deec4e9c079a1b498844ded7be22f89f7f25c5eb
23 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
aseshu
|
136573f110 |
Merge keystone/android12-5.10-keystone-qcom-release.205+ (a31d98f) into msm-5.10
* refs/heads/tmp-a31d98f:
ANDROID: userfaultfd: allow SPF for UFFD_FEATURE_SIGBUS on private+anon
ANDROID: GKI: Update symbols to symbol list
ANDROID: add hooks into blk-mq-sched.c for customized I/O scheduler
ANDROID: add hooks into blk-ma-tag.c for customized I/O scheduler
ANDROID: add hooks into blk-flush.c for customized I/O scheduler
ANDROID: add hooks into blk-core.c for customized I/O scheduler
ANDROID: add hooks into blk-mq.c for customized I/O scheduler.
ANDROID: add hooks into bio.c for customized I/O scheduler
UPSTREAM: usb: dwc3: gadget: Handle EP0 request dequeuing properly
UPSTREAM: usb: dwc3: gadget: Refactor EP0 forced stall/restart into a separate API
ANDROID: GKI: Update symbols to symbol list
ANDROID: add hooks into blk-mq-sched.c for customized I/O scheduler
ANDROID: add hooks into blk-ma-tag.c for customized I/O scheduler
ANDROID: add hooks into blk-flush.c for customized I/O scheduler
ANDROID: add hooks into blk-core.c for customized I/O scheduler
ANDROID: add hooks into blk-mq.c for customized I/O scheduler.
ANDROID: add hooks into bio.c for customized I/O scheduler
ANDROID: ABI: Update oplus symbol list
ANDROID: binder: Add vendor hook to fix priority restore
ANDROID: GKI: Update symbol list
ANDROID: Add vendor hook for task exiting routine
UPSTREAM: netfilter: nft_set_rbtree: skip end interval element from gc
ANDROID: GKI: Update oplus symbol list
UPSTREAM: usb: gadget: uvc: set v4l2_dev->dev in f_uvc
ANDROID: mm: Fix VMA ref count after fast-mremap
ANDROID: mm: Fix VMA ref count after fast-mremap
ANDROID: GKI: fix ABI breakage in struct ipv6_devconf
Reapply "net: release reference to inet6_dev pointer"
Reapply "net: change accept_ra_min_rtr_lft to affect all RA lifetimes"
Reapply "net: add sysctl accept_ra_min_rtr_lft"
ANDROID: GKI: explicit include of stringify.h
ANDROID: introduce a vendor hook to allow speculative swap pagefaults
ANDROID: mm: allow limited speculative page faulting in do_swap_page()
UPSTREAM: net: tls, update curr on splice as well
ANDROID: GKI: Update oplus symbol list
ANDROID: mm: Add vendor hooks for recording when kswapd finishing the reclaim job
ANDROID: GKI: Update oplus symbol list
ANDROID: vendor_hooks: Add hooks for adjusting alloc_flags
Reapply "perf: Fix perf_event_validate_size()"
UPSTREAM: ida: Fix crash in ida_free when the bitmap is empty
UPSTREAM: netfilter: nf_tables: Reject tables of unsupported family
UPSTREAM: net/rose: Fix Use-After-Free in rose_ioctl
ANDROID: GKI: Update symbol list for mtk
Reapply "perf: Disallow mis-matched inherited group reads"
ANDROID: scsi: ufs: UFS HPB feature not working
ANDROID: GKI: Update symbol list for mtk
FROMGIT: usb: dwc: ep0: Update request status in dwc3_ep0_stall_restart
FROMGIT: BACKPORT: mm: update mark_victim tracepoints fields
ANDROID: ABI: update allowed list for galaxy
ANDROID: ABI: update allowed list for galaxy
BACKPORT: exfat: reduce block requests when zeroing a cluster
UPSTREAM: netfilter: nf_tables: skip set commit for deleted/destroyed sets
ANDROID: GKI: fix crc issue in include/net/addrconf.h
Revert "cred: switch to using atomic_long_t"
Linux 5.10.205
powerpc/ftrace: Fix stack teardown in ftrace_no_trace
powerpc/ftrace: Create a dummy stackframe to fix stack unwind
tty: n_gsm: add sanity check for gsm->receive in gsm_receive_buf()
tty: n_gsm, remove duplicates of parameters
tty: n_gsm: fix tty registration before control channel open
USB: gadget: core: adjust uevent timing on gadget unbind
ring-buffer: Fix a race in rb_time_cmpxchg() for 32 bit archs
ring-buffer: Fix writing to the buffer with max_data_size
ring-buffer: Have saved event hold the entire event
tracing: Update snapshot buffer on resize if it is allocated
ring-buffer: Fix memory leak of free page
team: Fix use-after-free when an option instance allocation fails
arm64: mm: Always make sw-dirty PTEs hw-dirty in pte_modify
ext4: prevent the normalized size from exceeding EXT_MAX_BLOCKS
soundwire: stream: fix NULL pointer dereference for multi_link
perf: Fix perf_event_validate_size() lockdep splat
HID: hid-asus: add const to read-only outgoing usb buffer
net: usb: qmi_wwan: claim interface 4 for ZTE MF290
asm-generic: qspinlock: fix queued_spin_value_unlocked() implementation
HID: multitouch: Add quirk for HONOR GLO-GXXX touchpad
HID: hid-asus: reset the backlight brightness level on resume
HID: add ALWAYS_POLL quirk for Apple kb
HID: glorious: fix Glorious Model I HID report
platform/x86: intel_telemetry: Fix kernel doc descriptions
bcache: avoid NULL checking to c->root in run_cache_set()
bcache: add code comments for bch_btree_node_get() and __bch_btree_node_alloc()
bcache: remove redundant assignment to variable cur_idx
bcache: avoid oversize memory allocation by small stripe_size
blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock required!"
usb: aqc111: check packet for fixup for true limit
drm/mediatek: Add spinlock for setting vblank event in atomic_begin
PCI: loongson: Limit MRRS to 256
Revert "PCI: acpiphp: Reassign resources on bridge if necessary"
ALSA: hda/realtek: Apply mute LED quirk for HP15-db
ALSA: hda/hdmi: add force-connect quirks for ASUSTeK Z170 variants
fuse: dax: set fc->dax to NULL in fuse_dax_conn_free()
cred: switch to using atomic_long_t
net: atlantic: fix double free in ring reinit logic
appletalk: Fix Use-After-Free in atalk_ioctl
net: stmmac: Handle disabled MDIO busses from devicetree
net: stmmac: use dev_err_probe() for reporting mdio bus registration failure
vsock/virtio: Fix unsigned integer wrap around in virtio_transport_has_space()
sign-file: Fix incorrect return values check
net: ena: Fix XDP redirection error
net: ena: Destroy correct number of xdp queues upon failure
net: Remove acked SYN flag from packet in the transmit queue correctly
qed: Fix a potential use-after-free in qed_cxt_tables_alloc
net/rose: Fix Use-After-Free in rose_ioctl
atm: Fix Use-After-Free in do_vcc_ioctl
net: fec: correct queue selection
net: vlan: introduce skb_vlan_eth_hdr()
atm: solos-pci: Fix potential deadlock on &tx_queue_lock
atm: solos-pci: Fix potential deadlock on &cli_queue_lock
qca_spi: Fix reset behavior
qca_debug: Fix ethtool -G iface tx behavior
qca_debug: Prevent crash on TX ring changes
net: ipv6: support reporting otherwise unknown prefix flags in RTM_NEWPREFIX
HID: lenovo: Restrict detection of patched firmware only to USB cptkbd
afs: Fix refcount underflow from error handling race
netfilter: nf_tables: fix 'exist' matching on bigendian arches
Revert "psample: Require 'CAP_NET_ADMIN' when joining "packets" group"
Revert "genetlink: add CAP_NET_ADMIN test for multicast bind"
Revert "drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group"
Revert "perf/core: Add a new read format to get a number of lost samples"
Revert "perf: Fix perf_event_validate_size()"
Revert "hrtimers: Push pending hrtimers away from outgoing CPU earlier"
Linux 5.10.204
r8169: fix rtl8125b PAUSE frames blasting when suspended
devcoredump: Send uevent once devcd is ready
devcoredump : Serialize devcd_del work
smb: client: fix potential NULL deref in parse_dfs_referrals()
cifs: Fix non-availability of dedup breaking generic/304
Revert "btrfs: add dmesg output for first mount and last unmount of a filesystem"
mmc: block: Be sure to wait while busy in CQE error recovery
platform/x86: asus-wmi: Document the dgpu_disable sysfs attribute
tools headers UAPI: Sync linux/perf_event.h with the kernel sources
platform/x86: asus-wmi: Fix kbd_dock_devid tablet-switch reporting
netfilter: nft_set_pipapo: skip inactive elements during set walk
drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group
psample: Require 'CAP_NET_ADMIN' when joining "packets" group
genetlink: add CAP_NET_ADMIN test for multicast bind
netlink: don't call ->netlink_bind with table lock held
io_uring/af_unix: disable sending io_uring over sockets
MIPS: Loongson64: Enable DMA noncoherent support
MIPS: Loongson64: Reserve vgabios memory on boot
KVM: s390/mm: Properly reset no-dat
x86/CPU/AMD: Check vendor in the AMD microcode callback
serial: 8250_omap: Add earlycon support for the AM654 UART controller
serial: 8250: 8250_omap: Do not start RX DMA on THRI interrupt
serial: 8250: 8250_omap: Clear UART_HAS_RHR_IT_DIS bit
serial: sc16is7xx: address RX timeout interrupt errata
ARM: PL011: Fix DMA support
usb: typec: class: fix typec_altmode_put_partner to put plugs
Revert "xhci: Loosen RPM as default policy to cover for AMD xHC 1.1"
parport: Add support for Brainboxes IX/UC/PX parallel cards
usb: gadget: f_hid: fix report descriptor allocation
drm/amdgpu: correct the amdgpu runtime dereference usage count
gpiolib: sysfs: Fix error handling on failed export
perf: Fix perf_event_validate_size()
perf/core: Add a new read format to get a number of lost samples
tracing: Stop current tracer when resizing buffer
tracing: Set actual size after ring buffer resize
ring-buffer: Force absolute timestamp on discard of event
misc: mei: client.c: fix problem of return '-EOVERFLOW' in mei_cl_write
misc: mei: client.c: return negative error code in mei_cl_write
arm64: dts: mediatek: mt8183: Fix unit address for scp reserved memory
arm64: dts: mediatek: mt8173-evb: Fix regulator-fixed node names
arm64: dts: mediatek: mt7622: fix memory node warning check
packet: Move reference count in packet_sock to atomic_long_t
tracing: Fix a possible race when disabling buffered events
tracing: Fix incomplete locking when disabling buffered events
tracing: Disable snapshot buffer when stopping instance tracers
tracing: Always update snapshot buffer size
checkstack: fix printed address
nilfs2: prevent WARNING in nilfs_sufile_set_segment_usage()
nilfs2: fix missing error check for sb_set_blocksize call
ALSA: hda/realtek: Enable headset on Lenovo M90 Gen5
ALSA: pcm: fix out-of-bounds in snd_pcm_state_names
riscv: fix misaligned access handling of C.SWSP and C.SDSP
ARM: dts: imx7: Declare timers compatible with fsl,imx6dl-gpt
ARM: imx: Check return value of devm_kasprintf in imx_mmdc_perf_init
scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle()
tracing: Fix a warning when allocating buffered events fails
ASoC: wm_adsp: fix memleak in wm_adsp_buffer_populate
hwmon: (acpi_power_meter) Fix 4.29 MW bug
RDMA/bnxt_re: Correct module description string
RDMA/rtrs-clt: Remove the warnings for req in_use check
arm64: dts: rockchip: Expand reg size of vdec node for RK3399
tee: optee: Fix supplicant based device enumeration
bpf: sockmap, updating the sg structure should also update curr
tcp: do not accept ACK of bytes we never sent
netfilter: xt_owner: Fix for unsafe access of sk->sk_socket
net: hns: fix fake link up on xge port
ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit()
ionic: Fix dim work handling in split interrupt mode
ionic: fix snprintf format length warning
net: bnxt: fix a potential use-after-free in bnxt_init_tc
i40e: Fix unexpected MFS warning message
arcnet: restoring support for multiple Sohard Arcnet cards
net: arcnet: com20020 fix error handling
mlxbf-bootctl: correctly identify secure boot with development keys
hv_netvsc: rndis_filter needs to select NLS
octeontx2-pf: Add missing mutex lock in otx2_get_pauseparam
ipv6: fix potential NULL deref in fib6_add()
of: dynamic: Fix of_reconfig_get_state_change() return value documentation
of: Add missing 'Return' section in kerneldoc comments
of: Fix kerneldoc output formatting
of: base: Fix some formatting issues and provide missing descriptions
platform/x86: asus-wmi: Move i8042 filter install to shared asus-wmi code
platform/x86: asus-wmi: Simplify tablet-mode-switch handling
platform/x86: asus-wmi: Simplify tablet-mode-switch probing
platform/x86: asus-wmi: Add support for ROG X13 tablet mode
platform/x86: asus-wmi: Adjust tablet/lidflip handling to use enum
asus-wmi: Add dgpu disable method
platform/x86: asus-nb-wmi: Add tablet_mode_sw=lid-flip quirk for the TP200s
platform/x86: asus-nb-wmi: Allow configuring SW_TABLET_MODE method with a module option
platform/x86: asus-wmi: Add support for SW_TABLET_MODE on UX360
drm/amdgpu: correct chunk_ptr to a pointer to chunk.
