lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <202512021158.AE1C9BB38@keescook>
Date: Tue, 2 Dec 2025 12:02:09 -0800
From: Kees Cook <kees@...nel.org>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: linux-kernel@...r.kernel.org, Andy Shevchenko <andy@...nel.org>,
	Kees Cook <kees@...nel.org>,
	Kriish Sharma <kriish.sharma2006@...il.com>,
	Miguel Ojeda <ojeda@...nel.org>,
	Nathan Chancellor <nathan@...nel.org>
Subject: [GIT PULL] hardening updates for v6.19-rc1

Hi Linus,

Please pull these handful of hardening updates for v6.19-rc1. The
random driver fixes are to correct some accidentally wrong types used in
allocations (that didn't affect the resulting size) that never got
picked up from the batch I sent a few months ago. The Makefile change is
to enable better GCC diagnostics for the value range tracking, so we can
get better visibility into where those values are coming from when we
get out-of-bounds warnings at compile time.

Thanks!

-Kees

The following changes since commit 211ddde0823f1442e4ad052a2f30f050145ccada:

  Linux 6.18-rc2 (2025-10-19 15:19:16 -1000)

are available in the Git repository at:

  https://git.kernel.org/pub/scm/linux/kernel/git/kees/linux.git tags/hardening-v6.19-rc1

for you to fetch changes up to 7454048db27d685a155aaf4ea03bb9ad0d086bb9:

  kbuild: Enable GCC diagnostic context for value-tracking warnings (2025-11-24 12:44:05 -0800)

----------------------------------------------------------------
hardening updates for v6.19-rc1

- string: Add missing kernel-doc return descriptions (Kriish Sharma)

- Update some mis-typed allocations

- Enable GCC diagnostic context for value-tracking warnings

----------------------------------------------------------------
Kees Cook (4):
      comedi: Adjust range_table_list allocation type
      drm/plane: Remove const qualifier from plane->modifiers allocation type
      media: iris: Cast iris_hfi_gen2_get_instance() allocation type
      kbuild: Enable GCC diagnostic context for value-tracking warnings

Kriish Sharma (1):
      string: Add missing kernel-doc return descriptions

 Makefile                                                 | 3 +++
 include/linux/string.h                                   | 7 +++++++
 drivers/comedi/drivers/ni_670x.c                         | 2 +-
 drivers/gpu/drm/drm_plane.c                              | 2 +-
 drivers/media/platform/qcom/iris/iris_hfi_gen2_command.c | 2 +-
 5 files changed, 13 insertions(+), 3 deletions(-)

-- 
Kees Cook

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