_get_untagged_frame()
Shay Drory (3):
net/mlx5: fw_tracer, Validate format string parameters
net/mlx5: fw_tracer, Handle escaped percent properly
net/mlx5: Serialize firmware reset with devlink
Sheng Yong (1):
f2fs: clear SBI_POR_DOING before initing inmem curseg
Shengjiu Wang (1):
ASoC: ak4458: remove the reset operation in probe and remove
Shengming Hu (2):
fgraph: Initialize ftrace_ops->private for function graph ops
fgraph: Check ftrace_pids_enabled on registration for early filtering
Shipei Qu (1):
ALSA: usb-mixer: us16x08: validate meter packet indices
Shivani Agarwal (1):
crypto: af_alg - zero initialize memory allocated via sock_kmalloc
Shravan Kumar Ramani (1):
platform/mellanox: mlxbf-pmc: Remove trailing whitespaces from event names
Shuhao Fu (1):
cpufreq: s5pv210: fix refcount leak
Shuicheng Lin (2):
drm/xe: Limit num_syncs to prevent oversized allocations
drm/xe/oa: Limit num_syncs to prevent oversized allocations
Siddharth Vadapalli (1):
arm64: dts: ti: k3-j721e-sk: Fix pinmux for pin Y1 used by power regulator
Simon Richter (1):
drm/ttm: Avoid NULL pointer deref for evicted BOs
Slavin Liu (1):
ipvs: fix ipv4 null-ptr-deref in route error path
Song Liu (1):
livepatch: Match old_sympos 0 and 1 in klp_find_func()
Srinivas Kandagatla (7):
rpmsg: glink: fix rpmsg device leak
ASoC: codecs: lpass-tx-macro: fix SM6115 support
ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr
ASoC: qcom: q6asm-dai: perform correct state check before closing
ASoC: qcom: q6adm: the the copp device only during last instance
ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment.
ASoC: qcom: sdw: fix memory leak for sdw_stream_runtime
Stanimir Varbanov (1):
PCI: brcmstb: Reuse pcie_cfg_data structure
Stefan Haberland (1):
s390/dasd: Fix gendisk parent after copy pair swap
Stefano Garzarella (1):
vhost/vsock: improve RCU read sections around vhost_vsock_get()
Steven Rostedt (3):
ktest.pl: Fix uninitialized var in config-bisect.pl
tracing: Do not register unsupported perf events
tracing: Fix fixed array of synthetic event
Sven Eckelmann (Plasma Cloud) (1):
wifi: mt76: Fix DTS power-limits on little endian systems
Sven Schnelle (3):
s390/ipl: Clear SBP flag when bootprog is set
parisc: entry.S: fix space adjustment on interruption for 64-bit userspace
parisc: entry: set W bit for !compat tasks in syscall_restore_rfi()
Takashi Iwai (1):
ALSA: wavefront: Use guard() for spin locks
Tejun Heo (2):
sched_ext: Factor out local_dsq_post_enq() from dispatch_enqueue()
sched_ext: Fix missing post-enqueue handling in move_local_task_to_local_dsq()
Tetsuo Handa (3):
hfsplus: Verify inode mode when loading from disk
jbd2: use a per-journal lock_class_key for jbd2_trans_commit_key
RDMA/core: always drop device refcount in ib_del_sub_device_and_put()
Thomas De Schampheleire (1):
kbuild: fix compilation of dtb specified on command-line without make rule
Thomas Fourier (4):
block: rnbd-clt: Fix leaked ID in init_dev()
platform/x86: msi-laptop: add missing sysfs_remove_group()
firewire: nosy: Fix dma_free_coherent() size
RDMA/bnxt_re: fix dma_free_coherent() pointer
Thomas Gleixner (2):
x86/msi: Make irq_retrigger() functional for posted MSI
hrtimers: Make hrtimer_update_function() less expensive
Thomas Hellström (2):
drm/xe/bo: Don't include the CCS metadata in the dma-buf sg-table
drm/xe: Drop preempt-fences when destroying imported dma-bufs.
Thomas Weißschuh (1):
leds: leds-cros_ec: Skip LEDs without color components
Thomas Zimmermann (1):
drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg()
Thorsten Blum (2):
net: phy: marvell-88q2xxx: Fix clamped value in mv88q2xxx_hwmon_write
fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing
Tianchu Chen (1):
char: applicom: fix NULL pointer dereference in ac_ioctl
Tiezhu Yang (1):
LoongArch: Use unsigned long for _end and _text
Toke Høiland-Jørgensen (1):
net: openvswitch: Avoid needlessly taking the RTNL on vport destroy
Tony Battersby (4):
scsi: qla2xxx: Fix lost interrupts with qlini_mode=disabled
scsi: qla2xxx: Fix initiator mode with qlini_mode=exclusive
scsi: qla2xxx: Use reinit_completion on mbx_intr_comp
scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path"
Tuo Li (1):
md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()
Tzung-Bi Shih (1):
platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver
Udipto Goswami (1):
usb: dwc3: keep susphy enabled during exit to avoid controller faults
Uladzislau Rezki (Sony) (1):
dm-ebs: Mark full buffer dirty even on partial write
Viacheslav Dubeyko (2):
hfsplus: fix volume corruption issue for generic/070
hfsplus: fix volume corruption issue for generic/073
Victor Nogueira (1):
net/sched: ets: Remove drr class from the active list if it changes to strict
Vivian Wang (1):
lib/crypto: riscv/chacha: Avoid s0/fp register
Vladimir Oltean (1):
net: dsa: fix missing put_device() in dsa_tree_find_first_conduit()
Wang Liang (1):
netrom: Fix memory leak in nr_sendmsg()
WangYuli (1):
LoongArch: Use __pmd()/__pte() for swap entry conversions
Wei Fang (3):
net: fec: ERR007885 Workaround for XDP TX path
net: enetc: do not transmit redirected XDP frames when the link is down
net: stmmac: fix the crash issue for zero copy XDP_TX action
Wenhua Lin (1):
serial: sprd: Return -EPROBE_DEFER when uart clock is not ready
Wentao Guan (1):
gpio: regmap: Fix memleak in error path in gpio_regmap_register()
Wentao Liang (1):
pmdomain: imx: Fix reference count leak in imx_gpc_probe()
Will Rosenberg (1):
ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()
Xiao Ni (1):
md/raid10: wait barrier before returning discard request with REQ_NOWAIT
Xiaole He (2):
f2fs: fix age extent cache insertion skip on counter overflow
f2fs: fix uninitialized one_time_gc in victim_sel_policy
Xiaolei Wang (1):
net: macb: Relocate mog_init_rings() callback from macb_mac_link_up() to macb_open()
Yang Chenzhi (1):
hfsplus: fix missing hfs_bnode_get() in __hfs_bnode_create
Ye Bin (1):
jbd2: fix the inconsistency between checksum and data in memory for journal sb
Yeoreum Yun (1):
smc91x: fix broken irq-context in PREEMPT_RT
Yi Liu (1):
iommufd/selftest: Add coverage for reporting max_pasid_log2 via IOMMU_HW_INFO
Yipeng Zou (1):
selftests/ftrace: traceonoff_triggers: strip off names
Yongjian Sun (1):
ext4: fix incorrect group number assertion in mb_check_buddy
Yongxin Liu (1):
x86/fpu: Fix FPU state core dump truncation on CPUs with no extended xfeatures
Yosry Ahmed (2):
KVM: nSVM: Avoid incorrect injection of SVM_EXIT_CR0_SEL_WRITE
KVM: nSVM: Propagate SVM_EXIT_CR0_SEL_WRITE correctly for LMSW emulation
Yuezhang Mo (2):
exfat: fix remount failure in different process environments
exfat: zero out post-EOF page cache on file extension
Zheng Yejian (1):
kallsyms: Fix wrong "big" kernel symbol type read from procfs
Zhichi Lin (1):
scs: fix a wrong parameter in __scs_magic
Zilin Guan (3):
cifs: Fix memory and information leak in smb3_reconfigure()
vfio/pds: Fix memory leak in pds_vfio_dirty_enable()
ksmbd: Fix memory leak in get_file_all_info()
Zqiang (2):
sched_ext: Fix incorrect sched_class settings for per-cpu migration tasks
usbnet: Fix using smp_processor_id() in preemptible code warnings
caoping (1):
net/handshake: restore destructor on submit failure
fuqiang wang (2):
KVM: x86: Explicitly set new periodic hrtimer expiration in apic_timer_fn()
KVM: x86: Fix VM hard lockup after prolonged inactivity with periodic HV timer
j.turek (1):
serial: xilinx_uartps: fix rs485 delay_rts_after_send
xu xin (1):
mm/ksm: fix exec/fork inheritance support for prctl
Łukasz Bartosik (1):
xhci: dbgtty: fix device unregister: fixup
21 hours, 33 minutes
- 1
- 1
FAILED: patch "[PATCH] xhci: dbgtty: fix device unregister: fixup" failed to apply to 6.12-stable tree
by gregkh@linuxfoundation.org
The patch below does not apply to the 6.12-stable tree.
If someone wants it applied there, or to any other stable or longterm
tree, then please email the backport, including the original git commit
id to <stable(a)vger.kernel.org>.
To reproduce the conflict and resubmit, you may use the following commands:
git fetch https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ linux-6.12.y
git checkout FETCH_HEAD
git cherry-pick -x 74098cc06e753d3ffd8398b040a3a1dfb65260c0
# <resolve conflicts, build, test, etc.>
git commit -s
git send-email --to '<stable(a)vger.kernel.org>' --in-reply-to '2025122917-unsheathe-breeder-0ac2@gregkh' --subject-prefix 'PATCH 6.12.y' HEAD^..
Possible dependencies:
thanks,
greg k-h
------------------ original commit in Linus's tree ------------------
From 74098cc06e753d3ffd8398b040a3a1dfb65260c0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C5=81ukasz=20Bartosik?= <ukaszb(a)chromium.org>
Date: Thu, 27 Nov 2025 11:16:44 +0000
Subject: [PATCH] xhci: dbgtty: fix device unregister: fixup
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
This fixup replaces tty_vhangup() call with call to
tty_port_tty_vhangup(). Both calls hangup tty device
synchronously however tty_port_tty_vhangup() increases
reference count during the hangup operation using
scoped_guard(tty_port_tty).
Cc: stable <stable(a)kernel.org>
Fixes: 1f73b8b56cf3 ("xhci: dbgtty: fix device unregister")
Signed-off-by: Łukasz Bartosik <ukaszb(a)chromium.org>
Link: https://patch.msgid.link/20251127111644.3161386-1-ukaszb@google.com
Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
diff --git a/drivers/usb/host/xhci-dbgtty.c b/drivers/usb/host/xhci-dbgtty.c
index 57cdda4e09c8..90282e51e23e 100644
--- a/drivers/usb/host/xhci-dbgtty.c
+++ b/drivers/usb/host/xhci-dbgtty.c
@@ -554,7 +554,7 @@ static void xhci_dbc_tty_unregister_device(struct xhci_dbc *dbc)
* Hang up the TTY. This wakes up any blocked
* writers and causes subsequent writes to fail.
*/
- tty_vhangup(port->port.tty);
+ tty_port_tty_vhangup(&port->port);
tty_unregister_device(dbc_tty_driver, port->minor);
xhci_dbc_tty_exit_port(port);
21 hours, 34 minutes
- 4
- 5
[PATCH 6.12 000/567] 6.12.64-rc1 review
by Greg Kroah-Hartman
This is the start of the stable review cycle for the 6.12.64 release.
There are 567 patches in this series, all will be posted as a response
to this one. If anyone has any issues with these being applied, please
let me know.
Responses should be made by Thu, 08 Jan 2026 17:03:16 +0000.
Anything received after that time might be too late.
The whole patch series can be found in one patch at:
https://www.kernel.org/pub/linux/kernel/v6.x/stable-review/patch-6.12.64-rc…
or in the git tree and branch at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-6.12.y
and the diffstat can be found below.