kconfig: fix memory leak from range properties
tg3: Increment tx_dropped in tg3_tso_bug()
tg3: Move the [rt]x_dropped counters to tg3_napi
netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
i2c: designware: Fix corrupted memory seen in the ISR
hrtimers: Push pending hrtimers away from outgoing CPU earlier
Revert "mmc: core: add helpers mmc_regulator_enable/disable_vqmmc"
Revert "mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled"
Revert "driver core: Move the "removable" attribute from USB to core"
Revert "drm/amdgpu: don't use ATRM for external devices"
Revert "HID: core: store the unique system identifier in hid_device"
Revert "HID: fix HID device resource race between HID core and debugging support"
Revert "wireguard: use DEV_STATS_INC()"
ANDROID: Fix up ipvlan merge in 5.10.202
Revert "ASoC: soc-card: Add storage for PCI SSID"
Revert "tracing: Have trace_event_file have ref counters"
UPSTREAM: interconnect: qcom: Add support for mask-based BCMs
Revert "ipvlan: properly track tx_errors"
Revert "inet: shrink struct flowi_common"
Revert "arm64/arm: xen: enlighten: Fix KPTI checks"
Revert "mfd: core: Un-constify mfd_cell.of_reg"
Linux 5.10.203
driver core: Release all resources during unbind before updating device links
r8169: fix deadlock on RTL8125 in jumbo mtu mode
r8169: disable ASPM in case of tx timeout
mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled
mmc: core: add helpers mmc_regulator_enable/disable_vqmmc
mmc: block: Retry commands in CQE error recovery
mmc: core: convert comma to semicolon
mmc: cqhci: Fix task clearing in CQE error recovery
mmc: cqhci: Warn of halt or task clear failure
mmc: cqhci: Increase recovery halt timeout
cpufreq: imx6q: Don't disable 792 Mhz OPP unnecessarily
cpufreq: imx6q: don't warn for disabling a non-existing frequency
scsi: qla2xxx: Fix system crash due to bad pointer access
scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
scsi: core: Introduce the scsi_cmd_to_rq() function
smb3: fix caching of ctime on setxattr
fs: add ctime accessors infrastructure
drm/amdgpu: don't use ATRM for external devices
driver core: Move the "removable" attribute from USB to core
ima: annotate iint mutex to avoid lockdep false positive warnings
fbdev: stifb: Make the STI next font pointer a 32-bit signed offset
misc: pci_endpoint_test: Add deviceID for J721S2 PCIe EP device support
misc: pci_endpoint_test: Add deviceID for AM64 and J7200
s390/cmma: fix detection of DAT pages
s390/mm: fix phys vs virt confusion in mark_kernel_pXd() functions family
ASoC: SOF: sof-pci-dev: Fix community key quirk detection
ASoC: SOF: sof-pci-dev: don't use the community key on APL Chromebooks
ASoC: SOF: sof-pci-dev: add parameter to override topology filename
ASoC: SOF: sof-pci-dev: use community key on all Up boards
ASoC: Intel: Move soc_intel_is_foo() helpers to a generic header
smb3: fix touch -h of symlink
net: ravb: Start TX queues after HW initialization succeeded
net: ravb: Use pm_runtime_resume_and_get()
ravb: Fix races between ravb_tx_timeout_work() and net related ops
r8169: prevent potential deadlock in rtl8169_close
Revert "workqueue: remove unused cancel_work()"
octeontx2-pf: Fix adding mbox work queue entry when num_vfs > 64
net: stmmac: xgmac: Disable FPE MMC interrupts
selftests/net: mptcp: fix uninitialized variable warnings
selftests/net: ipsec: fix constant out of range
dpaa2-eth: increase the needed headroom to account for alignment
ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
usb: config: fix iteration issue in 'usb_get_bos_descriptor()'
USB: core: Change configuration warnings to notices
hv_netvsc: fix race of netvsc and VF register_netdevice
Input: xpad - add HyperX Clutch Gladiate Support
btrfs: make error messages more clear when getting a chunk map
btrfs: send: ensure send_fd is writable
btrfs: fix off-by-one when checking chunk map includes logical address
btrfs: ref-verify: fix memory leaks in btrfs_ref_tree_mod()
btrfs: add dmesg output for first mount and last unmount of a filesystem
parisc: Drop the HP-UX ENOSYM and EREMOTERELEASE error codes
powerpc: Don't clobber f0/vs0 during fp|altivec register save
iommu/vt-d: Add MTL to quirk list to skip TE disabling
bcache: revert replacing IS_ERR_OR_NULL with IS_ERR
dm verity: don't perform FEC for failed readahead IO
dm-verity: align struct dm_verity_fec_io properly
ALSA: hda/realtek: Add supported ALC257 for ChromeOS
ALSA: hda/realtek: Headset Mic VREF to 100%
ALSA: hda: Disable power-save on KONTRON SinglePC
mmc: block: Do not lose cache flush during CQE error recovery
firewire: core: fix possible memory leak in create_units()
pinctrl: avoid reload of p state in list iteration
io_uring: fix off-by one bvec index
USB: dwc3: qcom: fix wakeup after probe deferral
usb: dwc3: set the dma max_seg_size
usb: dwc3: Fix default mode initialization
USB: dwc2: write HCINT with INTMASK applied
USB: serial: option: don't claim interface 4 for ZTE MF290
USB: serial: option: fix FM101R-GL defines
USB: serial: option: add Fibocom L7xx modules
bcache: fixup lock c->root error
bcache: fixup init dirty data errors
bcache: prevent potential division by zero error
bcache: check return value from btree_node_alloc_replacement()
dm-delay: fix a race between delay_presuspend and delay_bio
hv_netvsc: Mark VF as slave before exposing it to user-mode
hv_netvsc: Fix race of register_netdevice_notifier and VF register
USB: serial: option: add Luat Air72*U series products
s390/dasd: protect device queue against concurrent access
bcache: fixup multi-threaded bch_sectors_dirty_init() wake-up race
bcache: replace a mistaken IS_ERR() by IS_ERR_OR_NULL() in btree_gc_coalesce()
swiotlb-xen: provide the "max_mapping_size" method
ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CVA
ASoC: simple-card: fixup asoc_simple_probe() error handling
nfsd: lock_rename() needs both directories to live on the same fs
ext4: make sure allocate pending entry not fail
ext4: fix slab-use-after-free in ext4_es_insert_extent()
ext4: using nofail preallocation in ext4_es_insert_extent()
ext4: using nofail preallocation in ext4_es_insert_delayed_block()
ext4: using nofail preallocation in ext4_es_remove_extent()
ext4: use pre-allocated es in __es_remove_extent()
ext4: use pre-allocated es in __es_insert_extent()
ext4: factor out __es_alloc_extent() and __es_free_extent()
ext4: add a new helper to check if es must be kept
MIPS: KVM: Fix a build warning about variable set but not used
media: ccs: Correctly initialise try compose rectangle
lockdep: Fix block chain corruption
USB: dwc3: qcom: fix ACPI platform device leak
USB: dwc3: qcom: fix resource leaks on probe deferral
nvmet: nul-terminate the NQNs passed in the connect command
nvmet: remove unnecessary ctrl parameter
afs: Fix file locking on R/O volumes to operate in local mode
afs: Return ENOENT if no cell DNS record can be found
net: axienet: Fix check for partial TX checksum
amd-xgbe: propagate the correct speed and duplex status
amd-xgbe: handle the corner-case during tx completion
amd-xgbe: handle corner-case during sfp hotplug
arm/xen: fix xen_vcpu_info allocation alignment
net/smc: avoid data corruption caused by decline
net: usb: ax88179_178a: fix failed operations during ax88179_reset
ipv4: Correct/silence an endian warning in __ip_do_redirect
HID: fix HID device resource race between HID core and debugging support
HID: core: store the unique system identifier in hid_device
drm/rockchip: vop: Fix color for RGB888/BGR888 format on VOP full
ata: pata_isapnp: Add missing error check for devm_ioport_map()
wireguard: use DEV_STATS_INC()
drm/panel: simple: Fix Innolux G101ICE-L01 timings
drm/panel: simple: Fix Innolux G101ICE-L01 bus flags
drm/panel: auo,b101uan08.3: Fine tune the panel power sequence
drm/panel: boe-tv101wum-nl6: Fine tune the panel power sequence
afs: Make error on cell lookup failure consistent with OpenAFS
afs: Fix afs_server_list to be cleaned up with RCU
PCI: keystone: Drop __init from ks_pcie_add_pcie_{ep,port}()
RDMA/irdma: Prevent zero-length STAG registration
ANDROID: GKI: db845c: Update symbols list and ABI on rpmsg_register_device_override
Linux 5.10.202
interconnect: qcom: Add support for mask-based BCMs
netfilter: nf_tables: disable toggling dormant table state more than once
netfilter: nf_tables: fix table flag updates
netfilter: nftables: update table flags from the commit phase
tracing: Have trace_event_file have ref counters
io_uring/fdinfo: lock SQ thread while retrieving thread cpu/pid
drm/amd/display: Change the DMCUB mailbox memory location from FB to inbox
drm/amdgpu: fix error handling in amdgpu_bo_list_get()
drm/amd/pm: Handle non-terminated overdrive commands.
ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks
ext4: correct the start block of counting reserved clusters
ext4: correct return value of ext4_convert_meta_bg
ext4: correct offset of gdb backup in non meta_bg group to update_backups
ext4: apply umask if ACL support is disabled
Revert "net: r8169: Disable multicast filter for RTL8168H and RTL8107E"
media: qcom: camss: Fix vfe_get() error jump
mm: kmem: drop __GFP_NOFAIL when allocating objcg vectors
nfsd: fix file memleak on client_opens_release
media: venus: hfi: add checks to handle capabilities from firmware
media: venus: hfi: fix the check to handle session buffer requirement
media: venus: hfi_parser: Add check to keep the number of codecs within range
media: sharp: fix sharp encoding
media: lirc: drop trailing space from scancode transmit
f2fs: avoid format-overflow warning
i2c: i801: fix potential race in i801_block_transaction_byte_by_byte
net: phylink: initialize carrier state at creation
net: dsa: lan9303: consequently nested-lock physical MDIO
i2c: designware: Disable TX_EMPTY irq while waiting for block length byte
lsm: fix default return value for inode_getsecctx
lsm: fix default return value for vm_enough_memory
Revert ncsi: Propagate carrier gain/loss events to the NCSI controller
arm64: dts: qcom: ipq6018: Fix tcsr_mutex register size
arm64: dts: qcom: ipq6018: switch TCSR mutex to MMIO
PCI: exynos: Don't discard .remove() callback
Bluetooth: btusb: Add 0bda:b85b for Fn-Link RTL8852BE
Bluetooth: btusb: Add RTW8852BE device 13d3:3570 to device tables
bluetooth: Add device 13d3:3571 to device tables
bluetooth: Add device 0bda:887b to device tables
Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0cb8:0xc559
cpufreq: stats: Fix buffer overflow detection in trans_stats()
tty: serial: meson: fix hard LOCKUP on crtscts mode
serial: meson: Use platform_get_irq() to get the interrupt
tty: serial: meson: retrieve port FIFO size from DT
serial: meson: remove redundant initialization of variable id
ALSA: hda/realtek - Enable internal speaker of ASUS K6500ZC
ALSA: hda/realtek - Add Dell ALC295 to pin fall back table
ALSA: info: Fix potential deadlock at disconnection
xhci: Enable RPM on controllers that support low-power states
parisc/pgtable: Do not drop upper 5 address bits of physical address
parisc: Prevent booting 64-bit kernels on PA1.x machines
i3c: master: cdns: Fix reading status register
mtd: cfi_cmdset_0001: Byte swap OTP info
mm/memory_hotplug: use pfn math in place of direct struct page manipulation
mm/cma: use nth_page() in place of direct struct page manipulation
dmaengine: stm32-mdma: correct desc prep when channel running
mcb: fix error handling for different scenarios when parsing
i2c: core: Run atomic i2c xfer when !preemptible
kernel/reboot: emergency_restart: Set correct system_state
quota: explicitly forbid quota files from being encrypted
jbd2: fix potential data lost in recovering journal raced with synchronizing fs bdev
PCI: keystone: Don't discard .probe() callback
PCI: keystone: Don't discard .remove() callback
genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware
mmc: meson-gx: Remove setting of CMD_CFG_ERROR
wifi: ath11k: fix htt pktlog locking
wifi: ath11k: fix dfs radar event locking
wifi: ath11k: fix temperature event locking
ima: detect changes to the backing overlay file
firmware: qcom_scm: use 64-bit calling convention only when client is 64-bit
btrfs: don't arbitrarily slow down delalloc if we're committing
rcu: kmemleak: Ignore kmemleak false positives when RCU-freeing objects
PM: hibernate: Clean up sync_read handling in snapshot_write_next()
PM: hibernate: Use __get_safe_page() rather than touching the list
arm64: dts: qcom: ipq6018: Fix hwlock index for SMEM
PCI/ASPM: Fix L1 substate handling in aspm_attr_store_common()
mmc: sdhci_am654: fix start loop index for TAP value parsing
mmc: vub300: fix an error code
clk: qcom: ipq6018: drop the CLK_SET_RATE_PARENT flag from PLL clocks
clk: qcom: ipq8074: drop the CLK_SET_RATE_PARENT flag from PLL clocks
parisc/pdc: Add width field to struct pdc_model
arm64: Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer
ACPI: resource: Do IRQ override on TongFang GMxXGxx
watchdog: move softlockup_panic back to early_param
PCI/sysfs: Protect driver's D3cold preference from user space
hvc/xen: fix error path in xen_hvc_init() to always register frontend driver
hvc/xen: fix console unplug
tty/sysrq: replace smp_processor_id() with get_cpu()
audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare()
audit: don't take task_lock() in audit_exe_compare() code path
KVM: x86: Ignore MSR_AMD64_TW_CFG access
KVM: x86: hyper-v: Don't auto-enable stimer on write from user-space
x86/cpu/hygon: Fix the CPU topology evaluation for real
scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for selected registers
scsi: mpt3sas: Fix loop logic
bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END
bpf: Fix check_stack_write_fixed_off() to correctly spill imm
randstruct: Fix gcc-plugin performance mode to stay in group
powerpc/perf: Fix disabling BHRB and instruction sampling
media: venus: hfi: add checks to perform sanity on queue pointers
cifs: fix check of rc in function generate_smb3signingkey
cifs: spnego: add ';' in HOST_KEY_LEN
tools/power/turbostat: Fix a knl bug
macvlan: Don't propagate promisc change to lower dev in passthru
net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors
net/mlx5_core: Clean driver version and name
net/mlx5e: fix double free of encap_header
net: stmmac: fix rx budget limit check
netfilter: nf_conntrack_bridge: initialize err to 0
net: ethernet: cortina: Fix MTU max setting
net: ethernet: cortina: Handle large frames
net: ethernet: cortina: Fix max RX frame define
bonding: stop the device in bond_setup_by_slave()
ptp: annotate data-race around q->head and q->tail
xen/events: fix delayed eoi list handling
ppp: limit MRU to 64K
tipc: Fix kernel-infoleak due to uninitialized TLV value
net: hns3: fix VF reset fail issue
net: hns3: fix variable may not initialized problem in hns3_init_mac_addr()
tty: Fix uninit-value access in ppp_sync_receive()
ipvlan: add ipvlan_route_v6_outbound() helper
gfs2: Silence "suspicious RCU usage in gfs2_permission" warning
SUNRPC: Fix RPC client cleaned up the freed pipefs dentries
NFSv4.1: fix SP4_MACH_CRED protection for pnfs IO
SUNRPC: Add an IS_ERR() check back to where it was
SUNRPC: ECONNRESET might require a rebind
xhci: turn cancelled td cleanup to its own function
wifi: iwlwifi: Use FW rate for non-data frames
pwm: Fix double shift bug
drm/amdgpu: fix software pci_unplug on some chips
ASoC: ti: omap-mcbsp: Fix runtime PM underflow warnings
kgdb: Flush console before entering kgdb on panic
drm/amd/display: Avoid NULL dereference of timing generator
media: imon: fix access to invalid resource for the second interface
media: cobalt: Use FIELD_GET() to extract Link Width
gfs2: fix an oops in gfs2_permission
gfs2: ignore negated quota changes
media: vivid: avoid integer overflow
media: gspca: cpia1: shift-out-of-bounds in set_flicker
i2c: sun6i-p2wi: Prevent potential division by zero
9p/trans_fd: Annotate data-racy writes to file::f_flags
usb: gadget: f_ncm: Always set current gadget in ncm_bind()
tty: vcc: Add check for kstrdup() in vcc_probe()
exfat: support handle zero-size directory
HID: Add quirk for Dell Pro Wireless Keyboard and Mouse KM5221W
misc: pci_endpoint_test: Add Device ID for R-Car S4-8 PCIe controller
scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup()
atm: iphase: Do PCI error checks on own line
PCI: tegra194: Use FIELD_GET()/FIELD_PREP() with Link Width fields
ALSA: hda: Fix possible null-ptr-deref when assigning a stream
ARM: 9320/1: fix stack depot IRQ stack filter
HID: lenovo: Detect quirk-free fw on cptkbd and stop applying workaround
jfs: fix array-index-out-of-bounds in diAlloc
jfs: fix array-index-out-of-bounds in dbFindLeaf
fs/jfs: Add validity check for db_maxag and db_agpref
fs/jfs: Add check for negative db_l2nbperpage
RDMA/hfi1: Use FIELD_GET() to extract Link Width
crypto: pcrypt - Fix hungtask for PADATA_RESET
ASoC: soc-card: Add storage for PCI SSID
selftests/efivarfs: create-read: fix a resource leak
drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL
drm/panel: st7703: Pick different reset sequence
drm/panel/panel-tpo-tpg110: fix a possible null pointer dereference
drm/panel: fix a possible null pointer dereference
drm/amdgpu: Fix potential null pointer derefernce
drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga
drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7
drm/msm/dp: skip validity check for DP CTS EDID checksum
drm/komeda: drop all currently held locks if deadlock happens
platform/x86: thinkpad_acpi: Add battery quirk for Thinkpad X120e
Bluetooth: Fix double free in hci_conn_cleanup
Bluetooth: btusb: Add date->evt_skb is NULL check
wifi: ath10k: Don't touch the CE interrupt registers after power up
net: annotate data-races around sk->sk_dst_pending_confirm
net: annotate data-races around sk->sk_tx_queue_mapping
wifi: ath10k: fix clang-specific fortify warning
wifi: ath9k: fix clang-specific fortify warnings
bpf: Detect IP == ksym.end as part of BPF program
wifi: mac80211: don't return unset power in ieee80211_get_tx_power()
wifi: mac80211_hwsim: fix clang-specific fortify warning
x86/mm: Drop the 4 MB restriction on minimal NUMA node memory size
clocksource/drivers/timer-atmel-tcb: Fix initialization on SAM9 hardware
clocksource/drivers/timer-imx-gpt: Fix potential memory leak
perf/core: Bail out early if the request AUX area is out of bound
locking/ww_mutex/test: Fix potential workqueue corruption
ANDROID: fix up rpmsg_device ABI break
ANDROID: fix up platform_device ABI break
Revert "kasan: print the original fault addr when access invalid shadow"
Linux 5.10.201
btrfs: use u64 for buffer sizes in the tree search ioctls
Revert "mmc: core: Capture correct oemid-bits for eMMC cards"
tracing/kprobes: Fix the order of argument descriptions
fbdev: fsl-diu-fb: mark wr_reg_wa() static
fbdev: imsttfb: fix a resource leak in probe
fbdev: imsttfb: Fix error path of imsttfb_probe()
spi: spi-zynq-qspi: add spi-mem to driver kconfig dependencies
drm/syncobj: fix DRM_SYNCOBJ_WAIT_FLAGS_WAIT_AVAILABLE
x86/sev-es: Allow copy_from_kernel_nofault() in earlier boot
x86: Share definition of __is_canonical_address()
netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses
netfilter: nft_redir: use `struct nf_nat_range2` throughout and deduplicate eval call-backs
netfilter: xt_recent: fix (increase) ipv6 literal buffer length
r8169: respect userspace disabling IFF_MULTICAST
tg3: power down device only on SYSTEM_POWER_OFF
net/smc: put sk reference if close work was canceled
net/smc: allow cdc msg send rather than drop it with NULL sndbuf_desc
net/smc: fix dangling sock under state SMC_APPFINCLOSEWAIT
net: stmmac: xgmac: Enable support for multiple Flexible PPS outputs
Fix termination state for idr_for_each_entry_ul()
net: r8169: Disable multicast filter for RTL8168H and RTL8107E
dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses.
dccp: Call security_inet_conn_request() after setting IPv4 addresses.
inet: shrink struct flowi_common
tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING
hsr: Prevent use after free in prp_create_tagged_frame()
llc: verify mac len before reading mac header
Input: synaptics-rmi4 - fix use after free in rmi_unregister_function()
pwm: brcmstb: Utilize appropriate clock APIs in suspend/resume
pwm: sti: Reduce number of allocations and drop usage of chip_data
pwm: sti: Avoid conditional gotos
regmap: prevent noinc writes from clobbering cache
media: dvb-usb-v2: af9035: fix missing unlock
media: cedrus: Fix clock/reset sequence
media: vidtv: mux: Add check and kfree for kstrdup
media: vidtv: psi: Add check for kstrdup
media: s3c-camif: Avoid inappropriate kfree()
media: bttv: fix use after free error due to btv->timeout timer
media: i2c: max9286: Fix some redundant of_node_put() calls
pcmcia: ds: fix possible name leak in error path in pcmcia_device_add()
pcmcia: ds: fix refcount leak in pcmcia_device_add()
pcmcia: cs: fix possible hung task and memory leak pccardd()
rtc: pcf85363: fix wrong mask/val parameters in regmap_update_bits call
i3c: Fix potential refcount leak in i3c_master_register_new_i3c_devs
perf hist: Add missing puts to hist__account_cycles
perf machine: Avoid out of bounds LBR memory read
usb: host: xhci-plat: fix possible kernel oops while resuming
xhci: Loosen RPM as default policy to cover for AMD xHC 1.1
powerpc/pseries: fix potential memory leak in init_cpu_associativity()
powerpc/imc-pmu: Use the correct spinlock initializer.
