iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/drivers/gpu/drm
History
Alexander Kapshuk de517032ee drm/nouveau/kms: Fix NULL pointer dereference in nouveau_connector_detect_depth 
commit 630f512280604eecae0ddc2b3f8402f7931c56fd upstream.

This oops manifests itself on the following hardware:
01:00.0 VGA compatible controller: NVIDIA Corporation G98M [GeForce G 103M] (rev a1)

Oct 09 14:17:46 lp-sasha kernel: BUG: kernel NULL pointer dereference, address: 0000000000000000
Oct 09 14:17:46 lp-sasha kernel: #PF: supervisor read access in kernel mode
Oct 09 14:17:46 lp-sasha kernel: #PF: error_code(0x0000) - not-present page
Oct 09 14:17:46 lp-sasha kernel: PGD 0 P4D 0
Oct 09 14:17:46 lp-sasha kernel: Oops: 0000 [#1] SMP PTI
Oct 09 14:17:46 lp-sasha kernel: CPU: 1 PID: 191 Comm: systemd-udevd Not tainted 5.9.0-rc8-next-20201009 #38
Oct 09 14:17:46 lp-sasha kernel: Hardware name: Hewlett-Packard Compaq Presario CQ61 Notebook PC/306A, BIOS F.03 03/23/2009
Oct 09 14:17:46 lp-sasha kernel: RIP: 0010:nouveau_connector_detect_depth+0x71/0xc0 [nouveau]
Oct 09 14:17:46 lp-sasha kernel: Code: 0a 00 00 48 8b 49 48 c7 87 b8 00 00 00 06 00 00 00 80 b9 4d 0a 00 00 00 75 1e 83 fa 41 75 05 48 85 c0 75 29 8b 81 10 0d 00 00 <39> 06 7c 25 f6 81 14 0d 00 00 02 75 b7 c3 80 b9 0c 0d 00 00 00 75
Oct 09 14:17:46 lp-sasha kernel: RSP: 0018:ffffc9000028f8c0 EFLAGS: 00010297
Oct 09 14:17:46 lp-sasha kernel: RAX: 0000000000014c08 RBX: ffff8880369d4000 RCX: ffff8880369d3000
Oct 09 14:17:46 lp-sasha kernel: RDX: 0000000000000040 RSI: 0000000000000000 RDI: ffff8880369d4000
Oct 09 14:17:46 lp-sasha kernel: RBP: ffff88800601cc00 R08: ffff8880051da298 R09: ffffffff8226201a
Oct 09 14:17:46 lp-sasha kernel: R10: ffff88800469aa80 R11: ffff888004c84ff8 R12: 0000000000000000
Oct 09 14:17:46 lp-sasha kernel: R13: ffff8880051da000 R14: 0000000000002000 R15: 0000000000000003
Oct 09 14:17:46 lp-sasha kernel: FS:  00007fd0192b3440(0000) GS:ffff8880bc900000(0000) knlGS:0000000000000000
Oct 09 14:17:46 lp-sasha kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Oct 09 14:17:46 lp-sasha kernel: CR2: 0000000000000000 CR3: 0000000004976000 CR4: 00000000000006e0
Oct 09 14:17:46 lp-sasha kernel: Call Trace:
Oct 09 14:17:46 lp-sasha kernel:  nouveau_connector_get_modes+0x1e6/0x240 [nouveau]
Oct 09 14:17:46 lp-sasha kernel:  ? kfree+0xb9/0x240
Oct 09 14:17:46 lp-sasha kernel:  ? drm_connector_list_iter_next+0x7c/0xa0
Oct 09 14:17:46 lp-sasha kernel:  drm_helper_probe_single_connector_modes+0x1ba/0x7c0
Oct 09 14:17:46 lp-sasha kernel:  drm_client_modeset_probe+0x27e/0x1360
Oct 09 14:17:46 lp-sasha kernel:  ? nvif_object_sclass_put+0xc/0x20 [nouveau]
Oct 09 14:17:46 lp-sasha kernel:  ? nouveau_cli_init+0x3cc/0x440 [nouveau]
Oct 09 14:17:46 lp-sasha kernel:  ? ktime_get_mono_fast_ns+0x49/0xa0
Oct 09 14:17:46 lp-sasha kernel:  ? nouveau_drm_open+0x4e/0x180 [nouveau]
