Linux/linux 27d128ckernel/trace ring_buffer.c

Merge tag 'trace-ring-buffer-v7.1-3' of git://git.kernel.org/pub/scm/linux/kernel/git/trace/linux-trace

Pull ring-buffer fix from Steven Rostedt:

 - Fix accounting of persistent ring buffer rewind

   On boot up, the head page is moved back to the earliest point of the
   saved ring buffer. This is because the ring buffer being read by user
   space on a crash may not save the part it read. Rewinding the head
   page back to the earliest saved position helps keep those events from
   being lost.

   The number of events is also read during boot up and displayed in the
   stats file in the tracefs directory. It's also used for other
   accounting as well. On boot up, the "reader page" is accounted for
   but a rewind may put it back into the buffer and then the reader page
   may be accounted for again.

   Save off the original reader page and skip accounting it when

    [4 lines not shown]
DeltaFile
+7-6kernel/trace/ring_buffer.c
+7-61 files

Linux/linux f3e3dbcblock blk.h bio.c, drivers/block ublk_drv.c zloop.c

Merge tag 'block-7.1-20260424' of git://git.kernel.org/pub/scm/linux/kernel/git/axboe/linux

Pull block fixes from Jens Axboe:

 - Series for zloop, fixing a variety of issues

 - t10-pi code cleanup

 - Fix for a merge window regression with the bio memory allocation mask

 - Fix for a merge window regression in ublk, caused by an issue with
   the maple tree iteration code at teardown

 - ublk self tests additions

 - Zoned device pgmap fixes

 - Various little cleanups and fixes


    [22 lines not shown]
DeltaFile
+80-43drivers/block/ublk_drv.c
+59-64drivers/block/zloop.c
+103-0tools/testing/selftests/ublk/test_integrity_03.sh
+13-12include/linux/t10-pi.h
+21-0block/blk.h
+6-5block/bio.c
+282-12455 files not shown
+347-18761 files

Linux/linux fa58e6eio_uring memmap.c register.c

Merge tag 'io_uring-7.1-20260424' of git://git.kernel.org/pub/scm/linux/kernel/git/axboe/linux

Pull io_uring fixes from Jens Axboe:

 - Fix for a NOMMU bug with io_uring, where NOMMU doesn't grab page refs
   at mmap time. NOMMU also has entirely broken FOLL_PIN support, yet
   here we are

 - A few fixes covering minor issues introduced in this merge window

 - data race annotation to shut up KCSAN for when io-wq limits are
   applied

 - A nospec addition for direct descriptor file updating. Rest of the
   direct descriptor path already had this, but for some reason the
   update did not. Now they are all the same

 - Various minor defensive changes that claude identified and suggested
   terrible fixes for, turned into actually useful cleanups:

    [47 lines not shown]
DeltaFile
+45-1io_uring/memmap.c
+26-6io_uring/register.c
+11-4io_uring/tctx.c
+7-2io_uring/rsrc.h
+4-2io_uring/poll.c
+4-1io_uring/zcrx.c
+97-165 files not shown
+109-2211 files

Linux/linux b85900efs/nfs nfs4proc.c pnfs.c, include/trace/events rpcrdma.h

Merge tag 'nfs-for-7.1-1' of git://git.linux-nfs.org/projects/trondmy/linux-nfs

Pull NFS client updates from Trond Myklebust:
 "Bugfixes:

   - Fix handling of ENOSPC so that if we have to resend writes, they
     are written synchronously

   - SUNRPC RDMA transport fixes from Chuck

   - Several fixes for delegated timestamps in NFSv4.2

   - Failure to obtain a directory delegation should not cause stat() to
     fail with NFSv4

   - Rename was failing to update timestamps when a directory delegation
     is held on NFSv4

   - Ensure we check rsize/wsize after crossing a NFSv4 filesystem

    [35 lines not shown]
DeltaFile
+66-111net/sunrpc/xprtrdma/rpc_rdma.c
+145-32net/sunrpc/xprtrdma/frwr_ops.c
+30-13net/sunrpc/xprtrdma/xprt_rdma.h
+32-10fs/nfs/nfs4proc.c
+14-14include/trace/events/rpcrdma.h
+17-5fs/nfs/pnfs.c
+304-18519 files not shown
+442-21425 files

