diff mbox series

[5.13,054/800] ext4: fix overflow in ext4_iomap_alloc()

Message ID	20210712060921.032968102@linuxfoundation.org
State	New
Headers	show Return-Path: <stable-owner@kernel.org> From: Greg Kroah-Hartman <gregkh@linuxfoundation.org> To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>, stable@vger.kernel.org, stable@kernel.org, Jan Kara <jack@suse.cz>, Theodore Tso <tytso@mit.edu> Subject: [PATCH 5.13 054/800] ext4: fix overflow in ext4_iomap_alloc() Date: Mon, 12 Jul 2021 08:01:17 +0200 Message-Id: <20210712060921.032968102@linuxfoundation.org> In-Reply-To: <20210712060912.995381202@linuxfoundation.org> References: <20210712060912.995381202@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	None \| expand [5.13,002/800] Bluetooth: btqca: Dont modify firmware contents in-place [5.13,003/800] Bluetooth: Remove spurious error message [5.13,004/800] ALSA: bebob: fix rx packet format for Yamaha GO44/GO46, Terratec Phase 24/x24 [5.13,005/800] ALSA: usb-audio: fix rate on Ozone Z90 USB headset [5.13,006/800] ALSA: usb-audio: Fix OOB access at proc output [5.13,007/800] ALSA: firewire-motu: fix stream format for MOTU 8pre FireWire [5.13,008/800] ALSA: usb-audio: scarlett2: Fix wrong resume call [5.13,009/800] ALSA: intel8x0: Fix breakage at ac97 clock measurement [5.13,010/800] ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8 [5.13,011/800] ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8 [5.13,012/800] ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8 [5.13,013/800] ALSA: hda/realtek: Add another ALC236 variant support [5.13,014/800] ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook x360 830 G8 [5.13,015/800] ALSA: hda/realtek: Improve fixup for HP Spectre x360 15-df0xxx [5.13,016/800] ALSA: hda/realtek: Fix bass speaker DAC mapping for Asus UM431D [5.13,017/800] ALSA: hda/realtek: Apply LED fixup for HP Dragonfly G1, too [5.13,018/800] ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC [5.13,019/800] ALSA: hda/realtek: fix mute led of the HP Pavilion 15-eh1xxx series [5.13,020/800] media: dvb-usb: fix wrong definition [5.13,021/800] Input: usbtouchscreen - fix control-request directions [5.13,022/800] net: can: ems_usb: fix use-after-free in ems_usb_disconnect() [5.13,023/800] usb: gadget: eem: fix echo command packet response issue [5.13,024/800] usb: renesas-xhci: Fix handling of unknown ROM state [5.13,025/800] USB: cdc-acm: blacklist Heimann USB Appset device [5.13,026/800] usb: dwc3: Fix debugfs creation flow [5.13,027/800] usb: typec: tcpci: Fix up sink disconnect thresholds for PD [5.13,028/800] usb: typec: tcpm: Relax disconnect threshold during power negotiation [5.13,029/800] usb: typec: Add the missed altmode_id_remove() in typec_register_altmode() [5.13,030/800] xhci: solve a double free problem while doing s4 [5.13,031/800] mm/page_alloc: fix memory map initialization for descending nodes [5.13,032/800] gfs2: Fix underflow in gfs2_page_mkwrite [5.13,033/800] gfs2: Fix error handling in init_statfs [5.13,034/800] ntfs: fix validity check for file name attribute [5.13,035/800] selftests/lkdtm: Avoid needing explicit sub-shell [5.13,036/800] copy_page_to_iter(): fix ITER_DISCARD case [5.13,037/800] teach copy_page_to_iter() to handle compound pages [5.13,038/800,xarray] iov_iter_fault_in_readable() should do nothing in xarray case [5.13,039/800] Input: elants_i2c - fix NULL dereference at probing [5.13,040/800] Input: joydev - prevent use of not validated data in JSIOCSBTNMAP ioctl [5.13,041/800] crypto: nx - Fix memcpy() over-reading in nonce [5.13,042/800] crypto: ccp - Annotate SEV Firmware file names [5.13,043/800] arm_pmu: Fix write counter incorrect in ARMv7 big-endian mode [5.13,044/800] ARM: dts: ux500: Fix LED probing [5.13,045/800] ARM: dts: at91: sama5d4: fix pinctrl muxing [5.13,046/800] btrfs: zoned: print message when zone sanity check type fails [5.13,047/800] btrfs: zoned: bail out if we cant read a reliable write pointer [5.13,048/800] btrfs: send: fix invalid path for unlink operations after parent orphanization [5.13,049/800] btrfs: compression: dont try to compress if we dont have enough pages [5.13,050/800] btrfs: fix unbalanced unlock in qgroup_account_snapshot() [5.13,051/800] btrfs: clear defrag status of a root if starting transaction fails [5.13,052/800] ext4: cleanup in-core orphan list if ext4_truncate() failed to get a transaction h... [5.13,053/800] ext4: fix kernel infoleak via ext4_extent_header [5.13,054/800] ext4: fix overflow in ext4_iomap_alloc() [5.13,055/800] ext4: return error code when ext4_fill_flex_info() fails [5.13,056/800] ext4: correct the cache_nr in tracepoint ext4_es_shrink_exit [5.13,057/800] ext4: remove check for zero nr_to_scan in ext4_es_scan() [5.13,058/800] ext4: fix avefreec in find_group_orlov [5.13,059/800] ext4: use ext4_grp_locked_error in mb_find_extent [5.13,060/800] can: bcm: delay release of struct bcm_op after synchronize_rcu() [5.13,061/800] can: gw: synchronize rcu operations before removing gw job entry [5.13,062/800] can: isotp: isotp_release(): omit unintended hrtimer restart on socket release [5.13,063/800] can: j1939: j1939_sk_init(): set SOCK_RCU_FREE to call sk_destruct() after RCU is ... [5.13,064/800] can: peak_pciefd: pucan_handle_status(): fix a potential starvation issue in TX path [5.13,065/800] mac80211: remove iwlwifi specific workaround that broke sta NDP tx [5.13,066/800] mac80211: fix NULL ptr dereference during mesh peer connection for non HE devices [5.13,067/800] SUNRPC: Fix the batch tasks count wraparound. [5.13,068/800] SUNRPC: Should wake up the privileged task firstly. [5.13,069/800] bus: mhi: core: Fix power down latency [5.13,070/800] bus: mhi: Wait for M2 state during system resume [5.13,071/800] bus: mhi: pci-generic: Add missing pci_disable_pcie_error_reporting() calls [5.13,072/800] mm/gup: fix try_grab_compound_head() race with split_huge_page() [5.13,073/800] perf/smmuv3: Dont trample existing events with global filter [5.13,074/800] KVM: nVMX: Handle split-lock #AC exceptions that happen in L2 [5.13,075/800] KVM: PPC: Book3S HV: Workaround high stack usage with clang [5.13,076/800] KVM: x86/mmu: Remove broken WARN that fires on 32-bit KVM w/ nested EPT [5.13,077/800] KVM: x86/mmu: Treat NX as used (not reserved) for all !TDP shadow MMUs [5.13,078/800] KVM: x86/mmu: Use MMUs role to detect CR4.SMEP value in nested NPT walk [5.13,079/800] KVM: x86: Properly reset MMU context at vCPU RESET/INIT [5.13,080/800] KVM: x86: Force all MMUs to reinitialize if guest CPUID is modified [5.13,081/800] s390/cio: dont call css_wait_for_slow_path() inside a lock [5.13,082/800] s390: mm: Fix secure storage access exception handling [5.13,083/800] f2fs: Advertise encrypted casefolding in sysfs [5.13,084/800] f2fs: Prevent swap file in LFS mode [5.13,085/800] clk: k210: Fix k210_clk_set_parent() [5.13,086/800] clk: agilex/stratix10/n5x: fix how the bypass_reg is handled [5.13,087/800] clk: agilex/stratix10: remove noc_clk [5.13,088/800] clk: agilex/stratix10: fix bypass representation [5.13,089/800] clk: agilex/stratix10: add support for the 2nd bypass [5.13,090/800] rtc: stm32: Fix unbalanced clk_disable_unprepare() on probe error path [5.13,091/800] iio: frequency: adf4350: disable reg and clk on error in adf4350_probe() [5.13,092/800] iio: light: tcs3472: do not free unallocated IRQ [5.13,093/800] iio: ltr501: mark register holding upper 8 