Skip to content

Commit 831962e

Browse files
committed
Add sound card support for QCS9100 and QCS9075
Merge series from Mohammad Rafi Shaik <mohammad.rafi.shaik@oss.qualcomm.com>: This patchset adds support for sound card on Qualcomm QCS9100 and QCS9075 boards.
2 parents e4dca67 + 5b5bf59 commit 831962e

File tree

336 files changed

+4691
-1438
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

336 files changed

+4691
-1438
lines changed

.mailmap

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -102,6 +102,7 @@ Ard Biesheuvel <ardb@kernel.org> <ard.biesheuvel@linaro.org>
102102
Arnaud Patard <arnaud.patard@rtp-net.org>
103103
Arnd Bergmann <arnd@arndb.de>
104104
Arun Kumar Neelakantam <quic_aneela@quicinc.com> <aneela@codeaurora.org>
105+
Asahi Lina <lina+kernel@asahilina.net> <lina@asahilina.net>
105106
Ashok Raj Nagarajan <quic_arnagara@quicinc.com> <arnagara@codeaurora.org>
106107
Ashwin Chaugule <quic_ashwinc@quicinc.com> <ashwinc@codeaurora.org>
107108
Asutosh Das <quic_asutoshd@quicinc.com> <asutoshd@codeaurora.org>

Documentation/ABI/testing/sysfs-devices-system-cpu

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -511,6 +511,7 @@ Description: information about CPUs heterogeneity.
511511

512512
What: /sys/devices/system/cpu/vulnerabilities
513513
/sys/devices/system/cpu/vulnerabilities/gather_data_sampling
514+
/sys/devices/system/cpu/vulnerabilities/indirect_target_selection
514515
/sys/devices/system/cpu/vulnerabilities/itlb_multihit
515516
/sys/devices/system/cpu/vulnerabilities/l1tf
516517
/sys/devices/system/cpu/vulnerabilities/mds

Documentation/ABI/testing/sysfs-driver-hid-appletb-kbd

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
What: /sys/bus/hid/drivers/hid-appletb-kbd/<dev>/mode
2-
Date: September, 2023
3-
KernelVersion: 6.5
2+
Date: March, 2025
3+
KernelVersion: 6.15
44
Contact: linux-input@vger.kernel.org
55
Description:
66
The set of keys displayed on the Touch Bar.

