3 years ago · a5265497a4
--- a/target/linux/generic/backport-5.10/415-v6.0-mtd-core-check-partition-before-dereference.patch
+++ b/target/linux/generic/backport-5.10/415-v6.0-mtd-core-check-partition-before-dereference.patch
@@ -0,0 +1,30 @@
 
				+From 7ec4cdb321738d44ae5d405e7b6ac73dfbf99caa Mon Sep 17 00:00:00 2001
			
 
				+From: Tetsuo Handa <[email protected]>
			
 
				+Date: Mon, 25 Jul 2022 22:49:25 +0900
			
 
				+Subject: [PATCH] mtd: core: check partition before dereference
			
 
				+
			
 
				+syzbot is reporting NULL pointer dereference at mtd_check_of_node() [1],
			
 
				+for mtdram test device (CONFIG_MTD_MTDRAM) is not partition.
			
 
				+
			
 
				+Link: https://syzkaller.appspot.com/bug?extid=fe013f55a2814a9e8cfd [1]
			
 
				+Reported-by: syzbot <[email protected]>
			
 
				+Reported-by: kernel test robot <[email protected]>
			
 
				+Fixes: ad9b10d1eaada169 ("mtd: core: introduce of support for dynamic partitions")
			
 
				+Signed-off-by: Tetsuo Handa <[email protected]>
			
 
				+CC: [email protected]
			
 
				+Signed-off-by: Richard Weinberger <[email protected]>
			
 
				+---
			
 
				+ drivers/mtd/mtdcore.c | 2 ++
			
 
				+ 1 file changed, 2 insertions(+)
			
 
				+
			
 
				+--- a/drivers/mtd/mtdcore.c
			
 
				++++ b/drivers/mtd/mtdcore.c
			
 
				+@@ -574,6 +574,8 @@ static void mtd_check_of_node(struct mtd
			
 
				+ 		return;
			
 
				+ 
			
 
				+ 	/* Check if a partitions node exist */
			
 
				++	if (!mtd_is_partition(mtd))
			
 
				++		return;
			
 
				+ 	parent = mtd->parent;
			
 
				+ 	parent_dn = dev_of_node(&parent->dev);
			
 
				+ 	if (!parent_dn)
			
--- a/target/linux/generic/backport-5.15/404-v6.0-mtd-core-check-partition-before-dereference.patch
+++ b/target/linux/generic/backport-5.15/404-v6.0-mtd-core-check-partition-before-dereference.patch
@@ -0,0 +1,30 @@
 
				+From 7ec4cdb321738d44ae5d405e7b6ac73dfbf99caa Mon Sep 17 00:00:00 2001
			
 
				+From: Tetsuo Handa <[email protected]>
			
 
				+Date: Mon, 25 Jul 2022 22:49:25 +0900
			
 
				+Subject: [PATCH] mtd: core: check partition before dereference
			
 
				+
			
 
				+syzbot is reporting NULL pointer dereference at mtd_check_of_node() [1],
			
 
				+for mtdram test device (CONFIG_MTD_MTDRAM) is not partition.
			
 
				+
			
 
				+Link: https://syzkaller.appspot.com/bug?extid=fe013f55a2814a9e8cfd [1]
			
 
				+Reported-by: syzbot <[email protected]>
			
 
				+Reported-by: kernel test robot <[email protected]>
			
 
				+Fixes: ad9b10d1eaada169 ("mtd: core: introduce of support for dynamic partitions")
			
 
				+Signed-off-by: Tetsuo Handa <[email protected]>
			
 
				+CC: [email protected]
			
 
				+Signed-off-by: Richard Weinberger <[email protected]>
			
 
				+---
			
 
				+ drivers/mtd/mtdcore.c | 2 ++
			
 
				+ 1 file changed, 2 insertions(+)
			
 
				+
			
 
				+--- a/drivers/mtd/mtdcore.c
			
 
				++++ b/drivers/mtd/mtdcore.c
			
 
				+@@ -577,6 +577,8 @@ static void mtd_check_of_node(struct mtd
			
 
				+ 		return;
			