Oct 09 14:17:46 lp-sasha kernel:  __drm_fb_helper_initial_config_and_unlock+0x3f/0x4a0
Oct 09 14:17:46 lp-sasha kernel:  ? drm_file_alloc+0x18f/0x260
Oct 09 14:17:46 lp-sasha kernel:  ? mutex_lock+0x9/0x40
Oct 09 14:17:46 lp-sasha kernel:  ? drm_client_init+0x110/0x160
Oct 09 14:17:46 lp-sasha kernel:  nouveau_fbcon_init+0x14d/0x1c0 [nouveau]
Oct 09 14:17:46 lp-sasha kernel:  nouveau_drm_device_init+0x1c0/0x880 [nouveau]
Oct 09 14:17:46 lp-sasha kernel:  nouveau_drm_probe+0x11a/0x1e0 [nouveau]
Oct 09 14:17:46 lp-sasha kernel:  pci_device_probe+0xcd/0x140
Oct 09 14:17:46 lp-sasha kernel:  really_probe+0xd8/0x400
Oct 09 14:17:46 lp-sasha kernel:  driver_probe_device+0x4a/0xa0
Oct 09 14:17:46 lp-sasha kernel:  device_driver_attach+0x9c/0xc0
Oct 09 14:17:46 lp-sasha kernel:  __driver_attach+0x6f/0x100
Oct 09 14:17:46 lp-sasha kernel:  ? device_driver_attach+0xc0/0xc0
Oct 09 14:17:46 lp-sasha kernel:  bus_for_each_dev+0x75/0xc0
Oct 09 14:17:46 lp-sasha kernel:  bus_add_driver+0x106/0x1c0
Oct 09 14:17:46 lp-sasha kernel:  driver_register+0x86/0xe0
Oct 09 14:17:46 lp-sasha kernel:  ? 0xffffffffa044e000
Oct 09 14:17:46 lp-sasha kernel:  do_one_initcall+0x48/0x1e0
Oct 09 14:17:46 lp-sasha kernel:  ? _cond_resched+0x11/0x60
Oct 09 14:17:46 lp-sasha kernel:  ? kmem_cache_alloc_trace+0x19c/0x1e0
Oct 09 14:17:46 lp-sasha kernel:  do_init_module+0x57/0x220
Oct 09 14:17:46 lp-sasha kernel:  __do_sys_finit_module+0xa0/0xe0
Oct 09 14:17:46 lp-sasha kernel:  do_syscall_64+0x33/0x40
Oct 09 14:17:46 lp-sasha kernel:  entry_SYSCALL_64_after_hwframe+0x44/0xa9
Oct 09 14:17:46 lp-sasha kernel: RIP: 0033:0x7fd01a060d5d
Oct 09 14:17:46 lp-sasha kernel: Code: 00 c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e3 70 0c 00 f7 d8 64 89 01 48
Oct 09 14:17:46 lp-sasha kernel: RSP: 002b:00007ffc8ad38a98 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
Oct 09 14:17:46 lp-sasha kernel: RAX: ffffffffffffffda RBX: 0000563f6e7fd530 RCX: 00007fd01a060d5d
Oct 09 14:17:46 lp-sasha kernel: RDX: 0000000000000000 RSI: 00007fd01a19f95d RDI: 000000000000000f
Oct 09 14:17:46 lp-sasha kernel: RBP: 0000000000020000 R08: 0000000000000000 R09: 0000000000000007
Oct 09 14:17:46 lp-sasha kernel: R10: 000000000000000f R11: 0000000000000246 R12: 00007fd01a19f95d
Oct 09 14:17:46 lp-sasha kernel: R13: 0000000000000000 R14: 0000563f6e7fbc10 R15: 0000563f6e7fd530
Oct 09 14:17:46 lp-sasha kernel: Modules linked in: nouveau(+) ttm xt_string xt_mark xt_LOG vgem v4l2_dv_timings uvcvideo ulpi udf ts_kmp ts_fsm ts_bm snd_aloop sil164 qat_dh895xccvf nf_nat_sip nf_nat_irc nf_nat_ftp nf_nat nf_log_ipv6 nf_log_ipv4 nf_log_common ltc2990 lcd intel_qat input_leds i2c_mux gspca_main videobuf2_vmalloc videobuf2_memops videobuf2_v4l2 videobuf2_common videodev mc drivetemp cuse fuse crc_itu_t coretemp ch7006 ath5k ath algif_hash
Oct 09 14:17:46 lp-sasha kernel: CR2: 0000000000000000
Oct 09 14:17:46 lp-sasha kernel: ---[ end trace 0ddafe218ad30017 ]---
