mirror of
https://github.com/hardkernel/linux.git
synced 2026-06-05 18:41:58 +09:00
34f1eb99850e7df61a91c58d2afd2a18a5cf91ad
1169554 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Wei Xu
|
34f1eb9985 |
UPSTREAM: mm/mglru: only clear kswapd_failures if reclaimable
lru_gen_shrink_node() unconditionally clears kswapd_failures, which can
prevent kswapd from sleeping and cause 100% kswapd cpu usage even when
kswapd repeatedly fails to make progress in reclaim.
Only clear kswap_failures in lru_gen_shrink_node() if reclaim makes some
progress, similar to shrink_node().
I happened to run into this problem in one of my tests recently. It
requires a combination of several conditions: The allocator needs to
allocate a right amount of pages such that it can wake up kswapd
without itself being OOM killed; there is no memory for kswapd to
reclaim (My test disables swap and cleans page cache first); no other
process frees enough memory at the same time.
Bug: 254441685
Link: https://lkml.kernel.org/r/20241014221211.832591-1-weixugc@google.com
Fixes:
|
||
|
Johan Hovold
|
98cb57aeb3 |
UPSTREAM: serial: qcom-geni: fix receiver enable
The receiver is supposed to be enabled in the startup() callback and not
in set_termios() which is called also during console setup.
This specifically avoids accepting input before the port has been opened
(and interrupts enabled), something which can also break the GENI
firmware (cancel fails and after abort, the "stale" counter handling
appears to be broken so that later input is not processed until twelve
chars have been received).
There also does not appear to be any need to keep the receiver disabled
while updating the port settings.
Since commit 6f3c3cafb115 ("serial: qcom-geni: disable interrupts during
console writes") the calls to manipulate the secondary interrupts, which
were done without holding the port lock, can also lead to the receiver
being left disabled when set_termios() races with the console code (e.g.
when init opens the tty during boot). This can manifest itself as a
serial getty not accepting input.
The calls to stop and start rx in set_termios() can similarly race with
DMA completion and, for example, cause the DMA buffer to be unmapped
twice or the mapping to be leaked.
Fix this by only enabling the receiver during startup and while holding
the port lock to avoid racing with the console code.
Bug: 254441685
Fixes: 6f3c3cafb115 ("serial: qcom-geni: disable interrupts during console writes")
Fixes:
|
||
|
Johan Hovold
|
a368123b90 |
UPSTREAM: serial: qcom-geni: fix dma rx cancellation
Make sure to wait for the DMA transfer to complete when cancelling the
rx command on stop_rx(). This specifically prevents the DMA completion
interrupt from firing after rx has been restarted, something which can
lead to an IOMMU fault and hosed rx when the interrupt handler unmaps
the DMA buffer for the new command:
qcom_geni_serial 988000.serial: serial engine reports 0 RX bytes in!
arm-smmu 15000000.iommu: FSR = 00000402 [Format=2 TF], SID=0x563
arm-smmu 15000000.iommu: FSYNR0 = 00210013 [S1CBNDX=33 WNR PLVL=3]
Bluetooth: hci0: command 0xfc00 tx timeout
Bluetooth: hci0: Reading QCA version information failed (-110)
Also add the missing state machine reset which is needed in case
cancellation fails.
Bug: 254441685
Fixes:
|
||
|
Johan Hovold
|
7192539e3e |
UPSTREAM: serial: qcom-geni: revert broken hibernation support
This reverts commit |
||
|
Ulf Hansson
|
b45e2c9274 |
UPSTREAM: PM: domains: Fix alloc/free in dev_pm_domain_attach|detach_list()
The dev_pm_domain_attach|detach_list() functions are not resource managed,
hence they should not use devm_* helpers to manage allocation/freeing of
data. Let's fix this by converting to the traditional alloc/free functions.
Bug: 254441685
Fixes: 161e16a5e50a ("PM: domains: Add helper functions to attach/detach multiple PM domains")
Cc: stable@vger.kernel.org
Signed-off-by: Ulf Hansson <ulf.hansson@linaro.org>
Acked-by: Viresh Kumar <viresh.kumar@linaro.org>
Link: https://lore.kernel.org/r/20241002122232.194245-3-ulf.hansson@linaro.org
(cherry picked from commit 7738568885f2eaecfc10a3f530a2693e5f0ae3d0)
Signed-off-by: Lee Jones <joneslee@google.com>
Change-Id: If7138b246fcd6811001ba7b22c118b2e5132c463
|
||
|
Krishna Kurapati
|
b29cc3971e |
UPSTREAM: usb: dwc3: core: Fix compile warning on s390 gcc in dwc3_get_phy call
Recent commit introduced support for reading Multiport PHYs and while doing so iterated over an integer variable which runs from [0-254] in the worst case scenario. But S390 compiler treats it as a warning and complains that the integer write to string can go to 11 characters. Fix this by modifying iterator variable to u8. Bug: 254441685 Suggested-by: Johan Hovold <johan@kernel.org> Fixes: 30a46746ca5a ("usb: dwc3: core: Refactor PHY logic to support Multiport Controller") Reported-by: kernel test robot <lkp@intel.com> Closes: https://lore.kernel.org/oe-kbuild-all/202404241215.Mib19Cu7-lkp@intel.com/ Signed-off-by: Krishna Kurapati <quic_kriskura@quicinc.com> Reviewed-by: Johan Hovold <johan+linaro@kernel.org> Link: https://lore.kernel.org/r/20240426050512.57384-1-quic_kriskura@quicinc.com Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> (cherry picked from commit 3f12222a4bebeb13ce06ddecc1610ad32fa835dd) Signed-off-by: Lee Jones <joneslee@google.com> Change-Id: If11b5b866842a9e94edfdfcaa7c4aea1f575e0d2 |
||
|
Pierre Couillaud
|
48ab183a3e |
ANDROID: GKI: Update symbol list for bcmstb
INFO: 1 function symbol(s) added 'int __hwspin_trylock(struct hwspinlock*, int, unsigned long*)' Bug: 416077180 Change-Id: I7186f775675b14a2323eb62eabb7a05e485b7464 Signed-off-by: Pierre Couillaud <pierre@broadcom.com> |
||
|
Cong Wang
|
ca2f65da73 |
UPSTREAM: codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()
[ Upstream commit 342debc12183b51773b3345ba267e9263bdfaaef ] After making all ->qlen_notify() callbacks idempotent, now it is safe to remove the check of qlen!=0 from both fq_codel_dequeue() and codel_qdisc_dequeue(). Bug: 410432097 Reported-by: Gerrard Tai <gerrard.tai@starlabs.sg> Fixes: |
||
|
Isaac J. Manjarres
|
7b89b57429 |
ANDROID: mm/memfd-ashmem-shim: Simplify buffer name retrieval
The current way of getting the name for a buffer always requires a buffer to be allocated for the name to be copied into. This is inefficient, as names for shmem buffers are always stored in the same field, and they do not change. Therefore, simplify the name retrieval to just read the buffer name from the field it is always stored in for shmem buffers. This also aligns the code to what is present on the android16-6.12 branch. Bug: 401214613 Bug: 111903542 Change-Id: Idd7b2d16601c890b78bd5705c92842bee470e75c Signed-off-by: Isaac J. Manjarres <isaacmanjarres@google.com> |