thanks,
greg k-h
-------------
Pseudo-Shortlog of commits:
Greg Kroah-Hartman <gregkh(a)linuxfoundation.org>
Linux 6.12.64-rc1
Damien Le Moal <dlemoal(a)kernel.org>
block: fix NULL pointer dereference in blk_zone_reset_all_bio_endio()
Christoph Hellwig <hch(a)lst.de>
iomap: allocate s_dio_done_wq for async reads as well
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/vaddr-kunit: handle alloc failures on damon_do_test_apply_three_regions()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failres in damon_test_new_filter()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failures on damon_test_split_regions_of()
Kevin Tian <kevin.tian(a)intel.com>
vfio/pci: Disable qword access to the PCI ROM bar
Ming Qian <ming.qian(a)oss.nxp.com>
media: amphion: Remove vpu_vb_is_codecconfig
Laurent Pinchart <laurent.pinchart+renesas(a)ideasonboard.com>
media: amphion: Make some vpu_v4l2 functions static
Ming Qian <ming.qian(a)oss.nxp.com>
media: amphion: Add a frame flush mode for decoder
Chen-Yu Tsai <wenst(a)chromium.org>
media: mediatek: vcodec: Use spinlock for context list protection lock
David Hildenbrand <david(a)redhat.com>
powerpc/pseries/cmm: adjust BALLOON_MIGRATE when migrating pages
David Hildenbrand <david(a)redhat.com>
mm/balloon_compaction: convert balloon_page_delete() to balloon_page_finalize()
David Hildenbrand <david(a)redhat.com>
mm/balloon_compaction: we cannot have isolated pages in the balloon list
Jim Quinlan <james.quinlan(a)broadcom.com>
PCI: brcmstb: Fix disabling L0s capability
Jim Quinlan <james.quinlan(a)broadcom.com>
PCI: brcmstb: Set MLW based on "num-lanes" DT property if present
Stanimir Varbanov <svarbanov(a)suse.de>
PCI: brcmstb: Reuse pcie_cfg_data structure
Biju Das <biju.das.jz(a)bp.renesas.com>
ASoC: renesas: rz-ssi: Fix rz_ssi_priv::hw_params_cache::sample_width
Srinivas Kandagatla <srinivas.kandagatla(a)oss.qualcomm.com>
ASoC: qcom: sdw: fix memory leak for sdw_stream_runtime
Pierre-Louis Bossart <pierre-louis.bossart(a)linux.dev>
soundwire: stream: extend sdw_alloc_stream() to take 'type' parameter
Damien Le Moal <dlemoal(a)kernel.org>
block: handle zone management operations completions
Biju Das <biju.das.jz(a)bp.renesas.com>
ASoC: renesas: rz-ssi: Fix channel swap issue in full duplex mode
Ankit Garg <nktgrg(a)google.com>
gve: defer interrupt enabling until NAPI registration
Thomas Gleixner <tglx(a)linutronix.de>
hrtimers: Make hrtimer_update_function() less expensive
Joshua Hay <joshua.a.hay(a)intel.com>
idpf: remove obsolete stashing code
Joshua Hay <joshua.a.hay(a)intel.com>
idpf: stop Tx if there are insufficient buffer resources
Joshua Hay <joshua.a.hay(a)intel.com>
idpf: replace flow scheduling buffer ring with buffer pool
Joshua Hay <joshua.a.hay(a)intel.com>
idpf: simplify and fix splitq Tx packet rollback error path
Joshua Hay <joshua.a.hay(a)intel.com>
idpf: improve when to set RE bit logic
Joshua Hay <joshua.a.hay(a)intel.com>
idpf: add support for Tx refillqs in flow scheduling mode
Joshua Hay <joshua.a.hay(a)intel.com>
idpf: trigger SW interrupt when exiting wb_on_itr mode
Joshua Hay <joshua.a.hay(a)intel.com>
idpf: add support for SW triggered interrupts
Quan Zhou <quan.zhou(a)mediatek.com>
wifi: mt76: mt7925: add handler to hif suspend/resume event
Quan Zhou <quan.zhou(a)mediatek.com>
wifi: mt76: mt7925: fix CLC command timeout when suspend/resume
Quan Zhou <quan.zhou(a)mediatek.com>
wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend
Dave Stevenson <dave.stevenson(a)raspberrypi.com>
media: i2c: imx219: Fix 1920x1080 mode to use 1:1 pixel aspect ratio
Borislav Petkov (AMD) <bp(a)alien8.de>
x86/microcode/AMD: Select which microcode patch to load
Jiri Slaby (SUSE) <jirislaby(a)kernel.org>
tty: fix tty_port_tty_*hangup() kernel-doc
Alexander Stein <alexander.stein(a)ew.tq-group.com>
serial: core: Fix serial device initialization
Zqiang <qiang.zhang(a)linux.dev>
usbnet: Fix using smp_processor_id() in preemptible code warnings
Eric Dumazet <edumazet(a)google.com>
net: use dst_dev_rcu() in sk_setup_caps()
Eric Dumazet <edumazet(a)google.com>
ipv6: adopt dst_dev() helper
Justin Iurman <justin.iurman(a)uliege.be>
net: ipv6: ioam6: use consistent dst names
Boris Brezillon <boris.brezillon(a)collabora.com>
drm/panthor: Flush shmem writes before mapping buffers CPU-uncached
Xiao Ni <xni(a)redhat.com>
md/raid10: wait barrier before returning discard request with REQ_NOWAIT
Andrii Melnychenko <a.melnychenko(a)vyos.io>
netfilter: nft_ct: add seqadj extension for natted connections
Askar Safin <safinaskar(a)gmail.com>
gpiolib: acpi: Add quirk for Dell Precision 7780
Mario Limonciello (AMD) <superm1(a)kernel.org>
gpiolib: acpi: Add quirk for ASUS ProArt PX13
Mario Limonciello <mario.limonciello(a)amd.com>
gpiolib: acpi: Add a quirk for Acer Nitro V15
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
gpiolib: acpi: Move quirks to a separate file
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
gpiolib: acpi: Add acpi_gpio_need_run_edge_events_on_boot() getter
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
gpiolib: acpi: Handle deferred list via new API
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
gpiolib: acpi: Switch to use enum in acpi_gpio_in_ignore_list()
Chao Yu <chao(a)kernel.org>
f2fs: fix to propagate error from f2fs_enable_checkpoint()
Chao Yu <chao(a)kernel.org>
f2fs: dump more information for f2fs_{enable,disable}_checkpoint()
Chao Yu <chao(a)kernel.org>
f2fs: add timeout in f2fs_enable_checkpoint()
Sheng Yong <shengyong(a)oppo.com>
f2fs: clear SBI_POR_DOING before initing inmem curseg
j.turek <jakub.turek(a)elsta.tech>
serial: xilinx_uartps: fix rs485 delay_rts_after_send
Nam Cao <namcao(a)linutronix.de>
serial: xilinx_uartps: Use helper function hrtimer_update_function()
Nam Cao <namcao(a)linutronix.de>
hrtimers: Introduce hrtimer_update_function()
Jani Nikula <jani.nikula(a)intel.com>
drm/displayid: add quirk to ignore DisplayID checksum errors
Tejun Heo <tj(a)kernel.org>
sched_ext: Fix missing post-enqueue handling in move_local_task_to_local_dsq()
Tejun Heo <tj(a)kernel.org>
sched_ext: Factor out local_dsq_post_enq() from dispatch_enqueue()
Jarkko Sakkinen <jarkko(a)kernel.org>
tpm2-sessions: Fix tpm2_read_public range checks
Damien Le Moal <dlemoal(a)kernel.org>
block: freeze queue when updating zone resources
Nicolas Ferre <nicolas.ferre(a)microchip.com>
ARM: dts: microchip: sama7g5: fix uart fifo size to 32
Joshua Rogers <linux(a)joshua.hu>
svcrdma: bound check rq_pages index in inline path
xu xin <xu.xin16(a)zte.com.cn>
mm/ksm: fix exec/fork inheritance support for prctl
Matthieu Baerts (NGI0) <matttbe(a)kernel.org>
mptcp: pm: ignore unknown endpoint flags
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
serial: core: Restore sysfs fwnode information
Johan Hovold <johan(a)kernel.org>
serial: core: fix OF node leak
Chao Yu <chao(a)kernel.org>
f2fs: fix to avoid updating compression context during writeback
Jaegeuk Kim <jaegeuk(a)kernel.org>
f2fs: drop inode from the donation list when the last file is closed
Chao Yu <chao(a)kernel.org>
f2fs: use global inline_xattr_slab instead of per-sb slab cache
Chao Yu <chao(a)kernel.org>
f2fs: fix to detect recoverable inode during dryrun of find_fsync_dnodes()
Łukasz Bartosik <ukaszb(a)chromium.org>
xhci: dbgtty: fix device unregister: fixup
Jiri Slaby (SUSE) <jirislaby(a)kernel.org>
tty: introduce and use tty_port_tty_vhangup() helper
Ye Bin <yebin10(a)huawei.com>
jbd2: fix the inconsistency between checksum and data in memory for journal sb
Zqiang <qiang.zhang(a)linux.dev>
sched_ext: Fix incorrect sched_class settings for per-cpu migration tasks
Junbeom Yeom <junbeom.yeom(a)samsung.com>
erofs: fix unexpected EIO under memory pressure
Peter Zijlstra <peterz(a)infradead.org>
sched/eevdf: Fix min_vruntime vs avg_vruntime
Josef Bacik <josef(a)toxicpanda.com>
btrfs: don't rewrite ret from inode_permission
Alexey Velichayshiy <a.velichayshiy(a)ispras.ru>
gfs2: fix freeze error handling
Vivian Wang <wangruikang(a)iscas.ac.cn>
lib/crypto: riscv/chacha: Avoid s0/fp register
Alessio Belle <alessio.belle(a)imgtec.com>
drm/imagination: Disallow exporting of PM/FW protected objects
Lyude Paul <lyude(a)redhat.com>
drm/nouveau/dispnv50: Don't call drm_atomic_get_crtc_state() in prepare_fb
Krzysztof Niemiec <krzysztof.niemiec(a)intel.com>
drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer
Nikolay Kuratov <kniv(a)yandex-team.ru>
drm/msm/dpu: Add missing NULL pointer check for pingpong interface
Thomas Hellström <thomas.hellstrom(a)linux.intel.com>
drm/xe: Drop preempt-fences when destroying imported dma-bufs.
Matthew Brost <matthew.brost(a)intel.com>
drm/xe: Use usleep_range for accurate long-running workload timeslicing
Matthew Brost <matthew.brost(a)intel.com>
drm/xe: Adjust long-running workload timeslices to reasonable values
Ashutosh Dixit <ashutosh.dixit(a)intel.com>
drm/xe/oa: Disallow 0 OA property values
Thomas Hellström <thomas.hellstrom(a)linux.intel.com>
drm/xe/bo: Don't include the CCS metadata in the dma-buf sg-table
René Rebe <rene(a)exactco.de>
drm/mgag200: Fix big-endian support
Simon Richter <Simon.Richter(a)hogyros.de>
drm/ttm: Avoid NULL pointer deref for evicted BOs
Ard Biesheuvel <ardb(a)kernel.org>
drm/i915: Fix format string truncation warning
Jay Cornwall <jay.cornwall(a)amd.com>
drm/amdkfd: Trap handler support for expert scheduling mode
Jonathan Kim <jonathan.kim(a)amd.com>
drm/amdkfd: bump minimum vgpr size for gfx1151
Mario Limonciello <mario.limonciello(a)amd.com>
drm/amdkfd: Export the cwsr_size and ctl_stack_size to userspace
Johan Hovold <johan(a)kernel.org>
drm/mediatek: Fix probe device leaks
Johan Hovold <johan(a)kernel.org>
drm/mediatek: Fix probe memory leak
Johan Hovold <johan(a)kernel.org>
drm/mediatek: Fix probe resource leaks
Miaoqian Lin <linmq006(a)gmail.com>
drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse()
Sanjay Yadav <sanjay.kumar.yadav(a)intel.com>
drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()
Jani Nikula <jani.nikula(a)intel.com>
drm/edid: add DRM_EDID_IDENT_INIT() to initialize struct drm_edid_ident
Thomas Zimmermann <tzimmermann(a)suse.de>
drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg()
Arunpravin Paneer Selvam <Arunpravin.PaneerSelvam(a)amd.com>
drm/buddy: Separate clear and dirty free block trees
Arunpravin Paneer Selvam <Arunpravin.PaneerSelvam(a)amd.com>
drm/buddy: Optimize free block management with RB tree
Akhil P Oommen <akhilpo(a)oss.qualcomm.com>
drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers
Alex Deucher <alexander.deucher(a)amd.com>
drm/amdgpu/gmc11: add amdgpu_vm_handle_fault() handling
Pierre-Eric Pelloux-Prayer <pierre-eric.pelloux-prayer(a)amd.com>
drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma
Alex Deucher <alexander.deucher(a)amd.com>
drm/amdgpu/gmc12: add amdgpu_vm_handle_fault() handling
Mario Limonciello (AMD) <superm1(a)kernel.org>
Revert "drm/amd: Skip power ungate during suspend for VPE"
Xiaolei Wang <xiaolei.wang(a)windriver.com>
net: macb: Relocate mog_init_rings() callback from macb_mac_link_up() to macb_open()
Deepanshu Kartikey <kartikey406(a)gmail.com>
net: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write
Ethan Nelson-Moore <enelsonmoore(a)gmail.com>
net: usb: sr9700: fix incorrect command used to write single register
Haoxiang Li <lihaoxiang(a)isrc.iscas.ac.cn>
nfsd: Drop the client reference in client_states_open()
Hengqi Chen <hengqi.chen(a)gmail.com>
LoongArch: BPF: Sign extend kfunc call arguments
Hengqi Chen <hengqi.chen(a)gmail.com>
LoongArch: BPF: Zero-extend bpf_tail_call() index
Chenghao Duan <duanchenghao(a)kylinos.cn>
LoongArch: Refactor register restoration in ftrace_common_return
Haoxiang Li <lihaoxiang(a)isrc.iscas.ac.cn>
fjes: Add missing iounmap in fjes_hw_init()
Guangshuo Li <lgs201920130244(a)gmail.com>
e1000: fix OOB in e1000_tbi_should_accept()
Jason Gunthorpe <jgg(a)ziepe.ca>
RDMA/cm: Fix leaking the multicast GID table reference
Jason Gunthorpe <jgg(a)ziepe.ca>
RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly
Chenghao Duan <duanchenghao(a)kylinos.cn>
samples/ftrace: Adjust LoongArch register restore order in direct calls
Kaushlendra Kumar <kaushlendra.kumar(a)intel.com>
tools/mm/page_owner_sort: fix timestamp comparison for stable sorting
Rong Zhang <i(a)rong.moe>
x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo
Ran Xiaokai <ran.xiaokai(a)zte.com.cn>
mm/page_owner: fix memory leak in page_owner_stack_fops->release()
Matthew Wilcox (Oracle) <willy(a)infradead.org>
idr: fix idr_alloc() returning an ID out of range
NeilBrown <neil(a)brown.name>
lockd: fix vfs_test_lock() calls
Maciej Wieczor-Retman <maciej.wieczor-retman(a)intel.com>
kasan: unpoison vms[area] addresses with a common tag