Oct 09 14:17:46 lp-sasha kernel: RIP: 0010:nouveau_connector_detect_depth+0x71/0xc0 [nouveau]
Oct 09 14:17:46 lp-sasha kernel: Code: 0a 00 00 48 8b 49 48 c7 87 b8 00 00 00 06 00 00 00 80 b9 4d 0a 00 00 00 75 1e 83 fa 41 75 05 48 85 c0 75 29 8b 81 10 0d 00 00 <39> 06 7c 25 f6 81 14 0d 00 00 02 75 b7 c3 80 b9 0c 0d 00 00 00 75
Oct 09 14:17:46 lp-sasha kernel: RSP: 0018:ffffc9000028f8c0 EFLAGS: 00010297
Oct 09 14:17:46 lp-sasha kernel: RAX: 0000000000014c08 RBX: ffff8880369d4000 RCX: ffff8880369d3000
Oct 09 14:17:46 lp-sasha kernel: RDX: 0000000000000040 RSI: 0000000000000000 RDI: ffff8880369d4000
Oct 09 14:17:46 lp-sasha kernel: RBP: ffff88800601cc00 R08: ffff8880051da298 R09: ffffffff8226201a
Oct 09 14:17:46 lp-sasha kernel: R10: ffff88800469aa80 R11: ffff888004c84ff8 R12: 0000000000000000
Oct 09 14:17:46 lp-sasha kernel: R13: ffff8880051da000 R14: 0000000000002000 R15: 0000000000000003
Oct 09 14:17:46 lp-sasha kernel: FS:  00007fd0192b3440(0000) GS:ffff8880bc900000(0000) knlGS:0000000000000000
Oct 09 14:17:46 lp-sasha kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Oct 09 14:17:46 lp-sasha kernel: CR2: 0000000000000000 CR3: 0000000004976000 CR4: 00000000000006e0

The disassembly:
Code: 0a 00 00 48 8b 49 48 c7 87 b8 00 00 00 06 00 00 00 80 b9 4d 0a 00 00 00 75 1e 83 fa 41 75 05 48 85 c0 75 29 8b 81 10 0d 00 00 <39> 06 7c 25 f6 81 14 0d 00 00 02 75 b7 c3 80 b9 0c 0d 00 00 00 75
All code
========
   0:   0a 00                   or     (%rax),%al
   2:   00 48 8b                add    %cl,-0x75(%rax)
   5:   49                      rex.WB
   6:   48 c7 87 b8 00 00 00    movq   $0x6,0xb8(%rdi)
   d:   06 00 00 00
  11:   80 b9 4d 0a 00 00 00    cmpb   $0x0,0xa4d(%rcx)
  18:   75 1e                   jne    0x38
  1a:   83 fa 41                cmp    $0x41,%edx
  1d:   75 05                   jne    0x24
  1f:   48 85 c0                test   %rax,%rax
  22:   75 29                   jne    0x4d
  24:   8b 81 10 0d 00 00       mov    0xd10(%rcx),%eax
  2a:*  39 06                   cmp    %eax,(%rsi)              <-- trapping instruction
  2c:   7c 25                   jl     0x53
  2e:   f6 81 14 0d 00 00 02    testb  $0x2,0xd14(%rcx)
  35:   75 b7                   jne    0xffffffffffffffee
  37:   c3                      retq
  38:   80 b9 0c 0d 00 00 00    cmpb   $0x0,0xd0c(%rcx)
  3f:   75                      .byte 0x75

Code starting with the faulting instruction
===========================================
   0:   39 06                   cmp    %eax,(%rsi)
   2:   7c 25                   jl     0x29
   4:   f6 81 14 0d 00 00 02    testb  $0x2,0xd14(%rcx)
   b:   75 b7                   jne    0xffffffffffffffc4
   d:   c3                      retq
   e:   80 b9 0c 0d 00 00 00    cmpb   $0x0,0xd0c(%rcx)
  15:   75                      .byte 0x75

objdump -SF --disassemble=nouveau_connector_detect_depth
[...]
