linux-stable

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-09-16 07:35:14 +00:00

No description

Find a file

David Lechner 3915124910 spi: axi-spi-engine: move msg state to new struct [ Upstream commit `7f970ecb77` ] This moves the message state in the AXI SPI Engine driver to a new struct spi_engine_msg_state. Previously, the driver state contained various pointers that pointed to memory owned by a struct spi_message. However, it did not set any of these pointers to NULL when a message was completed. This could lead to use after free bugs. Example of how this could happen: 1. SPI core calls into spi_engine_transfer_one_message() with msg1. 2. Assume something was misconfigured and spi_engine_tx_next() is not called enough times in interrupt callbacks for msg1 such that spi_engine->tx_xfer is never set to NULL before the msg1 completes. 3. SYNC interrupt is received and spi_finalize_current_message() is called for msg1. spi_engine->msg is set to NULL but no other message-specific state is reset. 4. Caller that sent msg1 is notified of the completion and frees msg1 and the associated xfers and tx/rx buffers. 4. SPI core calls into spi_engine_transfer_one_message() with msg2. 5. When spi_engine_tx_next() is called for msg2, spi_engine->tx_xfer is still be pointing to an xfer from msg1, which was already freed. spi_engine_xfer_next() tries to access xfer->transfer_list of one of the freed xfers and we get a segfault or undefined behavior. To avoid issues like this, instead of putting per-message state in the driver state struct, we can make use of the struct spi_message::state field to store a pointer to a new struct spi_engine_msg_state. This way, all of the state that belongs to specific message stays with that message and we don't have to remember to manually reset all aspects of the message state when a message is completed. Rather, a new state is allocated for each message. Most of the changes are just renames where the state is accessed. One place where this wasn't straightforward was the sync_id member. This has been changed to use ida_alloc_range() since we needed to separate the per-message sync_id from the per-controller next available sync_id. Signed-off-by: David Lechner <dlechner@baylibre.com> Link: https://lore.kernel.org/r/20231117-axi-spi-engine-series-1-v1-9-cc59db999b87@baylibre.com Signed-off-by: Mark Brown <broonie@kernel.org> Stable-dep-of: `0064db9ce4` ("spi: axi-spi-engine: fix version format string") Signed-off-by: Sasha Levin <sashal@kernel.org>		2024-05-17 12:02:00 +02:00
arch	Revert "riscv: kdump: fix crashkernel reserving problem on RISC-V"	2024-05-02 16:32:50 +02:00
block	block: fix q->blkg_list corruption during disk rebind	2024-04-17 11:19:28 +02:00
certs	certs: Reference revocation list for all keyrings	2023-08-17 20:12:41 +00:00
crypto	crypto: jitter - fix CRYPTO_JITTERENTROPY help text	2024-03-26 18:19:52 -04:00
Documentation	mm, treewide: introduce NR_PAGE_ORDERS	2024-05-02 16:32:41 +02:00
drivers	spi: axi-spi-engine: move msg state to new struct	2024-05-17 12:02:00 +02:00
fs	nfs: Handle error of rpc_proc_register() in nfs_net_init().	2024-05-17 12:01:58 +02:00
include	ASoC: SOF: Introduce generic names for IPC types	2024-05-17 12:01:59 +02:00
init	rust: make mutually exclusive with CFI_CLANG	2024-05-02 16:32:42 +02:00
io_uring	io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64() failure	2024-04-27 17:11:30 +02:00
ipc	Add x86 shadow stack support	2023-08-31 12:20:12 -07:00
kernel	bpf: Fix a verifier verbose message	2024-05-17 12:02:00 +02:00
lib	bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition	2024-05-17 12:01:59 +02:00
LICENSES	LICENSES: Add the copyleft-next-0.3.1 license	2022-11-08 15:44:01 +01:00
mm	mm: turn folio_test_hugetlb into a PageType	2024-05-02 16:32:47 +02:00
net	bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue	2024-05-17 12:01:59 +02:00
rust	rust: kernel: require `Send` for `Module` implementations	2024-05-17 12:01:56 +02:00
samples	work around gcc bugs with 'asm goto' with outputs	2024-02-23 09:24:47 +01:00
scripts	kbuild: rust: force `alloc` extern to allow "empty" Rust files	2024-05-02 16:32:42 +02:00
security	selinux: avoid dereference of garbage after mount failure	2024-04-10 16:35:48 +02:00
sound	ASoC: SOF: Intel: add default firmware library path for LNL	2024-05-17 12:01:59 +02:00
tools	selftests/seccomp: Handle EINVAL on unshare(CLONE_NEWPID)	2024-05-02 16:32:42 +02:00
usr	initramfs: Encode dependency on KBUILD_BUILD_TIMESTAMP	2023-06-06 17:54:49 +09:00
virt	KVM: Always flush async #PF workqueue when vCPU is being destroyed	2024-04-03 15:28:18 +02:00
.clang-format	iommu: Add for_each_group_device()	2023-05-23 08:15:51 +02:00
.cocciconfig
.get_maintainer.ignore	get_maintainer: add Alan to .get_maintainer.ignore	2022-08-20 15:17:44 -07:00
.gitattributes	.gitattributes: set diff driver for Rust source code files	2023-05-31 17:48:25 +02:00
.gitignore	kbuild: rpm-pkg: rename binkernel.spec to kernel.spec	2023-07-25 00:59:33 +09:00
.mailmap	20 hotfixes. 12 are cc:stable and the remainder address post-6.5 issues	2023-10-24 09:52:16 -10:00
.rustfmt.toml	rust: add `.rustfmt.toml`	2022-09-28 09:02:20 +02:00
COPYING
CREDITS	USB: Remove Wireless USB and UWB documentation	2023-08-09 14:17:32 +02:00
Kbuild	Kbuild updates for v6.1	2022-10-10 12:00:45 -07:00
Kconfig
MAINTAINERS	ALSA: scarlett2: Rename scarlett_gen2 to scarlett2	2024-04-27 17:11:36 +02:00
Makefile	Linux 6.6.30	2024-05-02 16:32:50 +02:00
README

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.