[PATCH 3/4] MODSIGN: checking the blacklisted hash before loading a kernel module
Origin: https://lore.kernel.org/patchwork/patch/933175/
This patch adds the logic for checking the kernel module's hash
base on blacklist. The hash must be generated by sha256 and enrolled
to dbx/mokx.
For example:
sha256sum sample.ko
mokutil --mokx --import-hash $HASH_RESULT
Whether the signature on ko file is stripped or not, the hash can be
compared by kernel.
Cc: David Howells <dhowells@redhat.com>
Cc: Josh Boyer <jwboyer@fedoraproject.org>
Cc: James Bottomley <James.Bottomley@HansenPartnership.com>
Signed-off-by: "Lee, Chun-Yi" <jlee@suse.com>
[Rebased by Luca Boccassi]
[bwh: Forward-ported to 5.19:
- The type parameter to is_hash_blacklisted() is now an enumeration
rather than a string
- Adjust filename, context]
Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name 0003-MODSIGN-checking-the-blacklisted-hash-before-loading-a-kernel-module.patch
[PATCH 2/3] af_802154: Disable auto-loading as mitigation against local exploits
Forwarded: not-needed
Recent review has revealed several bugs in obscure protocol
implementations that can be exploited by local users for denial of
service or privilege escalation. We can mitigate the effect of any
remaining vulnerabilities in such protocols by preventing unprivileged
users from loading the modules, so that they are only exploitable on
systems where the administrator has chosen to load the protocol.
The 'af_802154' (IEEE 802.15.4) protocol is not widely used, was
not present in the 'lenny' kernel, and seems to receive only sporadic
maintenance. Therefore disable auto-loading.
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>
Gbp-Pq: Topic debian
Gbp-Pq: Name af_802154-Disable-auto-loading-as-mitigation-against.patch
linux (6.12.13-1) unstable; urgency=medium
[ Emanuele Rocca ]
* New upstream stable update:
https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.12.13
- coredump: Do not lock during 'comm' reporting
- [powerpc*] book3s64/hugetlb: Fix disabling hugetlb when fadump is active
- dlm: fix removal of rsb struct that is master and dir record
- dlm: fix srcu_read_lock() return type to int
- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY
- afs: Fix directory format encoding struct
- afs: Fix cleanup of immediately failed async calls
- fs: fix proc_handler for sysctl_nr_open
- block: copy back bounce buffer to user-space correctly in case of split
- block: retry call probe after request_module in blk_request_module
- ps3disk: Do not use dev->bounce_size before it is set
- nbd: don't allow reconnect after disconnect
- pstore/blk: trivial typo fixes
- block: check BLK_FEAT_POLL under q_usage_count
- block: don't update BLK_FEAT_POLL in __blk_mq_update_nr_hw_queues
- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers
- nvme: Add error check for xa_store in nvme_get_effects_log
- [powerpc*] pseries/iommu: IOMMU incorrectly marks MMIO range in DDW
- nvme: Add error path for xa_store in nvme_init_effects
- btrfs: improve the warning and error message for btrfs_remove_qgroup()
- partitions: ldm: remove the initial kernel-doc notation
- btrfs: subpage: fix the bitmap dump of the locked flags
- select: Fix unbalanced user_access_end()
- nvme: fix bogus kzalloc() return check in nvme_init_effects_log()
- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call
- perf/core: Save raw sample data conditionally based on sample type
- sched/fair: Untangle NEXT_BUDDY and pick_next_task()
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat
- sched: Fix race between yield_to() and try_to_wake_up()
- [x86] cpu: Enable SD_ASYM_PACKING for PKG domain on AMD
- [x86] topology: Use x86_sched_itmt_flags for PKG domain unconditionally
- sched: Split out __schedule() deactivate task logic into a helper
- sched: psi: pass enqueue/dequeue flags to psi callbacks directly
- psi: Fix race when task wakes up before psi_sched_switch() adjusts flags
- [arm64] drm/v3d: Fix performance counter source settings on V3D 7.x
- [arm64] drm/rockchip: vop2: fix rk3588 dp+dsi maxclk verification