||
|
Seiya Wang
|
0c1a07d9c2 |
ANDROID: GKI: Update the symbol list for mtk
1 function symbol(s) added 'ssize_t hdmi_audio_infoframe_pack_for_dp(const struct hdmi_audio_infoframe*, struct dp_sdp*, u8)' Bug: 414724747 Change-Id: I15c9372703d94a787df4e6af83551ca183d4fae9 Signed-off-by: Seiya Wang <seiya.wang@mediatek.com> |
||
|
Danylo Piliaiev
|
242f90b45e |
UPSTREAM: drm/msm: Rename drm_msm_gem_submit_reloc::or in C++ code
Clashes with C++ `or` keyword
Signed-off-by: Danylo Piliaiev <dpiliaiev@igalia.com>
Signed-off-by: Rob Clark <robdclark@chromium.org>
Reviewed-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org>
Patchwork: https://patchwork.freedesktop.org/patch/528751/
Link: https://lore.kernel.org/r/20230326163813.535762-1-robdclark@gmail.com
Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org>
Bug: 409896277
Change-Id: Ib8894a7facce6e4f80d586575b3cffaf53a22a1e
(cherry picked from commit
|
||
|
Bosser Ye
|
81ea45b132 |
ANDROID: GKI: Update symbol list for mtk
1 function symbol(s) added
'bool usb_check_int_endpoints(const struct usb_interface*, const u8*)'
Bug: 414032152
Change-Id: I74e2af13e5fcc7acd0ff060552f99485f5dda9f8
Signed-off-by: Bosser Ye <bo.ye@mediatek.com>
|
||
|
Cong Wang
|
1c4f8fb026 |
UPSTREAM: net_sched: Prevent creation of classes with TC_H_ROOT
[ Upstream commit 0c3057a5a04d07120b3d0ec9c79568fceb9c921e ] The function qdisc_tree_reduce_backlog() uses TC_H_ROOT as a termination condition when traversing up the qdisc tree to update parent backlog counters. However, if a class is created with classid TC_H_ROOT, the traversal terminates prematurely at this class instead of reaching the actual root qdisc, causing parent statistics to be incorrectly maintained. In case of DRR, this could lead to a crash as reported by Mingi Cho. Prevent the creation of any Qdisc class with classid TC_H_ROOT (0xFFFFFFFF) across all qdisc types, as suggested by Jamal. Bug: 403920173 Reported-by: Mingi Cho <mincho@theori.io> Signed-off-by: Cong Wang <xiyou.wangcong@gmail.com> Reviewed-by: Simon Horman <horms@kernel.org> Fixes: |
||
|
Greg Kroah-Hartman
|
a4fc1bef05 |
Merge tag 'android14-6.1.134_r00' into android14-6.1
This merges the android14-6.1.134_r00 tag into the android14-6.1 branch, catching it up with the latest LTS releases. It contains the following commits: * |
||
|
Seiya Wang
|
25fc41bbde |
ANDROID: GKI: Update symbol list for mtk
3 function symbol(s) added 'void devm_nvmem_cell_put(struct device*, struct nvmem_cell*)' 'void fw_devlink_purge_absent_suppliers(struct fwnode_handle*)' 'void typec_port_register_altmodes(struct typec_port*, const struct typec_altmode_ops*, void*, struct typec_altmode**, size_t)' Bug: 413254661 Change-Id: I8a87faa27b69088467e2a09060157a0871ad0d71 Signed-off-by: Seiya Wang <seiya.wang@mediatek.com> |
||
|
Patrick Rohr
|
f26d229ec8 |
ANDROID: Repurpose a reserved slot in ipv6_devconf for backports
This patch repurposes a ANDROID_KABI_RESERVE slot used for LTS backports for feature backports. Slot 4 is repurposed as parts of slot 1 are already used for accept_ra_min_lft on some branches. Bug: 315069348 Signed-off-by: Patrick Rohr <prohr@google.com> Change-Id: I19b9dfc16d891fb6fe48ec4379c6fa3dcb6adf89 |
||
|
Lokesh Gidra
|
70d648657b |
ANDROID: userfaultfd: adjust MOVE ioctl mode to confirm bug-fix
Kernel panic was observed in do_swap_page() when invoked on a previously moved (via MOVE ioctl) page from swap-cache. This was because [1] was not backported previously and therefore calling page_move_anon_rmap() would set PG_anon_exclusive flag in the source folio, which shouldn't be done for a swap-cache folio. [1] https://lore.kernel.org/all/20231002142949.235104-3-david@redhat.com/T/#ma99279cb1eb9d5f8f23540f68ea1244de7294ca0 Bug: 413428616 Change-Id: I867aa9c85fdba111bdecb303614438312038d2fe Signed-off-by: Lokesh Gidra <lokeshgidra@google.com> |
||
|
David Hildenbrand
|
d8a28dde36 |
BACKPORT: mm/rmap: move SetPageAnonExclusive() out of page_move_anon_rmap()
Patch series "mm/rmap: convert page_move_anon_rmap() to folio_move_anon_rmap()". Convert page_move_anon_rmap() to folio_move_anon_rmap(), letting the callers handle PageAnonExclusive. I'm including cleanup patch #3 because it fits into the picture and can be done cleaner by the conversion. This patch (of 3): Let's move it into the caller: there is a difference between whether an anon folio can only be mapped by one process (e.g., into one VMA), and whether it is truly exclusive (e.g., no references -- including GUP -- from other processes). Further, for large folios the page might not actually be pointing at the head page of the folio, so it better be handled in the caller. This is a preparation for converting page_move_anon_rmap() to consume a folio. Link: https://lkml.kernel.org/r/20231002142949.235104-1-david@redhat.com Link: https://lkml.kernel.org/r/20231002142949.235104-2-david@redhat.com Signed-off-by: David Hildenbrand <david@redhat.com> Reviewed-by: Suren Baghdasaryan <surenb@google.com> Reviewed-by: Vishal Moola (Oracle) <vishal.moola@gmail.com> Cc: Mike Kravetz <mike.kravetz@oracle.com> Cc: Muchun Song <muchun.song@linux.dev> Cc: Matthew Wilcox <willy@infradead.org> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Conflicts: 1. mm/hugetlb.c [Due to page_mapcount() instead of folio_mapcount() and folio_test_anon() instead of PageAnon()] (cherry picked from commit 5ca432896a4ce6d69fffc3298b24c0dd9bdb871f) Bug: 413428616 Bug: 313807618 Change-Id: Ibd29fec4d2a521d5ffc0782effd855cde9687a78 Signed-off-by: Suren Baghdasaryan <surenb@google.com> Signed-off-by: Lokesh Gidra <lokeshgidra@google.com> |
||
|
Pierre Couillaud
|
6a8cf1324d |
ANDROID: GKI: Update symbol list for bcmstb
INFO: 1 function symbol(s) added 'int rt_mutex_lock_interruptible(struct rt_mutex*)' Bug: 413081238 Change-Id: Ia54c8580030a17ac1d755087f97a7d59713db9fb Signed-off-by: Pierre Couillaud <pierre@broadcom.com> Signed-off-by: Danesh Petigara <danesh.petigara@broadcom.com> |
||
|
DANGJian
|
642656a367 |
ANDROID: GKI: Honor add symbols to symbol list
1 function symbol(s) added 'int __traceiter_android_vh_count_workingset_refault(void*, struct folio*)' 1 variable symbol(s) added 'struct tracepoint __tracepoint_android_vh_count_workingset_refault' Bug: 340146803 Change-Id: I050a87563905e333f8d34a5e3d0d0ef3e1fb0537 Signed-off-by: DANGJian <dangjian@honor.corp-partner.google.com> |
||
|
Lei Liu
|
40610f49d4 |
ANDROID: vendor hooks: add hook record workingset refault count
By recording the workingset refault count of important processes and passing it to the userspace policy, optimizations can be made to improve system performance. Bug: 340146803 Change-Id: Ibf9791d9645e392b49c24480ca0be5e7fe99bebe Signed-off-by: Lei Liu <liulei.rjpt@vivo.corp-partner.google.com> (cherry picked from commit c196e17dffdb946434b92410507395a586407be4) Signed-off-by: DANGJian <dangjian@honor.corp-partner.google.com> |