Linux/linux ac2dc6dfs/ceph subvolume_metrics.c metric.c

Merge tag 'ceph-for-7.1-rc1' of https://github.com/ceph/ceph-client

Pull ceph updates from Ilya Dryomov:
 "We have a series from Alex which extends CephFS client metrics with
  support for per-subvolume data I/O performance and latency tracking
  (metadata operations aren't included) and a good variety of fixes and
  cleanups across RBD and CephFS"

* tag 'ceph-for-7.1-rc1' of https://github.com/ceph/ceph-client:
  ceph: add subvolume metrics collection and reporting
  ceph: parse subvolume_id from InodeStat v9 and store in inode
  ceph: handle InodeStat v8 versioned field in reply parsing
  libceph: Fix slab-out-of-bounds access in auth message processing
  rbd: fix null-ptr-deref when device_add_disk() fails
  crush: cleanup in crush_do_rule() method
  ceph: clear s_cap_reconnect when ceph_pagelist_encode_32() fails
  ceph: only d_add() negative dentries when they are unhashed
  libceph: update outdated comment in ceph_sock_write_space()
  libceph: Remove obsolete session key alignment logic

    [2 lines not shown]
DeltaFile
+416-0fs/ceph/subvolume_metrics.c
+177-6fs/ceph/metric.c
+157-0fs/ceph/debugfs.c
+82-16fs/ceph/mds_client.c
+97-0fs/ceph/subvolume_metrics.h
+64-4fs/ceph/file.c
+993-2614 files not shown
+1,144-5020 files

Linux/linux ff9726dfs/ntfs file.c aops.c

Merge tag 'ntfs-for-7.1-rc1-part2' of git://git.kernel.org/pub/scm/linux/kernel/git/linkinjeon/ntfs

Pull ntfs updates from Namjae Jeon:

 - Fix potential data leakage by zeroing the portion of the straddle
   block beyond initialized_size when reading non-resident attributes

 - Remove unnecessary zeroing in ntfs_punch_hole() for ranges beyond
   initialized_size, as they are already returned as zeros on read

 - Fix writable check in ntfs_file_mmap_prepare() to correctly handle
   shared mappings using VMA_SHARED_BIT | VMA_MAYWRITE_BIT

 - Use page allocation instead of kmemdup() for IOMAP_INLINE data to
   ensure page-aligned address and avoid BUG trap in
   iomap_inline_data_valid() caused by the page boundary check

 - Add a size check before memory allocation in ntfs_attr_readall() and
   reject overly large attributes

    [20 lines not shown]
DeltaFile
+24-25fs/ntfs/file.c
+45-3fs/ntfs/aops.c
+20-8fs/ntfs/iomap.c
+15-1fs/ntfs/attrib.c
+3-2fs/ntfs/mft.c
+4-1fs/ntfs/ea.c
+111-401 files not shown
+113-417 files

Linux/linux bdcb864fs/9p vfs_super.c v9fs.c, include/net/9p 9p.h

Merge tag '9p-for-7.1-rc1' of https://github.com/martinetd/linux

Pull 9p updates from Dominique Martinet:

 - 9p access flag fix (cannot change access flag since new mount API implem)

 - some minor cleanup

* tag '9p-for-7.1-rc1' of https://github.com/martinetd/linux:
  9p/trans_xen: replace simple_strto* with kstrtouint
  9p/trans_xen: make cleanup idempotent after dataring alloc errors
  9p: document missing enum values in kernel-doc comments
  9p: fix access mode flags being ORed instead of replaced
  9p: fix memory leak in v9fs_init_fs_context error path
DeltaFile
+53-24net/9p/trans_xen.c
+35-3include/net/9p/9p.h
+3-3fs/9p/vfs_super.c
+4-0fs/9p/v9fs.c
+95-304 files

Linux/linux f9569c6Documentation/process license-rules.rst, scripts checkpatch.pl

Merge tag 'spdx-7.1-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/spdx

Pull SPDX update from Greg KH:
 "Here is a single SPDX-like change for 7.1-rc1. It explicitly allows
  the use of SPDX-FileCopyrightText which has been used already in many
  files.