- [arm64] drm/msm/dp: set safe_to_exit_level before printing it
- [arm64] drm/msm/hdmi: simplify code in pll_get_integloop_gain
- [arm64,armhf] drm/etnaviv: Fix page property being used for non
writecombine buffers
- HID: core: Fix assumption that Resolution Multipliers must be in Logical
Collections
- drm/amd/pm: Fix an error handling path in
vega10_enable_se_edc_force_stall_config()
- drm/amdgpu: Fix potential NULL pointer dereference in
atomctrl_get_smc_sclk_range_table
- [arm64] drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters
offset
- [arm64] drm/rockchip: vop2: Fix the mixer alpha setup for layer 0
- [arm64] drm/panthor: Preserve the result returned by panthor_fw_resume()
- [arm64] drm/rockchip: vop2: Fix the windows switch between different
layers
- printk: Defer legacy printing when holding printk_cpu_sync
- drm/connector: Allow clearing HDMI infoframes
- [arm64] drm/rockchip: vop2: Set AXI id for rk3588
- [arm64] drm/rockchip: vop2: Setup delay cycle for Esmart2/3
- [arm64] drm/rockchip: vop2: Check linear format for Cluster windows on
rk3566/8
- [arm64] drm/rockchip: vop2: Add check for 32 bpp format for rk3588
- [arm64] drm/rockchip: vop2: include rockchip_drm_drv.h
- drm/amdgpu/vcn: reset fw_shared under SRIOV
- OPP: add index check to assert to avoid buffer overflow in _read_freq()
- OPP: fix dev_pm_opp_find_bw_*() when bandwidth table not initialized
- [arm64] drm/msm/dpu: provide DSPP and correct LM config for SDM670
- [arm64] drm/msm/dpu: link DSPP_2/_3 blocks on SM8150
- [arm64] drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X
- [arm64] drm/msm/dpu: link DSPP_2/_3 blocks on SM8250
- [arm64] drm/msm/dpu: link DSPP_2/_3 blocks on SM8350
- [arm64] drm/msm/dpu: link DSPP_2/_3 blocks on SM8550
- [arm64] drm/msm/dpu: link DSPP_2/_3 blocks on SM8650
- [arm64] drm/msm/dpu: link DSPP_2/_3 blocks on X1E80100
- [arm64] drm/msm: Check return value of of_dma_configure()
- [arm64] drm/msm: don't clean up priv->kms prematurely
- [arm64] drm/msm/mdp4: correct LCDC regulator name
- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE
- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini()
- Revert "drm/amdgpu/gfx9: put queue resets behind a debug option"
- drm/amdgpu: fix gpu recovery disable with per queue reset
- genirq: Make handle_enforce_irqctx() unconditionally available
- ipmi: ipmb: Add check devm_kasprintf() returned value
- wifi: ath11k: Fix unexpected return buffer manager error for
WCN6750/WCN6855
- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop
- wifi: rtlwifi: do not complete firmware loading needlessly
- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step
- wifi: rtlwifi: wait for firmware loading before releasing memory
- wifi: rtlwifi: fix init_sw_vars leak when probe fails
- wifi: rtlwifi: usb: fix workqueue leak when probe fails
- wifi: wcn36xx: fix channel survey memory allocation size
- clk: renesas: cpg-mssr: Fix 'soc' node handling in
cpg_mssr_reserved_init()
- wifi: cfg80211: tests: Fix potential NULL dereference in
test_cfg80211_parse_colocated_ap()
- net_sched: sch_sfq: handle bigger packets
- net_sched: sch_sfq: don't allow 1 packet limit
- spi: zynq-qspi: Add check for clk_enable()
- rxrpc: Fix handling of received connection abort
- dt-bindings: mmc: controller: clarify the address-cells description
- clk: fix an OF node reference leak in of_clk_get_parent_name()
- dt-bindings: leds: class-multicolor: Fix path to color definitions
- wifi: rtlwifi: remove unused check_buddy_priv
- wifi: rtlwifi: destroy workqueue at rtl_deinit_core
- wifi: rtlwifi: fix memory leaks and invalid access at probe error path
- wifi: rtlwifi: pci: wait for firmware loading before releasing memory
- HID: multitouch: fix support for Goodix PID 0x01e9
- regulator: dt-bindings: mt6315: Drop regulator-compatible property
- wifi: brcmfmac: add missing header include for brcmf_dbg
- module: Convert default symbol namespace to string literal
- hwmon: (nct6775): Actually make use of the HWMON_NCT6775 symbol namespace
- ACPI: fan: cleanup resources in the error path of .probe()