 
				+ 
			
 
				+ 	/* Check if a partitions node exist */
			
 
				++	if (!mtd_is_partition(mtd))
			
 
				++		return;
			
 
				+ 	parent = mtd->parent;
			
 
				+ 	parent_dn = dev_of_node(&parent->dev);
			
 
				+ 	if (!parent_dn)
			
--- a/target/linux/generic/hack-5.10/402-mtd-blktrans-call-add-disks-after-mtd-device.patch
+++ b/target/linux/generic/hack-5.10/402-mtd-blktrans-call-add-disks-after-mtd-device.patch
@@ -77,7 +77,7 @@ Signed-off-by: Daniel Golle <[email protected]>
 
				  
			
 
				  #include "mtdcore.h"
			
 
				  
			
 
				-@@ -922,6 +923,8 @@ int mtd_device_parse_register(struct mtd
			
 
				+@@ -924,6 +925,8 @@ int mtd_device_parse_register(struct mtd
			
 
				  		register_reboot_notifier(&mtd->reboot_notifier);
			
 
				  	}
			
 
				  
			
--- a/target/linux/generic/hack-5.10/410-block-fit-partition-parser.patch
+++ b/target/linux/generic/hack-5.10/410-block-fit-partition-parser.patch
@@ -248,3 +248,4 @@ Submitted-by: Daniel Golle <[email protected]>
 
				 +	FIT_PARTITION = 0x2e,		/* U-Boot uImage.FIT */
			
 
				  	SOLARIS_X86_PARTITION =	0x82,	/* also Linux swap partitions */
			
 
				  	NEW_SOLARIS_X86_PARTITION = 0xbf,
			
 
				+ 
			
--- a/target/linux/generic/hack-5.10/420-mtd-set-rootfs-to-be-root-dev.patch
+++ b/target/linux/generic/hack-5.10/420-mtd-set-rootfs-to-be-root-dev.patch
@@ -20,7 +20,7 @@ Signed-off-by: Gabor Juhos <[email protected]>
 
				  #include <linux/nvmem-provider.h>
			
 
				  
			
 
				  #include <linux/mtd/mtd.h>
			
 
				-@@ -765,6 +766,19 @@ int add_mtd_device(struct mtd_info *mtd)
			
 
				+@@ -767,6 +768,19 @@ int add_mtd_device(struct mtd_info *mtd)
			
 
				  	   of this try_ nonsense, and no bitching about it
			
 
				  	   either. :) */
			
 
				  	__module_get(THIS_MODULE);
			
--- a/target/linux/generic/hack-5.15/402-mtd-blktrans-call-add-disks-after-mtd-device.patch
+++ b/target/linux/generic/hack-5.15/402-mtd-blktrans-call-add-disks-after-mtd-device.patch
@@ -77,7 +77,7 @@ Signed-off-by: Daniel Golle <[email protected]>
 
				  
			
 
				  #include "mtdcore.h"
			
 
				  
			
 
				-@@ -1073,6 +1074,8 @@ int mtd_device_parse_register(struct mtd
			
 
				+@@ -1075,6 +1076,8 @@ int mtd_device_parse_register(struct mtd
			
 
				  
			
 
				  	ret = mtd_otp_nvmem_add(mtd);
			
 
				  
			
--- a/target/linux/generic/hack-5.15/420-mtd-set-rootfs-to-be-root-dev.patch
+++ b/target/linux/generic/hack-5.15/420-mtd-set-rootfs-to-be-root-dev.patch
@@ -20,7 +20,7 @@ Signed-off-by: Gabor Juhos <[email protected]>
 
				  #include <linux/nvmem-provider.h>
			
 
				  
			
 
				  #include <linux/mtd/mtd.h>
			
 
				-@@ -768,6 +769,16 @@ int add_mtd_device(struct mtd_info *mtd)
			
 
				+@@ -770,6 +771,16 @@ int add_mtd_device(struct mtd_info *mtd)
			
 
				  	   of this try_ nonsense, and no bitching about it
			
 
				  	   either. :) */
			
 
				  	__module_get(THIS_MODULE);