  At the same time, update checkpatch to catch any "non allowed" spdx
  identifiers as we don't want to go overboard here.

  This has been in linux-next for a long time with no reported problems"

* tag 'spdx-7.1-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/spdx:
  LICENSES: Explicitly allow SPDX-FileCopyrightText
DeltaFile
+8-0scripts/checkpatch.pl
+5-2Documentation/process/license-rules.rst
+13-22 files

Linux/linux cb4eb67drivers/iio/adc qcom-spmi-adc5-gen3.c ad4030.c, drivers/iio/amplifiers ad8366.c

Merge tag 'char-misc-7.1-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/char-misc

Pull char / misc / IIO / and others driver updates from Greg KH:
 "Here is the char/misc/iio and other smaller driver subsystem updates
  for 7.1-rc1. Lots of stuff in here, all tiny, but relevant for the
  different drivers they touch. Major points in here is:

   - the usual large set of new IIO drivers and updates for that
     subsystem (the large majority of this diffstat)

   - lots of comedi driver updates and bugfixes

   - coresight driver updates

   - interconnect driver updates and additions

   - mei driver updates

   - binder (both rust and C versions) updates and fixes

    [28 lines not shown]
DeltaFile
+1,221-392drivers/interconnect/qcom/msm8974.c
+1,585-0drivers/interconnect/qcom/eliza.c
+860-0drivers/iio/adc/qcom-spmi-adc5-gen3.c
+756-0drivers/iio/proximity/vl53l1x-i2c.c
+596-22drivers/iio/adc/ad4030.c
+231-178drivers/iio/amplifiers/ad8366.c
+5,249-592350 files not shown
+12,763-4,261356 files

Linux/linux b2680badrivers/spi spi.c spi-axiado.c

Merge tag 'spi-fix-v7.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/spi

Pull spi fixes from Mark Brown:
 "This is quite a big set of fixes, almost all from Johan Hovold who is
  on an ongoing quest to clean up issues with probe and removal handling
  in drivers.

  There isn't anything too concerning here especially with the
  deregistration stuff which will very rarely get run in production
  systems since this is all platform devices in the SoC on embedded
  hardware, but it's all real issues which should be fixed. There's more
  in flight here.

  We also have a few other minor fixes, one from Felix Gu along the same
  lines as Johan's work and a couple of documentation things"

* tag 'spi-fix-v7.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/spi: (23 commits)
  spi: fix controller cleanup() documentation
  spi: fix resource leaks on device setup failure

    [19 lines not shown]
DeltaFile
+37-24drivers/spi/spi.c
+19-12drivers/spi/spi-axiado.c
+17-3drivers/spi/spi-orion.c
+8-3drivers/spi/spi-topcliff-pch.c
+7-2drivers/spi/spi-mpc52xx.c
+5-3drivers/spi/spi-mtk-snfi.c
+93-477 files not shown
+110-5813 files

Linux/linux f643998drivers/regulator Kconfig

Merge tag 'regulator-fix-v7.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/regulator

Pull regulator fix from Mark Brown:
 "Just one trivial cleanup of the user visible prompts in Kconfig here,
  standardising how we describe Qualcomm"

* tag 'regulator-fix-v7.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/regulator:
  regulator: qcom: Unify user-visible "Qualcomm" name
DeltaFile
+2-2drivers/regulator/Kconfig
+2-21 files

Linux/linux 92d5a60kernel/trace ring_buffer.c

ring-buffer: Do not double count the reader_page

Since the cpu_buffer->reader_page is updated if there are unwound
pages. After that update, we should skip the page if it is the
original reader_page, because the original reader_page is already
checked.

