android/android_kernel_xiaomi_sm8450
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
71fbc3af3d
android_kernel_xiaomi_sm8450/drivers
History
Nianyao Tang bf1a022222 irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 
commit 80e9963fb3b5509dfcabe9652d56bf4b35542055 upstream.

As per the GICv4.1 spec (Arm IHI 0069H, 5.3.19):

 "A VMAPP with {V, Alloc}=={0, x} is self-synchronizing, This means the ITS
  command queue does not show the command as consumed until all of its
  effects are completed."

Furthermore, VSYNC is allowed to deliver an SError when referencing a
non existent VPE.

By these definitions, a VMAPP followed by a VSYNC is a bug, as the
later references a VPE that has been unmapped by the former.

Fix it by eliding the VSYNC in this scenario.

Fixes: 64edfaa9a2 ("irqchip/gic-v4.1: Implement the v4.1 flavour of VMAPP")
Signed-off-by: Nianyao Tang <tangnianyao@huawei.com>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Reviewed-by: Marc Zyngier <maz@kernel.org>
Reviewed-by: Zenghui Yu <yuzenghui@huawei.com>
Link: https://lore.kernel.org/r/20240406022737.3898763-1-tangnianyao@huawei.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2024-10-22 15:39:24 +02:00
..
accessibility speakup: Fix sizeof() vs ARRAY_SIZE() bug 2024-06-16 13:31:59 +02:00
acpi ACPI: battery: Fix possible crash when unregistering a battery hook 2024-10-17 15:08:27 +02:00
amba amba: bus: fix refcount leak 2023-09-19 12:20:19 +02:00
android binder: fix UAF caused by offsets overwrite 2024-09-12 11:06:50 +02:00
ata ata: sata_sil: Rename sil_blacklist to sil_quirks 2024-10-17 15:08:14 +02:00
atm atm: idt77252: prevent use after free in dequeue_rx() 2024-09-04 13:17:31 +02:00
auxdisplay
base driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute 2024-10-17 15:08:32 +02:00
bcma
block aoe: fix the potential use-after-free problem in more places 2024-10-17 15:08:23 +02:00
bluetooth Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() 2024-10-17 15:08:07 +02:00
bus bus: integrator-lm: fix OF node leak in probe() 2024-10-17 15:08:01 +02:00
cdrom
char virtio_console: fix misc probe bugs 2024-10-17 15:08:29 +02:00
clk clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D 2024-10-17 15:08:31 +02:00
clocksource clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() 2024-10-17 15:07:44 +02:00
connector
counter counter: ti-eqep: enable clock at probe 2024-07-05 09:12:51 +02:00
cpufreq cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately 2024-10-17 15:07:40 +02:00
cpuidle powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT 2023-09-19 12:20:15 +02:00
crypto crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure 2024-10-17 15:08:01 +02:00
dax dax: Introduce alloc_dev_dax_id() 2023-07-27 08:44:00 +02:00
dca
devfreq PM / devfreq: Fix buffer overflow in trans_stat_show 2024-05-02 16:23:44 +02:00
dio
dma dmaengine: dw: Add memory bus width verification 2024-09-04 13:17:46 +02:00
dma-buf dma-buf: heaps: Fix off-by-one in CMA heap fault handler 2024-10-17 15:07:34 +02:00
edac EDAC, i10nm: make skx_common.o a separate module 2024-08-19 05:40:40 +02:00
eisa
extcon extcon: max8997: select IRQ_DOMAIN instead of depending on it 2024-06-16 13:32:20 +02:00
firewire firewire: nosy: ensure user_length is taken into account when fetching packet contents 2024-05-17 11:48:08 +02:00
firmware firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() 2024-10-17 15:08:18 +02:00
fpga fpga: region: add owner module and take its refcount 2024-06-16 13:32:19 +02:00
fsi fsi: aspeed: Reset master errors after CFAM reset 2023-09-19 12:20:18 +02:00