- cpupower: fix TSC MHz calculation
- dt-bindings: mfd:
bd71815: Fix rsense and typos
- leds: netxbig: Fix an OF node reference leak in
netxbig_leds_get_of_pdata()
- inetpeer: remove create argument of inet_getpeer_v[46]()
- inetpeer: remove create argument of inet_getpeer()
- inetpeer: update inetpeer timestamp in inet_getpeer()
- inetpeer: do not get a refcount in inet_getpeer()
- pwm: stm32-lp: Add check for clk_enable()
- cpufreq: schedutil: Fix superfluous updates caused by need_freq_update
- ptr_ring: do not block hard interrupts in ptr_ring_resize_multiple()
- net: airoha: Fix error path in airoha_probe()
- gpio: pca953x: log an error when failing to get the reset GPIO
- [arm64] cpufreq: qcom: Fix qcom_cpufreq_hw_recalc_rate() to query LUT if
LMh IRQ is not available
- [arm64] cpufreq: qcom: Implement clk_ops::determine_rate() for
qcom_cpufreq* clocks
- udp: Deal with race between UDP socket address change and rehash
- clk: imx8mp: Fix clkout1/2 support
- dt-bindings: clock: imx93: Drop IMX93_CLK_END macro definition
- dt-bindings: clock: Add i.MX91 clock support
- dt-bindings: clock: imx93: Add SPDIF IPG clk
- clk: imx93: Move IMX93_CLK_END macro to clk driver
- clk: imx: add i.MX91 clk
- clk: imx93: Add IMX93_CLK_SPDIF_IPG clock
- [arm64] dts: imx93: Use IMX93_CLK_SPDIF_IPG as SPDIF IPG clock
- clk: imx: Apply some clks only for i.MX93
- [arm64] clk: qcom: camcc-x1e80100: Set titan_top_gdsc as the parent GDSC
of subordinate GDSCs
- team: prevent adding a device which is already a team device lower
- dt-bindings: clock: sunxi: Export PLL_VIDEO_2X and PLL_MIPI
- clk: sunxi-ng: a64: drop redundant CLK_PLL_VIDEO0_2X and CLK_PLL_MIPI
- clk: sunxi-ng: a64: stop force-selecting PLL-MIPI as TCON0 parent
- regulator: of: Implement the unwind path of of_regulator_match()
- ax25: rcu protect dev->ax25_ptr
- net/mlx5: HWS, fix definer's HWS_SET32 macro for negative offset
- OPP: OF: Fix an OF node leak in _opp_add_static_v2()
- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response
- wifi: ath12k: fix tx power, max reg power update to firmware
- clk: qcom: gcc-sdm845: Do not use shared clk_ops for QUPs
- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding
endpoint check
- HID: fix generic desktop D-Pad controls
- leds: cht-wcove: Use devm_led_classdev_register() to avoid memory leak
- mfd: syscon: Fix race in device_node_get_regmap()
- wifi: mt76: mt7996: fix invalid interface combinations
- wifi: wlcore: fix unbalanced pm_runtime calls
- wifi: rtw89: handle entity active flag per PHY
- wifi: rtw89: chan: manage active interfaces
- wifi: rtw89: tweak setting of channel and TX power for MLO
- wifi: rtw89: fix proceeding MCC with wrong scanning state after sequence
changes
- wifi: rtw89: chan: fix soft lockup in rtw89_entity_recalc_mgnt_roles()
- wifi: rtw89: avoid to init mgnt_entry list twice when WoWLAN failed
- wifi: rtw89: mcc: consider time limits not divisible by 1024
- wifi: rtw89: fix race between cancel_hw_scan and hw_scan completion
- hwmon: Fix help text for aspeed-g6-pwm-tach
- wifi: mt76: mt7925: fix off by one in mt7925_load_clc()
- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC
- wifi: iwlwifi: fw: read STEP table from correct UEFI var
- wifi: iwlwifi: mvm: avoid NULL pointer dereference
- wifi: iwlwifi: mvm: don't count mgmt frames as MPDU
- wifi: mac80211: prohibit deactivating all links
- wifi: cfg80211: Move cfg80211_scan_req_add_chan() n_channels increment
earlier
- wifi: mac80211: fix tid removal during mesh forwarding
- wifi: mac80211: Fix common size calculation for ML element
- wifi: mac80211: don't flush non-uploaded STAs
- clk: ralink: mtmips: remove duplicated 'xtal' clock for Ralink SoC RT3883
- clk: thead: Fix clk gate registration to pass flags
- clk: thead: Add CLK_IGNORE_UNUSED to fix TH1520 boot
- clk: thead: Fix cpu2vp_clk for TH1520 AP_SUBSYS clocks
- net/smc: fix data error when recvmsg with MSG_PEEK flag
- landlock: Handle weird files
- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO
- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection.