Cc: stable at vger.kernel.org
Cc: Catalin Marinas <catalin.marinas at arm.com>
Cc: Will Deacon <will at kernel.org>
Cc: Mathieu Desnoyers <mathieu.desnoyers at efficios.com>
Cc: Ian Rogers <irogers at google.com>
Link: https://patch.msgid.link/177701353063.2223789.1471163147644103306.stgit@mhiramat.tok.corp.google.com
Fixes: ca296d32ece3 ("tracing: ring_buffer: Rewind persistent ring buffer on reboot")
Signed-off-by: Masami Hiramatsu (Google) <mhiramat at kernel.org>
Signed-off-by: Steven Rostedt <rostedt at goodmis.org>
DeltaFile
+7-6kernel/trace/ring_buffer.c
+7-61 files

Linux/linux 6e2d431drivers/base/regmap regmap-i2c.c regmap-ram.c

Merge tag 'regmap-fix-v7.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/regmap

Pull regmap fixes from Mark Brown:
 "There's couple of patches here that came in since my pull request:

   - What is effectively a quirk for shoehorning support for a wider
     range of I2C regmaps on weirdly restricted SMBus controllers

   - One minor fix for a memory leak on in error handling in the dummy
     driver used by the KUnit tests"

* tag 'regmap-fix-v7.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/regmap:
  regmap: ram: fix memory leaks in __regmap_init_ram() on error
  regmap-i2c: add SMBus byte/word reg16 bus for adapters lacking I2C_FUNC_I2C
DeltaFile
+49-0drivers/base/regmap/regmap-i2c.c
+7-1drivers/base/regmap/regmap-ram.c
+56-12 files

Linux/linux d0fc5bfdrivers/gpio gpio-aspeed.c gpio-rockchip.c

Merge tag 'gpio-fixes-for-v7.1-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/brgl/linux

Pull gpio fixes from Bartosz Golaszewski:

 - fix a regression in gpio-rockchip introduced on older chips during
   the merge window when converting to dynamic GPIO base

 - fix AST2700 debounce selector bit definitions in gpio-aspeed

* tag 'gpio-fixes-for-v7.1-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/brgl/linux:
  gpio: aspeed: fix AST2700 debounce selector bit definitions
  gpio: rockchip: Fix GPIO regression after conversion to dynamic base allocation
DeltaFile
+2-2drivers/gpio/gpio-aspeed.c
+1-1drivers/gpio/gpio-rockchip.c
+3-32 files

Linux/linux 1fe93b2drivers/base/regmap regmap-sdw-mbq.c, sound/hda/controllers intel.c

Merge tag 'sound-fix-7.1-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/tiwai/sound

Pull sound fixes from Takashi Iwai:
 "Here are the rest of small updates for 7.1-rc1. All small fixes mostly
  for device-specific issues or regressions.

  Core:
   - Fix a potential data race in fasync handling

  USB-audio:
   - New device support: Line6 POD HD PRO, NexiGo N930W webcam
   - Fixes for Audio Advantage Micro II SPDIF switch and E-MU sample
     rates
   - Limit UAC2 rate parsing to prevent potential overflows

  HD-Audio:
   - Device-specific quirks for HP, Acer, and Honor laptops
   - Fix for TAS2781 SPI device abnormal sound
   - Move Intel firmware loading into probe work to avoid stalling

    [32 lines not shown]
DeltaFile
+54-59sound/usb/6fire/chip.c
+15-43sound/hda/controllers/intel.c
+36-16sound/usb/caiaq/control.c
+20-24sound/pci/als4000.c
+18-18drivers/base/regmap/regmap-sdw-mbq.c
+15-19sound/usb/mixer.c
+158-17926 files not shown
+339-25832 files

Linux/linux cf95076. MAINTAINERS, drivers/gpu/drm drm_atomic_helper.c

Merge tag 'drm-fixes-2026-04-24' of https://gitlab.freedesktop.org/drm/kernel

Pull more drm fixes from Dave Airlie:
 "These are the regular fixes that have built up over last couple of
  weeks, all pretty minor and spread all over.