powerpc/xive: Fix endian conversion size
powerpc/40x: Remove stale PTE_ATOMIC_UPDATES macro
modpost: fix tee MODULE_DEVICE_TABLE built on big-endian host
interconnect: qcom: sc7180: Set ACV enable_mask
interconnect: qcom: sc7180: Retire DEFINE_QBCM
f2fs: fix to initialize map.m_pblk in f2fs_precache_extents()
dmaengine: pxa_dma: Remove an erroneous BUG_ON() in pxad_free_desc()
USB: usbip: fix stub_dev hub disconnect
tools: iio: iio_generic_buffer ensure alignment
tools: iio: iio_generic_buffer: Fix some integer type and calculation
tools: iio: privatize globals and functions in iio_generic_buffer.c file
misc: st_core: Do not call kfree_skb() under spin_lock_irqsave()
dmaengine: ti: edma: handle irq_of_parse_and_map() errors
usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency
livepatch: Fix missing newline character in klp_resolve_symbols()
tty: tty_jobctrl: fix pid memleak in disassociate_ctty()
leds: trigger: ledtrig-cpu:: Fix 'output may be truncated' issue for 'cpu'
leds: pwm: Don't disable the PWM when the LED should be off
mfd: dln2: Fix double put in dln2_probe
mfd: core: Ensure disabled devices are skipped without aborting
mfd: core: Un-constify mfd_cell.of_reg
ASoC: ams-delta.c: use component after check
padata: Fix refcnt handling in padata_free_shell()
padata: Convert from atomic_t to refcount_t on parallel_data->refcnt
ASoC: Intel: Skylake: Fix mem leak when parsing UUIDs fails
HID: logitech-hidpp: Move get_wireless_feature_index() check to hidpp_connect_event()
HID: logitech-hidpp: Revert "Don't restart communication if not necessary"
HID: logitech-hidpp: Don't restart IO, instead defer hid_connect() only
HID: logitech-hidpp: Remove HIDPP_QUIRK_NO_HIDINPUT quirk
Revert "HID: logitech-hidpp: add a module parameter to keep firmware gestures"
sh: bios: Revive earlyprintk support
hid: cp2112: Fix IRQ shutdown stopping polling for all IRQs on chip
RDMA/hfi1: Workaround truncation compilation error
scsi: ufs: core: Leave space for '\0' in utf8 desc string
ASoC: fsl: Fix PM disable depth imbalance in fsl_easrc_probe
RDMA/hns: Fix signed-unsigned mixed comparisons
RDMA/hns: Fix uninitialized ucmd in hns_roce_create_qp_common()
IB/mlx5: Fix rdma counter binding for RAW QP
ASoC: fsl: mpc5200_dma.c: Fix warning of Function parameter or member not described
ext4: move 'ix' sanity check to corrent position
ARM: 9321/1: memset: cast the constant byte to unsigned char
hid: cp2112: Fix duplicate workqueue initialization
crypto: qat - increase size of buffers
crypto: qat - mask device capabilities with soft straps
crypto: caam/jr - fix Chacha20 + Poly1305 self test failure
crypto: caam/qi2 - fix Chacha20 + Poly1305 self test failure
nd_btt: Make BTT lanes preemptible
libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its return value
hwrng: geode - fix accessing registers
crypto: hisilicon/hpre - Fix a erroneous check after snprintf()
selftests/resctrl: Ensure the benchmark commands fits to its array
selftests/pidfd: Fix ksft print formats
clk: scmi: Free scmi_clk allocated when the clocks with invalid info are skipped
firmware: ti_sci: Mark driver as non removable
soc: qcom: llcc: Handle a second device without data corruption
ARM: dts: qcom: mdm9615: populate vsdcc fixed regulator
arm64: dts: qcom: sdm845-mtp: fix WiFi configuration
arm64: dts: qcom: msm8916: Fix iommu local address range
xen-pciback: Consider INTx disabled when MSI/MSI-X is enabled
drm/rockchip: Fix type promotion bug in rockchip_gem_iommu_map()
arm64/arm: xen: enlighten: Fix KPTI checks
drm/rockchip: cdn-dp: Fix some error handling paths in cdn_dp_probe()
drm/mediatek: Fix iommu fault during crtc enabling
drm/bridge: tc358768: Fix bit updates
drm/bridge: tc358768: Disable non-continuous clock mode
drm/bridge: tc358768: Fix use of uninitialized variable
drm/radeon: possible buffer overflow
drm/rockchip: vop: Fix call to crtc reset helper
drm/rockchip: vop: Fix reset of state in duplicate state crtc funcs
hwmon: (coretemp) Fix potentially truncated sysfs attribute name
hwmon: (axi-fan-control) Fix possible NULL pointer dereference
hwmon: (axi-fan-control) Support temperature vs pwm points
platform/x86: wmi: Fix opening of char device
platform/x86: wmi: remove unnecessary initializations
platform/x86: wmi: Fix probe failure when failing to register WMI devices
clk: qcom: config IPQ_APSS_6018 should depend on QCOM_SMEM
clk: mediatek: clk-mt2701: Add check for mtk_alloc_clk_data
clk: mediatek: clk-mt7629: Add check for mtk_alloc_clk_data
clk: mediatek: clk-mt7629-eth: Add check for mtk_alloc_clk_data
clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data
clk: mediatek: clk-mt6779: Add check for mtk_alloc_clk_data
clk: mediatek: clk-mt6765: Add check for mtk_alloc_clk_data
clk: npcm7xx: Fix incorrect kfree
clk: ti: fix double free in of_ti_divider_clk_setup()
clk: ti: change ti_clk_register[_omap_hw]() API
clk: ti: Update component clocks to use ti_dt_clk_name()
clk: ti: Update pll and clockdomain clocks to use ti_dt_clk_name()
clk: ti: Add ti_dt_clk_name() helper to use clock-output-names
clk: keystone: pll: fix a couple NULL vs IS_ERR() checks
spi: nxp-fspi: use the correct ioremap function
clk: linux/clk-provider.h: fix kernel-doc warnings and typos
clk: asm9260: use parent index to link the reference clock
clk: imx: imx8mq: correct error handling path
clk: imx: Select MXC_CLK for CLK_IMX8QXP
clk: qcom: gcc-sm8150: Fix gcc_sdcc2_apps_clk_src
clk: qcom: gcc-sm8150: use ARRAY_SIZE instead of specifying num_parents
clk: qcom: mmcc-msm8998: Fix the SMMU GDSC
clk: qcom: mmcc-msm8998: Set bimc_smmu_gdsc always on
clk: qcom: mmcc-msm8998: Don't check halt bit on some branch clks
clk: qcom: mmcc-msm8998: Add hardware clockgating registers to some clks
clk: qcom: clk-rcg2: Fix clock rate overflow for high parent frequencies
regmap: debugfs: Fix a erroneous check after snprintf()
ipvlan: properly track tx_errors
net: add DEV_STATS_READ() helper
ipv6: avoid atomic fragment on GSO packets
ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias()
tcp: fix cookie_init_timestamp() overflows
chtls: fix tp->rcv_tstamp initialization
r8169: fix rare issue with broken rx after link-down on RTL8125
r8169: use tp_to_dev instead of open code
thermal: core: prevent potential string overflow
PM / devfreq: rockchip-dfi: Make pmu regmap mandatory
can: dev: can_restart(): fix race condition between controller restart and netif_carrier_on()
can: dev: can_restart(): don't crash kernel if carrier is OK
wifi: rtlwifi: fix EDCA limit set by BT coexistence
tcp_metrics: do not create an entry from tcp_init_metrics()
tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics()
tcp_metrics: add missing barriers on delete
wifi: mt76: mt7603: rework/fix rx pse hang check
wifi: rtw88: debug: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
net: spider_net: Use size_add() in call to struct_size()
tipc: Use size_add() in calls to struct_size()
mlxsw: Use size_mul() in call to struct_size()
gve: Use size_add() in call to struct_size()
overflow: Implement size_t saturating arithmetic helpers
tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed
udp: add missing WRITE_ONCE() around up->encap_rcv
i40e: fix potential memory leaks in i40e_remove()
genirq/matrix: Exclude managed interrupts in irq_matrix_allocated()
pstore/platform: Add check for kstrdup
x86/boot: Fix incorrect startup_gdt_descr.size
futex: Don't include process MM in futex key on no-MMU
x86/srso: Fix SBPB enablement for (possible) future fixed HW
vfs: fix readahead(2) on block devices
sched/uclamp: Ignore (util == 0) optimization in feec() when p_util_max = 0
iov_iter, x86: Be consistent about the __user tag on copy_mc_to_user()
Linux 5.10.200
ALSA: hda: intel-dsp-config: Fix JSL Chromebook quirk detection
tty: 8250: Add support for Intashield IS-100
tty: 8250: Add support for Brainboxes UP cards
tty: 8250: Add support for additional Brainboxes UC cards
tty: 8250: Remove UC-257 and UC-431
usb: raw-gadget: properly handle interrupted requests
usb: storage: set 1.50 as the lower bcdDevice for older "Super Top" compatibility
PCI: Prevent xHCI driver from claiming AMD VanGogh USB3 DRD device
can: isotp: isotp_sendmsg(): fix TX state detection and wait behavior
can: isotp: isotp_bind(): do not validate unused address information
can: isotp: add local echo tx processing and tx without FC
can: isotp: handle wait_event_interruptible() return values
can: isotp: check CAN address family in isotp_bind()
can: isotp: isotp_bind(): return -EINVAL on incorrect CAN ID formatting
can: isotp: set max PDU size to 64 kByte
can: isotp: Add error message if txqueuelen is too small
can: isotp: add symbolic error message to isotp_module_init()
can: isotp: change error format from decimal to symbolic error names
powerpc/mm: Fix boot crash with FLATMEM
net: chelsio: cxgb4: add an error code check in t4_load_phy_fw
platform/mellanox: mlxbf-tmfifo: Fix a warning message
scsi: mpt3sas: Fix in error path
fbdev: uvesafb: Call cn_del_callback() at the end of uvesafb_exit()
ASoC: rt5650: fix the wrong result of key button
netfilter: nfnetlink_log: silence bogus compiler warning
spi: npcm-fiu: Fix UMA reads when dummy.nbytes == 0
fbdev: atyfb: only use ioremap_uc() on i386 and ia64
Input: synaptics-rmi4 - handle reset delay when using SMBus trsnsport
dmaengine: ste_dma40: Fix PM disable depth imbalance in d40_probe
irqchip/stm32-exti: add missing DT IRQ flag translation
net: sched: cls_u32: Fix allocation size in u32_init()
x86: Fix .brk attribute in linker script
rpmsg: Fix possible refcount leak in rpmsg_register_device_override()
rpmsg: glink: Release driver_override
rpmsg: Fix calling device_lock() on non-initialized device
rpmsg: Fix kfree() of static memory on setting driver_override
rpmsg: Constify local variable in field store macro
driver: platform: Add helper for safer setting of driver_override
objtool/x86: add missing embedded_insn check
ext4: avoid overlapping preallocations due to overflow
ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow
ext4: add two helper functions extent_logical_end() and pa_logical_end()
x86/mm: Fix RESERVE_BRK() for older binutils
x86/mm: Simplify RESERVE_BRK()
f2fs: fix to do sanity check on inode type during garbage collection
smbdirect: missing rc checks while waiting for rdma events
kobject: Fix slab-out-of-bounds in fill_kobj_path()
x86/i8259: Skip probing when ACPI/MADT advertises PCAT compatibility
iio: adc: xilinx-xadc: Don't clobber preset voltage/temperature thresholds
iio: adc: xilinx: use more devres helpers and remove remove()
iio: adc: xilinx: use devm_krealloc() instead of kfree() + kcalloc()
iio: adc: xilinx: use helper variable for &pdev->dev
clk: Sanitize possible_parent_show to Handle Return Value of of_clk_get_parent_name
sparc32: fix a braino in fault handling in csum_and_copy_..._user()
perf/core: Fix potential NULL deref
nvmem: imx: correct nregs for i.MX6UL
nvmem: imx: correct nregs for i.MX6SLL
nvmem: imx: correct nregs for i.MX6ULL
misc: fastrpc: Clean buffers on remote invocation failures
tracing/kprobes: Fix the description of variable length arguments
i2c: aspeed: Fix i2c bus hang in slave read
i2c: stm32f7: Fix PEC handling in case of SMBUS transfers
i2c: muxes: i2c-demux-pinctrl: Use of_get_i2c_adapter_by_node()
i2c: muxes: i2c-mux-gpmux: Use of_get_i2c_adapter_by_node()
i2c: muxes: i2c-mux-pinctrl: Use of_get_i2c_adapter_by_node()
iio: exynos-adc: request second interupt only when touchscreen mode is used
kasan: print the original fault addr when access invalid shadow
i40e: Fix wrong check for I40E_TXR_FLAGS_WB_ON_ITR
gtp: fix fragmentation needed check with gso
gtp: uapi: fix GTPA_MAX
tcp: fix wrong RTO timeout when received SACK reneging
r8152: Release firmware if we have an error in probe
r8152: Cancel hw_phy_work if we have an error in probe
r8152: Run the unload routine if we have errors during probe
r8152: Increase USB control msg timeout to 5000ms as per spec
net: usb: smsc95xx: Fix uninit-value access in smsc95xx_read_reg
net: ieee802154: adf7242: Fix some potential buffer overflow in adf7242_stats_show()
igc: Fix ambiguity in the ethtool advertising
neighbour: fix various data-races
igb: Fix potential memory leak in igb_add_ethtool_nfc_entry
treewide: Spelling fix in comment
r8169: fix the KCSAN reported data race in rtl_rx while reading desc->opts1
r8169: fix the KCSAN reported data-race in rtl_tx while reading TxDescArray[entry].opts1
drm/dp_mst: Fix NULL deref in get_mst_branch_device_by_guid_helper()
mmc: renesas_sdhi: use custom mask for TMIO_MASK_ALL
mm/page_alloc: correct start page when guard page debug is enabled
virtio-mmio: fix memory leak of vm_dev
virtio_balloon: Fix endless deflation and inflation on arm64
mcb-lpc: Reallocate memory region to avoid memory overlapping
mcb: Return actual parsed size when reading chameleon table
selftests/ftrace: Add new test case which checks non unique symbol
Revert "usb: core: Track SuperSpeed Plus GenXxY"
Revert "drm/connector: Add a fwnode pointer to drm_connector and register with ACPI (v2)"
Revert "drm/connector: Add drm_connector_find_by_fwnode() function (v3)"
Revert "drm/connector: Add support for out-of-band hotplug notification (v3)"
Revert "usb: typec: altmodes/displayport: Notify drm subsys of hotplug events"
Revert "usb: typec: altmodes/displayport: Signal hpd low when exiting mode"
Revert "ipv4/fib: send notify when delete source address routes"
Revert "net: add sysctl accept_ra_min_rtr_lft"
Revert "net: change accept_ra_min_rtr_lft to affect all RA lifetimes"
Revert "net: release reference to inet6_dev pointer"
Revert "xfrm: fix a data-race in xfrm_gen_index()"
Revert "perf: Disallow mis-matched inherited group reads"
Revert "Bluetooth: hci_core: Fix build warnings"
Revert "xfrm: interface: use DEV_STATS_INC()"
ANDROID: GKI: arm64: drop CONFIG_DEBUG_PREEMPT forced disable
Linux 5.10.199
xfrm6: fix inet6_dev refcount underflow problem
Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name
Bluetooth: hci_sock: fix slab oob read in create_monitor_event
phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins
phy: mapphone-mdm6600: Fix runtime PM for remove
phy: mapphone-mdm6600: Fix runtime disable on probe
ASoC: pxa: fix a memory leak in probe()
gpio: vf610: set value before the direction to avoid a glitch
platform/x86: asus-wmi: Map 0x2a code, Ignore 0x2b and 0x2c events
platform/x86: asus-wmi: Change ASUS_WMI_BRN_DOWN code from 0x20 to 0x2e
s390/pci: fix iommu bitmap allocation
perf: Disallow mis-matched inherited group reads
USB: serial: option: add Fibocom to DELL custom modem FM101R-GL
USB: serial: option: add entry for Sierra EM9191 with new firmware
USB: serial: option: add Telit LE910C4-WWX 0x1035 composition
nvme-rdma: do not try to stop unallocated queues
nvme-pci: add BOGUS_NID for Intel 0a54 device
ACPI: irq: Fix incorrect return value in acpi_register_gsi()
pNFS: Fix a hang in nfs4_evict_inode()
Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()"
mmc: core: Capture correct oemid-bits for eMMC cards
mmc: core: sdio: hold retuning if sdio in 1-bit mode
mtd: physmap-core: Restore map_rom fallback
mtd: spinand: micron: correct bitmask for ecc status
mtd: rawnand: arasan: Ensure program page operations are successful
mtd: rawnand: marvell: Ensure program page operations are successful
mtd: rawnand: qcom: Unmap the right resource upon probe failure
Bluetooth: hci_event: Fix using memcmp when comparing keys
net/mlx5: Handle fw tracer change ownership event based on MTRC
platform/x86: touchscreen_dmi: Add info for the Positivo C4128B
HID: multitouch: Add required quirk for Synaptics 0xcd7e device
btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c
drm: panel-orientation-quirks: Add quirk for One Mix 2S
ipv4/fib: send notify when delete source address routes
sky2: Make sure there is at least one frag_addr available
regulator/core: Revert "fix kobject release warning and memory leak in regulator_register()"
wifi: cfg80211: avoid leaking stack data into trace
wifi: mac80211: allow transmitting EAPOL frames with tainted key
wifi: cfg80211: Fix 6GHz scan configuration
Bluetooth: hci_core: Fix build warnings
Bluetooth: Avoid redundant authentication
HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event
tracing: relax trace_event_eval_update() execution with cond_resched()
ata: libata-eh: Fix compilation warning in ata_eh_link_report()
gpio: timberdale: Fix potential deadlock on &tgpio->lock
overlayfs: set ctime when setting mtime and atime
i2c: mux: Avoid potential false error message in i2c_mux_add_adapter
btrfs: initialize start_slot in btrfs_log_prealloc_extents
btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1
ARM: dts: ti: omap: Fix noisy serial with overrun-throttle-ms for mapphone
usb: typec: altmodes/displayport: Signal hpd low when exiting mode
usb: typec: altmodes/displayport: Notify drm subsys of hotplug events
drm/connector: Add support for out-of-band hotplug notification (v3)
drm/connector: Add drm_connector_find_by_fwnode() function (v3)
drm/connector: Add a fwnode pointer to drm_connector and register with ACPI (v2)
drm/connector: Give connector sysfs devices there own device_type
drm/amd/display: Don't set dpms_off for seamless boot
drm/amd/display: only check available pipe to disable vbios mode.