        if (nv_connector->edid &&
   c85e1:       83 fa 41                cmp    $0x41,%edx
   c85e4:       75 05                   jne    c85eb <nouveau_connector_detect_depth+0x6b> (File Offset: 0xc866b)
   c85e6:       48 85 c0                test   %rax,%rax
   c85e9:       75 29                   jne    c8614 <nouveau_connector_detect_depth+0x94> (File Offset: 0xc8694)
            nv_connector->type == DCB_CONNECTOR_LVDS_SPWG)
                duallink = ((u8 *)nv_connector->edid)[121] == 2;
        else
                duallink = mode->clock >= bios->fp.duallink_transition_clk;

        if ((!duallink && (bios->fp.strapless_is_24bit & 1)) ||
   c85eb:       8b 81 10 0d 00 00       mov    0xd10(%rcx),%eax
   c85f1:       39 06                   cmp    %eax,(%rsi)
   c85f3:       7c 25                   jl     c861a <nouveau_connector_detect_depth+0x9a> (File Offset: 0xc869a)
            ( duallink && (bios->fp.strapless_is_24bit & 2)))
   c85f5:       f6 81 14 0d 00 00 02    testb  $0x2,0xd14(%rcx)
   c85fc:       75 b7                   jne    c85b5 <nouveau_connector_detect_depth+0x35> (File Offset: 0xc8635)
                connector->display_info.bpc = 8;
[...]

% scripts/faddr2line /lib/modules/5.9.0-rc8-next-20201009/kernel/drivers/gpu/drm/nouveau/nouveau.ko nouveau_connector_detect_depth+0x71/0xc0
nouveau_connector_detect_depth+0x71/0xc0:
nouveau_connector_detect_depth at /home/sasha/linux-next/drivers/gpu/drm/nouveau/nouveau_connector.c:891

It is actually line 889. See the disassembly below.
889                     duallink = mode->clock >= bios->fp.duallink_transition_clk;

The NULL pointer being dereferenced is mode.

Git bisect has identified the following commit as bad:
f28e32d3906e drm/nouveau/kms: Don't change EDID when it hasn't actually changed

Here is the chain of events that causes the oops.
On entry to nouveau_connector_detect_lvds, edid is set to NULL.  The call
to nouveau_connector_detect sets nv_connector->edid to valid memory,
with status set to connector_status_connected and the flow of execution
branching to the out label.

The subsequent call to nouveau_connector_set_edid erronously clears
nv_connector->edid, via the local edid pointer which remains set to NULL.

Fix this by setting edid to the value of the just acquired
nv_connector->edid and executing the body of nouveau_connector_set_edid
only if nv_connector->edid and edid point to different memory addresses
thus preventing nv_connector->edid from being turned into a dangling
pointer.