  atomic:
   - raise the vblank timeout to avoid it on virtual drivers
   - fix colorop duplication

  bridge:
   - stm_lvds: state check fix
   - dw-mipi-dsi: bridge reference leak fix

  panel:
   - visionx-rm69299: init fix

  dma-fence:
   - fix sparse warning

    [36 lines not shown]
DeltaFile
+19-0drivers/gpu/drm/panthor/panthor_mmu.c
+13-1drivers/gpu/drm/drm_atomic_helper.c
+10-3MAINTAINERS
+3-3drivers/gpu/drm/stm/lvds.c
+5-1drivers/gpu/drm/bridge/synopsys/dw-mipi-dsi.c
+5-1drivers/gpu/drm/bridge/synopsys/dw-mipi-dsi2.c
+55-910 files not shown
+73-1916 files

Linux/linux 92c4c9fdrivers/gpu/drm/amd/amdgpu amdgpu_userq.c, drivers/gpu/drm/amd/display/amdgpu_dm amdgpu_dm_helpers.c amdgpu_dm.c

Merge tag 'drm-next-2026-04-24' of https://gitlab.freedesktop.org/drm/kernel

Pull drm next fixes from Dave Airlie:
 "This is the first of two fixes for the merge PRs, the other is based
  on 7.0 branch. This mostly AMD fixes, a couple of weeks of backlog
  built up and this weeks. The main complaint I've seen is some boot
  warnings around the FP code handling which this should fix. Otherwise
  a single rcar-du and a single i915 fix.

  amdgpu:
   - SMU 14 fixes
   - Partition fixes
   - SMUIO 15.x fix
   - SR-IOV fixes
   - JPEG fix
   - PSP 15.x fix
   - NBIF fix
   - Devcoredump fixes
   - DPC fix

    [51 lines not shown]
DeltaFile
+241-0drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_helpers.c
+192-0drivers/gpu/drm/amd/display/dc/dml2_0/dml21/src/dml2_pmo/dml2_pmo_dcn42.c
+78-64drivers/gpu/drm/amd/amdgpu/amdgpu_userq.c
+106-29drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c
+0-78drivers/gpu/drm/amd/display/dc/clk_mgr/dcn42/dcn42_clk_mgr.c
+11-62drivers/gpu/drm/amd/display/dc/dml2_0/dml21/src/dml2_core/dml2_core_utils.c
+628-23392 files not shown
+1,380-53598 files

Linux/linux 892c894kernel/locking mutex.c ww_mutex.h

Merge tag 'locking-urgent-2026-04-24' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip

Pull locking fixes from Ingo Molnar:

 - Fix ww_mutex regression, which caused hangs/pauses in some DRM drivers

 - Fix rtmutex proxy-rollback bug

* tag 'locking-urgent-2026-04-24' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip:
  locking/mutex: Fix ww_mutex wait_list operations
  rtmutex: Use waiter::task instead of current in remove_waiter()
DeltaFile
+27-13kernel/locking/mutex.c
+32-2kernel/locking/ww_mutex.h
+8-5kernel/locking/rtmutex.c
+67-203 files

Linux/linux 8f4e868arch/x86 Kconfig, arch/x86/kernel shstk.c

Merge tag 'x86-urgent-2026-04-24' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip

Pull x86 fixes from Ingo Molnar:

 - Prevent deadlock during shstk sigreturn (Rick Edgecombe)

 - Disable FRED when PTI is forced on (Dave Hansen)

 - Revert a CPA INVLPGB optimization that did not properly handle
   discontiguous virtual addresses (Dave Hansen)

* tag 'x86-urgent-2026-04-24' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip:
  x86/mm: Revert INVLPGB optimization for set_memory code
  x86/cpu: Disable FRED when PTI is forced on
  x86/shstk: Prevent deadlock during shstk sigreturn
DeltaFile
+23-19arch/x86/kernel/shstk.c
+13-7arch/x86/mm/pat/set_memory.c
+5-0arch/x86/mm/pti.c
+1-0arch/x86/Kconfig
+42-264 files

Linux/linux feff82earch/riscv Kconfig, arch/riscv/include/asm xip_fixup.h

Merge tag 'riscv-for-linus-7.1-mw1' of git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux

Pull RISC-V updates from Paul Walmsley:
 "There is one significant change outside arch/riscv in this pull
  request: the addition of a set of KUnit tests for strlen(), strnlen(),
  and strrchr().