Maciej Wieczor-Retman <maciej.wieczor-retman(a)intel.com>
kasan: refactor pcpu kasan vmalloc unpoison
Jiayuan Chen <jiayuan.chen(a)linux.dev>
mm/kasan: fix incorrect unpoisoning in vrealloc for KASAN
H. Peter Anvin <hpa(a)zytor.com>
compiler_types.h: add "auto" as a macro for "__auto_type"
Wentao Liang <vulab(a)iscas.ac.cn>
pmdomain: imx: Fix reference count leak in imx_gpc_probe()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failure on damon_test_set_attrs()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failures in damon_test_ops_registration()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failures in damon_test_update_monitoring_result()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failures in damon_test_set_regions()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failures on damon_test_merge_two()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failures on dasmon_test_merge_regions_of()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle memory alloc failure from damon_test_aggregate()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle memory failure from damon_test_target()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle allocation failures in damon_test_regions()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/core-kunit: handle alloc failures on damon_test_split_at()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/vaddr-kunit: handle alloc failures on damon_test_split_evenly_succ()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/vaddr-kunit: handle alloc failures in damon_test_split_evenly_fail()
SeongJae Park <sj(a)kernel.org>
mm/damon/tests/sysfs-kunit: handle alloc failures on damon_sysfs_test_add_targets()
Tiezhu Yang <yangtiezhu(a)loongson.cn>
LoongArch: Use unsigned long for _end and _text
WangYuli <wangyl5933(a)chinaunicom.cn>
LoongArch: Use __pmd()/__pte() for swap entry conversions
Huacai Chen <chenhuacai(a)kernel.org>
LoongArch: Fix build errors for CONFIG_RANDSTRUCT
Qiang Ma <maqianga(a)uniontech.com>
LoongArch: Correct the calculation logic of thread_count
Huacai Chen <chenhuacai(a)kernel.org>
LoongArch: Add new PCI ID for pci_fixup_vgadev()
Haoxiang Li <haoxiang_li2024(a)163.com>
media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init()
Duoming Zhou <duoming(a)zju.edu.cn>
media: i2c: adv7842: Remove redundant cancel_delayed_work in probe
Duoming Zhou <duoming(a)zju.edu.cn>
media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe
Ming Qian <ming.qian(a)oss.nxp.com>
media: amphion: Cancel message work before releasing the VPU core
Johan Hovold <johan(a)kernel.org>
media: vpif_display: fix section mismatch
Johan Hovold <johan(a)kernel.org>
media: vpif_capture: fix section mismatch
Haotian Zhang <vulab(a)iscas.ac.cn>
media: videobuf2: Fix device reference leak in vb2_dc_alloc error path
Nicolas Dufresne <nicolas.dufresne(a)collabora.com>
media: verisilicon: Protect G2 HEVC decoder against invalid DPB index
Duoming Zhou <duoming(a)zju.edu.cn>
media: TDA1997x: Remove redundant cancel_delayed_work in probe
Marek Szyprowski <m.szyprowski(a)samsung.com>
media: samsung: exynos4-is: fix potential ABBA deadlock on init
Miaoqian Lin <linmq006(a)gmail.com>
media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled
Johan Hovold <johan(a)kernel.org>
media: platform: mtk-mdp3: fix device leaks at probe
Ivan Abramov <i.abramov(a)mt-integration.ru>
media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread()
Haotian Zhang <vulab(a)iscas.ac.cn>
media: cec: Fix debugfs leak on bus_register() failure
René Rebe <rene(a)exactco.de>
fbdev: tcx.c fix mem_map to correct smem_start offset
Thorsten Blum <thorsten.blum(a)linux.dev>
fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing
Rene Rebe <rene(a)exactco.de>
fbdev: gbefb: fix to use physical address instead of dma address
Mikulas Patocka <mpatocka(a)redhat.com>
dm-bufio: align write boundary on physical block size
Uladzislau Rezki (Sony) <urezki(a)gmail.com>
dm-ebs: Mark full buffer dirty even on partial write
Mahesh Rao <mahesh.rao(a)altera.com>
firmware: stratix10-svc: Add mutex in stratix10 memory management
Ivan Abramov <i.abramov(a)mt-integration.ru>
media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()
David Hildenbrand <david(a)redhat.com>
powerpc/pseries/cmm: call balloon_devinfo_init() also without CONFIG_BALLOON_COMPACTION
Sandipan Das <sandipan.das(a)amd.com>
perf/x86/amd/uncore: Fix the return value of amd_uncore_df_event_init() on error
Sven Schnelle <svens(a)stackframe.org>
parisc: entry: set W bit for !compat tasks in syscall_restore_rfi()
Sven Schnelle <svens(a)stackframe.org>
parisc: entry.S: fix space adjustment on interruption for 64-bit userspace
Miquel Raynal <miquel.raynal(a)bootlin.com>
mtd: spi-nor: winbond: Add support for W25H02NWxxAM chips
Miquel Raynal <miquel.raynal(a)bootlin.com>
mtd: spi-nor: winbond: Add support for W25H01NWxxAM chips
Miquel Raynal <miquel.raynal(a)bootlin.com>
mtd: spi-nor: winbond: Add support for W25H512NWxxAM chips
Miquel Raynal <miquel.raynal(a)bootlin.com>
mtd: spi-nor: winbond: Add support for W25Q02NWxxIM chips
Miquel Raynal <miquel.raynal(a)bootlin.com>
mtd: spi-nor: winbond: Add support for W25Q01NWxxIM chips
Miquel Raynal <miquel.raynal(a)bootlin.com>
mtd: spi-nor: winbond: Add support for W25Q01NWxxIQ chips
Christian Marangi <ansuelsmth(a)gmail.com>
mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions
Nicolas Dufresne <nicolas.dufresne(a)collabora.com>
media: verisilicon: Fix CPU stalls on G2 bus error
Haotian Zhang <vulab(a)iscas.ac.cn>
media: rc: st_rc: Fix reset control resource leak
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
mfd: max77620: Fix potential IRQ chip conflict when probing two devices
Johan Hovold <johan(a)kernel.org>
mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup
Nathan Chancellor <nathan(a)kernel.org>
clk: samsung: exynos-clkout: Assign .num before accessing .hws
Damien Le Moal <dlemoal(a)kernel.org>
block: Clear BLK_ZONE_WPLUG_PLUGGED when aborting plugged BIOs
Christian Hitz <christian.hitz(a)bbv.ch>
leds: leds-lp50xx: Enable chip before any communication
Christian Hitz <christian.hitz(a)bbv.ch>
leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs
Christian Hitz <christian.hitz(a)bbv.ch>
leds: leds-lp50xx: Allow LED 0 to be added to module bank
Thomas Weißschuh <linux(a)weissschuh.net>
leds: leds-cros_ec: Skip LEDs without color components
Donet Tom <donettom(a)linux.ibm.com>
powerpc/64s/slb: Fix SLB multihit issue during SLB preload
Dave Vasilevsky <dave(a)vasilevsky.ca>
powerpc, mm: Fix mprotect on book3s 32-bit
Siddharth Vadapalli <s-vadapalli(a)ti.com>
arm64: dts: ti: k3-j721e-sk: Fix pinmux for pin Y1 used by power regulator
Lukas Wunner <lukas(a)wunner.de>
PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths
Shengming Hu <hu.shengming(a)zte.com.cn>
fgraph: Check ftrace_pids_enabled on registration for early filtering
Shengming Hu <hu.shengming(a)zte.com.cn>
fgraph: Initialize ftrace_ops->private for function graph ops
Hans de Goede <johannes.goede(a)oss.qualcomm.com>
HID: logitech-dj: Remove duplicate error logging
Lu Baolu <baolu.lu(a)linux.intel.com>
iommu: disable SVA when CONFIG_X86 is set
Johan Hovold <johan(a)kernel.org>
iommu/tegra: fix device leak on probe_device()
Johan Hovold <johan(a)kernel.org>
iommu/sun50i: fix device leak on of_xlate()
Johan Hovold <johan(a)kernel.org>
iommu/qcom: fix device leak on of_xlate()
Johan Hovold <johan(a)kernel.org>
iommu/omap: fix device leaks on probe_device()
Johan Hovold <johan(a)kernel.org>
iommu/mediatek: fix device leak on of_xlate()
Johan Hovold <johan(a)kernel.org>
iommu/mediatek-v1: fix device leaks on probe()
Johan Hovold <johan(a)kernel.org>
iommu/mediatek-v1: fix device leak on probe_device()
Johan Hovold <johan(a)kernel.org>
iommu/ipmmu-vmsa: fix device leak on of_xlate()
Johan Hovold <johan(a)kernel.org>
iommu/exynos: fix device leak on of_xlate()
Johan Hovold <johan(a)kernel.org>
iommu/apple-dart: fix device leak on of_xlate()
Jinhui Guo <guojinhui.liam(a)bytedance.com>
iommu/amd: Propagate the error code returned by __modify_irte_ga() in modify_irte_ga()
Jinhui Guo <guojinhui.liam(a)bytedance.com>
iommu/amd: Fix pci_segment memleak in alloc_pci_segment()
Srinivas Kandagatla <srinivas.kandagatla(a)oss.qualcomm.com>
ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment.
Srinivas Kandagatla <srinivas.kandagatla(a)oss.qualcomm.com>
ASoC: qcom: q6adm: the the copp device only during last instance
Srinivas Kandagatla <srinivas.kandagatla(a)oss.qualcomm.com>
ASoC: qcom: q6asm-dai: perform correct state check before closing
Srinivas Kandagatla <srinivas.kandagatla(a)oss.qualcomm.com>
ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr
Srinivas Kandagatla <srinivas.kandagatla(a)oss.qualcomm.com>
ASoC: codecs: lpass-tx-macro: fix SM6115 support
Johan Hovold <johan(a)kernel.org>
ASoC: stm32: sai: fix OF node leak on probe
Johan Hovold <johan(a)kernel.org>
ASoC: stm32: sai: fix clk prepare imbalance on probe failure
Johan Hovold <johan(a)kernel.org>
ASoC: stm32: sai: fix device leak on probe
Johan Hovold <johan(a)kernel.org>
ASoC: codecs: wcd939x: fix regmap leak on probe failure
Matthew Wilcox (Oracle) <willy(a)infradead.org>
ntfs: Do not overwrite uptodate pages
Yipeng Zou <zouyipeng(a)huawei.com>
selftests/ftrace: traceonoff_triggers: strip off names
Cong Zhang <cong.zhang(a)oss.qualcomm.com>
blk-mq: skip CPU offline notify on unmapped hctx
Thomas Fourier <fourier.thomas(a)gmail.com>
RDMA/bnxt_re: fix dma_free_coherent() pointer
Honggang LI <honggangli(a)163.com>
RDMA/rtrs: Fix clt_path::max_pages_per_mr calculation
Zilin Guan <zilin(a)seu.edu.cn>
ksmbd: Fix memory leak in get_file_all_info()
Tuo Li <islituo(a)gmail.com>
md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()
Li Nan <linan122(a)huawei.com>
md: Fix static checker warning in analyze_sbs
Kalesh AP <kalesh-anakkur.purayil(a)broadcom.com>
RDMA/bnxt_re: Fix to use correct page size for PDE table
Alok Tiwari <alok.a.tiwari(a)oracle.com>
RDMA/bnxt_re: Fix IB_SEND_IP_CSUM handling in post_send
Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp>
RDMA/core: always drop device refcount in ib_del_sub_device_and_put()
Alok Tiwari <alok.a.tiwari(a)oracle.com>
RDMA/bnxt_re: Fix incorrect BAR check in bnxt_qplib_map_creq_db()
Jang Ingyu <ingyujang25(a)korea.ac.kr>
RDMA/core: Fix logic error in ib_get_gids_from_rdma_hdr()
Michael Margolin <mrgolin(a)amazon.com>
RDMA/efa: Remove possible negative shift
Michal Schmidt <mschmidt(a)redhat.com>
RDMA/irdma: avoid invalid read in irdma_net_event
Jiayuan Chen <jiayuan.chen(a)linux.dev>
ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT
Pwnverse <stanksal(a)purdue.edu>
net: rose: fix invalid array index in rose_kill_by_device()
Ido Schimmel <idosch(a)nvidia.com>
ipv4: Fix reference count leak when using error routes with nexthop objects
Will Rosenberg <whrosenb(a)asu.edu>
ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()
Wei Fang <wei.fang(a)nxp.com>
net: stmmac: fix the crash issue for zero copy XDP_TX action
Anshumali Gaur <agaur(a)marvell.com>
octeontx2-pf: fix "UBSAN: shift-out-of-bounds error"
Junrui Luo <moonafterrain(a)outlook.com>
platform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing
Zilin Guan <zilin(a)seu.edu.cn>
vfio/pds: Fix memory leak in pds_vfio_dirty_enable()
Bagas Sanjaya <bagasdotme(a)gmail.com>
net: bridge: Describe @tunnel_hash member in net_bridge_vlan_group struct
Deepanshu Kartikey <kartikey406(a)gmail.com>
net: usb: asix: validate PHY address before use
Thomas De Schampheleire <thomas.de_schampheleire(a)nokia.com>
kbuild: fix compilation of dtb specified on command-line without make rule
Jonas Gorski <jonas.gorski(a)gmail.com>
net: dsa: b53: skip multicast entries for fdb_dump()
Thomas Fourier <fourier.thomas(a)gmail.com>
firewire: nosy: Fix dma_free_coherent() size
Andrew Morton <akpm(a)linux-foundation.org>
genalloc.h: fix htmldocs warning
Yeoreum Yun <yeoreum.yun(a)arm.com>
smc91x: fix broken irq-context in PREEMPT_RT
Alice C. Munduruca <alice.munduruca(a)canonical.com>
selftests: net: fix "buffer overflow detected" for tap.c
Deepakkumar Karn <dkarn(a)redhat.com>
net: usb: rtl8150: fix memory leak on usb_submit_urb() failure
Raju Rangoju <Raju.Rangoju(a)amd.com>
amd-xgbe: reset retries and mode on RX adapt failures
Vladimir Oltean <vladimir.oltean(a)nxp.com>
net: dsa: fix missing put_device() in dsa_tree_find_first_conduit()
Jiri Pirko <jiri(a)resnulli.us>
team: fix check for port enabled in team_queue_override_port_prio_changed()
Junrui Luo <moonafterrain(a)outlook.com>
platform/x86: ibm_rtl: fix EBDA signature search pointer arithmetic
Thomas Fourier <fourier.thomas(a)gmail.com>
platform/x86: msi-laptop: add missing sysfs_remove_group()