serial: 8250_omap: Fix errors with no_console_suspend
serial: 8250: omap: Fix imprecise external abort for omap_8250_pm()
xhci: track port suspend state correctly in unsuccessful resume cases
xhci: decouple usb2 port resume and get_port_status request handling
xhci: clear usb2 resume related variables in one place.
xhci: rename resume_done to resume_timestamp
xhci: move port specific items such as state completions to port structure
xhci: cleanup xhci_hub_control port references
usb: core: Track SuperSpeed Plus GenXxY
selftests/mm: fix awk usage in charge_reserved_hugetlb.sh and hugetlb_reparenting_test.sh that may cause error
selftests/vm: make charge_reserved_hugetlb.sh work with existing cgroup setting
ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA
ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA
ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA
ACPI: resource: Add Asus ExpertBook B2502 to Asus quirks
ACPI: resource: Skip IRQ override on Asus Vivobook S5602ZA
ACPI: resource: Add ASUS model S5402ZA to quirks
ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA
ACPI: resources: Add DMI-based legacy IRQ override quirk
ACPI: Drop acpi_dev_irqresource_disabled()
resource: Add irqresource_disabled()
thunderbolt: Workaround an IOMMU fault on certain systems with Intel Maple Ridge
net: pktgen: Fix interface flags printing
netfilter: nft_set_rbtree: .deactivate fails if element has expired
neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section
net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve
net: dsa: bcm_sf2: Fix possible memory leak in bcm_sf2_mdio_register()
i40e: prevent crash on probe if hw registers have invalid values
net: usb: smsc95xx: Fix an error code in smsc95xx_reset()
ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr
tun: prevent negative ifindex
tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb
tcp: fix excessive TLP and RACK timeouts from HZ rounding
net: rfkill: gpio: prevent value glitch during probe
net: ipv6: fix return value check in esp_remove_trailer
net: ipv4: fix return value check in esp_remove_trailer
xfrm: interface: use DEV_STATS_INC()
xfrm: fix a data-race in xfrm_gen_index()
qed: fix LL2 RX buffer allocation
drm/i915: Retry gtt fault when out of fence registers
nvmet-tcp: Fix a possible UAF in queue intialization setup
netfilter: nft_payload: fix wrong mac header matching
tcp: check mptcp-level constraints for backlog coalescing
x86/sev: Check for user-space IOIO pointing to kernel space
x86/sev: Check IOBM for IOIO exceptions from user-space
x86/sev: Disable MMIO emulation from user mode
KVM: x86: Mask LVTPC when handling a PMI
regmap: fix NULL deref on lookup
nfc: nci: fix possible NULL pointer dereference in send_acknowledge()
ice: reset first in crash dump kernels
ice: fix over-shifted variable
Bluetooth: avoid memcmp() out of bounds warning
Bluetooth: hci_event: Fix coding style
Bluetooth: vhci: Fix race when opening vhci device
Bluetooth: Fix a refcnt underflow problem for hci_conn
Bluetooth: Reject connection with the device which has same BD_ADDR
Bluetooth: hci_event: Ignore NULL link key
usb: hub: Guard against accesses to uninitialized BOS descriptors
Documentation: sysctl: align cells in second content column
mm/memory_hotplug: rate limit page migration warnings
lib/Kconfig.debug: do not enable DEBUG_PREEMPT by default
dev_forward_skb: do not scrub skb mark within the same name space
ravb: Fix use-after-free issue in ravb_tx_timeout_work()
RDMA/srp: Fix srp_abort()
RDMA/srp: Set scmnd->result only when scmnd is not NULL
arm64: armv8_deprecated: fix unused-function error
arm64: armv8_deprecated: rework deprected instruction handling
arm64: armv8_deprecated: move aarch32 helper earlier
arm64: armv8_deprecated move emulation functions
arm64: armv8_deprecated: fold ops into insn_emulation
arm64: rework EL0 MRS emulation
arm64: factor insn read out of call_undef_hook()
arm64: factor out EL1 SSBS emulation hook
arm64: split EL0/EL1 UNDEF handlers
arm64: allow kprobes on EL0 handlers
arm64: rework BTI exception handling
arm64: rework FPAC exception handling
arm64: consistently pass ESR_ELx to die()
arm64: die(): pass 'err' as long
arm64: report EL1 UNDEFs better
x86/alternatives: Disable KASAN in apply_alternatives()
powerpc/64e: Fix wrong test in __ptep_test_and_clear_young()
powerpc/8xx: Fix pte_access_permitted() for PAGE_NONE
dmaengine: mediatek: Fix deadlock caused by synchronize_irq()
usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call
usb: gadget: udc-xilinx: replace memcpy with memcpy_toio
counter: microchip-tcb-capture: Fix the use of internal GCLK logic
pinctrl: avoid unsafe code pattern in find_pinctrl()
cgroup: Remove duplicates in cgroup v1 tasks file
tee: amdtee: fix use-after-free vulnerability in amdtee_close_session
Input: goodix - ensure int GPIO is in input for gpio_count == 1 && gpio_int_idx == 0 case
Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table
Input: xpad - add PXN V900 support
Input: psmouse - fix fast_reconnect function for PS/2 mode
Input: powermate - fix use-after-free in powermate_config_complete
ceph: fix type promotion bug on 32bit systems
ceph: fix incorrect revoked caps assert in ceph_fill_file_size()
libceph: use kernel_connect()
thunderbolt: Check that lane 1 is in CL0 before enabling lane bonding
mcb: remove is_added flag from mcb_device struct
x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs
iio: pressure: ms5611: ms5611_prom_is_valid false negative bug
iio: pressure: dps310: Adjust Timeout Settings
iio: pressure: bmp280: Fix NULL pointer exception
usb: musb: Modify the "HWVers" register address
usb: musb: Get the musb_qh poniter after musb_giveback
usb: dwc3: Soft reset phy on probe for host
net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read
usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer
dmaengine: stm32-mdma: abort resume if no ongoing transfer
media: mtk-jpeg: Fix use after free bug due to uncanceled work
net: release reference to inet6_dev pointer
net: change accept_ra_min_rtr_lft to affect all RA lifetimes
net: add sysctl accept_ra_min_rtr_lft
Revert "spi: spi-zynqmp-gqspi: Fix runtime PM imbalance in zynqmp_qspi_probe"
Revert "spi: zynqmp-gqspi: fix clock imbalance on probe failure"
workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask()
nfc: nci: assert requested protocol is valid
pinctrl: renesas: rzn1: Enable missing PINMUX
net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn()
ixgbe: fix crash with empty VF macvlan list
net: phy: mscc: macsec: reject PN update requests
net: macsec: indicate next pn update when offloading
drm/vmwgfx: fix typo of sizeof argument
riscv, bpf: Sign-extend return values
riscv, bpf: Factor out emit_call for kernel and bpf context
xen-netback: use default TX queue size for vifs
mlxsw: fix mlxsw_sp2_nve_vxlan_learning_set() return type
ieee802154: ca8210: Fix a potential UAF in ca8210_probe
ravb: Fix up dma_free_coherent() call in ravb_remove()
drm/msm/dpu: change _dpu_plane_calc_bw() to use u64 to avoid overflow
drm/msm/dsi: skip the wait for video mode done if not applicable
drm/msm/dp: do not reinitialize phy unless retry during link training
net: prevent address rewrite in kernel_bind()
quota: Fix slow quotaoff
HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect
lib/test_meminit: fix off-by-one error in test_pages()
perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7
RDMA/cxgb4: Check skb value for failure to allocate
RDMA/srp: Do not call scsi_done() from srp_abort()
RDMA/srp: Make struct scsi_cmnd and struct srp_request adjacent
Conflicts:
drivers/interconnect/qcom/bcm-voter.c
drivers/interconnect/qcom/icc-rpmh.h
drivers/media/platform/qcom/venus/hfi_parser.c
Change-Id: I3dd63e23b279d1f3dc6f726d18b73a965098b403
Signed-off-by: aseshu <quic_aseshu@quicinc.com>
|
||
|
Yusong Gao
|
4c0d7e8261 |
sign-file: Fix incorrect return values check
[ Upstream commit 829649443e78d85db0cff0c37cadb28fbb1a5f6f ]
There are some wrong return values check in sign-file when call OpenSSL
API. The ERR() check cond is wrong because of the program only check the
return value is < 0 which ignored the return val is 0. For example:
1. CMS_final() return 1 for success or 0 for failure.
2. i2d_CMS_bio_stream() returns 1 for success or 0 for failure.
3. i2d_TYPEbio() return 1 for success and 0 for failure.