Fixes: f28e32d3906e ("drm/nouveau/kms: Don't change EDID when it hasn't actually changed")
Signed-off-by: Alexander Kapshuk <alexander.kapshuk@gmail.com>
Reviewed-by: Lyude Paul <lyude@redhat.com>
Signed-off-by: Ben Skeggs <bskeggs@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2023-06-21 15:44:12 +02:00
..
amd
drm:amd:amdgpu: Fix missing buffer object unlock in failure path
2023-06-21 15:44:09 +02:00
arc
arm
drm: mali-dp: potential dereference of null pointer
2022-06-14 18:11:32 +02:00
armada
drm/armada: drop use of drmP.h
2019-08-14 18:31:10 +02:00
aspeed
drm/aspeed: Fix Kconfig warning & subsequent build errors
2020-12-30 11:51:01 +01:00
ast
drm main pull for 5.4-rc1
2019-09-19 16:24:24 -07:00
atmel-hlcdc
drm: atmel-hlcdc: prefer a lower pixel-clock than requested
2020-02-11 04:35:36 -08:00
bochs
drm/drm_fb_helper: fix fbdev with sparc64
2020-08-11 15:33:37 +02:00
bridge
treewide: Remove uninitialized_var() usage
2023-06-09 10:29:01 +02:00
cirrus
etnaviv
drm/etnaviv: fix reference leak when mmaping imported buffer
2023-04-05 11:16:45 +02:00
exynos
treewide: Remove uninitialized_var() usage
2023-06-09 10:29:01 +02:00
fsl-dcu
drm/fsl-dcu: Fix return type of fsl_dcu_drm_connector_mode_valid()
2023-01-18 11:41:38 +01:00
gma500
gma500: fix an incorrect NULL check on list iterator
2022-06-14 18:11:49 +02:00
hisilicon
drm/hisilicon: Fix use-after-free
2021-03-07 12:20:45 +01:00
i2c
drm/i2c/tda998x: drop use of drmP.h
2019-08-14 18:30:52 +02:00
i810
drm/i810: Prevent underflow in ioctl
2019-12-13 08:42:56 +01:00
i915
treewide: Remove uninitialized_var() usage
2023-06-09 10:29:01 +02:00
imx
drm/imx: imx-tve: Fix return type of imx_tve_connector_mode_valid
2022-11-25 17:42:12 +01:00
ingenic
drm/ingenic: Fix incorrect assumption about plane->index
2020-09-03 11:26:52 +02:00
lib
lima
drm/lima/lima_drv: Add missing unwind goto in lima_pdev_probe()
2023-05-17 11:35:37 +02:00
mcde
drm/mcde: Fix refcount leak in mcde_dsi_bind
2022-08-25 11:17:39 +02:00
mediatek
drm/mediatek: Clean dangling pointer on bind error path
2023-03-11 16:43:46 +01:00
meson
drm/meson: fix 1px pink line on GXM when scaling video overlay
2023-03-22 13:28:03 +01:00
mga
mgag200
drm/mgag200: Flag all G200 SE A machines as broken wrt <startadd>
2019-12-21 11:04:54 +01:00
msm
drm/msm/adreno: Fix null ptr access in adreno_gpu_cleanup()
2023-05-17 11:36:05 +02:00
mxsfb
drm: mxsfb: DRM_MXSFB should depend on ARCH_MXS || ARCH_MXC
2023-03-11 16:43:43 +01:00
nouveau
drm/nouveau/kms: Fix NULL pointer dereference in nouveau_connector_detect_depth
2023-06-21 15:44:12 +02:00
omapdrm
drm/omap: dsi: Fix excessive stack usage
2023-03-11 16:43:56 +01:00
panel
drm/panel: otm8009a: Set backlight parent to panel device
2023-05-17 11:36:02 +02:00
panfrost
drm/panfrost: Fix the panfrost_mmu_map_fault_addr() error path
2023-04-20 12:07:34 +02:00
pl111
drm/pl111: Support grayscale
2019-08-09 09:15:05 +02:00
qxl
drm: qxl: ensure surf.data is ininitialized
