[PULL] Networking for v6.1 final / v6.1-rc9

From: Jakub Kicinski
Date: Thu Dec 08 2022 - 15:56:49 EST


Hi Linus!

Couple of "new code fixes" which is annoying this late, but neither
of those gives me pause.

We pooped it by merging a Xen patch too quickly, and Juergen ended
up sending you a different version via his tree, so you'll see
a conflict. Just keep what you have. Link to the linux-next conflict
report:
https://lore.kernel.org/all/20221208082301.5f7483e8@xxxxxxxxxxxxxxxx/

There is an outstanding regression in BPF / Peter's static calls stuff,
you can probably judge this sort of stuff better than I can:
https://lore.kernel.org/all/CACkBjsYioeJLhJAZ=Sq4CAL2O_W+5uqcJynFgLSizWLqEjNrjw@xxxxxxxxxxxxxx/

No other known regressions.

The following changes since commit f8bac7f9fdb0017b32157957ffffd490f95faa07:

net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() (2022-12-08 09:38:31 -0800)

are available in the Git repository at:

git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git tags/net-6.1-rc9

for you to fetch changes up to f8bac7f9fdb0017b32157957ffffd490f95faa07:

net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() (2022-12-08 09:38:31 -0800)

----------------------------------------------------------------
Including fixes from bluetooth, can and netfilter.

Current release - new code bugs:

- bonding: ipv6: correct address used in Neighbour Advertisement
parsing (src vs dst typo)

- fec: properly scope IRQ coalesce setup during link up to supported
chips only

Previous releases - regressions:

- Bluetooth fixes for fake CSR clones (knockoffs):
- re-add ERR_DATA_REPORTING quirk
- fix crash when device is replugged

- Bluetooth:
- silence a user-triggerable dmesg error message
- L2CAP: fix u8 overflow, oob access
- correct vendor codec definition
- fix support for Read Local Supported Codecs V2

- ti: am65-cpsw: fix RGMII configuration at SPEED_10

- mana: fix race on per-CQ variable NAPI work_done

Previous releases - always broken:

- af_unix: diag: fetch user_ns from in_skb in unix_diag_get_exact(),
avoid null-deref

- af_can: fix NULL pointer dereference in can_rcv_filter

- can: slcan: fix UAF with a freed work

- can: can327: flush TX_work on ldisc .close()

- macsec: add missing attribute validation for offload

- ipv6: avoid use-after-free in ip6_fragment()

- nft_set_pipapo: actually validate intervals in fields
after the first one

- mvneta: prevent oob access in mvneta_config_rss()

- ipv4: fix incorrect route flushing when table ID 0 is used,
or when source address is deleted

- phy: mxl-gpy: add workaround for IRQ bug on GPY215B and GPY215C

Signed-off-by: Jakub Kicinski <kuba@xxxxxxxxxx>

----------------------------------------------------------------