gnss
gpio gpio: aspeed: Use devm_clk api to manage clock source 2024-10-17 15:08:35 +02:00
gpu nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error 2024-10-17 15:08:38 +02:00
greybus greybus: Fix use-after-free bug in gb_interface_release due to race condition. 2024-07-05 09:12:32 +02:00
hid hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma 2024-10-17 15:08:37 +02:00
hsi
hv Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic 2024-09-12 11:06:50 +02:00
hwmon hwmon: (adm9240) Add missing dependency on REGMAP_I2C 2024-10-17 15:08:37 +02:00
hwspinlock hwspinlock: Introduce hwspin_lock_bust() 2024-09-12 11:06:41 +02:00
hwtracing coresight: tmc: sg: Do not leak sg_table 2024-10-17 15:07:56 +02:00
i2c i2c: i801: Use a different adapter-name for IDF adapters 2024-10-17 15:08:31 +02:00
i3c i3c: master: cdns: Update maximum prescaler value for i2c clock 2024-02-23 08:42:13 +01:00
ide
idle
iio iio: magnetometer: ak8975: Fix reading for ak099xx sensors 2024-10-17 15:08:24 +02:00
infiniband RDMA/hns: Fix uninitialized variable 2024-10-17 15:08:39 +02:00
input Input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal 2024-10-17 15:08:29 +02:00
interconnect interconnect: qcom: sm8250: Enable sync_state 2024-10-17 15:07:57 +02:00
iommu iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count 2024-10-17 15:08:14 +02:00
ipack
irqchip irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 2024-10-22 15:39:24 +02:00
isdn mISDN: Fix a use after free in hfcmulti_tx() 2024-08-19 05:41:05 +02:00
leds leds: spi-byte: Call of_node_put() on error path 2024-09-12 11:06:46 +02:00
lightnvm
macintosh macintosh/therm_windtunnel: fix module unload. 2024-08-19 05:40:52 +02:00
mailbox mailbox: bcm2835: Fix timeout during suspend mode 2024-10-17 15:08:06 +02:00
mcb mcb: fix error handling for different scenarios when parsing 2023-11-28 16:54:58 +00:00
md Revert "dm: requeue IO if mapping table not yet available" 2024-10-17 15:07:57 +02:00
media media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() 2024-10-17 15:08:31 +02:00
memory memory: stm32-fmc2-ebi: check regmap_read return value 2024-09-04 13:17:36 +02:00
memstick memstick r592: make memstick_debug_get_tpc_name() static 2023-07-27 08:43:40 +02:00
message
mfd mfd: omap-usb-tll: Use struct_size to allocate tll 2024-08-19 05:40:50 +02:00
misc VMCI: Fix use-after-free when removing resource in vmci_resource_remove() 2024-09-12 11:06:50 +02:00
mmc mmc: cqhci: Fix checking of CQHCI_HALT state 2024-09-12 11:06:51 +02:00
most
mtd mtd: powernv: Add check devm_kasprintf() returned value 2024-10-17 15:07:45 +02:00
mux
net net: macb: Avoid 20s boot delay by skipping MDIO bus registration for fixed-link PHY 2024-10-22 15:39:24 +02:00
nfc nfc: pn533: Add poll mod list filling check 2024-09-04 13:17:46 +02:00
ntb ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition 2024-10-17 15:08:31 +02:00
nubus nubus: Partially revert proc_create_single_data() conversion 2023-07-27 08:43:31 +02:00
nvdimm virtio_pmem: Check device status before requesting flush 2024-10-17 15:08:32 +02:00
nvme nvmet-tcp: fix kernel crash if commands allocation fails 2024-09-12 11:06:51 +02:00
nvmem nvmem: Fix return type of devm_nvmem_device_get() in kerneldoc 2024-09-12 11:06:50 +02:00
of of/irq: Support #msi-cells=<0> in of_msi_get_domain 2024-10-17 15:08:21 +02:00
opp OPP: debugfs: Fix warning around icc_get_name() 2024-03-26 18:21:53 -04:00
oprofile
parisc parisc: iosapic.c: Fix sparse warnings 2023-10-10 21:53:32 +02:00
parport dev/parport: fix the array out-of-bounds risk 2024-08-19 05:40:59 +02:00