2021-07-14 16:53:28 +02:00
r128
drm/r128: drop use of drmP.h
2019-07-17 12:52:55 +02:00
radeon
drm/radeon: Fix eDP for single-display iMac11,2
2023-03-11 16:44:07 +01:00
rcar-du
drm: rcar-du: Fix build error
2020-06-30 15:37:11 -04:00
rockchip
treewide: Remove uninitialized_var() usage
2023-06-09 10:29:01 +02:00
savage
scheduler
drm/sched: Avoid data corruptions
2021-07-19 08:53:08 +02:00
selftests
drm/modes: Make sure to parse valid rotation value from cmdline
2020-03-12 13:00:11 +01:00
shmobile
drm/shmobile: drop use of drmP.h
2019-07-15 18:11:31 +02:00
sis
sti
drm/sti: Fix return type of sti_{dvo,hda,hdmi}_connector_mode_valid()
2023-01-18 11:41:39 +01:00
stm
drm/stm: repair runtime power management
2020-08-19 08:16:11 +02:00
sun4i
drm/sun4i: mixer: Fix P010 and P210 format numbers
2022-03-16 13:21:45 +01:00
tdfx
drm/tdfx: drop use of drmP.h
2019-07-17 12:52:55 +02:00
tegra
drm/tegra: Avoid potential 32-bit integer overflow
2023-05-30 12:44:02 +01:00
tilcdc
tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator
2022-06-14 18:11:49 +02:00
tiny
drm/tiny: Kconfig: Remove always-y THERMAL dep. from TINYDRM_REPAPER
2019-10-10 15:15:51 +02:00
ttm
Revert "drm/ttm: fix memleak in ttm_transfered_destroy"
2021-11-06 13:59:45 +01:00
tve200
drm/tve200: Fix handling of platform_get_irq() error
2020-12-30 11:51:01 +01:00
udl
drm/udl: fix control-message timeout
2021-11-26 10:47:22 +01:00
v3d
drm/v3d: fix wait for TMU write combiner flush
2021-11-17 09:48:34 +01:00
vboxvideo
drm/vboxvideo: Make structure vbox_fb_helper_funcs constant
2019-08-18 12:52:52 +02:00
vc4
drm/bridge: Rename bridge helpers targeting a bridge chain
2023-03-11 16:43:45 +01:00
vgem
drm/vgem: add missing mutex_destroy
2023-05-17 11:35:35 +02:00
via
drivers/gpu/drm/via: convert put_page() to put_user_page*()
2019-09-24 15:54:08 -07:00
virtio
drm/virtio: Fix GEM handle creation UAF
2023-01-18 11:42:05 +01:00
vkms
drm/vkms: fix misuse of WARN_ON
2021-05-11 14:04:10 +02:00
vmwgfx
drm/vmwgfx: Validate the box size for the snooped cursor
2023-01-18 11:41:50 +01:00
xen
drm/xen-front: Fix misused IS_ERR_OR_NULL checks
2020-09-03 11:26:50 +02:00
zte
drm/zte: Don't select DRM_KMS_FB_HELPER
2021-07-19 08:53:07 +02:00
ati_pcigart.c
drm/ati_pcigart: drop dependency on drm_os_linux.h
2019-07-19 23:24:16 +02:00
drm_agpsupport.c
gpu/drm: fix a few kernel-doc "/**" mark warnings
2019-07-16 11:25:02 +02:00
drm_atomic_helper.c
drm: Initialize struct drm_crtc_state.no_vblank from device settings
2023-03-11 16:43:46 +01:00
drm_atomic_state_helper.c
drm/atomic: Rename crtc_state->pageflip_flags to async_flip
2019-09-18 18:43:36 +02:00
drm_atomic_uapi.c
drm/atomic: Don't pollute crtc_state->mode_blob with error pointers
2023-06-14 10:59:59 +02:00
drm_atomic.c
drm/connector: print max_requested_bpc in state debugfs
2023-03-17 08:32:47 +01:00
drm_auth.c
drm: Lock pointer access in drm_master_release()
2021-06-16 11:59:39 +02:00
drm_blend.c
drm_bridge.c
drm/bridge: Rename bridge helpers targeting a bridge chain