||
|
T.J. Mercier
|
9a57b38950 |
FROMGIT: cgroup/cpuset-v1: Add missing support for cpuset_v2_mode
Android has mounted the v1 cpuset controller using filesystem type "cpuset" (not "cgroup") since 2015 [1], and depends on the resulting behavior where the controller name is not added as a prefix for cgroupfs files. [2] Later, a problem was discovered where cpu hotplug onlining did not affect the cpuset/cpus files, which Android carried an out-of-tree patch to address for a while. An attempt was made to upstream this patch, but the recommendation was to use the "cpuset_v2_mode" mount option instead. [3] An effort was made to do so, but this fails with "cgroup: Unknown parameter 'cpuset_v2_mode'" because commit |
||
|
Dongdong zhang
|
bc3d1d352a |
ANDROID: GKI: update symbol list for xiaomi
INFO: 2 function symbol(s) added 'void* __xa_cmpxchg(struct xarray*, unsigned long, void*, void*, gfp_t)' 'key_ref_t lookup_user_key(key_serial_t, unsigned long, enum key_need_perm)' Bug: 410709465 Change-Id: I87d766b434bc48ec58064456f5f8980f8855c2f9 Signed-off-by: Dongdong zhang <zhangdongdong5@xiaomi.com> |
||
|
WeiQing Liu
|
6684cdb34e |
ANDROID: GKI: update symbol list file for xiaomi
1 function symbol(s) added 'void netdev_stats_to_stats64(struct rtnl_link_stats64 *, const struct net_device_stats *)' Bug: 411034968 Change-Id: I77cb8e7817fae851175c8773ab5c7938b774f58a Signed-off-by: WeiQing Liu <liuweiqing1@xiaomi.corp-partner.google.com> |
||
|
sunshijie
|
05899bf389 |
ANDROID: GKI: Update symbol list for xiaomi
5 function symbol(s) added 'int __traceiter_android_vh_filemap_add_folio(void*, struct address_space*, struct folio*, unsigned long)' 'int __traceiter_android_vh_mem_cgroup_charge(void*, struct folio*, struct mem_cgroup**)' 'int __traceiter_android_vh_shrink_node(void*, pg_data_t*, struct mem_cgroup*)' 'int cgroup_rm_cftypes(struct cftype*)' 'int mem_cgroup_move_account(struct page*, bool, struct mem_cgroup*, struct mem_cgroup*)' 3 variable symbol(s) added 'struct tracepoint __tracepoint_android_vh_filemap_add_folio' 'struct tracepoint __tracepoint_android_vh_mem_cgroup_charge' 'struct tracepoint __tracepoint_android_vh_shrink_node' Bug: 403826791 Change-Id: I954a5127703e7d6854835fbb4208a8c832949faf Signed-off-by: sunshijie <sunshijie@xiaomi.corp-partner.google.com> |
||
|
Jianan Huang
|
821206640c |
ANDROID: Export cgroup function to allow module to remove control files
Export cgroup_rm_cftypes to allow module to remove cgroup control files when exit, otherwise undefined behavior may occur. Bug: 340297716 Change-Id: Ieda8a8ab155aeb71e0f20fdfb5068ac24465061f Signed-off-by: Jianan Huang <huangjianan@xiaomi.com> (cherry picked from commit 800f7297b5d0b17f00ad09e345513c4ba30d77d2) |
||
|
Jianan Huang
|
c0b27cdcc7 |
ANDROID: mm: export mem_cgroup_move_account
Export mem_cgroup_move_account to migrate folios between different memcgs. This is to achieve more accurate memory reclamation. Bug: 373540729 Change-Id: I77ac12fdc25bae90f37f725be1a168da52f02abd Signed-off-by: Jianan Huang <huangjianan@xiaomi.com> (cherry picked from commit c031476ae982c66d0f0674eb0a5c1ee03e825fd7) |
||
|
Jianan Huang
|
ff55f3e7ea |
ANDROID: mm: add vendor hook to trace shrink_node
This is to adjust parameters between different memcgs to achieve more accurate memory reclamation. Bug: 373540729 Change-Id: Ifb97a144c057555c5f9181f357fa146f9509be3e Signed-off-by: Jianan Huang <huangjianan@xiaomi.com> (cherry picked from commit 9d6f981a89e6e289f114270e2f1738b2b6fdd2ab) |
||
|
Jianan Huang
|
f2a18f1865 |
ANDROID: mm: add vendor hook to add folio to specific memcg
Add vendor hook when folio charges memcg. This is to manage some specific folios in separate memcg for more accurate memory reclamation. Bug: 373540729 Change-Id: I11b1fca279ea9e9e8be1f789bdf1f9d7c1bf001f Signed-off-by: Jianan Huang <huangjianan@xiaomi.com> (cherry picked from commit 6e2565c513127c425ddfb84e473dba8161154036) |
||
|
Greg Kroah-Hartman
|
5a2ca52ae4 |
Revert "of: property: Increase NR_FWNODE_REFERENCE_ARGS"
This reverts commit
|
||
|
Greg Kroah-Hartman
|
f6e3f07621 |
Revert "can: statistics: use atomic access in hot path"
This reverts commit
|
||
|
Greg Kroah-Hartman
|
522ff9a1db |
Merge 6.1.134 into android14-6.1-lts
Changes in 6.1.134
watch_queue: fix pipe accounting mismatch
x86/mm/pat: cpa-test: fix length for CPA_ARRAY test
cpufreq: scpi: compare kHz instead of Hz
smack: dont compile ipv6 code unless ipv6 is configured
cpufreq: governor: Fix negative 'idle_time' handling in dbs_update()
x86/fpu: Fix guest FPU state buffer allocation size
x86/fpu: Avoid copying dynamic FP state from init_task in arch_dup_task_struct()
x86/platform: Only allow CONFIG_EISA for 32-bit
x86/sev: Add missing RIP_REL_REF() invocations during sme_enable()
lockdep/mm: Fix might_fault() lockdep check of current->mm->mmap_lock
PM: sleep: Adjust check before setting power.must_resume
selinux: Chain up tool resolving errors in install_policy.sh
EDAC/ie31200: Fix the size of EDAC_MC_LAYER_CHIP_SELECT layer
EDAC/ie31200: Fix the DIMM size mask for several SoCs
EDAC/ie31200: Fix the error path order of ie31200_init()
thermal: int340x: Add NULL check for adev
PM: sleep: Fix handling devices with direct_complete set on errors
lockdep: Don't disable interrupts on RT in disable_irq_nosync_lockdep.*()
perf/ring_buffer: Allow the EPOLLRDNORM flag for poll
x86/fpu/xstate: Fix inconsistencies in guest FPU xfeatures
media: verisilicon: HEVC: Initialize start_bit field
media: platform: allgro-dvt: unregister v4l2_device on the error path
ASoC: cs35l41: check the return value from spi_setup()
HID: remove superfluous (and wrong) Makefile entry for CONFIG_INTEL_ISH_FIRMWARE_DOWNLOADER
ALSA: hda/realtek: Always honor no_shutup_pins
ASoC: ti: j721e-evm: Fix clock configuration for ti,j7200-cpb-audio compatible
drm/bridge: ti-sn65dsi86: Fix multiple instances
drm/dp_mst: Fix drm RAD print
drm/bridge: it6505: fix HDCP V match check is not performed correctly
drm: xlnx: zynqmp: Fix max dma segment size
drm/vkms: Fix use after free and double free on init error
PCI: Use downstream bridges for distributing resources
drm/mediatek: mtk_hdmi: Unregister audio platform device on failure
drm/mediatek: mtk_hdmi: Fix typo for aud_sampe_size member
PCI/ASPM: Fix link state exit during switch upstream function removal
drm/msm/dsi: Set PHY usescase (and mode) before registering DSI host
PCI: cadence-ep: Fix the driver to send MSG TLP for INTx without data payload
PCI: brcmstb: Use internal register to change link capability
PCI: brcmstb: Fix error path after a call to regulator_bulk_get()