  Otherwise, the most notable changes are to add some RISC-V-specific
  string function implementations, to remove XIP kernel support, to add
  hardware error exception handling, and to optimize our runtime
  unaligned access speed testing.

  A few comments on the motivation for removing XIP support. It's been
  broken in the RISC-V kernel for months. The code is not easy to
  maintain. Furthermore, for XIP support to truly be useful for RISC-V,
  we think that compile-time feature switches would need to be added for
  many of the RISC-V ISA features and microarchitectural properties that
  are currently implemented with runtime patching. No one has stepped
  forward to take responsibility for that work, so many of us think it's

    [68 lines not shown]
DeltaFile
+274-0lib/tests/string_kunit.c
+86-137arch/riscv/kernel/unaligned_access_speed.c
+164-0arch/riscv/lib/strnlen.S
+10-108arch/riscv/mm/init.c
+24-63arch/riscv/Kconfig
+0-49arch/riscv/include/asm/xip_fixup.h
+558-35750 files not shown
+735-53956 files

Linux/linux ff57d59arch/loongarch Kconfig, arch/loongarch/include/asm cpu.h highmem.h

Merge tag 'loongarch-7.1' of git://git.kernel.org/pub/scm/linux/kernel/git/chenhuacai/linux-loongson

Pull LoongArch updates from Huacai Chen:

 - Adjust build infrastructure for 32BIT/64BIT

 - Add HIGHMEM (PKMAP and FIX_KMAP) support

 - Show and handle CPU vulnerabilites correctly

 - Batch the icache maintenance for jump_label

 - Add more atomic instructions support for BPF JIT

 - Add more features (e.g. fsession) support for BPF trampoline

 - Some bug fixes and other small changes

* tag 'loongarch-7.1' of git://git.kernel.org/pub/scm/linux/kernel/git/chenhuacai/linux-loongson: (21 commits)

    [21 lines not shown]
DeltaFile
+317-66arch/loongarch/net/bpf_jit.c
+86-34arch/loongarch/Kconfig
+33-31arch/loongarch/include/asm/cpu.h
+47-14arch/loongarch/mm/init.c
+43-0arch/loongarch/include/asm/highmem.h
+27-0arch/loongarch/mm/pgtable.c
+553-14533 files not shown
+727-20239 files

Linux/linux 64edfa6drivers/atm idt77252.c iphase.c, drivers/isdn/hardware/mISDN hfcmulti.c

Merge tag 'net-deletions' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next

Pull networking deletions from Jakub Kicinski:
 "Delete some obsolete networking code

  Old code like amateur radio and NFC have long been a burden to core
  networking developers. syzbot loves to find bugs in BKL-era code, and
  noobs try to fix them.

  If we want to have a fighting chance of surviving the LLM-pocalypse
  this code needs to find a dedicated owner or get deleted. We've talked
  about these deletions multiple times in the past and every time
  someone wanted the code to stay. It is never very clear to me how many
  of those people actually use the code vs are just nostalgic to see it
  go. Amateur radio did have occasional users (or so I think) but most
  users switched to user space implementations since its all super slow
  stuff. Nobody stepped up to maintain the kernel code.

  We were lucky enough to find someone who wants to help with NFC so

    [22 lines not shown]
DeltaFile
+0-5,540drivers/isdn/hardware/mISDN/hfcmulti.c
+0-3,797drivers/atm/idt77252.c
+0-3,283drivers/atm/iphase.c
+0-3,012drivers/atm/fore200e.c
+0-2,861drivers/atm/he.c
+0-2,759drivers/atm/nicstar.c
+0-21,252305 files not shown
+14-138,161311 files

Linux/linux 82138f0mm slub.c

Merge tag 'slab-for-7.1-fix' of git://git.kernel.org/pub/scm/linux/kernel/git/vbabka/slab

Pull slab fix from Vlastimil Babka:

 - A stable fix for k(v)ealloc() where reallocating on a different node
   or shrinking the object can result in either losing the original data
   or a buffer overflow (Marco Elver)