Shravan Kumar Ramani <shravankr(a)nvidia.com>
platform/mellanox: mlxbf-pmc: Remove trailing whitespaces from event names
Eric Dumazet <edumazet(a)google.com>
ip6_gre: make ip6gre_header() robust
Toke Høiland-Jørgensen <toke(a)redhat.com>
net: openvswitch: Avoid needlessly taking the RTNL on vport destroy
Jacky Chou <jacky_chou(a)aspeedtech.com>
net: mdio: aspeed: add dummy read to avoid read-after-write issue
Raphael Pinsonneault-Thibeault <rpthibeault(a)gmail.com>
Bluetooth: btusb: revert use of devm_kzalloc in btusb
Herbert Xu <herbert(a)gondor.apana.org.au>
crypto: seqiv - Do not use req->iv after crypto_aead_encrypt
Brian Vazquez <brianvv(a)google.com>
idpf: reduce mbx_task schedule delay to 300us
Kohei Enju <enjuk(a)amazon.com>
iavf: fix off-by-one issues in iavf_config_rss_reg()
Gregory Herrero <gregory.herrero(a)oracle.com>
i40e: validate ring_len parameter against hardware-specific values
Przemyslaw Korba <przemyslaw.korba(a)intel.com>
i40e: fix scheduling in set_rx_mode
Aloka Dixit <aloka.dixit(a)oss.qualcomm.com>
wifi: mac80211: do not use old MBSSID elements
Dan Carpenter <dan.carpenter(a)linaro.org>
wifi: cfg80211: sme: store capped length in __cfg80211_connect_result()
Morning Star <alexbestoso(a)gmail.com>
wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()
Ping-Ke Shih <pkshih(a)realtek.com>
wifi: rtw88: limit indirect IO under powered off for RTL8822CS
Joanne Koong <joannelkoong(a)gmail.com>
fuse: fix readahead reclaim deadlock
Johan Hovold <johan(a)kernel.org>
iommu/mediatek: fix use-after-free on probe deferral
Thomas Gleixner <tglx(a)linutronix.de>
x86/msi: Make irq_retrigger() functional for posted MSI
Nicolas Ferre <nicolas.ferre(a)microchip.com>
ARM: dts: microchip: sama5d2: fix spi flexcom fifo size to 32
Gui-Dong Han <hanguidong02(a)gmail.com>
hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU
Gui-Dong Han <hanguidong02(a)gmail.com>
hwmon: (w83791d) Convert macros to functions to avoid TOCTOU
Johan Hovold <johan(a)kernel.org>
hwmon: (max6697) fix regmap leak on probe failure
Gui-Dong Han <hanguidong02(a)gmail.com>
hwmon: (max16065) Use local variable to avoid TOCTOU
Raviteja Laggyshetty <quic_rlaggysh(a)quicinc.com>
interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes
Ma Ke <make24(a)iscas.ac.cn>
i2c: amd-mp2: fix reference leak in MP2 PCI device
Bartosz Golaszewski <bartosz.golaszewski(a)linaro.org>
platform/x86: intel: chtwc_int33fe: don't dereference swnode args
Srinivas Kandagatla <srinivas.kandagatla(a)oss.qualcomm.com>
rpmsg: glink: fix rpmsg device leak
Johan Hovold <johan(a)kernel.org>
soc: amlogic: canvas: fix device leak on lookup
Johan Hovold <johan(a)kernel.org>
soc: apple: mailbox: fix device leak on lookup
Johan Hovold <johan(a)kernel.org>
soc: qcom: ocmem: fix device leak on lookup
Johan Hovold <johan(a)kernel.org>
soc: qcom: pbs: fix device leak on lookup
Johan Hovold <johan(a)kernel.org>
soc: samsung: exynos-pmu: fix device leak on regmap lookup
Steven Rostedt <rostedt(a)goodmis.org>
tracing: Fix fixed array of synthetic event
Miaoqian Lin <linmq006(a)gmail.com>
virtio: vdpa: Fix reference count leak in octep_sriov_enable()
Johan Hovold <johan(a)kernel.org>
amba: tegra-ahb: Fix device leak on SMMU enable
Guangshuo Li <lgs201920130244(a)gmail.com>
crypto: caam - Add check for kcalloc() in test_len()
Shivani Agarwal <shivani.agarwal(a)broadcom.com>
crypto: af_alg - zero initialize memory allocated via sock_kmalloc
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: PCI: qcom,pcie-sm8550: Add missing required power-domains and resets
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: PCI: qcom,pcie-sm8450: Add missing required power-domains and resets
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: PCI: qcom,pcie-sm8350: Add missing required power-domains and resets
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: PCI: qcom,pcie-sm8250: Add missing required power-domains and resets
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: PCI: qcom,pcie-sm8150: Add missing required power-domains and resets
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: PCI: qcom,pcie-sc8280xp: Add missing required power-domains and resets
Krzysztof Kozlowski <krzysztof.kozlowski(a)linaro.org>
dt-bindings: PCI: qcom,pcie-sc7280: Add missing required power-domains and resets
Marc Zyngier <maz(a)kernel.org>
arm64: Revamp HCR_EL2.E2H RES1 detection
Ahmed Genidi <ahmed.genidi(a)arm.com>
KVM: arm64: Initialize SCTLR_EL1 in __kvm_hyp_init_cpu()
Mark Rutland <mark.rutland(a)arm.com>
KVM: arm64: Initialize HCR_EL2.E2H early
Harshit Agarwal <harshit(a)nutanix.com>
sched/rt: Fix race in push_rt_task
Hangbin Liu <liuhangbin(a)gmail.com>
hsr: hold rcu and dev lock for hsr_get_port_ndev
Claudiu Beznea <claudiu.beznea.uj(a)bp.renesas.com>
pinctrl: renesas: rzg2l: Fix ISEL restore on resume
Junrui Luo <moonafterrain(a)outlook.com>
ALSA: wavefront: Clear substream pointers on close
Takashi Iwai <tiwai(a)suse.de>
ALSA: wavefront: Use guard() for spin locks
Denis Arefev <arefev(a)swemel.ru>
ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi()
Jani Nikula <jani.nikula(a)intel.com>
drm/displayid: pass iter to drm_find_displayid_extension()
Ray Wu <ray.wu(a)amd.com>
drm/amd/display: Fix scratch registers offsets for DCN351
Ray Wu <ray.wu(a)amd.com>
drm/amd/display: Fix scratch registers offsets for DCN35
Alex Deucher <alexander.deucher(a)amd.com>
drm/amd/display: Use GFP_ATOMIC in dc_create_plane_state()
Mario Limonciello <mario.limonciello(a)amd.com>
Revert "drm/amd/display: Fix pbn to kbps Conversion"
Jens Axboe <axboe(a)kernel.dk>
io_uring: fix min_wait wakeups for SQPOLL
Jens Axboe <axboe(a)kernel.dk>
io_uring/poll: correctly handle io_poll_add() return value on update
Wentao Guan <guanwentao(a)uniontech.com>
gpio: regmap: Fix memleak in error path in gpio_regmap_register()
Sven Schnelle <svens(a)linux.ibm.com>
s390/ipl: Clear SBP flag when bootprog is set
Filipe Manana <fdmanana(a)suse.com>
btrfs: don't log conflicting inode if it's a dir moved in the current transaction
Nysal Jan K.A. <nysal(a)linux.ibm.com>
powerpc/kexec: Enable SMT before waking offline CPUs
Joshua Rogers <linux(a)joshua.hu>
SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf
Joshua Rogers <linux(a)joshua.hu>
svcrdma: use rc_pageoff for memcpy byte offset
Joshua Rogers <linux(a)joshua.hu>
svcrdma: return 0 on success from svc_rdma_copy_inline_range
Andy Shevchenko <andriy.shevchenko(a)linux.intel.com>
nfsd: Mark variable __maybe_unused to avoid W=1 build break
Chuck Lever <chuck.lever(a)oracle.com>
NFSD: NFSv4 file creation neglects setting ACL
Chuck Lever <chuck.lever(a)oracle.com>
NFSD: Clear SECLABEL in the suppattr_exclcreat bitmap
caoping <caoping(a)cmss.chinamobile.com>
net/handshake: restore destructor on submit failure
Amir Goldstein <amir73il(a)gmail.com>
fsnotify: do not generate ACCESS/MODIFY events on child for special files
Thorsten Blum <thorsten.blum(a)linux.dev>
net: phy: marvell-88q2xxx: Fix clamped value in mv88q2xxx_hwmon_write
René Rebe <rene(a)exactco.de>
r8169: fix RTL8117 Wake-on-Lan in DASH mode
Rafael J. Wysocki <rafael.j.wysocki(a)intel.com>
PM: runtime: Do not clear needs_force_resume with enabled runtime PM
Steven Rostedt <rostedt(a)goodmis.org>
tracing: Do not register unsupported perf events
Darrick J. Wong <djwong(a)kernel.org>
xfs: fix a UAF problem in xattr repair
Darrick J. Wong <djwong(a)kernel.org>
xfs: fix stupid compiler warning
Haoxiang Li <lihaoxiang(a)isrc.iscas.ac.cn>
xfs: fix a memory leak in xfs_buf_item_init()
Sean Christopherson <seanjc(a)google.com>
KVM: nSVM: Clear exit_code_hi in VMCB when synthesizing nested VM-Exits
Sean Christopherson <seanjc(a)google.com>
KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN)
Dongli Zhang <dongli.zhang(a)oracle.com>
KVM: nVMX: Immediately refresh APICv controls as needed on nested VM-Exit
Jim Mattson <jmattson(a)google.com>
KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN
Yosry Ahmed <yosry.ahmed(a)linux.dev>
KVM: nSVM: Propagate SVM_EXIT_CR0_SEL_WRITE correctly for LMSW emulation
Jim Mattson <jmattson(a)google.com>
KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN
Yosry Ahmed <yosry.ahmed(a)linux.dev>
KVM: nSVM: Avoid incorrect injection of SVM_EXIT_CR0_SEL_WRITE
fuqiang wang <fuqiang.wng(a)gmail.com>
KVM: x86: Fix VM hard lockup after prolonged inactivity with periodic HV timer
fuqiang wang <fuqiang.wng(a)gmail.com>
KVM: x86: Explicitly set new periodic hrtimer expiration in apic_timer_fn()
Sean Christopherson <seanjc(a)google.com>
KVM: x86: WARN if hrtimer callback for periodic APIC timer fires with period=0
Finn Thain <fthain(a)linux-m68k.org>
powerpc: Add reloc_offset() to font bitmap pointer used for bootx_printf()
Ilya Dryomov <idryomov(a)gmail.com>
libceph: make decode_pool() more resilient against corrupted osdmaps
Helge Deller <deller(a)gmx.de>
parisc: Do not reprogram affinitiy on ASP chip
Zhichi Lin <zhichi.lin(a)vivo.com>
scs: fix a wrong parameter in __scs_magic
Tzung-Bi Shih <tzungbi(a)kernel.org>
platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver
Maxim Levitsky <mlevitsk(a)redhat.com>
KVM: x86: Don't clear async #PF queue when CR0.PG is disabled (e.g. on #SMI)
Prithvi Tambewagh <activprithvi(a)gmail.com>
ocfs2: fix kernel BUG in ocfs2_find_victim_chain
Jeongjun Park <aha310510(a)gmail.com>
media: vidtv: initialize local pointers upon transfer of memory ownership
Sean Christopherson <seanjc(a)google.com>
KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing memslot
Alison Schofield <alison.schofield(a)intel.com>
tools/testing/nvdimm: Use per-DIMM device handle
Chao Yu <chao(a)kernel.org>
f2fs: fix return value of f2fs_recover_fsync_data()
Xiaole He <hexiaole1994(a)126.com>
f2fs: fix uninitialized one_time_gc in victim_sel_policy
Xiaole He <hexiaole1994(a)126.com>
f2fs: fix age extent cache insertion skip on counter overflow
Deepanshu Kartikey <kartikey406(a)gmail.com>
f2fs: invalidate dentry cache on failed whiteout creation
Chao Yu <chao(a)kernel.org>
f2fs: fix to avoid updating zero-sized extent in extent cache
Chao Yu <chao(a)kernel.org>
f2fs: fix to avoid potential deadlock
Jan Prusakowski <jprusakowski(a)google.com>
f2fs: ensure node page reads complete before f2fs_put_super() finishes
Seunghwan Baek <sh8267.baek(a)samsung.com>
scsi: ufs: core: Add ufshcd_update_evt_hist() for UFS suspend error
Chandrakanth Patil <chandrakanth.patil(a)broadcom.com>
scsi: mpi3mr: Read missing IOCFacts flag for reply queue full overflow
Andrey Vatoropin <a.vatoropin(a)crpt.ru>
scsi: target: Reset t_task_cdb pointer in error case
Dai Ngo <dai.ngo(a)oracle.com>
NFSD: use correct reservation type in nfsd4_scsi_fence_client
Junrui Luo <moonafterrain(a)outlook.com>
scsi: aic94xx: fix use-after-free in device removal path
Tony Battersby <tonyb(a)cybernetics.com>
scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path"
Miaoqian Lin <linmq006(a)gmail.com>
cpufreq: nforce2: fix reference count leak in nforce2
Rafael J. Wysocki <rafael.j.wysocki(a)intel.com>
cpuidle: governors: teo: Drop misguided target residency check
Claudiu Beznea <claudiu.beznea.uj(a)bp.renesas.com>
serial: sh-sci: Check that the DMA cookie is valid
Junxiao Chang <junxiao.chang(a)intel.com>
mei: gsc: add dependency on Xe driver
Ma Ke <make24(a)iscas.ac.cn>
intel_th: Fix error handling in intel_th_output_open
Tianchu Chen <flynnnchen(a)tencent.com>
char: applicom: fix NULL pointer dereference in ac_ioctl
Haoxiang Li <haoxiang_li2024(a)163.com>
usb: renesas_usbhs: Fix a resource leak in usbhs_pipe_malloc()
Udipto Goswami <udipto.goswami(a)oss.qualcomm.com>
usb: dwc3: keep susphy enabled during exit to avoid controller faults
Miaoqian Lin <linmq006(a)gmail.com>
usb: dwc3: of-simple: fix clock resource leak in dwc3_of_simple_probe
Johan Hovold <johan(a)kernel.org>
usb: gadget: lpc32xx_udc: fix clock imbalance in error path
Johan Hovold <johan(a)kernel.org>
usb: phy: isp1301: fix non-OF device reference imbalance
Duoming Zhou <duoming(a)zju.edu.cn>
usb: phy: fsl-usb: Fix use-after-free in delayed work during device removal
Ma Ke <make24(a)iscas.ac.cn>
USB: lpc32xx_udc: Fix error handling in probe
Haoxiang Li <lihaoxiang(a)isrc.iscas.ac.cn>
usb: typec: altmodes/displayport: Drop the device reference in dp_altmode_probe()
Johan Hovold <johan(a)kernel.org>
usb: ohci-nxp: fix device leak on probe failure
Johan Hovold <johan(a)kernel.org>
phy: broadcom: bcm63xx-usbh: fix section mismatches
Colin Ian King <colin.i.king(a)gmail.com>
media: pvrusb2: Fix incorrect variable used in trace message
Jeongjun Park <aha310510(a)gmail.com>
media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()
Chen Changcheng <chenchangcheng(a)kylinos.cn>
usb: usb-storage: Maintain minimal modifications to the bcdDevice range.