bits of ALS_DATA{0,1} and PS_DATA as vo... [5.13,094/800] iio: ltr501: ltr559: fix initialization of LTR501_ALS_CONTR [5.13,095/800] iio: ltr501: ltr501_read_ps(): add missing endianness conversion [5.13,096/800] iio: accel: bma180: Fix BMA25x bandwidth register values [5.13,097/800] iio: accel: bmc150: Fix bma222 scale unit [5.13,098/800] iio: accel: bmc150: Fix dereferencing the wrong pointer in bmc150_get/set_second_d... [5.13,099/800] iio: accel: bmc150: Dont make the remove function of the second accelerometer unre... [5.13,100/800] serial: mvebu-uart: fix calculation of clock divisor [5.13,101/800] serial: sh-sci: Stop dmaengine transfer in sci_stop_tx() [5.13,102/800] serial_cs: Add Option International GSM-Ready 56K/ISDN modem [5.13,103/800] serial_cs: remove wrong GLOBETROTTER.cis entry [5.13,104/800] ath9k: Fix kernel NULL pointer dereference during ath_reset_internal() [5.13,105/800] ssb: sdio: Dont overwrite const buffer if block_write fails [5.13,106/800] rsi: Assign beacon rate settings to the correct rate_info descriptor field [5.13,107/800] rsi: fix AP mode with WPA failure due to encrypted EAPOL [5.13,108/800] selftests/resctrl: Fix incorrect parsing of option "-t" [5.13,109/800] tracing/histograms: Fix parsing of "sym-offset" modifier [5.13,110/800] tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing [5.13,111/800] seq_buf: Make trace_seq_putmem_hex() support data longer than 8 [5.13,112/800] powerpc/stacktrace: Fix spurious "stale" traces in raise_backtrace_ipi() [5.13,113/800] x86/gpu: add JasperLake to gen11 early quirks [5.13,114/800] perf/x86/intel: Fix fixed counter check warning for some Alder Lake [5.13,115/800] perf/x86/intel: Add more events requires FRONTEND MSR on Sapphire Rapids [5.13,116/800] perf/x86/intel: Fix instructions:ppp support in Sapphire Rapids [5.13,117/800] loop: Fix missing discard support when using LOOP_CONFIGURE [5.13,118/800] evm: Execute evm_inode_init_security() only when an HMAC key is loaded [5.13,119/800] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded [5.13,120/800] fuse: Fix crash in fuse_dentry_automount() error path [5.13,121/800] fuse: Fix crash if superblock of submount gets killed early [5.13,122/800] fuse: Fix infinite loop in sget_fc() [5.13,123/800] fuse: ignore PG_workingset after stealing [5.13,124/800] fuse: check connected before queueing on fpq->io [5.13,125/800] fuse: reject internal errno [5.13,126/800] thermal/cpufreq_cooling: Update offline CPUs per-cpu thermal_pressure [5.13,127/800] spi: Make of_register_spi_device also set the fwnode [5.13,128/800] Add a reference to ucounts for each cred [5.13,129/800] staging: media: rkvdec: fix pm_runtime_get_sync() usage count [5.13,130/800] media: i2c: imx334: fix the pm runtime get logic [5.13,131/800] media: marvel-ccic: fix some issues when getting pm_runtime [5.13,132/800] media: mdk-mdp: fix pm_runtime_get_sync() usage count [5.13,133/800] media: s5p: fix pm_runtime_get_sync() usage count [5.13,134/800] media: am437x: fix pm_runtime_get_sync() usage count [5.13,135/800] media: sh_vou: fix pm_runtime_get_sync() usage count [5.13,136/800] media: mtk-vcodec: fix PM runtime get logic [5.13,137/800] media: s5p-jpeg: fix pm_runtime_get_sync() usage count [5.13,138/800] media: sunxi: fix pm_runtime_get_sync() usage count [5.13,139/800] media: sti/bdisp: fix pm_runtime_get_sync() usage count [5.13,140/800] media: exynos4-is: fix pm_runtime_get_sync() usage count [5.13,141/800] media: exynos-gsc: fix pm_runtime_get_sync() usage count [5.13,142/800] spi: spi-loopback-test: Fix tx_buf might be rx_buf [5.13,143/800] spi: spi-topcliff-pch: Fix potential double free in pch_spi_process_messages() [5.13,144/800] spi: omap-100k: Fix the length judgment problem [5.13,145/800] regulator: uniphier: Add missing MODULE_DEVICE_TABLE [5.13,146/800] sched/core: Initialize the idle task with preemption disabled [5.13,147/800] hwrng: exynos - Fix runtime PM imbalance on error [5.13,148/800] crypto: nx - add missing MODULE_DEVICE_TABLE [5.13,149/800] media: sti: fix obj-$(config) targets [5.13,150/800] sched: Make the idle task quack like a per-CPU kthread [5.13,151/800] media: cpia2: fix memory leak in cpia2_usb_probe [5.13,152/800] media: cobalt: fix race condition in setting HPD [5.13,153/800] media: hevc: Fix dependent slice segment flags [5.13,154/800] media: pvrusb2: fix warning in pvr2_i2c_core_done [5.13,155/800] media: imx: imx7_mipi_csis: Fix logging of only error event counters [5.13,156/800] crypto: qat - check return code of qat_hal_rd_rel_reg() [5.13,157/800] crypto: qat - remove unused macro in FW loader [5.13,158/800] crypto: qce: skcipher: Fix incorrect sg count for dma transfers [5.13,159/800] crypto: ecdh - fix ecdh-nist-p192s entry in testmgr [5.13,160/800] crypto: ecdh - fix ecdh_init [5.13,161/800] arm64: perf: Convert snprintf to sysfs_emit [5.13,162/800] sched/fair: Fix ascii art by relpacing tabs [5.13,163/800] ima: Dont remove security.ima if file must not be appraised [5.13,164/800] media: i2c: ov2659: Use clk_{prepare_enable,disable_unprepare}() to set xvclk on/off [5.13,165/800] media: bt878: do not schedule tasklet when it is not setup [5.13,166/800] media: em28xx: Fix possible memory leak of em28xx struct [5.13,167/800] media: hantro: Fix .buf_prepare [5.13,168/800] media: cedrus: Fix .buf_prepare [5.13,169/800] media: v4l2-core: Avoid the dangling pointer in v4l2_fh_release [5.13,170/800] media: bt8xx: Fix a missing check bug in bt878_probe [5.13,171/800] media: st-hva: Fix potential NULL pointer dereferences [5.13,172/800] crypto: hisilicon/sec - fixup 3des minimum key size declaration [5.13,173/800] arm64: entry: dont instrument entry code with KCOV [5.13,174/800] Makefile: fix GDB warning with CONFIG_RELR [5.13,175/800] media: dvd_usb: memory leak in cinergyt2_fe_attach [5.13,176/800] memstick: rtsx_usb_ms: fix UAF [5.13,177/800] mmc: sdhci-sprd: use sdhci_sprd_writew [5.13,178/800] mmc: via-sdmmc: add a check against NULL pointer dereference [5.13,179/800] mmc: sdhci-of-aspeed: Turn down a phase correction warning [5.13,180/800] spi: meson-spicc: fix a wrong goto jump for avoiding memory leak. [5.13,181/800] spi: meson-spicc: fix memory leak in meson_spicc_probe [5.13,182/800] regulator: mt6315: Fix checking return value of devm_regmap_init_spmi_ext [5.13,183/800] crypto: shash - avoid comparing pointers to exported functions under CFI [5.13,184/800] media: dvb_net: avoid speculation from net slot [5.13,185/800] media: dvbdev: fix error logic at dvb_register_device() [5.13,186/800] media: siano: fix device register error path [5.13,187/800] media: imx-csi: Skip first few frames from a BT.656 source [5.13,188/800] hwmon: (max31790) Report correct current pwm duty cycles [5.13,189/800] hwmon: (max31790) Fix pwmX_enable attributes [5.13,190/800] sched/fair: Take thermal pressure into account while estimating energy [5.13,191/800] perf/x86: Reset the dirty counter to prevent the leak for an RDPMC task [5.13,192/800] drivers/perf: fix the missed ida_simple_remove() in ddr_perf_probe() [5.13,193/800] KVM: arm64: Restore PMU configuration on first run [5.13,194/800] KVM: PPC: Book3S HV: Fix TLB management on SMT8 POWER9 and POWER10 processors [5.13,195/800] btrfs: fix error handling in __btrfs_update_delayed_inode [5.13,196/800] btrfs: abort transaction if we fail to update the delayed inode [5.13,197/800] btrfs: always abort the transaction if