2023-03-11 16:43:45 +01:00
drm_bufs.c
drm main pull request for v5.3-rc1 (sans mm changes)
2019-07-15 19:04:27 -07:00
drm_cache.c
drm_client_modeset.c
Revert "drm/fbdev: Fallback to non tiled mode if all tiles not present"
2020-03-25 08:25:50 +01:00
drm_client.c
drm/fb-helper: Map DRM client buffer only when required
2019-08-01 15:01:29 +02:00
drm_color_mgmt.c
drm_connector.c
drm/connector: send hotplug uevent on connector cleanup
2023-01-18 11:41:50 +01:00
drm_context.c
drm_crtc_helper_internal.h
drm: remove drm_fb_helper_modinit
2022-07-02 16:28:49 +02:00
drm_crtc_helper.c
drm: Remove bridge support from legacy helpers
2019-08-16 15:50:27 +03:00
drm_crtc_internal.h
drm_crtc.c
drm_damage_helper.c
drm: damage_helper: Fix race checking plane->state->fb
2019-12-13 08:42:55 +01:00
drm_debugfs_crc.c
drm/crc-debugfs: Fix memleak in crc_control_write
2020-10-29 09:57:37 +01:00
drm_debugfs.c
drm: avoid blocking in drm_clients_info's rcu section
2021-09-22 12:26:27 +02:00
drm_dma.c
gpu/drm: fix a few kernel-doc "/**" mark warnings
2019-07-16 11:25:02 +02:00
drm_dp_aux_dev.c
drm/dp_aux_dev: check aux_dev before use in drm_dp_aux_dev_get_by_minor()
2020-12-30 11:51:41 +01:00
drm_dp_cec.c
drm_dp_dual_mode_helper.c
drm_dp_helper.c
drm: Make the bw/link rate calculations more forgiving
2019-07-17 12:45:30 -04:00
drm_dp_mst_topology.c
drm/dp/mst: fix a possible memory leak in fetch_monitor_name()
2022-05-25 09:14:34 +02:00
drm_drv.c
drm/kms: Duct-tape for mode object lifetime checks
2019-09-18 11:27:18 +02:00
drm_dsc.c
drm_dumb_buffers.c
Revert "drm/gem: Rename drm_gem_dumb_map_offset() to drm_gem_map_offset()"
2019-08-07 11:56:48 -04:00
drm_edid_load.c
drm_edid.c
drm/edid: fix objtool warning in drm_cvt_modes()
2023-06-09 10:29:04 +02:00
drm_encoder_slave.c
drm: encoder_slave: fix refcouting error for modules
2020-06-24 17:50:47 +02:00
drm_encoder.c
drm/bridge: Introduce drm_bridge_get_next_bridge()
2023-03-11 16:43:45 +01:00
drm_fb_cma_helper.c
drm_fb_helper.c
drm/fb-helper: set x/yres_virtual in drm_fb_helper_check_var
2023-05-17 11:35:31 +02:00
drm_file.c
drm_flip_work.c
drm_format_helper.c
drm_fourcc.c
drm/fourcc: Add missing big-endian XRGB1555 and RGB565 formats
2023-03-11 16:43:43 +01:00
drm_framebuffer.c
drm: silence variable 'conn' set but not used
2019-07-22 16:04:53 -04:00
drm_gem_cma_helper.c
drm_gem_framebuffer_helper.c
dma-buf: rename reservation_object to dma_resv
2019-08-13 09:09:30 +02:00
drm_gem_shmem_helper.c
drm/shmem-helper: Remove errant put in error path
2022-12-14 11:30:43 +01:00
drm_gem_vram_helper.c
drm/ttm: use gem vma_node
2019-08-06 08:21:54 +02:00
drm_gem.c
drm/gem: Fix GEM handle release errors
2022-09-15 12:04:53 +02:00
drm_hashtab.c
drm_hdcp.c
drm/hdcp: reference for srm file format
2019-08-06 13:18:42 +05:30
drm_internal.h
drm/gem: Fix GEM handle release errors
2022-09-15 12:04:53 +02:00
drm_ioc32.c
drm: Copy drm_wait_vblank to user before returning