Paolo Abeni <pabeni(a)redhat.com>
mptcp: avoid deadlock on fallback while reinjecting
Paolo Abeni <pabeni(a)redhat.com>
mptcp: schedule rtx timer only after pushing data
Matthieu Baerts (NGI0) <matttbe(a)kernel.org>
selftests: mptcp: pm: ensure unknown flags are ignored
Laurent Pinchart <laurent.pinchart(a)ideasonboard.com>
media: v4l2-mem2mem: Fix outdated documentation
Byungchul Park <byungchul(a)sk.com>
jbd2: use a weaker annotation in journal handling
Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp>
jbd2: use a per-journal lock_class_key for jbd2_trans_commit_key
Baokun Li <libaokun1(a)huawei.com>
ext4: align max orphan file size with e2fsprogs limit
Yongjian Sun <sunyongjian1(a)huawei.com>
ext4: fix incorrect group number assertion in mb_check_buddy
Haibo Chen <haibo.chen(a)nxp.com>
ext4: clear i_state_flags when alloc inode
Karina Yankevich <k.yankevich(a)omp.ru>
ext4: xattr: fix null pointer deref in ext4_raw_inode()
Fedor Pchelkin <pchelkin(a)ispras.ru>
ext4: fix string copying in parse_apply_sb_mount_options()
Jarkko Sakkinen <jarkko.sakkinen(a)opinsys.com>
tpm: Cap the number of PCR banks
Steven Rostedt <rostedt(a)goodmis.org>
ktest.pl: Fix uninitialized var in config-bisect.pl
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: fix mount failure for sparse runs in run_unpack()
Zheng Yejian <zhengyejian(a)huaweicloud.com>
kallsyms: Fix wrong "big" kernel symbol type read from procfs
Rene Rebe <rene(a)exactco.de>
floppy: fix for PAGE_SIZE != 4KB
Li Chen <chenl311(a)chinatelecom.cn>
block: rate-limit capacity change info log
Sven Eckelmann (Plasma Cloud) <se(a)simonwunderlich.de>
wifi: mt76: Fix DTS power-limits on little endian systems
Stefan Haberland <sth(a)linux.ibm.com>
s390/dasd: Fix gendisk parent after copy pair swap
Eric Biggers <ebiggers(a)kernel.org>
lib/crypto: x86/blake2s: Fix 32-bit arg treated as 64-bit
Ma Ke <make24(a)iscas.ac.cn>
perf: arm_cspmu: fix error handling in arm_cspmu_impl_unregister()
Sarthak Garg <sarthak.garg(a)oss.qualcomm.com>
mmc: sdhci-msm: Avoid early clock doubling during HS400 transition
Avadhut Naik <avadhut.naik(a)amd.com>
x86/mce: Do not clear bank's poll bit in mce_poll_banks on AMD SMCA systems
Prithvi Tambewagh <activprithvi(a)gmail.com>
io_uring: fix filename leak in __io_openat_prep()
Jarkko Sakkinen <jarkko(a)kernel.org>
KEYS: trusted: Fix a memory leak in tpm2_load_cmd
Zilin Guan <zilin(a)seu.edu.cn>
cifs: Fix memory and information leak in smb3_reconfigure()
Stefano Garzarella <sgarzare(a)redhat.com>
vhost/vsock: improve RCU read sections around vhost_vsock_get()
Dan Carpenter <dan.carpenter(a)linaro.org>
block: rnbd-clt: Fix signedness bug in init_dev()
John Garry <john.g.garry(a)oracle.com>
scsi: scsi_debug: Fix atomic write enable module param description
Gregory CLEMENT <gregory.clement(a)bootlin.com>
MIPS: ftrace: Fix memory corruption when kernel is located beyond 32 bits
Chia-Lin Kao (AceLan) <acelan.kao(a)canonical.com>
platform/x86/intel/hid: Add Dell Pro Rugged 10/12 tablet to VGBS DMI quirks
Justin Tee <justintee8345(a)gmail.com>
nvme-fabrics: add ENOKEY to no retry criteria for authentication failures
Daniel Wagner <wagi(a)kernel.org>
nvme-fc: don't hold rport lock when putting ctrl
Jinhui Guo <guojinhui.liam(a)bytedance.com>
i2c: designware: Disable SMBus interrupts to prevent storms from mis-configured firmware
Jens Reidel <adrian(a)mainlining.org>
clk: qcom: dispcc-sm7150: Fix dispcc_mdss_pclk0_clk_src
Ian Rogers <irogers(a)google.com>
libperf cpumap: Fix perf_cpu_map__max for an empty/NULL map
Wenhua Lin <Wenhua.Lin(a)unisoc.com>
serial: sprd: Return -EPROBE_DEFER when uart clock is not ready
Chen Changcheng <chenchangcheng(a)kylinos.cn>
usb: usb-storage: No additional quirks need to be added to the EL-R12 optical drive.
Hongyu Xie <xiehongyu1(a)kylinos.cn>
usb: xhci: limit run_graceperiod for only usb 3.0 devices
Pei Xiao <xiaopei01(a)kylinos.cn>
iio: adc: ti_am335x_adc: Limit step_avg to valid range for gcc complains
Mark Pearson <mpearson-lenovo(a)squebb.ca>
usb: typec: ucsi: Handle incorrect num_connectors capability
Lizhi Xu <lizhi.xu(a)windriver.com>
usbip: Fix locking bug in RT-enabled kernels
Yuezhang Mo <Yuezhang.Mo(a)sony.com>
exfat: zero out post-EOF page cache on file extension
Yuezhang Mo <Yuezhang.Mo(a)sony.com>
exfat: fix remount failure in different process environments
Encrow Thorne <jyc0019(a)gmail.com>
reset: fix BIT macro reference
Li Qiang <liqiang01(a)kylinos.cn>
via_wdt: fix critical boot hang due to unnamed resource allocation
Bernd Schubert <bschubert(a)ddn.com>
fuse: Invalidate the page cache after FOPEN_DIRECT_IO write
Bernd Schubert <bschubert(a)ddn.com>
fuse: Always flush the page cache before FOPEN_DIRECT_IO write
Tony Battersby <tonyb(a)cybernetics.com>
scsi: qla2xxx: Use reinit_completion on mbx_intr_comp
Tony Battersby <tonyb(a)cybernetics.com>
scsi: qla2xxx: Fix initiator mode with qlini_mode=exclusive
Tony Battersby <tonyb(a)cybernetics.com>
scsi: qla2xxx: Fix lost interrupts with qlini_mode=disabled
Ben Collins <bcollins(a)kernel.org>
powerpc/addnote: Fix overflow on 32-bit builds
Josua Mayer <josua(a)solid-run.com>
clk: mvebu: cp110 add CLK_IGNORE_UNUSED to pcie_x10, pcie_x11 & pcie_x4
David Strahan <David.Strahan(a)microchip.com>
scsi: smartpqi: Add support for Hurray Data new controller PCI device
Matthias Schiffer <matthias.schiffer(a)tq-group.com>
ti-sysc: allow OMAP2 and OMAP4 timers to be reserved on AM33xx
Peng Fan <peng.fan(a)nxp.com>
firmware: imx: scu-irq: Init workqueue before request mbox channel
Peter Wang <peter.wang(a)mediatek.com>
scsi: ufs: host: mediatek: Fix shutdown/suspend race condition
Jinhui Guo <guojinhui.liam(a)bytedance.com>
ipmi: Fix __scan_channels() failing to rescan channels
Jinhui Guo <guojinhui.liam(a)bytedance.com>
ipmi: Fix the race between __scan_channels() and deliver_response()
Shardul Bankar <shardul.b(a)mpiricsoftware.com>
nfsd: fix memory leak in nfsd_create_serv error paths
Mike Snitzer <snitzer(a)kernel.org>
nfsd: rename nfsd_serv_ prefixed methods and variables with nfsd_net_
Mike Snitzer <snitzer(a)kernel.org>
nfsd: update percpu_ref to manage references on nfsd_net
Shengjiu Wang <shengjiu.wang(a)nxp.com>
ASoC: ak4458: remove the reset operation in probe and remove
Shipei Qu <qu(a)darknavy.com>
ALSA: usb-mixer: us16x08: validate meter packet indices
Haotian Zhang <vulab(a)iscas.ac.cn>
ALSA: pcmcia: Fix resource leak in snd_pdacf_probe error path
Haotian Zhang <vulab(a)iscas.ac.cn>
ALSA: vxpocket: Fix resource leak in vxpocket_probe error path
Yongxin Liu <yongxin.liu(a)windriver.com>
x86/fpu: Fix FPU state core dump truncation on CPUs with no extended xfeatures
Shaurya Rane <ssrane_b23(a)ee.vjti.ac.in>
net/hsr: fix NULL pointer dereference in prp_get_untagged_frame()
Andrew Jeffery <andrew(a)codeconstruct.com.au>
dt-bindings: mmc: sdhci-of-aspeed: Switch ref to sdhci-common.yaml
Sai Krishna Potthuri <sai.krishna.potthuri(a)amd.com>
mmc: sdhci-of-arasan: Increase CD stable timeout to 2 seconds
Jared Kangas <jkangas(a)redhat.com>
mmc: sdhci-esdhc-imx: add alternate ARCH_S32 dependency to Kconfig
Christophe Leroy <christophe.leroy(a)csgroup.eu>
spi: fsl-cpm: Check length parity before switching to 16 bit mode
Pengjie Zhang <zhangpengjie2(a)huawei.com>
ACPI: CPPC: Fix missing PCC check for guaranteed_perf
Pengjie Zhang <zhangpengjie2(a)huawei.com>
ACPI: PCC: Fix race condition by removing static qualifier
Kartik Rajput <kkartik(a)nvidia.com>
soc/tegra: fuse: Do not register SoC device on ACPI boot
Marc Kleine-Budde <mkl(a)pengutronix.de>
can: gs_usb: gs_can_open(): fix error handling
Christoph Hellwig <hch(a)lst.de>
xfs: don't leak a locked dquot when xfs_dquot_attach_buf fails
Christoffer Sandberg <cs(a)tuxedo.de>
Input: i8042 - add TUXEDO InfinityBook Max Gen10 AMD to i8042 quirk table
Duoming Zhou <duoming(a)zju.edu.cn>
Input: alps - fix use-after-free bugs caused by dev3_register_work
Minseong Kim <ii4gsp(a)gmail.com>
Input: lkkbd - disable pending work before freeing device
Junjie Cao <junjie.cao(a)intel.com>
Input: ti_am335x_tsc - fix off-by-one error in wire_order validation
Ping Cheng <pinglinux(a)gmail.com>
HID: input: map HID_GD_Z to ABS_DISTANCE for stylus/pen
Namjae Jeon <linkinjeon(a)kernel.org>
ksmbd: fix buffer validation by including null terminator size in EA length
Namjae Jeon <linkinjeon(a)kernel.org>
ksmbd: Fix refcount leak when invalid session is found on session lookup
Qianchang Zhao <pioooooooooip(a)gmail.com>
ksmbd: skip lock-range check on equal size to avoid size==0 underflow
Nuno Sá <nuno.sa(a)analog.com>
hwmon: (ltc4282): Fix reset_history file permissions
Shuicheng Lin <shuicheng.lin(a)intel.com>
drm/xe/oa: Limit num_syncs to prevent oversized allocations
Shuicheng Lin <shuicheng.lin(a)intel.com>
drm/xe: Limit num_syncs to prevent oversized allocations
Thomas Fourier <fourier.thomas(a)gmail.com>
block: rnbd-clt: Fix leaked ID in init_dev()
Anurag Dutta <a-dutta(a)ti.com>
spi: cadence-quadspi: Fix clock disable on probe failure path
Jianpeng Chang <jianpeng.chang.cn(a)windriver.com>
arm64: kdump: Fix elfcorehdr overlap caused by reserved memory processing reorder
Juergen Gross <jgross(a)suse.com>
x86/xen: Fix sparse warning in enlighten_pv.c
Brian Gerst <brgerst(a)gmail.com>
x86/xen: Move Xen upcall handler
Marijn Suijten <marijn.suijten(a)somainline.org>
drm/panel: sony-td4353-jdi: Enable prepare_prev_first
Haoxiang Li <haoxiang_li2024(a)163.com>
MIPS: Fix a reference leak bug in ip22_check_gio()
Jan Maslak <jan.maslak(a)intel.com>
drm/xe: Restore engine registers before restarting schedulers after GT reset
Junxiao Chang <junxiao.chang(a)intel.com>
drm/me/gsc: mei interrupt top half should be in irq disabled context
Alexey Simakov <bigalex934(a)gmail.com>
hwmon: (tmp401) fix overflow caused by default conversion rate value
Junrui Luo <moonafterrain(a)outlook.com>
hwmon: (ibmpex) fix use-after-free in high/low store
Denis Sergeev <denserg.edu(a)gmail.com>
hwmon: (dell-smm) Limit fan multiplier to avoid overflow
Jian Shen <shenjian15(a)huawei.com>
net: hns3: add VLAN id validation before using
Jian Shen <shenjian15(a)huawei.com>