4. BIO_free() return 1 for success and 0 for failure.
Link: https://www.openssl.org/docs/manmaster/man3/
Fixes:
|
||
|
Srinivasarao Pathipati
|
ea066b15fa |
Merge keystone/android12-5.10-keystone-qcom-release.160+ (d88a616) into msm-5.10
* refs/heads/tmp-d88a616:
ANDROID: mm/filemap: Fix missing put_page() for speculative page fault
UPSTREAM: io_uring: ensure that io_init_req() passes in the right issue_flags
UPSTREAM: io_uring: ensure that io_init_req() passes in the right issue_flags
UPSTREAM: io_uring: add missing lock in io_get_file_fixed
UPSTREAM: io_uring: add missing lock in io_get_file_fixed
ANDROID: ABI: Update allowed list for QCOM
BACKPORT: iommu: Avoid races around device probe
UPSTREAM: io_uring/rw: remove leftover debug statement
UPSTREAM: io_uring/rw: ensure kiocb_end_write() is always called
UPSTREAM: io_uring: fix double poll leak on repolling
UPSTREAM: io_uring: Clean up a false-positive warning from GCC 9.3.0
UPSTREAM: io_uring/net: fix fast_iov assignment in io_setup_async_msg()
UPSTREAM: io_uring: io_kiocb_update_pos() should not touch file for non -1 offset
UPSTREAM: io_uring/rw: defer fsnotify calls to task context
UPSTREAM: io_uring: do not recalculate ppos unnecessarily
UPSTREAM: io_uring: update kiocb->ki_pos at execution time
UPSTREAM: io_uring: remove duplicated calls to io_kiocb_ppos
UPSTREAM: io_uring: ensure that cached task references are always put on exit
UPSTREAM: io_uring: fix CQ waiting timeout handling
UPSTREAM: io_uring: lock overflowing for IOPOLL
UPSTREAM: io_uring: check for valid register opcode earlier
UPSTREAM: io_uring: fix async accept on O_NONBLOCK sockets
UPSTREAM: io_uring: allow re-poll if we made progress
UPSTREAM: io_uring: support MSG_WAITALL for IORING_OP_SEND(MSG)
UPSTREAM: io_uring: add flag for disabling provided buffer recycling
UPSTREAM: io_uring: ensure recv and recvmsg handle MSG_WAITALL correctly
UPSTREAM: io_uring: improve send/recv error handling
UPSTREAM: io_uring: don't gate task_work run on TIF_NOTIFY_SIGNAL
UPSTREAM: io_uring/io-wq: only free worker if it was allocated for creation
UPSTREAM: io_uring/io-wq: free worker if task_work creation is canceled
UPSTREAM: io_uring: Fix unsigned 'res' comparison with zero in io_fixup_rw_res()
ANDROID: GKI: Enable ARM64_ERRATUM_2454944
ANDROID: dma-ops: Add restricted vendor hook
ANDROID: arm64: Work around Cortex-A510 erratum 2454944
ANDROID: mm/vmalloc: Add override for lazy vunmap
ANDROID: cpuidle-psci: Fix suspicious RCU usage
ANDROID: ABI: update allowed list for galaxy
FROMGIT: f2fs: add sysfs nodes to set last_age_weight
FROMGIT: f2fs: fix wrong calculation of block age
ANDROID: struct io_uring ABI preservation hack for 5.10.162 changes
ANDROID: fix up struct task_struct ABI change in 5.10.162
ANDROID: add flags variable back to struct proto_ops
UPSTREAM: io_uring: pass in EPOLL_URING_WAKE for eventfd signaling and wakeups
UPSTREAM: eventfd: provide a eventfd_signal_mask() helper
UPSTREAM: eventpoll: add EPOLL_URING_WAKE poll wakeup flag
UPSTREAM: Revert "proc: don't allow async path resolution of /proc/self components"
UPSTREAM: Revert "proc: don't allow async path resolution of /proc/thread-self components"
UPSTREAM: net: remove cmsg restriction from io_uring based send/recvmsg calls
UPSTREAM: task_work: unconditionally run task_work from get_signal()
UPSTREAM: signal: kill JOBCTL_TASK_WORK
UPSTREAM: io_uring: import 5.15-stable io_uring
UPSTREAM: task_work: add helper for more targeted task_work canceling
UPSTREAM: kernel: don't call do_exit() for PF_IO_WORKER threads
UPSTREAM: kernel: stop masking signals in create_io_thread()
UPSTREAM: x86/process: setup io_threads more like normal user space threads
UPSTREAM: arch: ensure parisc/powerpc handle PF_IO_WORKER in copy_thread()
UPSTREAM: arch: setup PF_IO_WORKER threads like PF_KTHREAD
UPSTREAM: entry/kvm: Exit to user mode when TIF_NOTIFY_SIGNAL is set
UPSTREAM: kernel: allow fork with TIF_NOTIFY_SIGNAL pending
UPSTREAM: coredump: Limit what can interrupt coredumps
UPSTREAM: kernel: remove checking for TIF_NOTIFY_SIGNAL
UPSTREAM: task_work: remove legacy TWA_SIGNAL path
UPSTREAM: alpha: fix TIF_NOTIFY_SIGNAL handling
UPSTREAM: ARC: unbork 5.11 bootup: fix snafu in _TIF_NOTIFY_SIGNAL handling
UPSTREAM: ia64: don't call handle_signal() unless there's actually a signal queued
UPSTREAM: sparc: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: riscv: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: nds32: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: ia64: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: h8300: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: c6x: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: alpha: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: xtensa: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: arm: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: microblaze: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: hexagon: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: csky: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: openrisc: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: sh: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: um: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: s390: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: mips: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: powerpc: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: parisc: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: nios32: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: m68k: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: arm64: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: arc: add support for TIF_NOTIFY_SIGNAL
UPSTREAM: x86: Wire up TIF_NOTIFY_SIGNAL
UPSTREAM: task_work: Use TIF_NOTIFY_SIGNAL if available
UPSTREAM: entry: Add support for TIF_NOTIFY_SIGNAL
UPSTREAM: fs: provide locked helper variant of close_fd_get_file()
UPSTREAM: file: Rename __close_fd_get_file close_fd_get_file
UPSTREAM: fs: make do_renameat2() take struct filename
UPSTREAM: signal: Add task_sigpending() helper
UPSTREAM: net: add accept helper not installing fd
UPSTREAM: net: provide __sys_shutdown_sock() that takes a socket
UPSTREAM: tools headers UAPI: Sync openat2.h with the kernel sources
UPSTREAM: fs: expose LOOKUP_CACHED through openat2() RESOLVE_CACHED
UPSTREAM: Make sure nd->path.mnt and nd->path.dentry are always valid pointers
UPSTREAM: fix handling of nd->depth on LOOKUP_CACHED failures in try_to_unlazy*
UPSTREAM: fs: add support for LOOKUP_CACHED
UPSTREAM: saner calling conventions for unlazy_child()
UPSTREAM: iov_iter: add helper to save iov_iter state
UPSTREAM: kernel: provide create_io_thread() helper
UPSTREAM: net: loopback: use NET_NAME_PREDICTABLE for name_assign_type
UPSTREAM: Bluetooth: L2CAP: Fix u8 overflow
UPSTREAM: HID: uclogic: Add HID_QUIRK_HIDINPUT_FORCE quirk
UPSTREAM: HID: ite: Enable QUIRK_TOUCHPAD_ON_OFF_REPORT on Acer Aspire Switch V 10
UPSTREAM: HID: ite: Enable QUIRK_TOUCHPAD_ON_OFF_REPORT on Acer Aspire Switch 10E
UPSTREAM: HID: ite: Add support for Acer S1002 keyboard-dock
UPSTREAM: igb: Initialize mailbox message for VF reset
UPSTREAM: xhci: Apply XHCI_RESET_TO_DEFAULT quirk to ADL-N
UPSTREAM: USB: serial: f81534: fix division by zero on line-speed change
UPSTREAM: USB: serial: f81232: fix division by zero on line-speed change
UPSTREAM: USB: serial: cp210x: add Kamstrup RF sniffer PIDs
UPSTREAM: USB: serial: option: add Quectel EM05-G modem
UPSTREAM: usb: gadget: uvc: Prevent buffer overflow in setup handler
BACKPORT: f2fs: do not allow to decompress files have FI_COMPRESS_RELEASED
BACKPORT: f2fs: handle decompress only post processing in softirq
BACKPORT: f2fs: introduce memory mode
BACKPORT: f2fs: allow compression for mmap files in compress_mode=user
UPSTREAM: iommu/iova: Fix alloc iova overflows issue
UPSTREAM: media: dvb-core: Fix UAF due to refcount races at releasing
ANDROID: GKI: Add Tuxera symbol list
UPSTREAM: usb: dwc3: gadget: Skip waiting for CMDACT cleared during endxfer
UPSTREAM: usb: dwc3: Increase DWC3 controller halt timeout
UPSTREAM: usb: dwc3: Remove DWC3 locking during gadget suspend/resume
UPSTREAM: usb: dwc3: Avoid unmapping USB requests if endxfer is not complete
UPSTREAM: usb: dwc3: gadget: Continue handling EP0 xfercomplete events
UPSTREAM: usb: dwc3: gadget: Synchronize IRQ between soft connect/disconnect
UPSTREAM: usb: dwc3: gadget: Force sending delayed status during soft disconnect
UPSTREAM: usb: dwc3: Do not service EP0 and conndone events if soft disconnected
UPSTREAM: efi: rt-wrapper: Add missing include
UPSTREAM: arm64: efi: Execute runtime services from a dedicated stack
ANDROID: cpu: correct dl_cpu_busy() calls
UPSTREAM: ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF
UPSTREAM: firmware: tegra: Reduce stack usage
UPSTREAM: scsi: bfa: Move a large struct from the stack onto the heap
ANDROID: mm: page_pinner: ensure do_div() arguments matches with respect to type
ANDROID: Revert "ANDROID: allmodconfig: disable WERROR"
FROMGIT: scsi: ufs: Modify Tactive time setting conditions
UPSTREAM: remoteproc: core: Fix rproc->firmware free in rproc_set_firmware()
UPSTREAM: usb: gadget: f_fs: Fix unbalanced spinlock in __ffs_ep0_queue_wait
UPSTREAM: usb: gadget: f_hid: fix f_hidg lifetime vs cdev
UPSTREAM: usb: gadget: f_hid: optional SETUP/SET_REPORT mode
ANDROID: GKI: add symbol list file for honor
ANDROID: add TEST_MAPPING for net/, include/net
BACKPORT: arm64/bpf: Remove 128MB limit for BPF JIT programs
ANDROID: usb: f_accessory: Check buffer size when initialised via composite
BACKPORT: mm: make minimum slab alignment a runtime property
BACKPORT: printk: stop including cache.h from printk.h
UPSTREAM: kasan: fix a missing header include of static_keys.h
BACKPORT: kasan: split kasan_*enabled() functions into a separate header
UPSTREAM: usb: gadget: f_fs: Ensure ep0req is dequeued before free_request
UPSTREAM: usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait
UPSTREAM: usb: dwc3: gadget: conditionally remove requests
UPSTREAM: usb: dwc3: ep0: Properly handle setup_packet_pending scenario in data stage
UPSTREAM: usb: dwc3: gadget: Fix IN endpoint max packet size allocation
UPSTREAM: usb: dwc3: gadget: Delay issuing End Transfer
UPSTREAM: usb: dwc3: gadget: Only End Transfer for ep0 data phase
UPSTREAM: usb: dwc3: ep0: Don't prepare beyond Setup stage
UPSTREAM: usb: dwc3: gadget: move cmd_endtransfer to extra function
UPSTREAM: usb: dwc3: gadget: ep_queue simplify isoc start condition
UPSTREAM: usb: dwc3: gadget: Skip reading GEVNTSIZn
UPSTREAM: usb: dwc3: gadget: Ignore Update Transfer cmd params
UPSTREAM: usb: dwc3: gadget: Skip checking Update Transfer status
UPSTREAM: pstore: Properly assign mem_type property
Linux 5.10.160
ASoC: ops: Correct bounds check for second channel on SX controls
nvme-pci: clear the prp2 field when not used
ASoC: cs42l51: Correct PGA Volume minimum value
can: mcba_usb: Fix termination command argument
can: sja1000: fix size of OCR_MODE_MASK define
pinctrl: meditatek: Startup with the IRQs disabled
libbpf: Use page size as max_entries when probing ring buffer map
ASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx()
ASoC: fsl_micfil: explicitly clear CHnF flags
ASoC: fsl_micfil: explicitly clear software reset bit
io_uring: add missing item types for splice request
fuse: always revalidate if exclusive create
nfp: fix use-after-free in area_cache_get()
vfs: fix copy_file_range() averts filesystem freeze protection
vfs: fix copy_file_range() regression in cross-fs copies
x86/smpboot: Move rcu_cpu_starting() earlier
ANDROID: usb: gadget: uvc: remove duplicate code in unbind
Linux 5.10.159
can: esd_usb: Allow REC and TEC to return to zero
macsec: add missing attribute validation for offload
net: mvneta: Fix an out of bounds check
ipv6: avoid use-after-free in ip6_fragment()
net: plip: don't call kfree_skb/dev_kfree_skb() under spin_lock_irq()
xen/netback: fix build warning
ethernet: aeroflex: fix potential skb leak in greth_init_rings()
tipc: call tipc_lxc_xmit without holding node_read_lock
net: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions()
ipv4: Fix incorrect route flushing when table ID 0 is used
ipv4: Fix incorrect route flushing when source address is deleted
tipc: Fix potential OOB in tipc_link_proto_rcv()
net: hisilicon: Fix potential use-after-free in hix5hd2_rx()
net: hisilicon: Fix potential use-after-free in hisi_femac_rx()
net: thunderx: Fix missing destroy_workqueue of nicvf_rx_mode_wq
ip_gre: do not report erspan version on GRE interface
net: stmmac: fix "snps,axi-config" node property parsing
nvme initialize core quirks before calling nvme_init_subsystem
NFC: nci: Bounds check struct nfc_target arrays
i40e: Disallow ip4 and ip6 l4_4_bytes
i40e: Fix for VF MAC address 0
i40e: Fix not setting default xps_cpus after reset
net: mvneta: Prevent out of bounds read in mvneta_config_rss()
xen-netfront: Fix NULL sring after live migration
net: encx24j600: Fix invalid logic in reading of MISTAT register
net: encx24j600: Add parentheses to fix precedence
mac802154: fix missing INIT_LIST_HEAD in ieee802154_if_add()
selftests: rtnetlink: correct xfrm policy rule in kci_test_ipsec_offload
net: dsa: ksz: Check return value
Bluetooth: Fix not cleanup led when bt_init fails
Bluetooth: 6LoWPAN: add missing hci_dev_put() in get_l2cap_conn()
vmxnet3: correctly report encapsulated LRO packet
af_unix: Get user_ns from in_skb in unix_diag_get_exact().