- wifi: mt76: mt7915: Fix an error handling path in mt7915_add_interface()
- wifi: mt76: mt7925: fix NULL deref check in mt7925_change_vif_links
- wifi: mt76: mt7925: fix wrong band_idx setting when enable sniffer mode
- wifi: mt76: mt7925: fix get wrong chip cap from incorrect pointer
- wifi: mt76: mt7925: fix the invalid ip address for arp offload
- wifi: mt76: mt7996: fix overflows seen when writing limit attributes
- wifi: mt76: mt7915: fix overflows seen when writing limit attributes
- wifi: mt76: connac: Extend mt76_connac_mcu_uni_add_dev for MLO
- wifi: mt76: mt7925: Fix incorrect MLD address in bss_mld_tlv for MLO
support
- wifi: mt76: mt7925: Fix incorrect WCID assignment for MLO
- wifi: mt76: mt7925: Fix incorrect WCID phy_idx assignment
- wifi: mt76: mt7925: fix wrong parameter for related cmd of chan info
- wifi: mt76: mt7925: Fix CNM Timeout with Single Active Link in MLO
- wifi: mt76: mt7925: Enhance mt7925_mac_link_bss_add to support MLO
- wifi: mt76: Enhance mt7925_mac_link_sta_add to support MLO
- wifi: mt76: mt7925: Update mt7925_mcu_sta_update for BC in ASSOC state
- wifi: mt76: mt7925: Update mt792x_rx_get_wcid for per-link STA
- wifi: mt76: mt7925: Update mt7925_unassign_vif_chanctx for per-link BSS
- wifi: mt76: mt7925: Update secondary link PS flow
- wifi: mt76: mt7925: Init secondary link PM state
- wifi: mt76: mt7925: Update mt7925_mcu_uni_[tx,rx]_ba for MLO
- wifi: mt76: mt7925: Cleanup MLO settings post-disconnection
- wifi: mt76: mt7925: Properly handle responses for commands with events
- wifi: mt76: mt7996: fix rx filter setting for bfee functionality
- wifi: mt76: only enable tx worker after setting the channel
- wifi: mt76: mt7915: firmware restart on devices with a second pcie link
- wifi: mt76: mt7915: fix omac index assignment after hardware reset
- wifi: mt76: mt7915: fix register mapping
- wifi: mt76: mt7996: fix register mapping
- wifi: mt76: mt7996: add max mpdu len capability
- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU
- wifi: mt76: mt7996: fix HE Phy capability
- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event
- wifi: mt76: mt7996: fix definition of tx descriptor
- wifi: mt76: mt7996: fix ldpc setting
- i2c: designware: Actually make use of the I2C_DW_COMMON and I2C_DW symbol
namespaces
- cpufreq: ACPI: Fix max-frequency computation
- wifi: cfg80211: adjust allocation of colocated AP data
- Bluetooth: btbcm: Fix NULL deref in btbcm_get_board_name()
- Bluetooth: btrtl: check for NULL in btrtl_setup_realtek()
- inet: ipmr: fix data-races
- clk: analogbits: Fix incorrect calculation of vco rate delta
- dev: Acquire netdev_rename_lock before restoring dev->name in
dev_change_name().
- pwm: stm32: Add check for clk_enable()
- net: let net.core.dev_weight always be non-zero
- octeon_ep: remove firmware stats fetch in ndo_get_stats64
- octeon_ep_vf: remove firmware stats fetch in ndo_get_stats64
- net: avoid race between device unregistration and ethnl ops
- net: sched: Disallow replacing of child qdisc from one parent to another
- netfilter: nf_tables: fix set size with rbtree backend
- netfilter: nft_flow_offload: update tcp state flags under lock
- net: sched: refine software bypass handling in tc_run
- net: ethernet: ti: am65-cpsw: fix freeing IRQ in
am65_cpsw_nuss_remove_tx_chns()
- tcp_cubic: fix incorrect HyStart round start detection
- net/rose: prevent integer overflows in rose_setsockopt()
- platform/mellanox: mlxbf-pmc: incorrect type in assignment
- [x86] platform/x86: x86-android-tablets: make platform data be static
- pinctrl: samsung: Fix irq handling if an error occurs in
exynos_irq_demux_eint16_31()
- libbpf: don't adjust USDT semaphore address if .stapsdt.base addr is
missing
- ASoC: cs40l50: Use *-y for Makefile
- ASoC: mediatek: mt8365: Use *-y for Makefile
- ASoC: wcd937x: Use *-y for Makefile
- [x86] ASoC: Intel: sof_sdw: correct mach_params->dmic_num
- ASoC: sun4i-spdif: Add clock multiplier settings
- [arm64] iommu/arm-smmuv3: Update comments about ATS and bypass
- crypto: tegra - do not transfer req when tegra init fails
- crypto: api - Fix boot-up self-test race
- crypto: caam - use JobR's space to access page 0 regs
- perf header: Fix one memory leakage in process_bpf_btf()
- perf header: Fix one memory leakage in process_bpf_prog_info()