Documentation/admin-guide/hw-vuln/index.rst

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -23,3 +23,4 @@ are configurable at compile, boot or run time.
2323
gather_data_sampling
2424
reg-file-data-sampling
2525
rsb
26+
indirect-target-selection
Lines changed: 168 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,168 @@
1+
.. SPDX-License-Identifier: GPL-2.0
2+
3+
Indirect Target Selection (ITS)
4+
===============================
5+
6+
ITS is a vulnerability in some Intel CPUs that support Enhanced IBRS and were
7+
released before Alder Lake. ITS may allow an attacker to control the prediction
8+
of indirect branches and RETs located in the lower half of a cacheline.
9+
10+
ITS is assigned CVE-2024-28956 with a CVSS score of 4.7 (Medium).
11+
12+
Scope of Impact
13+
---------------
14+
- **eIBRS Guest/Host Isolation**: Indirect branches in KVM/kernel may still be
15+
predicted with unintended target corresponding to a branch in the guest.
16+
17+
- **Intra-Mode BTI**: In-kernel training such as through cBPF or other native
18+
gadgets.
19+
20+
- **Indirect Branch Prediction Barrier (IBPB)**: After an IBPB, indirect
21+
branches may still be predicted with targets corresponding to direct branches
22+
executed prior to the IBPB. This is fixed by the IPU 2025.1 microcode, which
23+
should be available via distro updates. Alternatively microcode can be
24+
obtained from Intel's github repository [#f1]_.
25+
26+
Affected CPUs
27+
-------------
28+
Below is the list of ITS affected CPUs [#f2]_ [#f3]_:
29+
30+
======================== ============ ==================== ===============
31+
Common name Family_Model eIBRS Intra-mode BTI
32+
Guest/Host Isolation
33+
======================== ============ ==================== ===============
34+
SKYLAKE_X (step >= 6) 06_55H Affected Affected
35+
ICELAKE_X 06_6AH Not affected Affected
36+
ICELAKE_D 06_6CH Not affected Affected
37+
ICELAKE_L 06_7EH Not affected Affected
38+
TIGERLAKE_L 06_8CH Not affected Affected
39+
TIGERLAKE 06_8DH Not affected Affected
40+
KABYLAKE_L (step >= 12) 06_8EH Affected Affected
41+
KABYLAKE (step >= 13) 06_9EH Affected Affected
42+
COMETLAKE 06_A5H Affected Affected
43+
COMETLAKE_L 06_A6H Affected Affected
44+
ROCKETLAKE 06_A7H Not affected Affected
45+
======================== ============ ==================== ===============
46+
47+
- All affected CPUs enumerate Enhanced IBRS feature.
48+
- IBPB isolation is affected on all ITS affected CPUs, and need a microcode
49+
update for mitigation.
50+
- None of the affected CPUs enumerate BHI_CTRL which was introduced in Golden
51+
Cove (Alder Lake and Sapphire Rapids). This can help guests to determine the
52+
host's affected status.
53+
- Intel Atom CPUs are not affected by ITS.
54+
55+
Mitigation
56+
----------
57+
As only the indirect branches and RETs that have their last byte of instruction
58+
in the lower half of the cacheline are vulnerable to ITS, the basic idea behind
59+
the mitigation is to not allow indirect branches in the lower half.
60+
61+
This is achieved by relying on existing retpoline support in the kernel, and in
62+
compilers. ITS-vulnerable retpoline sites are runtime patched to point to newly
63+
added ITS-safe thunks. These safe thunks consists of indirect branch in the
64+
second half of the cacheline. Not all retpoline sites are patched to thunks, if
65+
a retpoline site is evaluated to be ITS-safe, it is replaced with an inline
66+
indirect branch.
67+
68+
Dynamic thunks
69+
~~~~~~~~~~~~~~
70+
From a dynamically allocated pool of safe-thunks, each vulnerable site is
71+
replaced with a new thunk, such that they get a unique address. This could
72+
improve the branch prediction accuracy. Also, it is a defense-in-depth measure
73+
against aliasing.
74+
75+
Note, for simplicity, indirect branches in eBPF programs are always replaced
76+
with a jump to a static thunk in __x86_indirect_its_thunk_array. If required,
77+
in future this can be changed to use dynamic thunks.
78+
79+
All vulnerable RETs are replaced with a static thunk, they do not use dynamic
80+
thunks. This is because RETs get their prediction from RSB mostly that does not
81+
depend on source address. RETs that underflow RSB may benefit from dynamic
82+
thunks. But, RETs significantly outnumber indirect branches, and any benefit
83+
from a unique source address could be outweighed by the increased icache
84+
footprint and iTLB pressure.
85+
86+
Retpoline
87+