we abort a trans handle [5.13,198/800] btrfs: sysfs: fix format string for some discard stats [5.13,199/800] btrfs: dont clear page extent mapped if were not invalidating the full page [5.13,200/800] btrfs: disable build on platforms having page size 256K [5.13,201/800] locking/lockdep: Fix the dep path printing for backwards BFS [5.13,202/800] lockding/lockdep: Avoid to find wrong lock dep path in check_irq_usage() [5.13,203/800] KVM: s390: get rid of register asm usage [5.13,204/800] regulator: mt6358: Fix vdram2 .vsel_mask [5.13,205/800] regulator: da9052: Ensure enough delay time for .set_voltage_time_sel [5.13,206/800] media: Fix Media Controller API config checks [5.13,207/800] seccomp: Support atomic "addfd + send reply" [5.13,208/800] HID: do not use down_interruptible() when unbinding devices [5.13,209/800] EDAC/ti: Add missing MODULE_DEVICE_TABLE [5.13,210/800] ACPI: PM: s2idle: Add missing LPS0 functions for AMD [5.13,211/800] ACPI: scan: Rearrange dep_unmet initialization [5.13,212/800] ACPI: processor idle: Fix up C-state latency if not ordered [5.13,213/800] hv_utils: Fix passing zero to PTR_ERR warning [5.13,214/800] lib: vsprintf: Fix handling of number field widths in vsscanf [5.13,215/800] Input: goodix - platform/x86: touchscreen_dmi - Move upside down quirks to touchsc... [5.13,216/800] platform/x86: touchscreen_dmi: Add an extra entry for the upside down Goodix touch... [5.13,217/800] platform/x86: touchscreen_dmi: Add info for the Goodix GT912 panel of TM800A550L t... [5.13,218/800] ACPI: EC: Make more Asus laptops use ECDT _GPE [5.13,219/800] block_dump: remove block_dump feature in mark_inode_dirty() [5.13,220/800] blk-mq: grab rq->refcount before calling ->fn in blk_mq_tagset_busy_iter [5.13,221/800] blk-mq: clear stale request in tags->rq[] before freeing one request pool [5.13,222/800] fs: dlm: fix srcu read lock usage [5.13,223/800] fs: dlm: reconnect if socket error report occurs [5.13,224/800] fs: dlm: cancel work sync othercon [5.13,225/800] fs: dlm: fix connection tcp EOF handling [5.13,226/800] random32: Fix implicit truncation warning in prandom_seed_state() [5.13,227/800] open: dont silently ignore unknown O-flags in openat2() [5.13,228/800] drivers: hv: Fix missing error code in vmbus_connect() [5.13,229/800] fs: dlm: fix lowcomms_start error case [5.13,230/800] fs: dlm: fix memory leak when fenced [5.13,231/800] ACPICA: Fix memory leak caused by _CID repair function [5.13,232/800] ACPI: bus: Call kobject_put() in acpi_init() error path [5.13,233/800] ACPI: resources: Add checks for ACPI IRQ override [5.13,234/800] HID: hid-input: add Surface Go battery quirk [5.13,235/800] HID: sony: fix freeze when inserting ghlive ps3/wii dongles [5.13,236/800] block: fix race between adding/removing rq qos and normal IO [5.13,237/800] platform/x86: asus-nb-wmi: Revert "Drop duplicate DMI quirk structures" [5.13,238/800] platform/x86: asus-nb-wmi: Revert "add support for ASUS ROG Zephyrus G14 and G15" [5.13,239/800] platform/x86: toshiba_acpi: Fix missing error code in toshiba_acpi_setup_keyboard() [5.13,240/800] nvme-pci: fix var. type for increasing cq_head [5.13,241/800] nvmet-fc: do not check for invalid target port in nvmet_fc_handle_fcp_rqst() [5.13,242/800] EDAC/Intel: Do not load EDAC driver when running as a guest [5.13,243/800] tools/power/x86/intel-speed-select: Fix uncore memory frequency display [5.13,244/800] PCI: hv: Add check for hyperv_initialized in init_hv_pci_drv() [5.13,245/800] cifs: improve fallocate emulation [5.13,246/800] cifs: fix check of dfs interlinks [5.13,247/800] cifs: retry lookup and readdir when EAGAIN is returned. [5.13,248/800] smb3: fix uninitialized value for port in witness protocol move [5.13,249/800] cifs: fix SMB1 error path in cifs_get_file_info_unix [5.13,250/800] ACPI: EC: trust DSDT GPE for certain HP laptop [5.13,251/800] block, bfq: fix delayed stable merge check [5.13,252/800] clocksource: Retry clock read if long delays detected [5.13,253/800] clocksource: Check per-CPU clock synchronization when marked unstable [5.13,254/800] tpm_tis_spi: add missing SPI device ID entries [5.13,255/800] ACPI: tables: Add custom DSDT file as makefile prerequisite [5.13,256/800] smb3: fix possible access to uninitialized pointer to DACL [5.13,257/800] HID: wacom: Correct base usage for capacitive ExpressKey status bits [5.13,258/800] cifs: fix missing spinlock around update to ses->status [5.13,259/800] bfq: Remove merged request already in bfq_requests_merged() [5.13,260/800] mailbox: qcom: Use PLATFORM_DEVID_AUTO to register platform device [5.13,261/800] block: fix discard request merge [5.13,262/800] kthread_worker: fix return value when kthread_mod_delayed_work() races with kthrea... [5.13,263/800] ia64: mca_drv: fix incorrect array size calculation [5.13,264/800] writeback, cgroup: increment isw_nr_in_flight before grabbing an inode [5.13,265/800] mm: define default MAX_PTRS_PER_* in include/pgtable.h [5.13,266/800] kbuild: skip per-CPU BTF generation for pahole v1.18-v1.21 [5.13,267/800] spi: Allow to have all native CSs in use along with GPIOs [5.13,268/800] spi: Avoid undefined behaviour when counting unused native CSs [5.13,269/800] media: venus: Rework error fail recover logic [5.13,270/800] media: s5p_cec: decrement usage count if disabled [5.13,271/800] media: i2c: ccs-core: return the right error code at suspend [5.13,272/800] media: hantro: do a PM resume earlier [5.13,273/800] crypto: ixp4xx - dma_unmap the correct address [5.13,274/800] crypto: ixp4xx - update IV after requests [5.13,275/800] crypto: ux500 - Fix error return code in hash_hw_final() [5.13,276/800] sata_highbank: fix deferred probing [5.13,277/800] pata_rb532_cf: fix deferred probing [5.13,278/800] media: I2C: change RST to "RSET" to fix multiple build errors [5.13,279/800] sched/uclamp: Fix wrong implementation of cpu.uclamp.min [5.13,280/800] sched/uclamp: Fix locking around cpu_util_update_eff() [5.13,281/800] kbuild: Fix objtool dependency for OBJECT_FILES_NON_STANDARD_<obj> := n [5.13,282/800] pata_octeon_cf: avoid WARN_ON() in ata_host_activate() [5.13,283/800] evm: fix writing <securityfs>/evm overflow [5.13,284/800] crypto: testmgr - fix initialization of secret_size [5.13,285/800] crypto: hisilicon/hpre - fix unmapping invalid dma address [5.13,286/800] x86/elf: Use _BITUL() macro in UAPI headers [5.13,287/800] crypto: sa2ul - Fix leaks on failure paths with sa_dma_init() [5.13,288/800] crypto: sa2ul - Fix pm_runtime enable in sa_ul_probe() [5.13,289/800] crypto: sa2ul - Use of_device_get_match_data() helper [5.13,290/800] crypto: ccp - Fix a resource leak in an error handling path [5.13,291/800] media: rc: i2c: Fix an error message [5.13,292/800] regulator: bd71815: add select to fix build [5.13,293/800] pata_ep93xx: fix deferred probing [5.13,294/800] locking/lockdep: Reduce LOCKDEP dependency list [5.13,295/800] sched: Dont defer CPU pick to migration_cpu_stop() [5.13,296/800] media: ipu3-cio2: Fix reference counting when looping over ACPI devices [5.13,297/800] media: venus: hfi_cmds: Fix conceal color property [5.13,298/800] media: rkvdec: Fix .buf_prepare [5.13,299/800] media: exynos4-is: Fix a use after free in isp_video_release [5.13,300/800] media: au0828: fix a NULL vs IS_ERR() check [5.13,301/800] media: tc358743: Fix error return code in tc358743_probe_of() [5.13,302/800] media: vicodec: Use _BITUL() macro in UAPI headers [5.13,303/800] media: gspca/gl860: fix zero-length control requests [5.13,304/800] regulator: fan53555: Fix missing slew_reg/mask/shift settings for FAN53526 [5.13,305/800] drivers/perf: hisi: Fix data source control [5.13,306/800] m68k: atari: Fix ATARI_KBD_CORE kconfig unmet dependency warning [5.13,307/800] media: siano: Fix out-of-bounds warnings in smscore_load_firmware_family2() [5.13,308/800] regulator: fan53880: Fix vsel_mask setting for FAN53880_BUCK [5.13,309/800] crypto: nitrox - fix unchecked variable in nitrox_register_interrupts [5.13,310/800] crypto: omap-sham - Fix PM reference leak in omap sham ops [5.13,311/800] crypto: x86/curve25519 - fix cpu feature checking logic in mod_exit [5.13,312/800] crypto: sm2 - fix a memory leak in sm2 [5.13,313/800] mmc: usdhi6rol0: fix error return code in usdhi6_probe() [5.13,314/800] arm64/mm: Fix ttbr0 values stored in struct thread_info for software-pan [5.13,315/800] media: v4l2-core: ignore native time32 ioctls on 64-bit [5.13,316/800] media: subdev: remove VIDIOC_DQEVENT_TIME32 handling [5.13,317/800] media: s5p-g2d: Fix a memory leak on ctx->fh.m2m_ctx [5.13,318/800] media: i2c: rdacm21: Fix OV10640 powerup [5.13,319/800] media: i2c: rdacm21: Power up OV10640 before OV490 [5.13,320/800] hwmon: (pmbus/bpa-rs600) Handle Vin readings >= 256V [5.13,321/800] hwmon: (lm70) Revert "hwmon: (lm70) Add support for ACPI" [5.13,322/800] hwmon: (max31722) Remove non-standard ACPI device IDs [5.13,323/800] hwmon: (max31790) Fix fan speed reporting for fan7..12 [5.13,324/800] KVM: nVMX: Add a return code to vmx_complete_nested_posted_interrupt [5.13,325/800] KVM: nVMX: Sync all PGDs on nested transition with shadow paging [5.13,326/800] KVM: nVMX: Ensure 64-bit shift when checking VMFUNC bitmap [5.13,327/800] KVM: nVMX: Dont clobber nested MMUs A/D status on EPTP switch [5.13,328/800] KVM: x86/mmu: Fix return value in tdp_mmu_map_handle_target_level() [5.13,329/800] KVM: x86/mmu: Fix pf_fixed count in tdp_mmu_map_handle_target_level() [5.13,330/800] perf/arm-cmn: Fix invalid pointer when access dtc object sharing the same IRQ number [5.13,331/800] KVM: arm64: Dont zero the cycle count register when PMCR_EL0.P is set [5.13,332/800] regulator: hi655x: Fix pass wrong pointer to config.driver_data [5.13,333/800] regulator: qcom-rpmh: Add terminator at the end of pm7325x_vreg_data[] array [5.13,334/800] regulator: hi6421v600: Fix setting idle mode [5.13,335/800] regulator: bd9576: Fix the driver name in id table [5.13,336/800] btrfs: clear log tree recovering status if starting transaction fails [5.13,337/800] x86/sev: Make sure IRQs are disabled while GHCB is active [5.13,338/800] x86/sev: Split up runtime #VC handler for correct state tracking [5.13,339/800] sched/rt: Fix RT utilization tracking during policy change [5.13,340/800] sched/rt: Fix Deadline utilization tracking during policy change [5.13,341/800] sched/uclamp: Fix uclamp_tg_restrict() [5.13,342/800] lockdep: Fix wait-type for empty stack [5.13,343/800] lockdep/selftests: Fix selftests vs PROVE_RAW_LOCK_NESTING [5.13,344/800] x86/sev: Use "SEV: " prefix for messages from sev.c [5.13,345/800] spi: spi-sun6i: Fix chipselect/clock bug [5.13,346/800] perf: Fix task context PMU for Hetero [5.13,347/800] crypto: nx - Fix RCU warning in nx842_OF_upd_status [5.13,348/800] objtool: Dont make .altinstructions writable [5.13,349/800] psi: Fix race between psi_trigger_create/destroy [5.13,350/800] KVM: selftests: fix triple fault if ept=0 in dirty_log_test [5.13,351/800] KVM: selftests: Remove errant asm/barrier.h include to fix arm64 build [5.13,352/800] media: video-mux: Skip dangling endpoints [5.13,353/800] media: mtk-vpu: on suspend, read/write regs only if vpu is running [5.13,354/800] media: s5p-mfc: Fix display delay control creation [5.13,355/800] EDAC/aspeed: Use proper format string for printing resource [5.13,356/800] PM / devfreq: Add missing error code in devfreq_add_device() [5.13,357/800] ACPI: PM / fan: Put fan device IDs into separate header file [5.13,358/800] block: avoid double io accounting for flush request [5.13,359/800] x86/hyperv: fix logical processor creation [5.13,360/800] nvme-pci: look for StorageD3Enable on companion ACPI device instead [5.13,361/800] ACPI: tables: FPDT: Add missing acpi_put_table() in acpi_init_fpdt() [5.13,362/800] ACPI: sysfs: Fix a buffer overrun problem with description_show() [5.13,363/800] mark pstore-blk as broken [5.13,364/800] md: revert io stats accounting [5.13,365/800] HID: surface-hid: Fix get-report request [5.13,366/800] clocksource/drivers/timer-ti-dm: Save and restore timer TIOCP_CFG [5.13,367/800] nvme-tcp: fix error codes in nvme_tcp_setup_ctrl() [5.13,368/800] extcon: extcon-max8997: Fix IRQ freeing at error path [5.13,369/800] ACPI: APEI: fix synchronous external aborts in user-mode [5.13,370/800] EDAC/igen6: fix core dependency [5.13,371/800] blk-wbt: introduce a new disable state to prevent false positive by rwb_enabled() [5.13,372/800] blk-wbt: make sure throttle is enabled properly [5.13,373/800] block, bfq: avoid delayed merge of async queues [5.13,374/800] block, bfq: reset waker pointer with shared queues [5.13,375/800] ACPI: bgrt: Fix CFI violation [5.13,376/800] cpufreq: Make cpufreq_online() call driver->offline() on errors [5.13,377/800] PM / devfreq: passive: Fix get_target_freq when not using required-opp [5.13,378/800] block: fix trace completion for chained bio [5.13,379/800] blk-mq: update hctx->dispatch_busy in case of real scheduler [5.13,380/800] ocfs2: fix snprintf() checking [5.13,381/800] dax: fix ENOMEM handling in grab_mapping_entry() [5.13,382/800] mm/debug_vm_pgtable: ensure THP availability via has_transparent_hugepage() [5.13,383/800] mm: mmap_lock: use local locks instead of disabling preemption [5.13,384/800] swap: fix do_swap_page() race with swapoff [5.13,385/800] mm/shmem: fix shmem_swapin() race with swapoff [5.13,386/800] mm: memcg/slab: properly set up gfp flags for objcg pointer array [5.13,387/800] mm/page_alloc: fix counting of managed_pages [5.13,388/800] xfrm: xfrm_state_mtu should return at least 1280 for ipv6 [5.13,389/800] drm/bridge/sii8620: fix dependency on extcon [5.13,390/800] drm/bridge: Fix the stop condition of drm_bridge_chain_pre_enable() [5.13,391/800] drm/amd/dc: Fix a missing check bug in dm_dp_mst_detect() [5.13,392/800] drm/ast: Fix missing conversions to managed API [5.13,393/800] drm/bridge: anx7625: Fix power on delay [5.13,394/800] drm/bridge: fix LONTIUM_LT8912B dependencies [5.13,395/800] video: fbdev: imxfb: Fix an error message [5.13,396/800] drm/imx: ipuv3-plane: do not advertise YUV formats on planes without CSC [5.13,397/800] drm/imx: ipuv3-plane: fix PRG modifiers after drm managed resource conversion [5.13,398/800] rtnetlink: avoid RCU read lock when holding RTNL [5.13,399/800] net: mvpp2: Put fwnode in error case during ->probe() [5.13,400/800] net: pch_gbe: Propagate error from devm_gpio_request_one() [5.13,401/800] pinctrl: renesas: r8a7796: Add missing bias for PRESET# pin [5.13,402/800] pinctrl: renesas: r8a77990: JTAG pins do not have pull-down capabilities [5.13,403/800] RDMA/hns: Remove the condition of light load for posting DWQE [5.13,404/800] drm/vmwgfx: Mark a surface gpu-dirty after the SVGA3dCmdDXGenMips command [5.13,405/800] drm/vmwgfx: Fix cpu updates of coherent multisample surfaces [5.13,406/800] libbpf: Fix ELF symbol visibility