net: hns3: using the num_tqps to check whether tqp_index is out of range when vf get ring info from mbx
Jian Shen <shenjian15(a)huawei.com>
net: hns3: using the num_tqps in the vf driver to apply for resources
Wei Fang <wei.fang(a)nxp.com>
net: enetc: do not transmit redirected XDP frames when the link is down
Scott Mayhew <smayhew(a)redhat.com>
net/handshake: duplicate handshake cancellations leak socket
Shay Drory <shayd(a)nvidia.com>
net/mlx5: Serialize firmware reset with devlink
Shay Drory <shayd(a)nvidia.com>
net/mlx5: fw_tracer, Handle escaped percent properly
Shay Drory <shayd(a)nvidia.com>
net/mlx5: fw_tracer, Validate format string parameters
Moshe Shemesh <moshe(a)nvidia.com>
net/mlx5: Drain firmware reset in shutdown callback
Moshe Shemesh <moshe(a)nvidia.com>
net/mlx5: fw reset, clear reset requested on drain_fw_reset
Gal Pressman <gal(a)nvidia.com>
ethtool: Avoid overflowing userspace buffer on stats query
Jason Gunthorpe <jgg(a)ziepe.ca>
iommufd/selftest: Check for overflow in IOMMU_TEST_OP_ADD_RESERVED
Jason Gunthorpe <jgg(a)ziepe.ca>
iommufd/selftest: Make it clearer to gcc that the access is not out of bounds
Nicolin Chen <nicolinc(a)nvidia.com>
iommufd/selftest: Update hw_info coverage for an input data_type
Yi Liu <yi.l.liu(a)intel.com>
iommufd/selftest: Add coverage for reporting max_pasid_log2 via IOMMU_HW_INFO
Florian Westphal <fw(a)strlen.de>
selftests: netfilter: packetdrill: avoid failure on HZ=100 kernel
Pablo Neira Ayuso <pablo(a)netfilter.org>
netfilter: nf_tables: remove redundant chain validation on register store
Florian Westphal <fw(a)strlen.de>
netfilter: nf_nat: remove bogus direction check
Dan Carpenter <dan.carpenter(a)linaro.org>
nfc: pn533: Fix error code in pn533_acr122_poweron_rdr()
Victor Nogueira <victor(a)mojatatu.com>
net/sched: ets: Remove drr class from the active list if it changes to strict
Junrui Luo <moonafterrain(a)outlook.com>
caif: fix integer underflow in cffrml_receive()
Slavin Liu <slavin452(a)gmail.com>
ipvs: fix ipv4 null-ptr-deref in route error path
Fernando Fernandez Mancera <fmancera(a)suse.de>
netfilter: nf_conncount: fix leaked ct in error paths
Alexey Simakov <bigalex934(a)gmail.com>
broadcom: b44: prevent uninitialized value usage
Ilya Maximets <i.maximets(a)ovn.org>
net: openvswitch: fix middle attribute validation in push_nsh() action
Michael Chan <michael.chan(a)broadcom.com>
bnxt_en: Fix XDP_TX path
Ido Schimmel <idosch(a)nvidia.com>
mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats
Ido Schimmel <idosch(a)nvidia.com>
mlxsw: spectrum_router: Fix neighbour use-after-free
Ido Schimmel <idosch(a)nvidia.com>
mlxsw: spectrum_router: Fix possible neighbour reference count leak
Dmitry Skorodumov <skorodumov.dmitry(a)huawei.com>
ipvlan: Ignore PACKET_LOOPBACK in handle_mode_l2()
Jamal Hadi Salim <jhs(a)mojatatu.com>
net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change
Wang Liang <wangliang74(a)huawei.com>
netrom: Fix memory leak in nr_sendmsg()
Wei Fang <wei.fang(a)nxp.com>
net: fec: ERR007885 Workaround for XDP TX path
Andreas Gruenbacher <agruenba(a)redhat.com>
gfs2: Fix use of bio_chain
Max Chou <max.chou(a)realtek.com>
Bluetooth: btusb: Add new VID/PID 0x0489/0xE12F for RTL8852BE-VT
Gongwei Li <ligongwei(a)kylinos.cn>
Bluetooth: btusb: Add new VID/PID 13d3/3533 for RTL8821CE
Chris Lu <chris.lu(a)mediatek.com>
Bluetooth: btusb: MT7920: Add VID/PID 0489/e135
Chris Lu <chris.lu(a)mediatek.com>
Bluetooth: btusb: MT7922: Add VID/PID 0489/e170
Chingbin Li <liqb365(a)163.com>
Bluetooth: btusb: Add new VID/PID 2b89/6275 for RTL8761BUV
Qianchang Zhao <pioooooooooip(a)gmail.com>
ksmbd: vfs: fix race on m_flags in vfs_cache
Namjae Jeon <linkinjeon(a)kernel.org>
ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency
ChenXiaoSong <chenxiaosong(a)kylinos.cn>
smb/server: fix return value of smb2_ioctl()
Andreas Gruenbacher <agruenba(a)redhat.com>
gfs2: Fix "gfs2: Switch to wait_event in gfs2_quotad"
Andreas Gruenbacher <agruenba(a)redhat.com>
gfs2: fix remote evict for read-only filesystems
Qu Wenruo <wqu(a)suse.com>
btrfs: scrub: always update btrfs_scrub_progress::last_physical
Hans de Goede <hansg(a)kernel.org>
wifi: brcmfmac: Add DMI nvram filename quirk for Acer A1 840 tablet
Quan Zhou <quan.zhou(a)mediatek.com>
wifi: mt76: mt792x: fix wifi init fail by setting MCU_RUNNING after CLC load
Johannes Berg <johannes.berg(a)intel.com>
wifi: cfg80211: use cfg80211_leave() in iftype change
Johannes Berg <johannes.berg(a)intel.com>
wifi: cfg80211: stop radar detection in cfg80211_leave()
Bitterblue Smith <rtl8821cerfe2(a)gmail.com>
wifi: rtl8xxxu: Fix HT40 channel config for RTL8192CU, RTL8723AU
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: check for shutdown in fsync
Viacheslav Dubeyko <slava(a)dubeyko.com>
hfsplus: fix volume corruption issue for generic/073
Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp>
hfsplus: Verify inode mode when loading from disk
Yang Chenzhi <yang.chenzhi(a)vivo.com>
hfsplus: fix missing hfs_bnode_get() in __hfs_bnode_create
Viacheslav Dubeyko <slava(a)dubeyko.com>
hfsplus: fix volume corruption issue for generic/070
Pedro Demarchi Gomes <pedrodemargomes(a)gmail.com>
ntfs: set dummy blocksize to read boot_block when mounting
Mikhail Malyshev <mike.malyshev(a)gmail.com>
kbuild: Use objtree for module signing key path
Konstantin Komarov <almaz.alexandrovich(a)paragon-software.com>
fs/ntfs3: Support timestamps prior to epoch
Song Liu <song(a)kernel.org>
livepatch: Match old_sympos 0 and 1 in klp_find_func()
Aboorva Devarajan <aboorvad(a)linux.ibm.com>
cpuidle: menu: Use residency threshold in polling state override decisions
Shuhao Fu <sfual(a)cse.ust.hk>
cpufreq: s5pv210: fix refcount leak
Armin Wolf <W_Armin(a)gmx.de>
ACPI: fan: Workaround for 64-bit firmware bug
Hal Feng <hal.feng(a)starfivetech.com>
cpufreq: dt-platdev: Add JH7110S SOC to the allowlist
Sakari Ailus <sakari.ailus(a)linux.intel.com>
ACPI: property: Use ACPI functions in acpi_graph_get_next_endpoint() only
Cryolitia PukNgae <cryolitia.pukngae(a)linux.dev>
ACPICA: Avoid walking the Namespace if start_node is NULL
Peter Zijlstra <peterz(a)infradead.org>
x86/ptrace: Always inline trivial accessors
Peter Zijlstra <peterz(a)infradead.org>
sched/fair: Revert max_newidle_lb_cost bump
Doug Berger <opendmb(a)gmail.com>
sched/deadline: only set free_cpus for online runqueues
George Kennedy <george.kennedy(a)oracle.com>
perf/x86/amd: Check event before enable to avoid GPF
Pankaj Raghav <p.raghav(a)samsung.com>
scripts/faddr2line: Fix "Argument list too long" error
Joanne Koong <joannelkoong(a)gmail.com>
iomap: account for unaligned end offsets when truncating read range
Joanne Koong <joannelkoong(a)gmail.com>
iomap: adjust read range correctly for non-block-aligned positions
Al Viro <viro(a)zeniv.linux.org.uk>
shmem: fix recovery on rename failures
Deepanshu Kartikey <kartikey406(a)gmail.com>
btrfs: fix memory leak of fs_devices in degraded seed device path
Ondrej Mosnacek <omosnace(a)redhat.com>
bpf, arm64: Do not audit capability check in do_jit()
Qu Wenruo <wqu(a)suse.com>
btrfs: fix a potential path leak in print_data_reloc_error()
Filipe Manana <fdmanana(a)suse.com>
btrfs: do not skip logging new dentries when logging a new name
-------------
Diffstat:
.../devicetree/bindings/mmc/aspeed,sdhci.yaml | 2 +-
.../devicetree/bindings/pci/qcom,pcie-sc7280.yaml | 5 +
.../bindings/pci/qcom,pcie-sc8280xp.yaml | 3 +
.../devicetree/bindings/pci/qcom,pcie-sm8150.yaml | 5 +
.../devicetree/bindings/pci/qcom,pcie-sm8250.yaml | 5 +
.../devicetree/bindings/pci/qcom,pcie-sm8350.yaml | 5 +
.../devicetree/bindings/pci/qcom,pcie-sm8450.yaml | 5 +
.../devicetree/bindings/pci/qcom,pcie-sm8550.yaml | 5 +
Documentation/driver-api/soundwire/stream.rst | 2 +-
Documentation/driver-api/tty/tty_port.rst | 5 +-
Documentation/filesystems/nfs/localio.rst | 81 +--
Makefile | 4 +-
arch/arm/boot/dts/microchip/sama5d2.dtsi | 10 +-
arch/arm/boot/dts/microchip/sama7g5.dtsi | 4 +-
arch/arm64/boot/dts/ti/k3-j721e-sk.dts | 12 +-
arch/arm64/include/asm/el2_setup.h | 57 +-
arch/arm64/kernel/head.S | 22 +-
arch/arm64/kvm/hyp/nvhe/hyp-init.S | 10 +-
arch/arm64/kvm/hyp/nvhe/psci-relay.c | 3 +
arch/arm64/net/bpf_jit_comp.c | 2 +-
arch/loongarch/include/asm/pgtable.h | 4 +-
arch/loongarch/kernel/mcount_dyn.S | 14 +-
arch/loongarch/kernel/relocate.c | 4 +-
arch/loongarch/kernel/setup.c | 8 +-
arch/loongarch/kernel/switch.S | 4 +-
arch/loongarch/net/bpf_jit.c | 18 +
arch/loongarch/net/bpf_jit.h | 26 +
arch/loongarch/pci/pci.c | 2 +
arch/mips/kernel/ftrace.c | 25 +-
arch/mips/sgi-ip22/ip22-gio.c | 3 +-
arch/parisc/kernel/asm-offsets.c | 2 +
arch/parisc/kernel/entry.S | 16 +-
arch/powerpc/boot/addnote.c | 7 +-
arch/powerpc/include/asm/book3s/32/tlbflush.h | 5 +-
arch/powerpc/include/asm/book3s/64/mmu-hash.h | 1 -
arch/powerpc/kernel/btext.c | 3 +-
arch/powerpc/kernel/process.c | 5 -
arch/powerpc/kexec/core_64.c | 19 +
arch/powerpc/mm/book3s32/tlb.c | 9 +
arch/powerpc/mm/book3s64/internal.h | 2 -
arch/powerpc/mm/book3s64/mmu_context.c | 2 -
arch/powerpc/mm/book3s64/slb.c | 88 ---
arch/powerpc/platforms/pseries/cmm.c | 5 +-
arch/riscv/crypto/chacha-riscv64-zvkb.S | 5 +-
arch/s390/include/uapi/asm/ipl.h | 1 +
arch/s390/kernel/ipl.c | 48 +-
arch/x86/crypto/blake2s-core.S | 4 +-
arch/x86/entry/common.c | 72 --
arch/x86/events/amd/core.c | 7 +-
arch/x86/events/amd/uncore.c | 5 +-
arch/x86/include/asm/irq_remapping.h | 7 +
arch/x86/include/asm/ptrace.h | 20 +-
arch/x86/kernel/cpu/mce/threshold.c | 3 +-
arch/x86/kernel/cpu/microcode/amd.c | 106 ++-
arch/x86/kernel/fpu/xstate.c | 4 +-
arch/x86/kernel/irq.c | 23 +
arch/x86/kvm/lapic.c | 32 +-
arch/x86/kvm/svm/nested.c | 6 +-
arch/x86/kvm/svm/svm.c | 54 +-
arch/x86/kvm/svm/svm.h | 7 +-
arch/x86/kvm/vmx/nested.c | 3 +-
arch/x86/kvm/x86.c | 25 +-
arch/x86/xen/enlighten_pv.c | 69 ++
block/blk-mq.c | 2 +-
block/blk-zoned.c | 193 +++--
block/blk.h | 14 +
block/genhd.c | 2 +-
crypto/af_alg.c | 5 +-
crypto/algif_hash.c | 3 +-
crypto/algif_rng.c | 3 +-
crypto/seqiv.c | 8 +-
drivers/acpi/acpi_pcc.c | 2 +-
drivers/acpi/acpica/nswalk.c | 9 +-
drivers/acpi/cppc_acpi.c | 3 +-
drivers/acpi/fan.h | 33 +
drivers/acpi/fan_hwmon.c | 10 +-
drivers/acpi/property.c | 8 +-