- perf bpf: Fix two memory leakages when calling
perf_env__insert_bpf_prog_info()
- ASoC: renesas: rz-ssi: Use only the proper amount of dividers
- perf expr: Initialize is_test value in expr__ctx_new()
- pinctrl: nomadik: Add check for clk_enable()
- bpf: bpf_local_storage: Always use bpf_mem_alloc in PREEMPT_RT
- rhashtable: Fix potential deadlock by moving schedule_work outside lock
- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto()
- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to
'async'
- bpf: Use refcount_t instead of atomic_t for mmap_count
- ALSA: seq: Make dependency on UMP clearer
- bpf: Reject struct_ops registration that uses module ptr and the module
btf_id is missing
- padata: fix sysfs store callback check
- perf top: Don't complain about lack of vmlinux when not resolving some
kernel samples
- perf maps: Fix display of kernel symbols
- perf machine: Don't ignore _etext when not a text symbol
- perf namespaces: Introduce nsinfo__set_in_pidns()
- perf namespaces: Fixup the nsinfo__in_pidns() return type, its bool
- [x86] ASoC: Intel: avs: Do not readq() u32 registers
- [x86] ASoC: Intel: avs: Fix the minimum firmware version numbers
- [x86] ASoC: Intel: avs: Fix theoretical infinite loop
- [x86] ASoC: Intel: avs: Fix init-config parsing
- perf MANIFEST: Add arch/*/include/uapi/asm/bpf_perf_event.h to the perf
tarball
- ALSA: hda: Fix compilation of snd_hdac_adsp_xxx() helpers
- perf report: Fix misleading help message about --demangle
- pinctrl: stm32: Add check for clk_enable()
- pinctrl: amd: Take suspend type into consideration which pins are non-wake
- perf inject: Fix use without initialization of local variables
- [x86] ASoC: Intel: sof_sdw: Fix DMI match for Lenovo 83LC
- [x86] ASoC: Intel: sof_sdw: Fix DMI match for Lenovo 83JX, 83MC and 83NM
- bpf: Send signals asynchronously if !preemptible
- libbpf: Fix return zero when elf_begin failed
- libbpf: Fix incorrect traversal end type ID when marking BTF_IS_EMBEDDED
- bpf: tcp: Mark bpf_load_hdr_opt() arg2 as read-write
- [amd64] iommu/amd: Remove unused amd_iommu_domain_update()
- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31
laptop
- tools: Sync if_xdp.h uapi tooling header
- perf lock: Fix parse_lock_type which only retrieve one lock flag
- padata: fix UAF in padata_reorder
- padata: add pd get/put refcnt helper
- padata: avoid UAF for reorder_work
- rhashtable: Fix rhashtable_try_insert test
- smb: client: fix oops due to unset link speed
- cifs: Use cifs_autodisable_serverino() for disabling
CIFS_MOUNT_SERVER_INUM in readdir.c
- bpf: Cancel the running bpf_timer through kworker for PREEMPT_RT
- soc: atmel: fix device_node release in atmel_soc_device_init()
- [arm64] dts: mediatek: mt8186: Move wakeup to MTU3 to get working suspend
- [arm64] dts: mt8183: set DMIC one-wire mode on Damu
- [arm64] dts: mediatek: mt8516: fix GICv2 range
- [arm64] dts: mediatek: mt8516: fix wdt irq type
- [arm64] dts: mediatek: mt8516: add i2c clock-div property
- [arm64] dts: mediatek: mt8516: reserve 192 KiB for TF-A
- RDMA/mlx4: Avoid false error about access to uninitialized gids array
- [arm64] dts: renesas: rzg3s-smarc: Fix the debug serial alias
- rdma/cxgb4: Prevent potential integer overflow on 32bit
- [arm64] dts: mediatek: mt8173-evb: Drop regulator-compatible property
- [arm64] dts: mediatek: mt8173-elm: Drop regulator-compatible property
- [arm64] dts: mediatek: mt8192-asurada: Drop regulator-compatible property
- [arm64] dts: mediatek: mt8195-cherry: Drop regulator-compatible property
- [arm64] dts: mediatek: mt8195-demo: Drop regulator-compatible property
- [arm64] dts: medaitek: mt8395-nio-12l: Drop regulator-compatible property
- [arm64] dts: mediatek: mt8395-genio-1200-evk: Drop regulator-compatible
property
- [arm64] dts: mediatek: mt8173-elm: Fix MT6397 PMIC sub-node names
- [arm64] dts: mediatek: mt8173-evb: Fix MT6397 PMIC sub-node names
- [armhf] dts: aspeed: yosemite4: correct the compatible string of adm1272
- [armhf] dts: aspeed: yosemite4: Add required properties for IOE on fan
boards
- [armhf] dts: aspeed: yosemite4: correct the compatible string for max31790
- RDMA/rxe: Fix mismatched max_msg_sz
- [arm64] dts: mediatek: mt8183: kenzo: Support second source touchscreen
- [arm64] dts: mediatek: mt8183: willow: Support second source touchscreen
