[GIT PULL] hardening updates for v6.19-rc1
From: Kees Cook
Date: Tue Dec 02 2025 - 15:02:14 EST
Hi Linus,
Please pull these handful of hardening updates for v6.19-rc1. The
random driver fixes are to correct some accidentally wrong types used in
allocations (that didn't affect the resulting size) that never got
picked up from the batch I sent a few months ago. The Makefile change is
to enable better GCC diagnostics for the value range tracking, so we can
get better visibility into where those values are coming from when we
get out-of-bounds warnings at compile time.
Thanks!
-Kees
The following changes since commit 211ddde0823f1442e4ad052a2f30f050145ccada:
Linux 6.18-rc2 (2025-10-19 15:19:16 -1000)
are available in the Git repository at:
https://git.kernel.org/pub/scm/linux/kernel/git/kees/linux.git tags/hardening-v6.19-rc1
for you to fetch changes up to 7454048db27d685a155aaf4ea03bb9ad0d086bb9:
kbuild: Enable GCC diagnostic context for value-tracking warnings (2025-11-24 12:44:05 -0800)
----------------------------------------------------------------
hardening updates for v6.19-rc1
- string: Add missing kernel-doc return descriptions (Kriish Sharma)
- Update some mis-typed allocations
- Enable GCC diagnostic context for value-tracking warnings
----------------------------------------------------------------
Kees Cook (4):
comedi: Adjust range_table_list allocation type
drm/plane: Remove const qualifier from plane->modifiers allocation type
media: iris: Cast iris_hfi_gen2_get_instance() allocation type
kbuild: Enable GCC diagnostic context for value-tracking warnings
Kriish Sharma (1):
string: Add missing kernel-doc return descriptions
Makefile | 3 +++
include/linux/string.h | 7 +++++++
drivers/comedi/drivers/ni_670x.c | 2 +-
drivers/gpu/drm/drm_plane.c | 2 +-
drivers/media/platform/qcom/iris/iris_hfi_gen2_command.c | 2 +-
5 files changed, 13 insertions(+), 3 deletions(-)
--
Kees Cook