PCI: brcmstb: Fix potential premature regulator disabling
PCI/portdrv: Only disable pciehp interrupts early when needed
PCI: Avoid reset when disabled via sysfs
drm/amd/display: fix type mismatch in CalculateDynamicMetadataParameters()
PCI: Remove stray put_device() in pci_register_host_bridge()
PCI: xilinx-cpm: Fix IRQ domain leak in error path of probe
drm/mediatek: dsi: fix error codes in mtk_dsi_host_transfer()
drm/amd/display: avoid NPD when ASIC does not support DMUB
PCI: pciehp: Don't enable HPIE when resuming in poll mode
fbdev: au1100fb: Move a variable assignment behind a null pointer check
mdacon: rework dependency list
fbdev: sm501fb: Add some geometry checks.
clk: amlogic: gxbb: drop incorrect flag on 32k clock
crypto: hisilicon/sec2 - fix for aead authsize alignment
remoteproc: core: Clear table_sz when rproc_shutdown
of: property: Increase NR_FWNODE_REFERENCE_ARGS
remoteproc: qcom_q6v5_pas: Make single-PD handling more robust
libbpf: Fix hypothetical STT_SECTION extern NULL deref case
selftests/bpf: Fix string read in strncmp benchmark
clk: samsung: Fix UBSAN panic in samsung_clk_init()
clk: qcom: gcc-msm8953: fix stuck venus0_core0 clock
bpf: Use preempt_count() directly in bpf_send_signal_common()
lib: 842: Improve error handling in sw842_compress()
pinctrl: renesas: rza2: Fix missing of_node_put() call
pinctrl: renesas: rzg2l: Fix missing of_node_put() call
clk: rockchip: rk3328: fix wrong clk_ref_usb3otg parent
RDMA/core: Don't expose hw_counters outside of init net namespace
RDMA/mlx5: Fix calculation of total invalidated pages
RDMA/erdma: Prevent use-after-free in erdma_accept_newconn()
remoteproc: qcom_q6v5_mss: Handle platforms with one power domain
IB/mad: Check available slots before posting receive WRs
pinctrl: tegra: Set SFIO mode to Mux Register
clk: amlogic: g12b: fix cluster A parent data
clk: amlogic: gxbb: drop non existing 32k clock parent
selftests/bpf: Select NUMA_NO_NODE to create map
clk: amlogic: g12a: fix mmc A peripheral clock
x86/entry: Fix ORC unwinder for PUSH_REGS with save_ret=1
power: supply: max77693: Fix wrong conversion of charge input threshold value
crypto: nx - Fix uninitialised hv_nxc on error
RDMA/mlx5: Fix mlx5_poll_one() cur_qp update flow
pinctrl: renesas: rzv2m: Fix missing of_node_put() call
mfd: sm501: Switch to BIT() to mitigate integer overflows
x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment
crypto: hisilicon/sec2 - fix for aead auth key length
clk: qcom: mmcc-sdm660: fix stuck video_subcore0 clock
isofs: fix KMSAN uninit-value bug in do_isofs_readdir()
soundwire: slave: fix an OF node reference leak in soundwire slave device
coresight: catu: Fix number of pages while using 64k pages
coresight-etm4x: add isb() before reading the TRCSTATR
iio: accel: mma8452: Ensure error return on failure to matching oversampling ratio
iio: accel: msa311: Fix failure to release runtime pm if direct mode claim fails.
usb: xhci: correct debug message page size calculation
fs/ntfs3: Fix a couple integer overflows on 32bit systems
iio: adc: ad7124: Fix comparison of channel configs
perf evlist: Add success path to evlist__create_syswide_maps
perf units: Fix insufficient array space
kexec: initialize ELF lowest address to ULONG_MAX
ocfs2: validate l_tree_depth to avoid out-of-bounds access
arch/powerpc: drop GENERIC_PTDUMP from mpc885_ads_defconfig
NFSv4: Don't trigger uneccessary scans for return-on-close delegations
fuse: fix dax truncate/punch_hole fault path
um: remove copy_from_kernel_nofault_allowed
i3c: master: svc: Fix missing the IBI rules
perf python: Fixup description of sample.id event member
perf python: Decrement the refcount of just created event on failure
perf python: Don't keep a raw_data pointer to consumed ring buffer space
perf python: Check if there is space to copy all the event
staging: rtl8723bs: select CONFIG_CRYPTO_LIB_AES
fs/procfs: fix the comment above proc_pid_wchan()
perf tools: annotate asm_pure_loop.S
objtool, media: dib8000: Prevent divide-by-zero in dib8000_set_dds()
exfat: fix the infinite loop in exfat_find_last_cluster()
rtnetlink: Allocate vfinfo size for VF GUIDs when supported
rndis_host: Flag RNDIS modems as WWAN devices
ksmbd: use aead_request_free to match aead_request_alloc
ksmbd: fix multichannel connection failure
net/mlx5e: SHAMPO, Make reserved size independent of page size
ring-buffer: Fix bytes_dropped calculation issue
LoongArch: Fix help text of CMDLINE_EXTEND in Kconfig
ACPI: processor: idle: Return an error if both P_LVL{2,3} idle states are invalid
octeontx2-af: Fix mbox INTR handler when num VFs > 64
octeontx2-af: Free NIX_AF_INT_VEC_GEN irq
sched/smt: Always inline sched_smt_active()
context_tracking: Always inline ct_{nmi,irq}_{enter,exit}()
rcu-tasks: Always inline rcu_irq_work_resched()
wifi: iwlwifi: fw: allocate chained SG tables for dump
wifi: iwlwifi: mvm: use the right version of the rate API
nvme-tcp: fix possible UAF in nvme_tcp_poll
nvme-pci: clean up CMBMSC when registering CMB fails
nvme-pci: skip CMB blocks incompatible with PCI P2P DMA
wifi: brcmfmac: keep power during suspend if board requires it
affs: generate OFS sequence numbers starting at 1
affs: don't write overlarge OFS data block size fields
ALSA: hda/realtek: Fix Asus Z13 2025 audio
ALSA: hda: Fix speakers on ASUS EXPERTBOOK P5405CSA 1.0
platform/x86: intel-hid: fix volume buttons on Microsoft Surface Go 4 tablet
HID: i2c-hid: improve i2c_hid_get_report error message
ALSA: hda/realtek: Add support for ASUS ROG Strix G614 Laptops using CS35L41 HDA
ALSA: hda/realtek: Add support for ASUS Zenbook UM3406KA Laptops using CS35L41 HDA
sched/deadline: Use online cpus for validating runtime
locking/semaphore: Use wake_q to wake up processes outside lock critical section
x86/sgx: Warn explicitly if X86_FEATURE_SGX_LC is not enabled
drm/amd: Keep display off while going into S4
ALSA: hda/realtek: Add mute LED quirk for HP Pavilion x360 14-dy1xxx
can: statistics: use atomic access in hot path
memory: omap-gpmc: drop no compatible check
hwmon: (nct6775-core) Fix out of bounds access for NCT679{8,9}
spufs: fix a leak on spufs_new_file() failure
spufs: fix gang directory lifetimes
spufs: fix a leak in spufs_create_context()
riscv: ftrace: Add parentheses in macro definitions of make_call_t0 and make_call_ra
ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans
ntb: intel: Fix using link status DB's
ASoC: imx-card: Add NULL check in imx_card_probe()
netfilter: nft_set_hash: GC reaps elements with conncount for dynamic sets only
netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets
net_sched: skbprio: Remove overly strict queue assertions
net: mvpp2: Prevent parser TCAM memory corruption
udp: Fix memory accounting leak.