~~~~~~~~~
88+
Retpoline sequence also mitigates ITS-unsafe indirect branches. For this
89+
reason, when retpoline is enabled, ITS mitigation only relocates the RETs to
90+
safe thunks. Unless user requested the RSB-stuffing mitigation.
91+
92+
RSB Stuffing
93+
~~~~~~~~~~~~
94+
RSB-stuffing via Call Depth Tracking is a mitigation for Retbleed RSB-underflow
95+
attacks. And it also mitigates RETs that are vulnerable to ITS.
96+
97+
Mitigation in guests
98+
^^^^^^^^^^^^^^^^^^^^
99+
All guests deploy ITS mitigation by default, irrespective of eIBRS enumeration
100+
and Family/Model of the guest. This is because eIBRS feature could be hidden
101+
from a guest. One exception to this is when a guest enumerates BHI_DIS_S, which
102+
indicates that the guest is running on an unaffected host.
103+
104+
To prevent guests from unnecessarily deploying the mitigation on unaffected
105+
platforms, Intel has defined ITS_NO bit(62) in MSR IA32_ARCH_CAPABILITIES. When
106+
a guest sees this bit set, it should not enumerate the ITS bug. Note, this bit
107+
is not set by any hardware, but is **intended for VMMs to synthesize** it for
108+
guests as per the host's affected status.
109+
110+
Mitigation options
111+
^^^^^^^^^^^^^^^^^^
112+
The ITS mitigation can be controlled using the "indirect_target_selection"
113+
kernel parameter. The available options are:
114+
115+
======== ===================================================================
116+
on (default) Deploy the "Aligned branch/return thunks" mitigation.
117+
If spectre_v2 mitigation enables retpoline, aligned-thunks are only
118+
deployed for the affected RET instructions. Retpoline mitigates
119+
indirect branches.
120+
121+
off Disable ITS mitigation.
122+
123+
vmexit Equivalent to "=on" if the CPU is affected by guest/host isolation
124+
part of ITS. Otherwise, mitigation is not deployed. This option is
125+
useful when host userspace is not in the threat model, and only
126+
attacks from guest to host are considered.
127+
128+
stuff Deploy RSB-fill mitigation when retpoline is also deployed.
129+
Otherwise, deploy the default mitigation. When retpoline mitigation
130+
is enabled, RSB-stuffing via Call-Depth-Tracking also mitigates
131+
ITS.
132+
133+
force Force the ITS bug and deploy the default mitigation.
134+
======== ===================================================================
135+
136+
Sysfs reporting
137+
---------------
138+
139+
The sysfs file showing ITS mitigation status is:
140+
141+
/sys/devices/system/cpu/vulnerabilities/indirect_target_selection
142+
143+
Note, microcode mitigation status is not reported in this file.
144+
145+
The possible values in this file are:
146+
147+
.. list-table::
148+
149+
* - Not affected
150+
- The processor is not vulnerable.
151+
* - Vulnerable
152+
- System is vulnerable and no mitigation has been applied.
153+
* - Vulnerable, KVM: Not affected
154+
- System is vulnerable to intra-mode BTI, but not affected by eIBRS
155+
guest/host isolation.
156+
* - Mitigation: Aligned branch/return thunks
157+
- The mitigation is enabled, affected indirect branches and RETs are
158+
relocated to safe thunks.
159+
* - Mitigation: Retpolines, Stuffing RSB
160+
- The mitigation is enabled using retpoline and RSB stuffing.
161+
162+
References
163+
----------
164+
.. [#f1] Microcode repository - https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files
165+
166+
.. [#f2] Affected Processors list - https://www.intel.com/content/www/us/en/developer/topic-technology/software-security-guidance/processors-affected-consolidated-product-cpu-model.html
167+
168+
.. [#f3] Affected Processors list (machine readable) - https://github.com/intel/Intel-affected-processor-list

Documentation/admin-guide/kernel-parameters.txt

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2202,6 +2202,23 @@
22022202
different crypto accelerators. This option can be used
22032203
to achieve best performance for particular HW.
22042204

2205+
indirect_target_selection= [X86,Intel] Mitigation control for Indirect
2206+
Target Selection(ITS) bug in Intel CPUs. Updated
2207+
microcode is also required for a fix in IBPB.
2208+
2209+
on: Enable mitigation (default).
2210+
off: Disable mitigation.
2211+
force: Force the ITS bug and deploy default
2212+
mitigation.
2213+
vmexit: Only deploy mitigation if CPU is affected by
2214+
guest/host isolation part of ITS.
2215+
stuff: Deploy RSB-fill mitigation when retpoline is