drm: bridge: dw_hdmi: fix preference of RGB modes over YUV420
igb: Allocate MSI-X vector when testing
e1000e: Fix TX dispatch condition
gpio: amd8111: Fix PCI device reference count leak
drm/bridge: ti-sn65dsi86: Fix output polarity setting bug
netfilter: ctnetlink: fix compilation warning after data race fixes in ct mark
ca8210: Fix crash by zero initializing data
ieee802154: cc2520: Fix error return code in cc2520_hw_init()
netfilter: nft_set_pipapo: Actually validate intervals in fields after the first one
rtc: mc146818-lib: fix signedness bug in mc146818_get_time()
rtc: mc146818-lib: fix locking in mc146818_set_time
rtc: cmos: Disable irq around direct invocation of cmos_interrupt()
mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page
can: af_can: fix NULL pointer dereference in can_rcv_filter
HID: core: fix shift-out-of-bounds in hid_report_raw_event
HID: hid-lg4ff: Add check for empty lbuf
HID: usbhid: Add ALWAYS_POLL quirk for some mice
drm/shmem-helper: Avoid vm_open error paths
drm/shmem-helper: Remove errant put in error path
drm/vmwgfx: Don't use screen objects when SEV is active
KVM: s390: vsie: Fix the initialization of the epoch extension (epdx) field
Bluetooth: Fix crash when replugging CSR fake controllers
Bluetooth: btusb: Add debug message for CSR controllers
mm/gup: fix gup_pud_range() for dax
memcg: fix possible use-after-free in memcg_write_event_control()
media: v4l2-dv-timings.c: fix too strict blanking sanity checks
Revert "ARM: dts: imx7: Fix NAND controller size-cells"
media: videobuf2-core: take mmap_lock in vb2_get_unmapped_area()
xen/netback: don't call kfree_skb() with interrupts disabled
xen/netback: do some code cleanup
xen/netback: Ensure protocol headers don't fall in the non-linear area
rtc: mc146818: Reduce spinlock section in mc146818_set_time()
rtc: cmos: Replace spin_lock_irqsave with spin_lock in hard IRQ
rtc: cmos: avoid UIP when reading alarm time
rtc: cmos: avoid UIP when writing alarm time
rtc: mc146818-lib: extract mc146818_avoid_UIP
rtc: mc146818-lib: fix RTC presence check
rtc: Check return value from mc146818_get_time()
rtc: mc146818-lib: change return values of mc146818_get_time()
rtc: cmos: remove stale REVISIT comments
rtc: mc146818: Dont test for bit 0-5 in Register D
rtc: mc146818: Detect and handle broken RTCs
rtc: mc146818: Prevent reading garbage
mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths
mm/khugepaged: fix GUP-fast interaction by sending IPI
mm/khugepaged: take the right locks for page table retraction
net: usb: qmi_wwan: add u-blox 0x1342 composition
9p/xen: check logical size for buffer size
usb: dwc3: gadget: Disable GUSB2PHYCFG.SUSPHY for End Transfer
fbcon: Use kzalloc() in fbcon_prepare_logo()
regulator: twl6030: fix get status of twl6032 regulators
ASoC: soc-pcm: Add NULL check in BE reparenting
btrfs: send: avoid unaligned encoded writes when attempting to clone range
ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event
regulator: slg51000: Wait after asserting CS pin
9p/fd: Use P9_HDRSZ for header size
ARM: dts: rockchip: disable arm_global_timer on rk3066 and rk3188
ASoC: wm8962: Wait for updated value of WM8962_CLOCKING1 register
ARM: 9266/1: mm: fix no-MMU ZERO_PAGE() implementation
ARM: 9251/1: perf: Fix stacktraces for tracepoint events in THUMB2 kernels
ARM: dts: rockchip: rk3188: fix lcdc1-rgb24 node name
arm64: dts: rockchip: fix ir-receiver node names
ARM: dts: rockchip: fix ir-receiver node names
arm: dts: rockchip: fix node name for hym8563 rtc
arm64: dts: rockchip: keep I2S1 disabled for GPIO function on ROCK Pi 4 series
Revert "mmc: sdhci: Fix voltage switch delay"
ANDROID: gki_defconfig: add CONFIG_FUNCTION_ERROR_INJECTION
Linux 5.10.158
ipc/sem: Fix dangling sem_array access in semtimedop race
v4l2: don't fall back to follow_pfn() if pin_user_pages_fast() fails
proc: proc_skip_spaces() shouldn't think it is working on C strings
proc: avoid integer type confusion in get_proc_long
block: unhash blkdev part inode when the part is deleted
Input: raydium_ts_i2c - fix memory leak in raydium_i2c_send()
char: tpm: Protect tpm_pm_suspend with locks
Revert "clocksource/drivers/riscv: Events are stopped during CPU suspend"
ACPI: HMAT: Fix initiator registration for single-initiator systems
ACPI: HMAT: remove unnecessary variable initialization
i2c: imx: Only DMA messages with I2C_M_DMA_SAFE flag set
i2c: npcm7xx: Fix error handling in npcm_i2c_init()
x86/pm: Add enumeration check before spec MSRs save/restore setup
x86/tsx: Add a feature bit for TSX control MSR support
Revert "tty: n_gsm: avoid call of sleeping functions from atomic context"
ipv4: Fix route deletion when nexthop info is not specified
ipv4: Handle attempt to delete multipath route when fib_info contains an nh reference
selftests: net: fix nexthop warning cleanup double ip typo
selftests: net: add delete nexthop route warning test
Kconfig.debug: provide a little extra FRAME_WARN leeway when KASAN is enabled
parisc: Increase FRAME_WARN to 2048 bytes on parisc
xtensa: increase size of gcc stack frame check
parisc: Increase size of gcc stack frame check
iommu/vt-d: Fix PCI device refcount leak in dmar_dev_scope_init()
iommu/vt-d: Fix PCI device refcount leak in has_external_pci()
pinctrl: single: Fix potential division by zero
ASoC: ops: Fix bounds check for _sx controls
io_uring: don't hold uring_lock when calling io_run_task_work*
tracing: Free buffers when a used dynamic event is removed
drm/i915: Never return 0 if not all requests retired
drm/amdgpu: temporarily disable broken Clang builds due to blown stack-frame
mmc: sdhci: Fix voltage switch delay
mmc: sdhci-sprd: Fix no reset data and command after voltage switch
mmc: sdhci-esdhc-imx: correct CQHCI exit halt state check
mmc: core: Fix ambiguous TRIM and DISCARD arg
mmc: mmc_test: Fix removal of debugfs file
net: stmmac: Set MAC's flow control register to reflect current settings
pinctrl: intel: Save and restore pins in "direct IRQ" mode
x86/bugs: Make sure MSR_SPEC_CTRL is updated properly upon resume from S3
nilfs2: fix NULL pointer dereference in nilfs_palloc_commit_free_entry()
tools/vm/slabinfo-gnuplot: use "grep -E" instead of "egrep"
error-injection: Add prompt for function error injection
riscv: vdso: fix section overlapping under some conditions
net/mlx5: DR, Fix uninitialized var warning
hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new()
hwmon: (coretemp) Check for null before removing sysfs attrs
net: ethernet: renesas: ravb: Fix promiscuous mode after system resumed
sctp: fix memory leak in sctp_stream_outq_migrate()
packet: do not set TP_STATUS_CSUM_VALID on CHECKSUM_COMPLETE
net: tun: Fix use-after-free in tun_detach()
afs: Fix fileserver probe RTT handling
net: hsr: Fix potential use-after-free
tipc: re-fetch skb cb after tipc_msg_validate
dsa: lan9303: Correct stat name
net: ethernet: nixge: fix NULL dereference
net/9p: Fix a potential socket leak in p9_socket_open
net: net_netdev: Fix error handling in ntb_netdev_init_module()
net: phy: fix null-ptr-deref while probe() failed
wifi: mac8021: fix possible oob access in ieee80211_get_rate_duration
wifi: cfg80211: don't allow multi-BSSID in S1G
wifi: cfg80211: fix buffer overflow in elem comparison
aquantia: Do not purge addresses when setting the number of rings
qlcnic: fix sleep-in-atomic-context bugs caused by msleep
can: cc770: cc770_isa_probe(): add missing free_cc770dev()
can: sja1000_isa: sja1000_isa_probe(): add missing free_sja1000dev()
net/mlx5e: Fix use-after-free when reverting termination table
net/mlx5: Fix uninitialized variable bug in outlen_write()
e100: Fix possible use after free in e100_xmit_prepare
e100: switch from 'pci_' to 'dma_' API
iavf: Fix error handling in iavf_init_module()
iavf: remove redundant ret variable
fm10k: Fix error handling in fm10k_init_module()
i40e: Fix error handling in i40e_init_module()
ixgbevf: Fix resource leak in ixgbevf_init_module()
of: property: decrement node refcount in of_fwnode_get_reference_args()
bpf: Do not copy spin lock field from user in bpf_selem_alloc
hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails
hwmon: (i5500_temp) fix missing pci_disable_device()
hwmon: (ina3221) Fix shunt sum critical calculation
hwmon: (ltc2947) fix temperature scaling
libbpf: Handle size overflow for ringbuf mmap
ARM: at91: rm9200: fix usb device clock id
scripts/faddr2line: Fix regression in name resolution on ppc64le
bpf, perf: Use subprog name when reporting subprog ksymbol
iio: light: rpr0521: add missing Kconfig dependencies
iio: health:
|
||
|
Linus Torvalds
|
d37dfb9357 |
cert host tools: Stop complaining about deprecated OpenSSL functions
commit 6bfb56e93bcef41859c2d5ab234ffd80b691be35 upstream. OpenSSL 3.0 deprecated the OpenSSL's ENGINE API. That is as may be, but the kernel build host tools still use it. Disable the warning about deprecated declarations until somebody who cares fixes it. Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> |
||
|
Lee Jones
|
570f70d898 |
ANDROID: sign-file: Fix warning when OPENSSL_NO_ENGINE is set
Place drain_openssl_errors() function under the same build constraints
as the code that calls it.
scripts/sign-file.c:96:13: warning: unused function 'drain_openssl_errors' [-Wunused-function]
static void drain_openssl_errors(void)
^
1 warning generated.
For some reason this wasn't picked-up on during automated testing.
Fixes: e9d39639a529 ("FROMLIST: sign-file: Use OpenSSL provided define to compile out deprecated APIs")
Signed-off-by: Lee Jones <lee.jones@linaro.org>
Change-Id: I3b337a9deac4ee83cb780792ece8f5f701a01f5f
Git-Repo: https://android.googlesource.com/kernel/common
Git-Commit: fad17703b529eeb423eab346ffb8e8fd16baf745
Signed-off-by: Elliot Berman <quic_eberman@quicinc.com>
|
||
|
Lee Jones
|
925f17cc25 |
FROMLIST: sign-file: Use OpenSSL provided define to compile out deprecated APIs
OpenSSL's ENGINE API is deprecated in OpenSSL v3.0.
Use OPENSSL_NO_ENGINE to disallow its use and fall back on the BIO API.
This is required for fully hermetic builds in android-kernel.
Link: https://lore.kernel.org/lkml/20211005161833.1522737-1-lee.jones@linaro.org/
Fixes:
|
||
|
Felix Fietkau
|
f86880175d |
sign-file: fix build error in sign-file.c with libressl
The sign-file tool failed to build against libressl. Fix this by extending the PKCS7 check and thus making sign-file link against libressl without an error. Signed-off-by: John Crispin <john@phrozen.org> Signed-off-by: Felix Fietkau <nbd@nbd.name> Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: James Morris <james.l.morris@oracle.com> |
||
|
Linus Torvalds
|
19c75bcbe0 |
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
Pull crypto fixes from Herbert Xu: "This fixes the following issues: - a crash regression in the new skcipher walker - incorrect return value in public_key_verify_signature - fix for in-place signing in the sign-file utility" * 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6: crypto: skcipher - fix crash in virtual walk sign-file: Fix inplace signing when src and dst names are both specified crypto: asymmetric_keys - set error code on failure |
||
|
Alex Yashchenko
|
efcae7c931 |
sign-file: Fix inplace signing when src and dst names are both specified
When src and dst both are specified and they point to the same file
the sign-file utility will write only signature to the dst file and
the module (.ko file) body will not be written.
That happens because we open the same file with "rb" and "wb" flags,
from fopen man:
w Truncate file to zero length or create text file for writing.
The stream is positioned at the beginning of the file.