vsock: avoid timeout during connect() if the socket is closing
tunnels: Accept PACKET_HOST in skb_tunnel_check_pmtu().
netfilter: nft_tunnel: fix geneve_opt type confusion addition
ipv6: fix omitted netlink attributes when using RTEXT_FILTER_SKIP_STATS
net: dsa: mv88e6xxx: propperly shutdown PPU re-enable timer on destroy
net: fix geneve_opt length integer overflow
ipv6: Start path selection from the first nexthop
ipv6: Do not consider link down nexthops in path selection
arcnet: Add NULL check in com20020pci_probe()
io_uring/filetable: ensure node switch is always done, if needed
drm/amdgpu/gfx11: fix num_mec
tty: serial: fsl_lpuart: use UARTMODIR register bits for lpuart32 platform
tty: serial: fsl_lpuart: disable transmitter before changing RS485 related registers
usbnet:fix NPE during rx_complete
LoongArch: Increase ARCH_DMA_MINALIGN up to 16
LoongArch: BPF: Fix off-by-one error in build_prologue()
LoongArch: BPF: Use move_addr() for BPF_PSEUDO_FUNC
platform/x86: ISST: Correct command storage data length
ntb_perf: Delete duplicate dmaengine_unmap_put() call in perf_copy_chunk()
perf/x86/intel: Apply static call for drain_pebs
perf/x86/intel: Avoid disable PMU if !cpuc->enabled in sample read
kunit/overflow: Fix UB in overflow_allocation_test
btrfs: handle errors from btrfs_dec_ref() properly
x86/tsc: Always save/restore TSC sched_clock() on suspend/resume
x86/mm: Fix flush_tlb_range() when used for zapping normal PMDs
acpi: nfit: fix narrowing conversion in acpi_nfit_ctl
ACPI: resource: Skip IRQ override on ASUS Vivobook 14 X1404VAP
mmc: sdhci-pxav3: set NEED_RSP_BUSY capability
mmc: sdhci-omap: Disable MMC_CAP_AGGRESSIVE_PM for eMMC/SD
ksmbd: add bounds check for create lease context
ksmbd: fix use-after-free in ksmbd_sessions_deregister()
ksmbd: fix session use-after-free in multichannel connection
ksmbd: validate zero num_subauth before sub_auth is accessed
tracing: Fix use-after-free in print_graph_function_flags during tracer switching
tracing: Ensure module defining synth event cannot be unloaded while tracing
tracing: Fix synth event printk format for str fields
tracing/osnoise: Fix possible recursive locking for cpus_read_lock()
arm64: Don't call NULL in do_compat_alignment_fixup()
ext4: don't over-report free space or inodes in statvfs
ext4: fix OOB read when checking dotdot dir
jfs: fix slab-out-of-bounds read in ea_get()
jfs: add index corruption check to DT_GETPAGE()
media: streamzap: fix race between device disconnection and urb callback
nfsd: put dl_stid if fail to queue dl_recall
NFSD: Skip sending CB_RECALL_ANY when the backchannel isn't up
tracing: Do not use PERF enums when perf is not defined
Linux 6.1.134
Change-Id: I839a629271fb53021a249cc4f69a668d78f723e3
Signed-off-by: Greg Kroah-Hartman <gregkh@google.com>
|
||
|
Greg Kroah-Hartman
|
4878fe79fa |
Merge 6.1.133 into android14-6.1-lts
Changes in 6.1.133 ALSA: usb-audio: Add quirk for Plantronics headsets to fix control names HID: hid-plantronics: Add mic mute mapping and generalize quirks atm: Fix NULL pointer dereference ARM: 9350/1: fault: Implement copy_from_kernel_nofault_allowed() ARM: 9351/1: fault: Add "cut here" line for prefetch aborts ARM: Remove address checking for MMUless devices drm/amd/display: Check denominator crb_pipes before used netfilter: socket: Lookup orig tuple for IPv6 SNAT ALSA: hda/realtek: Support mute LED on HP Laptop 15s-du3xxx counter: stm32-lptimer-cnt: fix error handling when enabling counter: microchip-tcb-capture: Fix undefined counter channel state on probe tty: serial: 8250: Add some more device IDs tty: serial: 8250: Add Brainboxes XC devices net: usb: qmi_wwan: add Telit Cinterion FN990B composition net: usb: qmi_wwan: add Telit Cinterion FE990B composition net: usb: usbnet: restore usb%d name exception for local mac addresses memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove serial: 8250_dma: terminate correct DMA in tx_dma_flush() usb: gadget: uvc: Fix ERR_PTR dereference in uvc_v4l2.c usb: typec: ucsi: Fix NULL pointer access media: i2c: et8ek8: Don't strip remove function when driver is builtin ARM: dts: imx6qdl-apalis: Fix poweroff on Apalis iMX6 Linux 6.1.133 Change-Id: I77eaef12f435acdaa92e4c97431104044fc736f5 Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Greg Kroah-Hartman
|
e3b905a701 |
Merge 6.1.132 into android14-6.1-lts
Changes in 6.1.132 clockevents/drivers/i8253: Fix stop sequence for timer 0 sched/isolation: Prevent boot crash when the boot CPU is nohz_full hrtimer: Use and report correct timerslack values for realtime tasks fs/ntfs3: Fix shift-out-of-bounds in ntfs_fill_super fbdev: hyperv_fb: iounmap() the correct memory when removing a device pinctrl: bcm281xx: Fix incorrect regmap max_registers value netfilter: nft_ct: Use __refcount_inc() for per-CPU nft_ct_pcpu_template. ice: fix memory leak in aRFS after reset netfilter: nf_conncount: garbage collection is not skipped when jiffies wrap around sched: address a potential NULL pointer dereference in the GRED scheduler. wifi: cfg80211: cancel wiphy_work before freeing wiphy Bluetooth: hci_event: Fix enabling passive scanning Revert "Bluetooth: hci_core: Fix sleeping function called from invalid context" net: dsa: mv88e6xxx: Verify after ATU Load ops net: mctp i2c: Copy headers if cloned netpoll: hold rcu read lock in __netpoll_send_skb() drm/hyperv: Fix address space leak when Hyper-V DRM device is removed Drivers: hv: vmbus: Don't release fb_mmio resource in vmbus_free_mmio() net/mlx5: handle errors in mlx5_chains_create_table() eth: bnxt: do not update checksum in bnxt_xdp_build_skb() net: switchdev: Convert blocking notification chain to a raw one bonding: fix incorrect MAC address setting to receive NS messages netfilter: nf_conncount: Fully initialize struct nf_conncount_tuple in insert_tree() ipvs: prevent integer overflow in do_ip_vs_get_ctl() net_sched: Prevent creation of classes with TC_H_ROOT netfilter: nft_exthdr: fix offset with ipv4_find_option() gre: Fix IPv6 link-local address generation. net: openvswitch: remove misbehaving actions length check net/mlx5: Bridge, fix the crash caused by LAG state check net/mlx5e: Prevent bridge link show failure for non-eswitch-allowed devices nvme-fc: go straight to connecting state when initializing hrtimers: Mark is_migration_base() with __always_inline powercap: call put_device() on an error path in powercap_register_control_type() iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic() scsi: core: Use GFP_NOIO to avoid circular locking dependency scsi: qla1280: Fix kernel oops when debug level > 2 ACPI: resource: IRQ override for Eluktronics MECH-17 smb: client: fix noisy when tree connecting to DFS interlink targets alpha/elf: Fix misc/setarch test of util-linux by removing 32bit support vboxsf: fix building with GCC 15 HID: intel-ish-hid: fix the length of MNG_SYNC_FW_CLOCK in doorbell HID: intel-ish-hid: Send clock sync message immediately after reset HID: ignore non-functional sensor in HP 5MP Camera HID: hid-apple: Apple Magic Keyboard a3203 USB-C support HID: apple: fix up the F6 key on the Omoton KB066 keyboard sched: Clarify wake_up_q()'s write to task->wake_q.next platform/x86: thinkpad_acpi: Fix invalid fan speed on ThinkPad X120e platform/x86: thinkpad_acpi: Support for V9 DYTC platform profiles s390/cio: Fix CHPID "configure" attribute caching thermal/cpufreq_cooling: Remove structure member documentation Xen/swiotlb: mark xen_swiotlb_fixup() __init ALSA: hda/realtek: Limit mic boost on Positivo ARN50 ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() ASoC: rsnd: adjust convert rate limitation ASoC: arizona/madera: use fsleep() in up/down DAPM event delays. ASoC: SOF: Intel: hda: add softdep pre to snd-hda-codec-hdmi module net: wwan: mhi_wwan_mbim: Silence sequence number glitch errors nvme-pci: quirk Acer FA100 for non-uniqueue identifiers nvme-tcp: add basic support for the C2HTermReq PDU nvmet-rdma: recheck queue state is LIVE in state lock in recv done sctp: Fix undefined behavior in left shift operation nvme: only allow entering LIVE from CONNECTING state ASoC: tas2770: Fix volume scale ASoC: tas2764: Fix power control mask ASoC: tas2764: Set the SDOUT polarity correctly fuse: don't truncate cached, mutated symlink perf/x86/intel: Use better start period for frequency mode x86/irq: Define trace events conditionally mptcp: safety check before fallback drm/nouveau: Do not override forced connector status block: fix 'kmem_cache of name 'bio-108' already exists' io_uring: return error pointer from io_mem_alloc() io_uring: add ring freeing helper mm: add nommu variant of vm_insert_pages() io_uring: get rid of remap_pfn_range() for mapping rings/sqes io_uring: don't attempt to mmap larger than what the user asks for io_uring: fix corner case forgetting to vunmap xfs: pass refcount intent directly through the log intent code xfs: pass xfs_extent_free_item directly through the log intent code xfs: fix confusing xfs_extent_item variable names xfs: pass the xfs_bmbt_irec directly through the log intent code xfs: pass per-ag references to xfs_free_extent xfs: validate block number being freed before adding to xefi xfs: fix bounds check in xfs_defer_agfl_block() xfs: use deferred frees for btree block freeing xfs: reserve less log space when recovering log intent items xfs: move the xfs_rtbitmap.c declarations to xfs_rtbitmap.h xfs: convert rt bitmap extent lengths to xfs_rtbxlen_t xfs: consider minlen sized extents in xfs_rtallocate_extent_block xfs: don't leak recovered attri intent items xfs: make rextslog computation consistent with mkfs xfs: fix 32-bit truncation in xfs_compute_rextslog xfs: don't allow overly small or large realtime volumes xfs: remove unused fields from struct xbtree_ifakeroot xfs: recompute growfsrtfree transaction reservation while growing rt volume xfs: force all buffers to be written during btree bulk load xfs: initialise di_crc in xfs_log_dinode xfs: add lock protection when remove perag from radix tree xfs: fix perag leak when growfs fails xfs: ensure logflagsp is initialized in xfs_bmap_del_extent_real xfs: update dir3 leaf block metadata after swap xfs: reset XFS_ATTR_INCOMPLETE filter on node removal xfs: remove conditional building of rt geometry validator functions Input: i8042 - swap old quirk combination with new quirk for NHxxRZQ Input: i8042 - add required quirks for missing old boardnames Input: i8042 - swap old quirk combination with new quirk for several devices Input: i8042 - swap old quirk combination with new quirk for more devices USB: serial: ftdi_sio: add support for Altera USB Blaster 3 USB: serial: option: add Telit Cinterion FE990B compositions USB: serial: option: fix Telit Cinterion FE990A name USB: serial: option: match on interface class for Telit FN990B x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes drm/atomic: Filter out redundant DPMS calls drm/dp_mst: Fix locking when skipping CSN before topology probing drm/amd/display: Restore correct backlight brightness after a GPU reset drm/amd/display: Assign normalized_pix_clk when color depth = 14 drm/amd/display: Fix slab-use-after-free on hdcp_work clk: samsung: update PLL locktime for PLL142XX used on FSD platform ASoC: amd: yc: Support mic on another Lenovo ThinkPad E16 Gen 2 model qlcnic: fix memory leak issues in qlcnic_sriov_common.c rust: Disallow BTF generation with Rust + LTO lib/buildid: Handle memfd_secret() files in build_id_parse() tcp: fix races in tcp_abort() tcp: fix forever orphan socket caused by tcp_abort leds: mlxreg: Use devm_mutex_init() for mutex initialization ASoC: ops: Consistently treat platform_max as control value drm/gma500: Add NULL check for pci_gfx_root in mid_get_vbt_data() ASoC: codecs: wm0010: Fix error handling path in wm0010_spi_probe() scripts: generate_rust_analyzer: Handle sub-modules with no Makefile scripts: `make rust-analyzer` for out-of-tree modules scripts: generate_rust_analyzer: provide `cfg`s for `core` and `alloc` scripts: generate_rust_analyzer: add missing macros deps cifs: Fix integer overflow while processing acregmax mount option cifs: Fix integer overflow while processing acdirmax mount option cifs: Fix integer overflow while processing actimeo mount option cifs: Fix integer overflow while processing closetimeo mount option i2c: ali1535: Fix an error handling path in ali1535_probe() i2c: ali15x3: Fix an error handling path in ali15x3_probe() i2c: sis630: Fix an error handling path in sis630_probe() arm64: mm: Populate vmemmap at the page level if not section aligned smb3: add support for IAKerb smb: client: Fix match_session