drivers/amba/tegra-ahb.c | 1 +
drivers/base/power/runtime.c | 22 +-
drivers/block/floppy.c | 2 +-
drivers/block/rnbd/rnbd-clt.c | 13 +-
drivers/block/rnbd/rnbd-clt.h | 2 +-
drivers/bluetooth/btusb.c | 22 +-
drivers/bus/ti-sysc.c | 11 +-
drivers/char/applicom.c | 5 +-
drivers/char/ipmi/ipmi_msghandler.c | 20 +-
drivers/char/tpm/tpm-chip.c | 1 -
drivers/char/tpm/tpm1-cmd.c | 5 -
drivers/char/tpm/tpm2-cmd.c | 11 +-
drivers/char/tpm/tpm2-sessions.c | 85 ++-
drivers/clk/mvebu/cp110-system-controller.c | 20 +
drivers/clk/qcom/dispcc-sm7150.c | 2 +-
drivers/clk/samsung/clk-exynos-clkout.c | 2 +-
drivers/cpufreq/cpufreq-dt-platdev.c | 1 +
drivers/cpufreq/cpufreq-nforce2.c | 3 +
drivers/cpufreq/s5pv210-cpufreq.c | 6 +-
drivers/cpuidle/governors/menu.c | 9 +-
drivers/cpuidle/governors/teo.c | 7 +-
drivers/crypto/caam/caamrng.c | 4 +-
drivers/firewire/nosy.c | 10 +-
drivers/firmware/imx/imx-scu-irq.c | 4 +-
drivers/firmware/stratix10-svc.c | 11 +
drivers/gpio/Makefile | 1 +
drivers/gpio/gpio-regmap.c | 2 +-
.../gpio/{gpiolib-acpi.c => gpiolib-acpi-core.c} | 344 +--------
drivers/gpio/gpiolib-acpi-quirks.c | 412 +++++++++++
drivers/gpio/gpiolib-acpi.h | 15 +
drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 3 +-
drivers/gpu/drm/amd/amdgpu/amdgpu_ttm.c | 2 +
drivers/gpu/drm/amd/amdgpu/gmc_v11_0.c | 27 +
drivers/gpu/drm/amd/amdgpu/gmc_v12_0.c | 27 +
drivers/gpu/drm/amd/amdkfd/cwsr_trap_handler.h | 62 +-
.../gpu/drm/amd/amdkfd/cwsr_trap_handler_gfx12.asm | 37 +
drivers/gpu/drm/amd/amdkfd/kfd_queue.c | 1 +
drivers/gpu/drm/amd/amdkfd/kfd_topology.c | 4 +
.../amd/display/amdgpu_dm/amdgpu_dm_mst_types.c | 59 +-
drivers/gpu/drm/amd/display/dc/core/dc_surface.c | 2 +-
.../amd/display/dc/resource/dcn35/dcn35_resource.c | 8 +-
.../display/dc/resource/dcn351/dcn351_resource.c | 8 +-
drivers/gpu/drm/drm_buddy.c | 390 ++++++----
drivers/gpu/drm/drm_displayid.c | 58 +-
drivers/gpu/drm/drm_displayid_internal.h | 2 +
drivers/gpu/drm/gma500/fbdev.c | 43 --
drivers/gpu/drm/i915/gem/i915_gem_execbuffer.c | 37 +-
drivers/gpu/drm/i915/intel_memory_region.h | 2 +-
drivers/gpu/drm/imagination/pvr_gem.c | 11 +
drivers/gpu/drm/mediatek/mtk_ddp_comp.c | 33 +-
drivers/gpu/drm/mediatek/mtk_ddp_comp.h | 2 +-
drivers/gpu/drm/mediatek/mtk_dp.c | 1 +
drivers/gpu/drm/mediatek/mtk_drm_drv.c | 4 +-
drivers/gpu/drm/mgag200/mgag200_mode.c | 25 +
drivers/gpu/drm/msm/adreno/a6xx_gpu_state.c | 2 +-
.../gpu/drm/msm/disp/dpu1/dpu_encoder_phys_wb.c | 10 +-
drivers/gpu/drm/nouveau/dispnv50/atom.h | 13 +
drivers/gpu/drm/nouveau/dispnv50/wndw.c | 2 +-
drivers/gpu/drm/panel/panel-sony-td4353-jdi.c | 2 +
drivers/gpu/drm/panthor/panthor_gem.c | 18 +
drivers/gpu/drm/ttm/ttm_bo_vm.c | 6 +
drivers/gpu/drm/xe/xe_bo.c | 15 +-
drivers/gpu/drm/xe/xe_dma_buf.c | 2 +-
drivers/gpu/drm/xe/xe_exec.c | 3 +-
drivers/gpu/drm/xe/xe_gt.c | 7 +-
drivers/gpu/drm/xe/xe_guc_submit.c | 20 +-
drivers/gpu/drm/xe/xe_heci_gsc.c | 4 +-
drivers/gpu/drm/xe/xe_oa.c | 13 +-
drivers/gpu/drm/xe/xe_vm.c | 8 +-
drivers/gpu/drm/xe/xe_vm_types.h | 2 +-
drivers/hid/hid-input.c | 18 +-
drivers/hid/hid-logitech-dj.c | 56 +-
drivers/hwmon/dell-smm-hwmon.c | 9 +
drivers/hwmon/ibmpex.c | 9 +-
drivers/hwmon/ltc4282.c | 9 +-
drivers/hwmon/max16065.c | 7 +-
drivers/hwmon/max6697.c | 2 +-
drivers/hwmon/tmp401.c | 2 +-
drivers/hwmon/w83791d.c | 19 +-
drivers/hwmon/w83l786ng.c | 26 +-
drivers/hwtracing/intel_th/core.c | 20 +-
drivers/i2c/busses/i2c-amd-mp2-pci.c | 5 +-
drivers/i2c/busses/i2c-designware-core.h | 1 +
drivers/i2c/busses/i2c-designware-master.c | 7 +
drivers/iio/adc/ti_am335x_adc.c | 2 +-
drivers/infiniband/core/addr.c | 33 +-
drivers/infiniband/core/cma.c | 3 +
drivers/infiniband/core/device.c | 4 +-
drivers/infiniband/core/verbs.c | 2 +-
drivers/infiniband/hw/bnxt_re/ib_verbs.c | 7 +-
drivers/infiniband/hw/bnxt_re/qplib_rcfw.c | 2 +-
drivers/infiniband/hw/bnxt_re/qplib_res.c | 8 +-
drivers/infiniband/hw/efa/efa_verbs.c | 4 -
drivers/infiniband/hw/irdma/utils.c | 3 +-
drivers/infiniband/ulp/rtrs/rtrs-clt.c | 1 +
drivers/input/keyboard/lkkbd.c | 5 +-
drivers/input/mouse/alps.c | 1 +
drivers/input/serio/i8042-acpipnpio.h | 7 +
drivers/input/touchscreen/ti_am335x_tsc.c | 2 +-
drivers/interconnect/qcom/sdx75.c | 26 -
drivers/interconnect/qcom/sdx75.h | 2 -
drivers/iommu/amd/init.c | 15 +-
drivers/iommu/amd/iommu.c | 2 +-
drivers/iommu/apple-dart.c | 2 +
drivers/iommu/arm/arm-smmu/qcom_iommu.c | 10 +-
drivers/iommu/exynos-iommu.c | 9 +-
drivers/iommu/intel/irq_remapping.c | 8 +-
drivers/iommu/iommu-sva.c | 3 +
drivers/iommu/iommufd/selftest.c | 8 +-
drivers/iommu/ipmmu-vmsa.c | 2 +
drivers/iommu/mtk_iommu.c | 27 +-
drivers/iommu/mtk_iommu_v1.c | 25 +-
drivers/iommu/omap-iommu.c | 2 +-
drivers/iommu/omap-iommu.h | 2 -
drivers/iommu/sun50i-iommu.c | 2 +
drivers/iommu/tegra-smmu.c | 5 +-
drivers/isdn/capi/capi.c | 8 +-
drivers/leds/leds-cros_ec.c | 5 +-
drivers/leds/leds-lp50xx.c | 67 +-
drivers/md/dm-bufio.c | 10 +-
drivers/md/dm-ebs-target.c | 2 +-
drivers/md/md.c | 5 +-
drivers/md/raid10.c | 3 +-
drivers/md/raid5.c | 10 +-
drivers/media/cec/core/cec-core.c | 1 +
.../media/common/videobuf2/videobuf2-dma-contig.c | 1 +
drivers/media/i2c/adv7604.c | 4 +-
drivers/media/i2c/adv7842.c | 11 +-
drivers/media/i2c/imx219.c | 9 +-
drivers/media/i2c/msp3400-kthreads.c | 2 +
drivers/media/i2c/tda1997x.c | 1 -
drivers/media/platform/amphion/vpu_malone.c | 35 +-
drivers/media/platform/amphion/vpu_v4l2.c | 28 +-
drivers/media/platform/amphion/vpu_v4l2.h | 18 -
.../media/platform/mediatek/mdp3/mtk-mdp3-core.c | 14 +
.../mediatek/vcodec/common/mtk_vcodec_fw_vpu.c | 14 +-
.../mediatek/vcodec/decoder/mtk_vcodec_dec_drv.c | 12 +-
.../mediatek/vcodec/decoder/mtk_vcodec_dec_drv.h | 2 +-
.../platform/mediatek/vcodec/decoder/vdec_vpu_if.c | 5 +-
.../mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c | 12 +-
.../mediatek/vcodec/encoder/mtk_vcodec_enc_drv.h | 2 +-
.../platform/mediatek/vcodec/encoder/venc_vpu_if.c | 5 +-
drivers/media/platform/renesas/rcar_drif.c | 1 +
.../media/platform/samsung/exynos4-is/media-dev.c | 10 +-
drivers/media/platform/ti/davinci/vpif_capture.c | 4 +-
drivers/media/platform/ti/davinci/vpif_display.c | 4 +-
drivers/media/platform/verisilicon/hantro_g2.c | 84 ++-
.../platform/verisilicon/hantro_g2_hevc_dec.c | 17 +-
.../media/platform/verisilicon/hantro_g2_regs.h | 13 +
.../media/platform/verisilicon/hantro_g2_vp9_dec.c | 2 -
drivers/media/platform/verisilicon/hantro_hw.h | 1 +
drivers/media/platform/verisilicon/imx8m_vpu_hw.c | 2 +
drivers/media/rc/st_rc.c | 2 +-
drivers/media/test-drivers/vidtv/vidtv_channel.c | 3 +
drivers/media/usb/dvb-usb/dtv5100.c | 5 +
drivers/media/usb/pvrusb2/pvrusb2-hdw.c | 2 +-
drivers/mfd/altera-sysmgr.c | 2 +
drivers/mfd/max77620.c | 15 +-
drivers/misc/mei/Kconfig | 2 +-
drivers/misc/vmw_balloon.c | 3 +-
drivers/mmc/host/Kconfig | 4 +-
drivers/mmc/host/sdhci-msm.c | 27 +-
drivers/mmc/host/sdhci-of-arasan.c | 2 +-
drivers/mtd/mtdpart.c | 7 +-
drivers/mtd/spi-nor/winbond.c | 24 +
drivers/net/can/usb/gs_usb.c | 2 +-
drivers/net/dsa/b53/b53_common.c | 3 +
drivers/net/ethernet/amd/xgbe/xgbe-phy-v2.c | 2 +
drivers/net/ethernet/broadcom/b44.c | 3 +
drivers/net/ethernet/broadcom/bnxt/bnxt_xdp.c | 3 +-
drivers/net/ethernet/cadence/macb_main.c | 3 +-
drivers/net/ethernet/freescale/enetc/enetc.c | 3 +-
drivers/net/ethernet/freescale/fec_main.c | 7 +-
drivers/net/ethernet/google/gve/gve_main.c | 2 +-
drivers/net/ethernet/google/gve/gve_utils.c | 2 +
.../ethernet/hisilicon/hns3/hns3pf/hclge_main.c | 3 +
.../net/ethernet/hisilicon/hns3/hns3pf/hclge_mbx.c | 4 +-
.../ethernet/hisilicon/hns3/hns3vf/hclgevf_main.c | 4 +-
drivers/net/ethernet/intel/e1000/e1000_main.c | 10 +-
drivers/net/ethernet/intel/i40e/i40e.h | 11 +
drivers/net/ethernet/intel/i40e/i40e_ethtool.c | 12 -
drivers/net/ethernet/intel/i40e/i40e_main.c | 1 +
drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c | 4 +-
drivers/net/ethernet/intel/iavf/iavf_main.c | 4 +-
drivers/net/ethernet/intel/idpf/idpf_dev.c | 3 +
drivers/net/ethernet/intel/idpf/idpf_lib.c | 2 +-
.../net/ethernet/intel/idpf/idpf_singleq_txrx.c | 61 +-
drivers/net/ethernet/intel/idpf/idpf_txrx.c | 782 ++++++++-------------
drivers/net/ethernet/intel/idpf/idpf_txrx.h | 95 ++-
drivers/net/ethernet/intel/idpf/idpf_vf_dev.c | 3 +
.../ethernet/marvell/octeontx2/nic/otx2_ethtool.c | 8 +
drivers/net/ethernet/mellanox/mlx5/core/devlink.c | 5 +
.../ethernet/mellanox/mlx5/core/diag/fw_tracer.c | 97 ++-
.../ethernet/mellanox/mlx5/core/diag/fw_tracer.h | 1 +
.../ethernet/mellanox/mlx5/core/eswitch_offloads.c | 6 +
drivers/net/ethernet/mellanox/mlx5/core/fw_reset.c | 48 +-
drivers/net/ethernet/mellanox/mlx5/core/fw_reset.h | 1 +
drivers/net/ethernet/mellanox/mlx5/core/main.c | 1 +
drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c | 2 +
.../net/ethernet/mellanox/mlxsw/spectrum_router.c | 27 +-
drivers/net/ethernet/realtek/r8169_main.c | 5 +-
drivers/net/ethernet/smsc/smc91x.c | 10 +-
drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 17 +-
drivers/net/fjes/fjes_hw.c | 12 +-
drivers/net/ipvlan/ipvlan_core.c | 3 +
drivers/net/mdio/mdio-aspeed.c | 7 +
drivers/net/phy/marvell-88q2xxx.c | 2 +-
drivers/net/team/team_core.c | 2 +-
drivers/net/usb/asix_common.c | 5 +
drivers/net/usb/rtl8150.c | 2 +
drivers/net/usb/sr9700.c | 4 +-
drivers/net/usb/usbnet.c | 2 +
.../net/wireless/broadcom/brcm80211/brcmfmac/dmi.c | 14 +
drivers/net/wireless/mediatek/mt76/eeprom.c | 37 +-
drivers/net/wireless/mediatek/mt76/mt7615/main.c | 4 +-
drivers/net/wireless/mediatek/mt76/mt7615/pci.c | 6 +-
drivers/net/wireless/mediatek/mt76/mt7615/sdio.c | 4 +-
drivers/net/wireless/mediatek/mt76/mt7615/usb.c | 4 +-
.../net/wireless/mediatek/mt76/mt76_connac_mcu.c | 4 +-
.../net/wireless/mediatek/mt76/mt76_connac_mcu.h | 3 +-
drivers/net/wireless/mediatek/mt76/mt7921/mcu.c | 2 +-
drivers/net/wireless/mediatek/mt76/mt7921/pci.c | 6 +-
drivers/net/wireless/mediatek/mt76/mt7921/sdio.c | 6 +-
drivers/net/wireless/mediatek/mt76/mt7921/usb.c | 4 +-
drivers/net/wireless/mediatek/mt76/mt7925/init.c | 24 +-
drivers/net/wireless/mediatek/mt76/mt7925/mcu.c | 51 +-
drivers/net/wireless/mediatek/mt76/mt7925/mt7925.h | 21 +
drivers/net/wireless/mediatek/mt76/mt7925/pci.c | 33 +-