...
bm = BIO_new_file(module_name, "rb");
...
bd = BIO_new_file(dest_name, "wb");
...
while ((n = BIO_read(bm, buf, sizeof(buf))),
n > 0) {
ERR(BIO_write(bd, buf, n) < 0, "%s", dest_name);
}
...
Signed-off-by: Alex Yashchenko <alexhoppus111@gmail.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
|
||
|
Joe Perches
|
fe6bce8d30 |
treewide: Make remaining source files non-executable
.c and .h source files should not be executable, change the permissions to 0644. [ This would normally go through Andrew Morton, but his ancient patch-based toolchain doesn't do permission changes ] Signed-off-by: Joe Perches <joe@perches.com> Acked-by: David Howells <dhowells@redhat.com> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> |
||
|
David Howells
|
9552c7aebb |
modsign: Make sign-file determine the format of the X.509 cert
Make sign-file determine the format of the X.509 certificate by reading the first two bytes and seeing if the first byte is 0x30 and the second 0x81-0x84. If this is the case, assume it's DER encoded, otherwise assume it to be PEM encoded. Without this, it gets awkward to deal with the error messages from d2i_X509_bio() when we want to call BIO_reset() and then PEM_read_bio() in case the certificate was PEM encoded rather than X.509 encoded. Reported-by: Ben Hutchings <ben@decadent.org.uk> Signed-off-by: David Howells <dhowells@redhat.com> Tested-by: Ben Hutchings <ben@decadent.org.uk> cc: David Woodhouse <dwmw2@infradead.org> cc: Juerg Haefliger <juerg.haefliger@hpe.com> cc: Ben Hutchings <ben@decadent.org.uk> |
||
|
Marc-Antoine Perennou
|
41693d1c03 |
sign-file: fix build with CMS support disabled
Some versions of openssl might have the CMS feature disabled LibreSSL disables this feature too If the feature is disabled, fallback to PKCS7 In file included from scripts/sign-file.c:46:0: /usr/x86_64-pc-linux-gnu/include/openssl/cms.h:62:2: error: #error CMS is disabled. #error CMS is disabled. Signed-off-by: Marc-Antoine Perennou <Marc-Antoine@Perennou.com> Signed-off-by: David Howells <dhowells@redhat.com> |
||
|
Juerg Haefliger
|
e5a2e3c847 |
scripts/sign-file.c: Add support for signing with a raw signature
This patch adds support for signing a kernel module with a raw
detached PKCS#7 signature/message.
The signature is not converted and is simply appended to the module so
it needs to be in the right format. Using openssl, a valid signature can
be generated like this:
$ openssl smime -sign -nocerts -noattr -binary -in <module> -inkey \
<key> -signer <x509> -outform der -out <raw sig>
The resulting raw signature from the above command is (more or less)
identical to the raw signature that sign-file itself can produce like
this:
$ scripts/sign-file -d <hash algo> <key> <x509> <module>
Signed-off-by: Juerg Haefliger <juerg.haefliger@hpe.com>
Signed-off-by: David Howells <dhowells@redhat.com>
|
||
|
Codarren Velvindron
|
411a6f585c |
v2 linux-next scripts/sign-file.c Fix LibreSSL support
In file included from scripts/sign-file.c:47:0: /usr/include/openssl/cms.h:62:2: error: #error CMS is disabled. #error CMS is disabled. ^ scripts/Makefile.host:91: recipe for target 'scripts/sign-file' failed make[1]: *** [scripts/sign-file] Error 1 Makefile:567: recipe for target 'scripts' failed make: *** [scripts] Error 2 Fix SSL headers so that the kernel can build with LibreSSL Signed-off-by: Codarren Velvindron <codarren@hackers.mu> Acked-by: David Woodhouse <David.Woodhouse@intel.com> Signed-off-by: David Howells <dhowells@redhat.com> |
||
|
David Howells
|
283e8ba2df |
MODSIGN: Change from CMS to PKCS#7 signing if the openssl is too old
The sign-file.c program actually uses CMS rather than PKCS#7 to sign a file since that allows the target X.509 certificate to be specified by subjectKeyId rather than by issuer + serialNumber. However, older versions of the OpenSSL crypto library (such as may be found in CentOS 5.11) don't support CMS. Assume everything prior to OpenSSL-1.0.0 doesn't support CMS and switch to using PKCS#7 in that case. Further, the pre-1.0.0 OpenSSL only supports PKCS#7 signing with SHA1, so give an error from the sign-file script if the caller requests anything other than SHA1. The compiler gives the following error with an OpenSSL crypto library that's too old: HOSTCC scripts/sign-file scripts/sign-file.c:23:25: fatal error: openssl/cms.h: No such file or directory #include <openssl/cms.h> Reported-by: Vinson Lee <vlee@twopensource.com> Signed-off-by: David Howells <dhowells@redhat.com> Acked-by: David Woodhouse <David.Woodhouse@intel.com> |
||
|
David Woodhouse
|
09a77a8852 |
modsign: Fix GPL/OpenSSL licence incompatibility
The GPL does not permit us to link against the OpenSSL library. Use LGPL for sign-file and extract-file instead. [ The whole "openssl isn't compatible with gpl" is really just fear-mongering, but there's no reason not to make modsign LGPL, so nobody cares. - Linus ] Reported-by: Julian Andres Klode <jak@jak-linux.org> Signed-off-by: David Woodhouse <David.Woodhouse@intel.com> Signed-off-by: David Howells <dhowells@redhat.com> Reviewed-by: Julian Andres Klode <jak@jak-linux.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> |
||
|
David Howells
|
e9a5e8cc55 |
sign-file: Fix warning about BIO_reset() return value
Fix the following warning: scripts/sign-file.c: In function ‘main’: scripts/sign-file.c:188: warning: value computed is not used whereby the result of BIO_ctrl() is cast inside of BIO_reset() to an integer of a different size - which we're not checking but probably should. Reported-by: James Morris <jmorris@namei.org> Signed-off-by: David Howells <dhowells@redhat.com> |
||
|
David Howells
|
99db443506 |
PKCS#7: Appropriately restrict authenticated attributes and content type
A PKCS#7 or CMS message can have per-signature authenticated attributes
that are digested as a lump and signed by the authorising key for that
signature. If such attributes exist, the content digest isn't itself
signed, but rather it is included in a special authattr which then
contributes to the signature.
Further, we already require the master message content type to be
pkcs7_signedData - but there's also a separate content type for the data
itself within the SignedData object and this must be repeated inside the
authattrs for each signer [RFC2315 9.2, RFC5652 11.1].
We should really validate the authattrs if they exist or forbid them
entirely as appropriate. To this end:
(1) Alter the PKCS#7 parser to reject any message that has more than one
signature where at least one signature has authattrs and at least one
that does not.
(2) Validate authattrs if they are present and strongly restrict them.
Only the following authattrs are permitted and all others are
rejected:
(a) contentType. This is checked to be an OID that matches the
content type in the SignedData object.
(b) messageDigest. This must match the crypto digest of the data.
(c) signingTime. If present, we check that this is a valid, parseable
UTCTime or GeneralTime and that the date it encodes fits within
the validity window of the matching X.509 cert.
(d) S/MIME capabilities. We don't check the contents.
(e) Authenticode SP Opus Info. We don't check the contents.
(f) Authenticode Statement Type. We don't check the contents.
The message is rejected if (a) or (b) are missing. If the message is
an Authenticode type, the message is rejected if (e) is missing; if
not Authenticode, the message is rejected if (d) - (f) are present.
The S/MIME capabilities authattr (d) unfortunately has to be allowed
to support kernels already signed by the pesign program. This only
affects kexec. sign-file suppresses them (CMS_NOSMIMECAP).
The message is also rejected if an authattr is given more than once or
if it contains more than one element in its set of values.
(3) Add a parameter to pkcs7_verify() to select one of the following
restrictions and pass in the appropriate option from the callers:
(*) VERIFYING_MODULE_SIGNATURE
This requires that the SignedData content type be pkcs7-data and
forbids authattrs. sign-file sets CMS_NOATTR. We could be more
flexible and permit authattrs optionally, but only permit minimal
content.
(*) VERIFYING_FIRMWARE_SIGNATURE
This requires that the SignedData content type be pkcs7-data and
requires authattrs. In future, this will require an attribute
holding the target firmware name in addition to the minimal set.
(*) VERIFYING_UNSPECIFIED_SIGNATURE
This requires that the SignedData content type be pkcs7-data but
allows either no authattrs or only permits the minimal set.
(*) VERIFYING_KEXEC_PE_SIGNATURE
This only supports the Authenticode SPC_INDIRECT_DATA content type
and requires at least an SpcSpOpusInfo authattr in addition to the
minimal set. It also permits an SPC_STATEMENT_TYPE authattr (and
an S/MIME capabilities authattr because the pesign program doesn't
remove these).
(*) VERIFYING_KEY_SIGNATURE
(*) VERIFYING_KEY_SELF_SIGNATURE
These are invalid in this context but are included for later use
when limiting the use of X.509 certs.
(4) The pkcs7_test key type is given a module parameter to select between
the above options for testing purposes. For example:
echo 1 >/sys/module/pkcs7_test_key/parameters/usage
keyctl padd pkcs7_test foo @s </tmp/stuff.pkcs7
will attempt to check the signature on stuff.pkcs7 as if it contains a
firmware blob (1 being VERIFYING_FIRMWARE_SIGNATURE).
Suggested-by: Andy Lutomirski <luto@kernel.org>
Signed-off-by: David Howells <dhowells@redhat.com>
Reviewed-by: Marcel Holtmann <marcel@holtmann.org>
Reviewed-by: David Woodhouse <David.Woodhouse@intel.com>
|
||
|
David Howells
|
ed8c20762a |
sign-file: Generate CMS message as signature instead of PKCS#7
Make sign-file use the OpenSSL CMS routines to generate a message to be used as the signature blob instead of the PKCS#7 routines. This allows us to change how the matching X.509 certificate is selected. With PKCS#7 the only option is to match on the serial number and issuer fields of an X.509 certificate; with CMS, we also have the option of matching by subjectKeyId extension. The new behaviour is selected with the "-k" flag. Without the -k flag specified, the output is pretty much identical to the PKCS#7 output. Whilst we're at it, don't include the S/MIME capability list in the message as it's irrelevant to us. Signed-off-by: David Howells <dhowells@redhat.com> Reviewed-By: David Woodhouse <David.Woodhouse@intel.com |
||
|
David Woodhouse
|
6e3e281f39 |
modsign: Allow signing key to be PKCS#11
This is only the key; the corresponding *cert* still needs to be in $(topdir)/signing_key.x509. And there's no way to actually use this from the build system yet. Signed-off-by: David Woodhouse <David.Woodhouse@intel.com> Signed-off-by: David Howells <dhowells@redhat.com> |
||
|
David Woodhouse
|
af1eb29132 |
modsign: Allow password to be specified for signing key
We don't want this in the Kconfig since it might then get exposed in /proc/config.gz. So make it a parameter to Kbuild instead. This also means we don't have to jump through hoops to strip quotes from it, as we would if it was a config option. Signed-off-by: David Woodhouse <David.Woodhouse@intel.com> Signed-off-by: David Howells <dhowells@redhat.com> Reviewed-by: Mimi Zohar <zohar@linux.vnet.ibm.com> |
||
|
Luis R. Rodriguez
|
23dfbbabbb |
sign-file: Add option to only create signature file
Make the -d option (which currently isn't actually wired to anything) write out the PKCS#7 message as per the -p option and then exit without either modifying the source or writing out a compound file of the source, signature and metadata. This will be useful when firmware signature support is added upstream as firmware will be left intact, and we'll only require the signature file. The descriptor is implicit by file extension and the file's own size. Signed-off-by: Luis R. Rodriguez <mcgrof@suse.com> Signed-off-by: David Howells <dhowells@redhat.com> |
||
|
David Howells
|
bc1c373dd2 |
MODSIGN: Provide a utility to append a PKCS#7 signature to a module
Provide a utility that:
(1) Digests a module using the specified hash algorithm (typically sha256).
[The digest can be dumped into a file by passing the '-d' flag]
(2) Generates a PKCS#7 message that:
(a) Has detached data (ie. the module content).
(b) Is signed with the specified private key.
(c) Refers to the specified X.509 certificate.
(d) Has an empty X.509 certificate list.
[The PKCS#7 message can be dumped into a file by passing the '-p' flag]
(3) Generates a signed module by concatenating the old module, the PKCS#7
message, a descriptor and a magic string. The descriptor contains the
size of the PKCS#7 message and indicates the id_type as PKEY_ID_PKCS7.
(4) Either writes the signed module to the specified destination or renames
it over the source module.
This allows module signing to reuse the PKCS#7 handling code that was added
for PE file parsing for signed kexec.
Note that the utility is written in C and must be linked against the OpenSSL
crypto library.
Note further that I have temporarily dropped support for handling externally
created signatures until we can work out the best way to do those. Hopefully,
whoever creates the signature can give me a PKCS#7 certificate.
Signed-off-by: David Howells <dhowells@redhat.com>
Tested-by: Vivek Goyal <vgoyal@redhat.com>
|