* tag 'slab-for-7.1-fix' of git://git.kernel.org/pub/scm/linux/kernel/git/vbabka/slab:
  slub: fix data loss and overflow in krealloc()
DeltaFile
+12-12mm/slub.c
+12-121 files

Linux/linux bbc4af7certs extract-cert.c

Merge tag 'clang-fixes-7.1-1' of git://git.kernel.org/pub/scm/linux/kernel/git/nathan/linux

Pull Clang build fix from Nathan Chancellor:

 - Wrap declaration and assignment of key_pass in certs/extract-cert.c
   with '#ifdef' that matches its only usage to clear up an instance of
   a new clang subwarning, -Wunused-but-set-global.

* tag 'clang-fixes-7.1-1' of git://git.kernel.org/pub/scm/linux/kernel/git/nathan/linux:
  extract-cert: Wrap key_pass with '#ifdef USE_PKCS11_ENGINE'
DeltaFile
+5-1certs/extract-cert.c
+5-11 files

Linux/linux eefe0b9security/apparmor lsm.c path.c

Merge tag 'apparmor-pr-2026-04-23' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor

Pull apparmor updates from John Johansen:
 "Cleanups
   - Use sysfs_emit in param_get_{audit,mode}
   - Remove redundant if check in sk_peer_get_label
   - Replace memcpy + NUL termination with kmemdup_nul in do_setattr

  Bug Fixes:
   - Fix aa_dfa_unpack's error handling in aa_setup_dfa_engine
   - Fix string overrun due to missing termination
   - Fix wrong dentry in RENAME_EXCHANGE uid check
   - fix unpack_tags to properly return error in failure cases
   - fix dfa size check
   - return error on namespace mismatch in verify_header
   - use target task's context in apparmor_getprocattr()"

* tag 'apparmor-pr-2026-04-23' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor:
  apparmor/lsm: Fix aa_dfa_unpack's error handling in aa_setup_dfa_engine

    [9 lines not shown]
DeltaFile
+14-22security/apparmor/lsm.c
+5-3security/apparmor/path.c
+2-0security/apparmor/policy_unpack.c
+1-1security/apparmor/match.c
+22-264 files

Linux/linux a39a701arch/x86/mm/pat set_memory.c

x86/mm: Revert INVLPGB optimization for set_memory code

tl;dr: Revert an INVLPGB optimization that did not properly handle
discontiguous virtual addresses.

Full story:

I got a report from some graphics (i915) folks that bisected a
regression in their test suite to 86e6815b316e ("x86/mm: Change
cpa_flush() to call flush_kernel_range() directly").  There was a bit
of flip-flopping on the exact bisect, but the code here does seem
wrong to me. The i915 folks were calling set_pages_array_wc(), so
using the CPA_PAGES_ARRAY mode.

Basically, the 'struct cpa_data' can wrap up all kinds of page table
changes.  Some of these are virtually contiguous, but some are very
much not which is one reason why there are ->vaddr and ->pages arrays.

86e6815b316e made the mistake of assuming that the virtual addresses

    [19 lines not shown]
DeltaFile
+13-7arch/x86/mm/pat/set_memory.c
+13-71 files

Linux/linux 56d0a0b. MAINTAINERS, drivers/gpu/drm drm_atomic_helper.c

Merge tag 'drm-misc-fixes-2026-04-23' of https://gitlab.freedesktop.org/drm/misc/kernel into drm-fixes

This week in drm-misc-fixes, we have:
- A patch to raise the vblank timeout to avoid it on virtual drivers
- a state check fix for stm_lvds
- a use-after-free fix for dma-buf
- a mapping fix for panthor
- a device_node reference leak fix for arcgpu
- a bridge reference leak fix for dw-mipi-dsi
- a sparse warning fix for dma-fence
- a kconfig fix for hv
- a memory leak fix for nouveau
- a fix to duplicate colorop when duplicating states
- a panel initialisation order fix for visionox-rm69299
- a fix to prevent an infinite loop for v3d
- an overflow fix for nouveau