bug preventing session reuse HID: apple: disable Fn key handling on the Omoton KB066 nvme-tcp: Fix a C2HTermReq error message smb: client: fix potential UAF in cifs_dump_full_key() firmware: imx-scu: fix OF node leak in .probe() arm64: dts: freescale: tqma8mpql: Fix vqmmc-supply xfrm_output: Force software GSO only in tunnel mode soc: imx8m: Remove global soc_uid soc: imx8m: Use devm_* to simplify probe failure handling soc: imx8m: Unregister cpufreq and soc dev in cleanup path ARM: dts: bcm2711: PL011 UARTs are actually r1p5 RDMA/bnxt_re: Add missing paranthesis in map_qp_id_to_tbl_indx ARM: OMAP1: select CONFIG_GENERIC_IRQ_CHIP ARM: dts: bcm2711: Don't mark timer regs unconfigured RDMA/bnxt_re: Avoid clearing VLAN_ID mask in modify qp path RDMA/hns: Fix soft lockup during bt pages loop RDMA/hns: Fix unmatched condition in error path of alloc_user_qp_db() RDMA/hns: Fix a missing rollback in error path of hns_roce_create_qp_common() RDMA/hns: Fix wrong value of max_sge_rd Bluetooth: Fix error code in chan_alloc_skb_cb() ipv6: Fix memleak of nhc_pcpu_rth_output in fib_check_nh_v6_gw(). ipv6: Set errno after ip_fib_metrics_init() in ip6_route_info_create(). net: atm: fix use after free in lec_send() net: lwtunnel: fix recursion loops net/neighbor: add missing policy for NDTPA_QUEUE_LENBYTES Revert "gre: Fix IPv6 link-local address generation." i2c: omap: fix IRQ storms can: rcar_canfd: Fix page entries in the AFL list can: flexcan: only change CAN state when link up in system PM can: flexcan: disable transceiver during system PM drm/v3d: Don't run jobs that have errors flagged in its fence regulator: check that dummy regulator has been probed before using it arm64: dts: freescale: imx8mm-verdin-dahlia: add Microphone Jack to sound card mmc: sdhci-brcmstb: add cqhci suspend/resume to PM ops mmc: atmel-mci: Add missing clk_disable_unprepare() proc: fix UAF in proc_get_inode() ARM: shmobile: smp: Enforce shmobile_smp_* alignment efi/libstub: Avoid physical address 0x0 when doing random allocation xsk: fix an integer overflow in xp_create_and_assign_umem() batman-adv: Ignore own maximum aggregation size during RX soc: qcom: pdr: Fix the potential deadlock drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse() drm/amdgpu: Fix JPEG video caps max size for navi1x and raven ksmbd: fix incorrect validation for num_aces field of smb_acl drm/amd/display: Use HW lock mgr for PSR1 when only one eDP mptcp: Fix data stream corruption in the address announcement netfilter: nft_counter: Use u64_stats_t for statistic. drm/mediatek: Fix coverity issue with unintentional integer overflow media: mediatek: vcodec: Fix VP8 stateless decoder smatch warning arm64: dts: rockchip: fix u2phy1_host status for NanoPi R4S drm/amdgpu: fix use-after-free bug fs/ntfs3: Change new sparse cluster processing wifi: iwlwifi: mvm: ensure offloading TID queue exists mm/migrate: fix shmem xarray update during migration block, bfq: fix re-introduced UAF in bic_set_bfqq() xfs: give xfs_extfree_intent its own perag reference Linux 6.1.132 Change-Id: If8f5c0975337904552609e4542f88d5516d3d64d Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Greg Kroah-Hartman
|
919facc02c |
Merge 99ddc1491b ("ASoC: codecs: wm0010: Fix error handling path in wm0010_spi_probe()") into android14-6.1-lts
Steps on the way to 6.1.132 Change-Id: If8184688e643a49c75fddc490c23dd0673a393d5 Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Greg Kroah-Hartman
|
6151e5151b |
Revert "tcp: fix races in tcp_abort()"
This reverts commit
|
||
|
Greg Kroah-Hartman
|
0f8bbe98f1 |
Revert "tcp: fix forever orphan socket caused by tcp_abort"
This reverts commit
|
||
|
Greg Kroah-Hartman
|
c5f96457ad |
Merge b753821e06 ("tcp: fix forever orphan socket caused by tcp_abort") into android14-6.1-lts
Steps on the way to 6.1.132 Change-Id: Ifc65292ebb54b517fddc9c4ece3a8513d1259bb3 Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Greg Kroah-Hartman
|
1231f555d1 |
Merge cae9d2b162 ("tcp: fix races in tcp_abort()") into android14-6.1-lts
Steps on the way to 6.1.132 Change-Id: I08d48009db654a028a94cbe2285c1ea5de1ef8c5 Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Greg Kroah-Hartman
|
e6079359f7 |
Merge f9d0a13727 ("lib/buildid: Handle memfd_secret() files in build_id_parse()") into android14-6.1-lts
Steps on the way to 6.1.132 Change-Id: Ic857f63a2883154a4c5f69c6c58820922d9ccf0e Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Greg Kroah-Hartman
|
b2b62f9ec8 |
Merge 4964dbc419 ("drm/amd/display: Fix slab-use-after-free on hdcp_work") into android14-6.1-lts
Steps on the way to 6.1.132 Change-Id: Ib1da8d5bb95a224059c16e97e7f83f09b9468388 Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Sandeep Dhavale
|
e63d8c3188 |
ANDROID: f2fs: fix incorrect merge resolution in f2fs_trace_rw_file_path()
The merge included commit |
||
|
Greg Kroah-Hartman
|
39fddf40eb |
Merge 870e3066fe ("Input: i8042 - swap old quirk combination with new quirk for more devices") into android14-6.1-lts
Steps on the way to 6.1.132 Change-Id: Ia2d3d402dafb292ae1ce15725f8a8372a9fb845a Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Greg Kroah-Hartman
|
01ad57e248 |
Merge 9135df0218 ("io_uring: fix corner case forgetting to vunmap") into android14-6.1-lts
Steps on the way to 6.1.132 Change-Id: I855f7a2603de64f149c734218c9d7e2bc26c2a15 Signed-off-by: Greg Kroah-Hartman <gregkh@google.com> |
||
|
Dongdong zhang
|
efda22f348 |
ANDROID: GKI: update symbol list for xiaomi
INFO: 4 function symbol(s) added 'void bio_crypt_set_ctx(struct bio*, const struct blk_crypto_key*, const u64*, gfp_t)' 'void blk_crypto_evict_key(struct block_device*, const struct blk_crypto_key*)' 'int blk_crypto_init_key(struct blk_crypto_key*, const u8*, size_t, enum blk_crypto_key_type, enum blk_crypto_mode_num, unsigned int, unsigned int)' 'int blk_crypto_start_using_key(struct block_device*, const struct blk_crypto_key*)' Bug: 410012026 Change-Id: I74021d561087ea73c2c8896ff05a504a4eba87b7 Signed-off-by: Dongdong zhang <zhangdongdong5@xiaomi.com> |
||
|
Mahadevan
|
19a0fb1d35 |
ANDROID: abi_gki_aarch64_qcom: Update symbol list for display HFI driver
The symbol list has been updated to the QCOM ABI symbol list for the display
HFI driver to facilitate communication with the Display CoProcessor
(DCP Firmware).