drivers/net/wireless/mediatek/mt76/mt7925/usb.c | 20 +-
drivers/net/wireless/mediatek/mt76/mt792x.h | 2 +
drivers/net/wireless/realtek/rtl8xxxu/core.c | 7 +-
.../net/wireless/realtek/rtlwifi/rtl8192cu/trx.c | 3 +-
drivers/net/wireless/realtek/rtw88/sdio.c | 4 +-
drivers/nfc/pn533/usb.c | 2 +-
drivers/nvme/host/fabrics.c | 2 +-
drivers/nvme/host/fc.c | 6 +-
drivers/of/fdt.c | 2 +-
drivers/parisc/gsc.c | 4 +-
drivers/pci/controller/pcie-brcmstb.c | 107 +--
drivers/pci/pci-driver.c | 4 +
drivers/perf/arm_cspmu/arm_cspmu.c | 4 +-
drivers/phy/broadcom/phy-bcm63xx-usbh.c | 6 +-
drivers/pinctrl/renesas/pinctrl-rzg2l.c | 75 +-
drivers/platform/chrome/cros_ec_ishtp.c | 1 +
drivers/platform/mellanox/mlxbf-pmc.c | 14 +-
.../platform/x86/hp/hp-bioscfg/enum-attributes.c | 4 +-
.../platform/x86/hp/hp-bioscfg/int-attributes.c | 2 +-
.../x86/hp/hp-bioscfg/order-list-attributes.c | 5 +
.../x86/hp/hp-bioscfg/passwdobj-attributes.c | 5 +
.../platform/x86/hp/hp-bioscfg/string-attributes.c | 2 +-
drivers/platform/x86/ibm_rtl.c | 2 +-
drivers/platform/x86/intel/chtwc_int33fe.c | 29 +-
drivers/platform/x86/intel/hid.c | 12 +
drivers/platform/x86/msi-laptop.c | 3 +
drivers/pmdomain/imx/gpc.c | 5 +-
drivers/rpmsg/qcom_glink_native.c | 8 +
drivers/s390/block/dasd_eckd.c | 8 +
drivers/scsi/aic94xx/aic94xx_init.c | 3 +
drivers/scsi/mpi3mr/mpi/mpi30_ioc.h | 1 +
drivers/scsi/mpi3mr/mpi3mr_fw.c | 2 +
drivers/scsi/qla2xxx/qla_def.h | 1 -
drivers/scsi/qla2xxx/qla_gbl.h | 2 +-
drivers/scsi/qla2xxx/qla_isr.c | 32 +-
drivers/scsi/qla2xxx/qla_mbx.c | 2 +
drivers/scsi/qla2xxx/qla_mid.c | 4 +-
drivers/scsi/qla2xxx/qla_os.c | 14 +-
drivers/scsi/scsi_debug.c | 2 +-
drivers/scsi/smartpqi/smartpqi_init.c | 4 +
drivers/soc/amlogic/meson-canvas.c | 5 +-
drivers/soc/apple/mailbox.c | 15 +-
drivers/soc/qcom/ocmem.c | 2 +-
drivers/soc/qcom/qcom-pbs.c | 2 +
drivers/soc/samsung/exynos-pmu.c | 2 +
drivers/soc/tegra/fuse/fuse-tegra.c | 2 -
drivers/soundwire/stream.c | 6 +-
drivers/spi/spi-cadence-quadspi.c | 4 +-
drivers/spi/spi-fsl-spi.c | 2 +-
drivers/staging/greybus/uart.c | 7 +-
drivers/target/target_core_transport.c | 1 +
drivers/tty/serial/serial_base_bus.c | 8 +-
drivers/tty/serial/serial_core.c | 7 +-
drivers/tty/serial/sh-sci.c | 2 +-
drivers/tty/serial/sprd_serial.c | 6 +
drivers/tty/serial/xilinx_uartps.c | 16 +-
drivers/tty/tty_port.c | 17 +-
drivers/ufs/core/ufshcd.c | 5 +-
drivers/ufs/host/ufs-mediatek.c | 5 +
drivers/usb/class/cdc-acm.c | 7 +-
drivers/usb/dwc3/dwc3-of-simple.c | 7 +-
drivers/usb/dwc3/gadget.c | 2 +-
drivers/usb/dwc3/host.c | 2 +-
drivers/usb/gadget/udc/lpc32xx_udc.c | 21 +-
drivers/usb/host/ohci-nxp.c | 2 +
drivers/usb/host/xhci-dbgtty.c | 2 +-
drivers/usb/host/xhci-hub.c | 2 +-
drivers/usb/phy/phy-fsl-usb.c | 1 +
drivers/usb/phy/phy-isp1301.c | 7 +-
drivers/usb/renesas_usbhs/pipe.c | 2 +
drivers/usb/serial/usb-serial.c | 7 +-
drivers/usb/storage/unusual_uas.h | 2 +-
drivers/usb/typec/altmodes/displayport.c | 8 +-
drivers/usb/typec/ucsi/ucsi.c | 6 +
drivers/usb/usbip/vhci_hcd.c | 6 +-
drivers/vdpa/octeon_ep/octep_vdpa_main.c | 1 +
drivers/vfio/pci/nvgrace-gpu/main.c | 4 +-
drivers/vfio/pci/pds/dirty.c | 7 +-
drivers/vfio/pci/vfio_pci_rdwr.c | 24 +-
drivers/vhost/vsock.c | 15 +-
drivers/video/fbdev/gbefb.c | 5 +-
drivers/video/fbdev/pxafb.c | 12 +-
drivers/video/fbdev/tcx.c | 2 +-
drivers/virtio/virtio_balloon.c | 4 +-
drivers/watchdog/via_wdt.c | 1 +
fs/btrfs/inode.c | 1 +
fs/btrfs/ioctl.c | 4 +-
fs/btrfs/scrub.c | 5 +
fs/btrfs/tree-log.c | 46 +-
fs/btrfs/volumes.c | 1 +
fs/erofs/zdata.c | 8 +-
fs/exfat/file.c | 5 +
fs/exfat/super.c | 19 +-
fs/ext4/ialloc.c | 1 -
fs/ext4/inode.c | 1 -
fs/ext4/mballoc.c | 2 +
fs/ext4/orphan.c | 4 +-
fs/ext4/super.c | 6 +-
fs/ext4/xattr.c | 6 +-
fs/f2fs/compress.c | 5 +-
fs/f2fs/data.c | 17 +
fs/f2fs/extent_cache.c | 5 +-
fs/f2fs/f2fs.h | 17 +-
fs/f2fs/file.c | 20 +-
fs/f2fs/gc.c | 2 +-
fs/f2fs/inode.c | 2 +-
fs/f2fs/namei.c | 6 +-
fs/f2fs/recovery.c | 20 +-
fs/f2fs/segment.c | 9 +-
fs/f2fs/super.c | 160 ++---
fs/f2fs/xattr.c | 30 +-
fs/f2fs/xattr.h | 10 +-
fs/fuse/file.c | 37 +-
fs/gfs2/glops.c | 3 +-
fs/gfs2/lops.c | 2 +-
fs/gfs2/quota.c | 2 +-
fs/gfs2/super.c | 4 +-
fs/hfsplus/bnode.c | 4 +-
fs/hfsplus/dir.c | 7 +-
fs/hfsplus/inode.c | 32 +-
fs/iomap/buffered-io.c | 41 +-
fs/iomap/direct-io.c | 10 +-
fs/jbd2/journal.c | 20 +-
fs/jbd2/transaction.c | 2 +-
fs/libfs.c | 50 +-
fs/lockd/svc4proc.c | 4 +-
fs/lockd/svclock.c | 21 +-
fs/lockd/svcproc.c | 5 +-
fs/locks.c | 12 +-
fs/nfs_common/nfslocalio.c | 10 +-
fs/nfsd/blocklayout.c | 3 +-
fs/nfsd/export.c | 2 +-
fs/nfsd/filecache.c | 2 +-
fs/nfsd/localio.c | 4 +-
fs/nfsd/netns.h | 11 +-
fs/nfsd/nfs4state.c | 4 +-
fs/nfsd/nfs4xdr.c | 5 +
fs/nfsd/nfssvc.c | 45 +-
fs/nfsd/vfs.h | 3 +-
fs/notify/fsnotify.c | 9 +-
fs/ntfs3/file.c | 14 +-
fs/ntfs3/frecord.c | 35 +-
fs/ntfs3/ntfs_fs.h | 9 +-
fs/ntfs3/run.c | 6 +-
fs/ntfs3/super.c | 5 +
fs/ocfs2/suballoc.c | 10 +
fs/smb/client/fs_context.c | 2 +
fs/smb/server/mgmt/tree_connect.c | 18 +-
fs/smb/server/mgmt/tree_connect.h | 1 -
fs/smb/server/mgmt/user_session.c | 4 +-
fs/smb/server/smb2pdu.c | 20 +-
fs/smb/server/vfs.c | 5 +-
fs/smb/server/vfs_cache.c | 88 ++-
fs/xfs/scrub/attr_repair.c | 2 +-
fs/xfs/xfs_attr_item.c | 2 +-
fs/xfs/xfs_buf_item.c | 1 +
fs/xfs/xfs_qm.c | 5 +-
include/drm/drm_buddy.h | 11 +-
include/drm/drm_edid.h | 6 +
include/linux/balloon_compaction.h | 43 +-
include/linux/compiler_types.h | 13 +
include/linux/fs.h | 2 +-
include/linux/genalloc.h | 1 +
include/linux/hrtimer.h | 23 +
include/linux/jbd2.h | 6 +
include/linux/kasan.h | 16 +
include/linux/nfslocalio.h | 12 +-
include/linux/reset.h | 1 +
include/linux/soundwire/sdw.h | 2 +-
include/linux/tpm.h | 8 +-
include/linux/tty_port.h | 21 +-
include/linux/vfio_pci_core.h | 10 +-
include/media/v4l2-mem2mem.h | 3 +-
include/net/ip.h | 6 +-
include/net/ip6_route.h | 4 +-
include/net/route.h | 2 +-
include/uapi/drm/xe_drm.h | 1 +
include/uapi/linux/mptcp.h | 1 +
io_uring/io_uring.c | 3 +
io_uring/openclose.c | 2 +-
io_uring/poll.c | 9 +-
kernel/kallsyms.c | 5 +-
kernel/livepatch/core.c | 8 +-
kernel/sched/cpudeadline.c | 34 +-
kernel/sched/cpudeadline.h | 4 +-
kernel/sched/deadline.c | 8 +-
kernel/sched/debug.c | 8 +-
kernel/sched/ext.c | 58 +-
kernel/sched/fair.c | 103 +--
kernel/sched/rt.c | 52 +-
kernel/sched/sched.h | 4 +-
kernel/scs.c | 2 +-
kernel/trace/fgraph.c | 10 +-
kernel/trace/trace_events.c | 2 +
kernel/trace/trace_events_synth.c | 1 -
lib/idr.c | 2 +
mm/balloon_compaction.c | 9 +-
mm/damon/tests/core-kunit.h | 99 ++-
mm/damon/tests/sysfs-kunit.h | 25 +
mm/damon/tests/vaddr-kunit.h | 26 +-
mm/kasan/common.c | 32 +
mm/kasan/hw_tags.c | 2 +-
mm/kasan/shadow.c | 4 +-
mm/ksm.c | 18 +-
mm/page_owner.c | 2 +-
mm/shmem.c | 24 +-
mm/vmalloc.c | 8 +-
net/bluetooth/rfcomm/tty.c | 7 +-
net/bridge/br_private.h | 1 +
net/caif/cffrml.c | 9 +-
net/ceph/osdmap.c | 116 ++-
net/core/sock.c | 16 +-
net/dsa/dsa.c | 8 +-
net/ethtool/ioctl.c | 30 +-
net/handshake/request.c | 8 +-
net/hsr/hsr_device.c | 7 +-
net/hsr/hsr_forward.c | 2 +
net/ipv4/fib_trie.c | 7 +-
net/ipv6/calipso.c | 3 +-
net/ipv6/exthdrs.c | 2 +-
net/ipv6/icmp.c | 4 +-
net/ipv6/ila/ila_lwt.c | 2 +-
net/ipv6/ioam6_iptunnel.c | 37 +-
net/ipv6/ip6_gre.c | 17 +-
net/ipv6/ip6_output.c | 19 +-
net/ipv6/ip6_tunnel.c | 4 +-
net/ipv6/ip6_udp_tunnel.c | 2 +-
net/ipv6/ip6_vti.c | 2 +-
net/ipv6/ndisc.c | 6 +-
net/ipv6/netfilter/nf_dup_ipv6.c | 2 +-
net/ipv6/output_core.c | 2 +-
net/ipv6/route.c | 33 +-
net/ipv6/rpl_iptunnel.c | 4 +-
net/ipv6/seg6_iptunnel.c | 20 +-
net/ipv6/seg6_local.c | 2 +-
net/mac80211/cfg.c | 10 -
net/mptcp/pm_netlink.c | 3 +-
net/mptcp/protocol.c | 22 +-
net/netfilter/ipvs/ip_vs_xmit.c | 3 +
net/netfilter/nf_conncount.c | 25 +-
net/netfilter/nf_nat_core.c | 14 +-
net/netfilter/nf_tables_api.c | 11 -
net/netfilter/nft_ct.c | 5 +
net/netrom/nr_out.c | 4 +-
net/nfc/core.c | 9 +-
net/openvswitch/flow_netlink.c | 13 +-
net/openvswitch/vport-netdev.c | 17 +-
net/rose/af_rose.c | 2 +-
net/sched/sch_ets.c | 6 +-
net/sunrpc/auth_gss/svcauth_gss.c | 3 +-
net/sunrpc/xprtrdma/svc_rdma_rw.c | 7 +-
net/wireless/core.c | 1 +
net/wireless/core.h | 1 +
net/wireless/mlme.c | 19 +
net/wireless/sme.c | 2 +-
net/wireless/util.c | 23 +-
samples/ftrace/ftrace-direct-modify.c | 8 +-
samples/ftrace/ftrace-direct-multi-modify.c | 8 +-
samples/ftrace/ftrace-direct-multi.c | 4 +-
samples/ftrace/ftrace-direct-too.c | 4 +-
samples/ftrace/ftrace-direct.c | 4 +-
scripts/Makefile.build | 26 +-
scripts/Makefile.modinst | 2 +-
scripts/faddr2line | 13 +-
security/keys/trusted-keys/trusted_tpm2.c | 6 +-
sound/isa/wavefront/wavefront_midi.c | 131 ++--
sound/isa/wavefront/wavefront_synth.c | 18 +-
sound/pci/hda/cs35l41_hda.c | 2 +
sound/pcmcia/pdaudiocf/pdaudiocf.c | 8 +-
sound/pcmcia/vx/vxpocket.c | 8 +-
sound/soc/codecs/ak4458.c | 4 -
sound/soc/codecs/lpass-tx-macro.c | 3 +-
sound/soc/codecs/wcd939x-sdw.c | 8 +-
sound/soc/qcom/qdsp6/q6adm.c | 146 ++--
sound/soc/qcom/qdsp6/q6apm-dai.c | 2 +
sound/soc/qcom/qdsp6/q6asm-dai.c | 7 +-
sound/soc/qcom/sc7280.c | 2 +-
sound/soc/qcom/sc8280xp.c | 2 +-
sound/soc/qcom/sdw.c | 107 +--
sound/soc/qcom/sdw.h | 1 +
sound/soc/qcom/sm8250.c | 2 +-
sound/soc/qcom/x1e80100.c | 2 +-
sound/soc/sh/rz-ssi.c | 64 +-
sound/soc/stm/stm32_sai.c | 14 +-
sound/soc/stm/stm32_sai_sub.c | 51 +-
sound/usb/mixer_us16x08.c | 20 +-
tools/lib/perf/cpumap.c | 10 +-
tools/mm/page_owner_sort.c | 6 +-
tools/testing/ktest/config-bisect.pl | 4 +-
tools/testing/nvdimm/test/nfit.c | 7 +-
tools/testing/radix-tree/idr-test.c | 21 +
.../test.d/ftrace/func_traceonoff_triggers.tc | 5 +-
tools/testing/selftests/iommu/iommufd.c | 54 +-
tools/testing/selftests/iommu/iommufd_fail_nth.c | 3 +-
tools/testing/selftests/iommu/iommufd_utils.h | 36 +-
tools/testing/selftests/net/mptcp/pm_netlink.sh | 4 +
tools/testing/selftests/net/mptcp/pm_nl_ctl.c | 11 +
.../net/netfilter/conntrack_reverse_clash.c | 13 +-
.../net/netfilter/conntrack_reverse_clash.sh | 2 +
.../packetdrill/conntrack_syn_challenge_ack.pkt | 2 +-
tools/testing/selftests/net/tap.c | 16 +-
virt/kvm/kvm_main.c | 2 +-
607 files changed, 5906 insertions(+), 3784 deletions(-)
21 hours, 38 minutes
- 16
- 584