- RDMA/srp: Fix error handling in srp_add_port
- [arm64] dts: mediatek: mt8195: Remove suspend-breaking reset from pcie1
- memory: tegra20-emc: fix an OF node reference bug in
tegra_emc_find_node_by_ram_code()
- [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Drop pp3300_panel voltage
settings
- [arm64] dts: qcom: msm8996-xiaomi-gemini: Fix LP5562 LED1 reg property
- [arm64] dts: qcom: sa8775p: Update sleep_clk frequency
- [arm64] defconfig: remove obsolete CONFIG_SM_DISPCC_8650
- [arm64] dts: qcom: msm8996: Fix up USB3 interrupts
- [arm64] dts: qcom: msm8994: Describe USB interrupts
- [arm64] dts: qcom: sm7225-fairphone-fp4: Drop extra qcom,msm-id value
- [arm64] dts: qcom: msm8916: correct sleep clock frequency
- [arm64] dts: qcom: msm8939: correct sleep clock frequency
- [arm64] dts: qcom: msm8994: correct sleep clock frequency
- [arm64] dts: qcom: qcs404: correct sleep clock frequency
- [arm64] dts: qcom: q[dr]u1000: correct sleep clock frequency
- [arm64] dts: qcom: qrb4210-rb2: correct sleep clock frequency
- [arm64] dts: qcom: sc7280: correct sleep clock frequency
- [arm64] dts: qcom: sdx75: correct sleep clock frequency
- [arm64] dts: qcom: sm4450: correct sleep clock frequency
- [arm64] dts: qcom: sm6125: correct sleep clock frequency
- [arm64] dts: qcom: sm6375: correct sleep clock frequency
- [arm64] dts: qcom: sm8250: correct sleep clock frequency
- [arm64] dts: qcom: sm8350: correct sleep clock frequency
- [arm64] dts: qcom: sm8450: correct sleep clock frequency
- [arm64] dts: qcom: sm8550: correct sleep clock frequency
- [arm64] dts: qcom: sm8650: correct sleep clock frequency
- [arm64] dts: qcom: x1e80100: correct sleep clock frequency
- [arm64] dts: qcom: sm8650: Fix CDSP context banks unit addresses
- [arm64] dts: ti: k3-am62: Remove duplicate GICR reg
- [arm64] dts: ti: k3-am62a: Remove duplicate GICR reg
- [arm64] dts: rockchip: Fix sdmmc access on rk3308-rock-s0 v1.1 boards
- [arm64] dts: allwinner: a64: explicitly assign clock parent for TCON0
- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error
- RDMA/rtrs: Add missing deinit() call
- [arm64] RDMA/hns: Clean up the legacy CONFIG_INFINIBAND_HNS
- [arm64] dts: qcom: qcm6490-shift-otter: remove invalid orientation-switch
- [arm64] dts: qcom: sdm845-db845c-navigation-mezzanine: Convert mezzanine
riser to dtso
- [arm64] dts: qcom: sdm845-db845c-navigation-mezzanine: remove disabled
ov7251 camera
- [arm64] dts: qcom: sc7180-trogdor-quackingstick: add missing avee-supply
- [arm64] dts: qcom: sc7180-trogdor-pompom: rename 5v-choke thermal zone
- [arm64] dts: qcom: sc7180: change labels to lower-case
- [arm64] dts: qcom: sc7180: fix psci power domain node names
- [arm64] dts: qcom: sm8150-microsoft-surface-duo: fix typos in da7280
properties
- [arm64] dts: qcom: sc8280xp: Fix up remoteproc register space sizes
- [arm64] firmware: qcom: scm: Cleanup global '__scm' on probe failures
- [arm64] dts: mediatek: mt7988: Add missing clock-div property for i2c
- [arm64] dts: arm64: mediatek: mt8195: Remove MT8183 compatible for OVL
- [arm64] dts: mediatek: add per-SoC compatibles for keypad nodes
- [arm64] dts: qcom: sc8280xp: Fix interrupt type of camss interrupts
- [arm64] dts: qcom: sdm845: Fix interrupt types of camss interrupts
- [arm64] dts: qcom: sm8250: Fix interrupt types of camss interrupts
- [arm64] dts: marvell: cn9131-cf-solidwan: fix cp1 comphy links
- [arm64] dts: rockchip: fix num-channels property of wolfvision pf5 mic
- [arm64] dts: ti: k3-am642-hummingboard-t: Convert overlay to board dts
- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device()
- [arm64] tegra: Fix DMA ID for SPI2
- [arm64] dts: qcom: x1e80100-romulus: Update firmware nodes
- i3c: dw: Fix use-after-free in dw_i3c_master driver due to race condition
- RDMA/mlx5: Fix indirect mkey ODP page count
- of: property: Avoiding using uninitialized variable @imaplen in
parse_interrupt_map()
- of: reserved-memory: Do not make kmemleak ignore freed address
- efi: sysfb_efi: fix W=1 warnings when EFI is not set
- RDMA/cxgb4: Notify rdma stack for IB_EVENT_QP_LAST_WQE_REACHED event
- RDMA/rxe: Fix the warning "__rxe_cleanup+0x12c/0x170 [rdma_rxe]"
- [amd64] iommu: iommufd: fix WARNING in iommufd_device_unbind
- [amd64] iommufd/iova_bitmap: Fix shift-out-of-bounds in