1 function symbol added
virtqueue_get_vring
Bug: 409461670
Change-Id: I5ad34386609d3dc0a72a2600edc202fcecf0d999
Signed-off-by: Mahadevan <quic_mahap@quicinc.com>
|
||
|
Willem de Bruijn
|
37c227e873 |
UPSTREAM: bpf: support SKF_NET_OFF and SKF_LL_OFF on skb frags
Classic BPF socket filters with SKB_NET_OFF and SKB_LL_OFF fail to
read when these offsets extend into frags.
This has been observed with iwlwifi and reproduced with tun with
IFF_NAPI_FRAGS. The below straightforward socket filter on UDP port,
applied to a RAW socket, will silently miss matching packets.
const int offset_proto = offsetof(struct ip6_hdr, ip6_nxt);
const int offset_dport = sizeof(struct ip6_hdr) + offsetof(struct udphdr, dest);
struct sock_filter filter_code[] = {
BPF_STMT(BPF_LD + BPF_B + BPF_ABS, SKF_AD_OFF + SKF_AD_PKTTYPE),
BPF_JUMP(BPF_JMP + BPF_JEQ + BPF_K, PACKET_HOST, 0, 4),
BPF_STMT(BPF_LD + BPF_B + BPF_ABS, SKF_NET_OFF + offset_proto),
BPF_JUMP(BPF_JMP + BPF_JEQ + BPF_K, IPPROTO_UDP, 0, 2),
BPF_STMT(BPF_LD + BPF_H + BPF_ABS, SKF_NET_OFF + offset_dport),
This is unexpected behavior. Socket filter programs should be
consistent regardless of environment. Silent misses are
particularly concerning as hard to detect.
Use skb_copy_bits for offsets outside linear, same as done for
non-SKF_(LL|NET) offsets.
Offset is always positive after subtracting the reference threshold
SKB_(LL|NET)_OFF, so is always >= skb_(mac|network)_offset. The sum of
the two is an offset against skb->data, and may be negative, but it
cannot point before skb->head, as skb_(mac|network)_offset would too.
This appears to go back to when frag support was introduced to
sk_run_filter in linux-2.4.4, before the introduction of git.
The amount of code change and 8/16/32 bit duplication are unfortunate.
But any attempt I made to be smarter saved very few LoC while
complicating the code.
Fixes:
|
||
|
Seiya Wang
|
44009cb85e |
ANDROID: GKI: Update symbol list for mtk
2 function symbol(s) added 'struct sock* nf_sk_lookup_slow_v4(struct net*, const struct sk_buff*, const struct net_device*)' 'struct sock* nf_sk_lookup_slow_v6(struct net*, const struct sk_buff*, const struct net_device*)' Bug: 409358930 Change-Id: Id2cf12b854c696f824683157a39d3677638e4d19 Signed-off-by: Seiya Wang <seiya.wang@mediatek.com> |
||
|
Douglas Anderson
|
777d831361 |
UPSTREAM: regset: use kvzalloc() for regset_get_alloc()
While browsing through ChromeOS crash reports, I found one with an
allocation failure that looked like this:
chrome: page allocation failure: order:7,
mode:0x40dc0(GFP_KERNEL|__GFP_COMP|__GFP_ZERO),
nodemask=(null),cpuset=urgent,mems_allowed=0
CPU: 7 PID: 3295 Comm: chrome Not tainted
5.15.133-20574-g8044615ac35c #1 (HASH:1162 1)
Hardware name: Google Lazor (rev3 - 8) with KB Backlight (DT)
Call trace:
...
warn_alloc+0x104/0x174
__alloc_pages+0x5f0/0x6e4
kmalloc_order+0x44/0x98
kmalloc_order_trace+0x34/0x124
__kmalloc+0x228/0x36c
__regset_get+0x68/0xcc
regset_get_alloc+0x1c/0x28
elf_core_dump+0x3d8/0xd8c
do_coredump+0xeb8/0x1378
get_signal+0x14c/0x804
...
An order 7 allocation is (1 << 7) contiguous pages, or 512K. It's not
a surprise that this allocation failed on a system that's been running
for a while.
More digging showed that it was fairly easy to see the order 7
allocation by just sending a SIGQUIT to chrome (or other processes) to
generate a core dump. The actual amount being allocated was 279,584
bytes and it was for "core_note_type" NT_ARM_SVE.
There was quite a bit of discussion [1] on the mailing lists in
response to my v1 patch attempting to switch to vmalloc. The overall
conclusion was that we could likely reduce the 279,584 byte allocation
by quite a bit and Mark Brown has sent a patch to that effect [2].
However even with the 279,584 byte allocation gone there are still
65,552 byte allocations. These are just barely more than the 65,536
bytes and thus would require an order 5 allocation.
An order 5 allocation is still something to avoid unless necessary and
nothing needs the memory here to be contiguous. Change the allocation
to kvzalloc() which should still be efficient for small allocations
but doesn't force the memory subsystem to work hard (and maybe fail)
at getting a large contiguous chunk.
[1] https://lore.kernel.org/r/20240201171159.1.Id9ad163b60d21c9e56c2d686b0cc9083a8ba7924@changeid
[2] https://lore.kernel.org/r/20240203-arm64-sve-ptrace-regset-size-v1-1-2c3ba1386b9e@kernel.org
Link: https://lkml.kernel.org/r/20240205092626.v2.1.Id9ad163b60d21c9e56c2d686b0cc9083a8ba7924@changeid
Signed-off-by: Douglas Anderson <dianders@chromium.org>
Reviewed-by: Catalin Marinas <catalin.marinas@arm.com>
Cc: Al Viro <viro@ZenIV.linux.org.uk>
Cc: Christian Brauner <brauner@kernel.org>
Cc: Dave Martin <Dave.Martin@arm.com>
Cc: Eric Biederman <ebiederm@xmission.com>
Cc: Jan Kara <jack@suse.cz>
Cc: Kees Cook <keescook@chromium.org>
Cc: Mark Brown <broonie@kernel.org>
Cc: Matthew Wilcox (Oracle) <willy@infradead.org>
Cc: Oleg Nesterov <oleg@redhat.com>
Cc: Will Deacon <will@kernel.org>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Bug: 409708978
(cherry picked from commit 6b839b3b76cf17296ebd4a893841f32cae08229c)
Signed-off-by: Seiya Wang <seiya.wang@mediatek.com>
(cherry picked from https://android-review.googlesource.com/q/commit:4f551093f53b449c590bbd44e97bc2cdf528e8d3)
Merged-In: I42c9bcb78bde782b0b52432086c6b3e9e95ab6d3
Change-Id: I42c9bcb78bde782b0b52432086c6b3e9e95ab6d3
|
||
|
Greg Kroah-Hartman
|
abd5ee4e51 |
ANDROID: GKI: Update .stg file based on io_ring_ctx internal change
In commit |