update logic [5.13,407/800] drm/i915: Merge fix for "drm: Switch to %p4cc format modifier" [5.13,408/800] net: qrtr: ns: Fix error return code in qrtr_ns_init() [5.13,409/800] clk: meson: g12a: fix gp0 and hifi ranges [5.13,410/800] drm/amd/display: fix potential gpu reset deadlock [5.13,411/800] drm/amd/display: Avoid HPD IRQ in GPU reset state [5.13,412/800] drm/amd/display: take dc_lock in short pulse handler only [5.13,413/800] net: ftgmac100: add missing error return code in ftgmac100_probe() [5.13,414/800] clk: rockchip: fix rk3568 cpll clk gate bits [5.13,415/800] clk: sunxi-ng: v3s: fix incorrect postdivider on pll-audio [5.13,416/800] drm/vc4: crtc: Pass the drm_atomic_state to config_pv [5.13,417/800] drm/vc4: crtc: Fix vc4_get_crtc_encoder logic [5.13,418/800] drm/vc4: crtc: Lookup the encoder from the register at boot [5.13,419/800] drm: rockchip: set alpha_en to 0 if it is not used [5.13,420/800] drm/rockchip: cdn-dp-core: add missing clk_disable_unprepare() on error in cdn_dp_... [5.13,421/800] drm/rockchip: dsi: move all lane config except LCDC mux to bind() [5.13,422/800] drm/rockchip: lvds: Fix an error handling path [5.13,423/800] drm/rockchip: cdn-dp: fix sign extension on an int multiply for a u64 result [5.13,424/800] mptcp: fix pr_debug in mptcp_token_new_connect [5.13,425/800] mptcp: generate subflow hmac after mptcp_finish_join() [5.13,426/800] mptcp: make sure flag signal is set when add addr with port [5.13,427/800] RDMA/hns: Fix wrong timer context buffer page size [5.13,428/800] RDMA/srp: Fix a recently introduced memory leak [5.13,429/800] RDMA/rtrs-clt: Check state of the rtrs_clt_sess before reading its stats [5.13,430/800] RDMA/rtrs: Do not reset hb_missed_max after re-connection [5.13,431/800] RDMA/rtrs-srv: Fix memory leak of unfreed rtrs_srv_stats object [5.13,432/800] RDMA/rtrs-srv: Fix memory leak when having multiple sessions [5.13,433/800] RDMA/rtrs-clt: Check if the queue_depth has changed during a reconnection [5.13,434/800] RDMA/rtrs-clt: Fix memory leak of not-freed sess->stats and stats->pcpu_stats [5.13,435/800] ehea: fix error return code in ehea_restart_qps() [5.13,436/800] clk: tegra30: Use 300MHz for video decoder by default [5.13,437/800] xfrm: remove the fragment check for ipv6 beet mode [5.13,438/800] net/sched: act_vlan: Fix modify to allow 0 [5.13,439/800] RDMA/core: Sanitize WQ state received from the userspace [5.13,440/800] IB/cm: Pair cm_alloc_response_msg() with a cm_free_response_msg() [5.13,441/800] IB/cm: Split cm_alloc_msg() [5.13,442/800] Revert "IB/cm: Mark stale CM ids whenever the mad agent was unregistered" [5.13,443/800] IB/cm: Improve the calling of cm_init_av_for_lap and cm_init_av_by_path [5.13,444/800] drm/pl111: depend on CONFIG_VEXPRESS_CONFIG [5.13,445/800] RDMA/rxe: Fix failure during driver load [5.13,446/800] drm/pl111: Actually fix CONFIG_VEXPRESS_CONFIG depends [5.13,447/800] drm/vc4: hdmi: Fix error path of hpd-gpios [5.13,448/800] clk: vc5: fix output disabling when enabling a FOD [5.13,449/800] drm: qxl: ensure surf.data is ininitialized [5.13,450/800] stmmac: prefetch right address [5.13,451/800] net: stmmac: Fix potential integer overflow [5.13,452/800] tools/bpftool: Fix error return code in do_batch() [5.13,453/800] ath10k: go to path err_unsupported when chip id is not supported [5.13,454/800] ath10k: add missing error return code in ath10k_pci_probe() [5.13,455/800] wireless: carl9170: fix LEDS build errors & warnings [5.13,456/800] ieee802154: hwsim: Fix possible memory leak in hwsim_subscribe_all_others [5.13,457/800] clk: imx8mq: remove SYS PLL 1/2 clock gates [5.13,458/800] wcn36xx: Move hal_buf allocation to devm_kmalloc in probe [5.13,459/800] net: wwan: Fix WWAN config symbols [5.13,460/800] drm/i915/selftests: Reorder tasklet_disable vs local_bh_disable [5.13,461/800] ssb: Fix error return code in ssb_bus_scan() [5.13,462/800] brcmfmac: fix setting of station info chains bitmask [5.13,463/800] brcmfmac: correctly report average RSSI in station info [5.13,464/800] brcmfmac: Fix a double-free in brcmf_sdio_bus_reset [5.13,465/800] brcmfmac: Delete second brcm folder hierarchy [5.13,466/800] brcmsmac: mac80211_if: Fix a resource leak in an error handling path [5.13,467/800] cw1200: Revert unnecessary patches that fix unreal use-after-free bugs [5.13,468/800] ath11k: Fix an error handling path in ath11k_core_fetch_board_data_api_n() [5.13,469/800] ath10k: Fix an error code in ath10k_add_interface() [5.13,470/800] ath11k: send beacon template after vdev_start/restart during csa [5.13,471/800] wil6210: remove erroneous wiphy locking [5.13,472/800] netlabel: Fix memory leak in netlbl_mgmt_add_common [5.13,473/800] RDMA/mlx5: Dont add slave port to unaffiliated list [5.13,474/800] netfilter: nft_exthdr: check for IPv6 packet before further processing [5.13,475/800] netfilter: nft_osf: check for TCP packet before further processing [5.13,476/800] netfilter: nft_tproxy: restrict support to TCP and UDP transport protocols [5.13,477/800] RDMA/rxe: Fix qp reference counting for atomic ops [5.13,478/800] selftests/bpf: Whitelist test_progs.h from .gitignore [5.13,479/800] selftests/bpf: Fix ringbuf test fetching map FD [5.13,480/800] xsk: Fix missing validation for skb and unaligned mode [5.13,481/800] xsk: Fix broken Tx ring validation [5.13,482/800] bpf: Fix libelf endian handling in resolv_btfids [5.13,483/800] RDMA/rtrs-srv: Set minimal max_send_wr and max_recv_wr [5.13,484/800] RDMA/hns: Clear extended doorbell info before using [5.13,485/800] samples/bpf: Fix Segmentation fault for xdp_redirect command [5.13,486/800] samples/bpf: Fix the error return code of xdp_redirects main() [5.13,487/800] net: pxa168_eth: Fix a potential data race in pxa168_eth_remove [5.13,488/800] mt76: mt7915: fix a signedness bug in mt7915_mcu_apply_tx_dpd() [5.13,489/800] mt76: fix possible NULL pointer dereference in mt76_tx [5.13,490/800] mt76: mt7615: fix NULL pointer dereference in tx_prepare_skb() [5.13,491/800] mt76: mt7921: fix mt7921_wfsys_reset sequence [5.13,492/800] mt76: mt7921: Dont alter Rx path classifier [5.13,493/800] mt76: connac: fw_own rely on all packet memory all being free [5.13,494/800] mt76: connac: fix WoW with disconnetion and bitmap pattern [5.13,495/800] mt76: mt7921: consider the invalid value for to_rssi [5.13,496/800] mt76: mt7921: add back connection monitor support [5.13,497/800] mt76: mt7921: fix invalid register access in wake_work [5.13,498/800] mt76: mt7921: fix OMAC idx usage [5.13,499/800] mt76: mt7921: avoid unnecessary consecutive WiFi resets [5.13,500/800] mt76: mt7921: do not schedule hw reset if the device is not running [5.13,501/800] mt76: testmode: fix memory leak in mt76_testmode_alloc_skb [5.13,502/800] mt76: testmode: remove undefined behaviour in mt76_testmode_alloc_skb [5.13,503/800] mt76: mt7615: fix potential overflow on large shift [5.13,504/800] mt76: mt7915: fix MT_EE_CAL_GROUP_SIZE [5.13,505/800] mt76: mt7921: wake the device before dumping power table [5.13,506/800] mt76: mt7915: fix rx fcs error count in testmode [5.13,507/800] mt76: mt7921: fix kernel warning when reset on vif is not sta [5.13,508/800] mt76: mt7921: fix the coredump is being truncated [5.13,509/800] net: ethernet: aeroflex: fix UAF in greth_of_remove [5.13,510/800] net: ethernet: ezchip: fix UAF in nps_enet_remove [5.13,511/800] net: ethernet: ezchip: fix error handling [5.13,512/800] selftests/bpf: Retry for EAGAIN in udp_redir_to_connected() [5.13,513/800] udp: Fix a memory leak in udp_read_sock() [5.13,514/800] skmsg: Clear skb redirect pointer before dropping it [5.13,515/800] skmsg: Fix a memory leak in sk_psock_verdict_apply() [5.13,516/800] skmsg: Teach sk_psock_verdict_apply() to return errors [5.13,517/800] vrf: do not push non-ND strict packets with a source LLA through packet taps again [5.13,518/800] net: sched: add barrier to ensure correct ordering for lockless qdisc [5.13,519/800] selftests: tls: clean up uninitialized warnings [5.13,520/800] selftests: tls: fix chacha+bidir tests [5.13,521/800] tls: prevent oversized sendfile() hangs by ignoring MSG_MORE [5.13,522/800] netfilter: nf_tables: memleak in hw offload abort path [5.13,523/800] netfilter: nf_tables_offload: check FLOW_DISSECTOR_KEY_BASIC in VLAN transfer logic [5.13,524/800] mptcp: fix bad handling of 32 bit ack wrap-around [5.13,525/800] mptcp: fix 32 bit DSN expansion [5.13,526/800] net: mana: Fix a memory leak in an error handling path in mana_create_txq() [5.13,527/800] net: dsa: mv88e6xxx: Fix adding vlan 0 [5.13,528/800] pkt_sched: sch_qfq: fix qfq_change_class() error path [5.13,529/800] xfrm: Fix xfrm offload fallback fail case [5.13,530/800] netfilter: nf_tables: skip netlink portID validation if zero [5.13,531/800] netfilter: nf_tables: do not allow to delete table with owner by handle [5.13,532/800] iwlwifi: increase PNVM load timeout [5.13,533/800] bpf: Fix regression on BPF_OBJ_GET with non-O_RDWR flags [5.13,534/800] rtw88: 8822c: fix lc calibration timing [5.13,535/800] vxlan: add missing rcu_read_lock() in neigh_reduce() [5.13,536/800] bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc [5.13,537/800] mptcp: avoid race on msk state changes [5.13,538/800] ip6_tunnel: fix GRE6 segmentation [5.13,539/800] net/ipv4: swap flow ports when validating source [5.13,540/800] net: broadcom: bcm4908_enet: reset DMA rings sw indexes properly [5.13,541/800] net: ti: am65-cpsw-nuss: Fix crash when changing number of TX queues [5.13,542/800] tc-testing: fix list handling [5.13,543/800] RDMA/hns: Force rewrite inline flag of WQE [5.13,544/800] RDMA/hns: Fix uninitialized variable [5.13,545/800] ieee802154: hwsim: Fix memory leak in hwsim_add_one [5.13,546/800] ieee802154: hwsim: avoid possible crash in hwsim_del_edge_nl() [5.13,547/800] bpf: Fix null ptr deref with mixed tail calls and subprogs [5.13,548/800] drm/msm/dp: handle irq_hpd with sink_count = 0 correctly [5.13,549/800] drm/msm/disp/dpu1: avoid perf update in frame done event [5.13,550/800] drm/msm: Fix error return code in msm_drm_init() [5.13,551/800] drm/msm/dpu: Fix error return code in dpu_mdss_init() [5.13,552/800] mac80211: remove iwlwifi specific workaround NDPs of null_response [5.13,553/800] net: bcmgenet: Fix attaching to PYH failed on RPi 4B [5.13,554/800] ipv6: exthdrs: do not blindly use init_net [5.13,555/800] can: j1939: j1939_sk_setsockopt(): prevent allocation of j1939 filter for optlen == 0 [5.13,556/800] bpf: Do not change gso_size during bpf_skb_change_proto() [5.13,557/800] i40e: Fix error handling in i40e_vsi_open [5.13,558/800] i40e: Fix autoneg disabling for non-10GBaseT links [5.13,559/800] i40e: Fix missing rtnl locking when setting up pf switch [5.13,560/800] RDMA/hns: Add a check to ensure integer mtu is positive [5.13,561/800] RDMA/hns: Add window selection field of congestion control [5.13,562/800] Revert "ibmvnic: simplify reset_long_term_buff function" [5.13,563/800] Revert "ibmvnic: remove duplicate napi_schedule call in open function" [5.13,564/800] ibmvnic: clean pending indirect buffs during reset [5.13,565/800] ibmvnic: account for bufs already saved in indir_buf [5.13,566/800] ibmvnic: set ltb->buff to NULL after freeing [5.13,567/800] ibmvnic: free tx_pool if tso_pool alloc fails [5.13,568/800] RDMA/cma: Protect RMW with qp_mutex [5.13,569/800] net: macsec: fix the length used to copy the key for offloading [5.13,570/800] net: phy: mscc: fix macsec key length [5.13,571/800] net: atlantic: fix the macsec key length [5.13,572/800] ipv6: fix out-of-bound access in ip6_parse_tlv() [5.13,573/800] e1000e: Check the PCIm state [5.13,574/800] net: dsa: sja1105: fix NULL pointer dereference in sja1105_reload_cbs() [5.13,575/800] bpfilter: Specify the log level for the kmsg message [5.13,576/800] RDMA/cma: Fix incorrect Packet Lifetime calculation [5.13,577/800] gve: Fix swapped vars when fetching max queues [5.13,578/800] Revert "be2net: disable bh with spin_lock in be_process_mcc" [5.13,579/800] clk: zynqmp: fix compile testing without ZYNQMP_FIRMWARE [5.13,580/800] Bluetooth: virtio_bt: add missing null pointer check on alloc_skb call return [5.13,581/800] Bluetooth: mgmt: Fix slab-out-of-bounds in tlv_data_is_valid [5.13,582/800] Bluetooth: Fix Set Extended (Scan Response) Data [5.13,583/800] Bluetooth: Fix handling of HCI_LE_Advertising_Set_Terminated event [5.13,584/800] clk: qcom: gcc: Add support for a new frequency for SC7280 [5.13,585/800] clk: actions: Fix UART clock dividers on Owl S500 SoC [5.13,586/800] clk: actions: Fix SD clocks factor table on Owl S500 SoC [5.13,587/800] clk: actions: Fix bisp_factor_table based clocks on Owl S500 SoC [5.13,588/800] clk: actions: Fix AHPPREDIV-H-AHB clock chain on Owl S500 SoC [5.13,589/800] clk: qcom: clk-alpha-pll: fix CAL_L write in alpha_pll_fabia_prepare [5.13,590/800] clk: si5341: Wait for DEVICE_READY on startup [5.13,591/800] clk: si5341: Avoid divide errors due to bogus register contents [5.13,592/800] clk: si5341: Check for input clock presence and PLL lock on startup [5.13,593/800] clk: si5341: Update initialization magic [5.13,594/800] bpf, x86: Fix extable offset calculation [5.13,595/800] writeback: fix obtain a reference to a freeing memcg css [5.13,596/800] net: lwtunnel: handle MTU calculation in forwading [5.13,597/800] net: sched: fix warning in tcindex_alloc_perfect_hash [5.13,598/800] net: tipc: fix FB_MTU eat two pages [5.13,599/800] RDMA/mlx5: Dont access NULL-cleared mpi pointer [5.13,600/800] RDMA/core: Always release restrack object [5.13,601/800] MIPS: Fix PKMAP with 32-bit MIPS huge page support [5.13,602/800] staging: rtl8712: Fix some tests against some data subtype frames [5.13,603/800] staging: fbtft: Rectify GPIO handling [5.13,604/800] staging: fbtft: Dont spam logs when probe is deferred [5.13,605/800] ASoC: rt5682: Disable irq on shutdown [5.13,606/800] rcu: Invoke rcu_spawn_core_kthreads() from rcu_spawn_gp_kthread() [5.13,607/800] serial: fsl_lpuart: dont modify arbitrary data on lpuart32 [5.13,608/800] serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() [5.13,609/800] serial: 8250_omap: fix a timeout loop condition [5.13,610/800] tty: nozomi: Fix a resource leak in an error handling function [5.13,611/800] phy: ralink: phy-mt7621-pci: properly print pointer address [5.13,612/800] mwifiex: re-fix for unaligned accesses [5.13,613/800] iio: adis_buffer: do not return ints in irq handlers [5.13,614/800] iio: adis16400: do not return ints in irq handlers [5.13,615/800] iio: adis16475: do not return ints in irq handlers [5.13,616/800] iio: accel: bma180: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,617/800] iio: accel: bma220: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,618/800] iio: accel: hid: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,619/800] iio: accel: kxcjk-1013: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,620/800] iio: accel: mxc4005: Fix overread of data and alignment issue. [5.13,621/800] iio: accel: stk8312: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,622/800] iio: accel: stk8ba50: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,623/800] iio: adc: ti-ads1015: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,624/800] iio: adc: vf610: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,625/800] iio: gyro: bmg160: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,626/800] iio: humidity: am2315: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,627/800] iio: prox: srf08: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,628/800] iio: prox: pulsed-light: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,629/800] iio: prox: as3935: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,630/800] iio: magn: hmc5843: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,631/800] iio: magn: bmc150: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,632/800] iio: light: isl29125: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,633/800] iio: light: tcs3414: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,634/800] iio: light: tcs3472: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,635/800] iio: chemical: atlas: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,636/800] iio: cros_ec_sensors: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() [5.13,637/800] iio: potentiostat: lmp91000: Fix alignment of buffer in iio_push_to_buffers_with_t... [5.13,638/800] ASoC: rk3328: fix missing clk_disable_unprepare() on error in rk3328_platform_probe() [5.13,639/800] ASoC: hisilicon: fix missing clk_disable_unprepare() on error in hi6210_i2s_startup() [5.13,640/800] backlight: lm3630a_bl: Put fwnode in error case during ->probe() [5.13,641/800] usb: typec: tcpm: Fix up PR_SWAP when vsafe0v is signalled [5.13,642/800] ASoC: rsnd: tidyup loop on rsnd_adg_clk_query() [5.13,643/800] Input: hil_kbd - fix error return code in hil_dev_connect() [5.13,644/800] perf scripting python: Fix tuple_set_u64() [5.13,645/800] mtd: partitions: redboot: seek fis-index-block in the right node [5.13,646/800] mtd: parsers: qcom: Fix leaking of partition name [5.13,647/800] mtd: rawnand: arasan: Ensure proper configuration for the asserted target [5.13,648/800] staging: mmal-vchiq: Fix incorrect static vchiq_instance. [5.13,649/800] char: pcmcia: error out if num_bytes_read is greater than 4 in set_protocol() [5.13,650/800] misc/pvpanic-pci: Fix error handling in pvpanic_pci_probe() [5.13,651/800] misc/pvpanic-mmio: Fix error handling in pvpanic_mmio_probe() [5.13,652/800] firmware: stratix10-svc: Fix a resource leak in an error handling path [5.13,653/800] tty: nozomi: Fix the error handling path of nozomi_card_init() [5.13,654/800] leds: class: The -ENOTSUPP should never be seen by user space [5.13,655/800] leds: lgm-sso: Fix clock handling [5.13,656/800] leds: lm3532: select regmap I2C API [5.13,657/800] leds: lm36274: Put fwnode in error case during ->probe() [5.13,658/800] leds: lm3692x: Put fwnode in any case during ->probe() [5.13,659/800] leds: lm3697: Dont spam logs when probe is deferred [5.13,660/800] leds: lp50xx: Put fwnode in error case during ->probe() [5.13,661/800] scsi: FlashPoint: Rename si_flags field [5.13,662/800] scsi: iscsi: Stop queueing during ep_disconnect [5.13,663/800] scsi: iscsi: Force immediate failure during shutdown [5.13,664/800] scsi: iscsi: Use system_unbound_wq for destroy_work [5.13,665/800] scsi: iscsi: Rel ref after iscsi_lookup_endpoint() [5.13,666/800] scsi: iscsi: Fix in-kernel conn failure handling [5.13,667/800] scsi: iscsi: Flush block work before unblock [5.13,668/800] mfd: mp2629: Select MFD_CORE to fix build error [5.13,669/800] mfd: Remove software node conditionally and locate at right place [5.13,670/800] mfd: rn5t618: Fix IRQ trigger by changing it to level mode [5.13,671/800] fsi: core: Fix return of error values on failures [5.13,672/800] fsi: scom: Reset the FSI2PIB engine for any error [5.13,673/800] fsi: occ: Dont accept response from un-initialized OCC [5.13,674/800] fsi/sbefifo: Clean up correct FIFO when receiving reset request from SBE [5.13,675/800] fsi/sbefifo: Fix reset timeout [5.13,676/800] visorbus: fix error return code in visorchipset_init() [5.13,677/800] iommu/amd: Fix extended features logging [5.13,678/800] iommu/amd: Tidy up DMA ops init [5.13,679/800] s390: enable HAVE_IOREMAP_PROT [5.13,680/800] s390: appldata depends on PROC_SYSCTL [5.13,681/800] selftests: splice: Adjust for handler fallback removal [5.13,682/800] iommu/dma: Fix IOVA reserve dma ranges [5.13,683/800] ASoC: max98373-sdw: add missing memory allocation check [5.13,684/800] ASoC: max98373-sdw: use first_hw_init flag on resume [5.13,685/800] ASoC: rt1308-sdw: use first_hw_init flag on resume [5.13,686/800] ASoC: rt1316-sdw: use first_hw_init flag on resume [5.13,687/800] ASoC: rt5682-sdw: use first_hw_init flag on resume [5.13,688/800] ASoC: rt700-sdw: use first_hw_init flag on resume [5.13,689/800] ASoC: rt711-sdca-sdw: use first_hw_init flag on resume [5.13,690/800] ASoC: rt711-sdw: use first_hw_init flag on resume [5.13,691/800] ASoC: rt715-sdca-sdw: use first_hw_init flag on resume [5.13,692/800] ASoC: rt715-sdw: use first_hw_init flag on resume [5.13,693/800] ASoC: rt715-sdca: fix clock stop prepare timeout issue [5.13,694/800] ASoC: rt5682: Fix a problem with error handling in the io init function of the sou... [5.13,695/800] ASoC: rt5682-sdw: set regcache_cache_only false before reading RT5682_DEVICE_ID [5.13,696/800] ASoC: rt711-sdca-sdw: add readable for SDW_SDCA_CTL() registers [5.13,697/800] ASoC: rt711-sdca: handle mbq_regmap in rt711_sdca_io_init [5.13,698/800] ASoC: mediatek: mtk-btcvsd: Fix an error handling path in mtk_btcvsd_snd_probe() [5.13,699/800] usb: gadget: f_fs: Fix setting of device and driver data cross-references [5.13,700/800] usb: dwc2: Dont reset the core after setting turnaround time [5.13,701/800] eeprom: idt_89hpesx: Put fwnode in matching case during ->probe() [5.13,702/800] eeprom: idt_89hpesx: Restore printing the unsupported fwnode name [5.13,703/800] mtd: spi-nor: otp: fix access to security registers in 4 byte mode [5.13,704/800] mtd: spi-nor: otp: return -EROFS if region is read-only [5.13,705/800] thunderbolt: Bond lanes only when dual_link_port != NULL in alloc_dev_default() [5.13,706/800] mtd: spinand: Fix double counting of ECC stats [5.13,707/800] kunit: Fix result propagation for parameterised tests [5.13,708/800] iio: dummy: Fix build error when CONFIG_IIO_TRIGGERED_BUFFER is not set [5.13,709/800] iio: adc: at91-sama5d2: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,710/800] iio: adc: hx711: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,711/800] iio: adc: mxs-lradc: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,712/800] iio: adc: ti-ads8688: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() [5.13,713/800] iio: magn: rm3100: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() [5.13,714/800] iio: light: vcnl4000: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,715/800] ASoC: fsl_spdif: Fix error handler with pm_runtime_enable [5.13,716/800] staging: gdm724x: check for buffer overflow in gdm_lte_multi_sdu_pkt() [5.13,717/800] staging: gdm724x: check for overflow in gdm_lte_netif_rx() [5.13,718/800] staging: rtl8712: fix error handling in r871xu_drv_init [5.13,719/800] staging: rtl8712: fix memory leak in rtl871x_load_fw_cb [5.13,720/800] coresight: core: Fix use of uninitialized pointer [5.13,721/800] staging: mt7621-dts: fix pci address for PCI memory range [5.13,722/800] usb: phy: tegra: Wait for VBUS wakeup status deassertion on suspend [5.13,723/800] usb: phy: tegra: Correct definition of B_SESS_VLD_WAKEUP_EN bit [5.13,724/800] serial: 8250: Actually allow UPF_MAGIC_MULTIPLIER baud rates [5.13,725/800] iio: light: vcnl4035: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,726/800] iio: prox: isl29501: Fix buffer alignment in iio_push_to_buffers_with_timestamp() [5.13,727/800] ASoC: cs42l42: Correct definition of CS42L42_ADC_PDN_MASK [5.13,728/800] of: Fix truncation of memory sizes on 32-bit platforms [5.13,729/800] mtd: rawnand: marvell: add missing clk_disable_unprepare() on error in marvell_nfc... [5.13,730/800] habanalabs: Fix an error handling path in hl_pci_probe() [5.13,731/800] scsi: mpt3sas: Fix error return value in _scsih_expander_add() [5.13,732/800] soundwire: stream: Fix test for DP prepare complete [5.13,733/800] phy: uniphier-pcie: Fix updating phy parameters [5.13,734/800] phy: ti: dm816x: Fix the error handling path in dm816x_usb_phy_probe() [5.13,735/800] extcon: sm5502: Drop invalid register write in sm5502_reg_data [5.13,736/800] extcon: max8997: Add missing modalias string [5.13,737/800] powerpc/powernv: Fix machine check reporting of async store errors [5.13,738/800] ASoC: atmel-i2s: Set symmetric sample bits [5.13,739/800] ASoC: atmel-i2s: Fix usage of capture and playback at the same time [5.13,740/800] ASoC: fsl_xcvr: disable all interrupts when suspend happens [5.13,741/800] configfs: fix memleak in configfs_release_bin_file [5.13,742/800] ASoC: Intel: sof_sdw: add SOF_RT715_DAI_ID_FIX for AlderLake [5.13,743/800] ASoC: Intel: sof_sdw: add quirk support for Brya and BT-offload [5.13,744/800] ASoC: Intel: sof_sdw: use mach data for ADL RVP DMIC count [5.13,745/800] ASoC: fsl_spdif: Fix unexpected interrupt after suspend [5.13,746/800] leds: as3645a: Fix error return code in as3645a_parse_node() [5.13,747/800] leds: ktd2692: Fix an error handling path [5.13,748/800] selftests/ftrace: fix event-no-pid on 1-core machine [5.13,749/800] selftests/sgx: remove checks for file execute permissions [5.13,750/800] staging: rtl8723bs: Fix an error handling path [5.13,751/800] serial: 8250: 8250_omap: Fix possible interrupt storm on K3 SoCs [5.13,752/800] powerpc: Offline CPU in stop_this_cpu() [5.13,753/800] powerpc/papr_scm: Properly handle UUID types and API [5.13,754/800] powerpc/64s: Fix copy-paste data exposure into newly created tasks [5.13,755/800] powerpc/papr_scm: Make perf_stats invisible if perf-stats unavailable [5.13,756/800] powerpc: Fix is_kvm_guest() / kvm_para_available() [5.13,757/800] ALSA: firewire-lib: Fix amdtp_domain_start() when no AMDTP_OUT_STREAM stream is found [5.13,758/800] serial: mvebu-uart: do not allow changing baudrate when uartclk is not available [5.13,759/800] serial: mvebu-uart: correctly calculate minimal possible baudrate [5.13,760/800] arm64: dts: marvell: armada-37xx: Fix reg for standard variant of UART [5.13,761/800] powerpc/64s: fix hash page fault interrupt handler [5.13,762/800] powerpc/64s/interrupt: preserve regs->softe for NMI interrupts [5.13,763/800] vfio/pci: Handle concurrent vma faults [5.13,764/800] mm/huge_memory.c: remove dedicated macro HPAGE_CACHE_INDEX_MASK [5.13,765/800] mm/huge_memory.c: add missing read-only THP checking in transparent_hugepage_enabl... [5.13,766/800] mm/huge_memory.c: dont discard hugepage if other processes are mapping it [5.13,767/800] hugetlb: remove prep_compound_huge_page cleanup [5.13,768/800] hugetlb: address ref count racing in prep_compound_gigantic_page [5.13,769/800] mm/z3fold: fix potential memory leak in z3fold_destroy_pool() [5.13,770/800] mm/z3fold: use release_z3fold_page_locked() to release locked z3fold page [5.13,771/800] mm: migrate: fix missing update page_private to hugetlb_page_subpool [5.13,772/800] mm/zswap.c: fix two bugs in zswap_writeback_entry() [5.13,773/800] kfence: unconditionally use unbound work queue [5.13,774/800] lib/math/rational.c: fix divide by zero [5.13,775/800] selftests/vm/pkeys: fix alloc_random_pkey() to make it really, really random [5.13,776/800] selftests/vm/pkeys: handle negative sys_pkey_alloc() return code [5.13,777/800] selftests/vm/pkeys: refill shadow register after implicit kernel write [5.13,778/800] perf llvm: Return -ENOMEM when asprintf() fails [5.13,779/800] i2c: mpc: Restore reread of I2C status register [5.13,780/800] csky: syscache: Fixup duplicate cache flush [5.13,781/800] exfat: handle wrong stream entry size in exfat_readdir() [5.13,782/800] scsi: megaraid_sas: Send all non-RW I/Os for TYPE_ENCLOSURE device through firmware [5.13,783/800] scsi: fc: Correct RHBA attributes length [5.13,784/800] scsi: target: cxgbit: Unmap DMA buffer before calling target_execute_cmd() [5.13,785/800] scsi: lpfc: Fix unreleased RPIs when NPIV ports are created [5.13,786/800] scsi: lpfc: Fix Node recovery when driver is handling simultaneous PLOGIs [5.13,787/800] scsi: libfc: Correct the condition check and invalid argument passed [5.13,788/800] mailbox: qcom-ipcc: Fix IPCC mbox channel exhaustion [5.13,789/800] fscrypt: dont ignore minor_hash when hash is 0 [5.13,790/800] fscrypt: fix derivation of SipHash keys on big endian CPUs [5.13,791/800] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status() [5.13,792/800] erofs: fix error return code in erofs_read_superblock() [5.13,793/800] block: return the correct bvec when checking for gaps [5.13,794/800] io_uring: fix blocking inline submission [5.13,795/800] io_uring: add IOPOLL and reserved field checks to IORING_OP_RENAMEAT [5.13,796/800] io_uring: add IOPOLL and reserved field checks to IORING_OP_UNLINKAT [5.13,797/800] mmc: block: Disable CMDQ on the ioctl path [5.13,798/800] mmc: vub3000: fix control-request direction [5.13,799/800] media: exynos4-is: remove a now unused integer [5.13,800/800] scsi: core: Retry I/O for Notify (Enable Spinup) Required error

Commit Message

Greg KH July 12, 2021, 6:01 a.m. UTC

From: Jan Kara <jack@suse.cz>

commit d0b040f5f2557b2f507c01e88ad8cff424fdc6a9 upstream.

A code in iomap alloc may overflow block number when converting it to
byte offset. Luckily this is mostly harmless as we will just use more
expensive method of writing using unwritten extents even though we are
writing beyond i_size.

Cc: stable@kernel.org
Fixes: 378f32bab371 ("ext4: introduce direct I/O write using iomap infrastructure")
Signed-off-by: Jan Kara <jack@suse.cz>
Link: https://lore.kernel.org/r/20210412102333.2676-4-jack@suse.cz
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

---
 fs/ext4/inode.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff mbox series

Patch

--- a/fs/ext4/inode.c
+++ b/fs/ext4/inode.c
@@ -3418,7 +3418,7 @@  retry:
 	 * i_disksize out to i_size. This could be beyond where direct I/O is
 	 * happening and thus expose allocated blocks to direct I/O reads.
 	 */
-	else if ((map->m_lblk * (1 << blkbits)) >= i_size_read(inode))
+	else if (((loff_t)map->m_lblk << blkbits) >= i_size_read(inode))
 		m_flags = EXT4_GET_BLOCKS_CREATE;
 	else if (ext4_test_inode_flag(inode, EXT4_INODE_EXTENTS))
 		m_flags = EXT4_GET_BLOCKS_IO_CREATE_EXT;