iova_bitmap_offset_to_index()
- spi: omap2-mcspi: Correctly handle devm_clk_get_optional() errors
- of: reserved_mem: Restructure how the reserved memory regions are
processed
- of/fdt: Restore possibility to use both ACPI and FDT from bootloader
- media: rc: iguanair: handle timeouts
- media: lmedm04: Handle errors for lme2510_int_read
- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy()
- remoteproc: mtk_scp: Only populate devices for SCP cores
- media: marvell: Add check for clk_enable()
- media: i2c: imx290: Register 0x3011 varies between imx327 and imx290
- media: i2c: imx412: Add missing newline to prints
- media: i2c: ov9282: Correct the exposure offset
- media: mipi-csis: Add check for clk_enable()
- media: camif-core: Add check for clk_enable()
- media: uvcvideo: Propagate buf->error to userspace
- mtd: rawnand: brcmnand: fix status read of brcmnand_waitfunc
- mtd: hyperbus: hbmc-am654: fix an OF node reference leak
- media: nxp: imx8-isi: fix v4l2-compliance test errors
- watchdog: rti_wdt: Fix an OF node leak in rti_wdt_probe()
- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs()
- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on
af9035_i2c_master_xfer
- PCI: rcar-ep: Fix incorrect variable used when calling
devm_request_mem_region()
- PCI: imx6: Configure PHY based on Root Complex or Endpoint mode
- PCI: imx6: Skip controller_id generation logic for i.MX7D
- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset()
- PCI: imx6: Add missing reference clock disable logic
- PCI: qcom: Update ICC and OPP values after Link Up event
- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq
- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error
- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test
- PCI: microchip: Add support for using either Root Port 1 or 2
- PCI: microchip: Set inbound address translation for coherent or
non-coherent mode
- scsi: mpt3sas: Set ioc->manu_pg11.EEDPTagMode directly to 1
- scsi: ufs: bsg: Delete bsg_dev when setting up bsg fails
- scsi: mpi3mr: Fix possible crash when setting up bsg fails
- firewire: test: Fix potential null dereference in firewire kunit test
- erofs: get rid of erofs_{find,insert}_workgroup
- erofs: move erofs_workgroup operations into zdata.c
- erofs: sunset `struct erofs_workgroup`
- erofs: fix potential return value overflow of z_erofs_shrink_scan()
- ocfs2: mark dquot as inactive if failed to start trans while releasing
dquot
- nilfs2: do not force clear folio if buffer is referenced
- nilfs2: protect access to buffers with no active references
- nilfs2: handle errors that nilfs_prepare_chunk() may return
- module: Extend the preempt disabled section in
dereference_symbol_descriptor().
- module: Don't fail module loading when setting ro_after_init section RO
failed
- driver core: class: Fix wild pointer dereferences in API
class_dev_iter_next()
- tty: mips_ejtag_fdc: fix one more u8 warning
- serial: 8250: Adjust the timeout for FIFO mode
- nfs: fix incorrect error handling in LOCALIO
- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation
- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE
- xfrm: replay: Fix the update of replay_esn->oseq_hi for GSO
- xfrm: Add support for per cpu xfrm state handling.
- xfrm: Cache used outbound xfrm states at the policy.
- xfrm: Add an inbound percpu state cache.
- xfrm: state: fix out-of-bounds read during lookup
- dmaengine: ti: edma: fix OF node reference leaks in edma_driver
- xfrm: delete intermediate secpath entry in packet offload mode
- rtc: tps6594: Fix integer overflow on 32bit systems
- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read
- rtc: loongson: clear TOY_MATCH0_REG in loongson_rtc_isr()
- ubifs: skip dumping tnc tree when zroot is null
- regulator: core: Add missing newline character
- net: airoha: Fix wrong GDM4 register definition
- [arm64] net: hns3: fix oops when unload drivers paralleling
- gpio: mxc: remove dead code after switch to DT-only
- net: phy: marvell-88q2xxx: Fix temperature measurement with reset-gpios
- net: fec: implement TSO descriptor cleanup
- ipmr: do not call mr_mfc_uses_dev() for unres entries
- PM: hibernate: Add error handling for syscore_suspend()
- perf trace: Fix BPF loading failure (-E2BIG)
- xfrm: Don't disable preemption while looking up cache state.