2216+
also deployed. Otherwise, deploy the default
2217+
mitigation.
2218+
2219+
For details see:
2220+
Documentation/admin-guide/hw-vuln/indirect-target-selection.rst
2221+
22052222
init= [KNL]
22062223
Format: <full_path>
22072224
Run specified binary instead of /sbin/init as init
@@ -3693,6 +3710,7 @@
36933710
expose users to several CPU vulnerabilities.
36943711
Equivalent to: if nokaslr then kpti=0 [ARM64]
36953712
gather_data_sampling=off [X86]
3713+
indirect_target_selection=off [X86]
36963714
kvm.nx_huge_pages=off [X86]
36973715
l1tf=off [X86]
36983716
mds=off [X86]

Documentation/devicetree/bindings/sound/qcom,sm8250.yaml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -31,6 +31,8 @@ properties:
3131
- qcom,apq8096-sndcard
3232
- qcom,qcm6490-idp-sndcard
3333
- qcom,qcs6490-rb3gen2-sndcard
34+
- qcom,qcs9075-sndcard
35+
- qcom,qcs9100-sndcard
3436
- qcom,qrb4210-rb2-sndcard
3537
- qcom,qrb5165-rb5-sndcard
3638
- qcom,sc7180-qdsp6-sndcard

Documentation/kbuild/reproducible-builds.rst

Lines changed: 17 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -46,6 +46,21 @@ The kernel embeds the building user and host names in
4646
`KBUILD_BUILD_USER and KBUILD_BUILD_HOST`_ variables. If you are
4747
building from a git commit, you could use its committer address.
4848

49+
Absolute filenames
50+
------------------
51+
52+
When the kernel is built out-of-tree, debug information may include
53+
absolute filenames for the source files. This must be overridden by
54+
including the ``-fdebug-prefix-map`` option in the `KCFLAGS`_ variable.
55+
56+
Depending on the compiler used, the ``__FILE__`` macro may also expand
57+
to an absolute filename in an out-of-tree build. Kbuild automatically
58+
uses the ``-fmacro-prefix-map`` option to prevent this, if it is
59+
supported.
60+
61+
The Reproducible Builds web site has more information about these
62+
`prefix-map options`_.
63+
4964
Generated files in source packages
5065
----------------------------------
5166

@@ -116,5 +131,7 @@ See ``scripts/setlocalversion`` for details.
116131

117132
.. _KBUILD_BUILD_TIMESTAMP: kbuild.html#kbuild-build-timestamp
118133
.. _KBUILD_BUILD_USER and KBUILD_BUILD_HOST: kbuild.html#kbuild-build-user-kbuild-build-host
134+
.. _KCFLAGS: kbuild.html#kcflags
135+
.. _prefix-map options: https://reproducible-builds.org/docs/build-path/
119136
.. _Reproducible Builds project: https://reproducible-builds.org/
120137
.. _SOURCE_DATE_EPOCH: https://reproducible-builds.org/docs/source-date-epoch/

Documentation/netlink/specs/tc.yaml

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -2017,7 +2017,8 @@ attribute-sets:
20172017
attributes:
20182018
-
20192019
name: act
2020-
type: nest
2020+
type: indexed-array
2021+
sub-type: nest
20212022
nested-attributes: tc-act-attrs
20222023
-
20232024
name: police
@@ -2250,7 +2251,8 @@ attribute-sets:
22502251
attributes:
22512252
-
22522253
name: act
2253-
type: nest
2254+
type: indexed-array
2255+
sub-type: nest
22542256
nested-attributes: tc-act-attrs
22552257
-
22562258
name: police
@@ -2745,7 +2747,7 @@ attribute-sets:
27452747
type: u16
27462748
byte-order: big-endian
27472749
-
2748-
name: key-l2-tpv3-sid
2750+
name: key-l2tpv3-sid
27492751
type: u32
27502752
byte-order: big-endian
27512753
-
@@ -3504,7 +3506,7 @@ attribute-sets:
35043506
name: rate64
35053507
type: u64
35063508
-
3507-
name: prate4
3509+
name: prate64
35083510
type: u64
35093511
-
35103512
name: burst

Documentation/networking/timestamping.rst

Lines changed: 3 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -811,11 +811,9 @@ Documentation/devicetree/bindings/ptp/timestamper.txt for more details.
811811
3.2.4 Other caveats for MAC drivers
812812
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
813813

814-
Stacked PHCs, especially DSA (but not only) - since that doesn't require any
815-
modification to MAC drivers, so it is more difficult to ensure correctness of
816-
all possible code paths - is that they uncover bugs which were impossible to
817-
trigger before the existence of stacked PTP clocks. One example has to do with
818-
this line of code, already presented earlier::
814+
The use of stacked PHCs may uncover MAC driver bugs which were impossible to
815+
trigger without them. One example has to do with this line of code, already
816+
presented earlier::
819817

820818
skb_shinfo(skb)->tx_flags |= SKBTX_IN_PROGRESS;
821819

0 commit comments

Comments
 (0)