Signed-off-by: Dave Airlie <airlied at redhat.com>


    [2 lines not shown]
DeltaFile
+19-0drivers/gpu/drm/panthor/panthor_mmu.c
+13-1drivers/gpu/drm/drm_atomic_helper.c
+10-3MAINTAINERS
+5-1drivers/gpu/drm/bridge/synopsys/dw-mipi-dsi.c
+3-3drivers/gpu/drm/stm/lvds.c
+5-1drivers/gpu/drm/bridge/synopsys/dw-mipi-dsi2.c
+55-910 files not shown
+73-1916 files

Linux/linux dd6c438fs eventpoll.c fs-writeback.c, include/linux eventpoll.h nstree.h

Merge tag 'vfs-7.1-rc1.fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs

Pull vfs fixes from Christian Brauner:

 - eventpoll: fix ep_remove() UAF and follow-up cleanup

 - fs: aio: set VMA_DONTCOPY_BIT in mmap to fix NULL-pointer-dereference
   error

 - writeback: Fix use after free in inode_switch_wbs_work_fn()

 - fuse: reject oversized dirents in page cache

 - fs: aio: reject partial mremap to avoid Null-pointer-dereference
   error

 - nstree: fix func. parameter kernel-doc warnings

 - fs: Handle multiply claimed blocks more gracefully with mmb

    [19 lines not shown]
DeltaFile
+78-80fs/eventpoll.c
+19-17fs/fs-writeback.c
+10-6include/linux/eventpoll.h
+8-1fs/buffer.c
+3-3include/linux/nstree.h
+3-2fs/aio.c
+121-1091 files not shown
+125-1097 files

Linux/linux bd1886dfs/smb/common/smbdirect smbdirect_connection.c smbdirect_connect.c, fs/smb/smbdirect connection.c connect.c

Merge tag 'v7.1-rc-part2-ksmbd-fixes' of git://git.samba.org/ksmbd

Pull more smb server updates from Steve French:

 - move fs/smb/common/smbdirect to fs/smb/smbdirect

 - change signature calc to use AES-CMAC library, simpler and faster

 - invalid signature fix

 - multichannel fix

 - open create options fix

 - fix durable handle leak

 - cap maximum lock count to avoid potential denial of service

 - four connection fixes: connection free and session destroy IDA fixes,

    [30 lines not shown]
DeltaFile
+2,181-0fs/smb/smbdirect/connection.c
+0-2,181fs/smb/common/smbdirect/smbdirect_connection.c
+925-0fs/smb/smbdirect/connect.c
+0-925fs/smb/common/smbdirect/smbdirect_connect.c
+0-857fs/smb/common/smbdirect/smbdirect_accept.c
+857-0fs/smb/smbdirect/accept.c
+3,963-3,96350 files not shown
+7,638-7,68856 files

Linux/linux d0ed69ffs/smb/client cifsacl.c smb2transport.c, fs/smb/client/compress lz77.c

Merge tag 'v7.1-rc1-part3-smb3-client-fixes' of git://git.samba.org/sfrench/cifs-2.6

Pull smb client fixes from Steve French:

 - Four bug fixes: OOB read in ioctl query info, 3 ACL fixes

 - SMB1 Unix extensions mount fix

 - Four crypto improvements: move to AES-CMAC library, simpler and faster

 - Remove drop_dir_cache to avoid potential crash, and move to /procfs

 - Seven SMB3.1.1 compression fixes

* tag 'v7.1-rc1-part3-smb3-client-fixes' of git://git.samba.org/sfrench/cifs-2.6:
  smb: client: Drop 'allocate_crypto' arg from smb*_calc_signature()
  smb: client: Make generate_key() return void
  smb: client: Remove obsolete cmac(aes) allocation
  smb: client: Use AES-CMAC library for SMB3 signature calculation

    [14 lines not shown]
DeltaFile
+185-85fs/smb/client/compress/lz77.c
+85-30fs/smb/client/cifsacl.c
+29-84fs/smb/client/smb2transport.c
+21-43fs/smb/client/cifsencrypt.c
+0-57fs/smb/client/misc.c
+53-3fs/smb/client/cifs_debug.c
+373-30218 files not shown
+437-39124 files