2021-09-03 10:08:15 +02:00
drm_ioctl.c
drm: Prevent drm_copy_field() to attempt copying a NULL pointer
2022-10-26 13:22:52 +02:00
drm_irq.c
drm_kms_helper_common.c
drm: remove drm_fb_helper_modinit
2022-07-02 16:28:49 +02:00
drm_lease.c
drm/lease: fix WARNING in idr_destroy
2020-03-25 08:25:56 +01:00
drm_legacy_misc.c
gpu/drm: fix a few kernel-doc "/**" mark warnings
2019-07-16 11:25:02 +02:00
drm_legacy.h
drm_lock.c
gpu/drm: fix a few kernel-doc "/**" mark warnings
2019-07-16 11:25:02 +02:00
drm_memory.c
gpu/drm: fix a few kernel-doc "/**" mark warnings
2019-07-16 11:25:02 +02:00
drm_mipi_dbi.c
drm/mipi-dbi: align max_chunk to 2 in spi_transfer
2022-08-25 11:17:37 +02:00
drm_mipi_dsi.c
drm/mipi-dsi: Set the fwnode for mipi_dsi_device
2023-05-30 12:44:01 +01:00
drm_mm.c
drm_mode_config.c
drm_mode_object.c
drm/kms: Duct-tape for mode object lifetime checks
2019-09-18 11:27:18 +02:00
drm_modes.c
drm/modes: Make sure to parse valid rotation value from cmdline
2020-03-12 13:00:11 +01:00
drm_modeset_helper.c
drm_modeset_lock.c
docs conversion for v5.3-rc1
2019-07-16 12:21:41 -07:00
drm_of.c
drm_panel_orientation_quirks.c
drm: panel-orientation-quirks: Add quirk for Lenovo Yoga Book X90F
2023-04-20 12:07:36 +02:00
drm_panel.c
drm/panel: drop return code from drm_panel_detach()
2019-08-10 15:41:48 +02:00
drm_pci.c
drm: Remove PageReserved manipulation from drm_pci_alloc
2020-04-17 10:50:20 +02:00
drm_plane_helper.c
drm/plane-helper: fix uninitialized variable reference
2021-11-17 09:48:44 +01:00
drm_plane.c
drm/plane: Move range check for format_count earlier
2022-06-14 18:11:26 +02:00
drm_prime.c
drm/gem: Fix GEM handle release errors
2022-09-15 12:04:53 +02:00
drm_print.c
drm_probe_helper.c
drm/probe-helper: Cancel previous job before starting new one
2023-05-17 11:35:35 +02:00
drm_property.c
drm: limit to INT_MAX in create_blob ioctl
2020-01-04 19:18:43 +01:00
drm_rect.c
drm/rect: Avoid division by zero
2020-02-11 04:35:36 -08:00
drm_scatter.c
gpu/drm: fix a few kernel-doc "/**" mark warnings
2019-07-16 11:25:02 +02:00
drm_scdc_helper.c
drm_self_refresh_helper.c
drm/atomic: fix self-refresh helpers crtc state dereference
2019-11-06 13:00:21 -05:00
drm_simple_kms_helper.c
drm_syncobj.c
drm/syncobj: Deal with signalled fences in drm_syncobj_find_fence.
2021-12-14 14:49:01 +01:00
drm_sysfs.c
drm/connector: notify userspace on hotplug after register complete
2020-06-24 17:50:50 +02:00
drm_trace_points.c
drm_trace.h
drm_vblank.c
drm: Initialize struct drm_crtc_state.no_vblank from device settings
2023-03-11 16:43:46 +01:00
drm_vm.c
gpu/drm: fix a few kernel-doc "/**" mark warnings
2019-07-16 11:25:02 +02:00
drm_vma_manager.c
drm_vram_helper_common.c
drm_vram_mm_helper.c
drm_writeback.c
drm: Clear the fence pointer when writeback job signaled
2019-09-23 15:32:53 +08:00
Kconfig
drm: fix drm_mipi_dbi build errors
2022-10-26 13:22:28 +02:00
Makefile
drm/amd: remove meaningless descending into amd/amdkfd/
2019-08-27 10:09:12 -05:00