- idpf: add read memory barrier when checking descriptor done bit
- idpf: fix transaction timeouts on reset
- idpf: Acquire the lock before accessing the xn->salt
- idpf: convert workqueues to unbound
- ice: fix ice_parser_rt::bst_key array size
- ice: rework of dump serdes equalizer values feature
- ice: extend dump serdes equalizer values feature
- ice: remove invalid parameter of equalizer
- iavf: allow changing VLAN state without calling PF
- [s390x] mm: Allow large pages for KASAN shadow mapping
- net/ncsi: use dev_set_mac_address() for Get MC MAC Address handling
- net: rose: fix timer races against user threads
- net: netdevsim: try to close UDP port harness races
- tools: ynl: c: correct reverse decode of empty attrs
- rxrpc, afs: Fix peer hash locking vs RCU callback
- vxlan: Fix uninit-value in vxlan_vnifilter_dump()
- net: davicom: fix UAF in dm9000_drv_remove
- ptp: Properly handle compat ioctls
- net: ethtool: only allow set_rxnfc with rss + ring_cookie if driver opts
in
- ethtool: Fix set RXNFC command with symmetric RSS hash
- net: stmmac: Limit the number of MTL queues to hardware capability
- net: stmmac: Limit FIFO size by hardware capability
- [s390x] sclp: Initialize sclp subsystem via arch_cpu_finalize_init()
- perf trace: Fix runtime error of index out of bounds
- perf test: Skip syscall enum test if no landlock syscall
- Bluetooth: btusb: mediatek: Add locks for usb_driver_claim_interface()
- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming
- vsock: Allow retrying on connect() failure
- bgmac: reduce max frame size to support just MTU 1500
- tcp: correct handling of extreme memory squeeze
- net: xdp: Disallow attaching device-bound programs in generic mode
- net: ravb: Fix missing rtnl lock in suspend/resume path
- net: sh_eth: Fix missing rtnl lock in suspend/resume path
- net: hsr: fix fill_frame_info() regression vs VLAN packets
- genksyms: fix memory leak when the same symbol is added from source
- genksyms: fix memory leak when the same symbol is read from *.symref file
- hostfs: fix string handling in __dentry_name()
- [riscv64] Mark riscv_v_init() as __init
- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback
- io_uring/uring_cmd: use cached cmd_op in io_uring_cmd_sock()
- ASoC: amd: acp: Fix possible deadlock
- tools/power turbostat: Fix forked child affinity regression
- cifs: Validate EAs for WSL reparse points
- cifs: Fix getting and setting SACLs over SMB1
- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST
- kconfig: fix memory leak in sym_warn_unmet_dep()
- f2fs: Introduce linear search for dentries
- md/md-bitmap: factor behind write counters out from
bitmap_{start/end}write()
- md/md-bitmap: remove the last parameter for bimtap_ops->endwrite()
- md: add a new callback pers->bitmap_sector()
- md/raid5: implement pers->bitmap_sector()
- md/md-bitmap: move bitmap_{start, end}write to md upper layer
- Revert "SUNRPC: Reduce thread wake-up rate when receiving large RPC
messages"
- netfilter: nf_tables: reject mismatching sum of field_len with set key
length
- drm/amd/display: Reduce accessing remote DPCD overhead
- xfs: check for dead buffers in xfs_buf_find_insert
- xfs: don't shut down the filesystem for media failures beyond end of log
- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro
- net: usb: rtl8150: enable basic endpoint checking
- usb: xhci: Fix NULL pointer dereference on certain command aborts
- drivers/card_reader/rtsx_usb: Restore interrupt based detection
- usb: gadget: f_tcm: Fix Get/SetInterface return value
- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk()
- usb: dwc3: core: Defer the probe until USB power supply ready
- usb: dwc3: Skip resume if pm_runtime_set_active() fails
- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to
PD_T_SENDER_RESPONSE
- usb: typec: tcpci: Prevent Sink disconnection before vPpsShutdown in SPR
PPS
- clk: qcom: gcc-x1e80100: Do not turn off usb_2 controller GDSC
- mptcp: consolidate suboption status
- mptcp: pm: only set fullmesh for subflow endp
- mptcp: handle fastopen disconnect correctly
- mptcp: blackhole only if 1st SYN retrans w/o MPC is accepted
- RDMA/mlx5: Fix implicit ODP use after free
- remoteproc: core: Fix ida_free call while not allocated
- media: uvcvideo: Fix double free in error path
- pps: Fix a use-after-free
- usb: gadget: f_tcm: Don't free command immediately
- staging: media: max96712: fix kernel oops when removing module
- media: imx-jpeg: Fix potential error pointer dereference in detach_pm()
- [powerpc*] pseries/iommu: Don't unset window if it was never set
- md/md-bitmap: Synchronize bitmap_get_stats() with bitmap lifetime
- btrfs: output the reason for open_ctree() failure
- of: reserved-memory: Warn for missing static reserved memory regions
- dma-mapping: save base/size instead of pointer to shared DMA pool
- xfrm: Add error handling when nla_put_u32() returns an error
- xfrm: Fix acquire state insertion.
- ethtool: Fix access to uninitialized fields in set RXNFC command
- Revert "s390/mm: Allow large pages for KASAN shadow mapping"
- ASoC: da7213: Initialize the mutex
- [s390x] Add '-std=gnu11' to decompressor and purgatory CFLAGS
- drm/amd/display: Add hubp cache reset when powergating
- [x86] KVM: x86: Plumb in the vCPU to kvm_x86_ops.hwapic_isr_update()
- memcg: fix soft lockup in the OOM process
- btrfs: do proper folio cleanup when run_delalloc_nocow() failed
- ethtool: ntuple: fix rss + ring_cookie check
[ Emanuele Rocca]
* [amd64, arm64] Add pmem modules to amd64 and arm64 kernel-image udeb
to support UEFI HTTP boot (or u-boot) in debian-installer
[dgit import unpatched linux 6.12.13-1]
projects / linux.git / log