pci PCI: Mark Creative Labs EMU20k2 INTx masking as broken 2024-10-17 15:08:31 +02:00
pcmcia pcmcia: Use resource_size function on resource object 2024-09-12 11:06:46 +02:00
perf perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7 2023-10-25 11:54:13 +02:00
phy phy: tegra: xusb: Add API to retrieve the port number of phy 2024-04-13 12:58:29 +02:00
pinctrl pinctrl: mvebu: Fix devinit_dove_pinctrl_probe function 2024-10-17 15:07:53 +02:00
platform platform/x86: touchscreen_dmi: add nanote-next quirk 2024-10-17 15:08:15 +02:00
pnp PNP: ACPI: fix fortify warning 2024-02-23 08:42:03 +01:00
power power: reset: brcmstb: Do not go into infinite loop if reset fails 2024-10-17 15:08:14 +02:00
powercap powercap: RAPL: fix invalid initialization for pl4_supported field 2024-10-17 15:07:58 +02:00
pps pps: add an error check in parport_attach 2024-10-17 15:08:04 +02:00
ps3
ptp ptp: Fix error message on failed pin verification 2024-07-05 09:12:22 +02:00
pwm pwm: stm32: Always do lazy disabling 2024-08-19 05:40:41 +02:00
rapidio
ras
regulator regulator: core: Fix modpost error "regulator_get_regmap" undefined 2024-07-05 09:12:39 +02:00
remoteproc remoteproc: imx_rproc: Skip over memory region when node value is NULL 2024-08-19 05:41:08 +02:00
reset reset: berlin: fix OF node leak in probe() error path 2024-10-17 15:07:44 +02:00
rpmsg rpmsg: virtio: Free driver_override when rpmsg_remove() 2024-02-23 08:41:53 +01:00
rtc rtc: at91sam9: fix OF node leak in probe() error path 2024-10-17 15:08:24 +02:00
s390 s390/zcore: release dump save area on restart or power down 2024-10-17 15:08:28 +02:00
sbus
scsi scsi: aacraid: Rearrange order of struct aac_srb_unit 2024-10-17 15:08:16 +02:00
sfi
sh
siox
slimbus slimbus: core: Remove usage of the deprecated ida_simple_xx() API 2024-04-13 12:58:29 +02:00
soc soc: versatile: realview: fix soc_dev leak during device remove 2024-10-17 15:08:04 +02:00
soundwire soundwire: stream: Revert "soundwire: stream: fix programming slave ports for non-continous port maps" 2024-10-17 15:07:34 +02:00
spi spi: bcm63xx: Fix module autoloading 2024-10-17 15:08:18 +02:00
spmi
ssb ssb: Fix division by zero issue in ssb_calc_clock_rate 2024-09-04 13:17:32 +02:00
staging minmax: reduce min/max macro expansion in atomisp driver 2024-10-17 15:07:32 +02:00
target scsi: target: Fix SELinux error when systemd-modules loads the target module 2024-05-17 11:48:04 +02:00
tc
tee tee: optee: Fix kernel panic caused by incorrect error handling 2024-04-13 12:58:53 +02:00
thermal thermal: core: prevent potential string overflow 2023-11-20 11:06:45 +01:00
thunderbolt thunderbolt: Mark XDomain as unplugged when router is removed 2024-09-04 13:17:29 +02:00
tty tty: rp2: Fix reset with non forgiving PCIe host bridges 2024-10-17 15:08:01 +02:00
uio Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic 2024-09-12 11:06:50 +02:00
usb usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip 2024-10-17 15:08:37 +02:00
vdpa
vfio vfio/fsl-mc: Block calling interrupt handler without trigger 2024-04-13 12:59:21 +02:00
vhost vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() 2024-10-17 15:08:28 +02:00
video fbdev: sisfb: Fix strbuf array overflow 2024-10-17 15:08:32 +02:00
virt
virtio vdpa: Add eventfd for the vdpa callback 2024-10-17 15:07:57 +02:00
visorbus
vlynq
vme
w1 w1: fix loop in w1_fini() 2023-07-27 08:44:02 +02:00
watchdog watchdog: imx_sc_wdt: Don't disable WDT in suspend 2024-10-17 15:07:54 +02:00
xen xen/swiotlb: add alignment check for dma buffers 2024-10-17 15:07:48 +02:00
zorro
Kconfig
Makefile